[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fNyu3hQwPYDyIKZ_eJ6MfEyAZHw6vvda4SOjvjmedi-s":3,"$fHEARJwYtx05pWHt2i0QRYpGQJTtmIsOcQxqeYp07pr0":306,"$fgRv6G0n3q-chhxgcNjh60HzuUi1TIzzXWs-JMMC3NQ4":311},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":48,"crawl_stats":36,"alternatives":56,"analysis":158,"fingerprints":288},"lana-email-logger","Lana Email Logger","1.1.0","Lana Codes","https:\u002F\u002Fprofiles.wordpress.org\u002Flanacodes\u002F","\u003Cp>Lana Email Logger is a debugger plugin that logs all emails sent by WordPress.\u003C\u002Fp>\n\u003Ch4>Lana Codes\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Flana.codes\u002Fproduct\u002Flana-email-logger\u002F\" rel=\"nofollow ugc\">Lana Email Logger\u003C\u002Fa>\u003C\u002Fp>\n","Logs all emails sent by WordPress",0,1128,"2023-06-08T17:45:00.000Z","6.2.9","4.0","5.3",[18,19,20,21,22],"email","log-email","logger","send-email","wp-mail","https:\u002F\u002Flana.codes\u002Fproduct\u002Flana-email-logger\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flana-email-logger.1.1.0.zip",84,1,"2023-06-08 00:00:00","2026-04-06T09:54:40.288Z","no_bundle",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":6,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":27,"updated_date":42,"references":43,"days_to_patch":45,"patch_diff_files":46,"patch_trac_url":36,"research_status":36,"research_verified":47,"research_rounds_completed":11,"research_plan":36,"research_summary":36,"research_vulnerable_code":36,"research_fix_diff":36,"research_exploit_outline":36,"research_model_used":36,"research_started_at":36,"research_completed_at":36,"research_error":36,"poc_status":36,"poc_video_id":36,"poc_summary":36,"poc_steps":36,"poc_tested_at":36,"poc_wp_version":36,"poc_php_version":36,"poc_playwright_script":36,"poc_exploit_code":36,"poc_has_trace":47,"poc_model_used":36,"poc_verification_depth":36},"CVE-2023-3166","lana-email-logger-unauthenticated-stored-cross-site-scripting-via-email-subject","Lana Email Logger \u003C= 1.0.2 - Unauthenticated Stored Cross-Site Scripting via Email Subject","The Lana Email Logger plugin for WordPress is vulnerable to Stored Cross-Site Scripting via an email subject in versions up to, and including, Lana Email Logger due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=1.0.2","high",7.2,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-01-22 19:56:02",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fd5f372bf-6b13-4ba7-8b8b-9d3b500e4420?source=api-prod",229,[],false,{"slug":49,"display_name":7,"profile_url":8,"plugin_count":50,"total_installs":51,"avg_security_score":52,"avg_patch_time_days":53,"trust_score":54,"computed_at":55},"lanacodes",15,3650,89,349,71,"2026-05-19T21:00:32.688Z",[57,80,95,114,138],{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":25,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":15,"requires_php":70,"tags":71,"homepage":74,"download_link":75,"security_score":76,"vuln_count":77,"unpatched_count":11,"last_vuln_date":78,"fetched_at":79},"email-log","Email Log","2.62","WebFactory","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebfactory\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwpemaillog.com\u002F\" rel=\"nofollow ugc\">Email Log\u003C\u002Fa> is a WordPress plugin that allows you to easily log and view all emails that were sent from WordPress.\u003C\u002Fp>\n\u003Cp>This would be very useful for debugging email related problems in your WordPress site or for storing sent emails for auditing purposes, especially on ecommerce sites that are setup with either WooCommerce or Easy Digital Downloads.\u003C\u002Fp>\n\u003Cp>You can perform advanced actions like re-sending email, automatically forwarding emails, export logs and automatically monitor email deliverability with the \u003Ca href=\"https:\u002F\u002Fwpemaillog.com\u002F\" rel=\"nofollow ugc\">PRO version\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Works with WordPress Multisite as well.\u003C\u002Fp>\n\u003Ch3>Viewing logged emails\u003C\u002Fh3>\n\u003Cp>The logged emails will be stored in a separate table and can be viewed from the admin interface.\u003C\u002Fp>\n\u003Cp>While viewing the logs, the emails can be filtered or sorted based on the date, email, subject etc.\u003C\u002Fp>\n\u003Ch3>Deleting logged emails\u003C\u002Fh3>\n\u003Cp>In the admin interface, all the logged emails can be delete in bulk or can also be selectively deleted based on date, email and subject.\u003C\u002Fp>\n\u003Cp>If you want to automatically delete the email logs after some days upgrade to the PRO version.\u003C\u002Fp>\n\u003Ch3>Resend email (PRO version)\u003C\u002Fh3>\n\u003Cp>Resend the email directly from the email log. You can modify the different fields of the email before resending it.\u003C\u002Fp>\n\u003Ch3>More Fields (PRO version)\u003C\u002Fh3>\n\u003Cp>Get access to additional fields in the email log page. The following are the additional fields that are added in the pro version.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>From\u003C\u002Fli>\n\u003Cli>CC\u003C\u002Fli>\n\u003Cli>BCC\u003C\u002Fli>\n\u003Cli>Reply To\u003C\u002Fli>\n\u003Cli>Attachment\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Forward email (PRO version)\u003C\u002Fh3>\n\u003Cp>Pro version allows you to send a copy of all the emails send from WordPress to another email address.\u003C\u002Fp>\n\u003Cp>You can choose whether you want to forward through to, cc or bcc fields.\u003C\u002Fp>\n\u003Cp>This can be extremely useful when you want to debug by analyzing the emails that are sent from WordPress.\u003C\u002Fp>\n\u003Ch3>Export email logs (PRO version)\u003C\u002Fh3>\n\u003Cp>Export the email logs as a CSV file for further processing or record keeping.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>You can find fully searchable documentation in the \u003Ca href=\"https:\u002F\u002Fwpemaillog.com\u002Fdocs\u002F\" rel=\"nofollow ugc\">doc section of the Email Log\u003C\u002Fa> website.\u003C\u002Fp>\n","Log and view all outgoing emails from WordPress. Very useful if you have to debug email related problems or have to store sent emails for auditing.",80000,1025146,43,"2025-12-03T19:27:00.000Z","6.9.4","5.6",[18,58,72,19,73],"log","resend-email","https:\u002F\u002Fwpemaillog.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Femail-log.2.62.zip",95,4,"2024-05-23 17:05:18","2026-04-16T10:56:18.058Z",{"slug":81,"name":82,"version":6,"author":7,"author_profile":8,"description":83,"short_description":84,"active_installs":11,"downloaded":85,"rating":11,"num_ratings":11,"last_updated":86,"tested_up_to":87,"requires_at_least":15,"requires_php":16,"tags":88,"homepage":91,"download_link":92,"security_score":93,"vuln_count":26,"unpatched_count":11,"last_vuln_date":94,"fetched_at":79},"lana-email-tester","Lana Email Tester","\u003Cp>Tester plugin to try WordPress email sending function.\u003C\u002Fp>\n\u003Ch4>Lana Codes\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Flana.codes\u002Fproduct\u002Flana-email-tester\u002F\" rel=\"nofollow ugc\">Lana Email Tester\u003C\u002Fa>\u003C\u002Fp>\n","Send test email",932,"2022-06-15T06:33:00.000Z","6.0.11",[18,21,89,90,22],"test-email","tester","https:\u002F\u002Flana.codes\u002Fproduct\u002Flana-email-tester\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flana-email-tester.1.1.0.zip",85,"2022-06-15 00:00:00",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":11,"downloaded":103,"rating":11,"num_ratings":11,"last_updated":104,"tested_up_to":105,"requires_at_least":106,"requires_php":107,"tags":108,"homepage":111,"download_link":112,"security_score":113,"vuln_count":11,"unpatched_count":11,"last_vuln_date":36,"fetched_at":28},"virtual-mailbox","Virtual Mailbox","1.0","meloniq","https:\u002F\u002Fprofiles.wordpress.org\u002Fmeloniq\u002F","\u003Cp>Virtual Mailbox – Log All Outgoing Emails and Browse Them.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Logs outgoing emails and assigns them to users.\u003C\u002Fli>\n\u003Cli>Automatically prunes older emails.\u003C\u002Fli>\n\u003Cli>Includes a shortcode for easily adding the mailbox to the frontend.\u003C\u002Fli>\n\u003Cli>Users can view emails that were sent to them in the mailbox.\u003C\u002Fli>\n\u003C\u002Ful>\n","Virtual Mailbox - log all outgoing emails, and allow to browse them.",378,"2025-02-24T11:11:00.000Z","6.7.5","4.9","7.4",[18,20,109,110,22],"mailbox","user-emails","https:\u002F\u002Fblog.meloniq.net\u002Fvirtual-mailbox\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvirtual-mailbox.1.0.zip",92,{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":122,"downloaded":123,"rating":124,"num_ratings":125,"last_updated":126,"tested_up_to":127,"requires_at_least":128,"requires_php":107,"tags":129,"homepage":134,"download_link":135,"security_score":76,"vuln_count":136,"unpatched_count":11,"last_vuln_date":137,"fetched_at":79},"wp-mail-catcher","Mail logging – WP Mail Catcher","2.1.11","JWardee","https:\u002F\u002Fprofiles.wordpress.org\u002Fwardee\u002F","\u003Cp>Logging your mail will stop you from ever losing your emails again! This fast, lightweight plugin (under 140kb in size!) is also useful for debugging or backing up your messages.\u003C\u002Fp>\n\u003Cp>Just install and activate then all of your contact form emails will be logged and saved to your DB with no additional configuration required.\u003C\u002Fp>\n\u003Cp>View and manage all your form submissions through the default WordPress interface. An email failed to send? With a single click you can resend the backed up email.\u003C\u002Fp>\n\u003Cp>Send emails out directly from the WordPress interface. Also includes support for attachments.\u003C\u002Fp>\n\u003Cp>Immediately find out if your contact form submission was successfully sent.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Zero setup required – just install and away you go\u003C\u002Fli>\n\u003Cli>Minimalistic – no overbloated features you never use weighing your site down – under 140kb in size!\u003C\u002Fli>\n\u003Cli>Bulk export emails to CSV for easy inclusion into Excel or any other program\u003C\u002Fli>\n\u003Cli>Compose new emails with the WordPress controls you’re already familiar with\u003C\u002Fli>\n\u003Cli>Resend your emails in bulk\u003C\u002Fli>\n\u003Cli>Debugging – see exactly which file and code line was responsible for sending the email, along with any errors encountered\u003C\u002Fli>\n\u003Cli>Manage what user permissions can see the logs\u003C\u002Fli>\n\u003Cli>Routinely have your logs cleared out at a specified time – or keep them forever\u003C\u002Fli>\n\u003Cli>Need to be notified when there’s a problem sending your mail? We’ve got hooks that allow you to do just that\u003C\u002Fli>\n\u003Cli>Completely free\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Hooks and actions\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ccode>wp_mail_catcher_mail_success\u003C\u002Fcode> is triggered when a message is sent and logged successfully. It has a single argument that is an array containing the log\n\u003Cul>\n\u003Cli>\u003Ccode>id\u003C\u002Fcode> related to the id in the \u003Ccode>mail_catcher_logs\u003C\u002Fcode> MySQL table\u003C\u002Fli>\n\u003Cli>\u003Ccode>time\u003C\u002Fcode> relative, readable time to when the log was saved\u003C\u002Fli>\n\u003Cli>\u003Ccode>email_to\u003C\u002Fcode> the email address(es) that the message was sent to\u003C\u002Fli>\n\u003Cli>\u003Ccode>subject\u003C\u002Fcode> the subject line of the message\u003C\u002Fli>\n\u003Cli>\u003Ccode>message\u003C\u002Fcode> the contents of the message\u003C\u002Fli>\n\u003Cli>\u003Ccode>status\u003C\u002Fcode> an integer depicting if the message was sent successfully or not (1 = sent successfully. 0 = sending failed)\u003C\u002Fli>\n\u003Cli>\u003Ccode>error\u003C\u002Fcode> the error that occurred – if any\u003C\u002Fli>\n\u003Cli>\u003Ccode>backtrace_segment\u003C\u002Fcode> a json_encoded object that shows which file and line the mail was initially triggered from\u003C\u002Fli>\n\u003Cli>\u003Ccode>attachments\u003C\u002Fcode> a list of any attachments that were sent along with the email\u003C\u002Fli>\n\u003Cli>\u003Ccode>additional_headers\u003C\u002Fcode> a list of any headers that were sent\u003C\u002Fli>\n\u003Cli>\u003Ccode>attachment_file_paths\u003C\u002Fcode> a list of the location of any attachments that were sent\u003C\u002Fli>\n\u003Cli>\u003Ccode>timestamp\u003C\u002Fcode> a unix timestamp of when the email was sent\u003C\u002Fli>\n\u003Cli>\u003Ccode>is_html\u003C\u002Fcode> a boolean, that will be true if the message is a html email and false if not\u003C\u002Fli>\n\u003Cli>\u003Ccode>email_from\u003C\u002Fcode> the from value of the email\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Ccode>wp_mail_catcher_mail_failed\u003C\u002Fcode> is triggered when a message failed to send and logged successfully. It has a single argument that is an array containing the log (same as the arguments for \u003Ccode>wp_mail_catcher_mail_success\u003C\u002Fcode>)\u003C\u002Fli>\n\u003Cli>\u003Ccode>wp_mail_catcher_deletion_intervals\u003C\u002Fcode> is a filter that should return an array where each key is an amount of time in seconds, and the value is the label. Used to determine when a message has expired and should be deleted\u003C\u002Fli>\n\u003Cli>\u003Ccode>wp_mail_catcher_before_success_log_save\u003C\u002Fcode> is a filter that is called just before a successful log is saved. It has a single argument that is the transformed log that will be saved – use this to alter the log before it’s saved. Returning \u003Ccode>false\u003C\u002Fcode> will stop the log from being saved. Also note that this is fired even when an email has errored, because all logs are initially saved as “successful” before being possibly updated with an error (if applicable). This is because of the way the \u003Ccode>wp_mail\u003C\u002Fcode> and \u003Ccode>wp_mail_failed\u003C\u002Fcode> are implemented in WordPress.\n\u003Cul>\n\u003Cli>\u003Ccode>time\u003C\u002Fcode> a unix timestamp of when the email was sent\u003C\u002Fli>\n\u003Cli>\u003Ccode>email_to\u003C\u002Fcode> the email address(es) that the message was sent to\u003C\u002Fli>\n\u003Cli>\u003Ccode>subject\u003C\u002Fcode> the subject line of the message\u003C\u002Fli>\n\u003Cli>\u003Ccode>message\u003C\u002Fcode> the contents of the message\u003C\u002Fli>\n\u003Cli>\u003Ccode>backtrace_segment\u003C\u002Fcode> an array that shows which file and line the mail was initially triggered from\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Ccode>wp_mail_catcher_before_error_log_save\u003C\u002Fcode>\n\u003Cul>\n\u003Cli>\u003Ccode>time\u003C\u002Fcode> a unix timestamp of when the email was sent\u003C\u002Fli>\n\u003Cli>\u003Ccode>email_to\u003C\u002Fcode> the email address(es) that the message was sent to\u003C\u002Fli>\n\u003Cli>\u003Ccode>subject\u003C\u002Fcode> the subject line of the message\u003C\u002Fli>\n\u003Cli>\u003Ccode>message\u003C\u002Fcode> the contents of the message\u003C\u002Fli>\n\u003Cli>\u003Ccode>backtrace_segment\u003C\u002Fcode> an array that shows which file and line the mail was initially triggered from\u003C\u002Fli>\n\u003Cli>\u003Ccode>error\u003C\u002Fcode> the error that occurred\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Stop from ever losing your emails again! This fast, lightweight plugin (under 140kb in size!) is also useful for debugging or backing up your messages",20000,254217,98,107,"2025-07-13T12:57:00.000Z","6.8.5","4.7",[58,130,131,132,133],"email-logger","email-logging","logging","mail-logging","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-mail-catcher\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-mail-catcher.2.1.11.zip",5,"2024-09-27 00:00:00",{"slug":139,"name":140,"version":141,"author":142,"author_profile":143,"description":144,"short_description":145,"active_installs":146,"downloaded":147,"rating":124,"num_ratings":148,"last_updated":149,"tested_up_to":105,"requires_at_least":150,"requires_php":107,"tags":151,"homepage":154,"download_link":155,"security_score":52,"vuln_count":156,"unpatched_count":11,"last_vuln_date":157,"fetched_at":79},"wp-mail-log","WP Mail Log","1.1.4","WPVibes","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpvibes\u002F","\u003Cp>WP Mail Log is a WordPress plugin that allows you to easily log and view all emails that were sent from WordPress. This would be very useful for debugging email related problems in your WordPress site or for storing sent emails for auditing purposes, especially on eCommerce sites.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>If you have a question about the usage of the plugin or need help to troubleshoot, then post in \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwp-mail-log\u002F\" rel=\"ugc\">WordPress forums\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Other Plugins\u003C\u002Fh3>\n\u003Cp>✅  \u003Ca href=\"https:\u002F\u002Fbit.ly\u002F36xcjjy\" rel=\"nofollow ugc\">AnyWhere Elementor Pro\u003C\u002Fa>: AnyWhere Elementor Pro comes with various creative dynamic content widgets that would enhance your Elementor Page Builder experience to build your dream website.\u003Cbr \u002F>\n✅  \u003Ca href=\"https:\u002F\u002Fbit.ly\u002F3Dp0Hez\" rel=\"nofollow ugc\">Form Vibes\u003C\u002Fa>: The ultimate tool to save and manage your Form submissions within WordPress Database.  It also provides a graphical analytics report that allows you to visualize how different forms are performing.\u003Cbr \u002F>\n✅  \u003Ca href=\"https:\u002F\u002Fbit.ly\u002F3uCeIl2\" rel=\"nofollow ugc\">Elementor Addon Elements\u003C\u002Fa>: With the help of Elementor Addon Elements, you can use rich and stunning widgets to build your dream website.\u003Cbr \u002F>\n✅  \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffrontend-product-editor\" rel=\"ugc\">Frontend Product Editor\u003C\u002Fa>: Frontend product editor can be a great addition to your WooCommerce websites since it allows you to modify the WooCommerce product information right from the front.\u003Cbr \u002F>\n✅  \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmap-engine\" rel=\"ugc\">Map Engine\u003C\u002Fa>: An ultimate map builder plugin that meets all of your requirements. One-stop destination to create as many Google Maps and Open Street Maps as you want.\u003C\u002Fp>\n","WP Mail Log helps you to Log and view all emails from WordPress. It is useful if you have to debug email related problems or have to store sent emails …",10000,120143,65,"2025-04-04T12:45:00.000Z","6.0",[18,58,130,152,153],"logs","mail","https:\u002F\u002Fwpvibes.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-mail-log.zip",7,"2023-12-27 00:00:00",{"attackSurface":159,"codeSignals":251,"taintFlows":279,"riskAssessment":280,"analyzedAt":287},{"hooks":160,"ajaxHandlers":243,"restRoutes":244,"shortcodes":245,"cronEvents":246,"entryPointCount":11,"unprotectedCount":11},[161,167,170,174,177,181,184,187,192,196,200,205,209,213,217,221,225,228,232,235,239],{"type":162,"name":163,"callback":164,"file":165,"line":166},"action","admin_enqueue_scripts","lana_email_logger_settings_admin_scripts","lana-email-logger.php",67,{"type":162,"name":163,"callback":168,"file":165,"line":169},"lana_email_logger_admin_styles",80,{"type":162,"name":171,"callback":172,"file":165,"line":173},"admin_init","lana_email_logger_custom_wp_roles",134,{"type":162,"name":171,"callback":175,"file":165,"line":176},"lana_email_logger_register_settings",153,{"type":162,"name":178,"callback":179,"file":165,"line":180},"admin_menu","lana_email_logger_admin_menu",156,{"type":162,"name":178,"callback":182,"priority":26,"file":165,"line":183},"lana_email_logger_admin_menu_view_lana_email",186,{"type":162,"name":178,"callback":185,"file":165,"line":186},"lana_email_logger_add_lana_email_view_page_args",216,{"type":188,"name":189,"callback":190,"file":165,"line":191},"filter","parent_file","lana_email_logger_lana_email_view_parent_file",244,{"type":188,"name":193,"callback":194,"file":165,"line":195},"submenu_file","lana_email_logger_lana_email_view_submenu_file",275,{"type":188,"name":197,"callback":198,"file":165,"line":199},"admin_title","lana_email_logger_lana_email_view_admin_title",310,{"type":188,"name":201,"callback":202,"priority":203,"file":165,"line":204},"set-screen-option","lana_email_logger_logs_page_set_screen_option",10,381,{"type":162,"name":206,"callback":207,"priority":26,"file":165,"line":208},"lana_email_logger_email_view_postbox_1","lana_email_logger_view_email_add_headers_to_postbox_1",573,{"type":162,"name":206,"callback":210,"priority":211,"file":165,"line":212},"lana_email_logger_view_email_add_info_to_postbox_1",2,584,{"type":162,"name":206,"callback":214,"priority":215,"file":165,"line":216},"lana_email_logger_view_email_add_date_to_postbox_1",3,595,{"type":188,"name":218,"callback":219,"file":165,"line":220},"wp_mail","lana_email_logger_save_wp_mail",658,{"type":162,"name":222,"callback":223,"file":165,"line":224},"added_option","lana_email_logger_update_cleanup_option_add_schedule_event",725,{"type":162,"name":226,"callback":223,"file":165,"line":227},"updated_option",726,{"type":162,"name":229,"callback":230,"file":165,"line":231},"plugins_loaded","lana_email_logger_cleanup_by_amount_schedule_event",744,{"type":162,"name":229,"callback":233,"file":165,"line":234},"lana_email_logger_cleanup_by_time_schedule_event",762,{"type":162,"name":236,"callback":237,"file":165,"line":238},"lana_email_logger_cleanup_by_amount","lana_email_logger_cleanup_emails_by_amount",792,{"type":162,"name":240,"callback":241,"file":165,"line":242},"lana_email_logger_cleanup_by_time","lana_email_logger_cleanup_emails_by_time",819,[],[],[],[247,249],{"hook":236,"callback":236,"file":165,"line":248},740,{"hook":240,"callback":240,"file":165,"line":250},758,{"dangerousFunctions":252,"sqlUsage":253,"outputEscaping":272,"fileOperations":26,"externalRequests":11,"nonceChecks":211,"capabilityChecks":215,"bundledLibraries":278},[],{"prepared":77,"raw":136,"locations":254},[255,259,263,266,269],{"file":256,"line":257,"context":258},"includes\u002Fclass-lana-email-logger-logs-list-table.php",254,"$wpdb->get_var() with unsafe: $query_where",{"file":260,"line":261,"context":262},"includes\u002Fclass-lana-email.php",101,"$wpdb->get_row() with unsafe: $id",{"file":165,"line":264,"context":265},102,"$wpdb->query() with unsafe: $charset_collate",{"file":165,"line":267,"context":268},786,"$wpdb->query() with unsafe: $cleanup_amount",{"file":165,"line":270,"context":271},816,"$wpdb->query() with unsafe: $cleanup_time",{"escaped":273,"rawEcho":26,"locations":274},60,[275],{"file":276,"line":50,"context":277},"views\u002Flana-email-view-headers.php","raw output",[],[],{"summary":281,"deductions":282},"The lana-email-logger plugin, at version 1.1.0, presents a generally positive security posture with several good practices evident in the static analysis. The absence of any identified taint flows and a very high percentage of properly escaped output are particularly strong indicators of secure coding. Furthermore, the plugin demonstrates a commitment to security by implementing nonce and capability checks on a good portion of its identified entry points, and importantly, has no currently unpatched vulnerabilities despite a past high-severity CVE.\n\nHowever, there are a few areas that warrant caution. The presence of raw SQL queries, even if a majority use prepared statements, always carries a potential risk. The single file operation, while not explicitly flagged as dangerous, could be a vector if not handled with extreme care regarding user-supplied input. The plugin's history of a high-severity cross-site scripting vulnerability, even though patched, suggests that input validation and output encoding should be meticulously reviewed and maintained at all times. While the current version appears secure in these regards, past vulnerabilities are a reminder of potential pitfalls.\n\nIn conclusion, lana-email-logger v1.1.0 exhibits strong security fundamentals. The development team has addressed past issues and implemented robust output escaping and input validation practices. The primary remaining concerns revolve around the potential risks associated with any raw SQL queries and the single file operation, alongside the historical context of a past XSS vulnerability. Overall, the plugin is in a good state, but continuous vigilance regarding its limited identified risk areas is recommended.",[283,285],{"reason":284,"points":203},"Raw SQL queries detected",{"reason":286,"points":50},"Past high severity vulnerability","2026-04-16T13:24:17.914Z",{"wat":289,"direct":299},{"assetPaths":290,"generatorPatterns":293,"scriptPaths":294,"versionParams":296},[291,292],"\u002Fwp-content\u002Fplugins\u002Flana-email-logger\u002Fassets\u002Fjs\u002Flana-email-logger-settings-admin.js","\u002Fwp-content\u002Fplugins\u002Flana-email-logger\u002Fassets\u002Fcss\u002Flana-email-logger-admin.css",[],[295],"lana-email-logger-settings-admin.js",[297,298],"lana-email-logger\u002Fassets\u002Fjs\u002Flana-email-logger-settings-admin.js?ver=","lana-email-logger\u002Fassets\u002Fcss\u002Flana-email-logger-admin.css?ver=",{"cssClasses":300,"htmlComments":301,"htmlAttributes":302,"restEndpoints":303,"jsGlobals":304,"shortcodeOutput":305},[],[],[],[],[],[],{"error":307,"url":308,"statusCode":309,"statusMessage":310,"message":310},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Flana-email-logger\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":215,"versions":312},[313,318,326],{"version":6,"download_url":24,"svn_tag_url":314,"released_at":36,"has_diff":47,"diff_files_changed":315,"diff_lines":36,"trac_diff_url":316,"vulnerabilities":317,"is_current":307},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Flana-email-logger\u002Ftags\u002F1.1.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Flana-email-logger%2Ftags%2F1.0.2&new_path=%2Flana-email-logger%2Ftags%2F1.1.0",[],{"version":319,"download_url":320,"svn_tag_url":321,"released_at":36,"has_diff":47,"diff_files_changed":322,"diff_lines":36,"trac_diff_url":323,"vulnerabilities":324,"is_current":47},"1.0.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flana-email-logger.1.0.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Flana-email-logger\u002Ftags\u002F1.0.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Flana-email-logger%2Ftags%2F1.0.1&new_path=%2Flana-email-logger%2Ftags%2F1.0.2",[325],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":6},{"version":327,"download_url":328,"svn_tag_url":329,"released_at":36,"has_diff":47,"diff_files_changed":330,"diff_lines":36,"trac_diff_url":36,"vulnerabilities":331,"is_current":47},"1.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flana-email-logger.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Flana-email-logger\u002Ftags\u002F1.0.1\u002F",[],[332],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":6}]