[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f7X32SPHCqdKjSwESh4D4OVCkWWk0NTr5IxaBP-1Euwc":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":76,"fingerprints":200},"softinn-booking-engine","Softinn Hotel Booking Engine","2.1.6","Softinn","https:\u002F\u002Fprofiles.wordpress.org\u002Fsoftinn\u002F","\u003Cp>This plugin integrates the Softinn Hotel Booking Engine with your WordPress website. With just a few simple steps, you can install this plugin and unlock the power of room booking on your WordPress website. \u003C\u002Fp>\n\u003Cp>Softinn hotel booking engine is built for boutique hotels in Malaysia, Indonesia, and the Philippines. It is customizable, and it supports local payment gateways like iPay88, Midtrans, eGHL, Doku, and others.\u003C\u002Fp>\n\u003Cp>This plugin requires a Softinn Hotel Booking Engine account. If you don’t have one, you may apply for one on the official website (www.mysoftinn.com).\u003C\u002Fp>\n\u003Cp>The Softinn Hotel Booking Engine WordPress plugin is a WP plugin that integrates with channel managers like Staah, SiteMinder, and Softinn Channel Managers. It has support for rate plans, promotion codes, cancellation policies, etc.\u003C\u002Fp>\n\u003Cp>Link to the service\u003Cbr \u002F>\nhttps:\u002F\u002Fwww.mysoftinn.com\u002F\u003C\u002Fp>\n\u003Cp>Link to apply for Trial account\u003Cbr \u002F>\nhttps:\u002F\u002Fpage.mysoftinn.com\u002Fsoftinn-signup-form\u003C\u002Fp>\n\u003Cp>Link to the terms of service\u003Cbr \u002F>\nhttps:\u002F\u002Fpage.mysoftinn.com\u002Fterms-of-service\u003C\u002Fp>\n","Unlock room booking power on your WP site with Softinn Hotel Booking Engine, tailored for boutique hotels in Southeast Asia.",10,2631,100,2,"2024-05-23T03:56:00.000Z","6.4.8","4.2.0","5.6",[20,21,22],"hotel-booking-engine","hotel-reservation-system","softinn","https:\u002F\u002Fwordpress.org\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsoftinn-booking-engine.2.1.6.zip",92,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":22,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},1,30,88,"2026-04-04T01:23:05.654Z",[36,56],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":11,"downloaded":44,"rating":26,"num_ratings":26,"last_updated":45,"tested_up_to":46,"requires_at_least":47,"requires_php":48,"tags":49,"homepage":54,"download_link":55,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"astro-booking-engine","Astro Booking Engine","1.4.0","Alian Schiavoncini","https:\u002F\u002Fprofiles.wordpress.org\u002Falian\u002F","\u003Cp>Display the \u003Cstrong>booking engine form\u003C\u002Fstrong> through the use of the shortcode \u003Cstrong>[astro-booking-engine]\u003C\u002Fstrong>.\u003Cbr \u002F>\nIncludes the most popular booking engine providers.\u003Cbr \u002F>\nYou need to have a contract with one of the booking engine providers listed below and configure the plugin settings.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>List of configurable booking engine providers in alphabetical order\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.hotelcinquestelle.cloud\u002Fen\u002F\" rel=\"nofollow ugc\">5Stelle\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.iperbooking.com\u002F\" rel=\"nofollow ugc\">Iperbooking\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.passepartout.net\u002F\" rel=\"nofollow ugc\">Passepartout\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.simplebooking.travel\u002F\" rel=\"nofollow ugc\">Simple booking\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.verticalbooking.com\u002Fen\u002Fhome\u002F\" rel=\"nofollow ugc\">Vertical booking\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>New booking engine providers are welcome!\u003C\u002Fstrong>\u003Cbr \u002F>\nIf your booking engine provider is not on the list, you can request its inclusion by sending an email to \u003Ca href=\"mailto:info@astrothemes.com\" rel=\"nofollow ugc\">info@astrothemes.com\u003C\u002Fa> with the provider documentation if you have.\u003C\u002Fp>\n\u003Cp>This plugin is compatible with translation plugins such as WPML and Loco Translate.\u003C\u002Fp>\n\u003Ch3>Wordefence vendor verification key\u003C\u002Fh3>\n\u003Cp>gsphudo7by90lzwdlihyerqxbzj6jiln\u003C\u002Fp>\n","Use shortcode [astro-booking-engine] to display the booking form. Configure with 5Stelle, Iperbooking, Passepartout, Simple booking, or Vertical booki &hellip;",1413,"2025-10-31T17:25:00.000Z","6.8.5","5.2","7.4",[50,51,52,20,53],"booking-engine","booking-widget","hotel-booking","hotel-widget","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fastro-booking-engine","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fastro-booking-engine.1.4.0.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":11,"downloaded":64,"rating":26,"num_ratings":26,"last_updated":65,"tested_up_to":66,"requires_at_least":67,"requires_php":68,"tags":69,"homepage":73,"download_link":74,"security_score":75,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"bookwize-integrated-cinnamon","Bookwize Integrated Cinnamon","2.5","Bookwize","https:\u002F\u002Fprofiles.wordpress.org\u002Fbookwize\u002F","\u003Cp>This Plugin will help you integrate easily Bookwize Hotel Booking Engine in your WordPress hotel website. Bookwize Integrated Cinnamon displays a form for users to choose their travel preferences and check the availability and rates of your hotel.\u003Cbr \u002F>\nWebsite visitors are able to complete a reservation without living your hotel website! In order to use the plugin you will need to have an active subscription with Bookwize Hotel Booking System and the necessary credentials provided by Bookwize Support team.\u003Cbr \u002F>\nAn SSL Certificate is also required.\u003C\u002Fp>\n\u003Ch3>Enable payment gateway JCC redirect\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Go to the settings page of the plugin.\u003C\u002Fli>\n\u003Cli>Enable the checkbox “Enable JCC” and then save.\u003C\u002Fli>\n\u003Cli>Add the JCC credentials that you have received from JCC and then save.\u003C\u002Fli>\n\u003Cli>Create a new page and select Page Type “Bookwize Integrated Redirect”.\u003C\u002Fli>\n\u003Cli>Add the shortcode [jcc_redirect_page].\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Important — Plugin pages should have ssl.\u003C\u002Fp>\n","Integrate Bookwize Hotel Booking Engine in your WordPress website and let visitors check availability and rates and make a booking directly from your  &hellip;",3140,"2021-10-21T10:10:00.000Z","5.8.13","4.0.1","",[70,71,52,20,72],"booking","hotel","hotel-booking-system","https:\u002F\u002Fwww.bookwize.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbookwize-integrated-cinnamon.zip",85,{"attackSurface":77,"codeSignals":109,"taintFlows":153,"riskAssessment":190,"analyzedAt":199},{"hooks":78,"ajaxHandlers":101,"restRoutes":102,"shortcodes":103,"cronEvents":108,"entryPointCount":31,"unprotectedCount":26},[79,85,89,93,97],{"type":80,"name":81,"callback":82,"file":83,"line":84},"action","admin_enqueue_scripts","softinn_enqueue_back","softinn-booking-engine.php",47,{"type":80,"name":86,"callback":87,"file":83,"line":88},"wp_enqueue_scripts","softinn_enqueue_front",48,{"type":80,"name":90,"callback":91,"file":83,"line":92},"admin_head","softinn_custom_admin_panel",49,{"type":80,"name":94,"callback":95,"file":83,"line":96},"widgets_init","closure",62,{"type":80,"name":98,"callback":99,"file":83,"line":100},"admin_menu","softinnBE_plugin_menu_setup",65,[],[],[104],{"tag":105,"callback":106,"file":83,"line":107},"softinnBE","iframe_plugin_add_shortcode_cb",60,[],{"dangerousFunctions":110,"sqlUsage":111,"outputEscaping":113,"fileOperations":26,"externalRequests":26,"nonceChecks":31,"capabilityChecks":14,"bundledLibraries":148},[],{"prepared":26,"raw":26,"locations":112},[],{"escaped":114,"rawEcho":115,"locations":116},12,16,[117,121,123,125,126,128,130,132,134,137,139,141,143,145,146,147],{"file":118,"line":119,"context":120},"inc\\softinn-calendarwidget.php",80,"raw output",{"file":118,"line":122,"context":120},83,{"file":118,"line":124,"context":120},86,{"file":118,"line":33,"context":120},{"file":118,"line":127,"context":120},90,{"file":118,"line":129,"context":120},111,{"file":118,"line":131,"context":120},112,{"file":118,"line":133,"context":120},113,{"file":135,"line":136,"context":120},"templates\\admin.php",13,{"file":135,"line":138,"context":120},46,{"file":135,"line":140,"context":120},55,{"file":135,"line":142,"context":120},64,{"file":135,"line":144,"context":120},72,{"file":135,"line":144,"context":120},{"file":135,"line":119,"context":120},{"file":135,"line":119,"context":120},[149],{"name":150,"version":151,"knownCves":152},"jQuery","3.5.0",[],[154,179],{"entryPoint":155,"graph":156,"unsanitizedCount":26,"severity":178},"admin_index (softinn-booking-engine.php:96)",{"nodes":157,"edges":174},[158,163,168,172],{"id":159,"type":160,"label":161,"file":83,"line":162},"n0","source","$_POST['softinn_hotel_id']",107,{"id":164,"type":165,"label":166,"file":83,"line":162,"wp_function":167},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":169,"type":160,"label":170,"file":83,"line":171},"n2","$_POST['softinn_theme_color']",108,{"id":173,"type":165,"label":166,"file":83,"line":171,"wp_function":167},"n3",[175,177],{"from":159,"to":164,"sanitized":176},true,{"from":169,"to":173,"sanitized":176},"low",{"entryPoint":180,"graph":181,"unsanitizedCount":26,"severity":178},"\u003Csoftinn-booking-engine> (softinn-booking-engine.php:0)",{"nodes":182,"edges":187},[183,184,185,186],{"id":159,"type":160,"label":161,"file":83,"line":162},{"id":164,"type":165,"label":166,"file":83,"line":162,"wp_function":167},{"id":169,"type":160,"label":170,"file":83,"line":171},{"id":173,"type":165,"label":166,"file":83,"line":171,"wp_function":167},[188,189],{"from":159,"to":164,"sanitized":176},{"from":169,"to":173,"sanitized":176},{"summary":191,"deductions":192},"The \"softinn-booking-engine\" v2.1.6 plugin demonstrates a generally good security posture based on the provided static analysis. The absence of known vulnerabilities in its history is a significant strength, suggesting a history of responsible development and maintenance. The plugin also implements basic security measures like nonce and capability checks, and importantly, all SQL queries are prepared, mitigating the risk of SQL injection.  However, there are areas for concern. The code analysis reveals that a significant portion (57%) of output is not properly escaped. While there are no direct taint flows indicating immediate critical or high risks in this specific version, unescaped output is a common precursor to Cross-Site Scripting (XSS) vulnerabilities, especially when user-provided data is involved. The plugin also exposes a shortcode, which, although not listed as unprotected in the entry points, could become a vector if not handled with care regarding user input. A more thorough review of the shortcode's implementation would be prudent.",[193,196],{"reason":194,"points":195},"Unescaped output detected (43% properly escaped)",6,{"reason":197,"points":198},"Shortcode found, potential XSS vector if not sanitized",4,"2026-03-17T01:20:26.201Z",{"wat":201,"direct":217},{"assetPaths":202,"generatorPatterns":212,"scriptPaths":213,"versionParams":216},[203,204,205,206,207,208,209,210,211],"\u002Fwp-content\u002Fplugins\u002Fsoftinn-booking-engine\u002Fassets\u002Firis-init.js","\u002Fwp-content\u002Fplugins\u002Fsoftinn-booking-engine\u002Fassets\u002Fiframe.css","\u002Fwp-content\u002Fplugins\u002Fsoftinn-booking-engine\u002Fassets\u002Fjquery-ui.min.css","\u002Fwp-content\u002Fplugins\u002Fsoftinn-booking-engine\u002Fassets\u002Fall.css","\u002Fwp-content\u002Fplugins\u002Fsoftinn-booking-engine\u002Fassets\u002Fjquery-3.5.0.min.js","\u002Fwp-content\u002Fplugins\u002Fsoftinn-booking-engine\u002Fassets\u002Fjquery-ui.min.js","\u002Fwp-content\u002Fplugins\u002Fsoftinn-booking-engine\u002Fassets\u002FiframeResizer.min.js","\u002Fwp-content\u002Fplugins\u002Fsoftinn-booking-engine\u002Fassets\u002Fdatepicker.js","\u002Fwp-content\u002Fplugins\u002Fsoftinn-booking-engine\u002Fassets\u002Fiframe.js",[],[214,215],"https:\u002F\u002Fcdn.jsdelivr.net\u002Fnpm\u002Ftailwindcss@2.2.19\u002Fdist\u002Ftailwind.min.css","\u002F\u002Fmaxcdn.bootstrapcdn.com\u002Fbootstrap\u002F4.0.0\u002Fjs\u002Fbootstrap.min.js",[],{"cssClasses":218,"htmlComments":219,"htmlAttributes":220,"restEndpoints":222,"jsGlobals":223,"shortcodeOutput":224},[4],[],[221],"autosize",[],[],[225],"\u003Cp>Please insert your hotel ID in Softinn BE plugin setting.\u003C\u002Fp>"]