Easy Digital Downloads – Omnidesk Support Security & Risk Analysis

The EDD Omnidesk Support plugin version 1.3.0 exhibits a generally positive security posture due to the absence of known vulnerabilities and a low number of critical code signals. The plugin demonstrates good practice by not utilizing raw SQL queries, all of which are prepared statements. Furthermore, there are no external HTTP requests that are not properly handled or directly exploitable. The limited attack surface, with only one shortcode and no unprotected AJAX handlers or REST API routes, is also a strength. However, there are areas for improvement. The 50% rate of unescaped output is a concern, as it could potentially lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is not handled carefully. The taint analysis revealing two flows with unsanitized paths, even without critical or high severity, warrants attention as it suggests potential areas where malicious input could be processed insecurely, although the lack of critical findings mitigates this immediate risk. The absence of nonce checks and capability checks on its entry points is a notable weakness, especially for the shortcode, as it could be invoked by unauthenticated users or users with insufficient privileges, potentially leading to unintended actions. In conclusion, while the plugin has a solid foundation by avoiding known vulnerabilities and using prepared statements, the unescaped output and lack of proper authorization checks on its entry points represent security risks that should be addressed.