[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f7I9Y-6nR02MPnJfmSZWUtx9qDCGYYoxIZcuyc_Cnoaw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":132,"fingerprints":377},"mir-ad-network","Mir Ad Network","1.0.0","Роман Иноземцев","https:\u002F\u002Fprofiles.wordpress.org\u002Fmirone\u002F","\u003Cp>\u003Cstrong>KEY FEATURES & HIGHLIGHTS:\u003C\u002Fstrong>\u003Cbr \u002F>\n  * Text Ad Network\u003Cbr \u002F>\n  * Peer-to-Peer transactions\u003Cbr \u002F>\n  * Ad payments in $MIR (Receive 100%, no middlemen)\u003Cbr \u002F>\n  * Send Ad text and payment in one easy transaction\u003Cbr \u002F>\n  * 0.01 $MIR transaction fee per Ad\u003Cbr \u002F>\n  * Zero license costs\u003C\u002Fp>\n\u003Cp>\u003Cstrong>REQUIREMENTS:\u003C\u002Fstrong>\u003Cbr \u002F>\n  * WordPress installation to host Ads\u003Cbr \u002F>\n  * MirNetwork Wallet to send\u002Freceive payments & send Ad: https:\u002F\u002Fclient.mir.one (Note: Save SEED securely & dont share)\u003Cbr \u002F>\n  * $MIR can be purchased on the DEX: https:\u002F\u002Fclient.mir.one\u003Cbr \u002F>\n  * Note: View transactions for wallet on explorer – https:\u002F\u002Fexplorer.mir.one\u003C\u002Fp>\n","Peer-to-Peer Ad Network using the MirNetwork blockchain",0,1038,"2019-04-27T22:26:00.000Z","5.2.24","","5.3",[18,19,20,21,22],"ad","ad-network","blockchain","mir","mirnetwork","https:\u002F\u002Ft.me\u002Fmirplatform","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmir-ad-network.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"mirone",2,30,84,"2026-04-05T15:49:01.079Z",[36,54,75,96,113],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":11,"downloaded":44,"rating":45,"num_ratings":31,"last_updated":15,"tested_up_to":46,"requires_at_least":47,"requires_php":16,"tags":48,"homepage":51,"download_link":52,"security_score":45,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":53},"turtle-ad-network","Turtle Ad Network","1.0.13","gord0b","https:\u002F\u002Fprofiles.wordpress.org\u002Fgord0b\u002F","\u003Cp>The Turtle Ad Network offer Peer-to-Peer Ads. Simple, fast and open source.\u003Cbr \u002F>\n– Ad Network utilizes a WordPress plugin for managing and hosting Ads.\u003Cbr \u002F>\n– Ad Network utilizes the Turtle Network blockchain for sending and purchasing Ads.\u003C\u002Fp>\n\u003Cp>Website: https:\u002F\u002Fwww.turtleadnetwork.com\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key features & Highlights:\u003C\u002Fstrong>\u003Cbr \u002F>\n  * Text Ad Network\u003Cbr \u002F>\n  * Cost per Impression (CPI) Ads\u003Cbr \u002F>\n  * Peer-to-Peer transactions\u003Cbr \u002F>\n  * TANstats – Ad statistics & monitoring\u003Cbr \u002F>\n  * Ad payments in TrueUSD (tUSD) or $TN (Receive 100%, no middlemen)\u003Cbr \u002F>\n  * Send Ad text and payment in one easy transaction\u003Cbr \u002F>\n  * Blacklist, Spam Management, Ad Stop|Start\u003Cbr \u002F>\n  * Auto or manual Ad Approval\u003Cbr \u002F>\n  * Multi-Ad support, Auto Rotate Ads\u003Cbr \u002F>\n  * 0.02 $TN transaction fee per Ad\u003Cbr \u002F>\n  * Zero license costs\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Requirements:\u003C\u002Fstrong>\u003Cbr \u002F>\n  – WordPress.\u003Cbr \u002F>\n  – Wallet address: https:\u002F\u002Fwallet.turtlenetwork.eu\u003Cbr \u002F>\n  – Note: tUSD & $TN can be purchased in wallet.\u003Cbr \u002F>\n  – Note: View transactions: https:\u002F\u002Fexplorer.turtlenetwork.eu\u003C\u002Fp>\n","The Turtle Ad Network offer Peer-to-Peer Ads. Simple, fast and open source.",1582,100,"5.5.18","4.9.8",[18,19,20,49,50],"tn","turtle-network","https:\u002F\u002Ft.me\u002Fturtleadnetwork","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fturtle-ad-network.1.0.13.zip","2026-03-15T10:48:56.248Z",{"slug":55,"name":56,"version":57,"author":56,"author_profile":58,"description":59,"short_description":60,"active_installs":61,"downloaded":62,"rating":11,"num_ratings":11,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":15,"tags":66,"homepage":71,"download_link":72,"security_score":45,"vuln_count":73,"unpatched_count":11,"last_vuln_date":74,"fetched_at":27},"taboola","Taboola","3.0.2","https:\u002F\u002Fprofiles.wordpress.org\u002Ftaboolawordpress\u002F","\u003Cp>This plugin provides an easy way to integrate Taboola content into your WordPress pages.\u003Cbr \u002F>\nUsing Taboola’s mix of sponsored and editorial content, you can generate revenue and drive engagement.\u003Cbr \u002F>\n(Requires an account with Taboola. For more detail, see the \u003Ca href=\"https:\u002F\u002Fdevelopers.taboola.com\u002Fweb-integrations\u002Fdocs\u002Fwordpress-plugin\u002F\" rel=\"nofollow ugc\">Taboola Dev Center\u003C\u002Fa>.)\u003C\u002Fp>\n","Use the Taboola plugin to generate revenue from native ads and drive engagement with editorial content.",3000,51300,"2025-10-29T11:42:00.000Z","6.8.0","5.2",[67,68,69,70,55],"ad-networks","ads","content-recommendations","discovery","https:\u002F\u002Fdevelopers.taboola.com\u002Fweb-integrations\u002Fdocs\u002Fwordpress-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftaboola.zip",1,"2023-07-24 00:00:00",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":45,"num_ratings":31,"last_updated":85,"tested_up_to":86,"requires_at_least":87,"requires_php":15,"tags":88,"homepage":94,"download_link":95,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"custom-script-for-customizer","Custom Header Footer Scripts for Customizer","1.1.1","Rupok","https:\u002F\u002Fprofiles.wordpress.org\u002Fre_enter_rupok\u002F","\u003Cp>Add custom script to header and footer through WordPress Customizer. Edit your scripts with CodeMirror editor within Customizer. You can place any custom JavaScript, Google Analytics or embed script. Extremely helpful if you need to place any custom javascript or jQuery code to header or footer. This plugin gives you the ability to place different scripts to header or footer separately. Uses Customizer so you can edit the code live and see the changes on the fly.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>CodeMirror Editor\u003C\u002Fli>\n\u003Cli>Ability to add custom scripts to wp header.\u003C\u002Fli>\n\u003Cli>Ability to add custom scripts to wp footer.\u003C\u002Fli>\n\u003Cli>Ability to add multiple scripts.\u003C\u002Fli>\n\u003Cli>Ability to add Google Alalytics code.\u003C\u002Fli>\n\u003Cli>Ability to add any embed code.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Check my free WordPress Theme \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fflexia\u002F\" rel=\"ugc\">Flexia\u003C\u002Fa>, one theme to rule them all.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Check my other plugins:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fessential-addons-for-elementor-lite\u002F\" rel=\"ugc\">Essential Addons For Elementor\u003C\u002Fa>\u003C\u002Fstrong> – Most popular Elementor extensions with 1 Million+ active users in the WordPress repository.\u003Cbr \u002F>\n\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbetterdocs\u002F\" rel=\"ugc\">BetterDocs\u003C\u002Fa>\u003C\u002Fstrong> – Best documentation & knowledge base plugin for WordPress to help you reduce support tickets\u003Cbr \u002F>\n\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbetterlinks\u002F\" rel=\"ugc\">BetterLinks\u003C\u002Fa>\u003C\u002Fstrong> – Latest best WordPress link management plugin for link shortening, tracking & analyzing.\u003Cbr \u002F>\n\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fnotificationx\u002F\" rel=\"ugc\">NotificationX\u003C\u002Fa>\u003C\u002Fstrong> – Best Social Proof & FOMO Marketing Solution\u003Cbr \u002F>\n\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-scheduled-posts\u002F\" rel=\"ugc\">SchedulePress\u003C\u002Fa>\u003C\u002Fstrong> – Complete solution for WordPress Post Scheduling to manage schedules through an editorial calendar.\u003Cbr \u002F>\n\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fembedpress\u002F\" rel=\"ugc\">EmbedPress\u003C\u002Fa>\u003C\u002Fstrong>– Embed videos, images, posts, audio, maps and upload PDF, DOC, PPT & all other types of content into your WordPress site with one-click and showcase it beautifully for the visitors.\u003Cbr \u002F>\n\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftemplately\u002F\" rel=\"ugc\">Templately\u003C\u002Fa>\u003C\u002Fstrong> Ultimate Template clouds with 1800+ ready templates for Elementor & Gutenberg along with FREE cloud collaboration with your team.\u003C\u002Fp>\n","Add custom script to header and footer through WordPress Customizer. Edit your scripts with CodeMirror editor within Customizer.",2000,25816,"2023-08-20T06:54:00.000Z","6.3.8","4.0",[89,90,91,92,93],"codemirror","custom-javascript","custom-script","customizer-script","header-footer-script","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcustom-script-for-customizer","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-script-for-customizer.1.1.1.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":11,"num_ratings":11,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":15,"tags":109,"homepage":111,"download_link":112,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"adbusters","Adbusters","1.0.7","Automattic","https:\u002F\u002Fprofiles.wordpress.org\u002Fautomattic\u002F","\u003Cp>Are you troubled by strange iframe ad files in the middle of the night? Do you experience feelings of dread in your revision control and source code management system? Have you or any of your colleagues ever had to manually add these files to your site as your ads team keeps making new deals?\u003C\u002Fp>\n\u003Cp>If the answer is yes, don’t wait another minute! ADBUSTERS! Download this plugin today and let us take care of your ad file serving needs.\u003C\u002Fp>\n\u003Cp>Caveat: while we have reviewed the included templates for obvious security issues (like XSS), we cannot guarantee the reliability of external scripts referenced by most of the adbusters. We highly recommend discussing with your ad network representative to discuss this if you have any concerns.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>“Adbusters”\u003Cbr \u002F>\nCopyright (C) 2013 Automattic\u003C\u002Fp>\n\u003Cp>This program is free software: you can redistribute it and\u002For modify\u003Cbr \u002F>\nit under the terms of the GNU General Public License as published by\u003Cbr \u002F>\nthe Free Software Foundation, either version 3 of the License, or\u003Cbr \u002F>\n(at your option) any later version.\u003C\u002Fp>\n\u003Cp>This program is distributed in the hope that it will be useful,\u003Cbr \u002F>\nbut WITHOUT ANY WARRANTY; without even the implied warranty of\u003Cbr \u002F>\nMERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the\u003Cbr \u002F>\nGNU General Public License for more details.\u003C\u002Fp>\n\u003Cp>You should have received a copy of the GNU General Public License\u003Cbr \u002F>\nalong with this program.  If not, see \u003Ca href=\"http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002F\u003C\u002Fa>.\u003C\u002Fp>\n","A set of iframe busters for popular ad networks",400,72170,"2018-11-22T04:20:00.000Z","5.0.25","3.7",[19,68,110],"iframe-busters","https:\u002F\u002Fgithub.com\u002FAutomattic\u002FAdbusters","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadbusters.1.0.7.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":45,"num_ratings":73,"last_updated":123,"tested_up_to":124,"requires_at_least":125,"requires_php":65,"tags":126,"homepage":15,"download_link":131,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"purpleads-ads-txt-manager","PurpleAds Ads.txt Manager","1.0.1","PurpleAds Network","https:\u002F\u002Fprofiles.wordpress.org\u002Fpurpleads\u002F","\u003Ch4>Simplify Your Ads.txt Management with PurpleAds\u003C\u002Fh4>\n\u003Cp>PurpleAds Ads.txt Manager is a powerful WordPress plugin that streamlines the process of managing your Ads.txt file.\u003Cbr \u002F>\nOur tool is designed to help publishers effortlessly manage their ad network relationships, ensuring that authorized sellers are correctly identified and verified by advertisers.\u003Cbr \u002F>\nWith PurpleAds Ads.txt Manager, managing your Ads.txt file has never been easier.\u003C\u002Fp>\n\u003Ch4>A Transparent View of Your Advertising Relationships\u003C\u002Fh4>\n\u003Cp>With PurpleAds Ads.txt Manager, you can easily create and manage your Ads.txt file directly from your WordPress dashboard.\u003Cbr \u002F>\nOur intuitive interface allows you to quickly add, edit, and delete ad network information, ensuring that your Ads.txt file is always up-to-date and accurate.\u003Cbr \u002F>\nThe plugin provides a clear and transparent view of your advertising relationships, giving you full control over your ad network partnerships.\u003C\u002Fp>\n\u003Ch4>Compliant with IAB’s Ads.txt Standard\u003C\u002Fh4>\n\u003Cp>PurpleAds Ads.txt Manager is fully compliant with the IAB’s Ads.txt standard, which means that your ad network information will be displayed correctly and will meet industry standards. This ensures that your advertising relationships are fully transparent and compliant, giving you peace of mind and enabling you to focus on growing your business.\u003C\u002Fp>\n\u003Ch3>Why Use PurpleAds Ads.txt Manager?\u003C\u002Fh3>\n\u003Cp>Simplify the process of managing your Ads.txt file.\u003Cbr \u002F>\nEnsure that authorized sellers are correctly identified and verified by advertisers.\u003Cbr \u002F>\nEasily add, edit, and delete ad network information.\u003Cbr \u002F>\nProvides a clear and transparent view of your advertising relationships.\u003Cbr \u002F>\nFully compliant with the IAB’s Ads.txt standard.\u003C\u002Fp>\n\u003Ch3>Easy Installation\u003C\u002Fh3>\n\u003Cp>Installing the PurpleAds Ads.txt Manager plugin is a breeze:\u003C\u002Fp>\n\u003Cp>Install the plugin through the WordPress plugins screen or upload the plugin files to the \u002Fwp-content\u002Fplugins\u002F directory.\u003Cbr \u002F>\nActivate the plugin through the ‘Plugins’ screen in WordPress.\u003Cbr \u002F>\nGo to the PurpleAds Ads.txt Manager page in your WordPress dashboard.\u003Cbr \u002F>\nAdd your ad network information using the simple form provided.\u003Cbr \u002F>\nClick ‘Save’ to update your Ads.txt file.\u003C\u002Fp>\n","Simplify Your Ads.txt Management with PurpleAds",90,3588,"2023-08-15T08:33:00.000Z","6.2.9","3.1.0",[19,127,128,129,130],"ads-txt","adstxt","advertising","publishers","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpurpleads-ads-txt-manager.zip",{"attackSurface":133,"codeSignals":171,"taintFlows":268,"riskAssessment":367,"analyzedAt":376},{"hooks":134,"ajaxHandlers":165,"restRoutes":166,"shortcodes":167,"cronEvents":168,"entryPointCount":11,"unprotectedCount":11},[135,141,146,149,153,156,160],{"type":136,"name":137,"callback":138,"file":139,"line":140},"action","admin_menu","mir_ads_network_menu_pages","includes\\create-menus.php",7,{"type":136,"name":142,"callback":143,"file":144,"line":145},"admin_post_submit-form-mir","tadn_handle_form_action","mir-ad-network.php",47,{"type":136,"name":147,"callback":143,"file":144,"line":148},"admin_post_nopriv_submit-form-mir",48,{"type":136,"name":150,"callback":151,"file":144,"line":152},"admin_post_submit-form-add-ad-slots","tadn_handle_form_action_slot",50,{"type":136,"name":154,"callback":151,"file":144,"line":155},"admin_post_nopriv_submit-form-add-ad-slots",51,{"type":136,"name":157,"callback":158,"file":144,"line":159},"man_cronjob","tadn_do_this_hourly",54,{"type":161,"name":162,"callback":163,"file":144,"line":164},"filter","cron_schedules","tadn_add_cron_interval",56,[],[],[],[169],{"hook":157,"callback":157,"file":144,"line":170},76,{"dangerousFunctions":172,"sqlUsage":173,"outputEscaping":229,"fileOperations":73,"externalRequests":11,"nonceChecks":265,"capabilityChecks":266,"bundledLibraries":267},[],{"prepared":11,"raw":174,"locations":175},24,[176,180,183,185,187,189,192,194,196,198,200,202,205,207,209,211,213,215,217,219,221,223,225,227],{"file":177,"line":178,"context":179},"includes\\ad-approval.php",25,"$wpdb->get_var() with variable interpolation",{"file":177,"line":181,"context":182},53,"$wpdb->get_results() with variable interpolation",{"file":177,"line":184,"context":182},109,{"file":177,"line":186,"context":182},117,{"file":177,"line":188,"context":179},122,{"file":190,"line":191,"context":182},"includes\\add-ad-slots.php",34,{"file":190,"line":193,"context":182},62,{"file":190,"line":195,"context":182},65,{"file":190,"line":197,"context":182},157,{"file":190,"line":199,"context":182},165,{"file":190,"line":201,"context":182},168,{"file":203,"line":204,"context":182},"includes\\add-wallet-address.php",36,{"file":203,"line":206,"context":182},119,{"file":144,"line":208,"context":182},102,{"file":144,"line":210,"context":182},112,{"file":144,"line":212,"context":182},118,{"file":144,"line":214,"context":182},152,{"file":144,"line":216,"context":182},179,{"file":144,"line":218,"context":182},305,{"file":144,"line":220,"context":182},402,{"file":144,"line":222,"context":182},453,{"file":144,"line":224,"context":182},491,{"file":144,"line":226,"context":182},516,{"file":144,"line":228,"context":182},556,{"escaped":230,"rawEcho":231,"locations":232},108,16,[233,236,238,240,242,244,246,248,250,252,253,255,257,259,261,263],{"file":177,"line":234,"context":235},134,"raw output",{"file":177,"line":237,"context":235},160,{"file":177,"line":239,"context":235},161,{"file":190,"line":241,"context":235},70,{"file":190,"line":243,"context":235},77,{"file":190,"line":245,"context":235},93,{"file":190,"line":247,"context":235},115,{"file":190,"line":249,"context":235},127,{"file":190,"line":251,"context":235},177,{"file":190,"line":216,"context":235},{"file":190,"line":254,"context":235},184,{"file":190,"line":256,"context":235},186,{"file":190,"line":258,"context":235},191,{"file":190,"line":260,"context":235},193,{"file":203,"line":262,"context":235},131,{"file":203,"line":264,"context":235},132,6,11,[],[269,322,334,347,358],{"entryPoint":270,"graph":271,"unsanitizedCount":11,"severity":321},"\u003Cad-settings> (includes\\ad-settings.php:0)",{"nodes":272,"edges":313},[273,279,284,288,290,294,296,300,302,305,307,311],{"id":274,"type":275,"label":276,"file":277,"line":278},"n0","source","$_POST['min_amount']","includes\\ad-settings.php",26,{"id":280,"type":281,"label":282,"file":277,"line":278,"wp_function":283},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":285,"type":275,"label":286,"file":277,"line":287},"n2","$_POST['ad_time']",27,{"id":289,"type":281,"label":282,"file":277,"line":287,"wp_function":283},"n3",{"id":291,"type":275,"label":292,"file":277,"line":293},"n4","$_POST['ad_cost']",28,{"id":295,"type":281,"label":282,"file":277,"line":293,"wp_function":283},"n5",{"id":297,"type":275,"label":298,"file":277,"line":299},"n6","$_POST['api_server']",29,{"id":301,"type":281,"label":282,"file":277,"line":299,"wp_function":283},"n7",{"id":303,"type":275,"label":304,"file":277,"line":32},"n8","$_POST['blacklist']",{"id":306,"type":281,"label":282,"file":277,"line":32,"wp_function":283},"n9",{"id":308,"type":275,"label":309,"file":277,"line":310},"n10","$_POST['ad_approval']",31,{"id":312,"type":281,"label":282,"file":277,"line":310,"wp_function":283},"n11",[314,316,317,318,319,320],{"from":274,"to":280,"sanitized":315},true,{"from":285,"to":289,"sanitized":315},{"from":291,"to":295,"sanitized":315},{"from":297,"to":301,"sanitized":315},{"from":303,"to":306,"sanitized":315},{"from":308,"to":312,"sanitized":315},"low",{"entryPoint":323,"graph":324,"unsanitizedCount":11,"severity":321},"\u003Cadd-ad-slots> (includes\\add-ad-slots.php:0)",{"nodes":325,"edges":332},[326,329],{"id":274,"type":275,"label":327,"file":190,"line":328},"$_GET",33,{"id":280,"type":281,"label":330,"file":190,"line":188,"wp_function":331},"echo() [XSS]","echo",[333],{"from":274,"to":280,"sanitized":315},{"entryPoint":335,"graph":336,"unsanitizedCount":11,"severity":321},"tadn_handle_form_action (mir-ad-network.php:386)",{"nodes":337,"edges":345},[338,341],{"id":274,"type":275,"label":339,"file":144,"line":340},"$_POST (x4)",399,{"id":280,"type":281,"label":342,"file":144,"line":343,"wp_function":344},"wp_redirect() [Open Redirect]",407,"wp_redirect",[346],{"from":274,"to":280,"sanitized":315},{"entryPoint":348,"graph":349,"unsanitizedCount":11,"severity":321},"tadn_handle_form_action_slot (mir-ad-network.php:435)",{"nodes":350,"edges":356},[351,354],{"id":274,"type":275,"label":352,"file":144,"line":353},"$_POST (x3)",451,{"id":280,"type":281,"label":342,"file":144,"line":355,"wp_function":344},458,[357],{"from":274,"to":280,"sanitized":315},{"entryPoint":359,"graph":360,"unsanitizedCount":11,"severity":321},"\u003Cmir-ad-network> (mir-ad-network.php:0)",{"nodes":361,"edges":365},[362,364],{"id":274,"type":275,"label":363,"file":144,"line":340},"$_POST (x7)",{"id":280,"type":281,"label":342,"file":144,"line":343,"wp_function":344},[366],{"from":274,"to":280,"sanitized":315},{"summary":368,"deductions":369},"The \"mir-ad-network\" v1.0.0 plugin exhibits a generally positive security posture, with no critical or high severity vulnerabilities identified in static analysis or its vulnerability history. The absence of external HTTP requests, dangerous functions, and critical taint flows is commendable. The majority of output is properly escaped, and there are a reasonable number of nonce and capability checks, suggesting a good understanding of WordPress security best practices. The plugin also has a clean vulnerability history, with no known CVEs, which is a strong indicator of stable and secure development.\n\nHowever, a significant concern arises from the handling of SQL queries. With 24 total SQL queries and 0% using prepared statements, this presents a substantial risk of SQL injection vulnerabilities. While no such vulnerabilities were explicitly detected in the static analysis, the widespread absence of prepared statements creates a fertile ground for such attacks if any user-supplied data is incorporated into these queries. The presence of one cron event also warrants attention, as cron jobs can sometimes be a vector for attacks if not properly secured.\n\nIn conclusion, the plugin's strengths lie in its limited attack surface, absence of dangerous functions, and clean vulnerability history. The primary weakness is the unmitigated risk associated with its SQL query implementation. Addressing the SQL query security is paramount to improving the plugin's overall security. If the cron event is not properly secured, it could also pose a risk.",[370,373],{"reason":371,"points":372},"Raw SQL queries without prepared statements",15,{"reason":374,"points":375},"One cron event detected",3,"2026-03-17T06:30:30.298Z",{"wat":378,"direct":387},{"assetPaths":379,"generatorPatterns":382,"scriptPaths":383,"versionParams":384},[380,381],"\u002Fwp-content\u002Fplugins\u002Fmir-ad-network\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fmir-ad-network\u002Fjs\u002Fmir-ads-network.js",[],[381],[385,386],"mir-ad-network\u002Fcss\u002Fstyle.css?ver=","mir-ad-network\u002Fjs\u002Fmir-ads-network.js?ver=",{"cssClasses":388,"htmlComments":389,"htmlAttributes":399,"restEndpoints":400,"jsGlobals":402,"shortcodeOutput":403},[],[5,390,391,392,393,394,5,395,396,397,398],"initialize all tables and populate required predefined data","Initialize some stuff to get started","handle wallet address form request","submit-form-mir","submit-form-add-ad-slots","Create Wallet Address table","Create Ad Segment table","Create Ad size table","populate Ad size table with predefined size",[],[401],"\u002Ftransactions\u002Faddress\u002F",[],[]]