Full Screen Popup Security & Risk Analysis

The 'full-screen-popup' plugin v1.2.2 exhibits a mixed security posture. While it has a clean vulnerability history with no recorded CVEs, the static analysis reveals several areas of concern. A significant risk lies in its attack surface, specifically the two AJAX handlers that lack authentication checks. This could potentially allow unauthenticated users to trigger plugin functionalities, leading to unintended behavior or further exploitation.

The code analysis also flags two SQL queries that are not using prepared statements, which is a critical security oversight. Although no taint analysis found critical or high severity issues, the lack of input sanitization on the AJAX handlers combined with raw SQL queries presents a potential pathway for SQL injection vulnerabilities. The low percentage of properly escaped output (14%) further amplifies the risk of cross-site scripting (XSS) vulnerabilities.

Despite the clean CVE history suggesting past diligence, the current analysis indicates a need for immediate attention to secure the AJAX endpoints and implement prepared statements for all SQL queries. The strengths of the plugin include the absence of dangerous functions and file operations, and the presence of nonces and capability checks. However, these are overshadowed by the identified weaknesses, particularly the unprotected entry points and the insecure handling of database queries.