The SGDiet TDEE Calculator Security & Risk Analysis

The sgdiet-tdee-calculator plugin exhibits a concerning security posture due to a significant number of unprotected entry points. While the plugin avoids dangerous functions and uses prepared statements for all SQL queries, a substantial portion of its attack surface, specifically 18 AJAX handlers, lacks any authentication or capability checks. This leaves these handlers vulnerable to unauthorized access and potentially malicious input. The taint analysis also revealed two flows with unsanitized paths, which, while not flagged as critical or high severity in this analysis, represent potential avenues for exploitation if combined with other weaknesses. The absence of any recorded vulnerability history could indicate either a secure development history or simply a lack of prior public discovery, which should not be relied upon as a guarantee of future security. Overall, the plugin demonstrates strengths in its handling of database queries and output escaping, but its security is severely undermined by the extensive exposure of its AJAX functionality. Proactive measures to secure these AJAX handlers are paramount to mitigating significant risks.