[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fuzfaiwvQS7vEHu9rV_YjcqOoklsLF_incSi781zzIZk":3,"$fq4ZSEqNwEkfyxcdIga_c6FHY0xQp-zW0t1dbRomvJqI":116,"$fTQGcnkUHVEgHgxJn-a-fSH97eLcdFkb9bJ3Zl6Srjzs":121},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":11,"rating":11,"num_ratings":11,"last_updated":12,"tested_up_to":13,"requires_at_least":14,"requires_php":15,"tags":16,"homepage":17,"download_link":18,"security_score":19,"vuln_count":11,"unpatched_count":11,"last_vuln_date":20,"fetched_at":21,"discovery_status":22,"vulnerabilities":23,"developer":24,"crawl_stats":20,"alternatives":30,"analysis":31,"fingerprints":76},"syncranker-connector","SyncRanker Connector","3.2.0","Chandresh Pratap Singh","https:\u002F\u002Fprofiles.wordpress.org\u002Fchandresh666\u002F","\u003Cp>SyncRanker Connector is a lightweight WordPress plugin that establishes a secure bridge between your WordPress site and the SyncRanker AI SEO platform. Unlike manual integrations, this plugin provides an automated, one-click connection that leverages WordPress Application Passwords for secure API access.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>One-Click Setup\u003C\u002Fstrong> – No complex configuration or manual token generation needed\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Secure Authentication\u003C\u002Fstrong> – Uses WordPress Application Passwords for industry-standard security\u003C\u002Fli>\n\u003Cli>\u003Cstrong>System Health Checks\u003C\u002Fstrong> – Automatically detects HTTPS requirements and Application Password availability\u003C\u002Fli>\n\u003Cli>\u003Cstrong>AI-Powered Content Publishing\u003C\u002Fstrong> – Enable SyncRanker’s AI writers to publish directly to your site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Localized SEO Optimization\u003C\u002Fstrong> – Support automated SEO improvements across multiple languages and locales\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Page Building Integration\u003C\u002Fstrong> – Facilitate AI-driven page generation and optimization\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Once connected, your SyncRanker dashboard gains direct access to publish content, optimize pages, and manage SEO settings—all while your WordPress site maintains complete control and audit trails.\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin connects to the SyncRanker SaaS platform (https:\u002F\u002Fsyncranker.com) to synchronize content and manage SEO campaigns from the cloud.\u003C\u002Fp>\n\u003Cp>When an Administrator clicks the “Connect” button, the plugin securely sends the site URL and a newly generated Application Password to the SyncRanker app (https:\u002F\u002Fapp.syncranker.com) to establish an authorized connection. No personal user data, emails, or primary passwords are ever sent or tracked.\u003C\u002Fp>\n\u003Cp>This service is provided by SyncRanker.\u003Cbr \u002F>\nTerms of Service: https:\u002F\u002Fsyncranker.com\u002Fterms\u003Cbr \u002F>\nPrivacy Policy: https:\u002F\u002Fsyncranker.com\u002Fprivacy\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, feature requests, or to report bugs, please visit https:\u002F\u002Fsyncranker.com or check the plugin page on WordPress.org.\u003C\u002Fp>\n","Description: Securely connect your WordPress site to the SyncRanker AI SEO platform for automated content publishing and localized SEO optimization.",0,"2026-04-15T12:09:00.000Z","6.9.4","6.0","7.4",[],"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsyncranker-connector\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsyncranker-connector.3.2.0.zip",100,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":25,"display_name":7,"profile_url":8,"plugin_count":26,"total_installs":11,"avg_security_score":19,"avg_patch_time_days":27,"trust_score":28,"computed_at":29},"chandresh666",1,30,94,"2026-05-20T02:11:51.033Z",[],{"attackSurface":32,"codeSignals":62,"taintFlows":71,"riskAssessment":72,"analyzedAt":75},{"hooks":33,"ajaxHandlers":58,"restRoutes":59,"shortcodes":60,"cronEvents":61,"entryPointCount":11,"unprotectedCount":11},[34,40,44,47,51,55],{"type":35,"name":36,"callback":37,"file":38,"line":39},"filter","rest_allowed_cors_headers","closure","syncranker-connector.php",33,{"type":41,"name":42,"callback":37,"file":38,"line":43},"action","rest_api_init",43,{"type":41,"name":45,"callback":37,"file":38,"line":46},"wp_head",62,{"type":35,"name":48,"callback":37,"priority":49,"file":38,"line":50},"document_title_parts",10,78,{"type":41,"name":52,"callback":53,"file":38,"line":54},"admin_menu","add_admin_menu",101,{"type":35,"name":56,"callback":37,"file":38,"line":57},"allowed_redirect_hosts",224,[],[],[],[],{"dangerousFunctions":63,"sqlUsage":64,"outputEscaping":66,"fileOperations":11,"externalRequests":11,"nonceChecks":26,"capabilityChecks":69,"bundledLibraries":70},[],{"prepared":11,"raw":11,"locations":65},[],{"escaped":67,"rawEcho":11,"locations":68},26,[],2,[],[],{"summary":73,"deductions":74},"The syncranker-connector plugin v3.2.0 exhibits a strong security posture based on the provided static analysis. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events with exposed entry points significantly limits the potential attack surface. Furthermore, the code demonstrates excellent development practices with 100% of SQL queries using prepared statements and all output being properly escaped. The presence of nonce and capability checks further solidifies its defenses. The vulnerability history is equally positive, with no recorded CVEs, indicating a lack of known exploitable flaws. This clean history suggests a commitment to security by the developers or a lack of public scrutiny for past vulnerabilities.\n\nWhile the static analysis reveals no critical or high-severity issues within the code, and the vulnerability history is clean, it's important to acknowledge that static analysis has limitations and cannot detect all types of vulnerabilities, especially those related to business logic flaws or complex chain exploits. The zero taint flows analyzed mean that no potentially dangerous data flow paths were identified as unsanitized. The complete lack of dangerous functions, file operations, and external HTTP requests further enhances its security profile. Overall, this plugin appears to be well-secured, with the primary concern being the theoretical possibility of undiscovered vulnerabilities not caught by static analysis.",[],"2026-04-16T14:25:01.128Z",{"wat":77,"direct":86},{"assetPaths":78,"generatorPatterns":81,"scriptPaths":82,"versionParams":83},[79,80],"\u002Fwp-content\u002Fplugins\u002Fsyncranker-connector\u002Fadmin\u002Fcss\u002Fsyncranker-connector-admin.css","\u002Fwp-content\u002Fplugins\u002Fsyncranker-connector\u002Fadmin\u002Fjs\u002Fsyncranker-connector-admin.js",[],[80],[84,85],"syncranker-connector\u002Fadmin\u002Fcss\u002Fsyncranker-connector-admin.css?ver=","syncranker-connector\u002Fadmin\u002Fjs\u002Fsyncranker-connector-admin.js?ver=",{"cssClasses":87,"htmlComments":89,"htmlAttributes":108,"restEndpoints":110,"jsGlobals":112,"shortcodeOutput":115},[88],"dashicons-cloud-upload",[90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105,106,107],"\u003C!-- Security: Exit if accessed directly -->","\u003C!-- Define Plugin Constants -->","\u003C!-- CORS Fix (Essential for the SyncRanker Writer to publish) -->","\u003C!-- SyncRanker Custom SEO Meta Registration -->","\u003C!-- Opens the WordPress REST API to receive custom SEO data from the SyncRanker App. -->","\u003C!-- THIS IS THE FIX: Explicitly tell WP that authorized users can edit this via API -->","\u003C!-- SyncRanker Custom SEO Output -->","\u003C!-- Injects the Meta Description into the \u003Chead> if no other SEO plugin is active. -->","\u003C!-- SyncRanker Custom Title Output -->","\u003C!-- Overrides the native \u003Ctitle> tag with the SyncRanker AI SEO Title. -->","\u003C!-- Main Plugin Class -->","\u003C!-- Constructor - Initialize plugin hooks -->","\u003C!-- Add admin menu page -->","\u003C!-- Render admin page -->","\u003C!-- Check 1: HTTPS (Required for App Passwords usually) -->","\u003C!-- Check 2: Application Passwords Availability -->","\u003C!-- WordPress loads this natively in admin context -->","\u003C!-- Process form submission with nonce verification -->",[109],"data-nonce",[111],"\u002Fwp-json\u002Fwp\u002Fv2\u002Fposts",[113,114],"SR_CONNECTOR_VERSION","SR_CONNECTOR_URL",[],{"error":117,"url":118,"statusCode":119,"statusMessage":120,"message":120},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fsyncranker-connector\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":26,"versions":122},[123],{"version":6,"download_url":18,"svn_tag_url":124,"released_at":20,"has_diff":125,"diff_files_changed":126,"diff_lines":20,"trac_diff_url":20,"vulnerabilities":127,"is_current":117},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fsyncranker-connector\u002Ftags\u002F3.2.0\u002F",false,[],[]]