Popup with exit intent, scroll triggered and anchor click for opt-ins, lead gen & more Security & Risk Analysis

The 'popper' plugin v0.9.7 exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and correctly escaping most of its output. The absence of known CVEs and a clean vulnerability history are also strong indicators of a well-maintained and secure plugin. However, a significant concern arises from its attack surface. There are two AJAX handlers identified, and critically, both lack authentication checks. This creates a direct pathway for unauthenticated users to interact with the plugin's functionality, potentially leading to unintended consequences or exploitation if these handlers are not robustly secured internally.

The static analysis shows no dangerous functions, file operations, or external HTTP requests, which are all positive signs. The taint analysis yielded no concerning flows, further reinforcing the idea that critical, complex vulnerabilities are unlikely to be present. The presence of a nonce check and capability checks on some entry points is also a good sign, though the lack of these on the AJAX handlers is a notable omission.

In conclusion, while the plugin is generally well-coded with good data handling practices and a clean history, the unprotected AJAX endpoints represent a significant security weakness. This oversight could be exploited by attackers to trigger actions within the plugin that were not intended for public access. Addressing these unprotected entry points should be the primary focus for improving the plugin's security.