[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fFGHV8PQKTh-15Ujjqo7l75deYwdKI2yqqaVyw_M-rp8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":143,"fingerprints":414},"pv-anlagen","Solar-Energy-Visualizer","1.0.2","christinali","https:\u002F\u002Fprofiles.wordpress.org\u002Fchristinali\u002F","\u003Cp>This plugin represents a customer area for energy feed-in and consumption customers.\u003Cbr \u002F>\nIf you have installed an intelligent measuring system on your meter reading, you can use this plugin to monitor your energy consumption or, with an installed photovoltaic system, energy feed-in.\u003C\u002Fp>\n\u003Cp>This plugin includes:\u003Cbr \u002F>\n* Administrator can make settings which smart meters are used, add weather data and colors\u003Cbr \u002F>\n* Administrator can add consumers, producers and prosumers\u003Cbr \u002F>\n* Visualization of energy consumption and energy feed calculations in real time\u003Cbr \u002F>\n* Automated time-based billing of feed-in and consumption data\u003Cbr \u002F>\n* Interface for an AI to predict the production of photovoltaic systems\u003C\u002Fp>\n","This plugin represents a customer area for energy feed-in and consumption customers.",10,6104,0,"2023-02-16T09:40:00.000Z","6.0.11","4.7","7.0",[19,20,21,22,23],"energy","erneuerbare-energie","pv","solar","visualizer","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpv-anlagen.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},1,30,84,"2026-04-05T15:14:37.640Z",[36,56,74,101,123],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":13,"num_ratings":13,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":49,"tags":50,"homepage":53,"download_link":54,"security_score":55,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"solar-calculator","Solar Calculator","1.1.4","Helmut Burk","https:\u002F\u002Fprofiles.wordpress.org\u002Fhelmutburk\u002F","\u003Cp>A WordPress plugin that helps homeowners, installers, and energy consultants easily calculate the potential solar power production of a specific location\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features include:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Intuitive, responsive frontend calculator\u003Cbr \u002F>\n– Featuring an advanced battery comparison chart and table\u003Cbr \u002F>\n– Customizable backend settings (regional defaults, pricing presets etc.)\u003Cbr \u002F>\n– Multilingual support (WPML, Polylang, etc.)\u003Cbr \u002F>\n– Accurate solar yield estimates based on real data\u003Cbr \u002F>\n– Battery and installation cost calculators\u003Cbr \u002F>\n– Translation-ready with .po\u002F.mo files (DE, GR, IT, EN, ES, FR)\u003C\u002Fp>\n\u003Cp>Ideal for solar companies, energy advisors, and eco-conscious site owners.\u003C\u002Fp>\n\u003Cp>Made in Germany – optimized for European conditions.\u003C\u002Fp>\n\u003Ch3>Developer Info\u003C\u002Fh3>\n\u003Cp>Plugin structure:\u003Cbr \u002F>\n\u002Fwp-content\u002Fplugins\u002F\u003Cbr \u002F>\n└── solarrechner\u002F\u003Cbr \u002F>\n    ├── solarrechner.php                \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">←\u003C\u002Fspan> Main plugin file\u003Cbr \u002F>\n    ├── admin\u002F\u003Cbr \u002F>\n    ├── assets\u002F\u003Cbr \u002F>\n    ├── includes\u002F\u003Cbr \u002F>\n    ├── languages\u002F\u003Cbr \u002F>\n    └── templates\u002F\u003Cbr \u002F>\n        └── solarrechner-frontend-i18n.php \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">←\u003C\u002Fspan> Frontend template with multilingual support\u003C\u002Fp>\n","A modern, user-friendly WordPress plugin designed to promote solar energy, calculate the potential solar power generation at a specific location.",90,1094,"2025-05-24T21:30:00.000Z","6.8.5","6.0","7.2",[51,19,52,21,22],"calculator","photovoltaic","https:\u002F\u002Fpv-plugin.org","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsolar-calculator.1.1.4.zip",100,{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":11,"downloaded":64,"rating":13,"num_ratings":13,"last_updated":65,"tested_up_to":66,"requires_at_least":67,"requires_php":24,"tags":68,"homepage":72,"download_link":73,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"region-generation-by-fuel-type-widget","Australian Live Generation By Fuel Type Widget","1.1","global-roam","https:\u002F\u002Fprofiles.wordpress.org\u002Fglobal-roam\u002F","\u003Cp>We are pleased to be able to work with the RenewEconomy team to help people understand how much renewable\u003Cbr \u002F>\ngeneration is currently contributing to electricity supplies in the NEM.\u003C\u002Fp>\n\u003Cp>It shows, for each region of Australia’s National Electricity Market (NEM), how much electricity is being\u003Cbr \u002F>\ngenerated by each fuel type, using data published by the Australian Energy Market Operator (AEMO) and the\u003Cbr \u002F>\nAustralian Photovoltaic Institute (APVI).\u003C\u002Fp>\n\u003Cp>The widget also shows data for the South-West Interconnected System (SWIS) in Western Australia using data\u003Cbr \u002F>\npublished by the Independent Market Operator (IMO-WA).\u003C\u002Fp>\n\u003Cp>If you don’t already have an API key you can get one \u003Ca href=\"http:\u002F\u002Fwidgets.global-roam.com\u002FEmbedInstructions\" rel=\"nofollow ugc\">here\u003C\u002Fa>. Move your mouse over the widget and click the \u003Cstrong>EMBED\u003C\u002Fstrong> button.\u003C\u002Fp>\n","Australian Live Generation by Fuel Type widget by Global-Roam.",1620,"2015-07-13T00:07:00.000Z","4.2.39","3.2",[69,19,70,71,22],"electricity","generation","nem","http:\u002F\u002Freneweconomy.com.au\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fregion-generation-by-fuel-type-widget.1.1.zip",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":82,"downloaded":83,"rating":84,"num_ratings":85,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":89,"tags":90,"homepage":96,"download_link":97,"security_score":98,"vuln_count":99,"unpatched_count":13,"last_vuln_date":100,"fetched_at":28},"wpvivid-backup-mainwp","WPvivid Backup for MainWP","0.9.40","wpvividplugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpvividplugins\u002F","\u003Cp>WPvivid Backup for MainWP enables you to create and download backups of a specific child site, set backup schedules, set \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpvivid-backuprestore\u002F\" rel=\"ugc\">WPvivid Backup Plugin\u003C\u002Fa> settings for all of your child sites directly from your MainWP dashboard.\u003C\u002Fp>\n\u003Ch3>WPvivid Backup Pro Supported\u003C\u002Fh3>\n\u003Cp>The extension now also supports \u003Ca href=\"https:\u002F\u002Fwpvivid.com\u002Fwpvivid-backup-for-mainwp\" rel=\"nofollow ugc\">WPvivid Backup Pro\u003C\u002Fa>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Install, claim and update WPvivid Backup Pro for child site in bulk.\u003C\u002Fli>\n\u003Cli>Set up remote storage for child sites in bulk.\u003C\u002Fli>\n\u003Cli>Install \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpvivid-imgoptim\u002F\" rel=\"ugc\">WPvivid Image Optimization Plugin\u003C\u002Fa> in child sites in bulk.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Create backups for a specific child site\u003C\u002Fli>\n\u003Cli>Download backups of a specific child site to local\u003C\u002Fli>\n\u003Cli>Set backup schedules for child sites\u003C\u002Fli>\n\u003Cli>Set WPvivid Backup Free and Pro settings for child sites\u003C\u002Fli>\n\u003Cli>Set up remote storage for child sites with WPvivid Backup Pro\u003C\u002Fli>\n\u003Cli>Install, claim and update WPvivid Backup Pro for child sites\u003C\u002Fli>\n\u003Cli>Set up incremental backups for child sites\u003C\u002Fli>\n\u003Cli>Set up white label for child sites\u003C\u002Fli>\n\u003Cli>Select and hide WPvivid modules on child sites\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Minimum Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>MainWP Dashboard 4.0.3 or later\u003C\u002Fli>\n\u003Cli>MainWP Child Requirement: 4.0.2 or later\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Installation and Setup\u003C\u002Fh3>\n\u003Cp>See the \u003Ca href=\"https:\u002F\u002Fwpvivid.com\u002Fwpvivid-backup-for-mainwp\" rel=\"nofollow ugc\">get started guide\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Note:\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Install WPVivid Backup for MainWP on MainWP site ONLY.\u003C\u002Fli>\n\u003Cli>Install WPVivid Backup Plugin (not MainWP) on each child site.\u003C\u002Fli>\n\u003C\u002Fol>\n","Set up and control WPvivid Backup Free and Pro for all child sites directly from your MainWP Dashboard.",10000,254522,92,9,"2026-01-07T00:49:00.000Z","6.9.4","4.5","5.3",[91,92,93,94,95],"auto-backup","backup","cloud-backup","mainwp-extension","wpvivid-backup","https:\u002F\u002Fmainwp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpvivid-backup-mainwp.0.9.40.zip",99,2,"2024-04-05 00:00:00",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":109,"downloaded":110,"rating":111,"num_ratings":112,"last_updated":113,"tested_up_to":87,"requires_at_least":114,"requires_php":115,"tags":116,"homepage":121,"download_link":122,"security_score":55,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wpscan","WPScan – WordPress Security Scanner","1.16","ethicalhack3r","https:\u002F\u002Fprofiles.wordpress.org\u002Fethicalhack3r\u002F","\u003Cp>\u003Cstrong>Please note:\u003C\u002Fstrong> This plugin is no longer actively supported for non-enterprise customers. \u003Cstrong>We recommend using \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fjetpack-protect\u002F\" rel=\"ugc\">Jetpack Protect\u003C\u002Fa>\u003C\u002Fstrong> – a free security plugin for WordPress that leverages the extensive database of WPScan. Jetpack Protect scans your site and warns you about vulnerabilities, keeping your site one step ahead of security threats and malware.\u003C\u002Fp>\n\u003Cp>The WPScan WordPress security plugin is unique in that it uses its own manually curated \u003Ca href=\"https:\u002F\u002Fwpscan.com\u002F\" rel=\"nofollow ugc\">WPScan WordPress Vulnerability Database\u003C\u002Fa>. The vulnerability database has been around since 2014 and is updated on a daily basis by dedicated WordPress security specialists and the community at large. The database includes more than 21,000 known security vulnerabilities. The plugin uses this database to scan for \u003Ca href=\"https:\u002F\u002Fwpscan.com\u002Fwordpresses\" rel=\"nofollow ugc\">WordPress vulnerabilities\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwpscan.com\u002Fplugins\" rel=\"nofollow ugc\">plugin vulnerabilities\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwpscan.com\u002Fthemes\" rel=\"nofollow ugc\">theme vulnerabilities\u003C\u002Fa>, and has the options to schedule automated daily scans and to send email notifications.\u003C\u002Fp>\n\u003Cp>WPScan has a Free API plan that should be suitable for most WordPress websites, however, also has paid plans for users who may need more API calls. To use the WPScan WordPress Security Plugin you will need to use a free API token by \u003Ca href=\"https:\u002F\u002Fwpscan.com\u002F\" rel=\"nofollow ugc\">registering here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>The Free plan allows 25 API requests per day. View the different available \u003Ca href=\"https:\u002F\u002Fwpscan.com\u002Fapi\" rel=\"nofollow ugc\">API plans\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>How many API requests do you need?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Our WordPress scanner makes one API request for the WordPress version, one request per installed plugin and one request per installed theme.\u003C\u002Fli>\n\u003Cli>On average, a WordPress website has 22 installed plugins.\u003C\u002Fli>\n\u003Cli>The Free plan should cover around 50% of all WordPress websites.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Security Checks\u003C\u002Fh4>\n\u003Cp>The WPScan WordPress Security Plugin will also check for other security issues, which do not require an API token, such as:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Check for debug.log files\u003C\u002Fli>\n\u003Cli>Check for wp-config.php backup files\u003C\u002Fli>\n\u003Cli>Check if XML-RPC is enabled\u003C\u002Fli>\n\u003Cli>Check for code repository files\u003C\u002Fli>\n\u003Cli>Check if default secret keys are used\u003C\u002Fli>\n\u003Cli>Check for exported database files\u003C\u002Fli>\n\u003Cli>Weak passwords\u003C\u002Fli>\n\u003Cli>HTTPS enabled\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>What does the plugin do?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Scans for known WordPress vulnerabilities, plugin vulnerabilities and theme vulnerabilities;\u003C\u002Fli>\n\u003Cli>Does additional security checks;\u003C\u002Fli>\n\u003Cli>Shows an icon on the Admin Toolbar with the total number of security vulnerabilities found;\u003C\u002Fli>\n\u003Cli>Notifies you by mail when new security vulnerabilities are found.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Further Reading\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpscan.com\u002F\" rel=\"nofollow ugc\">WPScan WordPress Vulnerability Database\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpscan.com\u002Fwordpress-security-scanner\" rel=\"nofollow ugc\">WPScan WordPress Security Scanner\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftwitter.com\u002F_wpscan_\" rel=\"nofollow ugc\">WPScan Twitter\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","WPScan WordPress Security Scanner - Scans your system for security vulnerabilities listed in the WPScan Vulnerability Database.",9000,266474,76,28,"2026-01-12T13:09:00.000Z","3.4","5.5",[117,118,119,102,120],"hack","security","vulnerability","wpvulndb","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpscan\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpscan.1.16.zip",{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":131,"downloaded":132,"rating":133,"num_ratings":99,"last_updated":134,"tested_up_to":135,"requires_at_least":24,"requires_php":24,"tags":136,"homepage":140,"download_link":141,"security_score":98,"vuln_count":31,"unpatched_count":13,"last_vuln_date":142,"fetched_at":28},"cecabank-woocommerce","Cecabank WooCommerce Plugin","0.3.5","cecabank","https:\u002F\u002Fprofiles.wordpress.org\u002Fcecabank\u002F","\u003Cp>El plugin de Cecabank para WooCommerce permite realizar cobros a tus clientes utilizando el TPV de Cecabank.\u003C\u002Fp>\n\u003Ch3>Más información\u003C\u002Fh3>\n\u003Cp>Para tener más información de como instalar el plugin de Cecabank en WooCommerce puede ver el manual de este plugin en la sección Ayuda y Recursos de la consola de Cecabank.\u003C\u002Fp>\n\u003Ch3>Descripción\u003C\u002Fh3>\n\u003Cp>El plugin de Cecabank para WooCommerce permite realizar cobros a tus clientes utilizando el TPV de Cecabank.\u003C\u002Fp>\n\u003Ch3>Instalación\u003C\u002Fh3>\n\u003Cp>Puede descargar el plugin aquí: https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcecabank-woocommerce\u002Fdevelopers\u002F.\u003C\u002Fp>\n\u003Ch4>Instalación automática\u003C\u002Fh4>\n\u003Cp>La instalación automática es la manera más sencilla de utilizar el plugin en WordPress. Para realizar la instalación\u003Cbr \u002F>\nautomática, entre a su panel de WordPress, acceda al menú de Plugins y de click en Agregar nuevo.\u003C\u002Fp>\n\u003Cp>En el campo de búsqueda escriba \\”Cecabank WooCommerce Plugin\\” y de click en Buscar Plugins. Una vez encontrado puede ver los detalles, valoración y\u003Cbr \u002F>\ndescruipción. Lo más importante, es que puede instalarlo dando click simplemente en \\”Instalar ahora\\”.\u003C\u002Fp>\n\u003Ch4>Instalación manual\u003C\u002Fh4>\n\u003Cp>El método de instalación manual se refiere a descargar nuestro plugin y subirlo vía ftp a su servidor. WordPress codex tiene un artículo con \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FManaging_Plugins#Manual_Plugin_Installation\" rel=\"nofollow ugc\">con las instrucciones de como hacerlo aquí\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Actualización\u003C\u002Fh4>\n\u003Cp>Automáticamente se realizarán las actualizaciones y funcionarán de manera normal; de todas formas, siempre asegúrese de realizar un backup a su sitio por si acaso.\u003C\u002Fp>\n\u003Ch4>Uso\u003C\u002Fh4>\n\u003Cp>Para utilizar el plugin usted necesita tener acceso a un TPV de Cecabank para poder obtener las credenciales.\u003C\u002Fp>\n","El plugin de Cecabank para WooCommerce permite realizar cobros a tus clientes utilizando el TPV de Cecabank.",3000,29604,60,"2025-12-22T17:58:00.000Z","6.4.8",[127,137,138,139],"gateway","payments","tpv","https:\u002F\u002Fgithub.com\u002Fcecabank\u002Fcecabank-woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcecabank-woocommerce.0.3.5.zip","2025-09-22 00:00:00",{"attackSurface":144,"codeSignals":185,"taintFlows":338,"riskAssessment":406,"analyzedAt":413},{"hooks":145,"ajaxHandlers":168,"restRoutes":169,"shortcodes":170,"cronEvents":183,"entryPointCount":184,"unprotectedCount":13},[146,152,155,157,160,163,166],{"type":147,"name":148,"callback":149,"file":150,"line":151},"action","plugins_loaded","anonymous","includes\\class-sevz.php",154,{"type":147,"name":153,"callback":149,"file":150,"line":154},"admin_enqueue_scripts",169,{"type":147,"name":153,"callback":149,"file":150,"line":156},170,{"type":147,"name":158,"callback":149,"file":150,"line":159},"admin_menu",171,{"type":147,"name":161,"callback":149,"file":150,"line":162},"admin_init",173,{"type":147,"name":164,"callback":149,"file":150,"line":165},"wp_enqueue_scripts",188,{"type":147,"name":164,"callback":149,"file":150,"line":167},189,[],[],[171,174,177,180],{"tag":172,"callback":149,"file":150,"line":173},"sevz_show_total_pv",193,{"tag":175,"callback":149,"file":150,"line":176},"sevz_show_pv",196,{"tag":178,"callback":149,"file":150,"line":179},"sevz_show_invoice",198,{"tag":181,"callback":149,"file":150,"line":182},"sevz_add_credit",199,[],4,{"dangerousFunctions":186,"sqlUsage":187,"outputEscaping":225,"fileOperations":330,"externalRequests":331,"nonceChecks":13,"capabilityChecks":332,"bundledLibraries":333},[],{"prepared":188,"raw":189,"locations":190},87,15,[191,195,197,200,202,204,206,207,209,212,214,216,217,219,222],{"file":192,"line":193,"context":194},"admin\\partials\\class_sevz_add_consumer.php",11,"$wpdb->get_results() with variable interpolation",{"file":192,"line":196,"context":194},33,{"file":198,"line":199,"context":194},"admin\\partials\\class_sevz_add_producer.php",18,{"file":198,"line":201,"context":194},19,{"file":198,"line":203,"context":194},41,{"file":205,"line":199,"context":194},"admin\\partials\\class_sevz_add_prosumer.php",{"file":205,"line":201,"context":194},{"file":205,"line":208,"context":194},39,{"file":210,"line":211,"context":194},"public\\partials\\sevz-public-display.php",20,{"file":210,"line":213,"context":194},21,{"file":210,"line":215,"context":194},27,{"file":210,"line":203,"context":194},{"file":210,"line":218,"context":194},101,{"file":220,"line":221,"context":194},"public\\view\\energy_balance_templates\\consumer_template.php",291,{"file":223,"line":224,"context":194},"public\\view\\energy_balance_templates\\producer_template.php",292,{"escaped":226,"rawEcho":227,"locations":228},957,52,[229,233,236,238,241,242,245,247,249,251,253,255,257,259,261,263,265,267,269,271,273,274,276,278,280,282,284,286,288,291,293,295,297,299,301,303,305,307,310,312,314,316,318,320,321,322,323,324,326,327,328,329],{"file":230,"line":231,"context":232},"includes\\tcpdf\\include\\tcpdf_static.php",350,"raw output",{"file":234,"line":235,"context":232},"includes\\tcpdf\\tcpdf_barcodes_1d.php",103,{"file":234,"line":237,"context":232},181,{"file":239,"line":240,"context":232},"includes\\tcpdf\\tcpdf_barcodes_2d.php",97,{"file":239,"line":237,"context":232},{"file":243,"line":244,"context":232},"includes\\tcpdf\\tools\\tcpdf_addfont.php",124,{"file":243,"line":246,"context":232},237,{"file":243,"line":248,"context":232},243,{"file":243,"line":250,"context":232},253,{"file":243,"line":252,"context":232},255,{"file":220,"line":254,"context":232},231,{"file":220,"line":256,"context":232},295,{"file":220,"line":258,"context":232},296,{"file":220,"line":260,"context":232},314,{"file":220,"line":262,"context":232},322,{"file":220,"line":264,"context":232},420,{"file":220,"line":266,"context":232},509,{"file":220,"line":268,"context":232},584,{"file":220,"line":270,"context":232},675,{"file":223,"line":272,"context":232},228,{"file":223,"line":258,"context":232},{"file":223,"line":275,"context":232},297,{"file":223,"line":277,"context":232},315,{"file":223,"line":279,"context":232},323,{"file":223,"line":281,"context":232},424,{"file":223,"line":283,"context":232},515,{"file":223,"line":285,"context":232},589,{"file":223,"line":287,"context":232},682,{"file":289,"line":290,"context":232},"public\\view\\energy_balance_templates\\prosumer_template.php",244,{"file":289,"line":292,"context":232},319,{"file":289,"line":294,"context":232},320,{"file":289,"line":296,"context":232},338,{"file":289,"line":298,"context":232},346,{"file":289,"line":300,"context":232},458,{"file":289,"line":302,"context":232},555,{"file":289,"line":304,"context":232},632,{"file":289,"line":306,"context":232},731,{"file":308,"line":309,"context":232},"public\\view\\energy_forecast_templates\\consumer_template_forecast.php",29,{"file":308,"line":311,"context":232},144,{"file":308,"line":313,"context":232},187,{"file":308,"line":315,"context":232},238,{"file":308,"line":317,"context":232},246,{"file":319,"line":309,"context":232},"public\\view\\energy_forecast_templates\\producer_template_forecast.php",{"file":319,"line":311,"context":232},{"file":319,"line":313,"context":232},{"file":319,"line":315,"context":232},{"file":319,"line":317,"context":232},{"file":325,"line":309,"context":232},"public\\view\\energy_forecast_templates\\prosumer_template_forecast.php",{"file":325,"line":311,"context":232},{"file":325,"line":165,"context":232},{"file":325,"line":315,"context":232},{"file":325,"line":317,"context":232},32,3,7,[334],{"name":335,"version":336,"knownCves":337},"TCPDF","1.0.004",[],[339,359,367,376,384,398],{"entryPoint":340,"graph":341,"unsanitizedCount":13,"severity":358},"sevz_add_credit (includes\\credit.php:22)",{"nodes":342,"edges":355},[343,349],{"id":344,"type":345,"label":346,"file":347,"line":348},"n0","source","$_GET (x2)","includes\\credit.php",31,{"id":350,"type":351,"label":352,"file":347,"line":353,"wp_function":354},"n1","sink","get_results() [SQLi]",74,"get_results",[356],{"from":344,"to":350,"sanitized":357},true,"low",{"entryPoint":360,"graph":361,"unsanitizedCount":13,"severity":358},"\u003Ccredit> (includes\\credit.php:0)",{"nodes":362,"edges":365},[363,364],{"id":344,"type":345,"label":346,"file":347,"line":348},{"id":350,"type":351,"label":352,"file":347,"line":353,"wp_function":354},[366],{"from":344,"to":350,"sanitized":357},{"entryPoint":368,"graph":369,"unsanitizedCount":13,"severity":358},"sevz_add_invoice (includes\\invoice.php:22)",{"nodes":370,"edges":374},[371,373],{"id":344,"type":345,"label":346,"file":372,"line":330},"includes\\invoice.php",{"id":350,"type":351,"label":352,"file":372,"line":353,"wp_function":354},[375],{"from":344,"to":350,"sanitized":357},{"entryPoint":377,"graph":378,"unsanitizedCount":13,"severity":358},"\u003Cinvoice> (includes\\invoice.php:0)",{"nodes":379,"edges":382},[380,381],{"id":344,"type":345,"label":346,"file":372,"line":330},{"id":350,"type":351,"label":352,"file":372,"line":353,"wp_function":354},[383],{"from":344,"to":350,"sanitized":357},{"entryPoint":385,"graph":386,"unsanitizedCount":13,"severity":358},"__construct (public\\view\\class_sevz_plant_data.php:10)",{"nodes":387,"edges":396},[388,392],{"id":344,"type":345,"label":389,"file":390,"line":391},"$_FILES (x2)","public\\view\\class_sevz_plant_data.php",165,{"id":350,"type":351,"label":393,"file":390,"line":394,"wp_function":395},"echo() [XSS]",167,"echo",[397],{"from":344,"to":350,"sanitized":357},{"entryPoint":399,"graph":400,"unsanitizedCount":13,"severity":358},"\u003Cclass_sevz_plant_data> (public\\view\\class_sevz_plant_data.php:0)",{"nodes":401,"edges":404},[402,403],{"id":344,"type":345,"label":389,"file":390,"line":391},{"id":350,"type":351,"label":393,"file":390,"line":394,"wp_function":395},[405],{"from":344,"to":350,"sanitized":357},{"summary":407,"deductions":408},"The \"pv-anlagen\" v1.0.2 plugin exhibits a generally strong security posture based on the provided static analysis. A significant majority of SQL queries utilize prepared statements, and a high percentage of output operations are properly escaped, indicating good coding practices for preventing common web vulnerabilities like SQL injection and XSS. The absence of any recorded CVEs in its vulnerability history further suggests a mature and relatively secure codebase. The low number of entry points and the lack of identified unsanitized flows in the taint analysis are also positive indicators.\n\nHowever, a critical area of concern is the complete absence of nonce checks across all identified entry points. While the static analysis reports zero unprotected entry points and a decent number of capability checks, the lack of nonce validation means that authenticated users could potentially be coerced into triggering actions they did not intend, leading to Cross-Site Request Forgery (CSRF) vulnerabilities. The presence of a bundled, potentially outdated, TCPDF library also warrants attention as it could be a vector for exploits if not managed carefully. These factors, while not indicating immediate critical flaws, represent potential weaknesses that could be exploited in conjunction with other factors.",[409,411],{"reason":410,"points":11},"Missing nonce checks on entry points",{"reason":412,"points":184},"Bundled outdated library (TCPDF v1.0.004)","2026-03-17T00:10:18.330Z",{"wat":415,"direct":434},{"assetPaths":416,"generatorPatterns":424,"scriptPaths":425,"versionParams":426},[417,418,419,420,421,422,423],"\u002Fwp-content\u002Fplugins\u002Fpv-anlagen\u002Fjs\u002Fchart.js","\u002Fwp-content\u002Fplugins\u002Fpv-anlagen\u002Fjs\u002Fdatepicker.js","\u002Fwp-content\u002Fplugins\u002Fpv-anlagen\u002Fjs\u002Fmain.js","\u002Fwp-content\u002Fplugins\u002Fpv-anlagen\u002Fjs\u002Fvue.js","\u002Fwp-content\u002Fplugins\u002Fpv-anlagen\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fpv-anlagen\u002Fcss\u002Fchart.css","\u002Fwp-content\u002Fplugins\u002Fpv-anlagen\u002Fcss\u002Fstyle.css",[],[417,418,419,420],[427,428,429,430,431,432,433],"pv-anlagen\u002Fjs\u002Fchart.js?ver=","pv-anlagen\u002Fjs\u002Fdatepicker.js?ver=","pv-anlagen\u002Fjs\u002Fmain.js?ver=","pv-anlagen\u002Fjs\u002Fvue.js?ver=","pv-anlagen\u002Fstyle.css?ver=","pv-anlagen\u002Fcss\u002Fchart.css?ver=","pv-anlagen\u002Fcss\u002Fstyle.css?ver=",{"cssClasses":435,"htmlComments":439,"htmlAttributes":442,"restEndpoints":445,"jsGlobals":448,"shortcodeOutput":452},[436,437,438],"pv-anlagen-wrapper","pv-anlagen-chart-container","pv-anlagen-datepicker-container",[440,441],"\u003C!-- PV Anlagen Plugin -->","\u003C!-- End PV Anlagen Plugin -->",[443,444],"data-pv-anlagen-config","data-pv-anlagen-chart-data",[446,447],"\u002Fwp-json\u002Fpv-anlagen\u002Fv1\u002Fdata","\u002Fwp-json\u002Fpv-anlagen\u002Fv1\u002Fsettings",[449,450,451],"pvAnlagenChart","pvAnlagenSettings","window.pvAnlagen",[453,454,455],"[pv_anlagen_chart]","[pv_anlagen_settings_form]","[pv_anlagen_data_display]"]