WP Advanced PDF Security & Risk Analysis

The "wp-advanced-pdf" v1.1.7 plugin exhibits a concerning security posture despite some positive indications. While the use of prepared statements for SQL queries and a majority of properly escaped outputs are good practices, the presence of two unprotected AJAX handlers significantly increases the attack surface and creates a clear risk of unauthorized actions or data compromise. The taint analysis revealing a flow with unsanitized paths, even without critical or high severity, warrants attention as it suggests potential vulnerabilities if specific input is not handled correctly.

The plugin's vulnerability history is a major red flag. With two currently unpatched medium severity CVEs, both related to missing authorization and cross-site scripting, this plugin has a proven track record of security flaws. The fact that these are not patched indicates a lack of ongoing maintenance or responsiveness to security issues. The last vulnerability being dated in the future (2025-12-31) is peculiar and likely an error in the provided data, but it doesn't negate the historical pattern of issues.

Overall, the combination of unprotected entry points, past vulnerabilities (especially unpatched ones), and potential taint flows outweighs the positive aspects like proper SQL handling. Organizations using this plugin should be highly cautious and prioritize updating or replacing it. The risks associated with unauthorized access and potential cross-site scripting are significant.