[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fhQoOYibTOv5IY_2umULTzuGmJ_AVATU4cCgHrCah_H8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":34,"analysis":35,"fingerprints":371},"simple-email-mailchimp-subscriber","Simple Email & MailChimp Subscriber","2.2.3","wpmonkeys","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpmonkeys\u002F","\u003Cp>Simple Email & MailChimp Subscriber is the super easy and user friendly mailchimp subscriber plugin for your website.\u003C\u002Fp>\n\u003Cp>Features:\u003Cbr \u002F>\n➡ Super Easy to use, Search Install Active And you Done!\u003Cbr \u002F>\n➡ Subscriber will saved also into WordPress Database\u003Cbr \u002F>\n➡ Ajax Form Submission\u003Cbr \u002F>\n➡ Use [wpmsems-subscriber-form] to show subscriber form anywhere in your website.\u003Cbr \u002F>\n➡ Subscriber Form Manage from Admin Setting.\u003Cbr \u002F>\n➡ Subscriber List in Dashboard\u003Cbr \u002F>\n➡ Subscriber List Delete\u003Cbr \u002F>\n➡ Admin Notification after new subscriber\u003Cbr \u002F>\n➡ Customizable Admin Notification email.\u003Cbr \u002F>\n➡ Responsive Design\u003Cbr \u002F>\n➡ Developer fiendly\u003Cbr \u002F>\n➡ Plays well with other Plugins\u003Cbr \u002F>\n➡ Subscriber List Export as CSV\u003Cbr \u002F>\n➡ Builtin Elementor Widget\u003Cbr \u002F>\n➡ Connect with MailChimp and Auto Syc Subscriber into MailChimp Subscriber Form.\u003Cbr \u002F>\n➡ Subscriber Form Builder.\u003Cbr \u002F>\n➡ Works with any standards compliant WordPress theme\u003C\u002Fp>\n\u003Ch3>Shortcodes included with Woocommerce Events Manager\u003C\u002Fh3>\n\u003Cp>👉 Use [wpmsems-subscriber-form] to show subscriber form anywhere in your website.\u003C\u002Fp>\n\u003Cp>If you want to use multiple subscriber form in a page you need to assing a unique id to every form.\u003C\u002Fp>\n\u003Cp>👉 Use [wpmsems-subscriber-form id=’UNIQUE ID’]\u003C\u002Fp>\n","This is the simple and super user friendly mailchimp subscriber plugin form WordPress",10,1679,0,"2020-08-31T04:18:00.000Z","5.5.18","3.0.1","",[19,20,21],"mailchimp-subscriber-wordpress","wordpress-mailchimp","wp-mailchimp","https:\u002F\u002Fwpmonkeys.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-email-mailchimp-subscriber.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":24,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},2,80,30,84,"2026-04-04T07:17:23.282Z",[],{"attackSurface":36,"codeSignals":134,"taintFlows":321,"riskAssessment":357,"analyzedAt":370},{"hooks":37,"ajaxHandlers":115,"restRoutes":123,"shortcodes":124,"cronEvents":133,"entryPointCount":129,"unprotectedCount":29},[38,44,49,52,55,58,63,65,66,70,74,79,83,87,90,93,97,100,103,104,105,106,111],{"type":39,"name":40,"callback":41,"file":42,"line":43},"action","init","register_cpt","admin\\class\\class-create-cpt.php",6,{"type":39,"name":45,"callback":46,"file":47,"line":48},"admin_enqueue_scripts","enqueue_styles","admin\\class-plugin-admin.php",15,{"type":39,"name":45,"callback":50,"file":47,"line":51},"enqueue_scripts",16,{"type":39,"name":53,"callback":53,"file":54,"line":51},"admin_init","inc\\wpmsems_admin_setting_panel.php",{"type":39,"name":56,"callback":56,"file":54,"line":57},"admin_menu",17,{"type":39,"name":59,"callback":60,"file":61,"line":62},"wp_enqueue_scripts","wpmsems_enqueue_scripts","inc\\wpmsems_enqueue.php",5,{"type":39,"name":45,"callback":64,"file":61,"line":48},"wpmsems_ajax_call_url",{"type":39,"name":59,"callback":64,"file":61,"line":51},{"type":39,"name":56,"callback":67,"file":68,"line":69},"wpmsems_subscriber_list_menu","inc\\wpmsems_subscriber_list.php",3,{"type":39,"name":71,"callback":72,"file":73,"line":57},"plugins_loaded","load_plugin_textdomain","includes\\class-functions.php",{"type":75,"name":76,"callback":77,"file":73,"line":78},"filter","manage_wpmsems_subscriber_posts_columns","add_new_column_into_subscriber_list",20,{"type":39,"name":80,"callback":81,"priority":11,"file":73,"line":82},"manage_wpmsems_subscriber_posts_custom_column","add_new_value_column_into_subscriber_list",21,{"type":39,"name":84,"callback":85,"priority":62,"file":73,"line":86},"wp_head","wpmsems_ajax_url",300,{"type":39,"name":88,"callback":85,"priority":62,"file":73,"line":89},"admin_head",301,{"type":39,"name":40,"callback":91,"file":92,"line":29},"wpmsems_upgrde_old_data_to_new","includes\\class-upgrade.php",{"type":39,"name":94,"callback":95,"file":96,"line":29},"admin_notices","wpmsems_default_export_btn","includes\\class_csv_export.php",{"type":39,"name":53,"callback":98,"file":96,"line":99},"wpmsems_export_default_form",47,{"type":39,"name":59,"callback":46,"file":101,"line":102},"public\\class-plugin-public.php",14,{"type":39,"name":59,"callback":46,"file":101,"line":48},{"type":39,"name":45,"callback":64,"file":101,"line":51},{"type":39,"name":59,"callback":64,"file":101,"line":57},{"type":39,"name":107,"callback":108,"file":109,"line":110},"elementor\u002Ffrontend\u002Fafter_register_scripts","widget_scripts","support\\elementor\\elementor-support.php",49,{"type":39,"name":112,"callback":113,"file":109,"line":114},"elementor\u002Fwidgets\u002Fwidgets_registered","register_widgets",50,[116,120],{"action":117,"nopriv":118,"callback":117,"hasNonce":118,"hasCapCheck":118,"file":73,"line":119},"wpmsems_simple_subscriber",false,18,{"action":117,"nopriv":121,"callback":117,"hasNonce":118,"hasCapCheck":118,"file":73,"line":122},true,19,[],[125,130],{"tag":126,"callback":127,"file":128,"line":129},"wpmsems-subscriber-form","wpmsems_subscriber_form","inc\\wpmsems_shortcode.php",4,{"tag":126,"callback":131,"file":132,"line":129},"wpmsems_default_form","public\\shortcode\\shortcode-default.php",[],{"dangerousFunctions":135,"sqlUsage":136,"outputEscaping":143,"fileOperations":316,"externalRequests":13,"nonceChecks":13,"capabilityChecks":316,"bundledLibraries":317},[],{"prepared":43,"raw":29,"locations":137},[138,141],{"file":68,"line":139,"context":140},96,"$wpdb->get_results() with variable interpolation",{"file":92,"line":142,"context":140},8,{"escaped":144,"rawEcho":145,"locations":146},11,95,[147,150,152,154,156,157,159,161,163,164,166,167,169,170,172,174,176,177,179,181,183,185,187,189,190,192,194,196,198,199,200,201,203,205,207,209,211,213,215,217,219,221,222,223,225,226,227,228,230,231,232,234,235,236,238,239,240,242,243,245,247,249,251,253,255,257,259,261,263,265,267,269,271,273,275,277,279,281,283,285,287,289,291,292,294,296,297,299,301,303,305,308,310,312,314],{"file":128,"line":148,"context":149},31,"raw output",{"file":128,"line":151,"context":149},32,{"file":128,"line":153,"context":149},34,{"file":128,"line":155,"context":149},35,{"file":128,"line":155,"context":149},{"file":128,"line":158,"context":149},38,{"file":128,"line":160,"context":149},40,{"file":128,"line":162,"context":149},41,{"file":128,"line":162,"context":149},{"file":128,"line":165,"context":149},45,{"file":128,"line":99,"context":149},{"file":128,"line":168,"context":149},48,{"file":128,"line":168,"context":149},{"file":128,"line":171,"context":149},51,{"file":128,"line":173,"context":149},53,{"file":128,"line":175,"context":149},54,{"file":128,"line":175,"context":149},{"file":128,"line":178,"context":149},57,{"file":128,"line":180,"context":149},59,{"file":128,"line":182,"context":149},60,{"file":128,"line":184,"context":149},63,{"file":128,"line":186,"context":149},65,{"file":128,"line":188,"context":149},66,{"file":128,"line":188,"context":149},{"file":128,"line":191,"context":149},70,{"file":128,"line":193,"context":149},76,{"file":128,"line":195,"context":149},90,{"file":68,"line":197,"context":149},24,{"file":68,"line":197,"context":149},{"file":68,"line":197,"context":149},{"file":68,"line":99,"context":149},{"file":68,"line":202,"context":149},101,{"file":68,"line":204,"context":149},102,{"file":68,"line":206,"context":149},103,{"file":68,"line":208,"context":149},104,{"file":68,"line":210,"context":149},105,{"file":68,"line":212,"context":149},106,{"file":68,"line":214,"context":149},107,{"file":68,"line":216,"context":149},108,{"file":68,"line":218,"context":149},109,{"file":68,"line":220,"context":149},110,{"file":68,"line":220,"context":149},{"file":68,"line":220,"context":149},{"file":68,"line":224,"context":149},111,{"file":73,"line":178,"context":149},{"file":73,"line":178,"context":149},{"file":73,"line":178,"context":149},{"file":73,"line":229,"context":149},62,{"file":73,"line":229,"context":149},{"file":73,"line":229,"context":149},{"file":73,"line":233,"context":149},67,{"file":73,"line":233,"context":149},{"file":73,"line":233,"context":149},{"file":73,"line":237,"context":149},72,{"file":73,"line":237,"context":149},{"file":73,"line":237,"context":149},{"file":73,"line":241,"context":149},78,{"file":73,"line":241,"context":149},{"file":73,"line":244,"context":149},183,{"file":73,"line":246,"context":149},185,{"file":73,"line":248,"context":149},188,{"file":73,"line":250,"context":149},213,{"file":73,"line":252,"context":149},216,{"file":73,"line":254,"context":149},219,{"file":73,"line":256,"context":149},222,{"file":73,"line":258,"context":149},225,{"file":73,"line":260,"context":149},228,{"file":73,"line":262,"context":149},231,{"file":73,"line":264,"context":149},241,{"file":73,"line":266,"context":149},244,{"file":73,"line":268,"context":149},245,{"file":73,"line":270,"context":149},249,{"file":73,"line":272,"context":149},250,{"file":73,"line":274,"context":149},254,{"file":73,"line":276,"context":149},255,{"file":73,"line":278,"context":149},259,{"file":73,"line":280,"context":149},260,{"file":73,"line":282,"context":149},264,{"file":73,"line":284,"context":149},265,{"file":73,"line":286,"context":149},269,{"file":73,"line":288,"context":149},270,{"file":73,"line":290,"context":149},280,{"file":73,"line":290,"context":149},{"file":73,"line":293,"context":149},284,{"file":73,"line":295,"context":149},306,{"file":132,"line":119,"context":149},{"file":132,"line":298,"context":149},22,{"file":132,"line":300,"context":149},28,{"file":132,"line":302,"context":149},29,{"file":132,"line":304,"context":149},56,{"file":306,"line":307,"context":149},"support\\elementor\\widget-subscriber-form.php",380,{"file":306,"line":309,"context":149},384,{"file":306,"line":311,"context":149},390,{"file":306,"line":313,"context":149},391,{"file":306,"line":315,"context":149},418,1,[318],{"name":319,"version":25,"knownCves":320},"Select2",[],[322,346],{"entryPoint":323,"graph":324,"unsanitizedCount":62,"severity":345},"wpmsems_subscriber_list (inc\\wpmsems_subscriber_list.php:10)",{"nodes":325,"edges":342},[326,330,335,338],{"id":327,"type":328,"label":329,"file":68,"line":51},"n0","source","$_GET (x2)",{"id":331,"type":332,"label":333,"file":68,"line":119,"wp_function":334},"n1","sink","query() [SQLi]","query",{"id":336,"type":328,"label":337,"file":68,"line":51},"n2","$_GET (x3)",{"id":339,"type":332,"label":340,"file":68,"line":197,"wp_function":341},"n3","echo() [XSS]","echo",[343,344],{"from":327,"to":331,"sanitized":118},{"from":336,"to":339,"sanitized":118},"high",{"entryPoint":347,"graph":348,"unsanitizedCount":62,"severity":345},"\u003Cwpmsems_subscriber_list> (inc\\wpmsems_subscriber_list.php:0)",{"nodes":349,"edges":354},[350,351,352,353],{"id":327,"type":328,"label":329,"file":68,"line":51},{"id":331,"type":332,"label":333,"file":68,"line":119,"wp_function":334},{"id":336,"type":328,"label":337,"file":68,"line":51},{"id":339,"type":332,"label":340,"file":68,"line":197,"wp_function":341},[355,356],{"from":327,"to":331,"sanitized":118},{"from":336,"to":339,"sanitized":118},{"summary":358,"deductions":359},"The plugin 'simple-email-mailchimp-subscriber' v2.2.3 exhibits a mixed security posture. While it has a clean vulnerability history with no recorded CVEs, indicating a generally well-maintained codebase in the past, the static analysis reveals significant concerns. The presence of two unprotected AJAX handlers presents a direct attack vector for unauthenticated users. Furthermore, the taint analysis highlights two flows with unsanitized paths, both classified as high severity. This suggests potential for malicious data to be processed without proper validation, which could lead to various security issues depending on how these flows are handled.  The low percentage of properly escaped output (10%) is also a serious concern, increasing the risk of Cross-Site Scripting (XSS) vulnerabilities. Although the use of prepared statements for SQL queries is relatively high, the overall lack of nonce checks and limited capability checks on critical entry points, combined with the unprotected AJAX handlers and unsanitized data flows, points to a plugin that requires immediate attention to address these critical security weaknesses.",[360,362,364,366,368],{"reason":361,"points":11},"AJAX handlers without auth checks",{"reason":363,"points":48},"High severity unsanitized taint flows",{"reason":365,"points":142},"Low percentage of properly escaped output",{"reason":367,"points":11},"No nonce checks on entry points",{"reason":369,"points":62},"Limited capability checks","2026-03-17T00:34:41.829Z",{"wat":372,"direct":400},{"assetPaths":373,"generatorPatterns":389,"scriptPaths":390,"versionParams":391},[374,375,376,377,378,379,380,381,382,383,384,385,386,387,388],"\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fadmin\u002Fcss\u002Fjquery-ui.css","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fadmin\u002Fassets\u002Fcss\u002Fpickplugins-options-framework.css","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fadmin\u002Fassets\u002Fcss\u002Fjquery-ui.css","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fadmin\u002Fassets\u002Fcss\u002Fselect2.min.css","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fadmin\u002Fassets\u002Fcss\u002Fcodemirror.css","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fadmin\u002Fassets\u002Fcss\u002Ffontawesome.min.css","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fadmin\u002Fcss\u002Fmage-plugin-admin.css","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fpublic\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fadmin\u002Fassets\u002Fjs\u002Fpickplugins-options-framework.js","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fadmin\u002Fassets\u002Fjs\u002Fselect2.min.js","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fadmin\u002Fassets\u002Fjs\u002Fcodemirror.min.js","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fadmin\u002Fassets\u002Fjs\u002Fform-field-dependency.js","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fadmin\u002Fjs\u002Fmage-plugin-admin.js","\u002Fwp-content\u002Fplugins\u002Fsimple-email-mailchimp-subscriber\u002Fpublic\u002Fjs\u002Fmage-plugin-public.js",[],[387,388],[392,393,394,395,396,397,398,399],"simple-email-mailchimp-subscriber\u002Fadmin\u002Fcss\u002Fmage-plugin-admin.css?ver=","simple-email-mailchimp-subscriber\u002Fpublic\u002Fcss\u002Fstyle.css?ver=","simple-email-mailchimp-subscriber\u002Fadmin\u002Fassets\u002Fjs\u002Fpickplugins-options-framework.js?ver=","simple-email-mailchimp-subscriber\u002Fadmin\u002Fassets\u002Fjs\u002Fselect2.min.js?ver=","simple-email-mailchimp-subscriber\u002Fadmin\u002Fassets\u002Fjs\u002Fcodemirror.min.js?ver=","simple-email-mailchimp-subscriber\u002Fadmin\u002Fassets\u002Fjs\u002Fform-field-dependency.js?ver=","simple-email-mailchimp-subscriber\u002Fadmin\u002Fjs\u002Fmage-plugin-admin.js?ver=","simple-email-mailchimp-subscriber\u002Fpublic\u002Fjs\u002Fmage-plugin-public.js?ver=",{"cssClasses":401,"htmlComments":402,"htmlAttributes":403,"restEndpoints":405,"jsGlobals":406,"shortcodeOutput":408},[126],[],[404],"data-wpmsems-form-id",[],[407],"wpmsems_ajax",[409],"[wpmsems_form]"]