MailSend by 500apps – Email Marketing Plugin To Send Unlimited Emails To Your Subscribers Security & Risk Analysis

The "mailsend" plugin v0.1 exhibits significant security concerns due to its limited attack surface but lack of proper authorization checks. While it boasts no known CVEs and uses prepared statements for any potential database interactions, the presence of two AJAX handlers without any authentication or capability checks presents a clear and immediate risk. This means any user, regardless of their logged-in status or role, could potentially trigger these actions, leading to unintended consequences or exploitation if the AJAX handlers perform sensitive operations.

The taint analysis, while showing no critical or high severity unsanitized flows, does indicate "flows with unsanitized paths." The low output escaping percentage (14%) further exacerbates this, suggesting that data processed by the plugin might be outputted without proper sanitization, potentially leading to cross-site scripting (XSS) vulnerabilities if malicious data can be injected into these flows.

Given the plugin is at version 0.1 and has no recorded vulnerability history, it's difficult to draw conclusions about long-term security practices. However, the immediate findings of unprotected AJAX handlers and poor output escaping are serious oversights. The plugin has a strong point in using prepared statements, but this is overshadowed by the critical lack of authorization on its entry points.