[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fjCw371OVZRbpdHxh1i2kkPdi--scm0IgoRmRqtimXVo":3,"$fwAjfwa5uhgUzAmU20Glicbo8Gf_3GrDp9gK_4A7rvKE":221,"$fDoSg6Y7zkutU-QeMhpulnL5Uv4j9PNhT5rLg71LO3Vc":226},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":47,"crawl_stats":36,"alternatives":54,"analysis":145,"fingerprints":205},"pending-order-bot","Pending Order Bot","1.0.2","badasswp","https:\u002F\u002Fprofiles.wordpress.org\u002Fbadasswp\u002F","\u003Cp>The average cart abandonment rate is \u003Cstrong>69.99%\u003C\u002Fstrong>, according to Baymard Institute. This is an average of 48 shopping cart abandonment studies, which range from 56% to 81%.\u003C\u002Fp>\n\u003Cp>The middle point of just under a \u003Cstrong>70%\u003C\u002Fstrong> cart abandonment rate means that only \u003Cstrong>three out of ten customers\u003C\u002Fstrong> who fill their shopping carts \u003Cstrong>actually make it to checkout\u003C\u002Fstrong> to complete their purchase.\u003C\u002Fp>\n\u003Cp>This plugin helps remind customers of their abandoned cart orders, so they complete their purchases. It’s that simple!\u003C\u002Fp>\n\u003Ch4>✨ Getting Started\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Head off to Twilio.com to sign up to get an account.\u003C\u002Fli>\n\u003Cli>Locate the Console page in the Twilio website and get your Account SID and Token.\u003C\u002Fli>\n\u003Cli>Fill your plugin options page with your Twilio details and enable the \u003Cstrong>Send Text\u003C\u002Fstrong> and \u003Cstrong>Send E-mail\u003C\u002Fstrong> options.\u003C\u002Fli>\n\u003Cli>You’re all set!\u003C\u002Fli>\n\u003Cli>WooCommerce users should now get reminders on abandoned cart orders.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>You can get a taste of how this works, by using the \u003Ca href=\"https:\u002F\u002Ftastewp.com\u002Fcreate\u002FNMS\u002F8.0\u002F6.6.2\u002Fpending-order-bot\u002Ftwentytwentythree?ni=true&origin=wp\" rel=\"nofollow ugc\">demo\u003C\u002Fa> link.\u003C\u002Fp>\n\u003Ch4>🔌🎨 Plug and Play or Customize\u003C\u002Fh4>\n\u003Cp>The Pending Order Bot plugin is built to work right out of the box. Simply install, activate and start using.\u003C\u002Fp>\n\u003Cp>Want to add your personal touch? All of our documentation can be found \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbadasswp\u002Fpending-order-bot\" rel=\"nofollow ugc\">here\u003C\u002Fa>. You can override the plugin’s behaviour with custom logic of your own using \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbadasswp\u002Fpending-order-bot?tab=readme-ov-file#hooks\" rel=\"nofollow ugc\">hooks\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Contribute\u003C\u002Fh3>\n\u003Cp>If you’d like to contribute to the development of this plugin, you can find it on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbadasswp\u002Fpending-order-bot\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n","Send automated reminders to customers about their pending WooCommerce orders, reduce abandoned carts and improve sales on your e-commerce website.",0,730,"2025-02-16T21:31:00.000Z","6.7.5","4.0","7.4",[18,19,20,21,22],"bot","order","pending","reminder","woocommerce","https:\u002F\u002Fgithub.com\u002Fbadasswp\u002Fpending-order-bot","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpending-order-bot.1.0.2.zip",70,1,"2025-08-17 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":27,"updated_date":42,"references":43,"days_to_patch":36,"patch_diff_files":45,"patch_trac_url":36,"research_status":36,"research_verified":46,"research_rounds_completed":11,"research_plan":36,"research_summary":36,"research_vulnerable_code":36,"research_fix_diff":36,"research_exploit_outline":36,"research_model_used":36,"research_started_at":36,"research_completed_at":36,"research_error":36,"poc_status":36,"poc_video_id":36,"poc_summary":36,"poc_steps":36,"poc_tested_at":36,"poc_wp_version":36,"poc_php_version":36,"poc_playwright_script":36,"poc_exploit_code":36,"poc_has_trace":46,"poc_model_used":36,"poc_verification_depth":36},"CVE-2025-49892","pending-order-bot-authenticated-administrator-stored-cross-site-scripting","Pending Order Bot \u003C= 1.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting","The Pending Order Bot plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.0.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only impacts multi-site installations and installations where unfiltered_html has been disabled.",null,"\u003C=1.0.2","medium",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-08-25 17:24:34",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F19737921-5d5e-4a1a-82f7-e771cccfff49?source=api-prod",[],false,{"slug":7,"display_name":7,"profile_url":8,"plugin_count":48,"total_installs":49,"avg_security_score":50,"avg_patch_time_days":51,"trust_score":52,"computed_at":53},14,3040,98,30,93,"2026-05-20T04:31:20.826Z",[55,77,96,113,130],{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":11,"num_ratings":11,"last_updated":65,"tested_up_to":66,"requires_at_least":67,"requires_php":68,"tags":69,"homepage":74,"download_link":75,"security_score":76,"vuln_count":11,"unpatched_count":11,"last_vuln_date":36,"fetched_at":28},"phongmy-push-anything-to-social","Push Anything To Social","1.0","PHONG MY DESIGN","https:\u002F\u002Fprofiles.wordpress.org\u002Fthienduc0105\u002F","\u003Cp>This’s plugins help Owner push order from Woocommerce to Facebook messenger quickly base On CallmeBot API\u003C\u002Fp>\n\u003Cp>Support send to Facebook messager for both admin and Technical or customer.\u003C\u002Fp>\n\u003Cp>Notify send to facebook when:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Have new order.\u003C\u002Fli>\n\u003Cli>Order completed.\u003C\u002Fli>\n\u003Cli>Order cancelled.\u003C\u002Fli>\n\u003Cli>Order refund.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Variable available in Plugins\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Your order ID: #%%order_id%%\u003C\u002Fli>\n\u003Cli>Products name: %%product_name%%\u003C\u002Fli>\n\u003Cli>First name: %%first_name%%\u003C\u002Fli>\n\u003Cli>Last name: %%last_name%%\u003C\u002Fli>\n\u003Cli>Customer email: %%billing_email%%\u003C\u002Fli>\n\u003Cli>Phone number: %%billing_phone%%\u003C\u002Fli>\n\u003Cli>Address: %%billing_address%%\u003C\u002Fli>\n\u003Cli>Payment methods: %%payment_method%%\u003C\u002Fli>\n\u003Cli>Delivery method: %%shipping_method%%\u003C\u002Fli>\n\u003Cli>New Order date: %%created_date%%\u003C\u002Fli>\n\u003Cli>Completed Order date: %%completed_date%%\u003C\u002Fli>\n\u003Cli>Customer note: %%customer_note%%\u003C\u002Fli>\n\u003Cli>Total money: %%total%%\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Create Callmebot API\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Login facebook.com and chat with BOT – https:\u002F\u002Fm.me\u002Fapi.callmebot\u003C\u002Fli>\n\u003Cli>type: “create apikey” to get API KEY for free\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>More\u003C\u002Fh3>\n\u003Cp>See more about the WP-Extra\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fwpvncom\u002F#content-plugins\" rel=\"nofollow ugc\">WP-Extra by COPVN\u003C\u002Fa>\u003C\u002Fp>\n","This's plugins help Owner push order from Woocommerce to Facebook messenger quickly base On CallmeBot API",20,1007,"2021-09-06T04:06:00.000Z","5.8.13","","7.2",[70,71,72,22,73],"facebook-bot","telegram-order","whatsapp-order","woocommerce-to-facebook-messenger","https:\u002F\u002Fphongmy.vn","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fphongmy-push-anything-to-social.zip",85,{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":11,"downloaded":85,"rating":11,"num_ratings":11,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":16,"tags":89,"homepage":67,"download_link":94,"security_score":95,"vuln_count":11,"unpatched_count":11,"last_vuln_date":36,"fetched_at":28},"brightery-woo-order-api","Brightery Woo-Order-Api","1.0.1","Brightery","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrighterycom\u002F","\u003Cp>Connecting WooCommerce to customer service chatbots shouldn’t require exposing your entire store to complex webhook setups or granting full read\u002Fwrite API access.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Brightery Woo-Order-Api\u003C\u002Fstrong> acts as a secure, read-only bridge. It provides two highly specific API endpoints tailored exactly to what chatbots need: order statuses and tracking links.\u003C\u002Fp>\n\u003Cp>It is perfectly suited for developers building automated customer support flows on platforms like ManyChat, Chatfuel, Dialogflow, or custom AI agents.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Secure API Key Authentication:\u003C\u002Fstrong> Easily generate an API key from the WordPress admin dashboard to ensure only your bot can access the data.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Targeted Data:\u003C\u002Fstrong> Exposes only the necessary data (order status, shipping dates, courier, tracking links) without leaking sensitive customer information.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Search by Email or Phone:\u003C\u002Fstrong> Allows bots to query a user’s purchase history using their contact information.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Order Verification:\u003C\u002Fstrong> The specific order endpoint requires the billing email to match the order ID, adding an extra layer of privacy.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>API Endpoints\u003C\u002Fh3>\n\u003Cp>Base URL: \u003Ccode>https:\u002F\u002Fyour-site.com\u002Fwp-json\u002FBrightery-api\u002Fv1\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>1. Get Specific Order (Ideal for “Where is my order?” flows)\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Ccode>GET \u002Forder\u002F{order_id}?email=customer@example.com\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>2. Get Customer Order History\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Ccode>GET \u002Forders\u002Fby-contact?phone=1234567890\u003C\u002Fcode>\u003Cbr \u002F>\n* \u003Ccode>GET \u002Forders\u002Fby-contact?email=customer@example.com\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Authentication:\u003C\u002Fstrong> All requests must include the header: \u003Ccode>X-Brightery-API-Key: YOUR_API_KEY\u003C\u002Fcode>\u003C\u002Fp>\n","A secure, lightweight custom REST API designed to connect WooCommerce order tracking to customer service bots (ManyChat, Dialogflow, custom AI).",62,"2026-04-05T18:16:00.000Z","6.9.4","5.6",[90,91,92,93,22],"api","chatbot","manychat","order-tracking","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbrightery-woo-order-api.1.0.1.zip",100,{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":11,"downloaded":50,"rating":11,"num_ratings":11,"last_updated":104,"tested_up_to":87,"requires_at_least":105,"requires_php":16,"tags":106,"homepage":111,"download_link":112,"security_score":95,"vuln_count":11,"unpatched_count":11,"last_vuln_date":36,"fetched_at":28},"easy-re-order-reminder-for-woocommerce","Easy Re-Order Reminder for WooCommerce","1.0.3","Codereyes","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodereyes\u002F","\u003Cp>Easy Re-Order Reminder for WooCommerce helps you increase repeat sales by automatically sending reminder emails to customers who haven’t reordered products within a specified time frame. Perfect for subscription products, consumables, and any items customers might need to repurchase.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Automatic Email Reminders\u003C\u002Fstrong>: Set up automatic email reminders after a specified number of days (15, 30, 60, 90 days, etc.)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Product-Level Control\u003C\u002Fstrong>: Enable\u002Fdisable reminders per product and set custom reminder days for individual products\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customer Choice\u003C\u002Fstrong>: Customers can select their preferred reminder day on the thank you page after completing an order\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Beautiful Email Templates\u003C\u002Fstrong>: Professional HTML email templates with one-click reorder button\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Unsubscribe Option\u003C\u002Fstrong>: Customers can easily unsubscribe from reminders with a single click\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comprehensive Logging\u003C\u002Fstrong>: Track sent, pending, and failed reminders with detailed logs\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Test Email\u003C\u002Fstrong>: Send test emails to verify your email settings and templates\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce Integration\u003C\u002Fstrong>: Fully integrated with WooCommerce email system and settings\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Global Settings Page\u003C\u002Fstrong>: Dedicated settings page for easy configuration and maintenance\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\u003Cstrong>Order Tracking\u003C\u002Fstrong>: The plugin automatically tracks completed orders\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Daily Cron Job\u003C\u002Fstrong>: A daily cron job checks for orders that need reminders based on the configured reminder days\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Email Sending\u003C\u002Fstrong>: Reminder emails are sent to customers with product details and a reorder link\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Logging\u003C\u002Fstrong>: All reminder activities are logged for tracking and analysis\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Product-Level Settings\u003C\u002Fh4>\n\u003Cp>For each product, you can:\u003Cbr \u002F>\n* Enable or disable reminders\u003Cbr \u002F>\n* Set custom reminder days (overrides global setting)\u003Cbr \u002F>\n* Control reminders at the product level for maximum flexibility\u003C\u002Fp>\n\u003Ch4>Customer Experience\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Customers can choose their preferred reminder day on the thank you page\u003C\u002Fli>\n\u003Cli>Beautiful, responsive email templates\u003C\u002Fli>\n\u003Cli>One-click reorder functionality\u003C\u002Fli>\n\u003Cli>Easy unsubscribe option in every email\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Admin Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Global settings page with statistics\u003C\u002Fli>\n\u003Cli>Product-level reminder controls\u003C\u002Fli>\n\u003Cli>Email template customization\u003C\u002Fli>\n\u003Cli>Comprehensive logging system\u003C\u002Fli>\n\u003Cli>Test email functionality\u003C\u002Fli>\n\u003Cli>Quick links to WooCommerce email settings\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, feature requests, and bug reports, please visit:\u003Cbr \u002F>\nhttps:\u002F\u002Fgithub.com\u002Fcodereyes-com\u002Feasy-re-order-reminder-for-woocommerce\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WooCommerce for the excellent e-commerce platform\u003C\u002Fli>\n\u003Cli>WordPress community for inspiration and feedback\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPL v2 or later.\u003C\u002Fp>\n","Automatically remind customers to reorder products after a defined time period. Increase repeat sales with automated email reminders.","2026-03-21T09:37:00.000Z","5.8",[107,108,109,110,22],"customer-retention","email","reminders","reorder","https:\u002F\u002Fgithub.com\u002Fcodereyes-com\u002Feasy-re-order-reminder-for-woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-re-order-reminder-for-woocommerce.1.0.3.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":11,"downloaded":121,"rating":11,"num_ratings":11,"last_updated":122,"tested_up_to":87,"requires_at_least":123,"requires_php":16,"tags":124,"homepage":127,"download_link":128,"security_score":95,"vuln_count":11,"unpatched_count":11,"last_vuln_date":36,"fetched_at":129},"luxcord-order-notification","LuxCord Order Notification","1.0.0","FahimXtreme","https:\u002F\u002Fprofiles.wordpress.org\u002Ffahimxtreme\u002F","\u003Cp>LuxCord Order Notification is a powerful and lightweight WordPress plugin designed for WooCommerce store owners who want to stay connected with their sales in real-time.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Instant Notifications\u003C\u002Fstrong>: Get notified on Discord the second an order is placed.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Templates\u003C\u002Fstrong>: Use placeholders like \u003Ccode>{order_number}\u003C\u002Fcode>, \u003Ccode>{order_total}\u003C\u002Fcode>, and \u003Ccode>{customer_name}\u003C\u002Fcode> to craft specific messages.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Premium UI\u003C\u002Fstrong>: A modern and intuitive admin dashboard for easy configuration.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy Setup\u003C\u002Fstrong>: Includes a step-by-step setup guide for creating your Discord bot.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin connects to the Discord API to send WooCommerce order notifications directly to your Discord server.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Service\u003C\u002Fstrong>: Discord API (https:\u002F\u002Fdiscord.com)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Purpose\u003C\u002Fstrong>: To post real-time order notifications (order number, total, customer name, and items) to a specified Discord channel via a bot token.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Data Sent\u003C\u002Fstrong>: WooCommerce order details (Order ID, Total, Customer Name, and Product List) are sent to Discord when an order is placed or when the “Test Now” button is clicked.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Links\u003C\u002Fstrong>: \u003Ca href=\"https:\u002F\u002Fdiscord.com\u002Fterms\" rel=\"nofollow ugc\">Discord Terms of Service\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fdiscord.com\u002Fprivacy\" rel=\"nofollow ugc\">Discord Privacy Policy\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","Premium WooCommerce order notifications to Discord. Stay updated on every sale with beautiful, customizable messages.",140,"2026-03-09T17:16:00.000Z","5.0",[18,125,126,19,22],"discord","notification","https:\u002F\u002Ffahim.modrao.com\u002Fluxcord","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fluxcord-order-notification.1.0.0.zip","2026-03-15T15:16:48.613Z",{"slug":131,"name":132,"version":116,"author":133,"author_profile":134,"description":135,"short_description":136,"active_installs":11,"downloaded":137,"rating":11,"num_ratings":11,"last_updated":138,"tested_up_to":139,"requires_at_least":67,"requires_php":140,"tags":141,"homepage":143,"download_link":144,"security_score":76,"vuln_count":11,"unpatched_count":11,"last_vuln_date":36,"fetched_at":28},"order-reminder-for-woo","Order Reminder For WooCommerce","reminderwoo","https:\u002F\u002Fprofiles.wordpress.org\u002Freminderwoo\u002F","\u003Cp>Order Reminder For WooCommerce plugin is designed to enhance customer engagement and feedback. It automatically sends a reminder email 30 days after an order is marked as ‘completed’. This email invites customers to rate and review the product(s) they purchased. This plugin helps in gathering valuable customer feedback and improving product ratings.\u003C\u002Fp>\n","Automatically sets the caption of all images to your site's title.",520,"2024-02-26T06:27:00.000Z","6.4.8","7.0",[108,19,142,21,22],"rating","https:\u002F\u002Fwww.wpcocktail.com\u002Fimage-caption","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Forder-reminder-for-woo.zip",{"attackSurface":146,"codeSignals":188,"taintFlows":197,"riskAssessment":198,"analyzedAt":204},{"hooks":147,"ajaxHandlers":182,"restRoutes":183,"shortcodes":184,"cronEvents":185,"entryPointCount":11,"unprotectedCount":11},[148,154,158,162,167,171,174,178],{"type":149,"name":150,"callback":151,"file":152,"line":153},"action","admin_init","register_options_init","inc\u002FServices\u002FAdmin.php",27,{"type":149,"name":155,"callback":156,"file":152,"line":157},"admin_menu","register_options_menu",28,{"type":149,"name":159,"callback":160,"file":152,"line":161},"admin_enqueue_scripts","register_options_styles",29,{"type":149,"name":163,"callback":164,"file":165,"line":166},"init","register_translation","inc\u002FServices\u002FBoot.php",25,{"type":149,"name":168,"callback":169,"file":170,"line":153},"wp_loaded","schedule_reminders","inc\u002FServices\u002FScheduler.php",{"type":149,"name":172,"callback":173,"file":170,"line":157},"pending_orders","send_reminders",{"type":175,"name":176,"callback":177,"file":170,"line":161},"filter","cron_schedules","register_cron_schedules",{"type":149,"name":179,"callback":180,"file":181,"line":153},"admin_notices","closure","pending-order-bot.php",[],[],[],[186],{"hook":172,"callback":172,"file":170,"line":187},44,{"dangerousFunctions":189,"sqlUsage":190,"outputEscaping":192,"fileOperations":11,"externalRequests":11,"nonceChecks":195,"capabilityChecks":11,"bundledLibraries":196},[],{"prepared":11,"raw":11,"locations":191},[],{"escaped":193,"rawEcho":11,"locations":194},36,[],2,[],[],{"summary":199,"deductions":200},"The static analysis of the \"pending-order-bot\" v1.0.2 plugin indicates a generally strong security posture, with excellent adherence to best practices such as 100% output escaping and 100% prepared statement usage for SQL queries. The absence of dangerous functions, file operations, and external HTTP requests further contributes to its security.  Critically, the plugin has zero entry points without proper authorization checks and no identified taint flows, suggesting the code itself is robust against common injection and manipulation vulnerabilities.\n\nHowever, a significant concern is the existence of one known, unpatched medium severity vulnerability. While the static analysis did not uncover active exploits in this version, the historical vulnerability indicates a potential weakness, specifically Cross-Site Scripting, that has not been remediated. The presence of only two nonce checks across the entire plugin, while not directly flagged as an issue due to the absence of AJAX\u002FREST API entry points without auth checks, might suggest a limited use of WordPress's built-in security mechanisms which could be a missed opportunity for enhanced protection.\n\nIn conclusion, \"pending-order-bot\" v1.0.2 demonstrates good development practices in its current code, but the unpatched vulnerability poses a tangible risk. Users should be aware of this history and consider whether the benefits of the plugin outweigh the risk of this known flaw. The lack of extensive entry points and robust code sanitization is a positive, but the single unaddressed CVE is a significant drawback to its overall security.",[201],{"reason":202,"points":203},"Unpatched CVE",17,"2026-04-16T14:40:40.715Z",{"wat":206,"direct":213},{"assetPaths":207,"generatorPatterns":209,"scriptPaths":210,"versionParams":211},[208],"\u002Fwp-content\u002Fplugins\u002Fpending-order-bot\u002Fstyles.css",[],[],[212],"pending-order-bot\u002Fstyles.css?ver=1.0.0",{"cssClasses":214,"htmlComments":216,"htmlAttributes":217,"restEndpoints":218,"jsGlobals":219,"shortcodeOutput":220},[215],"wrap",[],[],[],[],[],{"error":222,"url":223,"statusCode":224,"statusMessage":225,"message":225},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fpending-order-bot\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":227,"versions":228},3,[229,235,242],{"version":6,"download_url":24,"svn_tag_url":230,"released_at":36,"has_diff":46,"diff_files_changed":231,"diff_lines":36,"trac_diff_url":232,"vulnerabilities":233,"is_current":222},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fpending-order-bot\u002Ftags\u002F1.0.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fpending-order-bot%2Ftags%2F1.0.1&new_path=%2Fpending-order-bot%2Ftags%2F1.0.2",[234],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":36},{"version":80,"download_url":236,"svn_tag_url":237,"released_at":36,"has_diff":46,"diff_files_changed":238,"diff_lines":36,"trac_diff_url":239,"vulnerabilities":240,"is_current":46},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpending-order-bot.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fpending-order-bot\u002Ftags\u002F1.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fpending-order-bot%2Ftags%2F1.0.0&new_path=%2Fpending-order-bot%2Ftags%2F1.0.1",[241],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":36},{"version":116,"download_url":243,"svn_tag_url":244,"released_at":36,"has_diff":46,"diff_files_changed":245,"diff_lines":36,"trac_diff_url":36,"vulnerabilities":246,"is_current":46},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpending-order-bot.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fpending-order-bot\u002Ftags\u002F1.0.0\u002F",[],[247],{"id":32,"url_slug":33,"title":34,"severity":38,"cvss_score":39,"vuln_type":41,"patched_in_version":36}]