WP Business Directory FREE Security & Risk Analysis

The overall security posture of wp-business-directory-free v1.0.8.2 shows some concerning weaknesses despite a lack of known historical vulnerabilities. The plugin exhibits a significant attack surface with 5 AJAX handlers, all of which lack authentication checks, presenting a clear risk of unauthorized access and execution of potentially sensitive functions. While the majority of SQL queries use prepared statements, the presence of 4 taint flows with unsanitized paths, specifically two of high severity, indicates potential vulnerabilities that could be exploited if user-supplied data is not properly validated and sanitized before being used in file operations or other sensitive contexts.

The absence of any recorded CVEs is a positive sign, suggesting the plugin has historically been developed with some security considerations or has not been a prominent target. However, this should not be relied upon as a sole indicator of current security. The code signals for dangerous functions and external HTTP requests are positive, indicating good practices in those areas. The significant number of output operations (512) with only 57% properly escaped is a moderate concern, potentially leading to cross-site scripting (XSS) vulnerabilities if certain outputs are not correctly handled. The plugin's strengths lie in its use of prepared statements for SQL and the absence of dangerous functions. The primary weaknesses are the unprotected AJAX endpoints and the high-severity taint flows.