[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fM_FXaHEkfAtysoDxta_utJF_BCNzHGOgOAn2VTjStAQ":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":143,"fingerprints":760},"wc-yabi","Yabi einvoice for WooCommerce","4.0.1","Mex Avila","https:\u002F\u002Fprofiles.wordpress.org\u002Fkakaroto84\u002F","\u003Cp>Yabi Electronic Invoicing allows your WordPress site to generate DIAN-compliant invoices automatically.\u003Cbr \u002F>\nIt integrates with external systems and WooCommerce (if present), and adds features such as credit notes, invoice cancellation, DIAN resolution synchronization, personalized invoice data, and extended debugging tools.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Main Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Generate DIAN-compliant electronic invoices automatically.\u003C\u002Fli>\n\u003Cli>Create and manage credit notes directly from WordPress.\u003C\u002Fli>\n\u003Cli>Cancel invoices through the Yabi platform.\u003C\u002Fli>\n\u003Cli>Sync DIAN resolutions with Yabi.co.\u003C\u002Fli>\n\u003Cli>Configure customer type (natural person or company).\u003C\u002Fli>\n\u003Cli>Add invoice notes and shipping fees.\u003C\u002Fli>\n\u003Cli>Debugging options and detailed error logs.\u003C\u002Fli>\n\u003Cli>Compatible with WooCommerce checkout fields.\u003C\u002Fli>\n\u003Cli>Field validation to avoid formatting errors.\u003C\u002Fli>\n\u003Cli>Fully supports the latest versions of WordPress and PHP.\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin integrates WordPress with the Yabi electronic invoicing service, allowing the automatic creation and management of DIAN-compliant invoices &hellip;",0,3361,100,1,"2026-01-21T14:58:00.000Z","6.9.4","6.4","8.0",[20,21,22,23,24],"colombia","dian","electronic-invoice","factura-electronica","woocommerce","https:\u002F\u002Fmireunion.com\u002Fyabi","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-yabi.zip",null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":13,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"kakaroto84",2,30,94,"2026-04-04T16:10:51.977Z",[37,60,83,103,123],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":57,"download_link":58,"security_score":59,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"departamentos-y-ciudades-de-colombia-para-woocommerce","Departamentos y Ciudades de Colombia para Woocommerce","2.0.22","Saul Morales Pacheco","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaulmorales\u002F","\u003Cp>This WooCommerce plugin transforms the text input for states, the city or town. With this plugin you can provide a list of states and cities to be shown as a select dropdown.\u003C\u002Fp>\n\u003Cp>This will be shown in checkout pages, edit addresses pages, shipping calculator, etc.\u003C\u002Fp>\n\u003Ch4>Supported Countries\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Colombia\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Additional Info\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Contribute\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsaulmoralespa\u002Fdepartamentos-y-ciudades-de-colombia-para-woocommerce\" rel=\"nofollow ugc\">repository on github\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsaulmoralespa.com\" rel=\"nofollow ugc\">Website\u003C\u002Fa> \u003Ca href=\"https:\u002F\u002Fwww.linkedin.com\u002Fin\u002Fsaulmoralespa\" rel=\"nofollow ugc\">Linkedin\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","WordPress plugin that shows dropdowns for State and City Select for WooCommerce",7000,166201,88,19,"2025-03-24T15:18:00.000Z","6.7.5","6.0",[53,20,54,55,56],"ciudades","departamentos","woocommerce-ciudades-de-colombia","woocommerce-departamentos-de-colombia","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdepartamentos-y-ciudades-de-colombia-para-woocommerce.2.0.22.zip",92,{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":13,"num_ratings":70,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":57,"tags":74,"homepage":80,"download_link":81,"security_score":82,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"indian-rupee-symbol-for-woocommerce","Indian Rupee Symbol For Woocommerce","1.0.0","Aftab Ali Muni","https:\u002F\u002Fprofiles.wordpress.org\u002Faftabmuni\u002F","\u003Cp>This plugin is used to display new Indian currency rupee symbol for Woocommerce.\u003C\u002Fp>\n","This plugin is used to display new Indian currency rupee symbol for Woocommerce.",300,7867,3,"2023-11-26T07:24:00.000Z","6.4.8","3.0",[75,76,77,78,79],"indian-currency-symbol","indian-rupee-symbol","new-indian-rupee-symbol","woocommerce-indian-rupee-symbol","woocommerce-indian-rupee-symbol-not-showing","https:\u002F\u002Faftabmuni.wordpress.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Findian-rupee-symbol-for-woocommerce.zip",85,{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":13,"downloaded":91,"rating":13,"num_ratings":92,"last_updated":93,"tested_up_to":94,"requires_at_least":95,"requires_php":57,"tags":96,"homepage":101,"download_link":102,"security_score":82,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"indian-currency-inr-symbol-for-woocommerce","Indian Currency Rupee Symbol for Woocommerce","1.0.1","webtechstreet","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebtechstreet\u002F","\u003Cp>This plugin enable fontawesome based Indian Rupee symbol for stores using Indian currency (INR).Just install and enable this plugin and select INR as currency at Woocommerce -> Settings -> General Tab Under currency options\u003C\u002Fp>\n\u003Ch3>1.0.1\u003C\u002Fh3>\n\u003Cp>Updated compatibilty status\u003C\u002Fp>\n\u003Ch4>1.0.0\u003C\u002Fh4>\n\u003Cp>Plugin update\u003C\u002Fp>\n","This plugin let you show new INR currency Rupee symbol when using INR currency in WooCommerce.",9940,6,"2019-01-19T06:15:00.000Z","5.0.25","4.1",[97,98,99,100,24],"currency","fontawesome","indian-currency","inr-symbol","http:\u002F\u002Fwww.webtechstreet.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Findian-currency-inr-symbol-for-woocommerce.zip",{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":111,"downloaded":112,"rating":11,"num_ratings":11,"last_updated":113,"tested_up_to":114,"requires_at_least":115,"requires_php":116,"tags":117,"homepage":57,"download_link":122,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"indian-gst-invoice-suite","Indian GST Invoice Suite","1.2.1","SAUBHIK DAS","https:\u002F\u002Fprofiles.wordpress.org\u002Fjblgroup\u002F","\u003Cp>\u003Cstrong>Indian GST Invoice Suite\u003C\u002Fstrong> is a complete GST invoicing solution for WooCommerce stores operating in India.\u003Cbr \u002F>\nIt automatically generates \u003Cstrong>GST-compliant PDF invoices\u003C\u002Fstrong> with GSTIN, HSN\u002FSAC, CGST, SGST, IGST calculations, and supports download invoices.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Perfect for:\u003C\u002Fstrong>\u003Cbr \u002F>\nE-commerce businesses in India that need \u003Cstrong>professional, GST-compliant\u003C\u002Fstrong> invoices for customers and tax filing.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Generate GST-compliant PDF invoices for WooCommerce orders.\u003Cbr \u002F>\n* Show GSTIN, HSN\u002FSAC codes, and tax slab details.\u003Cbr \u002F>\n* Auto-calculates CGST, SGST, and IGST based on store & customer location.\u003Cbr \u002F>\n* Compatible with variable and grouped products.\u003Cbr \u002F>\n* Customizable invoice number.\u003Cbr \u002F>\n* Customers can download Invoice PDF from \u003Cstrong>My Account \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Orders\u003C\u002Fstrong> (Only Completed Orders)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Add-ons Available:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Packing Slips Addon\u003C\u002Fstrong> – Generate Packing Slips for warehouse. \u003Cstrong>(Free)\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Order List Addon\u003C\u002Fstrong> – Add invoice download button in WooCommerce admin order list. \u003Cstrong>(Pro)\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Delivery Note Addon\u003C\u002Fstrong> – Generate Delivery Labels with Customer Sign Area and Product list. \u003Cstrong>(Pro)\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Shipping Labels Addon\u003C\u002Fstrong> – Generate Shipping Labels with Courier Name and AWB Number and bar code. \u003Cstrong>(Paid)\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Model Number Addon\u003C\u002Fstrong> – Model Number Addon lets you store and display unique product model codes for electronics etc. \u003Cstrong>(Pro)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Add-ons Coming Soon:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Email Invoice PDF Addon\u003C\u002Fstrong> – Automatically attach Invoice to order emails (when order is completed).\u003Cbr \u002F>\n* \u003Cstrong>GST Filing Tool Addon\u003C\u002Fstrong> – Helps with monthly GST filing (GSTR-1, GSTR-3B prep).\u003Cbr \u002F>\n* \u003Cstrong>Serial Number Addon\u003C\u002Fstrong> – for Electronics Goods etc.\u003Cbr \u002F>\n* \u003Cstrong>Expiry Date Addon\u003C\u002Fstrong> – for Medicines and perishables.\u003Cbr \u002F>\n* \u003Cstrong>Batch Number Addon\u003C\u002Fstrong> – for Medicines and perishables.\u003Cbr \u002F>\n* \u003Cstrong>Multiple Invoice Templates\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Multiple Shipping Label Templates\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Add-ons in Mind (Future Plan):\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Pro Forma Invoice Addon\u003C\u002Fstrong> – Generate pre-payment invoices (quotation-style).\u003Cbr \u002F>\n* \u003Cstrong>Bulk PDF Generator Addon\u003C\u002Fstrong> – Download invoices, Packing Slips, Shipping Labels for multiple orders at once.\u003Cbr \u002F>\n* \u003Cstrong>And Many More\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin does not connect to any third-party services.\u003C\u002Fp>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>This plugin does not collect or share any personal data.\u003Cbr \u002F>\nIt does not send any information to external servers.\u003Cbr \u002F>\nAll invoice and tax data is stored locally within your WordPress database.\u003C\u002Fp>\n\u003Ch3>Developer Notes\u003C\u002Fh3>\n\u003Cp>This plugin follows WordPress coding standards and enqueues all CSS\u002FJS properly.\u003Cbr \u002F>\nIn certain cases, inline \u003Ccode>\u003Cstyle>\u003C\u002Fcode> blocks are used inside PDF template files only.\u003Cbr \u002F>\nReason: These templates are rendered by the PDF generator (dompdf\u002Fdompdf). WordPress functions like \u003Ccode>wp_enqueue_style()\u003C\u002Fcode> cannot be applied in this context because the output is not a browser page, but a static PDF.\u003Cbr \u002F>\nThe inline CSS is always loaded from local files bundled with the plugin and does not include any dynamic code or external requests. This approach is required for correct PDF rendering.\u003Cbr \u002F>\nAll front-end and admin scripts\u002Fstyles outside of PDF templates are enqueued using \u003Ccode>wp_enqueue_style()\u003C\u002Fcode> and \u003Ccode>wp_enqueue_script()\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPL v2 or later.\u003Cbr \u002F>\nYou are free to use, modify, and redistribute it under the same license.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by \u003Cstrong>Radha Solution (jblgroup)\u003C\u002Fstrong>\u003Cbr \u002F>\nBuilt for use with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce\u002F\" rel=\"ugc\">WooCommerce\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Third-Party Libraries\u003C\u002Fh4>\n\u003Cp>This plugin bundles and uses the following open-source libraries:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpicqer\u002Fphp-barcode-generator\" rel=\"nofollow ugc\">picqer\u002Fphp-barcode-generator\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Purpose: Generate barcodes (used in invoices).  \u003C\u002Fli>\n\u003Cli>License: MIT License (GPL-compatible).  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdompdf\u002Fdompdf\" rel=\"nofollow ugc\">dompdf\u002Fdompdf\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Purpose: PDF rendering for invoices.  \u003C\u002Fli>\n\u003Cli>License: LGPL v2.1 or later (GPL-compatible).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n","Generate GST Compliant PDF invoices, Supports CGST\u002FSGST\u002FIGST, HSN\u002FSAC, and more for WooCommerce.",20,476,"2026-02-14T00:24:00.000Z","6.8.5","5.0","8.2",[118,119,120,121,24],"gst","gst-invoice","indian-gst","indian-tax","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Findian-gst-invoice-suite.1.2.1.zip",{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":131,"downloaded":132,"rating":11,"num_ratings":11,"last_updated":133,"tested_up_to":134,"requires_at_least":135,"requires_php":136,"tags":137,"homepage":141,"download_link":142,"security_score":82,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"miratio","MIRATIO – Facturación electrónica Perú","2.6","carlod","https:\u002F\u002Fprofiles.wordpress.org\u002Fcarlod\u002F","\u003Cp>Emite Boletas y Facturas directamente desde tu tienda virtual con WooCommerce.\u003C\u002Fp>\n\u003Ch3>Installing\u003C\u002Fh3>\n\u003Cp>Este documento contiene instruciones acerca de como instalar este plugin.\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>REQUISITOS\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>WordPress 5.4 o superior.\u003Cbr \u002F>\nWooCommerce 4.0.1 o superior.\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>INSTALACIÓN\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Ingresar al dashboard de tu sitio web en WordPress.\u003C\u002Fli>\n\u003Cli>Dirigirse a la opción de PlugIns \u002F Agregar nuevo.\u003C\u002Fli>\n\u003Cli>Elegir el ZIP del plugin.\u003C\u002Fli>\n\u003Cli>Instalar.\u003C\u002Fli>\n\u003Cli>Activar.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>CONFIGURACIÓN\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>Encuentra la configuración del Plugin en Ajustes – MIRATIO.\u003C\u002Fp>\n\u003Cp>Para empezar a configurar MIRATIO en tu tienda virtual debes habilitar el plugin en el checkout.\u003C\u002Fp>\n\u003Cp>De manera opcional puedes Agregar el costo de envío como un item en el detalle de tu CPE.\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>ESTADO DEL PEDIDO\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>En esta sección eliges en qué momento se emitirá el comprobante de la venta.\u003C\u002Fp>\n\u003Cp>-Procesando el pedido\u003Cbr \u002F>\n-Pedido completado\u003Cbr \u002F>\n-Cuando el pago es confirmado (Recomendado).\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>CONEXIÓN\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>Aquí conectas tu cuenta en MIRATIO con tu tienda virtual.\u003C\u002Fp>\n\u003Cp>URL: https:\u002F\u002Fmiratio.app\u002Fsys\u002Fapi\u002Fprocesar_venta\u003Cbr \u002F>\nTOKEN: (MIRATIO.APP -> CONFIGURACIÓN DE EMPRESA -> API_REST -> TOKEN)\u003C\u002Fp>\n\u003Cp>También puedes elegir si enviarle la factura al cliente después de su compra por email.\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>CONFIGURACIÓN DE TU CUENTA\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>En esta sección indicas el ID de la surcursal y el ID de tu usuaio. Ambos ID’s los puedes encontrar en la sección de Administración.\u003C\u002Fp>\n\u003Cp>-ID de usuario (Gestión de usuarios).\u003Cbr \u002F>\n-ID de sucursal (Listar Sucursales).\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>OTROS DATOS\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Cp>Moneda: PEN\u003Cbr \u002F>\nTipo de cambio: (Opcional si en moneda indicas USD, es decir, dólares).\u003Cbr \u002F>\nUnidad de Medida: NIU para productos o ZZ para servicios\u003C\u002Fp>\n","Ahora puedes emitir comprobantes electrónicos como Boletas y Facturas automáticamente con el plugin de MIRATIO para WooCommerce.",10,1902,"2022-10-13T22:34:00.000Z","6.0.11","4.7","7.0",[138,23,139,24,140],"cpe","facturacion","wp","https:\u002F\u002Fmiratio.net\u002Fwoocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmiratio.zip",{"attackSurface":144,"codeSignals":246,"taintFlows":632,"riskAssessment":746,"analyzedAt":759},{"hooks":145,"ajaxHandlers":200,"restRoutes":242,"shortcodes":243,"cronEvents":244,"entryPointCount":245,"unprotectedCount":177},[146,153,157,162,166,170,174,179,184,188,192,196],{"type":147,"name":148,"callback":149,"priority":150,"file":151,"line":152},"filter","woocommerce_checkout_fields","yabi_city_dropdown_field",999999,"includes\\woo.php",252,{"type":147,"name":154,"callback":155,"file":151,"line":156},"woocommerce_order_formatted_billing_address","yabi_admin_billing_fields",253,{"type":158,"name":159,"callback":160,"file":151,"line":161},"action","woocommerce_before_checkout_billing_form","yabi_checkout_fields",254,{"type":158,"name":163,"callback":164,"file":151,"line":165},"woocommerce_checkout_init","yabi_enqueue",255,{"type":158,"name":167,"callback":168,"file":151,"line":169},"woocommerce_checkout_process","yabi_checkout_fields_process",256,{"type":158,"name":171,"callback":172,"priority":131,"file":151,"line":173},"woocommerce_checkout_update_order_meta","yabi_checkout_fields_update_order_meta",257,{"type":158,"name":175,"callback":176,"priority":177,"file":151,"line":178},"woocommerce_order_status_changed","yabi_payment_complete",11,258,{"type":158,"name":180,"callback":181,"file":182,"line":183},"admin_menu","yabi_admin","wc-yabi.php",71,{"type":158,"name":185,"callback":186,"file":182,"line":187},"admin_enqueue_scripts","yabi_admin_enqueue_scripts",125,{"type":158,"name":189,"callback":190,"file":182,"line":191},"add_meta_boxes","yabi_product",151,{"type":147,"name":193,"callback":194,"file":182,"line":195},"plugin_action_links_yabi\u002Fyabi.php","yabi_settings_link",268,{"type":158,"name":197,"callback":198,"file":182,"line":199},"admin_notices","yabi_settings_notice",282,[201,206,209,212,215,218,220,222,225,228,231,234,238],{"action":202,"nopriv":203,"callback":202,"hasNonce":203,"hasCapCheck":203,"file":204,"line":205},"yabi_generate_invoice",false,"includes\\ajax.php",14,{"action":207,"nopriv":203,"callback":207,"hasNonce":203,"hasCapCheck":203,"file":204,"line":208},"yabi_save_data",15,{"action":210,"nopriv":203,"callback":210,"hasNonce":203,"hasCapCheck":203,"file":204,"line":211},"yabi_save_prefix",16,{"action":213,"nopriv":203,"callback":213,"hasNonce":203,"hasCapCheck":203,"file":204,"line":214},"yabi_send_invoice",17,{"action":216,"nopriv":203,"callback":216,"hasNonce":203,"hasCapCheck":203,"file":204,"line":217},"yabi_update_resolution",18,{"action":219,"nopriv":203,"callback":219,"hasNonce":203,"hasCapCheck":203,"file":204,"line":48},"yabi_show_resolution",{"action":221,"nopriv":203,"callback":221,"hasNonce":203,"hasCapCheck":203,"file":204,"line":111},"yabi_create_prefix",{"action":223,"nopriv":203,"callback":223,"hasNonce":203,"hasCapCheck":203,"file":204,"line":224},"yabi_get_active_prefixes",21,{"action":226,"nopriv":203,"callback":226,"hasNonce":203,"hasCapCheck":203,"file":204,"line":227},"yabi_get_last_invoice",22,{"action":229,"nopriv":203,"callback":229,"hasNonce":203,"hasCapCheck":203,"file":204,"line":230},"yabi_get_last_credit",23,{"action":232,"nopriv":203,"callback":232,"hasNonce":203,"hasCapCheck":203,"file":204,"line":233},"yabi_cancel_invoice",24,{"action":235,"nopriv":203,"callback":235,"hasNonce":236,"hasCapCheck":236,"file":204,"line":237},"yabi_load_tab",true,25,{"action":239,"nopriv":203,"callback":240,"hasNonce":236,"hasCapCheck":236,"file":204,"line":241},"yabi_save_settings","yabi_save_settings_ajax",26,[],[],[],13,{"dangerousFunctions":247,"sqlUsage":248,"outputEscaping":250,"fileOperations":11,"externalRequests":14,"nonceChecks":32,"capabilityChecks":32,"bundledLibraries":631},[],{"prepared":11,"raw":11,"locations":249},[],{"escaped":251,"rawEcho":252,"locations":253},191,228,[254,257,259,261,263,265,267,269,271,273,274,275,277,279,281,283,285,286,288,290,292,293,295,296,298,299,301,303,305,307,309,311,313,314,316,318,320,321,323,325,326,328,330,331,333,335,337,339,341,343,345,347,349,351,352,354,355,357,358,359,361,363,365,366,368,369,371,372,373,374,376,378,379,380,382,384,386,387,389,390,392,393,395,397,399,400,402,404,406,408,409,411,413,415,417,419,421,423,425,427,429,431,433,435,437,439,441,443,444,446,447,449,450,452,454,456,458,459,461,463,465,467,469,471,473,475,476,477,479,481,483,485,486,488,489,491,492,494,496,498,500,502,504,505,506,507,508,509,511,512,513,515,516,518,519,521,523,525,527,529,531,533,534,535,537,539,541,543,544,545,546,548,550,551,553,555,556,558,559,561,563,564,566,568,570,571,572,573,575,577,578,579,580,581,582,584,586,588,590,591,592,593,594,595,597,598,599,601,602,604,605,606,608,609,610,611,612,614,616,617,619,621,623,624,625,626,627,629],{"file":255,"line":241,"context":256},"content\\admin.php","raw output",{"file":255,"line":258,"context":256},27,{"file":255,"line":260,"context":256},41,{"file":255,"line":262,"context":256},50,{"file":255,"line":264,"context":256},60,{"file":255,"line":266,"context":256},69,{"file":255,"line":268,"context":256},79,{"file":255,"line":270,"context":256},90,{"file":272,"line":111,"context":256},"content\\cancel-invoice.php",{"file":272,"line":230,"context":256},{"file":272,"line":258,"context":256},{"file":272,"line":276,"context":256},34,{"file":272,"line":278,"context":256},38,{"file":272,"line":280,"context":256},43,{"file":272,"line":282,"context":256},51,{"file":272,"line":284,"context":256},66,{"file":272,"line":266,"context":256},{"file":272,"line":287,"context":256},74,{"file":272,"line":289,"context":256},86,{"file":272,"line":291,"context":256},87,{"file":272,"line":47,"context":256},{"file":272,"line":294,"context":256},89,{"file":272,"line":270,"context":256},{"file":272,"line":297,"context":256},91,{"file":272,"line":59,"context":256},{"file":272,"line":300,"context":256},93,{"file":272,"line":302,"context":256},111,{"file":272,"line":304,"context":256},114,{"file":272,"line":306,"context":256},118,{"file":272,"line":308,"context":256},120,{"file":272,"line":310,"context":256},128,{"file":312,"line":111,"context":256},"content\\dian.php",{"file":312,"line":230,"context":256},{"file":312,"line":315,"context":256},28,{"file":312,"line":317,"context":256},29,{"file":312,"line":319,"context":256},36,{"file":312,"line":282,"context":256},{"file":312,"line":322,"context":256},54,{"file":312,"line":324,"context":256},59,{"file":312,"line":183,"context":256},{"file":312,"line":327,"context":256},72,{"file":312,"line":329,"context":256},73,{"file":312,"line":287,"context":256},{"file":312,"line":332,"context":256},75,{"file":312,"line":334,"context":256},76,{"file":312,"line":336,"context":256},77,{"file":312,"line":338,"context":256},78,{"file":312,"line":340,"context":256},96,{"file":312,"line":342,"context":256},99,{"file":312,"line":344,"context":256},103,{"file":312,"line":346,"context":256},105,{"file":312,"line":348,"context":256},113,{"file":350,"line":237,"context":256},"content\\information.php",{"file":350,"line":315,"context":256},{"file":350,"line":353,"context":256},33,{"file":350,"line":353,"context":256},{"file":350,"line":356,"context":256},37,{"file":350,"line":356,"context":256},{"file":350,"line":280,"context":256},{"file":350,"line":360,"context":256},44,{"file":350,"line":362,"context":256},48,{"file":350,"line":364,"context":256},52,{"file":350,"line":364,"context":256},{"file":350,"line":367,"context":256},56,{"file":350,"line":367,"context":256},{"file":350,"line":370,"context":256},68,{"file":350,"line":183,"context":256},{"file":350,"line":334,"context":256},{"file":350,"line":334,"context":256},{"file":350,"line":375,"context":256},80,{"file":350,"line":377,"context":256},84,{"file":350,"line":47,"context":256},{"file":350,"line":59,"context":256},{"file":350,"line":381,"context":256},104,{"file":350,"line":383,"context":256},107,{"file":350,"line":385,"context":256},112,{"file":350,"line":385,"context":256},{"file":350,"line":388,"context":256},116,{"file":350,"line":308,"context":256},{"file":350,"line":391,"context":256},124,{"file":350,"line":310,"context":256},{"file":350,"line":394,"context":256},140,{"file":350,"line":396,"context":256},146,{"file":350,"line":398,"context":256},150,{"file":350,"line":398,"context":256},{"file":350,"line":401,"context":256},154,{"file":350,"line":403,"context":256},158,{"file":350,"line":405,"context":256},162,{"file":350,"line":407,"context":256},166,{"file":350,"line":407,"context":256},{"file":350,"line":410,"context":256},170,{"file":350,"line":412,"context":256},174,{"file":350,"line":414,"context":256},178,{"file":350,"line":416,"context":256},182,{"file":350,"line":418,"context":256},194,{"file":350,"line":420,"context":256},197,{"file":350,"line":422,"context":256},202,{"file":350,"line":424,"context":256},203,{"file":350,"line":426,"context":256},210,{"file":350,"line":428,"context":256},214,{"file":350,"line":430,"context":256},218,{"file":350,"line":432,"context":256},222,{"file":350,"line":434,"context":256},226,{"file":350,"line":436,"context":256},230,{"file":350,"line":438,"context":256},234,{"file":350,"line":440,"context":256},238,{"file":350,"line":442,"context":256},242,{"file":350,"line":161,"context":256},{"file":350,"line":445,"context":256},260,{"file":350,"line":445,"context":256},{"file":350,"line":448,"context":256},264,{"file":350,"line":195,"context":256},{"file":350,"line":451,"context":256},272,{"file":350,"line":453,"context":256},276,{"file":350,"line":455,"context":256},288,{"file":350,"line":457,"context":256},294,{"file":350,"line":457,"context":256},{"file":350,"line":460,"context":256},298,{"file":350,"line":462,"context":256},302,{"file":350,"line":464,"context":256},306,{"file":350,"line":466,"context":256},321,{"file":350,"line":468,"context":256},324,{"file":350,"line":470,"context":256},333,{"file":350,"line":472,"context":256},342,{"file":474,"line":245,"context":256},"content\\product-invoice-old.php",{"file":474,"line":111,"context":256},{"file":474,"line":258,"context":256},{"file":474,"line":478,"context":256},32,{"file":474,"line":480,"context":256},39,{"file":474,"line":482,"context":256},46,{"file":474,"line":484,"context":256},53,{"file":474,"line":264,"context":256},{"file":474,"line":487,"context":256},67,{"file":474,"line":287,"context":256},{"file":474,"line":490,"context":256},81,{"file":474,"line":47,"context":256},{"file":474,"line":493,"context":256},95,{"file":495,"line":227,"context":256},"content\\product-invoice.php",{"file":495,"line":497,"context":256},31,{"file":495,"line":499,"context":256},40,{"file":495,"line":501,"context":256},49,{"file":495,"line":503,"context":256},58,{"file":495,"line":487,"context":256},{"file":495,"line":327,"context":256},{"file":495,"line":268,"context":256},{"file":495,"line":289,"context":256},{"file":495,"line":300,"context":256},{"file":495,"line":510,"context":256},102,{"file":495,"line":348,"context":256},{"file":495,"line":391,"context":256},{"file":495,"line":514,"context":256},133,{"file":495,"line":394,"context":256},{"file":495,"line":517,"context":256},149,{"file":495,"line":191,"context":256},{"file":495,"line":520,"context":256},157,{"file":495,"line":522,"context":256},164,{"file":495,"line":524,"context":256},173,{"file":495,"line":526,"context":256},192,{"file":495,"line":528,"context":256},193,{"file":495,"line":530,"context":256},196,{"file":495,"line":532,"context":256},198,{"file":495,"line":422,"context":256},{"file":495,"line":424,"context":256},{"file":495,"line":536,"context":256},293,{"file":495,"line":538,"context":256},329,{"file":495,"line":540,"context":256},355,{"file":542,"line":183,"context":256},"content\\product.php",{"file":542,"line":300,"context":256},{"file":542,"line":348,"context":256},{"file":542,"line":310,"context":256},{"file":542,"line":547,"context":256},135,{"file":542,"line":549,"context":256},142,{"file":542,"line":517,"context":256},{"file":542,"line":552,"context":256},156,{"file":542,"line":554,"context":256},163,{"file":542,"line":414,"context":256},{"file":542,"line":557,"context":256},186,{"file":542,"line":528,"context":256},{"file":542,"line":560,"context":256},200,{"file":542,"line":562,"context":256},207,{"file":542,"line":432,"context":256},{"file":542,"line":565,"context":256},229,{"file":542,"line":567,"context":256},236,{"file":542,"line":569,"context":256},243,{"file":542,"line":152,"context":256},{"file":542,"line":161,"context":256},{"file":542,"line":195,"context":256},{"file":542,"line":574,"context":256},270,{"file":576,"line":260,"context":256},"content\\settings.php",{"file":576,"line":482,"context":256},{"file":576,"line":362,"context":256},{"file":576,"line":501,"context":256},{"file":576,"line":322,"context":256},{"file":576,"line":367,"context":256},{"file":576,"line":583,"context":256},62,{"file":576,"line":585,"context":256},64,{"file":576,"line":587,"context":256},65,{"file":576,"line":589,"context":256},70,{"file":576,"line":327,"context":256},{"file":576,"line":329,"context":256},{"file":576,"line":289,"context":256},{"file":576,"line":297,"context":256},{"file":576,"line":300,"context":256},{"file":576,"line":596,"context":256},98,{"file":576,"line":344,"context":256},{"file":576,"line":306,"context":256},{"file":576,"line":600,"context":256},123,{"file":576,"line":187,"context":256},{"file":576,"line":603,"context":256},130,{"file":576,"line":547,"context":256},{"file":576,"line":398,"context":256},{"file":576,"line":607,"context":256},155,{"file":576,"line":520,"context":256},{"file":576,"line":403,"context":256},{"file":576,"line":522,"context":256},{"file":576,"line":410,"context":256},{"file":576,"line":613,"context":256},176,{"file":576,"line":615,"context":256},187,{"file":204,"line":304,"context":256},{"file":204,"line":618,"context":256},122,{"file":204,"line":620,"context":256},129,{"file":204,"line":622,"context":256},147,{"file":204,"line":554,"context":256},{"file":204,"line":438,"context":256},{"file":204,"line":152,"context":256},{"file":204,"line":451,"context":256},{"file":204,"line":628,"context":256},286,{"file":182,"line":630,"context":256},278,[],[633,650,673,681,697,706,729,738],{"entryPoint":634,"graph":635,"unsanitizedCount":14,"severity":649},"yabi_cancel_invoice (includes\\ajax.php:103)",{"nodes":636,"edges":647},[637,642],{"id":638,"type":639,"label":640,"file":204,"line":641},"n0","source","$_POST",109,{"id":643,"type":644,"label":645,"file":204,"line":620,"wp_function":646},"n1","sink","echo() [XSS]","echo",[648],{"from":638,"to":643,"sanitized":203},"medium",{"entryPoint":651,"graph":652,"unsanitizedCount":32,"severity":649},"yabi_create_prefix (includes\\ajax.php:134)",{"nodes":653,"edges":669},[654,655,656,659,663],{"id":638,"type":639,"label":640,"file":204,"line":394},{"id":643,"type":644,"label":645,"file":204,"line":622,"wp_function":646},{"id":657,"type":639,"label":640,"file":204,"line":658},"n2",144,{"id":660,"type":661,"label":662,"file":204,"line":658},"n3","transform","→ yabi_dian_create_prefix()",{"id":664,"type":644,"label":665,"file":666,"line":667,"wp_function":668},"n4","update_option() [Settings Manipulation]","includes\\transaction.php",1041,"update_option",[670,671,672],{"from":638,"to":643,"sanitized":203},{"from":657,"to":660,"sanitized":203},{"from":660,"to":664,"sanitized":203},{"entryPoint":674,"graph":675,"unsanitizedCount":14,"severity":649},"yabi_generate_invoice (includes\\ajax.php:152)",{"nodes":676,"edges":679},[677,678],{"id":638,"type":639,"label":640,"file":204,"line":403},{"id":643,"type":644,"label":645,"file":204,"line":554,"wp_function":646},[680],{"from":638,"to":643,"sanitized":203},{"entryPoint":682,"graph":683,"unsanitizedCount":32,"severity":649},"yabi_save_prefix (includes\\ajax.php:223)",{"nodes":684,"edges":693},[685,686,687,689,691],{"id":638,"type":639,"label":640,"file":204,"line":565},{"id":643,"type":644,"label":645,"file":204,"line":438,"wp_function":646},{"id":657,"type":639,"label":640,"file":204,"line":688},231,{"id":660,"type":661,"label":690,"file":204,"line":688},"→ yabi_dian_save_prefix()",{"id":664,"type":644,"label":665,"file":666,"line":692,"wp_function":668},1272,[694,695,696],{"from":638,"to":643,"sanitized":203},{"from":657,"to":660,"sanitized":203},{"from":660,"to":664,"sanitized":203},{"entryPoint":698,"graph":699,"unsanitizedCount":14,"severity":649},"yabi_send_invoice (includes\\ajax.php:239)",{"nodes":700,"edges":704},[701,703],{"id":638,"type":639,"label":640,"file":204,"line":702},245,{"id":643,"type":644,"label":645,"file":204,"line":152,"wp_function":646},[705],{"from":638,"to":643,"sanitized":203},{"entryPoint":707,"graph":708,"unsanitizedCount":32,"severity":728},"\u003Cajax> (includes\\ajax.php:0)",{"nodes":709,"edges":722},[710,712,713,714,715,716,718,720],{"id":638,"type":639,"label":711,"file":204,"line":641},"$_POST (x7)",{"id":643,"type":644,"label":645,"file":204,"line":620,"wp_function":646},{"id":657,"type":639,"label":640,"file":204,"line":658},{"id":660,"type":661,"label":662,"file":204,"line":658},{"id":664,"type":644,"label":665,"file":666,"line":667,"wp_function":668},{"id":717,"type":639,"label":640,"file":204,"line":688},"n5",{"id":719,"type":661,"label":690,"file":204,"line":688},"n6",{"id":721,"type":644,"label":665,"file":666,"line":692,"wp_function":668},"n7",[723,724,725,726,727],{"from":638,"to":643,"sanitized":236},{"from":657,"to":660,"sanitized":203},{"from":660,"to":664,"sanitized":203},{"from":717,"to":719,"sanitized":203},{"from":719,"to":721,"sanitized":203},"low",{"entryPoint":730,"graph":731,"unsanitizedCount":32,"severity":728},"yabi_settings (wc-yabi.php:223)",{"nodes":732,"edges":736},[733,735],{"id":638,"type":639,"label":734,"file":182,"line":434},"$_POST (x2)",{"id":643,"type":644,"label":665,"file":182,"line":152,"wp_function":668},[737],{"from":638,"to":643,"sanitized":203},{"entryPoint":739,"graph":740,"unsanitizedCount":32,"severity":728},"\u003Cwc-yabi> (wc-yabi.php:0)",{"nodes":741,"edges":744},[742,743],{"id":638,"type":639,"label":734,"file":182,"line":434},{"id":643,"type":644,"label":665,"file":182,"line":152,"wp_function":668},[745],{"from":638,"to":643,"sanitized":203},{"summary":747,"deductions":748},"The wc-yabi v4.0.1 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by exclusively using prepared statements for SQL queries and has no known vulnerabilities in its history, suggesting a generally well-maintained codebase. However, a significant concern arises from its attack surface, with 13 AJAX handlers, 11 of which lack authentication checks. This presents a considerable risk of unauthorized actions being performed if these handlers can be triggered by unauthenticated users.\n\nThe static analysis also highlights that a substantial portion of output (54%) is not properly escaped. While there are no critical or high severity taint flows, and no dangerous functions or file operations are used, the lack of proper output escaping on nearly half of all outputs is a potential avenue for Cross-Site Scripting (XSS) vulnerabilities. The presence of only two nonce checks and two capability checks across the entire plugin further exacerbates the risk associated with the unprotected AJAX endpoints.\n\nIn conclusion, while the absence of known CVEs and secure SQL practices are strengths, the high number of unprotected AJAX endpoints and significant percentage of unescaped output represent notable security weaknesses that require attention. The plugin's limited use of authentication and nonce checks on its entry points needs to be addressed to improve its overall security.",[749,751,754,757],{"reason":750,"points":131},"11 unprotected AJAX handlers",{"reason":752,"points":753},"54% of outputs unescaped",7,{"reason":755,"points":756},"Only 2 nonce checks",5,{"reason":758,"points":756},"Only 2 capability checks","2026-03-17T07:08:34.832Z",{"wat":761,"direct":770},{"assetPaths":762,"generatorPatterns":765,"scriptPaths":766,"versionParams":767},[763,764],"\u002Fwp-content\u002Fplugins\u002Fwc-yabi\u002Fscripts\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fwc-yabi\u002Fscripts\u002Fadmin.js",[],[764],[768,769],"wc-yabi\u002Fscripts\u002Fadmin.css?ver=","wc-yabi\u002Fscripts\u002Fadmin.js?ver=",{"cssClasses":771,"htmlComments":772,"htmlAttributes":773,"restEndpoints":774,"jsGlobals":775,"shortcodeOutput":777},[],[],[],[],[776],"yabiAdmin",[]]