[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fsseCamKWuXbJ_OgCCIKjZLvWf5tMcDBh9uq0QDPcAEU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":21,"download_link":22,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":24,"vulnerabilities":25,"developer":26,"crawl_stats":23,"alternatives":32,"analysis":33,"fingerprints":124},"simple-customer-crm","Simple Customer CRM Plugin","1.0.0","tristup","https:\u002F\u002Fprofiles.wordpress.org\u002Ftristup\u002F","\u003Cp>Simple Customer CRM plugin will help to capture the customer data using customer form.\u003C\u002Fp>\n\u003Ch3>Major features in Simple Customer CRM Plugin include:\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>Is to create a Form through a shortcode and show it in frontend.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Form will capture the data submitted by the user in form of private data.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Customer Custom post type will be created on plugin installation and store all the data submitted.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>All the additional data will be stored as Post meta data.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Shortcode & Attributes\u003C\u002Fh3>\n\u003Cp>With all default values\u003C\u002Fp>\n\u003Cp>[sccrm]\u003C\u002Fp>\n\u003Cp>Attributes\u003C\u002Fp>\n\u003Cp>form_title = to set the Form Title\u003C\u002Fp>\n\u003Cp>name_field_label = Field Label for Name\u003Cbr \u002F>\nname_field_min_length = to set minimum length of the name\u003Cbr \u002F>\nname_field_max_length = to set maximum length of the name\u003C\u002Fp>\n\u003Cp>phone_field_label = Field Label for Phone\u003Cbr \u002F>\nphone_field_min_length = to set minimum length of the phone\u003Cbr \u002F>\nphone_field_max_length = to set maximum length of the phone\u003C\u002Fp>\n\u003Cp>email_field_label = Field Label for Email\u003C\u002Fp>\n\u003Cp>budget_field_label = Field Label for Budget\u003C\u002Fp>\n\u003Cp>message_field_label =  Field Label for Message\u003Cbr \u002F>\nmessage_field_height = to set minimum rows\u002Fheight of the Message\u003Cbr \u002F>\nmessage_field_width = to set maximum cols\u002Fwidth of the Message\u003C\u002Fp>\n\u003Cp>with all custom value\u003C\u002Fp>\n\u003Cp>[sccrm form_title=”Customer Form” name_field_label=”Your Name” name_field_min_length=”5″ name_field_max_length=”20″ phone_field_label=”Your Phone” phone_field_min_length=”10″ phone_field_max_length=”12″ email_field_label=”Your Email” budget_field_label=”Your Budget” message_field_label=”Your Message” message_field_height=”5″ message_field_width=”50″]\u003C\u002Fp>\n\u003Ch3>Customer Info\u003C\u002Fh3>\n\u003Cp>title = customer name\u003Cbr \u002F>\npost_content = customer message\u003Cbr \u002F>\nsccrm_customer_phone  = for customer phone\u003Cbr \u002F>\nsccrm_customer_email  = for customer email id\u003Cbr \u002F>\nsccrm_customer_budget  = for customer budget\u003Cbr \u002F>\nsccrm_customer_create_date  = for customer create time and date from World Clock API\u003C\u002Fp>\n\u003Ch3>ThridParty API\u003C\u002Fh3>\n\u003Cp>Used WorldClock API to get UTC date and time.\u003C\u002Fp>\n\u003Cp>http:\u002F\u002Fworldclockapi.com\u002Fapi\u002Fjson\u002Futc\u002Fnow\u003C\u002Fp>\n","Simple Customer CRM plugin will help to capture the customer data using customer form.",0,951,100,2,"","5.3.21","4.9.4","5.2.4",[20],"simple-customer-crm-plugin","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-customer-crm\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-customer-crm.zip",null,"2026-03-15T10:48:56.248Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":27,"avg_security_score":28,"avg_patch_time_days":29,"trust_score":30,"computed_at":31},70,93,30,89,"2026-04-05T09:26:39.861Z",[],{"attackSurface":34,"codeSignals":93,"taintFlows":112,"riskAssessment":113,"analyzedAt":123},{"hooks":35,"ajaxHandlers":76,"restRoutes":85,"shortcodes":86,"cronEvents":91,"entryPointCount":92,"unprotectedCount":14},[36,43,48,52,56,60,65,69,73],{"type":37,"name":38,"callback":39,"priority":40,"file":41,"line":42},"action","wp_enqueue_scripts","simple_customer_crm_scripts",50,"simple-customer-crm.php",34,{"type":37,"name":44,"callback":45,"priority":46,"file":41,"line":47},"init","simple_customer_crm_cpt",10,36,{"type":37,"name":44,"callback":49,"priority":50,"file":41,"line":51},"simple_customer_crm_taxonomies",11,37,{"type":37,"name":53,"callback":54,"file":41,"line":55},"add_meta_boxes_sccrm_customer","simple_customer_crm_meta_boxes",39,{"type":37,"name":57,"callback":58,"priority":46,"file":41,"line":59},"save_post","simple_customer_crm_metabox_save_details",40,{"type":61,"name":62,"callback":63,"file":41,"line":64},"filter","manage_edit-sccrm_customer_columns","simple_customer_crm_columns",43,{"type":61,"name":66,"callback":67,"file":41,"line":68},"manage_edit-sccrm_customer_sortable_columns","simple_customer_crm_sortable_columns",45,{"type":37,"name":70,"callback":71,"priority":46,"file":41,"line":72},"manage_sccrm_customer_posts_custom_column","simple_customer_crm_custom_columns",47,{"type":61,"name":74,"callback":75,"priority":46,"file":41,"line":40},"post_row_actions","simple_customer_crm_remove_row_actions",[77,82],{"action":78,"nopriv":79,"callback":80,"hasNonce":79,"hasCapCheck":79,"file":41,"line":81},"submitCustomerForm",false,"simple_customer_crm_submitCustomerForm",52,{"action":78,"nopriv":83,"callback":80,"hasNonce":79,"hasCapCheck":79,"file":41,"line":84},true,53,[],[87],{"tag":88,"callback":89,"file":41,"line":90},"sccrm","simple_customer_crm_callback",35,[],3,{"dangerousFunctions":94,"sqlUsage":95,"outputEscaping":97,"fileOperations":11,"externalRequests":110,"nonceChecks":110,"capabilityChecks":11,"bundledLibraries":111},[],{"prepared":11,"raw":11,"locations":96},[],{"escaped":98,"rawEcho":99,"locations":100},14,4,[101,104,106,108],{"file":41,"line":102,"context":103},214,"raw output",{"file":41,"line":105,"context":103},304,{"file":41,"line":107,"context":103},318,{"file":41,"line":109,"context":103},333,1,[],[],{"summary":114,"deductions":115},"The \"simple-customer-crm\" plugin v1.0.0 exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and generally performing well on output escaping, with 78% of outputs properly handled. The absence of known CVEs and a clean vulnerability history is also a strong indicator of responsible development. However, significant concerns arise from its attack surface. The presence of two AJAX handlers, both lacking authentication checks, presents a substantial risk. This means unauthenticated users could potentially interact with these handlers, leading to unintended actions or information disclosure.\n\nTaint analysis shows no critical or high-severity flows, which is reassuring. The lack of file operations and external HTTP requests further reduces potential attack vectors. Despite the good SQL and output escaping practices, the unprotected AJAX endpoints are the most prominent vulnerability. The absence of capability checks on any entry points is also a notable weakness, as it means permissions are not being properly enforced.\n\nOverall, while the plugin avoids common pitfalls like raw SQL and outdated libraries, the unprotected AJAX handlers are a critical security flaw that needs immediate attention. The vulnerability history is clean, suggesting recent attention to security, but this does not negate the risks posed by the current code analysis. The plugin has strengths in data handling but is weak in access control for its interactive elements.",[116,118,120],{"reason":117,"points":46},"AJAX handlers without auth checks",{"reason":119,"points":46},"AJAX handlers without capability checks",{"reason":121,"points":122},"Unescaped output",5,"2026-03-17T05:53:46.616Z",{"wat":125,"direct":138},{"assetPaths":126,"generatorPatterns":131,"scriptPaths":132,"versionParams":133},[127,128,129,130],"\u002Fwp-content\u002Fplugins\u002Fsimple-customer-crm\u002Fcss\u002Fbootstrap.min.css","\u002Fwp-content\u002Fplugins\u002Fsimple-customer-crm\u002Fcss\u002Fmain.css","\u002Fwp-content\u002Fplugins\u002Fsimple-customer-crm\u002Fjs\u002Fjquery.validate.js","\u002Fwp-content\u002Fplugins\u002Fsimple-customer-crm\u002Fjs\u002Fmain.js",[],[130],[134,135,136,137],"simple-customer-crm\u002Fcss\u002Fbootstrap.min.css?ver=","simple-customer-crm\u002Fcss\u002Fmain.css?ver=","simple-customer-crm\u002Fjs\u002Fjquery.validate.js?ver=","simple-customer-crm\u002Fjs\u002Fmain.js?ver=",{"cssClasses":139,"htmlComments":140,"htmlAttributes":141,"restEndpoints":142,"jsGlobals":143,"shortcodeOutput":145},[],[],[],[],[144],"sccrmsettings",[]]