[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fVVwr2H2F-ILoHcT70BEGDUTw-zwSPih2SpBrUDH_PSs":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":67,"crawl_stats":36,"alternatives":70,"analysis":162,"fingerprints":649},"trustmate-io-integration-for-woocommerce","TrustMate.io – WooCommerce integration","1.16.0","michalzagdan","https:\u002F\u002Fprofiles.wordpress.org\u002Fmichalzagdan\u002F","\u003Cp>TrustMate – Reviews for your shop and products at you WooCommerce site. Generate valuable traffic and profit more than others!\u003C\u002Fp>\n\u003Ch3>How does TrustMate work?\u003C\u002Fh3>\n\u003Cp>TrustMate is an innovative commerce marketing platform that supports businesses of various scales in gathering\u003Cbr \u002F>\nand displaying customer reviews, images, and questions and answers at every stage of the customer’s purchasing process.\u003Cbr \u002F>\nBy leveraging these elements across multiple social platforms, TrustMate empowers brands to establish buyer confidence,\u003Cbr \u002F>\nenhance website traffic, and boost conversion rates.\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FU0E-IFINyY0?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>Enhance the online presence of your website and boost your conversion rate by harnessing the power of client reviews\u003Cbr \u002F>\nthrough TrustMate. By utilizing TrustMate, you can achieve the following:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Maximize your returns compared to equivalent investments in online advertising.\u003C\u002Fli>\n\u003Cli>Attract more committed and decisive clients.\u003C\u002Fli>\n\u003Cli>Cultivate a strong and reputable brand image in the online sphere.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Trusted by renowned brands such as Sizeer, Decathlon, 4F, Wittchen, NewBalance, Adidas and many others, TrustMate offers\u003Cbr \u002F>\nyou the following benefits:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Company and product reviews that bolster your reputation.\u003C\u002Fli>\n\u003Cli>The esteemed Trustworthy Company Certificate.\u003C\u002Fli>\n\u003Cli>A prominent Business Card on TrustMate.\u003C\u002Fli>\n\u003Cli>Widgets featuring company and product reviews, enabling you to garner stars in Google search results.\u003C\u002Fli>\n\u003Cli>Increased website traffic for your store.\u003C\u002Fli>\n\u003Cli>Acquiring new clients through social proof.\u003C\u002Fli>\n\u003Cli>The ability to upload existing product reviews.\u003C\u002Fli>\n\u003Cli>Redirecting traffic from gathered reviews back to your website, further expanding your online reach.\u003C\u002Fli>\n\u003C\u002Ful>\n","TrustMate - Reviews for your shop and products at you WooCommerce site. Generate valuable traffic and profit more than others!",3000,50235,80,10,"2026-02-10T07:43:00.000Z","6.9.4","",[19,20,21,22],"opinions","products","reviews","surveys","https:\u002F\u002Ftrustmate.io","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftrustmate-io-integration-for-woocommerce.1.16.0.zip",75,3,1,"2025-09-05 00:00:00","2026-03-15T15:16:48.613Z",[31,45,60],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":28,"updated_date":42,"references":43,"days_to_patch":36},"CVE-2025-58802","trustmateio-woocommerce-integration-cross-site-request-forgery","TrustMate.io – WooCommerce integration \u003C= 1.14.0 - Cross-Site Request Forgery","The TrustMate.io – WooCommerce integration plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.14.0. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to perform an unauthorized action granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=1.14.0","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2025-09-09 22:21:42",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F36dd9cbd-dac5-46a4-9593-1dce77ea731a?source=api-prod",{"id":46,"url_slug":47,"title":48,"description":49,"plugin_slug":4,"theme_slug":36,"affected_versions":50,"patched_in_version":51,"severity":38,"cvss_score":52,"cvss_vector":53,"vuln_type":54,"published_date":55,"updated_date":56,"references":57,"days_to_patch":59},"WF-b6bfe229-88a9-45bf-8321-0afe52797c46-trustmate-io-integration-for-woocommerce","trustmateio-integration-for-woocommerce-authenticated-subscriber-arbitrary-settings-update","TrustMate.io integration for WooCommerce \u003C 1.8.12 - Authenticated (Subscriber+) Arbitrary Settings Update","The TrustMate.io integration for WooCommerce plugin for WordPress is vulnerable to Arbitrary Settings Update via the 'save_checkbox' AJAX action in versions up to, and including, 1.8.11. This makes it possible for authenticated Subscriber+ attackers to update otherwise restricted plugin settings and perform a subsequent stored XSS attack within the vulnerable service.","\u003C=1.8.11","1.8.12",6.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:L","Missing Authorization","2022-01-03 00:00:00","2024-01-22 19:56:02",[58],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fb6bfe229-88a9-45bf-8321-0afe52797c46?source=api-prod",750,{"id":61,"url_slug":62,"title":63,"description":64,"plugin_slug":4,"theme_slug":36,"affected_versions":50,"patched_in_version":51,"severity":38,"cvss_score":52,"cvss_vector":53,"vuln_type":54,"published_date":55,"updated_date":56,"references":65,"days_to_patch":59},"WF-cc912ace-65d9-4833-a3ad-dc5d37989269-trustmate-io-integration-for-woocommerce","trustmateio-integration-for-woocommerce-authenticated-subscriber-arbitrary-blog-option-update","TrustMate.io integration for WooCommerce \u003C 1.8.12 - Authenticated (Subscriber+) Arbitrary Blog Option Update","The TrustMate.io integration for WooCommerce plugin for WordPress is vulnerable to Blog Option Update via the 'save_checkbox' AJAX action in versions up to, and including, 1.8.12. This makes it possible for authenticated Subscriber+ attackers to update the vulnerable site's options.",[66],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fcc912ace-65d9-4833-a3ad-dc5d37989269?source=api-prod",{"slug":7,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":59,"trust_score":68,"computed_at":69},62,"2026-04-04T10:40:38.211Z",[71,91,112,128,144],{"slug":72,"name":73,"version":74,"author":75,"author_profile":76,"description":77,"short_description":78,"active_installs":79,"downloaded":80,"rating":81,"num_ratings":81,"last_updated":82,"tested_up_to":83,"requires_at_least":17,"requires_php":84,"tags":85,"homepage":88,"download_link":89,"security_score":90,"vuln_count":81,"unpatched_count":81,"last_vuln_date":36,"fetched_at":29},"auto-approve-product-reviews","Auto Approve Product reviews","1.1.0","Andrei","https:\u002F\u002Fprofiles.wordpress.org\u002Fandreiigna\u002F","\u003Cp>This is the plugin to use if your WooCommerce store gets so many reviews that you don’t have time to review them all!\u003C\u002Fp>\n\u003Cp>The plugin automatically approves 5 ⭐️ reviews, and has options to change the minimum rating that can be auto-approved.\u003C\u002Fp>\n\u003Cp>If the review is marked as spam by Akismet or another spam checking tool, the review will not be automatically approved. It will stay in queue for manual checking.\u003C\u002Fp>\n\u003Cp>Perfect for any WooCommerce shop\u002Fstore\u003C\u002Fp>\n","Auto-approve product reviews with a minimum rating chosen by you",100,3295,0,"2024-09-10T14:04:00.000Z","6.6.5","5.6",[20,21,86,87],"shop","woocommerce","https:\u002F\u002Flayered.store\u002Fplugins\u002Fauto-approve-product-reviews","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-approve-product-reviews.1.1.0.zip",92,{"slug":92,"name":93,"version":94,"author":95,"author_profile":96,"description":97,"short_description":98,"active_installs":99,"downloaded":100,"rating":79,"num_ratings":101,"last_updated":102,"tested_up_to":103,"requires_at_least":104,"requires_php":105,"tags":106,"homepage":109,"download_link":110,"security_score":111,"vuln_count":81,"unpatched_count":81,"last_vuln_date":36,"fetched_at":29},"wc-product-tabs-plus","WC Product Tabs Plus","1.1.1","Wooninjas","https:\u002F\u002Fprofiles.wordpress.org\u002Fwooninjas\u002F","\u003Cp>WC Product Tabs Plus (WPTP) is an easy to use and intuitive tool to creating, ordering, hiding and managing your own WooCommerce Product tabs. These tabs can contain any content you wish, including shortcodes, and can be Global i.e. displayed on all Products, or specific to just one Product.\u003C\u002Fp>\n\u003Ch4>Features:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Support for Global Tabs\u003C\u002Fli>\n\u003Cli>Add product specific custom tabs alongside Global tabs on Product edit screen\u003C\u002Fli>\n\u003Cli>Option to hide custom\u002FGlobal Tabs from a product\u003C\u002Fli>\n\u003Cli>Full WYSIWYG editor with Media upload\u003C\u002Fli>\n\u003Cli>Supports shortcodes\u003C\u002Fli>\n\u003Cli>Sortable (drag\u002Fdrop ordering)\u003C\u002Fli>\n\u003Cli>Filter Hooks to customize title\u002Fcontent html\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please see the contextual help tabs on admin screen for Global Tab (view\u002Fedit screen) and Product screen (edit screen only) for more info.\u003C\u002Fp>\n","Advance tab management for WooCommerce Product tabs",60,3716,6,"2022-07-04T15:19:00.000Z","6.0.0","5.1","7.2",[107,20,21,108,87],"description","tabs","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwc-product-tabs-plus\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-product-tabs-plus.zip",85,{"slug":113,"name":114,"version":115,"author":116,"author_profile":117,"description":118,"short_description":119,"active_installs":14,"downloaded":120,"rating":81,"num_ratings":81,"last_updated":121,"tested_up_to":122,"requires_at_least":104,"requires_php":105,"tags":123,"homepage":126,"download_link":127,"security_score":111,"vuln_count":81,"unpatched_count":81,"last_vuln_date":36,"fetched_at":29},"getreview","GetReview","2.0","refericon","https:\u002F\u002Fprofiles.wordpress.org\u002Frefericon\u002F","\u003Cp>Collect reviews from customers who made purchases in the store! Reward them for opinions with a photo. Show reviews on product page.\u003C\u002Fp>\n","Collect reviews from customers who made purchases in the store! Reward them for opinions with a photo. Show reviews on product page.",1203,"2020-07-08T14:43:00.000Z","5.4.19",[19,21,124,125,87],"social-proof","testimonials","https:\u002F\u002Fgetreview.pl","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgetreview.zip",{"slug":129,"name":130,"version":131,"author":132,"author_profile":133,"description":134,"short_description":135,"active_installs":14,"downloaded":136,"rating":79,"num_ratings":27,"last_updated":137,"tested_up_to":138,"requires_at_least":139,"requires_php":17,"tags":140,"homepage":142,"download_link":143,"security_score":111,"vuln_count":81,"unpatched_count":81,"last_vuln_date":36,"fetched_at":29},"inline-review","Inline Review","1.2.6","TonyW","https:\u002F\u002Fprofiles.wordpress.org\u002Fnodewerx\u002F","\u003Cp>Easily place reviews into a post using up to 10 attributes. Reviews include scores for each attribute, a average of all scores, and a short summary section.\u003C\u002Fp>\n\u003Cp>The review box can be placed at the top or bottom of a post. Placing the review box via a shortcode is also supported.\u003C\u002Fp>\n\u003Cp>You can override the embedded styles by selecting the “use my own styles” option from the options menu.\u003C\u002Fp>\n\u003Cp>Currently only point based scores are supported.\u003C\u002Fp>\n\u003Cp>The plugin options are located under the main “Settings” menu in the WordPress admin menu.\u003C\u002Fp>\n","Simple inline reviews that you can place in a post.",2011,"2014-11-15T19:03:00.000Z","4.0.38","3.6.0",[20,141,21],"review","http:\u002F\u002Ftonyw.io\u002Finline-review","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finline-review.1.2.6.zip",{"slug":145,"name":146,"version":147,"author":148,"author_profile":149,"description":150,"short_description":151,"active_installs":81,"downloaded":152,"rating":81,"num_ratings":81,"last_updated":153,"tested_up_to":154,"requires_at_least":155,"requires_php":156,"tags":157,"homepage":160,"download_link":161,"security_score":79,"vuln_count":81,"unpatched_count":81,"last_vuln_date":36,"fetched_at":29},"kommercely-disable-product-reviews","Kommercely Disable Product Reviews","1.0.2","Awais Altaf","https:\u002F\u002Fprofiles.wordpress.org\u002Fkommercely\u002F","\u003Cp>\u003Cstrong>Kommercely Disable Product Reviews\u003C\u002Fstrong> is a super lightweight plugin (less than 3KB) that completely removes the review functionality from your WooCommerce store. Perfect for stores that don’t need customer reviews or want to use alternative review systems.\u003C\u002Fp>\n\u003Ch3>🚀 Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Intuitive Admin Settings\u003C\u002Fstrong> – Beautiful, user-friendly settings page with bulk controls\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Granular Control\u003C\u002Fstrong> – Enable\u002Fdisable individual review features or use master switch\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Remove Reviews Tab\u003C\u002Fstrong> – Completely removes the “Reviews” tab from all product pages\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Disable Review Settings\u003C\u002Fstrong> – Hides the “Enable reviews” option from product advanced settings\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Remove Meta Boxes\u003C\u002Fstrong> – Removes the “Reviews” meta box from product edit screens\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Remove Widgets\u003C\u002Fstrong> – Removes both dashboard and frontend “Recent Reviews” widgets\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Universal Compatibility\u003C\u002Fstrong> – Works with all product types (Simple, Variable, Virtual, Downloadable)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Modern UI\u002FUX\u003C\u002Fstrong> – Attractive, responsive admin interface with smooth animations\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightweight\u003C\u002Fstrong> – Less than 3KB plugin size for optimal performance\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reversible\u003C\u002Fstrong> – Simply deactivate the plugin to restore all review functionality\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No Database Changes\u003C\u002Fstrong> – Doesn’t modify your existing reviews or database structure\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🔧 What It Does\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>Admin Settings Page:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Beautiful, intuitive settings interface under WooCommerce menu\u003C\u002Fli>\n\u003Cli>Bulk controls to enable\u002Fdisable all features at once\u003C\u002Fli>\n\u003Cli>Individual toggles for granular control\u003C\u002Fli>\n\u003Cli>Modern UI with smooth animations and visual feedback\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Frontend Changes:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Removes the “Reviews” tab from all product pages\u003C\u002Fli>\n\u003Cli>Prevents review submission forms from displaying\u003C\u002Fli>\n\u003Cli>Removes WooCommerce Recent Reviews widgets from sidebars\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Admin Changes:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Hides “Enable reviews” checkbox in product advanced settings\u003C\u002Fli>\n\u003Cli>Removes reviews meta box from product edit screens\u003C\u002Fli>\n\u003Cli>Removes “Recent Reviews” dashboard widget\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Complete Compatibility:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Works with all themes and WooCommerce extensions\u003C\u002Fli>\n\u003Cli>Compatible with all product types\u003C\u002Fli>\n\u003Cli>No conflicts with other plugins\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>🎯 Perfect For\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Stores that don’t want customer reviews\u003C\u002Fli>\n\u003Cli>B2B stores where reviews aren’t relevant\u003C\u002Fli>\n\u003Cli>Stores using external review systems\u003C\u002Fli>\n\u003Cli>Clean product pages without review clutter\u003C\u002Fli>\n\u003Cli>Testing environments where reviews aren’t needed\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>💪 Why Choose This Plugin?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>One-Click Solution\u003C\u002Fstrong> – Install, activate, and reviews are gone\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No Configuration\u003C\u002Fstrong> – Works immediately after activation\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Performance Optimized\u003C\u002Fstrong> – Minimal code, maximum efficiency\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Standards\u003C\u002Fstrong> – Follows all WordPress coding standards\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Regular Updates\u003C\u002Fstrong> – Maintained by WooCommerce experts\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🔄 Easy Reversal\u003C\u002Fh3>\n\u003Cp>Simply deactivate the plugin to restore all WooCommerce review functionality. No data is lost, and all your existing reviews remain intact in the database.\u003C\u002Fp>\n\u003Ch3>🏢 About Kommercely\u003C\u002Fh3>\n\u003Cp>We’re WooCommerce specialists creating tools that make eCommerce better.\u003C\u002Fp>\n\u003Ch3>📞 Support & Documentation\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Support:\u003C\u002Fstrong> Use WordPress.org forums for support questions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Documentation:\u003C\u002Fstrong> Check the plugin settings page for detailed options\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Issues:\u003C\u002Fstrong> Report bugs through WordPress.org support forums\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Technical Details\u003C\u002Fh3>\n\u003Ch3>Hooks and Filters Used\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ccode>woocommerce_product_tabs\u003C\u002Fcode> – Removes reviews tab\u003C\u002Fli>\n\u003Cli>\u003Ccode>woocommerce_product_data_tabs\u003C\u002Fcode> – Removes reviews data tab\u003C\u002Fli>\n\u003Cli>\u003Ccode>add_meta_boxes\u003C\u002Fcode> – Removes reviews meta boxes\u003C\u002Fli>\n\u003Cli>\u003Ccode>comments_open\u003C\u002Fcode> – Disables comments for products\u003C\u002Fli>\n\u003Cli>\u003Ccode>wp_dashboard_setup\u003C\u002Fcode> – Removes dashboard widgets\u003C\u002Fli>\n\u003Cli>\u003Ccode>widgets_init\u003C\u002Fcode> – Unregisters review widgets\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Performance\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Plugin size: Less than 3KB\u003C\u002Fli>\n\u003Cli>Database queries: 0 additional queries\u003C\u002Fli>\n\u003Cli>Memory usage: Negligible impact\u003C\u002Fli>\n\u003Cli>Page load time: No impact (actually improves by removing review code)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Security\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>All user inputs are sanitized and validated\u003C\u002Fli>\n\u003Cli>Follows WordPress security best practices\u003C\u002Fli>\n\u003Cli>No direct file access allowed\u003C\u002Fli>\n\u003Cli>Capability checks for admin functions\u003C\u002Fli>\n\u003C\u002Ful>\n","Completely disable WooCommerce product reviews with one click. Remove reviews tab, meta boxes, widgets, and all review functionality.",202,"2025-09-03T12:14:00.000Z","6.8.5","5.0","7.4",[158,20,159,21,87],"disable","remove","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fkommercely-disable-product-reviews\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fkommercely-disable-product-reviews.1.0.2.zip",{"attackSurface":163,"codeSignals":275,"taintFlows":598,"riskAssessment":636,"analyzedAt":648},{"hooks":164,"ajaxHandlers":266,"restRoutes":272,"shortcodes":273,"cronEvents":274,"entryPointCount":27,"unprotectedCount":81},[165,170,174,179,183,187,190,193,196,199,203,207,210,214,216,219,222,225,228,230,234,238,242,245,249,253,256,261],{"type":166,"name":167,"callback":168,"file":169,"line":26},"action","init","register_styles","css\\register_styles.php",{"type":166,"name":171,"callback":172,"file":173,"line":26},"admin_head","trustmate_styles","styles.php",{"type":166,"name":175,"callback":176,"file":177,"line":178},"admin_enqueue_scripts","trustmate_enqueue_bootstrap","trustmate-plugin.php",64,{"type":166,"name":180,"callback":181,"file":177,"line":182},"admin_menu","trustmate_create_settings_page",65,{"type":166,"name":184,"callback":185,"file":177,"line":186},"wp_footer","trustmate_render_widget_alpaca",66,{"type":166,"name":184,"callback":188,"file":177,"line":189},"trustmate_render_widget_badger2",67,{"type":166,"name":184,"callback":191,"file":177,"line":192},"trustmate_render_widget_muskrat2",68,{"type":166,"name":184,"callback":194,"file":177,"line":195},"trustmate_render_widget_bee",69,{"type":166,"name":184,"callback":197,"file":177,"line":198},"trustmate_render_widget_lemur",70,{"type":166,"name":200,"callback":201,"file":177,"line":202},"woocommerce_before_add_to_cart_form","trustmate_render_widget_hornet",71,{"type":166,"name":204,"callback":205,"file":177,"line":206},"woocommerce_after_shop_loop_item_title","trustmate_insert_multihornet_wrappers",72,{"type":166,"name":184,"callback":208,"file":177,"line":209},"trustmate_render_widget_multihornet",73,{"type":166,"name":211,"callback":212,"file":177,"line":213},"get_footer","trustmate_render_widget_chupacabra",74,{"type":166,"name":211,"callback":215,"file":177,"line":25},"trustmate_render_widget_ferret2",{"type":166,"name":211,"callback":217,"file":177,"line":218},"trustmate_render_widget_product_ferret2",76,{"type":166,"name":211,"callback":220,"file":177,"line":221},"trustmate_render_widget_hydra",77,{"type":166,"name":211,"callback":223,"file":177,"line":224},"trustmate_render_widget_owl",78,{"type":166,"name":171,"callback":226,"file":177,"line":227},"save_widget_status",79,{"type":166,"name":167,"callback":229,"file":177,"line":13},"plugin_load_textdomain",{"type":166,"name":231,"callback":232,"file":177,"line":233},"woocommerce_checkout_order_processed","trustmate_invitation_after_order",387,{"type":166,"name":235,"callback":236,"file":177,"line":237},"woocommerce_payment_complete","trustmate_invitation_after_payment",399,{"type":166,"name":239,"callback":240,"file":177,"line":241},"woocommerce_order_status_completed","trustmate_invitation_after_order_completed",411,{"type":166,"name":171,"callback":243,"file":177,"line":244},"trustmate_add_nonce",435,{"type":166,"name":246,"callback":247,"file":177,"line":248},"woocommerce_thankyou","trustmate_instant_review",461,{"type":166,"name":250,"callback":251,"priority":14,"file":177,"line":252},"update_option_trustmate_instant_review","closure",464,{"type":166,"name":254,"callback":251,"priority":14,"file":177,"line":255},"update_option_trustmate_invitations_enabled",469,{"type":166,"name":257,"callback":258,"priority":259,"file":177,"line":260},"upgrader_process_complete","trustmate_on_plugin_update",20,475,{"type":262,"name":263,"callback":264,"priority":14,"file":177,"line":265},"filter","script_loader_tag","defer_widget_js",523,[267],{"action":268,"nopriv":269,"callback":268,"hasNonce":269,"hasCapCheck":270,"file":177,"line":271},"save_checkbox",false,true,167,[],[],[],{"dangerousFunctions":276,"sqlUsage":277,"outputEscaping":279,"fileOperations":81,"externalRequests":285,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":597},[],{"prepared":81,"raw":81,"locations":278},[],{"escaped":280,"rawEcho":281,"locations":282},45,198,[283,287,288,290,292,294,296,298,300,302,304,305,307,309,311,313,314,315,316,317,318,319,321,323,324,325,327,328,329,330,331,333,334,336,337,338,339,340,341,343,344,345,346,347,348,349,350,351,353,354,355,356,357,358,359,360,361,363,365,366,367,369,370,371,372,373,375,376,377,378,380,382,384,385,386,387,388,390,392,394,396,398,400,402,404,406,408,410,412,414,416,418,420,422,424,426,428,429,431,433,435,438,440,442,444,445,447,448,450,451,452,453,454,455,456,457,458,459,461,463,465,466,467,469,471,473,475,477,479,480,481,482,483,484,486,487,488,490,491,493,495,497,499,501,503,505,507,509,511,513,515,516,517,518,519,520,521,522,523,524,525,527,529,531,533,535,537,539,541,543,545,547,549,551,553,555,557,559,561,564,566,568,569,571,573,575,576,578,580,582,583,585,587,588,589,591,593,595],{"file":284,"line":285,"context":286},"components\\dialogs\\alpaca_dialog.php",7,"raw output",{"file":284,"line":14,"context":286},{"file":284,"line":289,"context":286},11,{"file":284,"line":291,"context":286},12,{"file":284,"line":293,"context":286},13,{"file":295,"line":291,"context":286},"components\\dialogs\\badger_dialog.php",{"file":295,"line":297,"context":286},14,{"file":295,"line":299,"context":286},15,{"file":295,"line":301,"context":286},16,{"file":295,"line":303,"context":286},18,{"file":295,"line":259,"context":286},{"file":295,"line":306,"context":286},21,{"file":295,"line":308,"context":286},22,{"file":295,"line":310,"context":286},23,{"file":312,"line":285,"context":286},"components\\dialogs\\chupacabra_dialog.php",{"file":312,"line":14,"context":286},{"file":312,"line":289,"context":286},{"file":312,"line":291,"context":286},{"file":312,"line":293,"context":286},{"file":312,"line":299,"context":286},{"file":312,"line":301,"context":286},{"file":312,"line":320,"context":286},17,{"file":312,"line":322,"context":286},19,{"file":312,"line":306,"context":286},{"file":312,"line":308,"context":286},{"file":326,"line":291,"context":286},"components\\dialogs\\ferret_dialog.php",{"file":326,"line":297,"context":286},{"file":326,"line":299,"context":286},{"file":326,"line":301,"context":286},{"file":326,"line":320,"context":286},{"file":332,"line":291,"context":286},"components\\dialogs\\gorilla_dialog.php",{"file":332,"line":297,"context":286},{"file":335,"line":285,"context":286},"components\\dialogs\\hornet_dialog.php",{"file":335,"line":14,"context":286},{"file":335,"line":289,"context":286},{"file":335,"line":291,"context":286},{"file":335,"line":297,"context":286},{"file":335,"line":301,"context":286},{"file":342,"line":285,"context":286},"components\\dialogs\\lemur_dialog.php",{"file":342,"line":14,"context":286},{"file":342,"line":289,"context":286},{"file":342,"line":291,"context":286},{"file":342,"line":293,"context":286},{"file":342,"line":299,"context":286},{"file":342,"line":301,"context":286},{"file":342,"line":320,"context":286},{"file":342,"line":303,"context":286},{"file":352,"line":291,"context":286},"components\\dialogs\\muskrat_dialog.php",{"file":352,"line":297,"context":286},{"file":352,"line":299,"context":286},{"file":352,"line":301,"context":286},{"file":352,"line":320,"context":286},{"file":352,"line":322,"context":286},{"file":352,"line":306,"context":286},{"file":352,"line":308,"context":286},{"file":352,"line":310,"context":286},{"file":352,"line":362,"context":286},24,{"file":364,"line":285,"context":286},"components\\dialogs\\owl_dialog.php",{"file":364,"line":14,"context":286},{"file":364,"line":289,"context":286},{"file":368,"line":291,"context":286},"components\\dialogs\\product_ferret_dialog.php",{"file":368,"line":297,"context":286},{"file":368,"line":299,"context":286},{"file":368,"line":301,"context":286},{"file":368,"line":320,"context":286},{"file":374,"line":299,"context":286},"config_form.php",{"file":374,"line":320,"context":286},{"file":374,"line":310,"context":286},{"file":374,"line":362,"context":286},{"file":374,"line":379,"context":286},29,{"file":374,"line":381,"context":286},31,{"file":374,"line":383,"context":286},32,{"file":374,"line":182,"context":286},{"file":374,"line":186,"context":286},{"file":374,"line":221,"context":286},{"file":374,"line":224,"context":286},{"file":374,"line":389,"context":286},81,{"file":374,"line":391,"context":286},145,{"file":374,"line":393,"context":286},149,{"file":374,"line":395,"context":286},152,{"file":374,"line":397,"context":286},155,{"file":374,"line":399,"context":286},158,{"file":374,"line":401,"context":286},165,{"file":374,"line":403,"context":286},169,{"file":374,"line":405,"context":286},170,{"file":374,"line":407,"context":286},173,{"file":374,"line":409,"context":286},175,{"file":374,"line":411,"context":286},176,{"file":374,"line":413,"context":286},177,{"file":374,"line":415,"context":286},178,{"file":374,"line":417,"context":286},179,{"file":374,"line":419,"context":286},183,{"file":374,"line":421,"context":286},189,{"file":374,"line":423,"context":286},192,{"file":374,"line":425,"context":286},196,{"file":374,"line":427,"context":286},199,{"file":374,"line":427,"context":286},{"file":374,"line":430,"context":286},206,{"file":374,"line":432,"context":286},208,{"file":374,"line":434,"context":286},209,{"file":436,"line":437,"context":286},"embed_scripts.php",171,{"file":436,"line":439,"context":286},181,{"file":436,"line":441,"context":286},222,{"file":443,"line":27,"context":286},"faq.php",{"file":443,"line":26,"context":286},{"file":443,"line":446,"context":286},5,{"file":443,"line":285,"context":286},{"file":443,"line":449,"context":286},9,{"file":443,"line":14,"context":286},{"file":443,"line":291,"context":286},{"file":443,"line":297,"context":286},{"file":443,"line":299,"context":286},{"file":443,"line":301,"context":286},{"file":443,"line":303,"context":286},{"file":443,"line":259,"context":286},{"file":443,"line":306,"context":286},{"file":443,"line":310,"context":286},{"file":443,"line":460,"context":286},25,{"file":443,"line":462,"context":286},26,{"file":443,"line":464,"context":286},27,{"file":443,"line":379,"context":286},{"file":443,"line":381,"context":286},{"file":443,"line":468,"context":286},33,{"file":443,"line":470,"context":286},35,{"file":443,"line":472,"context":286},37,{"file":443,"line":474,"context":286},39,{"file":443,"line":476,"context":286},41,{"file":478,"line":320,"context":286},"install_form.php",{"file":478,"line":322,"context":286},{"file":478,"line":362,"context":286},{"file":478,"line":460,"context":286},{"file":478,"line":462,"context":286},{"file":478,"line":464,"context":286},{"file":478,"line":485,"context":286},28,{"file":478,"line":381,"context":286},{"file":478,"line":468,"context":286},{"file":478,"line":489,"context":286},34,{"file":478,"line":472,"context":286},{"file":478,"line":492,"context":286},38,{"file":478,"line":494,"context":286},40,{"file":478,"line":496,"context":286},42,{"file":478,"line":498,"context":286},43,{"file":478,"line":500,"context":286},46,{"file":478,"line":502,"context":286},47,{"file":478,"line":504,"context":286},50,{"file":478,"line":506,"context":286},51,{"file":478,"line":508,"context":286},54,{"file":478,"line":510,"context":286},55,{"file":478,"line":512,"context":286},58,{"file":478,"line":514,"context":286},59,{"file":478,"line":68,"context":286},{"file":478,"line":192,"context":286},{"file":478,"line":195,"context":286},{"file":478,"line":195,"context":286},{"file":478,"line":198,"context":286},{"file":478,"line":25,"context":286},{"file":478,"line":218,"context":286},{"file":478,"line":221,"context":286},{"file":478,"line":221,"context":286},{"file":478,"line":389,"context":286},{"file":177,"line":526,"context":286},135,{"file":177,"line":528,"context":286},148,{"file":177,"line":530,"context":286},159,{"file":177,"line":532,"context":286},217,{"file":177,"line":534,"context":286},221,{"file":177,"line":536,"context":286},224,{"file":177,"line":538,"context":286},316,{"file":177,"line":540,"context":286},332,{"file":177,"line":542,"context":286},333,{"file":177,"line":544,"context":286},346,{"file":177,"line":546,"context":286},359,{"file":177,"line":548,"context":286},371,{"file":177,"line":550,"context":286},433,{"file":177,"line":552,"context":286},451,{"file":177,"line":554,"context":286},452,{"file":177,"line":556,"context":286},453,{"file":177,"line":558,"context":286},454,{"file":177,"line":560,"context":286},456,{"file":562,"line":563,"context":286},"widgets.php",103,{"file":562,"line":565,"context":286},105,{"file":562,"line":567,"context":286},107,{"file":562,"line":567,"context":286},{"file":562,"line":570,"context":286},120,{"file":562,"line":572,"context":286},122,{"file":562,"line":574,"context":286},125,{"file":562,"line":574,"context":286},{"file":562,"line":577,"context":286},127,{"file":562,"line":579,"context":286},137,{"file":562,"line":581,"context":286},141,{"file":562,"line":391,"context":286},{"file":562,"line":584,"context":286},153,{"file":562,"line":586,"context":286},154,{"file":562,"line":397,"context":286},{"file":562,"line":530,"context":286},{"file":562,"line":590,"context":286},191,{"file":562,"line":592,"context":286},203,{"file":562,"line":594,"context":286},204,{"file":562,"line":596,"context":286},205,[],[599,616,627],{"entryPoint":600,"graph":601,"unsanitizedCount":81,"severity":615},"save_checkbox (trustmate-plugin.php:132)",{"nodes":602,"edges":613},[603,607],{"id":604,"type":605,"label":606,"file":177,"line":391},"n0","source","$_POST (x2)",{"id":608,"type":609,"label":610,"file":177,"line":611,"wp_function":612},"n1","sink","update_option() [Settings Manipulation]",156,"update_option",[614],{"from":604,"to":608,"sanitized":270},"low",{"entryPoint":617,"graph":618,"unsanitizedCount":27,"severity":615},"trustmate_create_account (trustmate-plugin.php:285)",{"nodes":619,"edges":625},[620,623],{"id":604,"type":605,"label":621,"file":177,"line":622},"$_POST",295,{"id":608,"type":609,"label":610,"file":177,"line":624,"wp_function":612},326,[626],{"from":604,"to":608,"sanitized":269},{"entryPoint":628,"graph":629,"unsanitizedCount":81,"severity":615},"\u003Ctrustmate-plugin> (trustmate-plugin.php:0)",{"nodes":630,"edges":634},[631,633],{"id":604,"type":605,"label":632,"file":177,"line":391},"$_POST (x3)",{"id":608,"type":609,"label":610,"file":177,"line":611,"wp_function":612},[635],{"from":604,"to":608,"sanitized":270},{"summary":637,"deductions":638},"The \"trustmate-io-integration-for-woocommerce\" plugin v1.16.0 exhibits a mixed security posture. While it demonstrates good practices like using prepared statements for SQL queries and implementing nonces and capability checks on its single AJAX entry point, several concerning signals are present. A significant portion of its output (81%) is not properly escaped, posing a risk of Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is outputted without sufficient sanitization. Furthermore, the taint analysis revealed one flow with an unsanitized path, indicating a potential for data manipulation or unauthorized access, though its severity is not classified as critical or high.\n\nThe plugin's vulnerability history is a significant concern, with three known medium-severity CVEs, one of which remains unpatched. The common vulnerability types being CSRF and Missing Authorization suggest recurring weaknesses in how user actions and permissions are handled. The most recent vulnerability being in 2025 indicates potential ongoing issues or a recent discovery, which is troubling. The presence of these past vulnerabilities, especially an unpatched one, combined with the taint flow finding, elevates the overall risk profile despite the positive signs in other areas.\n\nIn conclusion, while the plugin has strengths in its database interaction and input validation on its primary entry point, the high percentage of unescaped output, the identified unsanitized taint flow, and the history of multiple medium vulnerabilities, including an unpatched one, necessitate caution. Users should be aware of the potential for XSS, and the plugin developer needs to address the unpatched CVE and the identified taint flow urgently.",[639,641,643,646],{"reason":640,"points":299},"Unpatched CVE",{"reason":642,"points":101},"High percentage of unescaped output",{"reason":644,"points":645},"Flow with unsanitized paths",8,{"reason":647,"points":14},"History of medium severity CVEs","2026-03-16T18:21:31.014Z",{"wat":650,"direct":663},{"assetPaths":651,"generatorPatterns":656,"scriptPaths":657,"versionParams":658},[652,653,654,655],"\u002Fwp-content\u002Fplugins\u002Ftrustmate-io-integration-for-woocommerce\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Ftrustmate-io-integration-for-woocommerce\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Ftrustmate-io-integration-for-woocommerce\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Ftrustmate-io-integration-for-woocommerce\u002Fjs\u002Ffrontend.js",[],[654,655],[659,660,661,662],"trustmate-io-integration-for-woocommerce\u002Fcss\u002Fadmin.css?ver=","trustmate-io-integration-for-woocommerce\u002Fcss\u002Fstyle.css?ver=","trustmate-io-integration-for-woocommerce\u002Fjs\u002Fadmin.js?ver=","trustmate-io-integration-for-woocommerce\u002Fjs\u002Ffrontend.js?ver=",{"cssClasses":664,"htmlComments":667,"htmlAttributes":671,"restEndpoints":673,"jsGlobals":675,"shortcodeOutput":679},[665,666],"tm-widgets-container","alert-wrapper",[668,669,670],"This program is free software; you can redistribute it and\u002For\nmodify it under the terms of the GNU General Public License\nas published by the Free Software Foundation; either version 2\nof the License, or (at your option) any later version.","This program is distributed in the hope that it will be useful,\nbut WITHOUT ANY WARRANTY; without even the implied warranty of\nMERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the\nGNU General Public License for more details.","You should have received a copy of the GNU General Public License\nalong with this program; if not, write to the Free Software\nFoundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.",[672],"name=\"csrf-token\"",[674],"\u002Fwp-json\u002Ftrustmate-io-integration-for-woocommerce",[185,188,191,194,197,201,205,208,212,215,217,220,223,226,229,176,268,181,676,677,678],"trustmate_view_dispatcher","trustmate_papi_install","trustmate_verify_general_nonce",[]]