MailChimp Add-On for FormCraft Security & Risk Analysis

The mailchimp-for-formcraft plugin v1.8 exhibits several significant security concerns, primarily stemming from its unprotected entry points. While the plugin demonstrates good practices in terms of SQL query handling and appears to have no known historical vulnerabilities, the presence of three AJAX handlers without authentication checks creates a substantial attack surface. This lack of authorization means that any user, even unauthenticated ones, could potentially trigger these handlers, leading to unintended actions or information disclosure.

Furthermore, the analysis indicates that 100% of the plugin's output is not properly escaped. This is a critical flaw that opens the door to cross-site scripting (XSS) vulnerabilities. Attackers could inject malicious scripts through user-controllable data that is later displayed by the plugin, potentially compromising user sessions or defacing the website. The absence of nonce checks on these AJAX handlers exacerbates this risk, as it removes another layer of defense against CSRF attacks. Despite the clean vulnerability history and secure SQL usage, these fundamental security oversights in input validation and output escaping present a high risk.