[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fJz4x9502o7tXhwLtEZgI4VGQmfVnn_cMn1RbX1vl6sE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":21,"download_link":22,"security_score":23,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":34,"analysis":57,"fingerprints":224},"gs-wc-bulk-edit","GS Bulk Product Editor for WooCommerce","1.0.0","Gaurav Sharma","https:\u002F\u002Fprofiles.wordpress.org\u002Fgauravin213\u002F","\u003Cp>WordPress plugin for woocommerce bulk edit and managing woocommerce products\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Support and Requests please in Github:\u003C\u002Fstrong> https:\u002F\u002Fgithub.com\u002Fgauravin213\u002Fgs-wc-bulk-edit\u003C\u002Fp>\n\u003Ch3>REQUIREMENTS\u003C\u002Fh3>\n\u003Ch3>PHP\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Minimum PHP version: 5.3.0\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Product Filter\u003C\u002Fh3>\n\u003Cpre>\u003Ccode>product_cat (terms)\nproduct_tag (terms)\nproduct_type (terms) (ignore)\nID\ntitle\nslug\nsku\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>FIELDS EDIT IN FREE VERSION OF THE PLUGIN\u003C\u002Fh3>\n\u003Ch3>product table attributes\u003C\u002Fh3>\n\u003Cpre>\u003Ccode>post_title\npost_name\npost_content\npost_excerpt\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>product taxomony\u003C\u002Fh3>\n\u003Cpre>\u003Ccode>product_cat (terms)\nproduct_tag (terms)\npa_color (terms)\nproduct taxomony `product_shipping_class` (terms)\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>product meta\u003C\u002Fh3>\n\u003Cpre>\u003Ccode>Sku meta keys: \n    _sku\n\nPrice meta keys: \n    _price\n    _regular_price\n    _sale_price\n\nInventory meta keys\n    _stock_status\n    _manage_stock\n        _stock\n        _backorders\n        _low_stock_amount\n    _sold_individually\n\nShipping meta keys\n    _weight\n    _length\n    _width\n    _height\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>SORT COLUMNS\u003C\u002Fh3>\n\u003Cp>Here you are able to sort columns and sync attributes\u003C\u002Fp>\n","WordPress plugin for woocommerce bulk edit and managing woocommerce products",0,1045,"2023-02-02T09:25:00.000Z","6.1.10","4.2","5.3.0",[18,19,20],"light-bulk-editor","wp-bulk","wp-bulk-edit","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgs-wc-bulk-edit.1.0.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":28,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":23,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"gauravin213",2,10,30,84,"2026-04-04T11:08:40.301Z",[35],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":45,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":55,"download_link":56,"security_score":45,"vuln_count":11,"unpatched_count":11,"last_vuln_date":24,"fetched_at":25},"mainwp-key-maker","MainWP Key Maker","1.3","mainwp","https:\u002F\u002Fprofiles.wordpress.org\u002Fmainwp\u002F","\u003Cp>\u003Cstrong>Note: This plugin is only useful if you are using \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmainwp\u002F\" rel=\"ugc\">MainWP\u003C\u002Fa> and the \u003Ca href=\"https:\u002F\u002Fmainwp.com\u002Fadd-on\u002Fbulk-settings-manager\u002F\" rel=\"nofollow ugc\">Bulk Settings Manager Extension\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Install the Key Maker plugin on any WordPress site to quickly copy form settings for import into MainWP Bulk Settings Manager Extension.\u003C\u002Fp>\n","The MainWP Key Maker plugin copies settings for the MainWP Bulk Settings Manager Extension.",5000,47495,100,4,"2025-12-10T15:49:00.000Z","6.9.4","3.6","7.4",[39,52,53,36,54],"mainwp-bulk-settings-extension","mainwp-child","plugin-settings","https:\u002F\u002Fmainwp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmainwp-key-maker.1.3.zip",{"attackSurface":58,"codeSignals":110,"taintFlows":145,"riskAssessment":205,"analyzedAt":223},{"hooks":59,"ajaxHandlers":70,"restRoutes":107,"shortcodes":108,"cronEvents":109,"entryPointCount":69,"unprotectedCount":69},[60,66],{"type":61,"name":62,"callback":63,"priority":30,"file":64,"line":65},"action","admin_enqueue_scripts","gs_wc_bulk_edit_admin_enqueue_scripts","includes\\main.php",11,{"type":61,"name":67,"callback":68,"file":64,"line":69},"admin_menu","gs_wc_bulk_edit_admin_menu",14,[71,75,78,81,83,86,88,91,92,95,97,100,102,105],{"action":72,"nopriv":73,"callback":72,"hasNonce":73,"hasCapCheck":73,"file":64,"line":74},"gs_wc_bulk_edit_column_sort_action",false,17,{"action":72,"nopriv":76,"callback":72,"hasNonce":73,"hasCapCheck":73,"file":64,"line":77},true,18,{"action":79,"nopriv":73,"callback":79,"hasNonce":73,"hasCapCheck":73,"file":64,"line":80},"gs_wc_bulk_edit_column_sort_reset_action",21,{"action":79,"nopriv":76,"callback":79,"hasNonce":73,"hasCapCheck":73,"file":64,"line":82},22,{"action":84,"nopriv":73,"callback":84,"hasNonce":73,"hasCapCheck":73,"file":64,"line":85},"gs_wc_bulk_edit_filter_action",25,{"action":84,"nopriv":76,"callback":84,"hasNonce":73,"hasCapCheck":73,"file":64,"line":87},26,{"action":89,"nopriv":73,"callback":89,"hasNonce":73,"hasCapCheck":73,"file":64,"line":90},"gs_wc_bulk_edit_clear_filter_action",29,{"action":89,"nopriv":76,"callback":89,"hasNonce":73,"hasCapCheck":73,"file":64,"line":31},{"action":93,"nopriv":73,"callback":93,"hasNonce":73,"hasCapCheck":73,"file":64,"line":94},"gs_wc_bulk_edit_taxonomy_action_select2",33,{"action":93,"nopriv":76,"callback":93,"hasNonce":73,"hasCapCheck":73,"file":64,"line":96},34,{"action":98,"nopriv":73,"callback":98,"hasNonce":73,"hasCapCheck":73,"file":64,"line":99},"gs_wc_bulk_edit_load_row_action",37,{"action":98,"nopriv":76,"callback":98,"hasNonce":73,"hasCapCheck":73,"file":64,"line":101},38,{"action":103,"nopriv":73,"callback":103,"hasNonce":73,"hasCapCheck":73,"file":64,"line":104},"gs_wc_bulk_edit_save_chages_action",41,{"action":103,"nopriv":76,"callback":103,"hasNonce":73,"hasCapCheck":73,"file":64,"line":106},42,[],[],[],{"dangerousFunctions":111,"sqlUsage":112,"outputEscaping":115,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":137},[],{"prepared":113,"raw":11,"locations":114},9,[],{"escaped":116,"rawEcho":113,"locations":117},45,[118,122,124,126,128,130,133,134,135],{"file":119,"line":120,"context":121},"includes\\functions.php",83,"raw output",{"file":119,"line":123,"context":121},118,{"file":119,"line":125,"context":121},134,{"file":119,"line":127,"context":121},144,{"file":119,"line":129,"context":121},702,{"file":131,"line":132,"context":121},"includes\\views\\gs_wc_bulk_edit_menu_page.php",27,{"file":131,"line":31,"context":121},{"file":131,"line":94,"context":121},{"file":131,"line":136,"context":121},36,[138,142],{"name":139,"version":140,"knownCves":141},"DataTables","1.10.18",[],{"name":143,"version":24,"knownCves":144},"Select2",[],[146,172,186],{"entryPoint":147,"graph":148,"unsanitizedCount":29,"severity":171},"gs_wc_bulk_edit_column_sort_action (includes\\functions.php:80)",{"nodes":149,"edges":168},[150,155,160,164],{"id":151,"type":152,"label":153,"file":119,"line":154},"n0","source","$_POST['data']",81,{"id":156,"type":157,"label":158,"file":119,"line":154,"wp_function":159},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":161,"type":152,"label":162,"file":119,"line":163},"n2","$_POST",82,{"id":165,"type":157,"label":166,"file":119,"line":120,"wp_function":167},"n3","echo() [XSS]","echo",[169,170],{"from":151,"to":156,"sanitized":73},{"from":161,"to":165,"sanitized":73},"medium",{"entryPoint":173,"graph":174,"unsanitizedCount":29,"severity":171},"gs_wc_bulk_edit_filter_action (includes\\functions.php:125)",{"nodes":175,"edges":183},[176,178,180,182],{"id":151,"type":152,"label":162,"file":119,"line":177},130,{"id":156,"type":157,"label":158,"file":119,"line":179,"wp_function":159},132,{"id":161,"type":152,"label":162,"file":119,"line":181},127,{"id":165,"type":157,"label":166,"file":119,"line":125,"wp_function":167},[184,185],{"from":151,"to":156,"sanitized":73},{"from":161,"to":165,"sanitized":73},{"entryPoint":187,"graph":188,"unsanitizedCount":203,"severity":204},"\u003Cfunctions> (includes\\functions.php:0)",{"nodes":189,"edges":199},[190,191,192,194,195,197],{"id":151,"type":152,"label":153,"file":119,"line":154},{"id":156,"type":157,"label":158,"file":119,"line":154,"wp_function":159},{"id":161,"type":152,"label":193,"file":119,"line":163},"$_POST (x4)",{"id":165,"type":157,"label":166,"file":119,"line":120,"wp_function":167},{"id":196,"type":152,"label":162,"file":119,"line":177},"n4",{"id":198,"type":157,"label":158,"file":119,"line":179,"wp_function":159},"n5",[200,201,202],{"from":151,"to":156,"sanitized":73},{"from":161,"to":165,"sanitized":73},{"from":196,"to":198,"sanitized":73},6,"low",{"summary":206,"deductions":207},"The \"gs-wc-bulk-edit\" plugin v1.0.0 presents a significant security risk due to its extensive unprotected attack surface. All 14 identified AJAX handlers lack any authentication or capability checks, meaning any user, including unauthenticated ones, can potentially trigger these functions. While the plugin uses prepared statements for SQL queries, indicating good database sanitization practices, and properly escapes a high percentage of output, the complete absence of nonces and capability checks on its entry points is a major concern. The taint analysis shows a low number of flows, but the presence of three flows with unsanitized paths, even if not critical, warrants attention. The plugin's vulnerability history is clean, which is positive, but this could be due to its limited history or the fact that the identified vulnerabilities in the code analysis haven't been exploited or discovered yet. Overall, the plugin has strengths in its handling of SQL and output escaping, but the critical lack of authorization on its AJAX handlers creates a broad and easily exploitable attack surface.",[208,210,213,215,218,221],{"reason":209,"points":30},"14 unprotected AJAX handlers",{"reason":211,"points":212},"0 nonce checks on entry points",7,{"reason":214,"points":212},"0 capability checks on entry points",{"reason":216,"points":217},"3 taint flows with unsanitized paths",5,{"reason":219,"points":220},"Bundled outdated DataTables v1.10.18",3,{"reason":222,"points":220},"Bundled outdated Select2","2026-03-17T06:15:21.308Z",{"wat":225,"direct":256},{"assetPaths":226,"generatorPatterns":240,"scriptPaths":241,"versionParams":242},[227,228,229,230,231,232,233,234,235,236,237,238,239],"\u002Fwp-content\u002Fplugins\u002Fgs-wc-bulk-edit\u002Fassets\u002Fselect2\u002Fcss\u002Fselect2.min.css","\u002Fwp-content\u002Fplugins\u002Fgs-wc-bulk-edit\u002Fassets\u002Fselect2\u002Fjs\u002Fselect2.min.js","\u002Fwp-content\u002Fplugins\u002Fgs-wc-bulk-edit\u002Fassets\u002FdataTables\u002Fdatatables.min.js","\u002Fwp-content\u002Fplugins\u002Fgs-wc-bulk-edit\u002Fassets\u002FdataTables\u002Fdatatables.min.css","\u002Fwp-content\u002Fplugins\u002Fgs-wc-bulk-edit\u002Fassets\u002FdataTables\u002FdataTables.fixedColumns.min.js","\u002Fwp-content\u002Fplugins\u002Fgs-wc-bulk-edit\u002Fassets\u002FdataTables\u002FfixedColumns.dataTables.min.css","\u002Fwp-content\u002Fplugins\u002Fgs-wc-bulk-edit\u002Fassets\u002Fswitchery\u002Fswitchery.min.js","\u002Fwp-content\u002Fplugins\u002Fgs-wc-bulk-edit\u002Fassets\u002Fswitchery\u002Fswitchery.min.css","\u002Fwp-content\u002Fplugins\u002Fgs-wc-bulk-edit\u002Fassets\u002Fjquery-scrollbar\u002Fjquery.scrollbar.min.js","\u002Fwp-content\u002Fplugins\u002Fgs-wc-bulk-edit\u002Fassets\u002Fjquery-scrollbar\u002Fjquery.scrollbar.css","\u002Fwp-content\u002Fplugins\u002Fgs-wc-bulk-edit\u002Fassets\u002Fjquery-scrollbar\u002Fjquery.scrollbar.custom2.css","\u002Fwp-content\u002Fplugins\u002Fgs-wc-bulk-edit\u002Fassets\u002Fjs\u002Fbs-bulk-edit.js","\u002Fwp-content\u002Fplugins\u002Fgs-wc-bulk-edit\u002Fassets\u002Fcss\u002Fbs-bulk-edit.css",[],[228,229,231,233,235,238],[243,244,245,246,247,248,249,250,251,252,253,254,255],"gs-wc-bulk-edit\u002Fassets\u002Fselect2\u002Fcss\u002Fselect2.min.css?ver=","gs-wc-bulk-edit\u002Fassets\u002Fselect2\u002Fjs\u002Fselect2.min.js?ver=","gs-wc-bulk-edit\u002Fassets\u002FdataTables\u002Fdatatables.min.js?ver=","gs-wc-bulk-edit\u002Fassets\u002FdataTables\u002Fdatatables.min.css?ver=","gs-wc-bulk-edit\u002Fassets\u002FdataTables\u002FdataTables.fixedColumns.min.js?ver=","gs-wc-bulk-edit\u002Fassets\u002FdataTables\u002FfixedColumns.dataTables.min.css?ver=","gs-wc-bulk-edit\u002Fassets\u002Fswitchery\u002Fswitchery.min.js?ver=","gs-wc-bulk-edit\u002Fassets\u002Fswitchery\u002Fswitchery.min.css?ver=","gs-wc-bulk-edit\u002Fassets\u002Fjquery-scrollbar\u002Fjquery.scrollbar.min.js?ver=","gs-wc-bulk-edit\u002Fassets\u002Fjquery-scrollbar\u002Fjquery.scrollbar.css?ver=","gs-wc-bulk-edit\u002Fassets\u002Fjquery-scrollbar\u002Fjquery.scrollbar.custom2.css?ver=","gs-wc-bulk-edit\u002Fassets\u002Fjs\u002Fbs-bulk-edit.js?ver=","gs-wc-bulk-edit\u002Fassets\u002Fcss\u002Fbs-bulk-edit.css?ver=",{"cssClasses":257,"htmlComments":259,"htmlAttributes":269,"restEndpoints":276,"jsGlobals":277,"shortcodeOutput":279},[258,4],"bs-bulk-edit",[260,261,262,263,264,265,266,267,268],"\u003C!-- Admin enqueue scripts -->","\u003C!-- Admin menu -->","\u003C!-- Admin menu body -->","\u003C!-- Admin sub menu body -->","\u003C!-- Ajax Column sort ajax -->","\u003C!-- Ajax Column reset sort -->","\u003C!-- Ajax Filter -->","\u003C!-- Ajax Clear Filter -->","\u003C!-- Ajax page load -->",[270,271,272,273,274,275],"data-column_type","data-column_label","data-column_name","data-column_option","data-column_orderable","data-column_visible",[],[278],"datab",[]]