[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$feYoGa_empDjCNQjpVqZpzh_gSb9oXYR7eor8gtjt6bw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":18,"download_link":19,"security_score":20,"vuln_count":11,"unpatched_count":11,"last_vuln_date":21,"fetched_at":22,"vulnerabilities":23,"developer":24,"crawl_stats":21,"alternatives":31,"analysis":32,"fingerprints":108},"elvez-wc-stripe-card-icon","Elvez WC Stripe Card Icon","1.0.3","株式会社エルブズ","https:\u002F\u002Fprofiles.wordpress.org\u002Felvezcojp\u002F","\u003Cp>Manage credit card icons on checkout form in WooCommerce stripe payment gateway.\u003C\u002Fp>\n\u003Cp>WooCommerceのStripe決済画面を拡張し、表示するクレジットカードのアイコンを変更できます。\u003C\u002Fp>\n\u003Cp>KEY FEATURES\u003Cbr \u002F>\n* Manage to display credit card icons in checkout form.\u003C\u002Fp>\n\u003Cp>PREMIUM FEATURES:\u003Cbr \u002F>\n* Manage JCB icon.\u003C\u002Fp>\n\u003Cp>他にも\u003Ca href=\"https:\u002F\u002Fshop.elvez.co.jp\u002Fproduct-category\u002Fwordpress%e3%83%97%e3%83%a9%e3%82%b0%e3%82%a4%e3%83%b3\u002F\" rel=\"nofollow ugc\">使いやすいWordpressプラグイン\u003C\u002Fa>をご用意しています。\u003Cbr \u002F>\nWe provide other \u003Ca href=\"https:\u002F\u002Fshop.elvez.co.jp\u002Fproduct-category\u002Fwordpress%e3%83%97%e3%83%a9%e3%82%b0%e3%82%a4%e3%83%b3\u002F\" rel=\"nofollow ugc\">useful WordPress plugins\u003C\u002Fa>.\u003C\u002Fp>\n","Manage credit card icons on checkout form in WooCommerce stripe payment gateway.",0,915,"2021-12-06T01:14:00.000Z","5.8.13","5.2","7.2",[],"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Felvez-wc-stripe-card-icon","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Felvez-wc-stripe-card-icon.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":25,"display_name":7,"profile_url":8,"plugin_count":26,"total_installs":27,"avg_security_score":28,"avg_patch_time_days":29,"trust_score":20,"computed_at":30},"elvezcojp",7,180,87,30,"2026-04-04T12:30:11.361Z",[],{"attackSurface":33,"codeSignals":83,"taintFlows":95,"riskAssessment":96,"analyzedAt":107},{"hooks":34,"ajaxHandlers":79,"restRoutes":80,"shortcodes":81,"cronEvents":82,"entryPointCount":11,"unprotectedCount":11},[35,41,45,50,55,58,60,63,65,70,74],{"type":36,"name":37,"callback":38,"file":39,"line":40},"action","admin_init","register_settings","admin\\class-elvez-wc-stripe-card-icon-admin.php",107,{"type":36,"name":42,"callback":43,"file":39,"line":44},"admin_menu","set_menu_page",108,{"type":46,"name":47,"callback":48,"file":39,"line":49},"filter","elvez_wc_stripe_card_icon_get_option_display_icons","filter_premium_icons",110,{"type":36,"name":51,"callback":52,"file":53,"line":54},"plugins_loaded","anonymous","includes\\class-elvez-wc-stripe-card-icon.php",194,{"type":36,"name":56,"callback":52,"file":53,"line":57},"admin_enqueue_scripts",209,{"type":36,"name":56,"callback":52,"file":53,"line":59},210,{"type":36,"name":61,"callback":52,"file":53,"line":62},"wp_enqueue_scripts",225,{"type":36,"name":61,"callback":52,"file":53,"line":64},226,{"type":36,"name":66,"callback":67,"file":68,"line":69},"init","register_dependencies","public\\class-elvez-wc-stripe-card-icon-public.php",56,{"type":46,"name":71,"callback":72,"file":68,"line":73},"wc_stripe_payment_icons","store_payment_icons",58,{"type":46,"name":75,"callback":76,"priority":77,"file":68,"line":78},"woocommerce_gateway_icon","manage_gateway_icon",10,59,[],[],[],[],{"dangerousFunctions":84,"sqlUsage":85,"outputEscaping":87,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":94},[],{"prepared":11,"raw":11,"locations":86},[],{"escaped":88,"rawEcho":89,"locations":90},3,1,[91],{"file":39,"line":92,"context":93},294,"raw output",[],[],{"summary":97,"deductions":98},"The \"elvez-wc-stripe-card-icon\" plugin, version 1.0.3, presents a generally positive security posture based on the static analysis.  The absence of any identified CVEs and the lack of recorded past vulnerabilities suggest a history of secure development or diligent patching.  The code analysis reveals no dangerous functions, no file operations, and no external HTTP requests, which are all positive indicators.  Furthermore, all SQL queries are properly prepared, and there are no taint flows indicating potential issues with unsanitized data.  The lack of attack surface points (AJAX handlers, REST API routes, shortcodes, cron events) is also a significant strength, as it limits potential entry points for attackers.\n\nHowever, there are a few areas that could be improved.  While the overall output escaping is high (75% properly escaped), there is still a portion that is not, which could lead to XSS vulnerabilities if user-supplied data is involved in those unescaped outputs.  The complete lack of nonce checks and capability checks across all entry points is a notable weakness.  Even though there are no current entry points identified, this absence leaves the plugin vulnerable if new entry points are introduced in future updates without proper security controls.  The plugin demonstrates good practices in terms of data handling and avoiding dangerous functions, but the oversight in authentication and authorization checks on potential future entry points warrants attention.",[99,102,105],{"reason":100,"points":101},"Unescaped output present",6,{"reason":103,"points":104},"No nonce checks",5,{"reason":106,"points":104},"No capability checks","2026-03-17T07:16:00.267Z",{"wat":109,"direct":118},{"assetPaths":110,"generatorPatterns":113,"scriptPaths":114,"versionParams":115},[111,112],"\u002Fwp-content\u002Fplugins\u002Felvez-wc-stripe-card-icon\u002Fassets\u002Fcss\u002Felvez-wc-stripe-card-icon-public.css","\u002Fwp-content\u002Fplugins\u002Felvez-wc-stripe-card-icon\u002Fassets\u002Fjs\u002Felvez-wc-stripe-card-icon-public.js",[],[112],[116,117],"elvez-wc-stripe-card-icon\u002Fassets\u002Fcss\u002Felvez-wc-stripe-card-icon-public.css?ver=","elvez-wc-stripe-card-icon\u002Fassets\u002Fjs\u002Felvez-wc-stripe-card-icon-public.js?ver=",{"cssClasses":119,"htmlComments":121,"htmlAttributes":124,"restEndpoints":126,"jsGlobals":127,"shortcodeOutput":129},[120],"elvez-wc-stripe-card-icon-icons",[122,123],"\u003C!-- PREMIUM FEATURE -->","\u003C!-- FIXME: Use icon image. -->",[125],"data-elvez-wc-stripe-card-icon-nonce",[],[128],"elvez_wc_stripe_card_icon_params",[]]