[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fJXnOagUyqtSIi-Bkl3u0xgxZXIQ8eGst53HVLOhLfV4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":134,"fingerprints":472},"ldb-wp-e-commerce-ideal","LDB WP e-Commerce iDeal","2.0.3","ldebrouwer","https:\u002F\u002Fprofiles.wordpress.org\u002Fldebrouwer\u002F","\u003Cp>LDB WP e-Commerce iDeal allows you to easily add the iDeal payment gateway to WP e-Commerce for several Dutch banks and iDeal integrations.\u003C\u002Fp>\n","LDB WP e-Commerce iDeal allows you to easily add the iDeal payment gateway to WP e-Commerce for several Dutch banks and iDeal integrations.",10,11928,0,"2011-11-18T14:35:00.000Z","3.3.2","3.0","",[19,20,21,22,23],"e-commerce","ideal","rabobank","webshop","wp-e-commerce","http:\u002F\u002Fwww.lucdebrouwer.nl\u002Fwordpress-plugin-ldb-wp-e-commerce-ideal\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fldb-wp-e-commerce-ideal.2.0.3.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},5,150,88,30,86,"2026-04-04T16:09:57.655Z",[38,61,77,96,113],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":58,"download_link":59,"security_score":60,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"woo-rabo-omnikassa","Rabo Smart Pay for WooCommerce","2.3.2.6","CodeBrain BV","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodebrainbv\u002F","\u003Cp>One dashboard for all your payment solutions\u003C\u002Fp>\n\u003Cp>What is Rabo Smart Pay?\u003Cbr \u002F>\nAlways in control and able to manage your products yourself: that is Rabo Smart Pay. You receive all payments within 1 day on your business account, 365 days per year. You can check and manage everything yourself in the dashboard. That gives peace, space and time to be able to continue working on your business.\u003C\u002Fp>\n\u003Cp>How does Rabo Smart Pay work?\u003Cbr \u002F>\nWith Rabo Smart Pay you have both debit card payments and online payments together in one overview. Useful to keep track of your various commercial units, your physical store(s) or your webshops. If you want to expand, you can easily add additional products through the dashboard. For instance when you use Rabo SmartPin on location, but also want to sell your articles in a webshop. This way you can work in a future-oriented manner.\u003C\u002Fp>\n\u003Cp>What do you need?\u003Cbr \u002F>\n* A Rabo Smart Pay agreement, which you can simply request online.\u003Cbr \u002F>\n* The WordPress Rabo Smart Pay 2.0 plug-in.\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Payment Methods: iDEAL, Afterpay, Bancontact, Maestro, MasterCard, Paypal, Visa en VPay\u003C\u002Fli>\n\u003Cli>Easy to use dashboard\u003C\u002Fli>\n\u003Cli>Automatic webhook messages for processing transactions\u002Forders\u003C\u002Fli>\n\u003Cli>Every Payment Method is optional.\u003C\u002Fli>\n\u003Cli>Use Smart Pay in different languages: Dutch, English, French and German.\u003C\u002Fli>\n\u003Cli>Configurable title and description\u003C\u002Fli>\n\u003Cli>Let users choose a bank from a list or overview.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Security\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Uses Rabo Smart Pay SHA512 encryption method\u003C\u002Fli>\n\u003Cli>PCI Compliant! No creditcard data saved locally!\u003C\u002Fli>\n\u003Cli>SSL supported\u003C\u002Fli>\n\u003Cli>Signs and checks every message to and from Rabo Smart Pay\u003C\u002Fli>\n\u003Cli>Secure webhook supported\u003C\u002Fli>\n\u003C\u002Ful>\n","One of the best integrated and easy to use Payment Method plug-in for Rabo Smart Pay in WooCommerce.",600,25260,60,2,"2026-02-10T08:40:00.000Z","6.9.4","5.8","7.4",[20,55,56,21,57],"omnikassa","payment","smartpay","https:\u002F\u002Fpayocity.nl\u002Fnl\u002Fintegratie\u002Fwoocommerce\u002Fsmart-pay","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-rabo-omnikassa.2.3.2.6.zip",100,{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":60,"downloaded":69,"rating":13,"num_ratings":13,"last_updated":70,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":71,"homepage":75,"download_link":76,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"shippingeasy-for-wp-ecommerce","ShippingEasy for WP e-Commerce","1.03","ShippingDev","https:\u002F\u002Fprofiles.wordpress.org\u002Fshippingdev\u002F","\u003Cp>ShippingEasy is a powerful online shipping platform that integrates seamlessly with your WordPress WP e-Commerce store to give you a complete end-to-end fulfillment solution. You do not need a courier account to use ShippingEasy. We have negotiated discounted shipping rates for you with our trusted courier partners. Up-to-date tracking information comes included, and is accessible by both you and your customers for full visibility and peace of mind.\u003C\u002Fp>\n\u003Cp>Send your packages anywhere in the world in just a few quick steps with ShippingEasy!\u003C\u002Fp>\n\u003Cp>Key features:\u003C\u002Fp>\n\u003Ch4>WordPress Integration\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easy to install WordPress plugin\u003C\u002Fli>\n\u003Cli>Works with any standards compliant WordPress theme\u003C\u002Fli>\n\u003Cli>Integrates with WP e-Commerce\u003C\u002Fli>\n\u003Cli>Adds restfull api connecting your store to ‘MyStores Hub’ in your account section of shippingeasy.com\u003C\u002Fli>\n\u003Cli>Adds Shippingeasy rate calculator to the\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Shipping\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Compare and book couriers in a few quick steps, no courier account necessary.\u003C\u002Fli>\n\u003Cli>Discounted rates from the world’s largest couriers.\u003C\u002Fli>\n\u003Cli>Consolidated view of all sold inventory and fulfillment in one place.\u003C\u002Fli>\n\u003Cli>Supports multiple platforms if you have more than one online store.\u003C\u002Fli>\n\u003Cli>Extensive package tracking and delivery updates give you and your customers peace of mind.\u003C\u002Fli>\n\u003Cli>International shipping options to expand your customer base.\u003C\u002Fli>\n\u003Cli>Comprehensive shipment reporting to help keep you organised.\u003C\u002Fli>\n\u003Cli>Automatically generates all labels and customs forms to save you time.\u003C\u002Fli>\n\u003Cli>Save commonly used package sizes, addresses and credit cards for speedy booking.\u003C\u002Fli>\n\u003Cli>24\u002F7 customer service with email, live chat and free phone support.\u003Cbr \u002F>\nFor more information, visit http:\u002F\u002Fwww.ShippingEasy.com\u003C\u002Fli>\n\u003C\u002Ful>\n","ShippingEasy is a powerful online shipping platform that integrates seamlessly with your WordPress WP e-Commerce store to give you a complete end-to-e …",6945,"2012-07-17T11:12:00.000Z",[72,19,73,74,23],"cart","shipping","shop","http:\u002F\u002Fwww.shippingeasy.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshippingeasy-for-wp-ecommerce.zip",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":13,"num_ratings":13,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":17,"tags":90,"homepage":94,"download_link":95,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wp-dropstream","DropStream – Automated eCommerce Fulfillment","1.2.3","karlfalconer","https:\u002F\u002Fprofiles.wordpress.org\u002Fkarlfalconer\u002F","\u003Ch4>DropStream Automates Your Order Fulfillment process\u003C\u002Fh4>\n\u003Cp>DropStream is the leading provider of ecommerce fulfillment integrations, allowing merchants to automate the process of fulfilling their sales orders. DropStream automates 3 main processes:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Automatically send orders to your fulfillment center or shipping solution\u003C\u002Fli>\n\u003Cli>Automatically send tracking numbers back to WordPress, notifying shoppers that their package is on the way\u003C\u002Fli>\n\u003Cli>Automatically update product inventory levels, keeping your online store updated with accurate available quantities\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>DropStream offers two core products:\u003C\u002Fp>\n\u003Col>\n\u003Cli>DropStream (http:\u002F\u002Fgetdropstream.com\u002F)\u003C\u002Fli>\n\u003Cli>PackageBee (http:\u002F\u002Fpackagebee.com\u002F)\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Depending on your integration needs, you are able to you use one or the other. Contact DropStream to find out which product is best for you. (http:\u002F\u002Fgetdropstream.com\u002Fcontact)\u003C\u002Fp>\n\u003Ch4>See what others say about DropStream\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Cp>We were hampered by data entry work-arounds, until DropStream tore down the technical wall that stood between us and our customers.\u003Cbr \u002F>\n  — Clay Clarkson, Whole Heart Ministries\u003C\u002Fp>\n\u003Cp>DropStream is a useful capability that gives us greater flexibility in meeting our fulfillment requirements. The service was easy to set up and has been very reliable.\u003Cbr \u002F>\n  — Scott Madsen, National Imports LLC\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Get Started With Your Free 14-day Trial\u003C\u002Fh4>\n\u003Cp>DropStream is actively integrated with thousands of fulfillment providers in North America and Europe, giving you tremendous flexibility on where to send your sales orders. You can see a [list of desitnation systems: (http:\u002F\u002Fsupport.getdropstream.com\u002Fcustomer\u002Fen\u002Fportal\u002Farticles\u002F2847048-currently-supported-warehouse-systems-wmss-imss-erps-?b_id=2404)] on our website. Don’t know the system used by your fulfillment center? \u003Ca href=\"http:\u002F\u002Fgetdropstream.com\u002Fcontact\" title=\"Contact DropStream\" rel=\"nofollow ugc\">Contact us\u003C\u002Fa> and we’ll confirm whether we currently support the system or if we can add support for it for you.\u003C\u002Fp>\n","DropStream is a powerful eCommerce plugin that integrates your WordPress site with your shipping solution or third-party fulfillment provider, allowin …",90,9458,"2022-07-22T19:39:00.000Z","5.9.13","4.0",[19,91,92,93,23],"ecommerce","fulfillment","woocommerce","http:\u002F\u002Fgetdropstream.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-dropstream.1.2.3.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":60,"num_ratings":106,"last_updated":107,"tested_up_to":108,"requires_at_least":16,"requires_php":17,"tags":109,"homepage":17,"download_link":112,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wpec-related-products","WP e-Commerce Related Products","1.3.2","Onnay Okheng","https:\u002F\u002Fprofiles.wordpress.org\u002Fonnayokheng\u002F","\u003Cp>WPEC Related Products for WP e-Commerce uses information available within the Single Product or All Page WPEC template to display related Products that belong to the same Product Category or Product Tag.\u003C\u002Fp>\n\u003Cp>WPEC Related Products extend the WP e-Commerce Plugin by displaying related Products to site. It automatically selects related Products based on the Category or Tag.\u003C\u002Fp>\n\u003Cp>Thanks to Versipellis, Adam Sargant, code monkey.\u003C\u002Fp>\n\u003Cp>Contact me for say hello \u003Ca href=\"http:\u002F\u002Fonnayokheng.com\" title=\"WordPress Developer Indonesia\" rel=\"nofollow ugc\">Onnay Okheng\u003C\u002Fa> or buy me a cup of chocolate 🙂\u003C\u002Fp>\n","WPEC Related Products for WP e-Commerce uses information available within the Single Product template to display related Products.",70,16163,4,"2012-11-21T15:20:00.000Z","3.4.2",[110,23,111],"spec","wpsc-related-products","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpec-related-products.1.3.2.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":60,"num_ratings":123,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":17,"tags":127,"homepage":132,"download_link":133,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"gourl-wp-ecommerce-bitcoin-altcoin-payment-gateway-addon","GoUrl WP eCommerce – Bitcoin Altcoin Payment Gateway Addon","1.1.2","gourl","https:\u002F\u002Fprofiles.wordpress.org\u002Fgourl\u002F","\u003Cp>See \u003Ca href=\"https:\u002F\u002Fgourl.io\u002Fbitcoin-payments-wp-ecommerce.html#screenshot\" rel=\"nofollow ugc\">Screenshots\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>WordPress Plugin for WP eCommerce Features –\u003C\u002Fp>\n\u003Cul>\n\u003Cli>100% Free Open Source Plugin on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcryptoapi\u002FBitcoin-Payments-WP-eCommerce\" rel=\"nofollow ugc\">Github.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Provides a Cryptocurrency Payment Gateway for \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-e-commerce\u002F\" rel=\"ugc\">WP eCommerce 3.8.10 or higher\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Accept Bitcoin, BitcoinCash, Litecoin, Dash, Dogecoin, Speedcoin, Reddcoin, Potcoin, Feathercoin, Vertcoin, Peercoin, MonetaryUnit payments in WP eCommerce\u003C\u002Fli>\n\u003Cli>No Monthly Fee, Transaction Fee from 0%\u003C\u002Fli>\n\u003Cli>Product Prices in Bitcoin\u002FAltcoins directly and sends the amount straight to your business wallet.\u003C\u002Fli>\n\u003Cli>Product Prices in USD\u002FEUR\u002FGBP\u002Fetc. Google\u002FBitstamp\u002FPoloniex Live Exchange Rates\u003C\u002Fli>\n\u003Cli>Direct Integration on your website, no external payment pages opens (as other payment gateways offer)\u003C\u002Fli>\n\u003Cli>You will see the bitcoin\u002Faltcoin payment statistics in one common table on your website. \u003C\u002Fli>\n\u003Cli>No Chargebacks, Global, Secure. All in automatic mode.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgourl.io\u002Fview\u002Fcontact\u002FContact_Us.html\" rel=\"nofollow ugc\">Free Tech Support\u003C\u002Fa> for You\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Plugin Page: \u003Ca href=\"https:\u002F\u002Fgourl.io\u002Fbitcoin-payments-wp-ecommerce.html\" rel=\"nofollow ugc\">https:\u002F\u002Fgourl.io\u002Fbitcoin-payments-wp-ecommerce.html\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Twitter: \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002FCryptocoinAPI\" rel=\"nofollow ugc\">https:\u002F\u002Ftwitter.com\u002FCryptocoinAPI\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Github: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcryptoapi\u002FBitcoin-Payments-WP-eCommerce\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fcryptoapi\u002FBitcoin-Payments-WP-eCommerce\u003C\u002Fa>\u003C\u002Fp>\n","Provides Bitcoin\u002FAltcoin Payment Gateway for WP eCommerce 3.8.10+ or higher. Accept Bitcoin, Bitcoin Cash, Litecoin, Dogecoin, Dash, etc Payments on Y …",40,103177,3,"2021-07-13T16:55:00.000Z","5.8.13","3.5",[128,129,23,130,131],"bitcoin","bitcoincash","wp-ecommerce","wpecommerce","https:\u002F\u002Fgourl.io\u002Fbitcoin-payments-wp-ecommerce.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgourl-wp-ecommerce-bitcoin-altcoin-payment-gateway-addon.zip",{"attackSurface":135,"codeSignals":147,"taintFlows":221,"riskAssessment":459,"analyzedAt":471},{"hooks":136,"ajaxHandlers":143,"restRoutes":144,"shortcodes":145,"cronEvents":146,"entryPointCount":13,"unprotectedCount":13},[137],{"type":138,"name":139,"callback":140,"file":141,"line":142},"action","admin_notices","anonymous","ldb-wp-e-commerce-ideal-loader.php",24,[],[],[],[],{"dangerousFunctions":148,"sqlUsage":149,"outputEscaping":151,"fileOperations":49,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":220},[],{"prepared":49,"raw":13,"locations":150},[],{"escaped":123,"rawEcho":152,"locations":153},34,[154,157,159,161,162,164,166,168,170,172,174,176,178,179,181,183,185,187,189,191,193,195,197,199,201,203,205,207,209,211,213,214,216,218],{"file":141,"line":155,"context":156},31,"raw output",{"file":158,"line":33,"context":156},"ldb-wp-e-commerce-ideal.php",{"file":158,"line":160,"context":156},89,{"file":158,"line":85,"context":156},{"file":158,"line":163,"context":156},91,{"file":158,"line":165,"context":156},92,{"file":158,"line":167,"context":156},93,{"file":158,"line":169,"context":156},94,{"file":158,"line":171,"context":156},95,{"file":158,"line":173,"context":156},96,{"file":158,"line":175,"context":156},97,{"file":158,"line":177,"context":156},99,{"file":158,"line":60,"context":156},{"file":158,"line":180,"context":156},101,{"file":158,"line":182,"context":156},102,{"file":158,"line":184,"context":156},103,{"file":158,"line":186,"context":156},104,{"file":158,"line":188,"context":156},105,{"file":158,"line":190,"context":156},106,{"file":158,"line":192,"context":156},139,{"file":158,"line":194,"context":156},140,{"file":158,"line":196,"context":156},141,{"file":158,"line":198,"context":156},142,{"file":158,"line":200,"context":156},143,{"file":158,"line":202,"context":156},144,{"file":158,"line":204,"context":156},145,{"file":158,"line":206,"context":156},146,{"file":158,"line":208,"context":156},147,{"file":158,"line":210,"context":156},148,{"file":158,"line":212,"context":156},149,{"file":158,"line":32,"context":156},{"file":158,"line":215,"context":156},151,{"file":158,"line":217,"context":156},155,{"file":158,"line":219,"context":156},156,[],[222,241,388],{"entryPoint":223,"graph":224,"unsanitizedCount":239,"severity":240},"submitpspid (ldb-wp-e-commerce-ideal.php:36)",{"nodes":225,"edges":236},[226,231],{"id":227,"type":228,"label":229,"file":158,"line":230},"n0","source","$_POST (x7)",53,{"id":232,"type":233,"label":234,"file":158,"line":177,"wp_function":235},"n1","sink","echo() [XSS]","echo",[237],{"from":227,"to":232,"sanitized":238},false,7,"medium",{"entryPoint":242,"graph":243,"unsanitizedCount":386,"severity":387},"submit_LDB_ideal (ldb-wp-e-commerce-ideal.php:168)",{"nodes":244,"edges":365},[245,248,251,255,257,261,263,267,269,273,275,279,281,285,287,291,293,297,299,303,305,309,311,315,317,321,323,327,329,333,335,339,341,345,347,351,353,357,359,363],{"id":227,"type":228,"label":246,"file":158,"line":247},"$_POST['ldb_ideal_type']",174,{"id":232,"type":233,"label":249,"file":158,"line":247,"wp_function":250},"update_option() [Settings Manipulation]","update_option",{"id":252,"type":228,"label":253,"file":158,"line":254},"n2","$_POST['ldb_ideal_id']",177,{"id":256,"type":233,"label":249,"file":158,"line":254,"wp_function":250},"n3",{"id":258,"type":228,"label":259,"file":158,"line":260},"n4","$_POST['ldb_ideal_subid']",180,{"id":262,"type":233,"label":249,"file":158,"line":260,"wp_function":250},"n5",{"id":264,"type":228,"label":265,"file":158,"line":266},"n6","$_POST['ldb_ideal_pspid_id']",183,{"id":268,"type":233,"label":249,"file":158,"line":266,"wp_function":250},"n7",{"id":270,"type":228,"label":271,"file":158,"line":272},"n8","$_POST['ldb_ideal_urlSuccess']",186,{"id":274,"type":233,"label":249,"file":158,"line":272,"wp_function":250},"n9",{"id":276,"type":228,"label":277,"file":158,"line":278},"n10","$_POST['ldb_ideal_urlCancel']",189,{"id":280,"type":233,"label":249,"file":158,"line":278,"wp_function":250},"n11",{"id":282,"type":228,"label":283,"file":158,"line":284},"n12","$_POST['ldb_ideal_urlError']",192,{"id":286,"type":233,"label":249,"file":158,"line":284,"wp_function":250},"n13",{"id":288,"type":228,"label":289,"file":158,"line":290},"n14","$_POST['ldb_ideal_url']",195,{"id":292,"type":233,"label":249,"file":158,"line":290,"wp_function":250},"n15",{"id":294,"type":228,"label":295,"file":158,"line":296},"n16","$_POST['ldb_ideal_pspid_url']",198,{"id":298,"type":233,"label":249,"file":158,"line":296,"wp_function":250},"n17",{"id":300,"type":228,"label":301,"file":158,"line":302},"n18","$_POST['ldb_ideal_key']",201,{"id":304,"type":233,"label":249,"file":158,"line":302,"wp_function":250},"n19",{"id":306,"type":228,"label":307,"file":158,"line":308},"n20","$_POST['ldb_ideal_pspid_first_name']",204,{"id":310,"type":233,"label":249,"file":158,"line":308,"wp_function":250},"n21",{"id":312,"type":228,"label":313,"file":158,"line":314},"n22","$_POST['ldb_ideal_pspid_last_name']",207,{"id":316,"type":233,"label":249,"file":158,"line":314,"wp_function":250},"n23",{"id":318,"type":228,"label":319,"file":158,"line":320},"n24","$_POST['ldb_ideal_pspid_email']",210,{"id":322,"type":233,"label":249,"file":158,"line":320,"wp_function":250},"n25",{"id":324,"type":228,"label":325,"file":158,"line":326},"n26","$_POST['ldb_ideal_pspid_address']",213,{"id":328,"type":233,"label":249,"file":158,"line":326,"wp_function":250},"n27",{"id":330,"type":228,"label":331,"file":158,"line":332},"n28","$_POST['ldb_ideal_pspid_city']",216,{"id":334,"type":233,"label":249,"file":158,"line":332,"wp_function":250},"n29",{"id":336,"type":228,"label":337,"file":158,"line":338},"n30","$_POST['ldb_ideal_pspid_phone']",219,{"id":340,"type":233,"label":249,"file":158,"line":338,"wp_function":250},"n31",{"id":342,"type":228,"label":343,"file":158,"line":344},"n32","$_POST['ldb_ideal_pspid_zip']",222,{"id":346,"type":233,"label":249,"file":158,"line":344,"wp_function":250},"n33",{"id":348,"type":228,"label":349,"file":158,"line":350},"n34","$_POST['ldb_ideal_pspid_country']",225,{"id":352,"type":233,"label":249,"file":158,"line":350,"wp_function":250},"n35",{"id":354,"type":228,"label":355,"file":158,"line":356},"n36","$_POST['ldb_ideal_currency']",228,{"id":358,"type":233,"label":249,"file":158,"line":356,"wp_function":250},"n37",{"id":360,"type":228,"label":361,"file":158,"line":362},"n38","$_POST['ldb_ideal_language']",231,{"id":364,"type":233,"label":249,"file":158,"line":362,"wp_function":250},"n39",[366,367,368,369,370,371,372,373,374,375,376,377,378,379,380,381,382,383,384,385],{"from":227,"to":232,"sanitized":238},{"from":252,"to":256,"sanitized":238},{"from":258,"to":262,"sanitized":238},{"from":264,"to":268,"sanitized":238},{"from":270,"to":274,"sanitized":238},{"from":276,"to":280,"sanitized":238},{"from":282,"to":286,"sanitized":238},{"from":288,"to":292,"sanitized":238},{"from":294,"to":298,"sanitized":238},{"from":300,"to":304,"sanitized":238},{"from":306,"to":310,"sanitized":238},{"from":312,"to":316,"sanitized":238},{"from":318,"to":322,"sanitized":238},{"from":324,"to":328,"sanitized":238},{"from":330,"to":334,"sanitized":238},{"from":336,"to":340,"sanitized":238},{"from":342,"to":346,"sanitized":238},{"from":348,"to":352,"sanitized":238},{"from":354,"to":358,"sanitized":238},{"from":360,"to":364,"sanitized":238},20,"low",{"entryPoint":389,"graph":390,"unsanitizedCount":458,"severity":387},"\u003Cldb-wp-e-commerce-ideal> (ldb-wp-e-commerce-ideal.php:0)",{"nodes":391,"edges":436},[392,393,394,395,396,397,398,399,400,401,402,403,404,405,406,407,408,409,410,411,412,413,414,415,416,417,418,419,420,421,422,423,424,425,426,427,428,429,430,431,432,434],{"id":227,"type":228,"label":229,"file":158,"line":230},{"id":232,"type":233,"label":234,"file":158,"line":177,"wp_function":235},{"id":252,"type":228,"label":246,"file":158,"line":247},{"id":256,"type":233,"label":249,"file":158,"line":247,"wp_function":250},{"id":258,"type":228,"label":253,"file":158,"line":254},{"id":262,"type":233,"label":249,"file":158,"line":254,"wp_function":250},{"id":264,"type":228,"label":259,"file":158,"line":260},{"id":268,"type":233,"label":249,"file":158,"line":260,"wp_function":250},{"id":270,"type":228,"label":265,"file":158,"line":266},{"id":274,"type":233,"label":249,"file":158,"line":266,"wp_function":250},{"id":276,"type":228,"label":271,"file":158,"line":272},{"id":280,"type":233,"label":249,"file":158,"line":272,"wp_function":250},{"id":282,"type":228,"label":277,"file":158,"line":278},{"id":286,"type":233,"label":249,"file":158,"line":278,"wp_function":250},{"id":288,"type":228,"label":283,"file":158,"line":284},{"id":292,"type":233,"label":249,"file":158,"line":284,"wp_function":250},{"id":294,"type":228,"label":289,"file":158,"line":290},{"id":298,"type":233,"label":249,"file":158,"line":290,"wp_function":250},{"id":300,"type":228,"label":295,"file":158,"line":296},{"id":304,"type":233,"label":249,"file":158,"line":296,"wp_function":250},{"id":306,"type":228,"label":301,"file":158,"line":302},{"id":310,"type":233,"label":249,"file":158,"line":302,"wp_function":250},{"id":312,"type":228,"label":307,"file":158,"line":308},{"id":316,"type":233,"label":249,"file":158,"line":308,"wp_function":250},{"id":318,"type":228,"label":313,"file":158,"line":314},{"id":322,"type":233,"label":249,"file":158,"line":314,"wp_function":250},{"id":324,"type":228,"label":319,"file":158,"line":320},{"id":328,"type":233,"label":249,"file":158,"line":320,"wp_function":250},{"id":330,"type":228,"label":325,"file":158,"line":326},{"id":334,"type":233,"label":249,"file":158,"line":326,"wp_function":250},{"id":336,"type":228,"label":331,"file":158,"line":332},{"id":340,"type":233,"label":249,"file":158,"line":332,"wp_function":250},{"id":342,"type":228,"label":337,"file":158,"line":338},{"id":346,"type":233,"label":249,"file":158,"line":338,"wp_function":250},{"id":348,"type":228,"label":343,"file":158,"line":344},{"id":352,"type":233,"label":249,"file":158,"line":344,"wp_function":250},{"id":354,"type":228,"label":349,"file":158,"line":350},{"id":358,"type":233,"label":249,"file":158,"line":350,"wp_function":250},{"id":360,"type":228,"label":355,"file":158,"line":356},{"id":364,"type":233,"label":249,"file":158,"line":356,"wp_function":250},{"id":433,"type":228,"label":361,"file":158,"line":362},"n40",{"id":435,"type":233,"label":249,"file":158,"line":362,"wp_function":250},"n41",[437,438,439,440,441,442,443,444,445,446,447,448,449,450,451,452,453,454,455,456,457],{"from":227,"to":232,"sanitized":238},{"from":252,"to":256,"sanitized":238},{"from":258,"to":262,"sanitized":238},{"from":264,"to":268,"sanitized":238},{"from":270,"to":274,"sanitized":238},{"from":276,"to":280,"sanitized":238},{"from":282,"to":286,"sanitized":238},{"from":288,"to":292,"sanitized":238},{"from":294,"to":298,"sanitized":238},{"from":300,"to":304,"sanitized":238},{"from":306,"to":310,"sanitized":238},{"from":312,"to":316,"sanitized":238},{"from":318,"to":322,"sanitized":238},{"from":324,"to":328,"sanitized":238},{"from":330,"to":334,"sanitized":238},{"from":336,"to":340,"sanitized":238},{"from":342,"to":346,"sanitized":238},{"from":348,"to":352,"sanitized":238},{"from":354,"to":358,"sanitized":238},{"from":360,"to":364,"sanitized":238},{"from":433,"to":435,"sanitized":238},27,{"summary":460,"deductions":461},"The \"ldb-wp-e-commerce-ideal\" plugin v2.0.3 exhibits a generally positive security posture due to the absence of known vulnerabilities and a contained attack surface.  The code analysis reveals a complete lack of AJAX handlers, REST API routes, shortcodes, and cron events, indicating a minimal exposure to external input. Furthermore, all identified SQL queries utilize prepared statements, a crucial security best practice. The plugin also has no recorded CVEs, suggesting a history of secure development or at least prompt patching of any past issues.\n\nHowever, significant concerns arise from the output escaping and taint analysis. A mere 8% of output is properly escaped, meaning a substantial majority of dynamic content displayed to users could be vulnerable to cross-site scripting (XSS) attacks. The taint analysis, while showing no critical or high severity flows, does highlight three flows with unsanitized paths. This, combined with the poor output escaping, presents a tangible risk of data being manipulated or injected into the application in an unsafe manner, potentially leading to XSS or other injection-based vulnerabilities.\n\nWhile the plugin has a clean vulnerability history, the concerning static analysis findings for output escaping and taint flows suggest potential undiscovered vulnerabilities. The absence of nonce and capability checks on any potential entry points (though none were identified) also remains a weakness. In conclusion, the plugin benefits from a small attack surface and good SQL practices, but the poor output escaping and unsanitized path flows are significant weaknesses that require immediate attention to mitigate potential security risks.",[462,465,467,469],{"reason":463,"points":464},"Poor output escaping (8% proper)",15,{"reason":466,"points":11},"Unsanitized paths in taint flows (3 flows)",{"reason":468,"points":31},"No capability checks",{"reason":470,"points":31},"No nonce checks","2026-03-16T23:59:10.018Z",{"wat":473,"direct":484},{"assetPaths":474,"generatorPatterns":478,"scriptPaths":479,"versionParams":480},[475,476,477],"\u002Fwp-content\u002Fplugins\u002Fldb-wp-e-commerce-ideal\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fldb-wp-e-commerce-ideal\u002Fcss\u002Ffrontend.css","\u002Fwp-content\u002Fplugins\u002Fldb-wp-e-commerce-ideal\u002Fjs\u002Ffrontend.js",[],[477],[481,482,483],"ldb-wp-e-commerce-ideal\u002Fcss\u002Fstyle.css?ver=","ldb-wp-e-commerce-ideal\u002Fcss\u002Ffrontend.css?ver=","ldb-wp-e-commerce-ideal\u002Fjs\u002Ffrontend.js?ver=",{"cssClasses":485,"htmlComments":486,"htmlAttributes":489,"restEndpoints":508,"jsGlobals":509,"shortcodeOutput":511},[],[487,488],"\u003C!--customer information starts-->","\u003C!--customer information ends-->",[490,491,492,493,494,495,496,497,498,499,500,501,502,503,504,505,506,507],"NAME=\"PSPID\"","NAME=\"AMOUNT\"","NAME=\"ORDERID\"","NAME=\"CURRENCY\"","NAME=\"LANGUAGE\"","NAME=\"ACCEPTURL\"","NAME=\"CANCELURL\"","NAME=\"DECLINEURL\"","NAME=\"EXCEPTIONURL\"","NAME=\"CN\"","NAME=\"EMAIL\"","NAME=\"OWNERZIP\"","NAME=\"OWNERADDRESS\"","NAME=\"OWNERCTY\"","NAME=\"OWNERTOWN\"","NAME=\"OWNERTELNO\"","NAME=\"COM\"","NAME=\"PM\"",[],[510],"window.ideal_form.submit()",[]]