mowsterGlossary Security & Risk Analysis

The "mowster-glossary" v2.4.2 plugin presents a mixed security posture. While it has no recorded vulnerabilities or known CVEs, indicating a history of relative security, the static analysis reveals significant concerns that could lead to future issues. The plugin has a single AJAX entry point that lacks any authentication checks, creating a direct avenue for unauthorized actions. Furthermore, a high percentage of identified code flows (11 out of 12) contain unsanitized paths, with 5 deemed to be of high severity. This suggests a substantial risk of injection vulnerabilities, particularly given the absence of proper output escaping for any of the identified outputs.

While the plugin uses prepared statements for a majority of its SQL queries, the lack of output escaping is a critical weakness that could expose users to cross-site scripting (XSS) attacks. The absence of nonce checks on the unprotected AJAX handler further compounds this risk. Although there are no direct critical severity taint flows reported, the high number of high-severity flows with unsanitized paths, combined with the unprotected AJAX endpoint and complete lack of output escaping, presents a notable attack surface that requires immediate attention to prevent potential exploits.