[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$ftbI2MvIFrdFqCMtSxfZwmjyyf9-qhlBbM-RqNaMtGm0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":19,"download_link":20,"security_score":21,"vuln_count":13,"unpatched_count":13,"last_vuln_date":22,"fetched_at":23,"vulnerabilities":24,"developer":25,"crawl_stats":22,"alternatives":33,"analysis":34,"fingerprints":239},"simple-social-login","Simple Social Login by Astoundify","1.3.0","Astoundify","https:\u002F\u002Fprofiles.wordpress.org\u002Fastoundify\u002F","\u003Cp>Social login options for WordPress. Currently supports:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>Google\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Documentation\u003C\u002Fh4>\n\u003Cp>Usage instructions for this plugin can be found on our documentation: \u003Ca href=\"http:\u002F\u002Fdocs.astoundify.com\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fdocs.astoundify.com\u002F\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Support Policy\u003C\u002Fh4>\n\u003Cp>Please contact https:\u002F\u002Fastoundify.com\u002Faccount\u002Fnew-ticket\u002F for technical support regarding the plugin. We are partnered with and highly recommend WP Curve (https:\u002F\u002Fastoundify.com\u002Fgo\u002Fwpcurve) Envato Studio (https:\u002F\u002Fastoundify.com\u002Fgo\u002Fenvato-studio\u002F) or Codeable (https:\u002F\u002Fastoundify.com\u002Fgo\u002Fcodeable\u002F) if you need help customizing your website.\u003C\u002Fp>\n","Social login options for WordPress. Currently supports: Facebook Twitter Google Documentation Usage instructions for this plugin can be found on  …",100,14587,0,"2020-11-27T12:16:00.000Z","5.5.18","4.9.0","5.6.0",[],"https:\u002F\u002Fastoundify.com\u002Fproducts\u002Fsimple-social-login\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-social-login.1.3.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":26,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":28,"avg_security_score":29,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},"astoundify",10,22580,90,31,81,"2026-04-05T02:42:28.199Z",[],{"attackSurface":35,"codeSignals":170,"taintFlows":197,"riskAssessment":224,"analyzedAt":238},{"hooks":36,"ajaxHandlers":166,"restRoutes":167,"shortcodes":168,"cronEvents":169,"entryPointCount":13,"unprotectedCount":13},[37,43,48,51,54,56,59,62,64,66,71,74,78,81,85,90,94,98,102,106,110,115,119,124,127,131,135,139,142,148,152,155,158,162],{"type":38,"name":39,"callback":40,"file":41,"line":42},"action","admin_init","astoundify_simple_social_login_facebook_register_settings","app\\admin\\functions-settings-facebook.php",29,{"type":44,"name":45,"callback":46,"file":41,"line":47},"filter","astoundify_simple_social_login_settings_tabs","astoundify_simple_social_login_facebook_add_settings_tab",67,{"type":38,"name":49,"callback":49,"file":41,"line":50},"astoundify_simple_social_login_panel_facebook",131,{"type":38,"name":39,"callback":52,"file":53,"line":42},"astoundify_simple_social_login_google_register_settings","app\\admin\\functions-settings-google.php",{"type":44,"name":45,"callback":55,"file":53,"line":47},"astoundify_simple_social_login_google_add_settings_tab",{"type":38,"name":57,"callback":57,"file":53,"line":58},"astoundify_simple_social_login_panel_google",132,{"type":38,"name":39,"callback":60,"file":61,"line":42},"astoundify_simple_social_login_twitter_register_settings","app\\admin\\functions-settings-twitter.php",{"type":44,"name":45,"callback":63,"file":61,"line":47},"astoundify_simple_social_login_twitter_add_settings_tab",{"type":38,"name":65,"callback":65,"file":61,"line":58},"astoundify_simple_social_login_panel_twitter",{"type":38,"name":67,"callback":68,"file":69,"line":70},"astoundify_simple_social_login_display_choices","astoundify_simple_social_login_admin_woocommerce_add_display_choice","app\\admin\\functions-settings-woocommerce.php",26,{"type":38,"name":39,"callback":72,"file":73,"line":42},"astoundify_simple_social_login_register_settings","app\\admin\\functions-settings.php",{"type":38,"name":75,"callback":76,"file":73,"line":77},"admin_menu","astoundify_simple_social_login_add_menu_page",64,{"type":38,"name":79,"callback":79,"file":73,"line":80},"astoundify_simple_social_login_panel_settings",186,{"type":38,"name":82,"callback":83,"file":73,"line":84},"admin_enqueue_scripts","astoundify_simple_social_login_admin_enqueue_scripts",206,{"type":38,"name":86,"callback":87,"file":88,"line":89},"woocommerce_login_form_start","astoundify_simple_social_login_woocommerce_login_register_buttons","app\\functions-woocommerce.php",56,{"type":38,"name":91,"callback":92,"file":88,"line":93},"woocommerce_after_edit_account_form","astoundify_simple_social_login_woocommerce_link_unlink_buttons",80,{"type":38,"name":95,"callback":96,"file":88,"line":97},"template_redirect","astoundify_simple_social_login_woocommerce_add_error_notice",120,{"type":44,"name":99,"callback":100,"file":88,"line":101},"astoundify_simple_social_login_setup_profile_url","astoundidy_simple_social_login_woocommerce_setup_profile_url",133,{"type":44,"name":103,"callback":104,"file":88,"line":105},"astoundify_simple_social_login_wordpress_admin_email_setup_redirect","__return_false",142,{"type":38,"name":107,"callback":108,"file":88,"line":109},"wp_enqueue_scripts","astoundify_simple_social_login_woocommerce_scripts",162,{"type":38,"name":111,"callback":112,"file":113,"line":114},"login_footer","closure","app\\functions-wordpress.php",44,{"type":38,"name":116,"callback":117,"file":113,"line":118},"login_form","astoundify_simple_social_login_wordpress_login_form",54,{"type":38,"name":120,"callback":121,"priority":122,"file":113,"line":123},"show_user_profile","astoundify_simple_social_login_wordpress_profile",20,87,{"type":44,"name":125,"callback":126,"priority":27,"file":113,"line":97},"wp_login_errors","astoundify_simple_social_login_wordpress_login_add_errors",{"type":38,"name":128,"callback":129,"file":113,"line":130},"admin_notices","astoundify_simple_social_login_wordpress_admin_add_error_notices",165,{"type":38,"name":95,"callback":132,"priority":133,"file":113,"line":134},"astoundify_simple_social_login_wordpress_email_setup_redirect",999,193,{"type":38,"name":136,"callback":137,"file":113,"line":138},"login_enqueue_scripts","astoundify_simple_social_login_wordpress_login_scripts",218,{"type":38,"name":82,"callback":140,"file":113,"line":141},"astoundify_simple_social_login_wordpress_admin_scripts",240,{"type":44,"name":143,"callback":144,"priority":145,"file":146,"line":147},"query_vars","astoundify_simple_social_login_add_query_vars",1,"app\\functions.php",153,{"type":44,"name":149,"callback":150,"file":146,"line":151},"template_include","astoundify_simple_social_login_template_include",167,{"type":38,"name":153,"callback":153,"file":146,"line":154},"astoundify_simple_social_login_process_done",195,{"type":38,"name":156,"callback":156,"priority":27,"file":146,"line":157},"astoundify_simple_social_login_process",217,{"type":38,"name":128,"callback":159,"file":160,"line":161},"astoundify_simple_social_login_php_notice","astoundify-simple-social-login.php",47,{"type":38,"name":163,"callback":112,"file":164,"line":165},"plugins_loaded","bootstrap\\app.php",23,[],[],[],[],{"dangerousFunctions":171,"sqlUsage":172,"outputEscaping":174,"fileOperations":13,"externalRequests":13,"nonceChecks":145,"capabilityChecks":13,"bundledLibraries":196},[],{"prepared":13,"raw":13,"locations":173},[],{"escaped":175,"rawEcho":176,"locations":177},123,9,[178,180,182,184,186,188,189,191,194],{"file":73,"line":21,"context":179},"raw output",{"file":73,"line":181,"context":179},177,{"file":88,"line":183,"context":179},51,{"file":88,"line":185,"context":179},76,{"file":113,"line":187,"context":179},36,{"file":113,"line":93,"context":179},{"file":113,"line":190,"context":179},144,{"file":192,"line":193,"context":179},"resources\\templates\\link-unlink-buttons.php",19,{"file":195,"line":193,"context":179},"resources\\templates\\login-register-buttons.php",[],[198,215],{"entryPoint":199,"graph":200,"unsanitizedCount":145,"severity":214},"astoundify_simple_social_login_wordpress_admin_add_error_notices (app\\functions-wordpress.php:127)",{"nodes":201,"edges":211},[202,206],{"id":203,"type":204,"label":205,"file":113,"line":190},"n0","source","$_GET['_error']",{"id":207,"type":208,"label":209,"file":113,"line":190,"wp_function":210},"n1","sink","echo() [XSS]","echo",[212],{"from":203,"to":207,"sanitized":213},false,"medium",{"entryPoint":216,"graph":217,"unsanitizedCount":145,"severity":223},"\u003Cfunctions-wordpress> (app\\functions-wordpress.php:0)",{"nodes":218,"edges":221},[219,220],{"id":203,"type":204,"label":205,"file":113,"line":190},{"id":207,"type":208,"label":209,"file":113,"line":190,"wp_function":210},[222],{"from":203,"to":207,"sanitized":213},"low",{"summary":225,"deductions":226},"The \"simple-social-login\" v1.3.0 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of known CVEs, along with robust use of prepared statements for SQL queries and a high percentage of properly escaped output, are positive indicators. The plugin also demonstrates good practices by not performing file operations or external HTTP requests.  The presence of a nonce check is a positive sign for handling user-initiated actions, although the lack of capability checks on AJAX handlers and REST API routes is a notable omission.\n\nDespite the absence of critical or high-severity issues in the taint analysis, the presence of two \"flows with unsanitized paths\" warrants attention. While the severity is not explicitly stated as critical or high, it indicates potential areas where user-supplied data might not be adequately validated before being used in a way that could lead to vulnerabilities, such as path traversal. The plugin's attack surface, though currently zero, could expand with future features, and the lack of explicit capability checks on potential entry points leaves room for improvement.\n\nIn conclusion, the plugin has a solid foundation with good security practices in place. However, the identified \"flows with unsanitized paths\" and the absence of capability checks on AJAX handlers and REST API routes present minor risks that should be addressed to further harden the plugin's security. The lack of vulnerability history is a positive sign, suggesting a history of responsible development, but it doesn't negate the need to review the identified code signals.",[227,230,233,235],{"reason":228,"points":229},"Flows with unsanitized paths",8,{"reason":231,"points":232},"Capability checks missing on AJAX handlers",5,{"reason":234,"points":232},"Capability checks missing on REST API routes",{"reason":236,"points":237},"Output escaping not fully proper",3,"2026-03-16T20:38:54.758Z",{"wat":240,"direct":253},{"assetPaths":241,"generatorPatterns":246,"scriptPaths":247,"versionParams":248},[242,243,244,245],"\u002Fwp-content\u002Fplugins\u002Fsimple-social-login\u002Fassets\u002Fcss\u002Fbackend.css","\u002Fwp-content\u002Fplugins\u002Fsimple-social-login\u002Fassets\u002Fcss\u002Ffrontend.css","\u002Fwp-content\u002Fplugins\u002Fsimple-social-login\u002Fassets\u002Fjs\u002Fbackend.js","\u002Fwp-content\u002Fplugins\u002Fsimple-social-login\u002Fassets\u002Fjs\u002Ffrontend.js",[],[244,245],[249,250,251,252],"simple-social-login\u002Fassets\u002Fcss\u002Fbackend.css?ver=","simple-social-login\u002Fassets\u002Fcss\u002Ffrontend.css?ver=","simple-social-login\u002Fassets\u002Fjs\u002Fbackend.js?ver=","simple-social-login\u002Fassets\u002Fjs\u002Ffrontend.js?ver=",{"cssClasses":254,"htmlComments":258,"htmlAttributes":259,"restEndpoints":264,"jsGlobals":265,"shortcodeOutput":267},[255,256,257],"astoundify-simple-social-login-settings","astoundify-simple-social-login-nav-tabs","astoundify-simple-social-login-panel",[],[260,261,262,263],"name=\"astoundify_simple_social_login[display][]\"","name=\"astoundify_simple_social_login[providers][]\"","name=\"astoundify_simple_social_login\"","value=\"astoundify_simple_social_login\"",[],[266],"astoundify_simple_social_login_settings",[]]