[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fBSfVqfhYMDz3CgOGoZa4WR9-MTLyb41OzLJpauLhxA0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":39,"analysis":148,"fingerprints":270},"regione-provincia-comune","Regione Provincia Comune","2.0","Pasquale Bucci","https:\u002F\u002Fprofiles.wordpress.org\u002Fpasqualebucci\u002F","\u003Cp>Con questo plugin è possibile inserire all’interno del proprio sito o blog la classica e richiestissima cascata regione\u002Fprovincia\u002Fcomune. (5 stelle per favore, se ti piace questo plugin!)\u003C\u002Fp>\n\u003Cp>Il plugin si basa sul concatemanento di select detto anche select a cascata e consiste nel fornire all´utente la possibilità di trovare un comune specifico attraverso alcuni passaggi: in pratica scegliendo una regione nella prima select, la seconda verrà popolata con i dati relativi alle province della regione scelta e così via.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Come si usa?\u003C\u002Fstrong> L´uso è molto semplice:\u003Cbr \u002F>\n*Potete utilizzare lo shortcode:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[paky_regioneprovinciacomune]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>nel form che state costruendo nell´articolo o nella pagina;\u003C\u002Fp>\n\u003Cp>*potete utilizzare il codice:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php echo do_shortcode(\"[paky_regioneprovinciacomune]\"); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>nel vostro template file;\u003C\u002Fp>\n\u003Cp>*oppure, ancora più comodo e funzionale, nel plugin Contact Form 7:\u003C\u002Fp>\n\u003Cp>nel form che state costruendo, generate il tag -Regione Povincia Comune- da Genera tag, aggiungetevi, se volete, una classe css, copiate e incollate il codice nel modulo  e nel corpo della mail.\u003C\u002Fp>\n\u003Cp>E’ tutto!\u003C\u002Fp>\n\u003Ch4>Regione Provincia Comune ha bisogno del tuo supporto!\u003C\u002Fh4>\n\u003Cp>Se utilizzi Regione Provincia Comune e lo trovi utile, considera la possibilità di effettuare una \u003Ca href=\"https:\u002F\u002Fwww.paypal.com\u002Fcgi-bin\u002Fwebscr?cmd=_s-xclick&hosted_button_id=PKMBP2CF3M8SQ\" rel=\"nofollow ugc\">\u003Cstrong>donazione\u003C\u002Fstrong>\u003C\u002Fa>. La tua donazione aiuterà a migliorare lo sviluppo e il supporto agli utilizzatori di questo plugin.\u003C\u002Fp>\n\u003Cp>Vuoi provare il plugin in una sandbox? Clicca \u003Ca href=\"https:\u002F\u002Faddendio.com\u002Ftry-plugin\u002F?slug=regione-provincia-comune\" rel=\"nofollow ugc\">\u003Cstrong>qui\u003C\u002Fstrong>\u003C\u002Fa>.\u003C\u002Fp>\n","La classica e richiestissima cascata regione-provincia-comune per la prima volta come plugin completo. Anche per Contact Form 7!",100,6165,70,6,"2015-12-14T14:54:00.000Z","4.4.34","4.0","",[20,21,22,23,24],"comune","italiano","provincia","regione","regioni","http:\u002F\u002Fwww.wp-themes.it\u002Fregione-provincia-comune\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fregione-provincia-comune.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":27,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"pasqualebucci",4,610,30,84,"2026-04-05T19:06:36.265Z",[40,65,86,107,131],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":50,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":55,"tags":56,"homepage":61,"download_link":62,"security_score":11,"vuln_count":63,"unpatched_count":28,"last_vuln_date":64,"fetched_at":30},"ubigeo-peru","Ubigeo de Perú para Woocommerce y WordPress","4.7","Renzo Tejada","https:\u002F\u002Fprofiles.wordpress.org\u002Frenzotejada\u002F","\u003Cp>This plugin adds the tables to the database _ubigeo_departamento, _ubigeo_provincia, _ubigeo_distrito with respect to Peru.\u003Cbr \u002F>\nAdd the \u003Cstrong>Ubigeo Peru\u003C\u002Fstrong> to the Woocommerce checkout – _departamento – _provincia – _distrito.\u003C\u002Fp>\n\u003Cp>We also have a premium plugin where the shipping cost functionality of \u003Cstrong>Ubigeo Peru\u003C\u002Fstrong> is added for woocommerce.\u003Cbr \u002F>\nWhere:\u003C\u002Fp>\n\u003Cp>✅ Enable cost per \u003Cstrong>Department\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>✅ Enable cost per \u003Cstrong>District\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>✅ Enable and Disable the \u003Cstrong>shipping cost\u003C\u002Fstrong> functionality without disabling the plugin.\u003C\u002Fp>\n\u003Cp>✅ Add name of \u003Cstrong>shipping cost, free shipping and store pickup\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>✅ Add shipping methods such as \u003Cstrong>Shipping cost\u003C\u002Fstrong>, \u003Cstrong>Free shipping\u003C\u002Fstrong> (plus minimum amount) and \u003Cstrong>Store Pickup\u003C\u002Fstrong> (whatever you require).\u003C\u002Fp>\n\u003Cp>✅ \u003Cstrong>Massive cost\u003C\u002Fstrong> loading, new import functionality via .csv\u003C\u002Fp>\n\u003Cp>✅ More information about the plugin in \u003Ca href=\"https:\u002F\u002Frenzotejada.com\u002Fplugin\u002Fcosto-de-envio-de-ubigeo-de-peru-para-woocommerce\u002F\" title=\"Peru Ubigeo Shipping Cost for Woocommerce\" rel=\"nofollow ugc\">Peru Ubigeo Shipping Cost for Woocommerce\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>View more plugins\u003C\u002Fh4>\n\u003Cp>For additional functionality, check out our companion plugin, such as:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fubigeo-peru\u002F\" rel=\"ugc\">Ubigeo Perú\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flibro-de-reclamaciones-y-quejas\u002F\" rel=\"ugc\">Libro de Reclamaciones y Quejas\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcomprobante-de-pago-peru\u002F\" rel=\"ugc\">Comprobante de Pago Perú\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftipo-documento-peru\u002F\" rel=\"ugc\">Tipo Documento Perú\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftransferencia-bancaria-peru\u002F\" rel=\"ugc\">Transferencia Bancaria Perú\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-utils\u002F\" rel=\"ugc\">Utils para WooCommerce y WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmulti-link-in-bio\u002F\" rel=\"ugc\">Multi Link in Bio\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdisplay-price-free\u002F\" rel=\"ugc\">Display Price Free\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frecojo-por-otra-persona\u002F\" rel=\"ugc\">Recojo por otra persona\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmetodo-de-pago-qr-de-ligo\u002F\" rel=\"ugc\">Método de pago QR de Ligo\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpasarela-de-pago-qr-para-bbva\u002F\" rel=\"ugc\">Pasarela de pago QR para BBVA\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fprecio-transferencia-bancaria\u002F\" rel=\"ugc\">Precio Transferencia Bancaria\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>View more plugins PREMIUM\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frenzotejada.com\u002Fplugin\u002Fcosto-de-envio-de-ubigeo-de-peru-para-woocommerce\u002F\" rel=\"nofollow ugc\">Costo de envío de Ubigeo Perú\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frenzotejada.com\u002Fplugin\u002Flibro-de-reclamaciones-y-quejas-pro\u002F\" rel=\"nofollow ugc\">Libro de Reclamaciones y Quejas PRO\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frenzotejada.com\u002Fplugin\u002Fwooyape-para-woocommerce\u002F\" rel=\"nofollow ugc\">WooYape para WooCommerce\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frenzotejada.com\u002Fplugin\u002Fwoolukita-para-woocommerce\u002F\" rel=\"nofollow ugc\">WooLukita para WooCommerce\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frenzotejada.com\u002Fplugin\u002Fwooplin-para-woocommerce\u002F\" rel=\"nofollow ugc\">WooPlin para WooCommerce\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frenzotejada.com\u002Fplugin\u002Fwootunki-para-woocommerce\u002F\" rel=\"nofollow ugc\">WooTunki para WooCommerce\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frenzotejada.com\u002Fplugin\u002Fwoobilletera-para-woocommerce\u002F\" rel=\"nofollow ugc\">WooBilletera para WooCommerce\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frenzotejada.com\u002Fplugins\u002Fcomprobante-de-pago-peru-pro-para-woocommerce\u002F\" rel=\"nofollow ugc\">Comprobante de Pago Perú PRO para WooCommerce\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Visit our \u003Ca href=\"https:\u002F\u002Frenzotejada.com\u002Fcategoria-producto\u002Fplugins\u002F\" rel=\"nofollow ugc\">plugins overview page\u003C\u002Fa> for more information.\u003C\u002Fp>\n","This plugin adds the Ubigeo Peru to the Woocommerce checkout - _departamento - _provincia - _distrito",4000,49930,86,24,"2025-12-12T13:06:00.000Z","6.9.4","5.6","8.0",[57,58,59,22,60],"departamento","distrito","peru","ubigeo","https:\u002F\u002Frenzotejada.com\u002Fubigeo-de-peru-para-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fubigeo-peru.4.7.zip",1,"2022-04-18 00:00:00",{"slug":66,"name":67,"version":68,"author":69,"author_profile":70,"description":71,"short_description":72,"active_installs":73,"downloaded":74,"rating":11,"num_ratings":75,"last_updated":76,"tested_up_to":77,"requires_at_least":43,"requires_php":18,"tags":78,"homepage":83,"download_link":84,"security_score":85,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wc-provincia-canton-distrito","WC Provincia Canton Distrito","1.5.4","Keylor Mendoza","https:\u002F\u002Fprofiles.wordpress.org\u002Fkeylorcr\u002F","\u003Cp>Manage your custom states, cities, and postcodes by countries from a .json file that it can be moved to your theme using hooks or managed them by the plugin settings.\u003C\u002Fp>\n\u003Cp>Available into My account, Shipping calculator form, and the Checkout.\u003C\u002Fp>\n\u003Cp>It started working only for Costa Rica but now it is compatible with multi countries.\u003C\u002Fp>\n\u003Cp>Check or request a custom PRO add-on \u003Ca href=\"https:\u002F\u002Fkeylormendoza.com\u002Fpro-add-ons\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Features And Options:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Multicountry compatible.\u003C\u002Fli>\n\u003Cli>Postcode loaded from the selected location.\u003C\u002Fli>\n\u003Cli>Filters and actions are available.\u003C\u002Fli>\n\u003Cli>Also available for admin orders edition\u003C\u002Fli>\n\u003Cli>Shared locations for Ecuador, Guatemala, Peru and Nicaragua are available \u003Ca href=\"https:\u002F\u002Fkeylormendoza.com\u002Fhow-to\u002Fstate-and-cities-locations\u002F#wcpcd-locations\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin allows you to populate your custom states, cities, and postcodes for WooCommerce.",1000,16709,5,"2025-02-17T00:30:00.000Z","6.7.5",[79,80,58,81,82],"canton","cities","provincias","states","https:\u002F\u002Fkeylormendoza.com\u002Fwoocommerce\u002Fwc-provincia-canton-distrito\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-provincia-canton-distrito.1.5.4.zip",92,{"slug":87,"name":88,"version":89,"author":90,"author_profile":91,"description":92,"short_description":93,"active_installs":94,"downloaded":95,"rating":11,"num_ratings":96,"last_updated":97,"tested_up_to":98,"requires_at_least":17,"requires_php":18,"tags":99,"homepage":105,"download_link":106,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"regiones-de-chile-para-woocommerce","Regiones de Chile para WooCommerce","0.4","melvisnap","https:\u002F\u002Fprofiles.wordpress.org\u002Fmelvisnap\u002F","\u003Cp>Añade al campo \u003Ccode>states\u003C\u002Fcode> las regiones de Chile (16 regiones), para ser utilizados en los métodos de envío, carrito y checkout.\u003C\u002Fp>\n\u003Cp>Te permitirá crear reglas para cada región, ajustar precios y configurar envíos gratuitos.\u003C\u002Fp>\n","Agrega las regiones de Chile al proceso de pago de WooCommerce",500,10146,3,"2019-06-27T20:41:00.000Z","5.2.24",[100,101,102,103,104],"chile","envios","regiones","shipping","woocommerce","https:\u002F\u002Fmmrm.cl","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fregiones-de-chile-para-woocommerce.zip",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":115,"downloaded":116,"rating":11,"num_ratings":117,"last_updated":118,"tested_up_to":119,"requires_at_least":120,"requires_php":121,"tags":122,"homepage":126,"download_link":127,"security_score":128,"vuln_count":129,"unpatched_count":28,"last_vuln_date":130,"fetched_at":30},"wp-mapa-politico-spain","WP Mapa Politico España","3.8.1","Juan Carlos","https:\u002F\u002Fprofiles.wordpress.org\u002Fjcglp\u002F","\u003Cp>Este plugin permite insertar un mapa político de España en post o páginas.\u003C\u002Fp>\n\u003Cp>En la página del plugin se pueden definir los titles e hipervínculos de cada una de las provincias.\u003C\u002Fp>\n","Inserta una imagen de un mapa político de España, con áreas definidas sobre las provincias sobre las que se pueden definir hipervínculos.",400,16550,26,"2025-05-07T06:30:00.000Z","6.8.5","4.6","5.2.4",[123,124,125,81],"comunidades","espana","mapa","https:\u002F\u002Fpisanowp.com\u002Fmapa-de-provincias\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-mapa-politico-spain.zip",98,2,"2025-05-19 00:00:00",{"slug":132,"name":133,"version":134,"author":135,"author_profile":136,"description":137,"short_description":138,"active_installs":11,"downloaded":139,"rating":11,"num_ratings":129,"last_updated":140,"tested_up_to":141,"requires_at_least":120,"requires_php":142,"tags":143,"homepage":146,"download_link":147,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"provinces-and-districts-of-panama-for-woocommerce","Provinces and Districts of Panama for WooCommerce","1.0.4","Yordan Soares","https:\u002F\u002Fprofiles.wordpress.org\u002Fyordansoares\u002F","\u003Cp>This plugin allows you to choose the \u003Cstrong>Provinces, Districts and Corregimientos of Panama\u003C\u002Fstrong> as a dropdown menu in the \u003Cstrong>WooCommerce address forms\u003C\u002Fstrong>. It also makes filterable the \u003Cstrong>Province\u003C\u002Fstrong> and \u003Cstrong>Districts-Corregimiento\u003C\u002Fstrong> fields to enhance the \u003Cstrong>user experience\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Additionally it adds the \u003Cstrong>Provinces\u003C\u002Fstrong> to the \u003Cstrong>Shipping Zones\u003C\u002Fstrong> (The Districts and Corregimientos are not compatible with this area).\u003C\u002Fp>\n","Provinces, Districts and Corregimientos of Panama for WooCommerce.",2856,"2022-02-21T04:36:00.000Z","5.9.13","7.0",[144,145],"panama-provinces-and-districts","provincias-y-distritos-de-panama","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fprovinces-and-districts-of-panama-for-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprovinces-and-districts-of-panama-for-woocommerce.1.0.4.zip",{"attackSurface":149,"codeSignals":192,"taintFlows":218,"riskAssessment":256,"analyzedAt":269},{"hooks":150,"ajaxHandlers":170,"restRoutes":185,"shortcodes":186,"cronEvents":191,"entryPointCount":75,"unprotectedCount":34},[151,157,161,165],{"type":152,"name":153,"callback":154,"file":155,"line":156},"action","wp_loaded","paky_start","regione-provincia-comune.php",8334,{"type":152,"name":158,"callback":159,"file":155,"line":160},"wp_enqueue_scripts","paky_rpc_scripts",8379,{"type":152,"name":162,"callback":163,"file":155,"line":164},"plugins_loaded","wpcf7_paky_rpc_init",8407,{"type":152,"name":166,"callback":167,"priority":168,"file":155,"line":169},"admin_init","wpcf7_add_tag_generator_paky_rpc",35,8451,[171,176,179,183],{"action":172,"nopriv":173,"callback":174,"hasNonce":173,"hasCapCheck":173,"file":155,"line":175},"the_ajax_hook_comu",false,"paky_rpc_comuni",8294,{"action":172,"nopriv":177,"callback":174,"hasNonce":173,"hasCapCheck":173,"file":155,"line":178},true,8295,{"action":180,"nopriv":173,"callback":181,"hasNonce":173,"hasCapCheck":173,"file":155,"line":182},"the_ajax_hook_prov","paky_rpc_province",8314,{"action":180,"nopriv":177,"callback":181,"hasNonce":173,"hasCapCheck":173,"file":155,"line":184},8315,[],[187],{"tag":188,"callback":189,"file":155,"line":190},"paky_regioneprovinciacomune","paky_regioneprovinciacomune_shortcode",8354,[],{"dangerousFunctions":193,"sqlUsage":194,"outputEscaping":204,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":217},[],{"prepared":195,"raw":96,"locations":196},9,[197,200,202],{"file":155,"line":198,"context":199},55,"$wpdb->query() with variable interpolation",{"file":155,"line":201,"context":199},8128,{"file":155,"line":203,"context":199},8252,{"escaped":205,"rawEcho":75,"locations":206},20,[207,210,212,214,215],{"file":155,"line":208,"context":209},8308,"raw output",{"file":155,"line":211,"context":209},8328,{"file":155,"line":213,"context":209},8362,{"file":155,"line":213,"context":209},{"file":155,"line":216,"context":209},8496,[],[219,237,247],{"entryPoint":220,"graph":221,"unsanitizedCount":63,"severity":236},"paky_rpc_comuni (regione-provincia-comune.php:8296)",{"nodes":222,"edges":234},[223,228],{"id":224,"type":225,"label":226,"file":155,"line":227},"n0","source","$_POST",8298,{"id":229,"type":230,"label":231,"file":155,"line":232,"wp_function":233},"n1","sink","get_results() [SQLi]",8300,"get_results",[235],{"from":224,"to":229,"sanitized":173},"high",{"entryPoint":238,"graph":239,"unsanitizedCount":63,"severity":236},"paky_rpc_province (regione-provincia-comune.php:8316)",{"nodes":240,"edges":245},[241,243],{"id":224,"type":225,"label":226,"file":155,"line":242},8318,{"id":229,"type":230,"label":231,"file":155,"line":244,"wp_function":233},8320,[246],{"from":224,"to":229,"sanitized":173},{"entryPoint":248,"graph":249,"unsanitizedCount":96,"severity":236},"\u003Cregione-provincia-comune> (regione-provincia-comune.php:0)",{"nodes":250,"edges":254},[251,253],{"id":224,"type":225,"label":252,"file":155,"line":227},"$_POST (x3)",{"id":229,"type":230,"label":231,"file":155,"line":232,"wp_function":233},[255],{"from":224,"to":229,"sanitized":173},{"summary":257,"deductions":258},"The \"regione-provincia-comune\" v2.0 plugin exhibits a concerning security posture, primarily due to a significant number of unprotected entry points. With 4 out of 5 identified entry points lacking authentication checks, the plugin presents a broad attack surface that could be exploited by unauthenticated users. The taint analysis further exacerbates this concern, revealing 3 high-severity flows with unsanitized paths, indicating potential for command injection or other critical vulnerabilities if these flows are triggered. While the plugin does not have a history of known vulnerabilities and utilizes prepared statements for a majority of its SQL queries, and a good percentage of its outputs are properly escaped, these positive aspects are overshadowed by the critical flaws in its access control and data handling.\n\nDespite the absence of documented CVEs, the static analysis reveals weaknesses that could lead to novel vulnerabilities. The lack of nonce checks and capability checks on AJAX handlers is a major oversight, as these are fundamental security mechanisms in WordPress for preventing CSRF attacks and unauthorized actions. The high number of unsanitized flows in the taint analysis, even without critical severity flags, suggests a high potential for these to be escalated into exploitable vulnerabilities, especially when combined with the unprotected entry points. In conclusion, while the plugin demonstrates some good practices in SQL and output handling, the critical issues with unprotected entry points and unsanitized data flows represent a substantial security risk that needs immediate attention.",[259,262,265,267],{"reason":260,"points":261},"AJAX handlers without auth checks",10,{"reason":263,"points":264},"High severity taint flows with unsanitized paths",12,{"reason":266,"points":75},"No nonce checks",{"reason":268,"points":75},"No capability checks","2026-03-16T20:41:46.836Z",{"wat":271,"direct":280},{"assetPaths":272,"generatorPatterns":275,"scriptPaths":276,"versionParams":277},[273,274],"\u002Fwp-content\u002Fplugins\u002Fregione-provincia-comune\u002Fjs\u002Fscript.js","\u002Fwp-content\u002Fplugins\u002Fregione-provincia-comune\u002Fcss\u002Fstyle.css",[],[273],[278,279],"regione-provincia-comune\u002Fstyle.css?ver=","regione-provincia-comune\u002Fscript.js?ver=",{"cssClasses":281,"htmlComments":282,"htmlAttributes":283,"restEndpoints":284,"jsGlobals":285,"shortcodeOutput":286},[],[],[],[],[],[]]