[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fHN_vTBri3hffd25_HH-8QTYlLshTjiaVRm3Nly2Fe5Q":3,"$fhpUuljLM8nOz8NADBlE0kYPDuUIQyrNPGI50lVvHugs":738,"$fJTifQhMxpNA46mzFhZz_haMM0vtUxT2QpmngvWH2ScQ":742},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":50,"crawl_stats":38,"alternatives":55,"analysis":158,"fingerprints":719},"ship-depot","ShipDepot for WooCommerce","1.2.19","Ship Depot","https:\u002F\u002Fprofiles.wordpress.org\u002Fshipdepot\u002F","\u003Cp>SHIP DEPOT là một nền tảng hàng đầu trong việc quản lý giao hàng, giúp đơn giản hóa quá trình giao hàng cho các doanh nghiệp Thương mại điện tử bằng cách tạo và quản lý vận đơn, theo dõi vận đơn, và tiền thu hộ tất cả trong một nơi duy nhất. Nó cũng hoạt động như một phòng vận hành thuê ngoài, giải phóng bạn khỏi các công việc liên quan đến vận chuyển để bạn có thể tập trung vào phát triển kinh doanh.\u003Cbr \u002F>\nSHIP DEPOT cung cấp sự đa dạng trong việc vận chuyển bằng việc hợp tác với nhiều nhà vận chuyển hàng đầu. Khách hàng có thể tự chọn nhà vận chuyển phù hợp cho từng đơn hàng của mình.\u003Cbr \u002F>\nTối ưu hóa quy trình vận chuyển của bạn: Ship Depot giúp cho người bán dễ dàng quản lý hoạt động vận chuyển của mình từ bên trong bảng điều khiển quản trị WooCommerce. Với plugin của chúng tôi, bạn có thể nhanh chóng và hiệu quả chọn lựa các đơn vị vận chuyển địa phương tốt nhất dựa trên thời gian và chi phí, giúp bạn tiết kiệm thời gian và tiền bạc.\u003Cbr \u002F>\nGiảm chi phí vận chuyển: Bằng cách sử dụng các đối tác vận chuyển ưu tiên tích hợp của Ship Depot tại Việt Nam – GHN và GHTK – người bán có thể tận hưởng mức giá vận chuyển thấp hơn và các tùy chọn giao hàng linh hoạt hơn. Điều này có nghĩa là bạn có thể chuyển tiết kiệm cho khách hàng của mình, giúp sản phẩm của bạn có giá cạnh tranh hơn và dễ bán hơn.\u003Cbr \u002F>\nGiao hàng nhanh hơn: Với Ship Depot, bạn có thể lựa chọn những đơn vị vận chuyển địa phương tốt nhất dựa trên thời gian và chi phí, đảm bảo sản phẩm của bạn đến tay khách hàng càng nhanh càng tốt. Điều này không chỉ cải thiện sự hài lòng của khách hàng mà còn giúp bạn xây dựng uy tín cho dịch vụ giao hàng nhanh và đáng tin cậy.\u003C\u002Fp>\n\u003Ch4>Chức năng chính\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Hỗ trợ người dùng lựa chọn tỉnh\u002Fthành phố – quận\u002Fhuyện – xã\u002Fphường lúc checkout.\u003C\u002Fli>\n\u003Cli>Lấy giá vận chuyển dựa trên API đơn vị vận chuyển cung cấp cho người dùng khi checkout.\u003C\u002Fli>\n\u003Cli>Đẩy đơn hàng sang bên đơn vị vận chuyển trong dashboard.\u003C\u002Fli>\n\u003Cli>Quản lý trạng thái vận đơn trong dashboard.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>HỖ TRỢ CÁC ĐƠN VỊ GIAO VẬN\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Giao Hàng Nhanh\u003C\u002Fli>\n\u003Cli>Giao Hàng Tiết Kiệm\u003C\u002Fli>\n\u003Cli>AhaMove\u003C\u002Fli>\n\u003C\u002Ful>\n","Giải pháp tích hợp giao hàng toàn diện với hàng loạt tiện ích: - Tích hợp các nhà vận chuyển hàng đầu tại Việt Nam (GHN, GHTK, Ahamove và nhiều khác)  &hellip;",10,6162,100,2,"2024-12-17T02:00:00.000Z","6.7.5","6.1.1","7.4.3",[20,21,22,23,24],"aha","couriers","ghn","ghtk","shipping","https:\u002F\u002Fshipdepot.vn\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fship-depot.zip",71,1,"2025-04-01 00:00:00","2026-03-15T15:16:48.613Z","no_bundle",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":38,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":29,"updated_date":44,"references":45,"days_to_patch":38,"patch_diff_files":47,"patch_trac_url":38,"research_status":38,"research_verified":48,"research_rounds_completed":49,"research_plan":38,"research_summary":38,"research_vulnerable_code":38,"research_fix_diff":38,"research_exploit_outline":38,"research_model_used":38,"research_started_at":38,"research_completed_at":38,"research_error":38,"poc_status":38,"poc_video_id":38,"poc_summary":38,"poc_steps":38,"poc_tested_at":38,"poc_wp_version":38,"poc_php_version":38,"poc_playwright_script":38,"poc_exploit_code":38,"poc_has_trace":48,"poc_model_used":38,"poc_verification_depth":38},"CVE-2025-31866","shipdepot-for-woocommerce-missing-authorization","ShipDepot for WooCommerce \u003C= 1.2.19 - Missing Authorization","The ShipDepot for WooCommerce plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 1.2.19. This makes it possible for unauthenticated attackers to perform an unauthorized action.",null,"\u003C=1.2.19","medium",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2025-04-08 15:18:56",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fbdd1bb49-5a0f-434c-bb05-03c4a548dec1?source=api-prod",[],false,0,{"slug":51,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":52,"trust_score":53,"computed_at":54},"shipdepot",30,74,"2026-05-20T06:14:54.270Z",[56,76,101,122,140],{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":49,"num_ratings":49,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":69,"tags":70,"homepage":72,"download_link":73,"security_score":74,"vuln_count":49,"unpatched_count":49,"last_vuln_date":38,"fetched_at":75},"vnshipping-for-woocommerce","VNShipping for WooCommerce","0.2.0","awethemes","https:\u002F\u002Fprofiles.wordpress.org\u002Fawethemes\u002F","\u003Ch4>Chức năng chính\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Hỗ trợ người dùng lựa chọn tỉnh\u002Fthành phố – quận\u002Fhuyện – xã\u002Fphường lúc checkout.\u003C\u002Fli>\n\u003Cli>Lấy giá vận chuyển dựa trên API đơn vị vận chuyển cung cấp cho người dùng khi checkout.\u003C\u002Fli>\n\u003Cli>Đẩy đơn hàng sang bên đơn vị vận chuyển trong dashboard.\u003C\u002Fli>\n\u003Cli>Quản lý trạng thái vận đơn trong dashboard.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>HỖ TRỢ CÁC ĐƠN VỊ GIAO VẬN\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Viettel Post (soon)\u003C\u002Fli>\n\u003Cli>Giao Hàng Nhanh\u003C\u002Fli>\n\u003Cli>Giao Hàng Tiết Kiệm (soon)\u003C\u002Fli>\n\u003C\u002Ful>\n","Tích hợp các nhà vận chuyển tại Việt Nam cho WooCommerce.",20,1970,"2021-08-07T15:54:00.000Z","5.8.0","5.4","7.1",[21,22,23,24,71],"viettel","https:\u002F\u002Fgithub.com\u002Fawethemes\u002Fvn-shipping","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvnshipping-for-woocommerce.zip",85,"2026-04-16T10:56:18.058Z",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":86,"num_ratings":87,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":91,"tags":92,"homepage":97,"download_link":98,"security_score":99,"vuln_count":28,"unpatched_count":28,"last_vuln_date":100,"fetched_at":75},"ongkoskirim-id","Plugin Ongkos Kirim JNE Tiki Sicepat Wahana J&T POS for Woocommerce","1.0.6","oggix","https:\u002F\u002Fprofiles.wordpress.org\u002Foggix\u002F","\u003Cp>OngkosKirim.id merupakan plugin tambahan untuk woocommerce yang berfungsi untuk menghitung ongkos kirim dari berbagai ekspedisi di Indonesia, mulai dari JNE, Tiki, Pos, J&T, Sicepat dan Wahana.\u003Cbr \u002F>\nPlugin ini sangat mudah digunakan, hanya cukup sekali klik dan anda siap berjualan ke seluruh pelosok negri.\u003C\u002Fp>\n\u003Ch3>Features Free Version\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Ongkos Kirim Real-Time Seluruh Indonesia\u003C\u002Fli>\n\u003Cli>Ongkir kirim JNE, TIKI, POS, J&T, Sicepat, Wahana\u003C\u002Fli>\n\u003Cli>Data kota dari basis kota pengiriman Anda ke Seluruh Indonesia\u003C\u002Fli>\n\u003Cli>Checkout Provinsi, Kota, Kecamatan saling terkait\u003C\u002Fli>\n\u003Cli>Fitur Kalkulasi Ongkir di Halaman Cart\u003C\u002Fli>\n\u003Cli>Terintegrasi Dengan Woo Commerce\u003C\u002Fli>\n\u003Cli>Fitur Ongkos Kirim Tambahan\u003C\u002Fli>\n\u003Cli>Angka Unik Transaksi\u003C\u002Fli>\n\u003Cli>Ongkos Kirim Hingga Kecamatan\u003C\u002Fli>\n\u003Cli>Multiple Currency\u003C\u002Fli>\n\u003Cli>Mudah di Install & Digunakan\u003C\u002Fli>\n\u003Cli>Multi Bahasa\u003C\u002Fli>\n\u003Cli>Gratis update dan Dukungan Teknis Profesional\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Features PRO Version\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Semua fitur di Free Version\u003C\u002Fli>\n\u003Cli>Ongkos kirim JNE YES, TIKI ONS, Sicepat BEST\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fplugin.ongkoskirim.id\u002F\" title=\"Upgrade ke PRO version\" rel=\"nofollow ugc\">Upgrade ke PRO version\u003C\u002Fa>\u003C\u002Fp>\n","OngkosKirim.id merupakan plugin ongkos kirim woocommerce dengan fitur terkomplit dan ekspedisi terlengkap, meliputi JNE, TIKI, POS, J&T, Sicepat,  &hellip;",2000,93534,78,11,"2020-04-15T02:47:00.000Z","4.9.29","3.0.1","",[93,94,24,95,96],"jne","jnt","sicepat","wahana","http:\u002F\u002Fplugin.ongkoskirim.id\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fongkoskirim-id.zip",63,"2025-09-22 00:00:00",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":109,"downloaded":110,"rating":111,"num_ratings":112,"last_updated":113,"tested_up_to":114,"requires_at_least":115,"requires_php":116,"tags":117,"homepage":91,"download_link":121,"security_score":13,"vuln_count":49,"unpatched_count":49,"last_vuln_date":38,"fetched_at":75},"shippit-simplified-australia-shipping","Shippit for WooCommerce","2.0.4","matthewmuscat","https:\u002F\u002Fprofiles.wordpress.org\u002Fmatthewmuscat\u002F","\u003Ch3>Multi-carrier shipping technology.\u003C\u002Fh3>\n\u003Cp>Seamlessly integrated with WooCommerce, our app gives you fast access to multiple carriers, and takes care of shipping for your stores, locations and brands.\u003C\u002Fp>\n\u003Cp>It’s mission-critical software, complete with the fulfilment automation and shipping analytics your business needs to save time and money when it comes to shipping.\u003C\u002Fp>\n\u003Cp>Together with our intuitive tracking notifications and in-house delivery support, we help you share better post-purchase experiences that scale with your business.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Offer live quotes for multiple delivery options at check-out.\u003C\u002Fli>\n\u003Cli>Discounted shipping rates with domestic and international carriers.\u003C\u002Fli>\n\u003Cli>One-click label printing, picklists and pack slips to fulfil orders fast.\u003C\u002Fli>\n\u003Cli>Smart carrier allocation and insights to keep shipping costs under control.\u003C\u002Fli>\n\u003Cli>Automated tracking notifications and customisable, branded tracking.\u003C\u002Fli>\n\u003C\u002Ful>\n","Multi-carrier shipping technology.",1000,30833,50,4,"2025-10-01T03:32:00.000Z","6.8.5","4.0.0","7.0",[118,119,120,24],"aramex","australia-post","couriers-please","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshippit-simplified-australia-shipping.stable.zip",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":130,"downloaded":131,"rating":132,"num_ratings":133,"last_updated":134,"tested_up_to":114,"requires_at_least":135,"requires_php":136,"tags":137,"homepage":91,"download_link":139,"security_score":13,"vuln_count":49,"unpatched_count":49,"last_vuln_date":38,"fetched_at":75},"shipit","Shipit","9.6.2","Hirochi","https:\u002F\u002Fprofiles.wordpress.org\u002Ffranciscoarenasp\u002F","\u003Cp>Recuerda necesitas estas versiones para que funcione perfectamente:\u003C\u002Fp>\n\u003Cp>WC Version: 3.5.x or later\u003Cbr \u002F>\nWP Version: 4.4 or later\u003C\u002Fp>\n\u003Cp>Hola, está a punto de instalar nuestro complemento de última milla para su logística de comercio electrónico.\u003C\u002Fp>\n\u003Cp>Donde puede integrarse con el sistema de envío de Shipit y acelerar todas las entregas de sus productos.\u003Cbr \u002F>\nAl integrar su tienda a nuestra plataforma, puede ver, administrar y modificar sus envíos rápidamente con más de 5 couriers de Chile.\u003C\u002Fp>\n\u003Cp>Solo tiene que poseer sus credenciales otorgadas por Shipit.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>etiquetas: envío, paquetería, logística, fijación de precios, administración del estado del envío.\u003C\u002Fli>\n\u003C\u002Ful>\n","Shipit Calculator Mensajeros de envío",400,44254,46,6,"2026-04-15T21:03:00.000Z","4.4","5.6",[138,21,123,24],"calculator","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshipit.9.6.2.zip",{"slug":141,"name":142,"version":143,"author":144,"author_profile":145,"description":146,"short_description":147,"active_installs":13,"downloaded":148,"rating":49,"num_ratings":49,"last_updated":149,"tested_up_to":150,"requires_at_least":151,"requires_php":116,"tags":152,"homepage":156,"download_link":157,"security_score":13,"vuln_count":49,"unpatched_count":49,"last_vuln_date":38,"fetched_at":75},"woot-ro","Woot","2.2.5","wootro","https:\u002F\u002Fprofiles.wordpress.org\u002Fwootro\u002F","\u003Cp>Woot PRO is a WooCommerce shipping plugin that integrates all major Romanian couriers into a single, easy-to-manage shipping method.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Unified Shipping Method\u003C\u002Fstrong> – All couriers and services in one shipping method\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Real-Time Pricing\u003C\u002Fstrong> – Automatic price calculation based on your Woot PRO contract\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Pickup Point Selection\u003C\u002Fstrong> – Interactive map for customers to select lockers and pickup points\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Door & Location Delivery\u003C\u002Fstrong> – Support for both home delivery and pickup point services\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Per-Service Configuration\u003C\u002Fstrong> – Enable\u002Fdisable services, set custom names and prices\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Free Shipping Threshold\u003C\u002Fstrong> – Set minimum order amount for free shipping\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Payment Method Fees\u003C\u002Fstrong> – Add extra charges for specific payment methods (e.g., COD)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Romanian City Selector\u003C\u002Fstrong> – Autocomplete city field with Romanian nomenclature\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Supported Couriers\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Fan Courier with FANbox lockers\u003C\u002Fli>\n\u003Cli>Sameday with Easybox lockers\u003C\u002Fli>\n\u003Cli>DPD with lockers\u003C\u002Fli>\n\u003Cli>Cargus with lockers\u003C\u002Fli>\n\u003Cli>GLS with lockers\u003C\u002Fli>\n\u003Cli>And many more…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Connect your Woot PRO account in the plugin settings\u003C\u002Fli>\n\u003Cli>Add “Woot PRO – Services” shipping method to your shipping zones\u003C\u002Fli>\n\u003Cli>Configure which services to offer and set your prices\u003C\u002Fli>\n\u003Cli>Your customers will see available shipping options at checkout\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WooCommerce 3.0 or higher\u003C\u002Fli>\n\u003Cli>PHP 7.0 or higher\u003C\u002Fli>\n\u003Cli>A \u003Ca href=\"https:\u002F\u002Fpro.woot.ro\" rel=\"nofollow ugc\">Woot PRO\u003C\u002Fa> account (free to create)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Available Languages\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English (default)\u003C\u002Fli>\n\u003Cli>Romanian (Română)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>If you encounter any issues or have suggestions, please contact us \u003Ca href=\"https:\u002F\u002Fwoot.ro\u002Ftichete-suport\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n","Unified shipping solution for WooCommerce. Integrates all popular couriers in Romania with real-time pricing and pickup point selection.",3825,"2026-04-07T11:00:00.000Z","6.9.4","4.0",[21,153,154,24,155],"delivery","romania","woocommerce","https:\u002F\u002Fwoot.ro","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoot-ro.2.2.5.zip",{"attackSurface":159,"codeSignals":503,"taintFlows":636,"riskAssessment":704,"analyzedAt":718},{"hooks":160,"ajaxHandlers":412,"restRoutes":449,"shortcodes":501,"cronEvents":502,"entryPointCount":218,"unprotectedCount":218},[161,167,171,173,179,183,188,192,195,199,203,207,210,215,219,223,228,231,234,237,241,244,248,253,255,260,264,267,270,272,275,279,284,288,290,294,299,303,306,309,314,316,318,320,322,326,329,333,337,341,345,349,351,355,357,361,365,369,372,375,379,383,387,391,395,397,401,405,408],{"type":162,"name":163,"callback":164,"priority":11,"file":165,"line":166},"action","save_post","sd_save_wc_order_other_fields","helper\\class-function-helper.php",475,{"type":162,"name":168,"callback":169,"file":170,"line":14},"init","update_district_ajax","includes\\Address\\address-ajax.php",{"type":162,"name":168,"callback":172,"file":170,"line":87},"update_ward_ajax",{"type":174,"name":175,"callback":176,"priority":177,"file":178,"line":87},"filter","woocommerce_admin_billing_fields","sd_admin_billing_fields",999,"includes\\Address\\admin\\class-custom-admin-order-fields.php",{"type":174,"name":180,"callback":181,"priority":177,"file":178,"line":182},"woocommerce_admin_shipping_fields","sd_admin_shipping_fields",12,{"type":174,"name":184,"callback":185,"priority":11,"file":186,"line":187},"woocommerce_customer_meta_fields","sd_admin_address_field","includes\\Address\\admin\\class-custom-profile-fields.php",9,{"type":174,"name":189,"callback":190,"priority":177,"file":191,"line":11},"woocommerce_order_formatted_billing_address","sd_woocommerce_order_formatted_billing_address","includes\\Address\\class-custom-order-fields.php",{"type":174,"name":193,"callback":194,"priority":177,"file":191,"line":87},"woocommerce_order_formatted_shipping_address","sd_woocommerce_order_formatted_shipping_address",{"type":174,"name":196,"callback":197,"priority":177,"file":191,"line":198},"woocommerce_formatted_address_replacements","sd_woocommerce_formatted_address_replacements",13,{"type":174,"name":200,"callback":201,"file":191,"line":202},"woocommerce_localisation_address_formats","sd_woocommerce_localisation_address_formats",15,{"type":174,"name":204,"callback":205,"priority":177,"file":206,"line":11},"woocommerce_default_address_fields","sd_woocommerce_default_address_fields","includes\\Address\\frontend\\class-custom-checkout-fields.php",{"type":174,"name":208,"callback":209,"file":206,"line":87},"woocommerce_checkout_fields","sd_custom_override_fields",{"type":162,"name":211,"callback":212,"file":213,"line":214},"admin_init","action_admin_init","includes\\class-admin-notices.php",21,{"type":162,"name":216,"callback":217,"file":213,"line":218},"admin_notices","action_admin_notices",22,{"type":162,"name":220,"callback":221,"file":213,"line":222},"admin_enqueue_scripts","action_admin_enqueue_scripts",23,{"type":162,"name":216,"callback":224,"priority":225,"file":226,"line":227},"check_notify_update_plugin",99,"includes\\class-ship-depot-general.php",127,{"type":162,"name":216,"callback":229,"priority":225,"file":226,"line":230},"notify_switch_classic_checkout",128,{"type":162,"name":216,"callback":232,"priority":225,"file":226,"line":233},"no_woocommerce_deactivated",130,{"type":162,"name":211,"callback":235,"file":226,"line":236},"auto_deactivate",131,{"type":162,"name":238,"callback":239,"file":226,"line":240},"wp_enqueue_scripts","front_enqueue_script",135,{"type":162,"name":220,"callback":242,"file":226,"line":243},"admin_enqueue_script",136,{"type":174,"name":245,"callback":246,"file":226,"line":247},"http_request_timeout","sd_http_request_timeout_extend",147,{"type":162,"name":249,"callback":250,"priority":11,"file":251,"line":252},"woocommerce_order_status_changed","sd_handle_woo_order_status_changed","includes\\Order\\class-order-shipping.php",438,{"type":162,"name":163,"callback":164,"priority":11,"file":251,"line":254},631,{"type":162,"name":256,"callback":257,"file":258,"line":259},"sd_about_section","ShowUI","includes\\Settings\\class-ship-depot-about.php",17,{"type":162,"name":261,"callback":257,"file":262,"line":263},"sd_classic_checkout_direction_section","includes\\Settings\\class-ship-depot-classic-checkout-direction.php",19,{"type":162,"name":265,"callback":257,"file":266,"line":259},"sd_couriers_section","includes\\Settings\\class-ship-depot-couriers.php",{"type":162,"name":268,"callback":257,"file":269,"line":263},"sd_custom_css_section","includes\\Settings\\class-ship-depot-custom-css.php",{"type":162,"name":220,"callback":271,"file":269,"line":64},"codemirror_enqueue_scripts",{"type":162,"name":273,"callback":257,"file":274,"line":259},"sd_fee_modify_section","includes\\Settings\\class-ship-depot-fee-modify.php",{"type":162,"name":276,"callback":257,"file":277,"line":278},"sd_general_settings_section","includes\\Settings\\class-ship-depot-general-settings.php",18,{"type":174,"name":280,"callback":281,"priority":64,"file":282,"line":283},"woocommerce_settings_tabs_array","add_settings_page","includes\\Settings\\class-ship-depot-settings-backend.php",33,{"type":174,"name":285,"callback":286,"file":282,"line":287},"woocommerce_save_settings_sd_settings_fee_modify","validate_before_save",45,{"type":174,"name":289,"callback":286,"file":282,"line":132},"woocommerce_save_settings_sd_settings_couriers",{"type":174,"name":291,"callback":292,"file":293,"line":278},"woocommerce_get_settings_pages","add_woocommerce_settings_tab","includes\\Settings\\class-ship-depot-settings-init.php",{"type":162,"name":295,"callback":296,"file":297,"line":298},"woocommerce_shipping_init","sd_shipping_method_init","includes\\ShippingMethod\\class-SHIPDEPOT-shipping-method.php",108,{"type":174,"name":300,"callback":301,"file":297,"line":302},"woocommerce_shipping_methods","add_sd_shipping_method",116,{"type":162,"name":168,"callback":304,"file":305,"line":87},"ship_depot_register_custom_status","includes\\ShippingStatus\\class-extra-shipping-status.php",{"type":174,"name":307,"callback":308,"file":305,"line":182},"wc_order_statuses","ship_depot_add_status_to_list",{"type":162,"name":310,"callback":311,"priority":11,"file":312,"line":313},"woocommerce_new_order","sd_woocommerce_new_order_action","page\\admin\\orders\\sd-order-detail.php",3,{"type":162,"name":315,"callback":164,"priority":11,"file":312,"line":198},"woocommerce_update_order",{"type":162,"name":315,"callback":164,"priority":11,"file":312,"line":317},176,{"type":162,"name":315,"callback":164,"priority":11,"file":312,"line":319},322,{"type":162,"name":315,"callback":164,"priority":11,"file":312,"line":321},419,{"type":174,"name":323,"callback":324,"file":312,"line":325},"get_user_option_meta-box-order_woocommerce_page_wc-orders","metabox_order",433,{"type":174,"name":327,"callback":324,"file":312,"line":328},"get_user_option_meta-box-order_shop_order",435,{"type":162,"name":330,"callback":331,"priority":11,"file":312,"line":332},"woocommerce_admin_order_totals_after_discount","sd_add_after_sub_total",480,{"type":162,"name":334,"callback":335,"priority":11,"file":312,"line":336},"woocommerce_admin_order_totals_after_total","sd_add_after_total",635,{"type":174,"name":338,"callback":339,"priority":11,"file":312,"line":340},"is_protected_meta","ship_depot_protected_meta_filter",817,{"type":162,"name":342,"callback":343,"priority":52,"file":312,"line":344},"add_meta_boxes","sd_add_meta_boxes",853,{"type":174,"name":346,"callback":347,"priority":64,"file":348,"line":112},"manage_woocommerce_page_wc-orders_columns","custom_shop_order_column","page\\admin\\orders\\sd-order-list.php",{"type":174,"name":350,"callback":347,"priority":64,"file":348,"line":133},"manage_edit-shop_order_columns",{"type":162,"name":352,"callback":353,"priority":11,"file":348,"line":354},"manage_woocommerce_page_wc-orders_custom_column","custom_orders_list_column_content",28,{"type":162,"name":356,"callback":353,"priority":64,"file":348,"line":52},"manage_shop_order_posts_custom_column",{"type":162,"name":220,"callback":358,"priority":359,"file":348,"line":360},"wc_product_list_css_overrides",998,93,{"type":174,"name":362,"callback":363,"file":364,"line":313},"woocommerce_cart_needs_shipping","sd_filter_cart_needs_shipping","page\\frontend\\sd-cart-page.php",{"type":174,"name":366,"callback":367,"priority":11,"file":368,"line":112},"cfw_show_shipping_tab","closure","page\\frontend\\sd-checkout-page.php",{"type":174,"name":370,"callback":371,"priority":11,"file":368,"line":87},"woocommerce_shipping_packages","hide_shipping_rates_from_packages",{"type":174,"name":373,"callback":374,"file":368,"line":259},"woocommerce_cart_needs_shipping_address","set_cart_needs_shipping_address_filter",{"type":174,"name":376,"callback":377,"file":368,"line":378},"woocommerce_cart_ready_to_calc_shipping","sd_show_shipping_in_checkout_page",34,{"type":162,"name":380,"callback":381,"file":368,"line":382},"woocommerce_checkout_before_terms_and_conditions","sd_woocommerce_review_order_before_order_total",47,{"type":162,"name":384,"callback":385,"file":368,"line":386},"woocommerce_checkout_update_order_review","sd_woocommerce_checkout_update_order_review",381,{"type":174,"name":388,"callback":389,"priority":11,"file":368,"line":390},"woocommerce_calculated_total","sd_change_calculated_total",403,{"type":162,"name":392,"callback":393,"priority":11,"file":368,"line":394},"woocommerce_checkout_order_processed","sd_action_checkout_order_processed",452,{"type":162,"name":163,"callback":164,"priority":11,"file":368,"line":396},655,{"type":162,"name":398,"callback":399,"priority":11,"file":368,"line":400},"woocommerce_after_checkout_validation","sd_woocommerce_after_checkout_validation",662,{"type":162,"name":402,"callback":403,"file":368,"line":404},"woocommerce_thankyou","sd_woocommerce_thankyou",691,{"type":162,"name":406,"callback":168,"file":407,"line":187},"rest_api_init","rest-api\\class-shipdepot-webhook.php",{"type":162,"name":409,"callback":410,"file":411,"line":243},"plugins_loaded","ship_depot_plugins_loaded","Ship_Depot_init.php",[413,417,420,424,425,429,431,435,437,441,443,447],{"action":414,"nopriv":48,"callback":415,"hasNonce":48,"hasCapCheck":48,"file":170,"line":416},"load_customer_address","load_customer_address_init",26,{"action":414,"nopriv":418,"callback":415,"hasNonce":48,"hasCapCheck":48,"file":170,"line":419},true,27,{"action":421,"nopriv":48,"callback":422,"hasNonce":48,"hasCapCheck":48,"file":423,"line":240},"sync_setting","sync_setting_init","includes\\Settings\\class-ship-depot-data.php",{"action":421,"nopriv":418,"callback":422,"hasNonce":48,"hasCapCheck":48,"file":423,"line":243},{"action":426,"nopriv":48,"callback":427,"hasNonce":48,"hasCapCheck":48,"file":312,"line":428},"calculateTotal","calculateTotal_init",646,{"action":426,"nopriv":418,"callback":427,"hasNonce":48,"hasCapCheck":48,"file":312,"line":430},647,{"action":432,"nopriv":48,"callback":433,"hasNonce":48,"hasCapCheck":48,"file":312,"line":434},"calculate_shipping","calculate_shipping_init",702,{"action":432,"nopriv":418,"callback":433,"hasNonce":48,"hasCapCheck":48,"file":312,"line":436},703,{"action":438,"nopriv":48,"callback":439,"hasNonce":48,"hasCapCheck":48,"file":312,"line":440},"cancel_shipping","cancel_shipping_init",792,{"action":438,"nopriv":418,"callback":439,"hasNonce":48,"hasCapCheck":48,"file":312,"line":442},793,{"action":444,"nopriv":48,"callback":445,"hasNonce":48,"hasCapCheck":48,"file":368,"line":446},"save_notes_session","save_notes_session_init",24,{"action":444,"nopriv":418,"callback":445,"hasNonce":48,"hasCapCheck":48,"file":368,"line":448},25,[450,458,462,466,471,476,481,485,490,495],{"namespace":451,"route":452,"methods":453,"callback":455,"permissionCallback":456,"file":407,"line":457},"shipdepot\u002Fwebhook\u002Fv1","\u002FUpdateStorages",[454],"POST","sd_update_storages","__return_true",14,{"namespace":451,"route":459,"methods":460,"callback":461,"permissionCallback":456,"file":407,"line":64},"\u002FUpdateShopInfo",[454],"sd_update_shop_info",{"namespace":451,"route":463,"methods":464,"callback":465,"permissionCallback":456,"file":407,"line":416},"\u002FUpdateCourierSettings",[454],"sd_update_courier_settings",{"namespace":451,"route":467,"methods":468,"callback":469,"permissionCallback":456,"file":407,"line":470},"\u002FUpdateCouriers",[454],"sd_update_couriers",32,{"namespace":451,"route":472,"methods":473,"callback":474,"permissionCallback":456,"file":407,"line":475},"\u002FUpdateProvinces",[454],"sd_update_provinces",38,{"namespace":451,"route":477,"methods":478,"callback":479,"permissionCallback":456,"file":407,"line":480},"\u002FSyncDataFromAdmin",[454],"sd_sync_data_from_admin",44,{"namespace":451,"route":482,"methods":483,"callback":484,"permissionCallback":456,"file":407,"line":111},"\u002FUpdateShippingStatus",[454],"sd_update_shipping_status",{"namespace":451,"route":486,"methods":487,"callback":488,"permissionCallback":456,"file":407,"line":489},"\u002FUpdateCancelShipping",[454],"sd_update_cancel_shipping",56,{"namespace":451,"route":491,"methods":492,"callback":493,"permissionCallback":456,"file":407,"line":494},"\u002FPostHello",[454],"sd_post_hello",62,{"namespace":451,"route":496,"methods":497,"callback":499,"permissionCallback":456,"file":407,"line":500},"\u002FGetHello",[498],"GET","sd_get_hello",68,[],[],{"dangerousFunctions":504,"sqlUsage":505,"outputEscaping":507,"fileOperations":457,"externalRequests":112,"nonceChecks":133,"capabilityChecks":14,"bundledLibraries":635},[],{"prepared":49,"raw":49,"locations":506},[],{"escaped":508,"rawEcho":509,"locations":510},890,61,[511,514,516,518,520,522,524,526,528,530,532,534,536,538,540,542,544,546,548,550,552,554,556,558,560,562,564,566,568,570,573,575,576,578,580,582,584,586,588,590,592,594,597,598,600,603,605,607,608,610,613,615,617,619,621,623,625,627,629,631,633],{"file":213,"line":512,"context":513},77,"raw output",{"file":312,"line":515,"context":513},1128,{"file":312,"line":517,"context":513},1197,{"file":312,"line":519,"context":513},1198,{"file":312,"line":521,"context":513},1202,{"file":312,"line":523,"context":513},1234,{"file":312,"line":525,"context":513},1264,{"file":312,"line":527,"context":513},1266,{"file":312,"line":529,"context":513},1268,{"file":312,"line":531,"context":513},1270,{"file":312,"line":533,"context":513},1276,{"file":312,"line":535,"context":513},1278,{"file":312,"line":537,"context":513},1281,{"file":312,"line":539,"context":513},1283,{"file":312,"line":541,"context":513},1285,{"file":312,"line":543,"context":513},1287,{"file":312,"line":545,"context":513},1309,{"file":312,"line":547,"context":513},1311,{"file":312,"line":549,"context":513},1313,{"file":312,"line":551,"context":513},1335,{"file":312,"line":553,"context":513},1391,{"file":312,"line":555,"context":513},1552,{"file":312,"line":557,"context":513},1632,{"file":312,"line":559,"context":513},1639,{"file":312,"line":561,"context":513},1779,{"file":312,"line":563,"context":513},1801,{"file":312,"line":565,"context":513},1827,{"file":312,"line":567,"context":513},1939,{"file":312,"line":569,"context":513},1943,{"file":571,"line":572,"context":513},"page\\admin\\settings\\sd-couriers.php",54,{"file":571,"line":574,"context":513},81,{"file":571,"line":298,"context":513},{"file":571,"line":577,"context":513},113,{"file":571,"line":579,"context":513},138,{"file":571,"line":581,"context":513},143,{"file":571,"line":583,"context":513},180,{"file":571,"line":585,"context":513},189,{"file":571,"line":587,"context":513},212,{"file":571,"line":589,"context":513},221,{"file":571,"line":591,"context":513},284,{"file":571,"line":593,"context":513},291,{"file":595,"line":596,"context":513},"page\\admin\\settings\\sd-custom-css.php",31,{"file":595,"line":283,"context":513},{"file":595,"line":599,"context":513},49,{"file":601,"line":602,"context":513},"page\\admin\\settings\\sd-fee-modify.php",555,{"file":601,"line":604,"context":513},600,{"file":601,"line":606,"context":513},819,{"file":601,"line":344,"context":513},{"file":601,"line":609,"context":513},854,{"file":611,"line":612,"context":513},"page\\admin\\settings\\sd-general-settings.php",140,{"file":611,"line":614,"context":513},188,{"file":368,"line":616,"context":513},270,{"file":368,"line":618,"context":513},271,{"file":368,"line":620,"context":513},272,{"file":368,"line":622,"context":513},273,{"file":368,"line":624,"context":513},296,{"file":368,"line":626,"context":513},299,{"file":368,"line":628,"context":513},308,{"file":368,"line":630,"context":513},314,{"file":368,"line":632,"context":513},708,{"file":368,"line":634,"context":513},709,[],[637,654,667,677,691],{"entryPoint":638,"graph":639,"unsanitizedCount":49,"severity":653},"save_custom_css (includes\\Settings\\class-ship-depot-settings-backend.php:564)",{"nodes":640,"edges":651},[641,646],{"id":642,"type":643,"label":644,"file":282,"line":645},"n0","source","$_POST['sd_checkout_custom_css']",586,{"id":647,"type":648,"label":649,"file":282,"line":645,"wp_function":650},"n1","sink","file_put_contents() [File Write]","file_put_contents",[652],{"from":642,"to":647,"sanitized":418},"low",{"entryPoint":655,"graph":656,"unsanitizedCount":28,"severity":653},"save_option (includes\\Settings\\class-ship-depot-settings-backend.php:591)",{"nodes":657,"edges":665},[658,661],{"id":642,"type":643,"label":659,"file":282,"line":660},"$_POST",597,{"id":647,"type":648,"label":662,"file":282,"line":663,"wp_function":664},"update_option() [Settings Manipulation]",599,"update_option",[666],{"from":642,"to":647,"sanitized":48},{"entryPoint":668,"graph":669,"unsanitizedCount":28,"severity":653},"save_radio_button (includes\\Settings\\class-ship-depot-settings-backend.php:618)",{"nodes":670,"edges":675},[671,673],{"id":642,"type":643,"label":659,"file":282,"line":672},624,{"id":647,"type":648,"label":662,"file":282,"line":674,"wp_function":664},626,[676],{"from":642,"to":647,"sanitized":48},{"entryPoint":678,"graph":679,"unsanitizedCount":49,"severity":653},"\u003Cclass-ship-depot-settings-backend> (includes\\Settings\\class-ship-depot-settings-backend.php:0)",{"nodes":680,"edges":688},[681,682,683,686],{"id":642,"type":643,"label":644,"file":282,"line":645},{"id":647,"type":648,"label":649,"file":282,"line":645,"wp_function":650},{"id":684,"type":643,"label":685,"file":282,"line":660},"n2","$_POST (x3)",{"id":687,"type":648,"label":662,"file":282,"line":663,"wp_function":664},"n3",[689,690],{"from":642,"to":647,"sanitized":418},{"from":684,"to":687,"sanitized":418},{"entryPoint":692,"graph":693,"unsanitizedCount":49,"severity":653},"\u003Csd-order-detail> (page\\admin\\orders\\sd-order-detail.php:0)",{"nodes":694,"edges":702},[695,698],{"id":642,"type":643,"label":696,"file":312,"line":697},"$_POST (x4)",796,{"id":647,"type":648,"label":699,"file":312,"line":700,"wp_function":701},"echo() [XSS]",1376,"echo",[703],{"from":642,"to":647,"sanitized":418},{"summary":705,"deductions":706},"The \"ship-depot\" plugin version 1.2.19 presents a significant security risk due to a large number of unprotected entry points.  All 12 AJAX handlers and 10 REST API routes lack authorization checks, creating a broad attack surface where any unauthenticated user could potentially interact with sensitive plugin functionalities. While the plugin demonstrates good practices in other areas, such as using prepared statements for SQL queries and a high percentage of properly escaped output, the absence of authorization on its primary interaction points is a critical flaw.  The vulnerability history, including a known medium-severity CVE related to missing authorization, reinforces this concern and suggests a recurring pattern of insecure access control implementation within the plugin.\n\nThe taint analysis shows a limited number of flows and none with critical or high severity, which is a positive indicator. However, the presence of 2 flows with unsanitized paths, even if not flagged as critical in the current analysis, warrants careful investigation as they could lead to unexpected behavior or vulnerabilities if exploited in conjunction with other weaknesses. The plugin's reliance on explicit capability checks for only 2 instances further highlights the overall deficiency in robust access control mechanisms. In conclusion, while the plugin has some strengths in data handling, the pervasive lack of authentication and authorization on its entry points makes it highly vulnerable to exploitation, necessitating immediate attention to secure these areas.",[707,709,711,713,716],{"reason":708,"points":11},"Unprotected AJAX handlers",{"reason":710,"points":11},"Unprotected REST API routes",{"reason":712,"points":202},"Unpatched CVE (medium severity)",{"reason":714,"points":715},"Flows with unsanitized paths",5,{"reason":717,"points":715},"Limited capability checks","2026-03-16T23:52:11.793Z",{"wat":720,"direct":727},{"assetPaths":721,"generatorPatterns":723,"scriptPaths":724,"versionParams":725},[722],"\u002Fwp-content\u002Fplugins\u002Fship-depot\u002Fassets\u002Fjs\u002Fadmin-notices.js",[],[722],[726],"ship-depot\u002Fassets\u002Fjs\u002Fadmin-notices.js?ver=",{"cssClasses":728,"htmlComments":730,"htmlAttributes":731,"restEndpoints":733,"jsGlobals":734,"shortcodeOutput":737},[729],"vf-notice",[],[732],"data-dismiss-url",[],[735,736],"SHIP_DEPOT_DIR_URL","SHIP_DEPOT_VERSION",[],{"error":418,"url":739,"statusCode":740,"statusMessage":741,"message":741},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fship-depot\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":49,"versions":743},[]]