[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fcbipfzZ3INK_fgdvnqBAJu7lW12IcUXgSkS9W0xJ8Xk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":15,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":61,"crawl_stats":37,"alternatives":67,"analysis":170,"fingerprints":1714},"fs-real-estate-plugin","FireStorm Professional Real Estate Plugin","2.7.11","FireStorm Plugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fwfernley\u002F","\u003Cp>\u003Cstrong>Please note, custom filters, listing sorting and comparing are now only available on the Professional Version \u003Ca href=\"http:\u002F\u002Fwww.firestormplugins.com\u002Fextensions\u002Freal-estate\u002F\" rel=\"nofollow ugc\">available for purchase on our website\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The FireStorm Real Estate Plugin is an advanced real estate plugin allowing you to turn your WordPress website or blog into a fully functional real estate listing website. The plugin is ideal for Realtors, Agents, Brokers, For Sale By Owner listings and Real Estate Agencies looking to list properties. The administration is easy to use and loaded with features. The front end is great for SEO. It operates stand-alone which means it does not require blog posts for each property listing. This allows you to keep your blog separate from the real estate listings. Filters and short codes allow you to add single and multiple listings to any page or post.\u003C\u002Fp>\n\u003Cp>Related Links:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.firestormplugins.com\u002Ftickets\u002F\" title=\"Plugin Support Forums\" rel=\"nofollow ugc\">Plugin Support\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.firestormplugins.com\u002Fplugins\u002Freal-estate\u002F\" title=\"FireStorm WordPress Real Estate Plugin\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.firestormplugins.com\u002F\" title=\"FireStorm WordPress Development\" rel=\"nofollow ugc\">Plugin Customization & Theme Development\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>“Point and Click” Management\u003C\u002Fli>\n\u003Cli>SEO Friendly\u003C\u002Fli>\n\u003Cli>Google Maps Integration\u003C\u002Fli>\n\u003Cli>Automatic Google Map Longtitude and Latitude Generation\u003C\u002Fli>\n\u003Cli>Search By Map\u003C\u002Fli>\n\u003Cli>Custom Input Fields\u003C\u002Fli>\n\u003Cli>Sellers Contact Details\u003C\u002Fli>\n\u003Cli>Seller Contact Form\u003C\u002Fli>\n\u003Cli>Lightbox Slideshow Support\u003C\u002Fli>\n\u003Cli>Custom Listing Labels\u003C\u002Fli>\n\u003Cli>Location Management\u003C\u002Fli>\n\u003Cli>Search Widget\u003C\u002Fli>\n\u003Cli>Location Widget\u003C\u002Fli>\n\u003Cli>Filters and Short Codes\u003C\u002Fli>\n\u003Cli>Horizontal and Vertical Listing Display\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Short Codes: \u003Cbr \u002F>\nExample: [fsrep-filter type=”city” map=”no” value=”2″] \u003C\u002Fp>\n\u003Cp>Types Available: \u003Cbr \u002F>\n“all” – show all listings \u003Cbr \u002F>\n“country” – display listings for a specific country – value is the country ID \u003Cbr \u002F>\n“state” – display listings for a specific state – value is the state ID \u003Cbr \u002F>\n“city” – display listings for a specific city – value is the city ID \u003Cbr \u002F>\n“single” – display a single listing \u003Cbr \u002F>\n“sold” – show sold listings – a limit can be set with the value \u003Cbr \u002F>\n“latest” – show latest listings – a limit can be set with the value \u003Cbr \u002F>\n“details” – display a specified listings details – value is the listing ID \u003Cbr \u002F>\n“map” can be set to “yes” or “no” to display the Google map.\u003C\u002Fp>\n\u003Cp>Requirements:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Requirements WordPress Permalinks Enabled\u003C\u002Fli>\n\u003C\u002Ful>\n","This professional real estate plugin gives you the ability to add real estate listings to your WordPress website.",10,43519,58,43,"","3.7.41","3.6",[19,20,21,22,23],"home","house","real-estate","realtor","realty","http:\u002F\u002Fwww.firestormplugins.com\u002Fplugins\u002Freal-estate\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffs-real-estate-plugin.zip",68,2,1,"2026-01-06 00:00:00","2026-03-15T10:48:56.248Z",[32,46],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":37,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":29,"updated_date":43,"references":44,"days_to_patch":37},"CVE-2026-22470","firestorm-professional-real-estate-authenticated-administrator-sql-injection","FireStorm Professional Real Estate \u003C= 2.7.11 - Authenticated (Administrator+) SQL Injection","The FireStorm Professional Real Estate plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 2.7.11 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with administrator-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.",null,"\u003C=2.7.11","medium",4.9,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:U\u002FC:H\u002FI:N\u002FA:N","Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')","2026-01-14 19:26:20",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F3c1ad419-0767-4e2d-908a-83b57cfa8ed5?source=api-prod",{"id":47,"url_slug":48,"title":49,"description":50,"plugin_slug":4,"theme_slug":37,"affected_versions":51,"patched_in_version":52,"severity":53,"cvss_score":54,"cvss_vector":55,"vuln_type":42,"published_date":56,"updated_date":57,"references":58,"days_to_patch":60},"WF-854e5d70-f42f-48c4-b1bb-687610f86cfb-fs-real-estate-plugin","firestorm-professional-real-estate-plugin-sql-injections","FireStorm Professional Real Estate Plugin \u003C= 2.06.03 - SQL Injections","The \"FireStorm Professional Real Estate Plugin\" plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in versions up to, and including, 2.06.03 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.","\u003C=2.06.03","2.06.04","critical",9.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","2012-10-25 00:00:00","2024-01-22 19:56:02",[59],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F854e5d70-f42f-48c4-b1bb-687610f86cfb?source=api-prod",4107,{"slug":62,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":63,"avg_security_score":64,"avg_patch_time_days":60,"trust_score":65,"computed_at":66},"wfernley",20,66,55,"2026-04-04T16:24:58.412Z",[68,91,109,133,151],{"slug":69,"name":70,"version":71,"author":72,"author_profile":73,"description":74,"short_description":75,"active_installs":76,"downloaded":77,"rating":78,"num_ratings":78,"last_updated":79,"tested_up_to":80,"requires_at_least":81,"requires_php":82,"tags":83,"homepage":86,"download_link":87,"security_score":88,"vuln_count":28,"unpatched_count":78,"last_vuln_date":89,"fetched_at":90},"easy-mls-listings-import","Easy MLS Listings Import","2.1.0","Home ASAP","https:\u002F\u002Fprofiles.wordpress.org\u002Fhomeasap\u002F","\u003Cp>Easy MLS Listings Import by Home ASAP lets you easily display a real estate agent’s MLS listings and\u002For their office listings on any WordPress site. Even better, listing information updates automatically to save you work with updating, removing, and adding new listings. That way you can set it and forget it.\u003C\u002Fp>\n\u003Cp>EASY SETUP\u003C\u002Fp>\n\u003Cp>Setup takes only minutes. Just create a free Real Estate Agent Directory account, connect your agent’s listings, and place a shortcode where you want the listings to appear. We take care of the heavy lifting of connecting to IDX feeds for you.\u003C\u002Fp>\n\u003Cp>EASY MAINTENANCE\u003C\u002Fp>\n\u003Cp>Our system automatically updates MLS listing information every 5 minutes, so visitors always get the most up to date information. That means you no longer have to add, remove, or update listings yourself when listings go on or off the market.\u003C\u002Fp>\n\u003Cp>FLEXIBLE STYLING\u003C\u002Fp>\n\u003Cp>Listings are presented in an attractive grid layout that adjusts to the visitor’s screen size. Background colors and dimensions can be customized to fit your design.\u003C\u002Fp>\n\u003Cp>ALL THE INFO\u003C\u002Fp>\n\u003Cp>When users click on a listing, a new tab will open containing the property description, amenities, photos, maps, and more. Plus, we include the details homebuyers demand such as nearby schools, neighborhood demographics, weather, and nearby attractions.\u003C\u002Fp>\n\u003Ch3>Built-In Lead Capture\u003C\u002Fh3>\n\u003Cp>Of course, most agents want one thing from a website, and that’s leads. That is why we include built-in lead capture forms that allow visitors to easily connect to new buyers.\u003C\u002Fp>\n\u003Cp>TOTALLY FREE\u003C\u002Fp>\n\u003Cp>Oh…and did we mention you get all this for free? Plus, agents get access to lots of other great tools for marketing on Facebook with their free Real Estate Agent Directory membership.\u003C\u002Fp>\n\u003Ch3>Setup Requirements\u003C\u002Fh3>\n\u003Cp>\u003Cem>Real Estate Agent Directory account (Free)\u003C\u002Fem> – Easy MLS Listings Import works by integrating with the \u003Ca href=\"https:\u002F\u002Fabout.homeasap.com\u002Fbrand-awareness\u002Freal-estate-agent-directory\u002F?utm_source=wordpress&utm_medium=referral&utm_campaign=easy_mls_imports\" rel=\"nofollow ugc\">Real Estate Agent Directory\u003C\u002Fa>. This free service can be set up by an agent or their developer in only a few minutes. Plus, agents get access to a ton of free benefits from the largest directory of its kind on Facebook at over 600,000 members and growing.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fabout.homeasap.com\u002Fbrand-awareness\u002Freal-estate-agent-directory\u002F?utm_source=wordpress&utm_medium=referral&utm_campaign=easy_mls_imports\" rel=\"nofollow ugc\">Click here to learn more.\u003C\u002Fa>\u003C\u002Fp>\n","Easy MLS Listings Import lets you easily display a real estate agent’s MLS listings. Listings update automatically after set-up for low maintenance!",100,5607,0,"2025-02-18T04:50:00.000Z","6.7.5","4.0","7.4",[84,85,21,22,23],"home-asap","mls","https:\u002F\u002Fabout.homeasap.com\u002Feasy-mls-listings-import-wordpress-plugin-by-home-asap\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-mls-listings-import.zip",91,"2025-02-17 15:40:29","2026-03-15T15:16:48.613Z",{"slug":92,"name":93,"version":94,"author":95,"author_profile":96,"description":97,"short_description":98,"active_installs":11,"downloaded":99,"rating":78,"num_ratings":78,"last_updated":100,"tested_up_to":101,"requires_at_least":102,"requires_php":15,"tags":103,"homepage":106,"download_link":107,"security_score":108,"vuln_count":78,"unpatched_count":78,"last_vuln_date":37,"fetched_at":90},"featured-property-widget","Featured Property","1.1.0","C-Fusion Multimedia","https:\u002F\u002Fprofiles.wordpress.org\u002Fcfusionmm\u002F","\u003Cp>Featured Property Widget is a responsive widget that is designed to fit well on most themes.  The widget will display a property image as well as several details about the property.  Current details are: Type, Beds, Baths, Home Size, Lot Size and Description.  The main image also can serve as a link to another page or external URL that houses additional details regarding the property. The widget uses its own stylesheet but can easily be overwritten with your own theme styles should you want to customize it.\u003C\u002Fp>\n","Displays a simple formatted Featured Property as a widget.  Perfect way to feature properties that are for sale or rent.",2078,"2015-04-23T20:07:00.000Z","4.2.39","3.0.1",[104,105,21,22,23],"featured-property","property","http:\u002F\u002Fwww.cfusionmultimedia.com\u002Fprojects\u002Ffeatured-property-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffeatured-property-widget.1.1.0.zip",85,{"slug":110,"name":111,"version":112,"author":113,"author_profile":114,"description":115,"short_description":116,"active_installs":117,"downloaded":118,"rating":119,"num_ratings":120,"last_updated":121,"tested_up_to":122,"requires_at_least":123,"requires_php":15,"tags":124,"homepage":127,"download_link":128,"security_score":129,"vuln_count":130,"unpatched_count":131,"last_vuln_date":132,"fetched_at":90},"essential-real-estate","Essential Real Estate","5.2.6","g5theme","https:\u002F\u002Fprofiles.wordpress.org\u002Fg5theme\u002F","\u003Cp>\u003Ca href=\"http:\u002F\u002Fplugins.g5plus.net\u002Fere\u002F?utm_source=wp&utm_medium=ere_description&utm_content=website_introduction\" rel=\"nofollow ugc\">Main Site\u003C\u002Fa> | \u003Ca href=\"http:\u002F\u002Fdocument.g5plus.net\u002Fessential-real-estate\u002F\" rel=\"nofollow ugc\">Docs\u003C\u002Fa> | \u003Ca href=\"http:\u002F\u002Fplugins.g5plus.net\u002Fere\u002Fadd-ons\u002F?utm_source=wp&utm_medium=ere_description&utm_content=ere_colors#ere_colors\" rel=\"nofollow ugc\">Add-ons\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fthemeforest.net\u002Fitem\u002Fhomeid-real-estate-wordpress-theme\u002F30203159&utm_source=wp&utm_medium=ere_description_premium_theme_menu&utm_content=view_demo_homeid\" rel=\"nofollow ugc\">Premium Theme\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>There are full features needed for a real estate website, easy to customize and overwrite templates. Allow to manage property listings and submit property via back-end and front-end. Supported global payment, build market, agent management,…etc.\u003Cbr \u002F>\nFREE plugins but already all PREMIUM FEATURES.\u003C\u002Fp>\n\u003Ch4>Demo with premium theme\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Click \u003Ca href=\"http:\u002F\u002Fsandbox.g5plus.net\u002Fbeyot\u002F\" rel=\"nofollow ugc\">Create Demo\u003C\u002Fa> to create temporary website.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>You can \u003Ca href=\"https:\u002F\u002Fthemeforest.net\u002Fitem\u002Fhomeid-real-estate-wordpress-theme\u002F30203159?utm_source=wp&utm_medium=ere_description&utm_content=view_demo_homeid\" rel=\"nofollow ugc\">View demo or buy Homeid WP theme\u003C\u002Fa>.\u003Cbr \u002F>\n  You can \u003Ca href=\"https:\u002F\u002Fthemeforest.net\u002Fitem\u002Fbeyot-wordpress-real-estate-theme\u002F19514964?utm_source=wp&utm_medium=ere_description&utm_content=view_demo_beyot\" rel=\"nofollow ugc\">View demo or buy Beyot WP theme\u003C\u002Fa>.\u003Cbr \u002F>\n  You can \u003Ca href=\"https:\u002F\u002Fthemeforest.net\u002Fitem\u002Fbenaa-real-estate-wordpress-theme\u002F21413304?utm_source=wp&utm_medium=ere_description&utm_content=view_demo_benaa\" rel=\"nofollow ugc\">View demo or buy Benaa WP theme\u003C\u002Fa>.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Sample Data Demo\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Download xml file: \u003Ca href=\"http:\u002F\u002Fdocument.g5plus.net\u002Fessential-real-estate\u002Fsample-data.xml\" rel=\"nofollow ugc\">sample-data.xml\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Download zip file: \u003Ca href=\"http:\u002F\u002Fdocument.g5plus.net\u002Fessential-real-estate\u002Fsample-data.zip\" rel=\"nofollow ugc\">sample-data.zip\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Add-ons\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.g5plus.net\u002Fere\u002Fadd-ons\u002F?utm_source=wp&utm_medium=ere_description&utm_content=ere_download#ere_download\" rel=\"nofollow ugc\">ERE Download – Addons Free\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fplugins.g5plus.net\u002Fere\u002Fadd-ons\u002F?utm_source=wp&utm_medium=ere_description&utm_content=ere_colors#ere_colors\" rel=\"nofollow ugc\">ERE Colors – Addons Free\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fplugins.g5plus.net\u002Fere\u002Fadd-ons\u002F?utm_source=wp&utm_medium=ere_description&utm_content=ere_recently_viewed#ere_recently_viewed\" rel=\"nofollow ugc\">ERE Recently Viewed – Addons Free\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fplugins.g5plus.net\u002Fere\u002Fadd-ons\u002F?utm_source=wp&utm_medium=ere_description&utm_content=ere_similar_properties#ere_similar_properties\" rel=\"nofollow ugc\">ERE Similar Properties – Addons Free\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Video how to\u003C\u002Fh4>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent&listType=playlist&list=PL_DzVbdOfv7EJSkMOf84gpYGzZqvrwv4H\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Already define pages for Real Estate website like: Search Page, Listing Properties, Listing Agent, Agency, Payment, Profile,…\u003C\u002Fli>\n\u003Cli>Submit property via Back-End and Front-End\u003C\u002Fli>\n\u003Cli>Manage property listings via Back-End and Front-End\u003C\u002Fli>\n\u003Cli>Can add custom fields for property\u003C\u002Fli>\n\u003Cli>Easy to customize\u003C\u002Fli>\n\u003Cli>Flexible Search\u003C\u002Fli>\n\u003Cli>Favorite Properties\u003C\u002Fli>\n\u003Cli>Saved Searches Properties\u003C\u002Fli>\n\u003Cli>Compare Properties\u003C\u002Fli>\n\u003Cli>Print Properties\u003C\u002Fli>\n\u003Cli>Nearby Place\u003C\u002Fli>\n\u003Cli>Membership Packages\u003C\u002Fli>\n\u003Cli>Management invoices, User Profiles,…\u003C\u002Fli>\n\u003Cli>Listing Expiration Date\u003C\u002Fli>\n\u003Cli>Paid Submission Type: Free, Pay per Package, Pay per Listing\u003C\u002Fli>\n\u003Cli>Payment Method: Paypal, Stripe, Wire Transfer\u003C\u002Fli>\n\u003Cli>Email Listing Alerts\u003C\u002Fli>\n\u003Cli>Featured Listings\u003C\u002Fli>\n\u003Cli>Related Listing\u003C\u002Fli>\n\u003Cli>Google Suggestions, Geo Location Search, Map Directions\u003C\u002Fli>\n\u003Cli>Supported Google Captcha\u003C\u002Fli>\n\u003Cli>Social Login, Social Share\u003C\u002Fli>\n\u003Cli>Multiple Listing Layouts\u003C\u002Fli>\n\u003Cli>Fully Responsive\u003C\u002Fli>\n\u003Cli>Gallery, Video, 360 Virtual Tour, …\u003C\u002Fli>\n\u003Cli>Contact Agent\u003C\u002Fli>\n\u003Cli>Private Note\u003C\u002Fli>\n\u003Cli>Compatible With Visual Composer plugin\u003C\u002Fli>\n\u003Cli>Compatible With WPML plugin\u003C\u002Fli>\n\u003C\u002Ful>\n","Completely plugins Real Estate. Management system which allows you to own and maintain a real estate marketplace, intro website.",8000,631666,86,52,"2026-02-03T02:46:00.000Z","6.9.4","4.5",[125,126,105,21,22],"agency","agent","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fessential-real-estate","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fessential-real-estate.5.2.6.zip",17,14,3,"2025-12-14 00:00:00",{"slug":134,"name":135,"version":136,"author":135,"author_profile":137,"description":138,"short_description":139,"active_installs":140,"downloaded":141,"rating":76,"num_ratings":142,"last_updated":143,"tested_up_to":80,"requires_at_least":144,"requires_php":15,"tags":145,"homepage":148,"download_link":149,"security_score":150,"vuln_count":78,"unpatched_count":78,"last_vuln_date":37,"fetched_at":90},"mortgage-calculator","Mortgage Calculator","1.3.0","https:\u002F\u002Fprofiles.wordpress.org\u002Fmcitar\u002F","\u003Cp>This plugin provides a very simple and easy to use mortgage calculator widget.\u003C\u002Fp>\n\u003Cp>I tried to provide a bloat-free mortgage plugin that serves the purpose in a quality way.\u003C\u002Fp>\n\u003Cp>This mortgage plugin is also translation ready and you can translate it to your language using pot file provided in languages directory.\u003C\u002Fp>\n","It provides an easy to use mortgage calculator widget.",4000,172617,8,"2024-11-11T04:02:00.000Z","4.6",[146,147,134,21,22],"loan","mortgage","https:\u002F\u002Fwww.calculator.io\u002Fmortgage-calculator\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmortgage-calculator.1.3.0.zip",92,{"slug":152,"name":153,"version":154,"author":155,"author_profile":156,"description":157,"short_description":158,"active_installs":159,"downloaded":160,"rating":161,"num_ratings":131,"last_updated":162,"tested_up_to":80,"requires_at_least":163,"requires_php":15,"tags":164,"homepage":168,"download_link":169,"security_score":76,"vuln_count":78,"unpatched_count":78,"last_vuln_date":37,"fetched_at":90},"houzez-woo-addon","Houzez WooCommerce Addon","1.1.2","favethemes","https:\u002F\u002Fprofiles.wordpress.org\u002Ffavethemes\u002F","\u003Cp>This plugin provides WooCommerce integration with \u003Ca href=\"https:\u002F\u002Fhouzez.co\u002F\" rel=\"nofollow ugc\">Houzez\u003C\u002Fa> theme only.\u003C\u002Fp>\n\u003Cp>Using this plugin \u003Cstrong>Houzez\u003C\u002Fstrong> agents can buy membership and pay for listings using \u003Cstrong>WooCommerce\u003C\u002Fstrong> payment gateways.\u003C\u002Fp>\n\u003Cp>This plugin is also translation ready and you can translate it to your language using pot file provided in languages directory.\u003C\u002Fp>\n","Houzez WooCommerce addon for Houzez theme only.",3000,17987,74,"2025-12-31T11:36:00.000Z","6.0",[21,22,165,166,167],"responsive","widget","woocommerce","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhouzez-woo-addon\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhouzez-woo-addon.1.1.2.zip",{"attackSurface":171,"codeSignals":252,"taintFlows":1104,"riskAssessment":1696,"analyzedAt":1713},{"hooks":172,"ajaxHandlers":248,"restRoutes":249,"shortcodes":250,"cronEvents":251,"entryPointCount":78,"unprotectedCount":78},[173,179,184,187,190,193,198,201,204,207,211,215,219,223,227,231,235,240,245],{"type":174,"name":175,"callback":176,"file":177,"line":178},"action","admin_notices","fsrep_license_error_alert","common_functions.php",41,{"type":174,"name":180,"callback":181,"file":182,"line":183},"save_post","fsrep_check_rules","define.php",40,{"type":174,"name":185,"callback":186,"file":182,"line":178},"init","add_fsrep_rules",{"type":174,"name":175,"callback":188,"file":182,"line":189},"fsrep_permalink_warning",254,{"type":174,"name":175,"callback":191,"file":182,"line":192},"fsrep_fopen_warning",265,{"type":194,"name":195,"callback":196,"file":182,"line":197},"filter","wp_footer","fsrep_credits",273,{"type":174,"name":175,"callback":199,"file":182,"line":200},"fsrep_show_welcome",286,{"type":174,"name":175,"callback":202,"file":182,"line":203},"fsrep_upgrade_pro_message",295,{"type":174,"name":175,"callback":205,"file":182,"line":206},"fsrep_directory_warning",336,{"type":194,"name":208,"callback":209,"file":210,"line":131},"the_content","fsrep_content","filters.php",{"type":194,"name":212,"callback":213,"file":210,"line":214},"wp_title","fsrep_title",4,{"type":174,"name":216,"callback":217,"file":218,"line":27},"admin_menu","fsrep_admin_pages","hooks.php",{"type":174,"name":220,"callback":221,"priority":76,"file":218,"line":222},"admin_bar_menu","fsrep_admin_bar",29,{"type":174,"name":224,"callback":225,"file":218,"line":226},"wp_head","fsrep_head",120,{"type":174,"name":228,"callback":229,"file":218,"line":230},"admin_head","fsrep_ahead",391,{"type":174,"name":232,"callback":233,"file":234,"line":27},"admin_init","editor_admin_init","includes\\admin_listings.php",{"type":194,"name":236,"callback":237,"file":238,"line":239},"wp_mail_content_type","fsrep_set_content_type","includes\\listing_contact_form.php",18,{"type":174,"name":241,"callback":242,"file":243,"line":244},"widgets_init","anonymous","widget_local.php",79,{"type":174,"name":241,"callback":242,"file":246,"line":247},"widget_search.php",48,[],[],[],[],{"dangerousFunctions":253,"sqlUsage":259,"outputEscaping":689,"fileOperations":247,"externalRequests":78,"nonceChecks":78,"capabilityChecks":78,"bundledLibraries":1103},[254,257],{"fn":255,"file":243,"line":244,"context":256},"create_function","add_action( 'widgets_init', create_function( '', 'register_widget(\"FSREP_Location_Widget\");' ) );",{"fn":255,"file":246,"line":247,"context":258},"add_action( 'widgets_init', create_function( '', 'register_widget(\"FSREP_Search_Widget\");' ) );",{"prepared":260,"raw":261,"locations":262},6,253,[263,266,268,270,271,273,275,277,279,281,283,285,288,290,292,294,296,298,300,303,305,307,309,311,313,315,317,319,321,323,325,327,329,331,333,335,337,339,341,343,345,347,349,351,353,355,357,359,361,363,365,367,369,371,373,375,376,378,380,382,383,385,387,389,391,393,395,397,399,402,403,405,406,407,408,410,411,413,414,416,418,420,422,424,427,428,429,430,433,434,435,437,439,441,442,444,446,448,450,452,453,455,457,459,461,463,465,467,469,471,473,475,477,479,480,482,483,485,487,489,491,493,495,496,498,500,502,504,506,508,510,512,513,515,517,519,520,522,523,525,527,529,530,532,533,535,536,538,540,541,543,545,547,548,550,552,554,555,556,557,558,559,560,561,564,565,566,567,568,570,573,575,576,578,580,582,584,586,587,589,591,592,593,594,595,596,598,599,600,601,603,604,606,608,609,611,612,613,614,615,616,617,618,619,621,622,623,624,625,627,628,630,631,632,633,634,635,636,637,639,640,641,642,643,644,646,647,648,650,652,654,656,658,659,661,662,664,666,667,669,672,673,675,676,678,679,680,681,682,683,684,686,688],{"file":177,"line":264,"context":265},7,"$wpdb->get_var() with variable interpolation",{"file":177,"line":65,"context":267},"$wpdb->query() with variable interpolation",{"file":177,"line":269,"context":265},73,{"file":177,"line":108,"context":265},{"file":177,"line":272,"context":267},87,{"file":177,"line":274,"context":267},99,{"file":177,"line":276,"context":265},104,{"file":177,"line":278,"context":267},105,{"file":177,"line":280,"context":265},146,{"file":177,"line":282,"context":265},158,{"file":177,"line":284,"context":267},160,{"file":177,"line":286,"context":287},447,"$wpdb->get_row() with variable interpolation",{"file":177,"line":289,"context":287},466,{"file":177,"line":291,"context":287},470,{"file":177,"line":293,"context":287},474,{"file":177,"line":295,"context":265},478,{"file":177,"line":297,"context":287},488,{"file":177,"line":299,"context":265},489,{"file":177,"line":301,"context":302},550,"$wpdb->get_results() with variable interpolation",{"file":177,"line":304,"context":265},566,{"file":177,"line":306,"context":265},568,{"file":177,"line":308,"context":265},570,{"file":177,"line":310,"context":265},624,{"file":177,"line":312,"context":265},630,{"file":177,"line":314,"context":265},636,{"file":177,"line":316,"context":267},642,{"file":177,"line":318,"context":265},643,{"file":177,"line":320,"context":265},644,{"file":177,"line":322,"context":267},661,{"file":177,"line":324,"context":265},662,{"file":177,"line":326,"context":267},663,{"file":177,"line":328,"context":265},669,{"file":177,"line":330,"context":267},677,{"file":177,"line":332,"context":267},678,{"file":177,"line":334,"context":267},681,{"file":177,"line":336,"context":302},682,{"file":177,"line":338,"context":267},687,{"file":177,"line":340,"context":267},696,{"file":177,"line":342,"context":267},706,{"file":177,"line":344,"context":267},709,{"file":177,"line":346,"context":267},803,{"file":177,"line":348,"context":267},897,{"file":177,"line":350,"context":267},898,{"file":177,"line":352,"context":267},899,{"file":177,"line":354,"context":267},900,{"file":177,"line":356,"context":267},901,{"file":177,"line":358,"context":287},1110,{"file":177,"line":360,"context":287},1120,{"file":177,"line":362,"context":287},1130,{"file":177,"line":364,"context":302},1271,{"file":177,"line":366,"context":302},1327,{"file":182,"line":368,"context":265},30,{"file":182,"line":370,"context":265},32,{"file":182,"line":372,"context":265},33,{"file":182,"line":374,"context":265},50,{"file":182,"line":13,"context":265},{"file":182,"line":377,"context":265},59,{"file":182,"line":379,"context":265},60,{"file":182,"line":381,"context":265},65,{"file":182,"line":26,"context":265},{"file":182,"line":384,"context":265},71,{"file":182,"line":386,"context":287},112,{"file":182,"line":388,"context":287},119,{"file":182,"line":390,"context":287},126,{"file":182,"line":392,"context":302},139,{"file":182,"line":394,"context":302},162,{"file":182,"line":396,"context":265},244,{"file":182,"line":398,"context":265},247,{"file":400,"line":401,"context":265},"extensions.php",9,{"file":400,"line":11,"context":265},{"file":400,"line":404,"context":265},19,{"file":400,"line":63,"context":265},{"file":400,"line":222,"context":265},{"file":400,"line":368,"context":265},{"file":210,"line":409,"context":265},45,{"file":210,"line":247,"context":265},{"file":210,"line":412,"context":265},51,{"file":210,"line":392,"context":265},{"file":210,"line":415,"context":265},152,{"file":210,"line":417,"context":265},155,{"file":210,"line":419,"context":265},161,{"file":210,"line":421,"context":265},164,{"file":210,"line":423,"context":265},167,{"file":425,"line":426,"context":265},"fsrep_install.php",16,{"file":425,"line":129,"context":265},{"file":425,"line":239,"context":267},{"file":425,"line":63,"context":265},{"file":431,"line":432,"context":267},"fsrep_install_sql.php",5,{"file":431,"line":374,"context":267},{"file":431,"line":377,"context":267},{"file":431,"line":436,"context":265},69,{"file":431,"line":438,"context":267},81,{"file":431,"line":440,"context":267},116,{"file":431,"line":390,"context":265},{"file":431,"line":443,"context":267},137,{"file":431,"line":445,"context":267},145,{"file":431,"line":447,"context":267},153,{"file":431,"line":449,"context":267},163,{"file":431,"line":451,"context":265},177,{"file":431,"line":398,"context":267},{"file":431,"line":454,"context":265},256,{"file":431,"line":456,"context":267},266,{"file":431,"line":458,"context":267},279,{"file":431,"line":460,"context":267},287,{"file":218,"line":462,"context":265},156,{"file":218,"line":464,"context":287},221,{"file":218,"line":466,"context":267},224,{"file":218,"line":468,"context":287},225,{"file":218,"line":470,"context":287},231,{"file":218,"line":472,"context":265},233,{"file":218,"line":474,"context":267},235,{"file":218,"line":476,"context":287},236,{"file":218,"line":478,"context":287},242,{"file":218,"line":396,"context":265},{"file":218,"line":481,"context":265},245,{"file":218,"line":398,"context":267},{"file":218,"line":484,"context":287},248,{"file":218,"line":486,"context":287},274,{"file":218,"line":488,"context":287},280,{"file":218,"line":490,"context":265},281,{"file":218,"line":492,"context":265},282,{"file":218,"line":494,"context":267},285,{"file":218,"line":200,"context":287},{"file":218,"line":497,"context":287},293,{"file":218,"line":499,"context":265},294,{"file":218,"line":501,"context":267},297,{"file":218,"line":503,"context":287},298,{"file":218,"line":505,"context":287},305,{"file":218,"line":507,"context":267},308,{"file":218,"line":509,"context":287},309,{"file":511,"line":432,"context":302},"includes\\admin_fields.php",{"file":511,"line":401,"context":267},{"file":511,"line":514,"context":265},22,{"file":511,"line":516,"context":267},25,{"file":511,"line":518,"context":302},27,{"file":511,"line":368,"context":267},{"file":511,"line":521,"context":267},31,{"file":511,"line":370,"context":267},{"file":511,"line":524,"context":267},34,{"file":511,"line":526,"context":267},36,{"file":511,"line":528,"context":267},42,{"file":511,"line":409,"context":265},{"file":511,"line":531,"context":265},47,{"file":511,"line":247,"context":267},{"file":511,"line":534,"context":267},49,{"file":511,"line":412,"context":265},{"file":511,"line":537,"context":265},53,{"file":511,"line":539,"context":267},54,{"file":511,"line":65,"context":267},{"file":511,"line":542,"context":302},118,{"file":511,"line":544,"context":265},138,{"file":546,"line":264,"context":267},"includes\\admin_filters.php",{"file":546,"line":142,"context":265},{"file":546,"line":549,"context":302},12,{"file":546,"line":551,"context":267},15,{"file":546,"line":553,"context":267},21,{"file":546,"line":514,"context":267},{"file":546,"line":108,"context":302},{"file":546,"line":445,"context":302},{"file":546,"line":462,"context":302},{"file":546,"line":282,"context":265},{"file":234,"line":239,"context":265},{"file":234,"line":404,"context":287},{"file":562,"line":563,"context":302},"includes\\admin_listings_basic_form.php",57,{"file":562,"line":379,"context":265},{"file":562,"line":26,"context":302},{"file":562,"line":481,"context":265},{"file":562,"line":398,"context":267},{"file":562,"line":569,"context":302},250,{"file":571,"line":572,"context":265},"includes\\admin_listings_form.php",107,{"file":571,"line":574,"context":267},109,{"file":571,"line":386,"context":302},{"file":571,"line":577,"context":302},192,{"file":571,"line":579,"context":265},195,{"file":571,"line":581,"context":302},203,{"file":583,"line":11,"context":267},"includes\\admin_locations.php",{"file":583,"line":585,"context":267},13,{"file":583,"line":426,"context":267},{"file":583,"line":588,"context":302},24,{"file":583,"line":590,"context":267},26,{"file":583,"line":518,"context":302},{"file":583,"line":368,"context":267},{"file":583,"line":521,"context":302},{"file":583,"line":524,"context":267},{"file":583,"line":409,"context":267},{"file":583,"line":597,"context":267},46,{"file":583,"line":247,"context":267},{"file":583,"line":534,"context":267},{"file":583,"line":412,"context":267},{"file":583,"line":602,"context":302},83,{"file":583,"line":119,"context":302},{"file":583,"line":605,"context":302},123,{"file":583,"line":607,"context":302},131,{"file":583,"line":392,"context":302},{"file":610,"line":432,"context":302},"includes\\admin_settings_general.php",{"file":610,"line":130,"context":267},{"file":610,"line":551,"context":267},{"file":610,"line":426,"context":267},{"file":610,"line":129,"context":267},{"file":610,"line":239,"context":267},{"file":610,"line":404,"context":267},{"file":610,"line":63,"context":267},{"file":610,"line":514,"context":267},{"file":610,"line":620,"context":267},23,{"file":610,"line":588,"context":267},{"file":610,"line":516,"context":267},{"file":610,"line":590,"context":267},{"file":610,"line":518,"context":267},{"file":610,"line":626,"context":267},28,{"file":610,"line":222,"context":267},{"file":629,"line":432,"context":302},"includes\\admin_settings_google.php",{"file":629,"line":142,"context":302},{"file":629,"line":549,"context":302},{"file":629,"line":516,"context":267},{"file":629,"line":590,"context":267},{"file":629,"line":518,"context":267},{"file":629,"line":626,"context":267},{"file":629,"line":222,"context":267},{"file":638,"line":131,"context":267},"includes\\admin_settings_info.php",{"file":638,"line":260,"context":267},{"file":638,"line":585,"context":267},{"file":638,"line":130,"context":267},{"file":638,"line":551,"context":267},{"file":638,"line":426,"context":267},{"file":645,"line":131,"context":267},"includes\\admin_settings_tools.php",{"file":645,"line":260,"context":267},{"file":645,"line":585,"context":267},{"file":645,"line":649,"context":265},35,{"file":645,"line":651,"context":265},44,{"file":653,"line":142,"context":287},"includes\\compare.php",{"file":653,"line":655,"context":302},72,{"file":653,"line":657,"context":265},77,{"file":238,"line":597,"context":302},{"file":660,"line":426,"context":302},"search.php",{"file":660,"line":129,"context":287},{"file":660,"line":663,"context":302},38,{"file":660,"line":665,"context":287},39,{"file":660,"line":379,"context":302},{"file":660,"line":668,"context":287},61,{"file":670,"line":671,"context":287},"themes\\default\\listing_details.php",11,{"file":670,"line":269,"context":302},{"file":670,"line":674,"context":302},101,{"file":670,"line":276,"context":302},{"file":670,"line":677,"context":265},115,{"file":243,"line":551,"context":302},{"file":243,"line":129,"context":302},{"file":243,"line":63,"context":302},{"file":243,"line":588,"context":302},{"file":243,"line":626,"context":302},{"file":243,"line":370,"context":302},{"file":685,"line":671,"context":302},"xml\\listingfeed.php",{"file":687,"line":620,"context":265},"xml\\marker_listings.php",{"file":687,"line":521,"context":302},{"escaped":264,"rawEcho":497,"locations":690},[691,694,695,697,698,700,702,703,704,706,707,709,711,713,714,716,718,720,721,722,724,725,727,728,730,732,734,736,738,740,742,744,746,748,750,752,754,756,758,760,762,764,766,768,770,772,774,776,778,780,782,784,786,788,790,792,794,796,798,800,802,804,806,808,810,812,813,814,816,817,819,821,823,824,826,828,829,831,832,834,836,838,839,841,843,845,846,847,848,850,852,853,854,855,857,858,860,862,864,866,867,869,871,872,873,874,876,878,879,880,881,882,883,884,885,886,888,889,891,893,894,896,898,899,900,901,903,904,905,907,909,910,911,912,913,914,915,917,918,919,921,923,924,926,928,929,931,933,934,935,937,939,941,943,944,945,946,947,948,949,950,951,952,953,954,955,956,957,958,959,960,961,962,964,966,968,970,972,973,975,976,977,978,979,980,981,982,983,985,986,987,988,989,991,992,994,995,996,997,999,1001,1002,1003,1005,1006,1007,1009,1010,1011,1012,1013,1014,1015,1016,1017,1018,1019,1020,1022,1023,1024,1025,1026,1027,1028,1029,1030,1031,1032,1033,1035,1036,1037,1038,1039,1040,1041,1042,1044,1045,1046,1047,1048,1049,1050,1051,1052,1054,1056,1057,1060,1061,1062,1063,1064,1065,1066,1067,1068,1069,1070,1071,1072,1073,1074,1075,1076,1077,1078,1079,1080,1081,1082,1083,1084,1085,1086,1087,1088,1089,1090,1091,1092,1093,1094,1095,1096,1097,1098,1099,1100,1101,1102],{"file":177,"line":692,"context":693},220,"raw output",{"file":177,"line":468,"context":693},{"file":177,"line":696,"context":693},230,{"file":177,"line":474,"context":693},{"file":177,"line":699,"context":693},240,{"file":177,"line":701,"context":693},241,{"file":177,"line":701,"context":693},{"file":177,"line":398,"context":693},{"file":177,"line":705,"context":693},251,{"file":177,"line":454,"context":693},{"file":177,"line":708,"context":693},258,{"file":177,"line":710,"context":693},263,{"file":177,"line":712,"context":693},264,{"file":177,"line":712,"context":693},{"file":177,"line":715,"context":693},269,{"file":177,"line":717,"context":693},272,{"file":177,"line":719,"context":693},277,{"file":177,"line":492,"context":693},{"file":177,"line":494,"context":693},{"file":177,"line":723,"context":693},291,{"file":177,"line":503,"context":693},{"file":177,"line":726,"context":693},303,{"file":177,"line":509,"context":693},{"file":177,"line":729,"context":693},312,{"file":177,"line":731,"context":693},315,{"file":177,"line":733,"context":693},316,{"file":177,"line":735,"context":693},321,{"file":177,"line":737,"context":693},330,{"file":177,"line":739,"context":693},351,{"file":177,"line":741,"context":693},815,{"file":177,"line":743,"context":693},817,{"file":177,"line":745,"context":693},863,{"file":177,"line":747,"context":693},865,{"file":177,"line":749,"context":693},872,{"file":177,"line":751,"context":693},885,{"file":177,"line":753,"context":693},886,{"file":177,"line":755,"context":693},909,{"file":177,"line":757,"context":693},911,{"file":177,"line":759,"context":693},925,{"file":177,"line":761,"context":693},968,{"file":177,"line":763,"context":693},975,{"file":177,"line":765,"context":693},976,{"file":177,"line":767,"context":693},984,{"file":177,"line":769,"context":693},1000,{"file":177,"line":771,"context":693},1001,{"file":177,"line":773,"context":693},1003,{"file":177,"line":775,"context":693},1005,{"file":177,"line":777,"context":693},1006,{"file":177,"line":779,"context":693},1007,{"file":177,"line":781,"context":693},1009,{"file":177,"line":783,"context":693},1011,{"file":177,"line":785,"context":693},1013,{"file":177,"line":787,"context":693},1016,{"file":177,"line":789,"context":693},1019,{"file":177,"line":791,"context":693},1021,{"file":177,"line":793,"context":693},1030,{"file":177,"line":795,"context":693},1181,{"file":177,"line":797,"context":693},1184,{"file":177,"line":799,"context":693},1416,{"file":177,"line":801,"context":693},1427,{"file":177,"line":803,"context":693},1452,{"file":177,"line":805,"context":693},1493,{"file":177,"line":807,"context":693},1546,{"file":177,"line":809,"context":693},1557,{"file":177,"line":811,"context":693},1597,{"file":182,"line":458,"context":693},{"file":218,"line":605,"context":693},{"file":218,"line":815,"context":693},124,{"file":218,"line":390,"context":693},{"file":218,"line":818,"context":693},127,{"file":218,"line":820,"context":693},129,{"file":218,"line":822,"context":693},130,{"file":218,"line":607,"context":693},{"file":218,"line":825,"context":693},133,{"file":218,"line":827,"context":693},135,{"file":218,"line":421,"context":693},{"file":218,"line":830,"context":693},338,{"file":218,"line":830,"context":693},{"file":218,"line":833,"context":693},339,{"file":218,"line":835,"context":693},341,{"file":218,"line":837,"context":693},354,{"file":218,"line":837,"context":693},{"file":218,"line":840,"context":693},394,{"file":218,"line":842,"context":693},396,{"file":218,"line":844,"context":693},398,{"file":511,"line":668,"context":693},{"file":511,"line":381,"context":693},{"file":511,"line":269,"context":693},{"file":511,"line":849,"context":693},96,{"file":511,"line":851,"context":693},128,{"file":511,"line":820,"context":693},{"file":511,"line":822,"context":693},{"file":511,"line":607,"context":693},{"file":511,"line":856,"context":693},132,{"file":511,"line":825,"context":693},{"file":511,"line":859,"context":693},134,{"file":511,"line":861,"context":693},136,{"file":511,"line":863,"context":693},140,{"file":511,"line":865,"context":693},142,{"file":511,"line":445,"context":693},{"file":511,"line":868,"context":693},149,{"file":511,"line":870,"context":693},150,{"file":511,"line":282,"context":693},{"file":511,"line":284,"context":693},{"file":511,"line":421,"context":693},{"file":511,"line":875,"context":693},166,{"file":511,"line":877,"context":693},174,{"file":546,"line":626,"context":693},{"file":546,"line":524,"context":693},{"file":546,"line":651,"context":693},{"file":546,"line":120,"context":693},{"file":546,"line":65,"context":693},{"file":546,"line":13,"context":693},{"file":546,"line":269,"context":693},{"file":546,"line":657,"context":693},{"file":546,"line":887,"context":693},78,{"file":546,"line":438,"context":693},{"file":546,"line":890,"context":693},82,{"file":546,"line":892,"context":693},84,{"file":546,"line":574,"context":693},{"file":546,"line":895,"context":693},111,{"file":546,"line":897,"context":693},121,{"file":546,"line":390,"context":693},{"file":546,"line":443,"context":693},{"file":546,"line":870,"context":693},{"file":546,"line":902,"context":693},151,{"file":546,"line":415,"context":693},{"file":546,"line":447,"context":693},{"file":546,"line":906,"context":693},154,{"file":546,"line":908,"context":693},159,{"file":546,"line":421,"context":693},{"file":562,"line":214,"context":693},{"file":562,"line":260,"context":693},{"file":562,"line":588,"context":693},{"file":562,"line":518,"context":693},{"file":562,"line":534,"context":693},{"file":562,"line":916,"context":693},94,{"file":562,"line":388,"context":693},{"file":562,"line":861,"context":693},{"file":562,"line":920,"context":693},188,{"file":562,"line":922,"context":693},193,{"file":562,"line":579,"context":693},{"file":562,"line":925,"context":693},204,{"file":562,"line":927,"context":693},219,{"file":562,"line":466,"context":693},{"file":562,"line":930,"context":693},226,{"file":562,"line":932,"context":693},228,{"file":562,"line":470,"context":693},{"file":562,"line":699,"context":693},{"file":562,"line":936,"context":693},252,{"file":562,"line":938,"context":693},257,{"file":562,"line":940,"context":693},260,{"file":562,"line":942,"context":693},275,{"file":562,"line":719,"context":693},{"file":571,"line":260,"context":693},{"file":571,"line":549,"context":693},{"file":571,"line":551,"context":693},{"file":571,"line":129,"context":693},{"file":571,"line":553,"context":693},{"file":571,"line":553,"context":693},{"file":571,"line":514,"context":693},{"file":571,"line":514,"context":693},{"file":571,"line":516,"context":693},{"file":571,"line":372,"context":693},{"file":571,"line":524,"context":693},{"file":571,"line":526,"context":693},{"file":571,"line":534,"context":693},{"file":571,"line":65,"context":693},{"file":571,"line":563,"context":693},{"file":571,"line":64,"context":693},{"file":571,"line":438,"context":693},{"file":571,"line":119,"context":693},{"file":571,"line":963,"context":693},88,{"file":571,"line":965,"context":693},90,{"file":571,"line":967,"context":693},93,{"file":571,"line":969,"context":693},102,{"file":571,"line":971,"context":693},114,{"file":571,"line":388,"context":693},{"file":571,"line":974,"context":693},122,{"file":571,"line":820,"context":693},{"file":571,"line":607,"context":693},{"file":571,"line":607,"context":693},{"file":571,"line":856,"context":693},{"file":571,"line":856,"context":693},{"file":571,"line":825,"context":693},{"file":571,"line":825,"context":693},{"file":571,"line":392,"context":693},{"file":571,"line":984,"context":693},141,{"file":571,"line":984,"context":693},{"file":571,"line":984,"context":693},{"file":571,"line":865,"context":693},{"file":571,"line":865,"context":693},{"file":571,"line":990,"context":693},143,{"file":571,"line":990,"context":693},{"file":571,"line":993,"context":693},144,{"file":571,"line":993,"context":693},{"file":571,"line":908,"context":693},{"file":571,"line":394,"context":693},{"file":571,"line":998,"context":693},179,{"file":571,"line":1000,"context":693},184,{"file":571,"line":470,"context":693},{"file":583,"line":514,"context":693},{"file":583,"line":1004,"context":693},64,{"file":583,"line":438,"context":693},{"file":583,"line":108,"context":693},{"file":583,"line":1008,"context":693},89,{"file":583,"line":916,"context":693},{"file":583,"line":278,"context":693},{"file":583,"line":390,"context":693},{"file":583,"line":818,"context":693},{"file":583,"line":851,"context":693},{"file":583,"line":827,"context":693},{"file":583,"line":861,"context":693},{"file":583,"line":443,"context":693},{"file":583,"line":865,"context":693},{"file":583,"line":990,"context":693},{"file":583,"line":993,"context":693},{"file":1021,"line":521,"context":693},"includes\\admin_settings.php",{"file":1021,"line":651,"context":693},{"file":1021,"line":409,"context":693},{"file":1021,"line":597,"context":693},{"file":1021,"line":531,"context":693},{"file":1021,"line":247,"context":693},{"file":1021,"line":534,"context":693},{"file":1021,"line":374,"context":693},{"file":1021,"line":412,"context":693},{"file":1021,"line":120,"context":693},{"file":1021,"line":64,"context":693},{"file":1021,"line":26,"context":693},{"file":1021,"line":1034,"context":693},70,{"file":1021,"line":655,"context":693},{"file":1021,"line":161,"context":693},{"file":610,"line":528,"context":693},{"file":610,"line":537,"context":693},{"file":610,"line":602,"context":693},{"file":629,"line":663,"context":693},{"file":638,"line":651,"context":693},{"file":638,"line":1043,"context":693},106,{"file":638,"line":226,"context":693},{"file":645,"line":514,"context":693},{"file":645,"line":528,"context":693},{"file":645,"line":120,"context":693},{"file":645,"line":64,"context":693},{"file":645,"line":26,"context":693},{"file":645,"line":1034,"context":693},{"file":645,"line":161,"context":693},{"file":1053,"line":27,"context":693},"includes\\listings.php",{"file":1055,"line":264,"context":693},"includes\\newsbar.php",{"file":1055,"line":521,"context":693},{"file":1058,"line":1059,"context":693},"js\\ajax.php",209,{"file":660,"line":63,"context":693},{"file":660,"line":514,"context":693},{"file":660,"line":590,"context":693},{"file":660,"line":222,"context":693},{"file":660,"line":528,"context":693},{"file":660,"line":651,"context":693},{"file":660,"line":247,"context":693},{"file":660,"line":412,"context":693},{"file":660,"line":1004,"context":693},{"file":660,"line":64,"context":693},{"file":660,"line":436,"context":693},{"file":660,"line":655,"context":693},{"file":243,"line":671,"context":693},{"file":243,"line":549,"context":693},{"file":243,"line":404,"context":693},{"file":243,"line":590,"context":693},{"file":243,"line":524,"context":693},{"file":243,"line":247,"context":693},{"file":243,"line":384,"context":693},{"file":243,"line":384,"context":693},{"file":243,"line":384,"context":693},{"file":243,"line":384,"context":693},{"file":243,"line":655,"context":693},{"file":243,"line":655,"context":693},{"file":243,"line":655,"context":693},{"file":243,"line":655,"context":693},{"file":246,"line":671,"context":693},{"file":246,"line":549,"context":693},{"file":246,"line":63,"context":693},{"file":246,"line":514,"context":693},{"file":246,"line":178,"context":693},{"file":246,"line":178,"context":693},{"file":246,"line":178,"context":693},{"file":246,"line":178,"context":693},{"file":685,"line":130,"context":693},{"file":687,"line":602,"context":693},{"file":687,"line":892,"context":693},{"file":687,"line":108,"context":693},{"file":687,"line":119,"context":693},{"file":687,"line":272,"context":693},{"file":687,"line":963,"context":693},{"file":687,"line":1008,"context":693},{"file":687,"line":965,"context":693},[],[1105,1131,1141,1224,1280,1306,1326,1343,1358,1372,1415,1503,1519,1533,1598,1623,1644,1653,1683],{"entryPoint":1106,"graph":1107,"unsanitizedCount":27,"severity":39},"fsrep_listing_manager (common_functions.php:904)",{"nodes":1108,"edges":1126},[1109,1113,1118,1120,1124],{"id":1110,"type":1111,"label":1112,"file":177,"line":759},"n0","source","$_GET['hid']",{"id":1114,"type":1115,"label":1116,"file":177,"line":759,"wp_function":1117},"n1","sink","echo() [XSS]","echo",{"id":1119,"type":1111,"label":1112,"file":177,"line":759},"n2",{"id":1121,"type":1122,"label":1123,"file":177,"line":759},"n3","transform","→ fsrep_listings_update()",{"id":1125,"type":1115,"label":1116,"file":177,"line":747,"wp_function":1117},"n4",[1127,1129,1130],{"from":1110,"to":1114,"sanitized":1128},false,{"from":1119,"to":1121,"sanitized":1128},{"from":1121,"to":1125,"sanitized":1128},{"entryPoint":1132,"graph":1133,"unsanitizedCount":28,"severity":1140},"\u003Cajax> (js\\ajax.php:0)",{"nodes":1134,"edges":1138},[1135,1137],{"id":1110,"type":1111,"label":1136,"file":1058,"line":27},"$_SERVER",{"id":1114,"type":1115,"label":1116,"file":1058,"line":1059,"wp_function":1117},[1139],{"from":1110,"to":1114,"sanitized":1128},"low",{"entryPoint":1142,"graph":1143,"unsanitizedCount":549,"severity":1223},"fsrep_listings_update (common_functions.php:595)",{"nodes":1144,"edges":1209},[1145,1147,1150,1152,1153,1155,1157,1160,1164,1167,1169,1172,1174,1177,1179,1183,1185,1188,1190,1192,1194,1196,1198,1201,1204],{"id":1110,"type":1111,"label":1146,"file":177,"line":310},"$_POST['listing_address_country']",{"id":1114,"type":1115,"label":1148,"file":177,"line":310,"wp_function":1149},"get_var() [SQLi]","get_var",{"id":1119,"type":1111,"label":1151,"file":177,"line":312},"$_POST['listing_address_province']",{"id":1121,"type":1115,"label":1148,"file":177,"line":312,"wp_function":1149},{"id":1125,"type":1111,"label":1154,"file":177,"line":314},"$_POST['listing_address_city']",{"id":1156,"type":1115,"label":1148,"file":177,"line":314,"wp_function":1149},"n5",{"id":1158,"type":1111,"label":1159,"file":177,"line":316},"n6","$_POST['listing_address_city2']",{"id":1161,"type":1115,"label":1162,"file":177,"line":316,"wp_function":1163},"n7","query() [SQLi]","query",{"id":1165,"type":1111,"label":1166,"file":177,"line":322},"n8","$_POST['listing_label']",{"id":1168,"type":1115,"label":1162,"file":177,"line":322,"wp_function":1163},"n9",{"id":1170,"type":1111,"label":1171,"file":177,"line":330},"n10","$_POST['listing_price']",{"id":1173,"type":1115,"label":1162,"file":177,"line":330,"wp_function":1163},"n11",{"id":1175,"type":1111,"label":1176,"file":177,"line":338},"n12","$_POST[?]",{"id":1178,"type":1115,"label":1162,"file":177,"line":338,"wp_function":1163},"n13",{"id":1180,"type":1111,"label":1181,"file":177,"line":1182},"n14","$_POST",704,{"id":1184,"type":1115,"label":1162,"file":177,"line":342,"wp_function":1163},"n15",{"id":1186,"type":1111,"label":1187,"file":177,"line":344},"n16","$_POST['listing_long']",{"id":1189,"type":1115,"label":1162,"file":177,"line":344,"wp_function":1163},"n17",{"id":1191,"type":1111,"label":1146,"file":177,"line":751},"n18",{"id":1193,"type":1115,"label":1116,"file":177,"line":751,"wp_function":1117},"n19",{"id":1195,"type":1111,"label":1151,"file":177,"line":753},"n20",{"id":1197,"type":1115,"label":1116,"file":177,"line":753,"wp_function":1117},"n21",{"id":1199,"type":1111,"label":1200,"file":177,"line":1182},"n22","$_POST['listing_address_number']",{"id":1202,"type":1122,"label":1203,"file":177,"line":1182},"n23","→ google_geocoder()",{"id":1205,"type":1115,"label":1206,"file":177,"line":1207,"wp_function":1208},"n24","file_get_contents() [SSRF\u002FLFI]",438,"file_get_contents",[1210,1211,1212,1213,1214,1215,1216,1217,1218,1219,1220,1221,1222],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"from":1158,"to":1161,"sanitized":1128},{"from":1165,"to":1168,"sanitized":1128},{"from":1170,"to":1173,"sanitized":1128},{"from":1175,"to":1178,"sanitized":1128},{"from":1180,"to":1184,"sanitized":1128},{"from":1186,"to":1189,"sanitized":1128},{"from":1191,"to":1193,"sanitized":1128},{"from":1195,"to":1197,"sanitized":1128},{"from":1199,"to":1202,"sanitized":1128},{"from":1202,"to":1205,"sanitized":1128},"high",{"entryPoint":1225,"graph":1226,"unsanitizedCount":130,"severity":1223},"\u003Ccommon_functions> (common_functions.php:0)",{"nodes":1227,"edges":1263},[1228,1229,1230,1231,1232,1233,1234,1235,1236,1237,1238,1239,1240,1241,1242,1243,1244,1245,1246,1247,1248,1249,1250,1251,1252,1253,1255,1257,1259,1261],{"id":1110,"type":1111,"label":1146,"file":177,"line":310},{"id":1114,"type":1115,"label":1148,"file":177,"line":310,"wp_function":1149},{"id":1119,"type":1111,"label":1151,"file":177,"line":312},{"id":1121,"type":1115,"label":1148,"file":177,"line":312,"wp_function":1149},{"id":1125,"type":1111,"label":1154,"file":177,"line":314},{"id":1156,"type":1115,"label":1148,"file":177,"line":314,"wp_function":1149},{"id":1158,"type":1111,"label":1159,"file":177,"line":316},{"id":1161,"type":1115,"label":1162,"file":177,"line":316,"wp_function":1163},{"id":1165,"type":1111,"label":1166,"file":177,"line":322},{"id":1168,"type":1115,"label":1162,"file":177,"line":322,"wp_function":1163},{"id":1170,"type":1111,"label":1171,"file":177,"line":330},{"id":1173,"type":1115,"label":1162,"file":177,"line":330,"wp_function":1163},{"id":1175,"type":1111,"label":1176,"file":177,"line":338},{"id":1178,"type":1115,"label":1162,"file":177,"line":338,"wp_function":1163},{"id":1180,"type":1111,"label":1181,"file":177,"line":1182},{"id":1184,"type":1115,"label":1162,"file":177,"line":342,"wp_function":1163},{"id":1186,"type":1111,"label":1187,"file":177,"line":344},{"id":1189,"type":1115,"label":1162,"file":177,"line":344,"wp_function":1163},{"id":1191,"type":1111,"label":1146,"file":177,"line":751},{"id":1193,"type":1115,"label":1116,"file":177,"line":751,"wp_function":1117},{"id":1195,"type":1111,"label":1151,"file":177,"line":753},{"id":1197,"type":1115,"label":1116,"file":177,"line":753,"wp_function":1117},{"id":1199,"type":1111,"label":1112,"file":177,"line":759},{"id":1202,"type":1115,"label":1116,"file":177,"line":759,"wp_function":1117},{"id":1205,"type":1111,"label":1200,"file":177,"line":1182},{"id":1254,"type":1122,"label":1203,"file":177,"line":1182},"n25",{"id":1256,"type":1115,"label":1206,"file":177,"line":1207,"wp_function":1208},"n26",{"id":1258,"type":1111,"label":1112,"file":177,"line":759},"n27",{"id":1260,"type":1122,"label":1123,"file":177,"line":759},"n28",{"id":1262,"type":1115,"label":1116,"file":177,"line":747,"wp_function":1117},"n29",[1264,1265,1266,1267,1268,1269,1270,1271,1272,1273,1274,1275,1276,1277,1278,1279],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"from":1158,"to":1161,"sanitized":1128},{"from":1165,"to":1168,"sanitized":1128},{"from":1170,"to":1173,"sanitized":1128},{"from":1175,"to":1178,"sanitized":1128},{"from":1180,"to":1184,"sanitized":1128},{"from":1186,"to":1189,"sanitized":1128},{"from":1191,"to":1193,"sanitized":1128},{"from":1195,"to":1197,"sanitized":1128},{"from":1199,"to":1202,"sanitized":1128},{"from":1205,"to":1254,"sanitized":1128},{"from":1254,"to":1256,"sanitized":1128},{"from":1258,"to":1260,"sanitized":1128},{"from":1260,"to":1262,"sanitized":1128},{"entryPoint":1281,"graph":1282,"unsanitizedCount":401,"severity":1223},"\u003Cdefine> (define.php:0)",{"nodes":1283,"edges":1301},[1284,1286,1287,1289,1292,1294,1297,1300],{"id":1110,"type":1111,"label":1285,"file":182,"line":412},"$_SERVER (x3)",{"id":1114,"type":1115,"label":1148,"file":182,"line":381,"wp_function":1149},{"id":1119,"type":1111,"label":1288,"file":182,"line":386},"$_POST[?] (x3)",{"id":1121,"type":1115,"label":1290,"file":182,"line":386,"wp_function":1291},"get_row() [SQLi]","get_row",{"id":1125,"type":1111,"label":1293,"file":182,"line":280},"$_POST (x2)",{"id":1156,"type":1115,"label":1295,"file":182,"line":417,"wp_function":1296},"get_results() [SQLi]","get_results",{"id":1158,"type":1111,"label":1298,"file":182,"line":1299},"$_GET",243,{"id":1161,"type":1115,"label":1148,"file":182,"line":396,"wp_function":1149},[1302,1303,1304,1305],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"from":1158,"to":1161,"sanitized":1128},{"entryPoint":1307,"graph":1308,"unsanitizedCount":401,"severity":1223},"fsrep_fields (includes\\admin_fields.php:12)",{"nodes":1309,"edges":1321},[1310,1312,1313,1314,1315,1317,1318,1320],{"id":1110,"type":1111,"label":1311,"file":511,"line":516},"$_POST['nfieldn']",{"id":1114,"type":1115,"label":1162,"file":511,"line":516,"wp_function":1163},{"id":1119,"type":1111,"label":1288,"file":511,"line":368},{"id":1121,"type":1115,"label":1162,"file":511,"line":368,"wp_function":1163},{"id":1125,"type":1111,"label":1316,"file":511,"line":528},"$_GET['fid'] (x3)",{"id":1156,"type":1115,"label":1162,"file":511,"line":528,"wp_function":1163},{"id":1158,"type":1111,"label":1319,"file":511,"line":409},"$_GET['fid'] (x2)",{"id":1161,"type":1115,"label":1148,"file":511,"line":409,"wp_function":1149},[1322,1323,1324,1325],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"from":1158,"to":1161,"sanitized":1128},{"entryPoint":1327,"graph":1328,"unsanitizedCount":401,"severity":1223},"\u003Cadmin_fields> (includes\\admin_fields.php:0)",{"nodes":1329,"edges":1338},[1330,1331,1332,1333,1334,1335,1336,1337],{"id":1110,"type":1111,"label":1311,"file":511,"line":516},{"id":1114,"type":1115,"label":1162,"file":511,"line":516,"wp_function":1163},{"id":1119,"type":1111,"label":1288,"file":511,"line":368},{"id":1121,"type":1115,"label":1162,"file":511,"line":368,"wp_function":1163},{"id":1125,"type":1111,"label":1316,"file":511,"line":528},{"id":1156,"type":1115,"label":1162,"file":511,"line":528,"wp_function":1163},{"id":1158,"type":1111,"label":1319,"file":511,"line":409},{"id":1161,"type":1115,"label":1148,"file":511,"line":409,"wp_function":1149},[1339,1340,1341,1342],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"from":1158,"to":1161,"sanitized":1128},{"entryPoint":1344,"graph":1345,"unsanitizedCount":214,"severity":1223},"fsrep_filters (includes\\admin_filters.php:2)",{"nodes":1346,"edges":1354},[1347,1349,1350,1351,1352,1353],{"id":1110,"type":1111,"label":1348,"file":546,"line":264},"$_POST['filter_name']",{"id":1114,"type":1115,"label":1162,"file":546,"line":264,"wp_function":1163},{"id":1119,"type":1111,"label":1176,"file":546,"line":551},{"id":1121,"type":1115,"label":1162,"file":546,"line":551,"wp_function":1163},{"id":1125,"type":1111,"label":1319,"file":546,"line":553},{"id":1156,"type":1115,"label":1162,"file":546,"line":553,"wp_function":1163},[1355,1356,1357],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"entryPoint":1359,"graph":1360,"unsanitizedCount":214,"severity":1223},"\u003Cadmin_filters> (includes\\admin_filters.php:0)",{"nodes":1361,"edges":1368},[1362,1363,1364,1365,1366,1367],{"id":1110,"type":1111,"label":1348,"file":546,"line":264},{"id":1114,"type":1115,"label":1162,"file":546,"line":264,"wp_function":1163},{"id":1119,"type":1111,"label":1176,"file":546,"line":551},{"id":1121,"type":1115,"label":1162,"file":546,"line":551,"wp_function":1163},{"id":1125,"type":1111,"label":1319,"file":546,"line":553},{"id":1156,"type":1115,"label":1162,"file":546,"line":553,"wp_function":1163},[1369,1370,1371],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"entryPoint":1373,"graph":1374,"unsanitizedCount":549,"severity":1223},"\u003Cadmin_listings_basic_form> (includes\\admin_listings_basic_form.php:0)",{"nodes":1375,"edges":1402},[1376,1377,1378,1380,1381,1383,1384,1386,1387,1389,1390,1391,1392,1393,1395,1396,1397,1398,1399,1400,1401],{"id":1110,"type":1111,"label":1166,"file":562,"line":588},{"id":1114,"type":1115,"label":1116,"file":562,"line":588,"wp_function":1117},{"id":1119,"type":1111,"label":1379,"file":562,"line":379},"$_POST['listing_id']",{"id":1121,"type":1115,"label":1148,"file":562,"line":379,"wp_function":1149},{"id":1125,"type":1111,"label":1382,"file":562,"line":26},"$_POST['listing_id'] (x2)",{"id":1156,"type":1115,"label":1295,"file":562,"line":26,"wp_function":1296},{"id":1158,"type":1111,"label":1385,"file":562,"line":922},"$_POST['listing_id'] (x3)",{"id":1161,"type":1115,"label":1116,"file":562,"line":922,"wp_function":1117},{"id":1165,"type":1111,"label":1388,"file":562,"line":481},"$_GET['did']",{"id":1168,"type":1115,"label":1148,"file":562,"line":481,"wp_function":1149},{"id":1170,"type":1111,"label":1388,"file":562,"line":398},{"id":1173,"type":1115,"label":1162,"file":562,"line":398,"wp_function":1163},{"id":1175,"type":1111,"label":1146,"file":562,"line":665},{"id":1178,"type":1122,"label":1394,"file":562,"line":665},"→ fsrep_print_admin_selectbox()",{"id":1180,"type":1115,"label":1116,"file":177,"line":701,"wp_function":1117},{"id":1184,"type":1111,"label":1151,"file":562,"line":183},{"id":1186,"type":1122,"label":1394,"file":562,"line":183},{"id":1189,"type":1115,"label":1116,"file":177,"line":701,"wp_function":1117},{"id":1191,"type":1111,"label":1154,"file":562,"line":178},{"id":1193,"type":1122,"label":1394,"file":562,"line":178},{"id":1195,"type":1115,"label":1116,"file":177,"line":701,"wp_function":1117},[1403,1404,1405,1406,1407,1408,1409,1410,1411,1412,1413,1414],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"from":1158,"to":1161,"sanitized":1128},{"from":1165,"to":1168,"sanitized":1128},{"from":1170,"to":1173,"sanitized":1128},{"from":1175,"to":1178,"sanitized":1128},{"from":1178,"to":1180,"sanitized":1128},{"from":1184,"to":1186,"sanitized":1128},{"from":1186,"to":1189,"sanitized":1128},{"from":1191,"to":1193,"sanitized":1128},{"from":1193,"to":1195,"sanitized":1128},{"entryPoint":1416,"graph":1417,"unsanitizedCount":514,"severity":1223},"\u003Cadmin_listings_form> (includes\\admin_listings_form.php:0)",{"nodes":1418,"edges":1480},[1419,1421,1422,1424,1425,1427,1428,1429,1430,1431,1432,1433,1434,1436,1437,1439,1440,1442,1443,1444,1445,1447,1448,1450,1451,1452,1453,1454,1455,1456,1458,1460,1462,1464,1466,1469,1471,1473,1476,1478],{"id":1110,"type":1111,"label":1420,"file":571,"line":553},"$_POST['last_updated']",{"id":1114,"type":1115,"label":1116,"file":571,"line":553,"wp_function":1117},{"id":1119,"type":1111,"label":1423,"file":571,"line":514},"$_POST['date_listed']",{"id":1121,"type":1115,"label":1116,"file":571,"line":514,"wp_function":1117},{"id":1125,"type":1111,"label":1426,"file":571,"line":372},"$_POST['listing_id'] (x4)",{"id":1156,"type":1115,"label":1116,"file":571,"line":372,"wp_function":1117},{"id":1158,"type":1111,"label":1388,"file":571,"line":572},{"id":1161,"type":1115,"label":1148,"file":571,"line":572,"wp_function":1149},{"id":1165,"type":1111,"label":1388,"file":571,"line":574},{"id":1168,"type":1115,"label":1162,"file":571,"line":574,"wp_function":1163},{"id":1170,"type":1111,"label":1382,"file":571,"line":386},{"id":1173,"type":1115,"label":1295,"file":571,"line":386,"wp_function":1296},{"id":1175,"type":1111,"label":1435,"file":571,"line":607},"$_POST['listing_virtual_tour']",{"id":1178,"type":1115,"label":1116,"file":571,"line":607,"wp_function":1117},{"id":1180,"type":1111,"label":1438,"file":571,"line":856},"$_POST['listing_slideshow']",{"id":1184,"type":1115,"label":1116,"file":571,"line":856,"wp_function":1117},{"id":1186,"type":1111,"label":1441,"file":571,"line":825},"$_POST['listing_video']",{"id":1189,"type":1115,"label":1116,"file":571,"line":825,"wp_function":1117},{"id":1191,"type":1111,"label":1187,"file":571,"line":865},{"id":1193,"type":1115,"label":1116,"file":571,"line":865,"wp_function":1117},{"id":1195,"type":1111,"label":1446,"file":571,"line":990},"$_POST['listing_lat']",{"id":1197,"type":1115,"label":1116,"file":571,"line":990,"wp_function":1117},{"id":1199,"type":1111,"label":1449,"file":571,"line":993},"$_POST['listing_zoom']",{"id":1202,"type":1115,"label":1116,"file":571,"line":993,"wp_function":1117},{"id":1205,"type":1111,"label":1166,"file":571,"line":908},{"id":1254,"type":1115,"label":1116,"file":571,"line":908,"wp_function":1117},{"id":1256,"type":1111,"label":1379,"file":571,"line":579},{"id":1258,"type":1115,"label":1148,"file":571,"line":579,"wp_function":1149},{"id":1260,"type":1111,"label":1379,"file":571,"line":372},{"id":1262,"type":1122,"label":1457,"file":571,"line":372},"→ fsrep_listing_url_gen()",{"id":1459,"type":1115,"label":1290,"file":177,"line":297,"wp_function":1291},"n30",{"id":1461,"type":1111,"label":1146,"file":571,"line":877},"n31",{"id":1463,"type":1122,"label":1394,"file":571,"line":877},"n32",{"id":1465,"type":1115,"label":1116,"file":177,"line":701,"wp_function":1117},"n33",{"id":1467,"type":1111,"label":1151,"file":571,"line":1468},"n34",175,{"id":1470,"type":1122,"label":1394,"file":571,"line":1468},"n35",{"id":1472,"type":1115,"label":1116,"file":177,"line":701,"wp_function":1117},"n36",{"id":1474,"type":1111,"label":1154,"file":571,"line":1475},"n37",176,{"id":1477,"type":1122,"label":1394,"file":571,"line":1475},"n38",{"id":1479,"type":1115,"label":1116,"file":177,"line":701,"wp_function":1117},"n39",[1481,1482,1483,1484,1485,1486,1487,1488,1489,1490,1491,1492,1493,1494,1495,1496,1497,1498,1499,1500,1501,1502],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"from":1158,"to":1161,"sanitized":1128},{"from":1165,"to":1168,"sanitized":1128},{"from":1170,"to":1173,"sanitized":1128},{"from":1175,"to":1178,"sanitized":1128},{"from":1180,"to":1184,"sanitized":1128},{"from":1186,"to":1189,"sanitized":1128},{"from":1191,"to":1193,"sanitized":1128},{"from":1195,"to":1197,"sanitized":1128},{"from":1199,"to":1202,"sanitized":1128},{"from":1205,"to":1254,"sanitized":1128},{"from":1256,"to":1258,"sanitized":1128},{"from":1260,"to":1262,"sanitized":1128},{"from":1262,"to":1459,"sanitized":1128},{"from":1461,"to":1463,"sanitized":1128},{"from":1463,"to":1465,"sanitized":1128},{"from":1467,"to":1470,"sanitized":1128},{"from":1470,"to":1472,"sanitized":1128},{"from":1474,"to":1477,"sanitized":1128},{"from":1477,"to":1479,"sanitized":1128},{"entryPoint":1504,"graph":1505,"unsanitizedCount":671,"severity":1223},"fsrep_local (includes\\admin_locations.php:2)",{"nodes":1506,"edges":1515},[1507,1509,1510,1511,1512,1514],{"id":1110,"type":1111,"label":1508,"file":583,"line":11},"$_POST['localname'] (x3)",{"id":1114,"type":1115,"label":1162,"file":583,"line":11,"wp_function":1163},{"id":1119,"type":1111,"label":1288,"file":583,"line":590},{"id":1121,"type":1115,"label":1162,"file":583,"line":590,"wp_function":1163},{"id":1125,"type":1111,"label":1513,"file":583,"line":409},"$_GET['lid'] (x5)",{"id":1156,"type":1115,"label":1162,"file":583,"line":409,"wp_function":1163},[1516,1517,1518],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"entryPoint":1520,"graph":1521,"unsanitizedCount":671,"severity":1223},"\u003Cadmin_locations> (includes\\admin_locations.php:0)",{"nodes":1522,"edges":1529},[1523,1524,1525,1526,1527,1528],{"id":1110,"type":1111,"label":1508,"file":583,"line":11},{"id":1114,"type":1115,"label":1162,"file":583,"line":11,"wp_function":1163},{"id":1119,"type":1111,"label":1288,"file":583,"line":590},{"id":1121,"type":1115,"label":1162,"file":583,"line":590,"wp_function":1163},{"id":1125,"type":1111,"label":1513,"file":583,"line":409},{"id":1156,"type":1115,"label":1162,"file":583,"line":409,"wp_function":1163},[1530,1531,1532],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"entryPoint":1534,"graph":1535,"unsanitizedCount":551,"severity":1223},"\u003Cadmin_settings_general> (includes\\admin_settings_general.php:0)",{"nodes":1536,"edges":1582},[1537,1539,1540,1542,1543,1545,1546,1548,1549,1551,1552,1554,1555,1557,1558,1560,1561,1563,1564,1566,1567,1569,1570,1572,1573,1575,1576,1578,1579,1581],{"id":1110,"type":1111,"label":1538,"file":610,"line":130},"$_POST['Currency']",{"id":1114,"type":1115,"label":1162,"file":610,"line":130,"wp_function":1163},{"id":1119,"type":1111,"label":1541,"file":610,"line":551},"$_POST['PriceTSeparator']",{"id":1121,"type":1115,"label":1162,"file":610,"line":551,"wp_function":1163},{"id":1125,"type":1111,"label":1544,"file":610,"line":426},"$_POST['PriceCSeparator']",{"id":1156,"type":1115,"label":1162,"file":610,"line":426,"wp_function":1163},{"id":1158,"type":1111,"label":1547,"file":610,"line":129},"$_POST['CurrencyType']",{"id":1161,"type":1115,"label":1162,"file":610,"line":129,"wp_function":1163},{"id":1165,"type":1111,"label":1550,"file":610,"line":239},"$_POST['ListingPriceID']",{"id":1168,"type":1115,"label":1162,"file":610,"line":239,"wp_function":1163},{"id":1170,"type":1111,"label":1553,"file":610,"line":404},"$_POST['ContactInfoNote']",{"id":1173,"type":1115,"label":1162,"file":610,"line":404,"wp_function":1163},{"id":1175,"type":1111,"label":1556,"file":610,"line":63},"$_POST['DisplayCurrency']",{"id":1178,"type":1115,"label":1162,"file":610,"line":63,"wp_function":1163},{"id":1180,"type":1111,"label":1559,"file":610,"line":514},"$_POST['EnableBreadcrumbs']",{"id":1184,"type":1115,"label":1162,"file":610,"line":514,"wp_function":1163},{"id":1186,"type":1111,"label":1562,"file":610,"line":620},"$_POST['EnableSearchWithin']",{"id":1189,"type":1115,"label":1162,"file":610,"line":620,"wp_function":1163},{"id":1191,"type":1111,"label":1565,"file":610,"line":588},"$_POST['EnableCompare']",{"id":1193,"type":1115,"label":1162,"file":610,"line":588,"wp_function":1163},{"id":1195,"type":1111,"label":1568,"file":610,"line":516},"$_POST['ListingsOrientation']",{"id":1197,"type":1115,"label":1162,"file":610,"line":516,"wp_function":1163},{"id":1199,"type":1111,"label":1571,"file":610,"line":590},"$_POST['ListingsPerLine']",{"id":1202,"type":1115,"label":1162,"file":610,"line":590,"wp_function":1163},{"id":1205,"type":1111,"label":1574,"file":610,"line":518},"$_POST['ListingsPageID']",{"id":1254,"type":1115,"label":1162,"file":610,"line":518,"wp_function":1163},{"id":1256,"type":1111,"label":1577,"file":610,"line":626},"$_POST['DisablePageSorting']",{"id":1258,"type":1115,"label":1162,"file":610,"line":626,"wp_function":1163},{"id":1260,"type":1111,"label":1580,"file":610,"line":222},"$_POST['SoldLabel']",{"id":1262,"type":1115,"label":1162,"file":610,"line":222,"wp_function":1163},[1583,1584,1585,1586,1587,1588,1589,1590,1591,1592,1593,1594,1595,1596,1597],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"from":1158,"to":1161,"sanitized":1128},{"from":1165,"to":1168,"sanitized":1128},{"from":1170,"to":1173,"sanitized":1128},{"from":1175,"to":1178,"sanitized":1128},{"from":1180,"to":1184,"sanitized":1128},{"from":1186,"to":1189,"sanitized":1128},{"from":1191,"to":1193,"sanitized":1128},{"from":1195,"to":1197,"sanitized":1128},{"from":1199,"to":1202,"sanitized":1128},{"from":1205,"to":1254,"sanitized":1128},{"from":1256,"to":1258,"sanitized":1128},{"from":1260,"to":1262,"sanitized":1128},{"entryPoint":1599,"graph":1600,"unsanitizedCount":432,"severity":1223},"\u003Cadmin_settings_google> (includes\\admin_settings_google.php:0)",{"nodes":1601,"edges":1617},[1602,1604,1605,1607,1608,1610,1611,1613,1614,1616],{"id":1110,"type":1111,"label":1603,"file":629,"line":516},"$_POST['GoogleMap']",{"id":1114,"type":1115,"label":1162,"file":629,"line":516,"wp_function":1163},{"id":1119,"type":1111,"label":1606,"file":629,"line":590},"$_POST['MapCenterLat']",{"id":1121,"type":1115,"label":1162,"file":629,"line":590,"wp_function":1163},{"id":1125,"type":1111,"label":1609,"file":629,"line":518},"$_POST['MapCenterLong']",{"id":1156,"type":1115,"label":1162,"file":629,"line":518,"wp_function":1163},{"id":1158,"type":1111,"label":1612,"file":629,"line":626},"$_POST['MapCenterZoom']",{"id":1161,"type":1115,"label":1162,"file":629,"line":626,"wp_function":1163},{"id":1165,"type":1111,"label":1615,"file":629,"line":222},"$_POST['DefaultMapLocation']",{"id":1168,"type":1115,"label":1162,"file":629,"line":222,"wp_function":1163},[1618,1619,1620,1621,1622],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"from":1158,"to":1161,"sanitized":1128},{"from":1165,"to":1168,"sanitized":1128},{"entryPoint":1624,"graph":1625,"unsanitizedCount":214,"severity":1223},"\u003Cadmin_settings_info> (includes\\admin_settings_info.php:0)",{"nodes":1626,"edges":1639},[1627,1629,1630,1632,1633,1635,1636,1638],{"id":1110,"type":1111,"label":1628,"file":638,"line":585},"$_POST['FooterLink']",{"id":1114,"type":1115,"label":1162,"file":638,"line":585,"wp_function":1163},{"id":1119,"type":1111,"label":1631,"file":638,"line":130},"$_POST['ProFeaturesL']",{"id":1121,"type":1115,"label":1162,"file":638,"line":130,"wp_function":1163},{"id":1125,"type":1111,"label":1634,"file":638,"line":551},"$_POST['MembershipL']",{"id":1156,"type":1115,"label":1162,"file":638,"line":551,"wp_function":1163},{"id":1158,"type":1111,"label":1637,"file":638,"line":426},"$_POST['ImportExportL']",{"id":1161,"type":1115,"label":1162,"file":638,"line":426,"wp_function":1163},[1640,1641,1642,1643],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"from":1158,"to":1161,"sanitized":1128},{"entryPoint":1645,"graph":1646,"unsanitizedCount":28,"severity":1223},"\u003Cadmin_settings_tools> (includes\\admin_settings_tools.php:0)",{"nodes":1647,"edges":1651},[1648,1650],{"id":1110,"type":1111,"label":1649,"file":645,"line":585},"$_POST['FSREPDebug']",{"id":1114,"type":1115,"label":1162,"file":645,"line":585,"wp_function":1163},[1652],{"from":1110,"to":1114,"sanitized":1128},{"entryPoint":1654,"graph":1655,"unsanitizedCount":549,"severity":1223},"\u003Csearch> (search.php:0)",{"nodes":1656,"edges":1675},[1657,1659,1660,1661,1662,1664,1665,1667,1668,1669,1670,1672,1673,1674],{"id":1110,"type":1111,"label":1658,"file":660,"line":426},"$_GET['CityID']",{"id":1114,"type":1115,"label":1295,"file":660,"line":426,"wp_function":1296},{"id":1119,"type":1111,"label":1658,"file":660,"line":129},{"id":1121,"type":1115,"label":1290,"file":660,"line":129,"wp_function":1291},{"id":1125,"type":1111,"label":1663,"file":660,"line":129},"$_GET (x6)",{"id":1156,"type":1115,"label":1116,"file":660,"line":514,"wp_function":1117},{"id":1158,"type":1111,"label":1666,"file":660,"line":663},"$_GET['ProvinceID']",{"id":1161,"type":1115,"label":1295,"file":660,"line":663,"wp_function":1296},{"id":1165,"type":1111,"label":1666,"file":660,"line":665},{"id":1168,"type":1115,"label":1290,"file":660,"line":665,"wp_function":1291},{"id":1170,"type":1111,"label":1671,"file":660,"line":379},"$_GET['CountryID']",{"id":1173,"type":1115,"label":1295,"file":660,"line":379,"wp_function":1296},{"id":1175,"type":1111,"label":1671,"file":660,"line":668},{"id":1178,"type":1115,"label":1290,"file":660,"line":668,"wp_function":1291},[1676,1677,1678,1679,1680,1681,1682],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"from":1125,"to":1156,"sanitized":1128},{"from":1158,"to":1161,"sanitized":1128},{"from":1165,"to":1168,"sanitized":1128},{"from":1170,"to":1173,"sanitized":1128},{"from":1175,"to":1178,"sanitized":1128},{"entryPoint":1684,"graph":1685,"unsanitizedCount":27,"severity":1223},"\u003Cmarker_listings> (xml\\marker_listings.php:0)",{"nodes":1686,"edges":1693},[1687,1689,1690,1692],{"id":1110,"type":1111,"label":1688,"file":687,"line":620},"$_GET['search']",{"id":1114,"type":1115,"label":1148,"file":687,"line":620,"wp_function":1149},{"id":1119,"type":1111,"label":1691,"file":687,"line":521},"$_GET['filter']",{"id":1121,"type":1115,"label":1295,"file":687,"line":521,"wp_function":1296},[1694,1695],{"from":1110,"to":1114,"sanitized":1128},{"from":1119,"to":1121,"sanitized":1128},{"summary":1697,"deductions":1698},"The overall security posture of the fs-real-estate-plugin v2.7.11 shows significant concerns, despite a zero attack surface in terms of direct AJAX handlers, REST API routes, shortcodes, and cron events. However, the code signals reveal deeply rooted security issues. The presence of 'create_function', a known dangerous function, alongside a very low percentage of SQL queries using prepared statements (2%) and output escaping (2%) indicates a high likelihood of vulnerabilities.  This is corroborated by the taint analysis, which found 17 high-severity flows with unsanitized paths, suggesting potential for data manipulation and execution of unintended code.\n\nThe vulnerability history further solidifies these concerns. With two known CVEs, one of which is critical and currently unpatched, the plugin has a history of SQL injection vulnerabilities. The recent nature of the last vulnerability (2026-01-06) suggests these issues are ongoing. While the plugin exhibits no external HTTP requests and no explicitly identified capability checks or nonce checks on entry points, the core code quality issues related to SQL and output handling, combined with a history of critical vulnerabilities, present a significant risk.\n\nIn conclusion, while the plugin does not present a large direct attack surface, the internal code quality is alarmingly poor. The prevalent use of raw SQL queries and insufficient output escaping, coupled with a history of critical unpatched vulnerabilities, makes this plugin a high-risk component. Developers and users should be extremely cautious.",[1699,1701,1703,1705,1707,1709,1711],{"reason":1700,"points":63},"Unpatched Critical CVE",{"reason":1702,"points":129},"High number of unsanitized taint flows",{"reason":1704,"points":11},"Low percentage of prepared SQL statements",{"reason":1706,"points":142},"Low percentage of properly escaped output",{"reason":1708,"points":432},"Use of dangerous function: create_function",{"reason":1710,"points":432},"No nonce checks found",{"reason":1712,"points":432},"No capability checks found","2026-03-16T23:20:26.171Z",{"wat":1715,"direct":1736},{"assetPaths":1716,"generatorPatterns":1725,"scriptPaths":1726,"versionParams":1727},[1717,1718,1719,1720,1721,1722,1723,1724],"\u002Fwp-content\u002Fplugins\u002Ffs-real-estate-plugin\u002Fcss\u002Ffsrep_admin_style.css","\u002Fwp-content\u002Fplugins\u002Ffs-real-estate-plugin\u002Fcss\u002Ffsrep_frontend.css","\u002Fwp-content\u002Fplugins\u002Ffs-real-estate-plugin\u002Fcss\u002Ffsrep_listing_style.css","\u002Fwp-content\u002Fplugins\u002Ffs-real-estate-plugin\u002Fcss\u002Ffsrep_widget_style.css","\u002Fwp-content\u002Fplugins\u002Ffs-real-estate-plugin\u002Fjs\u002Ffsrep_admin_scripts.js","\u002Fwp-content\u002Fplugins\u002Ffs-real-estate-plugin\u002Fjs\u002Ffsrep_frontend_scripts.js","\u002Fwp-content\u002Fplugins\u002Ffs-real-estate-plugin\u002Fjs\u002Ffsrep_listing_scripts.js","\u002Fwp-content\u002Fplugins\u002Ffs-real-estate-plugin\u002Fjs\u002Ffsrep_widget_scripts.js",[],[],[1728,1729,1730,1731,1732,1733,1734,1735],"fs-real-estate-plugin\u002Fcss\u002Ffsrep_admin_style.css?ver=","fs-real-estate-plugin\u002Fcss\u002Ffsrep_frontend.css?ver=","fs-real-estate-plugin\u002Fcss\u002Ffsrep_listing_style.css?ver=","fs-real-estate-plugin\u002Fcss\u002Ffsrep_widget_style.css?ver=","fs-real-estate-plugin\u002Fjs\u002Ffsrep_admin_scripts.js?ver=","fs-real-estate-plugin\u002Fjs\u002Ffsrep_frontend_scripts.js?ver=","fs-real-estate-plugin\u002Fjs\u002Ffsrep_listing_scripts.js?ver=","fs-real-estate-plugin\u002Fjs\u002Ffsrep_widget_scripts.js?ver=",{"cssClasses":1737,"htmlComments":1745,"htmlAttributes":1747,"restEndpoints":1750,"jsGlobals":1753,"shortcodeOutput":1757},[1738,1739,1740,1741,1742,1743,1744],"fsrep_admin_form","fsrep_listing_wrapper","fsrep_listing_title","fsrep_listing_price","fsrep_listing_image","fsrep_search_form","fsrep_widget_container",[1746],"\u003C!-- FireStorm Professional Real Estate Plugin -->",[1748,1749],"data-fsrep-listing-id","data-fsrep-search-nonce",[1751,1752],"\u002Fwp-json\u002Ffsrep\u002Fv1\u002Flistings","\u002Fwp-json\u002Ffsrep\u002Fv1\u002Fsearch",[1754,1755,1756],"fsrep_ajax_object","fsrep_frontend_vars","fsrep_admin_vars",[1758,1759,1760,1761],"[fsrep_listings]","[fsrep_search]","[fsrep_agent_profile]","[fsrep_featured_listing]"]