[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$frcx91IqKCjWbr_eI03kDuSNiAeUm7GR9f8dSoy8X3rA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":19,"download_link":20,"security_score":21,"vuln_count":13,"unpatched_count":13,"last_vuln_date":22,"fetched_at":23,"vulnerabilities":24,"developer":25,"crawl_stats":22,"alternatives":32,"analysis":33,"fingerprints":82},"search-with-wine-searcher","Search with Wine-Searcher – Integrate Wine-Searcher in your site","2.2.1","Matteo Enna","https:\u002F\u002Fprofiles.wordpress.org\u002Fmatteoenna\u002F","\u003Cp>The Wine-Searcher Box plugin allows you to easily integrate wine search into your WordPress site using \u003Ca href=\"https:\u002F\u002Fwww.wine-searcher.com\u002F\" rel=\"nofollow ugc\">Wine-Searcher\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Go to the plugin configuration page.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>You can use the “Wine-Searcher” widget or the \u003Ccode>[wine_searcher]\u003C\u002Fcode> shortcode to embed the wine search bar on your site.\u003C\u002Fp>\n\u003Ch3>Widget\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Go to your site’s edit page.\u003C\u002Fli>\n\u003Cli>Add the “Wine-Searcher” widget to your widget area.\u003C\u002Fli>\n\u003Cli>Configure the widget options according to your preferences. The widget supports the following options:\n\u003Cul>\n\u003Cli>\u003Ccode>Blank Option\u003C\u002Fcode>: If checked, it allows search results to open in a new window or tab by using the target=”_blank” attribute in links.\u003C\u002Fli>\n\u003Cli>\u003Ccode>Enable Vintage\u003C\u002Fcode>: If checked, enables the option to search for wine vintages.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Shortcode\u003C\u002Fh3>\n\u003Cp>You can insert the \u003Ccode>[wine_searcher]\u003C\u002Fcode> shortcode directly into your pages or posts to display the wine search bar. The shortcode supports the following options:\u003Cbr \u002F>\n– \u003Ccode>blank_option\u003C\u002Fcode>: (Default: ‘no’) If set to ‘yes’, adds an option for a blank value in the search dropdown.\u003Cbr \u002F>\n– \u003Ccode>enable_vintage\u003C\u002Fcode>: (Default: ‘yes’) If set to ‘no’, disables the option to search for wine vintages.\u003Cbr \u002F>\n– \u003Ccode>suggestion\u003C\u002Fcode>: (Default: empty) Allows you to prefill the search field with a default suggestion text.\u003C\u002Fp>\n\u003Cp>Example usage:\u003Cbr \u002F>\n[wine_searcher blank_option=”yes” enable_vintage=”no”]\u003Cbr \u002F>\n[wine_searcher blank_option=”yes” enable_vintage=”no” suggestion=”Cannonau”]\u003C\u002Fp>\n\u003Cp>These options allow you to customize the behavior of the wine search bar according to your needs.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is released under GPL2 License.\u003C\u002Fp>\n\u003Ch3>Contact\u003C\u002Fh3>\n\u003Cp>For any questions or suggestions, please contact Matteo Enna at \u003Ca href=\"mailto:matteo.enna89@gmail.com\" rel=\"nofollow ugc\">matteo.enna89@gmail.com\u003C\u002Fa>.\u003C\u002Fp>\n","Search with Wine-Searcher",10,3223,0,"2025-12-03T06:50:00.000Z","6.9.4","5.0","7.2.5",[],"","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsearch-with-wine-searcher.2.2.1.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":26,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":28,"avg_security_score":21,"avg_patch_time_days":29,"trust_score":30,"computed_at":31},"matteoenna",14,850,11,94,"2026-04-04T13:12:24.048Z",[],{"attackSurface":34,"codeSignals":62,"taintFlows":70,"riskAssessment":71,"analyzedAt":81},{"hooks":35,"ajaxHandlers":47,"restRoutes":53,"shortcodes":54,"cronEvents":59,"entryPointCount":60,"unprotectedCount":61},[36,42],{"type":37,"name":38,"callback":39,"file":40,"line":41},"action","elementor\u002Fwidgets\u002Fwidgets_registered","wine_searcher_widgets","search-with-wine-searcher.php",19,{"type":37,"name":43,"callback":44,"file":45,"line":46},"admin_notices","display_notice","search_with_wine_searcher_notice_Class.php",6,[48],{"action":49,"nopriv":50,"callback":51,"hasNonce":50,"hasCapCheck":50,"file":45,"line":52},"searchWithWineSearcher_dismiss_notice",false,"dismiss_notice",7,[],[55],{"tag":56,"callback":57,"file":40,"line":58},"wine_searcher","wine_searcher_shortcode",22,[],2,1,{"dangerousFunctions":63,"sqlUsage":64,"outputEscaping":66,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":69},[],{"prepared":13,"raw":13,"locations":65},[],{"escaped":67,"rawEcho":13,"locations":68},17,[],[],[],{"summary":72,"deductions":73},"The \"search-with-wine-searcher\" v2.2.1 plugin exhibits a generally good security posture with several positive indicators. All identified SQL queries utilize prepared statements, and all output is properly escaped, mitigating common web vulnerabilities like SQL injection and cross-site scripting (XSS) originating from these sources. The absence of file operations and external HTTP requests further reduces the attack surface.  Additionally, the plugin has no recorded vulnerability history, suggesting a commitment to security or a lack of prior exploitation.\n\nHowever, a significant concern arises from the presence of an unprotected AJAX handler. This entry point, lacking proper authentication or authorization checks, could be exploited by unauthenticated users to trigger arbitrary actions within the plugin, potentially leading to unintended consequences or information disclosure depending on the handler's functionality. While the static analysis found no dangerous functions or taint flows, the unprotected AJAX handler represents a direct and exploitable vulnerability in the code's implementation.\n\nIn conclusion, while the plugin demonstrates strong adherence to secure coding practices in areas like data querying and output handling, the unprotected AJAX handler significantly lowers its overall security score. This single unprotected entry point is the most critical weakness identified and requires immediate attention. Addressing this issue would substantially improve the plugin's security.",[74,77,79],{"reason":75,"points":76},"Unprotected AJAX handler",8,{"reason":78,"points":52},"Missing nonce checks on AJAX handler",{"reason":80,"points":46},"Missing capability checks on AJAX handler","2026-03-16T23:56:00.050Z",{"wat":83,"direct":92},{"assetPaths":84,"generatorPatterns":87,"scriptPaths":88,"versionParams":89},[85,86],"\u002Fwp-content\u002Fplugins\u002Fsearch-with-wine-searcher\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fsearch-with-wine-searcher\u002Fjs\u002Fscript.js",[],[86],[90,91],"search-with-wine-searcher\u002Fcss\u002Fstyle.css?ver=","search-with-wine-searcher\u002Fjs\u002Fscript.js?ver=",{"cssClasses":93,"htmlComments":95,"htmlAttributes":96,"restEndpoints":97,"jsGlobals":98,"shortcodeOutput":99},[94],"searchWithWineSearcher-notice",[],[],[],[49],[100],"[wine_searcher]"]