MCPner LLMs.txt Generator Security & Risk Analysis

The plugin "llms-txt-generator-by-mcpner" v1.4.5 exhibits a concerning security posture due to a significant number of unprotected AJAX handlers. While the code analysis indicates a strong adherence to output escaping and a lack of dangerous functions or bundled libraries, the presence of 10 AJAX handlers without authentication checks represents a substantial attack surface that could be exploited by unauthenticated users. This is the most critical finding, as it allows for direct interaction with the plugin's core functionality without any form of verification.

Furthermore, the static analysis revealed that 100% of the detected SQL queries are not using prepared statements, posing a risk of SQL injection vulnerabilities. While taint analysis did not reveal any critical or high severity flows, the presence of unsanitized paths is a red flag that warrants attention, especially when combined with unescaped SQL queries. The vulnerability history is currently clean, with no recorded CVEs, which is a positive indicator. However, the code-level risks, particularly the unprotected AJAX endpoints and raw SQL queries, overshadow this positive aspect. The plugin shows good practices in output escaping and nonce checks, but the lack of authorization on the majority of its entry points is a severe deficiency that needs immediate remediation.