Login with YourMembership – YM SSO Login Security & Risk Analysis

The plugin exhibits a mixed security posture. On the positive side, the static analysis reveals no immediately obvious vulnerabilities in terms of attack surface (no unprotected AJAX, REST API, shortcodes, or cron events) and a strong adherence to secure coding practices with 100% of SQL queries using prepared statements and a high percentage of output properly escaped. Furthermore, there are a reasonable number of nonce and capability checks. However, the presence of 4 external HTTP requests and 6 taint flows with unsanitized paths, even if not rated as critical or high severity, warrants attention as potential vectors for unexpected behavior or vulnerabilities if exploited by malicious input. The vulnerability history is a significant concern, with 3 known medium-severity CVEs, all of which are listed as currently unpatched. The common vulnerability types of Missing Authorization and Cross-site Scripting are particularly worrying, suggesting a pattern of insecure handling of user input and access control in past versions. While the current version appears to have addressed these specific CVEs, the historical pattern indicates a potential for similar issues to re-emerge if not rigorously tested and audited. Overall, while the current code has some strengths, the historical vulnerability data and the presence of unsanitized taint flows suggest a moderate level of risk.