[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f2wZAt7JVDKoThZ7uKMfDs6WQE-rGfXAdXkVw6Q6tARE":3,"$feZ2_scZQt5oohqOIUrAK0df4WNu9pp-UEy-OkdnGHyk":303,"$fyRnUSIB22jJXcXf9MJPvH656s1AszoBabH9GcumsnRY":307},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"discovery_status":32,"vulnerabilities":33,"developer":52,"crawl_stats":39,"alternatives":59,"analysis":156,"fingerprints":283},"leira-cron-jobs","Cron Jobs","1.2.12","Ariel","https:\u002F\u002Fprofiles.wordpress.org\u002Farielhr1987\u002F","\u003Cp>\u003Cstrong>Cron Jobs\u003C\u002Fstrong> is a lightweight yet powerful plugin that simplifies the management of your WordPress cron events.\u003C\u002Fp>\n\u003Cp>With this tool, you can quickly view, run, and modify your scheduled tasks (cron jobs) without writing code. It’s ideal for developers, site managers, or anyone needing better control over WordPress’s background processes.\u003C\u002Fp>\n\u003Cp>Key features include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Run or bulk run selected cron jobs instantly.\u003C\u002Fli>\n\u003Cli>Edit cron job schedule, next run time, and arguments directly from the list view.\u003C\u002Fli>\n\u003Cli>Customize visible columns and preferences via the native “Screen Options” panel.\u003C\u002Fli>\n\u003Cli>Access help and documentation to better understand how WordPress cron works.\u003C\u002Fli>\n\u003C\u002Ful>\n","Easily manage and monitor your WordPress cron jobs from a clean, intuitive interface.",2000,31011,94,3,"2025-12-19T00:50:00.000Z","6.9.4","4.1","5.4",[20,21,22,23,24],"admin-tools","automation","cron","scheduler","wp-cron","https:\u002F\u002Fgithub.com\u002Farielhr1987\u002Fleira-cron-jobs","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.2.12.zip",99,1,0,"2024-09-12 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[34],{"id":35,"url_slug":36,"title":37,"description":38,"plugin_slug":4,"theme_slug":39,"affected_versions":40,"patched_in_version":41,"severity":42,"cvss_score":43,"cvss_vector":44,"vuln_type":45,"published_date":30,"updated_date":46,"references":47,"days_to_patch":49,"patch_diff_files":50,"patch_trac_url":39,"research_status":39,"research_verified":51,"research_rounds_completed":29,"research_plan":39,"research_summary":39,"research_vulnerable_code":39,"research_fix_diff":39,"research_exploit_outline":39,"research_model_used":39,"research_started_at":39,"research_completed_at":39,"research_error":39,"poc_status":39,"poc_video_id":39,"poc_summary":39,"poc_steps":39,"poc_tested_at":39,"poc_wp_version":39,"poc_php_version":39,"poc_playwright_script":39,"poc_exploit_code":39,"poc_has_trace":51,"poc_model_used":39,"poc_verification_depth":39},"CVE-2024-8731","cron-jobs-reflected-cross-site-scripting","Cron Jobs \u003C= 1.2.9 - Reflected Cross-Site Scripting","The Cron Jobs plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 1.2.9. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C=1.2.9","1.2.10","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-09-23 18:19:50",[48],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F5f6da693-4610-4875-aa14-102809309b8d?source=api-prod",12,[],false,{"slug":53,"display_name":7,"profile_url":8,"plugin_count":54,"total_installs":55,"avg_security_score":56,"avg_patch_time_days":49,"trust_score":57,"computed_at":58},"arielhr1987",5,9010,97,92,"2026-05-19T18:14:27.063Z",[60,81,102,121,138],{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":70,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":75,"tags":76,"homepage":75,"download_link":79,"security_score":80,"vuln_count":29,"unpatched_count":29,"last_vuln_date":39,"fetched_at":31},"cronjob-scheduler","Cronjob Scheduler","1.40.1","chrispage1","https:\u002F\u002Fprofiles.wordpress.org\u002Fchrispage1\u002F","\u003Ch4>Cronjob Scheduler\u003C\u002Fh4>\n\u003Cp>Cronjob Scheduler allows you to create custom WordPress tasks that are automatically triggered on a schedule you define.\u003Cbr \u002F>\nCronjob Scheduler does not overwrite WordPress’s existing scheduling functionality, which it and plugins use for a number of internal tasks.\u003Cbr \u002F>\nInstead, it simply replaces the standard WordPress mechanism which triggers them with a more reliable one from your operating system.\u003Cbr \u002F>\nIn addition, it helps improve your site speed by making the server handle recurring tasks, rather than unsuspecting visitors…\u003C\u002Fp>\n\u003Cp>The motivation behind building this plugin was out of frustration with other similar plugins that claim to do the same thing.\u003C\u002Fp>\n\u003Cp>Cronjob Scheduler allows you to run frequent tasks reliably and timely without anyone having to visit your site at all. All you need is at least 1 action and a Unix Crontab schedule!\u003C\u002Fp>\n\u003Ch4>About\u003C\u002Fh4>\n\u003Cp>This plugin was designed and built by Motocom. It is designed to make easy work of creating and managing custom cron jobs. If this plugin has been helpful for you, then please donate to keep our WordPress plugin projects running!\u003C\u002Fp>\n","Cronjob Scheduler allows you to automate regular tasks and actions within your WordPress installation!",1000,41524,88,14,"2020-05-26T12:02:00.000Z","5.4.19","3.5.1","",[21,22,77,23,78],"cronjob","task","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcronjob-scheduler.1.40.1.zip",85,{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":89,"downloaded":90,"rating":91,"num_ratings":92,"last_updated":93,"tested_up_to":94,"requires_at_least":95,"requires_php":75,"tags":96,"homepage":100,"download_link":101,"security_score":80,"vuln_count":29,"unpatched_count":29,"last_vuln_date":39,"fetched_at":31},"easycron","Easycron","1.3.2","EasyCron","https:\u002F\u002Fprofiles.wordpress.org\u002Feasycron\u002F","\u003Cp>EasyCron (https:\u002F\u002Fwww.easycron.com) provides reliable online cron job service worldwide. Its insanely easy-to-use webcron have helped thousands of users who’re fastidious on task scheduling perfectly configure cron jobs.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Support Cron expression, and the year field (\u003Ca href=\"https:\u002F\u002Fwww.easycron.com\u002Ffaq\u002FWhat-cron-expression-does-easycron-support\" rel=\"nofollow ugc\">cron expression guide\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Email otifications\u003C\u002Fli>\n\u003Cli>Slack notifications\u003C\u002Fli>\n\u003Cli>Webhook callbacks\u003C\u002Fli>\n\u003Cli>Cron job execution logs\u003C\u002Fli>\n\u003Cli>Time prediction of executions.\u003C\u002Fli>\n\u003Cli>Customize schedule timezone\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Questions & Answers\u003C\u002Fh3>\n\u003Ch4>Is EasyCron free?\u003C\u002Fh4>\n\u003Cp>EasyCron offers a free forever plan (you just need to go to https:\u002F\u002Fwww.easycron.com\u002Fuser\u002Fplan to renew the free plan monthly).\u003Cbr \u002F>\nYou may also upgrade to a premium plan which has some advanced features and will automatically get renewed yearly.\u003C\u002Fp>\n","Utilize EasyCron's API to configure a cron job that will trigger WordPress's cron script (wp-cron.php) periodically.",200,13617,100,2,"2023-04-29T20:41:00.000Z","6.2.9","3.0",[22,97,98,99,24],"cron-job","task-scheduler","webcron","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasycron\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasycron.1.3.2.zip",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":89,"downloaded":110,"rating":91,"num_ratings":54,"last_updated":111,"tested_up_to":112,"requires_at_least":113,"requires_php":114,"tags":115,"homepage":119,"download_link":120,"security_score":57,"vuln_count":29,"unpatched_count":29,"last_vuln_date":39,"fetched_at":31},"migrate-wp-cron-to-action-scheduler","Advanced Cron Scheduler for WordPress","1.1.4","Sayan Datta","https:\u002F\u002Fprofiles.wordpress.org\u002Finfosatech\u002F","\u003Cp>The WP-Cron system in WordPress is not a “real” cron system, which means events may not run exactly according to their schedule because the system relies on regular traffic to the website in order to trigger scheduled events.\u003C\u002Fp>\n\u003Ch3>Reasons WP-Cron events can miss their schedule\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Low traffic websites may not trigger the event runner often enough\u003C\u002Fli>\n\u003Cli>A fatal error caused by a plugin or theme may break the event runner\u003C\u002Fli>\n\u003Cli>A plugin or theme may intentionally or unintentionally break the event runner\u003C\u002Fli>\n\u003Cli>BasicAuth, a firewall, or other access restrictions may block the event runner\u003C\u002Fli>\n\u003Cli>A problem with your web hosting or web server may break the event runner\u003C\u002Fli>\n\u003Cli>The \u003Ccode>DISABLE_WP_CRON\u003C\u002Fcode> configuration constant is set but no alternative cron runner has been put in place\u003C\u002Fli>\n\u003Cli>Long-running events may temporarily block the event runner\u003C\u002Fli>\n\u003Cli>High traffic websites may suffer from sequential processing issues that block the event runner\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The Advanced Cron Scheduler for WordPress plugin does alter the way that WordPress core runs cron events using the Action Scheduler Library.\u003C\u002Fp>\n\u003Cp>Action Scheduler is a scalable, traceable job queue for background processing large sets of actions in WordPress. It’s specially designed to be distributed in WordPress plugins.\u003C\u002Fp>\n\u003Cp>Action Scheduler works by triggering an action hook to run at some time in the future. Each hook can be scheduled with unique data, to allow callbacks to perform operations on that data. The hook can also be scheduled to run on one or more occassions.\u003C\u002Fp>\n\u003Cp>Think of it like an extension to \u003Ccode>do_action()\u003C\u002Fcode> which adds the ability to delay and repeat a hook.\u003C\u002Fp>\n\u003Ch3>Battle-Tested Background Processing\u003C\u002Fh3>\n\u003Cp>Every month, Action Scheduler processes millions of payments for \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-subscriptions\u002F\" rel=\"nofollow ugc\">Subscriptions\u003C\u002Fa>, webhooks for \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce\u002F\" rel=\"ugc\">WooCommerce\u003C\u002Fa>, as well as emails and other events for a range of other plugins.\u003C\u002Fp>\n\u003Cp>It’s been seen on live sites processing queues in excess of 50,000 jobs and doing resource intensive operations, like processing payments and creating orders, at a sustained rate of over 10,000 \u002F hour without negatively impacting normal site operations.\u003C\u002Fp>\n\u003Cp>This is all on infrastructure and WordPress sites outside the control of the plugin author.\u003C\u002Fp>\n\u003Cp>If your plugin needs background processing, especially of large sets of tasks, Action Scheduler can help.\u003C\u002Fp>\n\u003Ch3>Learn More\u003C\u002Fh3>\n\u003Cp>To learn more about how to Action Scheduler works, and how to use it in your plugin, check out the docs on \u003Ca href=\"https:\u002F\u002Factionscheduler.org\" rel=\"nofollow ugc\">ActionScheduler.org\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>There you will find:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Factionscheduler.org\u002Fusage\u002F\" rel=\"nofollow ugc\">Usage guide\u003C\u002Fa>: instructions on installing and using Action Scheduler\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Factionscheduler.org\u002Fwp-cli\u002F\" rel=\"nofollow ugc\">WP CLI guide\u003C\u002Fa>: instructions on running Action Scheduler at scale via WP CLI\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Factionscheduler.org\u002Fapi\u002F\" rel=\"nofollow ugc\">API Reference\u003C\u002Fa>: complete reference guide for all API functions\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Factionscheduler.org\u002Fadmin\u002F\" rel=\"nofollow ugc\">Administration Guide\u003C\u002Fa>: guide to managing scheduled actions via the administration screen\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Factionscheduler.org\u002Fperf\u002F\" rel=\"nofollow ugc\">Guide to Background Processing at Scale\u003C\u002Fa>: instructions for running Action Scheduler at scale via the default WP Cron queue runner\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Community support via the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fmigrate-wp-cron-to-action-scheduler\u002F\" rel=\"ugc\">support forums\u003C\u002Fa> at WordPress.org.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contribute\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Active development of this plugin is handled \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fiamsayan\u002Fadvanced-cron-scheduler\u002F\" rel=\"nofollow ugc\">on GitHub\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Feel free to \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fiamsayan\u002Fadvanced-cron-scheduler\u002F\" rel=\"nofollow ugc\">fork the project on GitHub\u003C\u002Fa> and submit your contributions via pull request.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Action Scheduler is developed and maintained by \u003Ca href=\"http:\u002F\u002Fautomattic.com\u002F\" rel=\"nofollow ugc\">Automattic\u003C\u002Fa>.\u003C\u002Fp>\n","The Advanced Cron Scheduler for WordPress plugin helps to easily replace or migrate Native WordPress Cron to the Action Scheduler Library.",9342,"2025-04-29T14:12:00.000Z","6.8.5","6.5","7.1",[116,117,118,23,24],"action-scheduler","cron-manager","debug","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmigrate-wp-cron-to-action-scheduler\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmigrate-wp-cron-to-action-scheduler.1.1.4.zip",{"slug":122,"name":123,"version":124,"author":125,"author_profile":126,"description":127,"short_description":128,"active_installs":129,"downloaded":130,"rating":91,"num_ratings":28,"last_updated":131,"tested_up_to":112,"requires_at_least":132,"requires_php":133,"tags":134,"homepage":75,"download_link":137,"security_score":91,"vuln_count":29,"unpatched_count":29,"last_vuln_date":39,"fetched_at":31},"controlled-draft-publisher","Controlled Draft Publisher","1.4","techygeekshome","https:\u002F\u002Fprofiles.wordpress.org\u002Ftechygeekshome\u002F","\u003Cp>Publishes one draft post every X minutes. Includes logging, stats, and an admin dashboard with start\u002Fstop, manual publish, filter, and refresh controls.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Publish one draft post at a configurable interval.\u003Cbr \u002F>\n– Simple start\u002Fstop controls and manual publish button.\u003Cbr \u002F>\n– Activity log with timestamps, post titles, and permalinks.\u003Cbr \u002F>\n– Basic stats: total published and last published entry.\u003Cbr \u002F>\n– Works with selected post types.\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>Controlled Draft Publisher stores an activity log (\u003Ccode>cdp_log\u003C\u002Fcode>) in the WordPress database when logging is enabled. The log includes post IDs, titles, timestamps, permalinks, and post types for published drafts. No user data is collected or sent externally. Logs can be cleared or exported via the dashboard.\u003C\u002Fp>\n\u003Ch3>Notes\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Ensure your site meets the PHP and WordPress version requirements before installing.\u003C\u002Fli>\n\u003Cli>Server cron or WP-Cron behaviour may vary on low-traffic sites; consider using a real cron if reliable timing is required.\u003C\u002Fli>\n\u003Cli>Translation-ready: Includes \u003Ccode>controlled-draft-publisher.pot\u003C\u002Fcode> in the \u003Ccode>languages\u002F\u003C\u002Fcode> folder for translators.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This program is free software; you can redistribute it and\u002For modify it under the terms of the GNU General Public License version 2, or any later version, as published by the Free Software Foundation.\u003C\u002Fp>\n\u003Ch3>License URI\u003C\u002Fh3>\n\u003Cp>https:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-2.0.html\u003C\u002Fp>\n","Publishes one draft post every configurable interval, with logging and an admin dashboard.",30,331,"2026-01-19T08:53:00.000Z","5.0","8.0",[21,22,135,136,23],"drafts","publishing","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontrolled-draft-publisher.1.4.zip",{"slug":139,"name":140,"version":141,"author":142,"author_profile":143,"description":144,"short_description":145,"active_installs":146,"downloaded":147,"rating":91,"num_ratings":28,"last_updated":148,"tested_up_to":16,"requires_at_least":132,"requires_php":149,"tags":150,"homepage":154,"download_link":155,"security_score":91,"vuln_count":29,"unpatched_count":29,"last_vuln_date":39,"fetched_at":31},"simple-auto-post-scheduler","Simple Auto Post Scheduler","1.0.0","Mehedi Hasan","https:\u002F\u002Fprofiles.wordpress.org\u002Fmehedidev\u002F","\u003Cp>Simple Auto Post Scheduler is a powerful yet simple plugin that allows you to schedule your draft posts to be automatically published at specific dates and times. Perfect for bloggers, content managers, and anyone who wants to automate their content publishing workflow.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Schedule posts to publish at specific date and time\u003C\u002Fli>\n\u003Cli>Set recurring intervals (hourly, daily, weekly, monthly)\u003C\u002Fli>\n\u003Cli>Simple and intuitive user interface\u003C\u002Fli>\n\u003Cli>Dashboard widget showing upcoming scheduled posts\u003C\u002Fli>\n\u003Cli>Post editor meta box for quick schedule overview\u003C\u002Fli>\n\u003Cli>Automatic cleanup of old completed schedules\u003C\u002Fli>\n\u003Cli>Fully responsive admin interface\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Use Cases:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Schedule blog posts for optimal publishing times\u003C\u002Fli>\n\u003Cli>Automate content distribution throughout the week\u003C\u002Fli>\n\u003Cli>Plan content calendar in advance\u003C\u002Fli>\n\u003Cli>Maintain consistent posting schedule\u003C\u002Fli>\n\u003Cli>Publish content during off-hours or vacations\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>How It Works:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>Create your post as a draft\u003C\u002Fli>\n\u003Cli>Go to Simple Auto Post Scheduler \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Add New\u003C\u002Fli>\n\u003Cli>Select your draft post\u003C\u002Fli>\n\u003Cli>Choose date and time\u003C\u002Fli>\n\u003Cli>Optionally set recurring interval\u003C\u002Fli>\n\u003Cli>Your post will automatically publish at the scheduled time\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, feature requests, or bug reports, please visit our support forum or contact us through our website.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed with ❤️ for the WordPress community.\u003C\u002Fp>\n","Schedule posts to be published at specific times and intervals with an easy-to-use interface.",20,307,"2026-02-28T06:40:00.000Z","7.0",[151,22,152,153,23],"auto-publish","post-automation","schedule-posts","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-auto-post-scheduler\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-auto-post-scheduler.zip",{"attackSurface":157,"codeSignals":190,"taintFlows":212,"riskAssessment":269,"analyzedAt":282},{"hooks":158,"ajaxHandlers":180,"restRoutes":187,"shortcodes":188,"cronEvents":189,"entryPointCount":92,"unprotectedCount":92},[159,165,168,170,173,177],{"type":160,"name":161,"callback":162,"file":163,"line":164},"action","plugins_loaded","anonymous","includes\\class-leira-cron-jobs.php",149,{"type":160,"name":166,"callback":162,"file":163,"line":167},"admin_enqueue_scripts",167,{"type":160,"name":166,"callback":162,"file":163,"line":169},168,{"type":160,"name":171,"callback":162,"file":163,"line":172},"admin_menu",169,{"type":174,"name":175,"callback":162,"file":163,"line":176},"filter","set-screen-option",172,{"type":174,"name":178,"callback":162,"file":163,"line":179},"admin_footer_text",177,[181,184],{"action":182,"nopriv":51,"callback":162,"hasNonce":51,"hasCapCheck":51,"file":163,"line":183},"inline-save-cron-job",170,{"action":185,"nopriv":51,"callback":162,"hasNonce":51,"hasCapCheck":51,"file":163,"line":186},"leira-cron-jobs-footer-rated",178,[],[],[],{"dangerousFunctions":191,"sqlUsage":192,"outputEscaping":194,"fileOperations":29,"externalRequests":29,"nonceChecks":210,"capabilityChecks":54,"bundledLibraries":211},[],{"prepared":29,"raw":29,"locations":193},[],{"escaped":195,"rawEcho":54,"locations":196},48,[197,201,203,206,208],{"file":198,"line":199,"context":200},"admin\\class-leira-cron-jobs-admin.php",191,"raw output",{"file":198,"line":202,"context":200},592,{"file":204,"line":205,"context":200},"admin\\class-leira-cron-jobs-list-table.php",66,{"file":204,"line":207,"context":200},586,{"file":204,"line":209,"context":200},594,4,[],[213,250],{"entryPoint":214,"graph":215,"unsanitizedCount":210,"severity":42},"search_box (admin\\class-leira-cron-jobs-list-table.php:413)",{"nodes":216,"edges":245},[217,222,227,231,233,237,239,243],{"id":218,"type":219,"label":220,"file":204,"line":221},"n0","source","$_REQUEST['orderby']",421,{"id":223,"type":224,"label":225,"file":204,"line":221,"wp_function":226},"n1","sink","echo() [XSS]","echo",{"id":228,"type":219,"label":229,"file":204,"line":230},"n2","$_REQUEST['order']",424,{"id":232,"type":224,"label":225,"file":204,"line":230,"wp_function":226},"n3",{"id":234,"type":219,"label":235,"file":204,"line":236},"n4","$_REQUEST['filter']",427,{"id":238,"type":224,"label":225,"file":204,"line":236,"wp_function":226},"n5",{"id":240,"type":219,"label":241,"file":204,"line":242},"n6","$_REQUEST['page']",430,{"id":244,"type":224,"label":225,"file":204,"line":242,"wp_function":226},"n7",[246,247,248,249],{"from":218,"to":223,"sanitized":51},{"from":228,"to":232,"sanitized":51},{"from":234,"to":238,"sanitized":51},{"from":240,"to":244,"sanitized":51},{"entryPoint":251,"graph":252,"unsanitizedCount":29,"severity":268},"\u003Cclass-leira-cron-jobs-list-table> (admin\\class-leira-cron-jobs-list-table.php:0)",{"nodes":253,"edges":262},[254,255,256,257,258,259,260,261],{"id":218,"type":219,"label":220,"file":204,"line":221},{"id":223,"type":224,"label":225,"file":204,"line":221,"wp_function":226},{"id":228,"type":219,"label":229,"file":204,"line":230},{"id":232,"type":224,"label":225,"file":204,"line":230,"wp_function":226},{"id":234,"type":219,"label":235,"file":204,"line":236},{"id":238,"type":224,"label":225,"file":204,"line":236,"wp_function":226},{"id":240,"type":219,"label":241,"file":204,"line":242},{"id":244,"type":224,"label":225,"file":204,"line":242,"wp_function":226},[263,265,266,267],{"from":218,"to":223,"sanitized":264},true,{"from":228,"to":232,"sanitized":264},{"from":234,"to":238,"sanitized":264},{"from":240,"to":244,"sanitized":264},"low",{"summary":270,"deductions":271},"The 'leira-cron-jobs' plugin version 1.2.12 exhibits a mixed security posture. On the positive side, it demonstrates good practices in its SQL query handling, with 100% prepared statements, and a high rate of output escaping (91%). It also includes a reasonable number of nonce and capability checks (4 and 5 respectively). However, a significant concern arises from its attack surface, specifically two AJAX handlers that lack authentication checks. This is further exacerbated by a taint analysis flow with an unsanitized path, indicating a potential for vulnerabilities if not handled carefully.\n\nThe vulnerability history shows one known CVE, which has been patched, and a medium severity vulnerability in the past related to Cross-site Scripting. While the current version may not have unpatched critical or high-severity issues, the past pattern of XSS and the presence of an unsanitized path in the taint analysis suggest a potential for similar issues to emerge if code is not meticulously reviewed. The lack of proper authentication on AJAX endpoints is a direct invitation for exploitation.\n\nIn conclusion, while the plugin employs some good security practices, the unprotected AJAX endpoints and the identified unsanitized path present immediate risks. The historical vulnerability for XSS, though patched, warrants vigilance. Addressing the unprotected AJAX handlers should be the top priority to mitigate the current risks.",[272,275,278,280],{"reason":273,"points":274},"2 AJAX handlers without auth checks",10,{"reason":276,"points":277},"Taint flow with unsanitized path",8,{"reason":279,"points":54},"1 known CVE (even if patched)",{"reason":281,"points":54},"Medium severity vulnerability in history","2026-03-16T18:29:03.617Z",{"wat":284,"direct":293},{"assetPaths":285,"generatorPatterns":288,"scriptPaths":289,"versionParams":290},[286,287],"\u002Fwp-content\u002Fplugins\u002Fleira-cron-jobs\u002Fbuild\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fleira-cron-jobs\u002Fbuild\u002Fadmin.js",[],[287],[291,292],"leira-cron-jobs\u002Fbuild\u002Fadmin.css?ver=","leira-cron-jobs\u002Fbuild\u002Fadmin.js?ver=",{"cssClasses":294,"htmlComments":296,"htmlAttributes":298,"restEndpoints":300,"jsGlobals":301,"shortcodeOutput":302},[295],"wp-heading-inline",[297],"\u003C!-- The cron job table instance -->",[299],"data-screen",[],[],[],{"error":264,"url":304,"statusCode":305,"statusMessage":306,"message":306},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fleira-cron-jobs\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":308,"versions":309},16,[310,315,322,328,336,344,352,360,368,376,384,392,400,408,416,424],{"version":6,"download_url":26,"svn_tag_url":311,"released_at":39,"has_diff":51,"diff_files_changed":312,"diff_lines":39,"trac_diff_url":313,"vulnerabilities":314,"is_current":264},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.2.12\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.2.11&new_path=%2Fleira-cron-jobs%2Ftags%2F1.2.12",[],{"version":316,"download_url":317,"svn_tag_url":318,"released_at":39,"has_diff":51,"diff_files_changed":319,"diff_lines":39,"trac_diff_url":320,"vulnerabilities":321,"is_current":51},"1.2.11","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.2.11.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.2.11\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.2.10&new_path=%2Fleira-cron-jobs%2Ftags%2F1.2.11",[],{"version":41,"download_url":323,"svn_tag_url":324,"released_at":39,"has_diff":51,"diff_files_changed":325,"diff_lines":39,"trac_diff_url":326,"vulnerabilities":327,"is_current":51},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.2.10.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.2.10\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.2.9&new_path=%2Fleira-cron-jobs%2Ftags%2F1.2.10",[],{"version":329,"download_url":330,"svn_tag_url":331,"released_at":39,"has_diff":51,"diff_files_changed":332,"diff_lines":39,"trac_diff_url":333,"vulnerabilities":334,"is_current":51},"1.2.9","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.2.9.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.2.9\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.2.8&new_path=%2Fleira-cron-jobs%2Ftags%2F1.2.9",[335],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":337,"download_url":338,"svn_tag_url":339,"released_at":39,"has_diff":51,"diff_files_changed":340,"diff_lines":39,"trac_diff_url":341,"vulnerabilities":342,"is_current":51},"1.2.8","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.2.8.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.2.8\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.2.7&new_path=%2Fleira-cron-jobs%2Ftags%2F1.2.8",[343],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":345,"download_url":346,"svn_tag_url":347,"released_at":39,"has_diff":51,"diff_files_changed":348,"diff_lines":39,"trac_diff_url":349,"vulnerabilities":350,"is_current":51},"1.2.7","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.2.7.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.2.7\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.2.6&new_path=%2Fleira-cron-jobs%2Ftags%2F1.2.7",[351],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":353,"download_url":354,"svn_tag_url":355,"released_at":39,"has_diff":51,"diff_files_changed":356,"diff_lines":39,"trac_diff_url":357,"vulnerabilities":358,"is_current":51},"1.2.6","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.2.6.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.2.6\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.2.5&new_path=%2Fleira-cron-jobs%2Ftags%2F1.2.6",[359],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":361,"download_url":362,"svn_tag_url":363,"released_at":39,"has_diff":51,"diff_files_changed":364,"diff_lines":39,"trac_diff_url":365,"vulnerabilities":366,"is_current":51},"1.2.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.2.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.2.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.2.2&new_path=%2Fleira-cron-jobs%2Ftags%2F1.2.5",[367],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":369,"download_url":370,"svn_tag_url":371,"released_at":39,"has_diff":51,"diff_files_changed":372,"diff_lines":39,"trac_diff_url":373,"vulnerabilities":374,"is_current":51},"1.2.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.2.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.2.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.2.1&new_path=%2Fleira-cron-jobs%2Ftags%2F1.2.2",[375],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":377,"download_url":378,"svn_tag_url":379,"released_at":39,"has_diff":51,"diff_files_changed":380,"diff_lines":39,"trac_diff_url":381,"vulnerabilities":382,"is_current":51},"1.2.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.2.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.2.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.2.0&new_path=%2Fleira-cron-jobs%2Ftags%2F1.2.1",[383],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":385,"download_url":386,"svn_tag_url":387,"released_at":39,"has_diff":51,"diff_files_changed":388,"diff_lines":39,"trac_diff_url":389,"vulnerabilities":390,"is_current":51},"1.2.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.2.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.2.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.1.2&new_path=%2Fleira-cron-jobs%2Ftags%2F1.2.0",[391],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":393,"download_url":394,"svn_tag_url":395,"released_at":39,"has_diff":51,"diff_files_changed":396,"diff_lines":39,"trac_diff_url":397,"vulnerabilities":398,"is_current":51},"1.1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.1.1&new_path=%2Fleira-cron-jobs%2Ftags%2F1.1.2",[399],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":401,"download_url":402,"svn_tag_url":403,"released_at":39,"has_diff":51,"diff_files_changed":404,"diff_lines":39,"trac_diff_url":405,"vulnerabilities":406,"is_current":51},"1.1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.1.0&new_path=%2Fleira-cron-jobs%2Ftags%2F1.1.1",[407],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":409,"download_url":410,"svn_tag_url":411,"released_at":39,"has_diff":51,"diff_files_changed":412,"diff_lines":39,"trac_diff_url":413,"vulnerabilities":414,"is_current":51},"1.1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.1.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.0.1&new_path=%2Fleira-cron-jobs%2Ftags%2F1.1.0",[415],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":417,"download_url":418,"svn_tag_url":419,"released_at":39,"has_diff":51,"diff_files_changed":420,"diff_lines":39,"trac_diff_url":421,"vulnerabilities":422,"is_current":51},"1.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fleira-cron-jobs%2Ftags%2F1.0.0&new_path=%2Fleira-cron-jobs%2Ftags%2F1.0.1",[423],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":141,"download_url":425,"svn_tag_url":426,"released_at":39,"has_diff":51,"diff_files_changed":427,"diff_lines":39,"trac_diff_url":39,"vulnerabilities":428,"is_current":51},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fleira-cron-jobs.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fleira-cron-jobs\u002Ftags\u002F1.0.0\u002F",[],[429],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41}]