[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fsZHbSMBHtJwNpGNMbcEel6IdOPFOL6mQwdyUi7mWugA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":15,"requires_php":15,"tags":16,"homepage":15,"download_link":20,"security_score":21,"vuln_count":13,"unpatched_count":13,"last_vuln_date":22,"fetched_at":23,"vulnerabilities":24,"developer":25,"crawl_stats":22,"alternatives":32,"analysis":33,"fingerprints":86},"purchase-order-woocommerce-addon","Purchase Order WooCommerce Addon","1.0","syednazrulhassan","https:\u002F\u002Fprofiles.wordpress.org\u002Fnazrulhassanmca\u002F","\u003Cp>This plugin adds a purchase order in WooCommerce for customers to complete the order.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Very Simple Clean Code plugin to add a Purchase Order payment method to woocommerce\u003C\u002Fli>\n\u003Cli>No technical skills needed.\u003C\u002Fli>\n\u003Cli>Prerequisite visualized on screenshots.\u003C\u002Fli>\n\u003Cli>Adds PO Number and PO Note to Order details\u003C\u002Fli>\n\u003C\u002Fol>\n","This plugin adds a purchase order in WooCommerce for customers to complete the order.",100,2181,0,"2017-08-20T18:53:00.000Z","",[17,18,19],"purchase-order-payment-gateway","purchase-order-woocommerce","woocommerce-purchase-order","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpurchase-order-woocommerce-addon.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":26,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":28,"avg_security_score":29,"avg_patch_time_days":30,"trust_score":21,"computed_at":31},"nazrulhassanmca",10,540,87,30,"2026-04-04T16:29:56.838Z",[],{"attackSurface":34,"codeSignals":61,"taintFlows":79,"riskAssessment":80,"analyzedAt":85},{"hooks":35,"ajaxHandlers":57,"restRoutes":58,"shortcodes":59,"cronEvents":60,"entryPointCount":13,"unprotectedCount":13},[36,42,47,50,53],{"type":37,"name":38,"callback":39,"file":40,"line":41},"filter","woocommerce_payment_gateways","add_purchaseorder_gateway_class","woo-purchase-order-addon.php",21,{"type":43,"name":44,"callback":45,"file":40,"line":46},"action","woocommerce_admin_order_data_after_order_details","display_po_number_inorder",41,{"type":43,"name":48,"callback":45,"file":40,"line":49},"woocommerce_email_after_order_table",42,{"type":43,"name":51,"callback":45,"file":40,"line":52},"woocommerce_order_details_after_order_table",43,{"type":43,"name":54,"callback":55,"file":40,"line":56},"plugins_loaded","purchaseorder_init",194,[],[],[],[],{"dangerousFunctions":62,"sqlUsage":63,"outputEscaping":65,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":78},[],{"prepared":13,"raw":13,"locations":64},[],{"escaped":66,"rawEcho":67,"locations":68},6,4,[69,72,74,76],{"file":40,"line":70,"context":71},80,"raw output",{"file":40,"line":73,"context":71},95,{"file":40,"line":75,"context":71},99,{"file":40,"line":77,"context":71},105,[],[],{"summary":81,"deductions":82},"The static analysis of \"purchase-order-woocommerce-addon\" v1.0 indicates a strong initial security posture with no identified direct entry points such as AJAX handlers, REST API routes, or shortcodes. The absence of dangerous functions, file operations, external HTTP requests, and a lack of taint analysis findings further contribute to this positive view. All SQL queries are correctly prepared, which is a significant security strength. However, the static analysis does reveal a concern with output escaping, as only 60% of outputs are properly escaped, leaving potential for cross-site scripting (XSS) vulnerabilities if user-controlled data is outputted without sufficient sanitization. The plugin's vulnerability history is completely clean, with no recorded CVEs, suggesting either a history of secure development or a lack of extensive security auditing. While the lack of entry points and secure SQL practices are commendable, the unescaped output is a notable weakness that requires attention. A more thorough review of output handling is recommended to ensure all user-facing data is properly sanitized.",[83],{"reason":84,"points":66},"Unescaped output detected","2026-03-16T21:09:32.908Z",{"wat":87,"direct":93},{"assetPaths":88,"generatorPatterns":90,"scriptPaths":91,"versionParams":92},[89],"\u002Fwp-content\u002Fplugins\u002Fpurchase-order-woocommerce-addon\u002Fpurchase-order-woocommerce-addon.php",[],[],[],{"cssClasses":94,"htmlComments":96,"htmlAttributes":97,"restEndpoints":102,"jsGlobals":103,"shortcodeOutput":104},[95],"form-row-first",[],[98,99,100,101],"id=\"po_number_field\"","name=\"po_number_field\"","id=\"po_note_field\"","name=\"po_note_field\"",[],[],[105,106,107,108,106,109],"\u003Clabel for=\"poorder\">Purchase Order \u003Cspan class=\"required\">*\u003C\u002Fspan>\u003C\u002Flabel>","\u003Cinput type=\"text\" class=\"input-text\" value=\"","\" id=\"po_number_field\" name=\"po_number_field\" \u002F>","\u003Clabel for=\"poordernote\">Purchase Order Note\u003C\u002Flabel>","\" id=\"po_note_field\" name=\"po_note_field\" \u002F>"]