[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fjMFEXulZK6SHybFbKyrj1_v5H0vO9TQgPzVna6gG8xE":3,"$fpLahkFyWTTYRebmTp9esQ1cGFHQ1BImmPU9e_nv-L9s":95,"$fTTBylTfvDAFu8f_6u6L1PwuF9XcNUbmhwdnq6dR6GaA":100},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":25,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":30,"crawl_stats":26,"alternatives":36,"analysis":37,"fingerprints":81},"geo-targetly-geo-popup","Geo Targetly Geo Popup","2.0.1","geotargetly","https:\u002F\u002Fprofiles.wordpress.org\u002Fgeotargetly\u002F","\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FvODex6JY370?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>\u003Cstrong>Geo Popup\u003C\u002Fstrong> lets you display targeted popups to website visitors based on their \u003Cstrong>country, region, city, lat-long radius, or IP address\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Whether you’re promoting local deals, announcing region-specific events, or redirecting visitors to country-specific pages, Geo Popup gives you full control over who sees what and when.\u003C\u002Fp>\n\u003Cp>Popups can include any custom HTML-rich text, images, video, buttons, forms, or embeds. You can also control layout (width\u002Fheight), styling, and choose to show popups on desktop, mobile, or both.\u003C\u002Fp>\n\u003Cp>Set when popups should appear using display schedules by \u003Cstrong>day, time, and timezone\u003C\u002Fstrong>. Plus, avoid annoyance by setting how often the same user sees the popup using cookie-based rules.\u003C\u002Fp>\n\u003Cp>Made by \u003Ca href=\"https:\u002F\u002Fgeotargetly.com\u002F\" rel=\"nofollow ugc\">Geo Targetly\u003C\u002Fa>, it’s a flexible tool for any geo-personalized marketing need.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Paid account is required\u003C\u002Fstrong> – \u003Ca href=\"https:\u002F\u002Fgeotargetly.com\u002Fpricing\" rel=\"nofollow ugc\">see pricing\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>14-day free trial\u003C\u002Fstrong> – no credit card needed\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Show popups based on \u003Cstrong>country, region, city, radius, or IP address\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Create multiple \u003Cstrong>pop-up rules\u003C\u002Fstrong> targeting different locations\u003C\u002Fli>\n\u003Cli>Customize content with \u003Cstrong>rich HTML\u003C\u002Fstrong>–text, images, forms, video\u003C\u002Fli>\n\u003Cli>Control the pop-up design width, height, colors, and background image\u003C\u002Fli>\n\u003Cli>Choose \u003Cstrong>desktop, mobile, or both\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Avoid repetition with \u003Cstrong>cookie display frequency rules\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Schedule popups by \u003Cstrong>day, hour, and the visitor’s timezone\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Lightweight JS embed – no coding needed\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Detailed docs can be found below\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Overview https:\u002F\u002Fgeotargetly.com\u002Fgeo-popup\u003C\u002Fli>\n\u003Cli>Quick Start Guide https:\u002F\u002Fhelp.geotargetly.com\u002Fen\u002Farticles\u002F2147918-geo-popup-quick-start-guide\u003C\u002Fli>\n\u003Cli>Docs https:\u002F\u002Fhelp.geotargetly.com\u002Fen\u002Fcollections\u002F738549-geo-popups\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Live chat at \u003Ca href=\"https:\u002F\u002Fgeotargetly.com\" title=\"Geo Targetly\" rel=\"nofollow ugc\">Geo Targetly\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin connects to an external endpoint via the domain https:\u002F\u002Fg10894638425.co to load and run a script that powers its core functionality, as outlined previously in the description.\u003C\u002Fp>\n\u003Cp>It sends the user’s location each time the plugin is loaded. This is necessary to determine and customize the plugin’s behavior based on the user’s geographical context.\u003C\u002Fp>\n\u003Cp>Additionally, this plugin connects to analytics endpoint https:\u002F\u002Fg97676560.co\u002F to track plugin installation and usage over time.\u003C\u002Fp>\n\u003Cp>This service is provided by Geo Targetly – \u003Ca href=\"https:\u002F\u002Fgeotargetly.com\u002Fwebsite-terms-of-use\" rel=\"nofollow ugc\">Terms of Use\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fgeotargetly.com\u002Fprivacy-policy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa>.\u003C\u002Fp>\n","Show custom popups by location. Deliver the right message to the right visitor, based on geolocation.",0,1863,100,2,"2025-12-02T18:23:00.000Z","6.8.5","3.0","",[20,21,22,23,24],"geo-popup","html-popup","local-offers","location-targeting","popup-scheduling","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgeo-targetly-geo-popup.2.0.1.zip",null,"2026-04-06T09:54:40.288Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":13,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},10,1140,185,79,"2026-05-20T02:21:41.952Z",[],{"attackSurface":38,"codeSignals":60,"taintFlows":68,"riskAssessment":69,"analyzedAt":80},{"hooks":39,"ajaxHandlers":56,"restRoutes":57,"shortcodes":58,"cronEvents":59,"entryPointCount":11,"unprotectedCount":11},[40,46,49,53],{"type":41,"name":42,"callback":43,"file":44,"line":45},"action","admin_menu","closure","php\\wordpress\\admin_builder.php",11,{"type":41,"name":47,"callback":43,"file":44,"line":48},"admin_init",31,{"type":41,"name":50,"callback":43,"file":51,"line":52},"init","php\\wordpress\\script_injector.php",6,{"type":41,"name":54,"callback":43,"file":51,"line":55},"wp_enqueue_scripts",24,[],[],[],[],{"dangerousFunctions":61,"sqlUsage":62,"outputEscaping":64,"fileOperations":11,"externalRequests":14,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":67},[],{"prepared":11,"raw":11,"locations":63},[],{"escaped":65,"rawEcho":11,"locations":66},8,[],[],[],{"summary":70,"deductions":71},"The static analysis of \"geo-targetly-geo-popup\" v2.0.1 reveals a generally strong security posture based on the provided data. There are no identified dangerous functions, all SQL queries utilize prepared statements, and all output is properly escaped. Furthermore, the plugin exhibits no file operations, no reported vulnerabilities in its history, and no identified taint flows, which are all positive indicators of secure coding practices.\n\nHowever, the analysis highlights a significant concern regarding the complete absence of capability checks and nonce checks. This means that none of the plugin's potential entry points, even if they were to exist, are protected by WordPress's built-in authorization mechanisms. While the current analysis shows zero entry points, this could change with future updates or if the analysis did not capture all potential interaction vectors. The presence of two external HTTP requests also warrants attention, as these could be potential vectors for attack if not handled securely, although no specific issues are detailed in the provided data.\n\nIn conclusion, the plugin demonstrates good practices in fundamental areas like SQL and output sanitization. The lack of reported vulnerabilities is a positive sign. The primary weakness lies in the complete absence of authorization checks (capability and nonce), which represents a latent risk that could become critical if any entry points are introduced or overlooked. The external HTTP requests should also be monitored for security implications.",[72,75,77],{"reason":73,"points":74},"Missing capability checks",15,{"reason":76,"points":31},"Missing nonce checks",{"reason":78,"points":79},"External HTTP requests without context",3,"2026-03-17T05:47:34.802Z",{"wat":82,"direct":88},{"assetPaths":83,"generatorPatterns":85,"scriptPaths":86,"versionParams":87},[84],"\u002Fwp-content\u002Fplugins\u002Fgeo-targetly-geo-popup\u002Fshared\u002Ftemplates\u002Fscript.js.php",[],[],[],{"cssClasses":89,"htmlComments":90,"htmlAttributes":91,"restEndpoints":92,"jsGlobals":93,"shortcodeOutput":94},[],[],[],[],[],[],{"error":96,"url":97,"statusCode":98,"statusMessage":99,"message":99},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fgeo-targetly-geo-popup\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":79,"versions":101},[102,108,115],{"version":6,"download_url":25,"svn_tag_url":103,"released_at":26,"has_diff":104,"diff_files_changed":105,"diff_lines":26,"trac_diff_url":106,"vulnerabilities":107,"is_current":96},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgeo-targetly-geo-popup\u002Ftags\u002F2.0.1\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgeo-targetly-geo-popup%2Ftags%2F2.0.0&new_path=%2Fgeo-targetly-geo-popup%2Ftags%2F2.0.1",[],{"version":109,"download_url":110,"svn_tag_url":111,"released_at":26,"has_diff":104,"diff_files_changed":112,"diff_lines":26,"trac_diff_url":113,"vulnerabilities":114,"is_current":104},"2.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgeo-targetly-geo-popup.2.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgeo-targetly-geo-popup\u002Ftags\u002F2.0.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgeo-targetly-geo-popup%2Ftags%2F1.0.0&new_path=%2Fgeo-targetly-geo-popup%2Ftags%2F2.0.0",[],{"version":116,"download_url":117,"svn_tag_url":118,"released_at":26,"has_diff":104,"diff_files_changed":119,"diff_lines":26,"trac_diff_url":26,"vulnerabilities":120,"is_current":104},"1.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgeo-targetly-geo-popup.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgeo-targetly-geo-popup\u002Ftags\u002F1.0.0\u002F",[],[]]