[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fVNKLK8yXGM3SYzbdWMqkqdBYy77UmejOSK2Ysfp2wxs":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":20,"download_link":21,"security_score":22,"vuln_count":13,"unpatched_count":13,"last_vuln_date":23,"fetched_at":24,"vulnerabilities":25,"developer":26,"crawl_stats":23,"alternatives":33,"analysis":34,"fingerprints":111},"mooberry-book-manager-image-fixer","Mooberry Book Manager Image Fixer","1.3","mooberrydreams","https:\u002F\u002Fprofiles.wordpress.org\u002Fmooberrydreams\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmooberry-book-manager\u002F\" rel=\"ugc\">Mooberry Book Manager\u003C\u002Fa> comes with several images pre-installed. These include buttons for purchasing or downloading books, an “Add to Goodreads” button, and a placeholder book cover.\u003C\u002Fp>\n\u003Cp>Sometimes, these images need to be reset. Possible causes could be:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Changing domain names\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Accidentally deleting one\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Error during activation.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Using Mooberry Book Manager version prior to 3.1 on Multi-Site\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin will fix these images.\u003C\u002Fp>\n\u003Cp>To use, go to \u003Cstrong>Mooberry Book Manager Settings\u003C\u002Fstrong> -> \u003Cstrong>Image Fixer\u003C\u002Fstrong> and select the image(s) you want to fix.\u003C\u002Fp>\n\u003Cp>(NOTE: If using Mooberry Book Manager version prior to 3.1, go to \u003Cstrong>Tools\u003C\u002Fstrong> -> ** Book Manager Image Fixer**)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>NOTE:\u003C\u002Fstrong> Mooberry Book Manager Image Fixer is translatable. If you’d like to volunteer a translation for your language, the template file (.pot) is available in the \u003Ccode>languages\u003C\u002Fcode> folder. \u003Ca href=\"http:\u002F\u002Fwww.mooberrydreams.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">Contact us\u003C\u002Fa> when your translation is ready or if you need assistance.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Want regular updates?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Subscribe to Mooberry Dreams’ mailing list: http:\u002F\u002Fwww.mooberrydreams.com\u002Fproducts\u002Fmooberry-book-manager\u002F\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Like Mooberry Dreams on Facebook: https:\u002F\u002Fwww.facebook.com\u002FMooberryDreams\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Fixes broken retailer, format, Add to Goodreads, and \"Coming Soon\" placeholder book cover images in Mooberry Book Manager.",20,2164,0,"2016-04-23T11:54:00.000Z","4.5.33","3.8.0","",[19],"mooberry-book-manager","http:\u002F\u002Fwww.mooberrydreams.com\u002Fproducts\u002Fmooberry-book-manager\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmooberry-book-manager-image-fixer.1.3.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":28,"avg_security_score":29,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},3,1040,87,5,91,"2026-04-05T02:08:45.797Z",[],{"attackSurface":35,"codeSignals":89,"taintFlows":103,"riskAssessment":104,"analyzedAt":110},{"hooks":36,"ajaxHandlers":85,"restRoutes":86,"shortcodes":87,"cronEvents":88,"entryPointCount":13,"unprotectedCount":13},[37,43,47,51,55,59,64,69,73,77,81],{"type":38,"name":39,"callback":40,"file":41,"line":42},"action","plugins_loaded","mbdbif_check_dependencies","mooberry-book-manager-image-fixer.php",36,{"type":38,"name":44,"callback":45,"file":41,"line":46},"admin_init","mbdbif_deactivate_image_fixer",41,{"type":38,"name":48,"callback":49,"file":41,"line":50},"admin_notices","mbdbif_dependency_fail",42,{"type":38,"name":52,"callback":53,"file":41,"line":54},"admin_head","mbdbif_register_admin_styles",71,{"type":38,"name":56,"callback":57,"file":41,"line":58},"init","mbdbif_init",93,{"type":60,"name":61,"callback":62,"file":41,"line":63},"filter","mbdb_settings_pages","mbdbif_add_options_page",116,{"type":38,"name":65,"callback":66,"priority":67,"file":41,"line":68},"mbdb_settings_metabox","mbdbif_settings_page_v3",10,117,{"type":38,"name":70,"callback":71,"file":41,"line":72},"admin_menu","mbdbif_settings_menu",121,{"type":60,"name":74,"callback":75,"priority":67,"file":41,"line":76},"cmb2_override_option_save_mbdb_options","mbdbif_override_save_v3",210,{"type":60,"name":78,"callback":79,"priority":67,"file":41,"line":80},"cmb2_override_option_save_mbdbif_options","mbdbif_override_save",223,{"type":60,"name":82,"callback":83,"priority":67,"file":41,"line":84},"cmb2_override_option_get_mbdbif_options","mbdbif_override_get",245,[],[],[],[],{"dangerousFunctions":90,"sqlUsage":91,"outputEscaping":93,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":101,"bundledLibraries":102},[],{"prepared":13,"raw":13,"locations":92},[],{"escaped":13,"rawEcho":94,"locations":95},2,[96,99],{"file":41,"line":97,"context":98},65,"raw output",{"file":41,"line":100,"context":98},162,1,[],[],{"summary":105,"deductions":106},"The \"mooberry-book-manager-image-fixer\" plugin v1.3 exhibits a strong security posture based on the provided static analysis. The absence of AJAX handlers, REST API routes, shortcodes, cron events, and file operations significantly limits the attack surface. Furthermore, the analysis indicates no dangerous functions, file operations, or external HTTP requests, and all SQL queries utilize prepared statements. The plugin does implement at least one capability check, which is a positive security control.  However, the most significant concern is that 100% of the output operations are not properly escaped. This means that any data displayed to users, especially if it originates from user input or external sources, is vulnerable to Cross-Site Scripting (XSS) attacks. The lack of recorded vulnerabilities in its history suggests a history of good security practices or a lack of targeted attacks, but the unescaped output remains a critical blind spot. In conclusion, while the plugin demonstrates good practices in limiting its attack surface and using secure database interactions, the lack of output escaping presents a tangible risk that should be addressed.",[107],{"reason":108,"points":109},"All outputs are unescaped",8,"2026-03-16T23:04:20.246Z",{"wat":112,"direct":121},{"assetPaths":113,"generatorPatterns":116,"scriptPaths":117,"versionParams":118},[114,115],"\u002Fwp-content\u002Fplugins\u002Fmooberry-book-manager-image-fixer\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fmooberry-book-manager-image-fixer\u002Fimage-fixer.js",[],[115],[119,120],"mooberry-book-manager-image-fixer\u002Fstyle.css?ver=","mooberry-book-manager-image-fixer\u002Fimage-fixer.js?ver=",{"cssClasses":122,"htmlComments":123,"htmlAttributes":124,"restEndpoints":127,"jsGlobals":128,"shortcodeOutput":129},[],[],[125,126],"data-mbdbif-title","data-mbdbif-desc",[],[],[]]