[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fbAENMLpWyRb4jNOZ4aCw7VX-JkWuKjSoP4Dx7mF5xds":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":14,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":34,"analysis":127,"fingerprints":1409},"wp-contacts-slim","WP Contacts Slim","1.0.0","scripthat","https:\u002F\u002Fprofiles.wordpress.org\u002Fscripthat\u002F","\u003Cp>WP Contacts is an excellent WordPress Plugin that allows you to manage your leads, contacts (or anything else) in WordPress.  Easy to install, intuitive to work with frontend management system, WP Contacts gives you excellent tools for organizing your contacts.  With WP Contacts you can set images for your contacts, create your own custom fields (as many as you want), upload files to associate with contacts, add notes, export and import contacts.\u003C\u002Fp>\n\u003Cp>WP Contacts is a multi-user and multi-role system allowing you to set detailed permissions for who can access your contacts along with a great many other features!  WP Contacts is built to be responsive on all of your devices and is extremely versatile.\u003C\u002Fp>\n\u003Cp>Detailed documentation can be found in our \u003Ca href=\"https:\u002F\u002Fwww.scripthat.com\u002Fsupport\u002F\" rel=\"nofollow ugc\">online documentation\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Installation video of WP Contacts\u003C\u002Fh4>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FeWkLnXzQvUY?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n","Take complete control of your own leads and contacts right in your WordPress installation, powerful features and easy to use.",10,1197,0,"","5.3.21","4.9",[18,19,20,21,22],"contact-database","contacts","leads","leads-database","personal-database","https:\u002F\u002Fwww.wpcontacts.co","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-contacts-slim.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},1,30,94,"2026-04-04T17:44:15.490Z",[35,54,72,91,110],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":25,"num_ratings":30,"last_updated":45,"tested_up_to":46,"requires_at_least":47,"requires_php":14,"tags":48,"homepage":50,"download_link":51,"security_score":52,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":53},"funnel","Funnel","1.4.2","ablancodev","https:\u002F\u002Fprofiles.wordpress.org\u002Feggemplo\u002F","\u003Cp>Create a conversion funnel in your wordpress.\u003Cbr \u002F>\nIt allows for seamless tracking and categorization of users based on their conversion states, providing valuable insights to optimize marketing strategies and enhance overall user engagement.\u003C\u002Fp>\n\u003Cp>You can create leads manually or automatically when register new users.\u003C\u002Fp>\n\u003Cp>Users can travel through the conversion funnel by visiting different pages.\u003C\u002Fp>\n\u003Cp>Referrer system ready with url param.\u003C\u002Fp>\n\u003Cp>If you need to notify them, you can use WordPress emails.\u003C\u002Fp>\n","Streamline Your Marketing: Effortlessly Navigate User Conversion Paths",20,3988,"2025-02-12T07:32:00.000Z","6.7.5","5.9",[19,36,20,49],"marketing","https:\u002F\u002Ffunnelwpplugin.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffunnel.1.4.2.zip",92,"2026-03-15T15:16:48.613Z",{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":43,"downloaded":62,"rating":25,"num_ratings":30,"last_updated":63,"tested_up_to":15,"requires_at_least":64,"requires_php":65,"tags":66,"homepage":70,"download_link":71,"security_score":52,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":53},"scuolasemplice-contacts","ScuolaSemplice Contacts","1.7","BluCloud Srl","https:\u002F\u002Fprofiles.wordpress.org\u002Fblucloudsrl\u002F","\u003Cp>This free plugin is provided together with the ScuolaSemplice educational activity management system and allows you to publish contact forms to acquire leads and student data that will be automatically imported into the software.\u003Cbr \u002F>\nThe plugin allows you to dynamically design the forms, also including custom fields defined in ScuolaSemplice, allowing you to create completely customizable contact formsThis free plugin is provided together with the ScuolaSemplice educational activity management system and allows you to publish contact forms to acquire leads and student data that will be automatically imported into the software.\u003Cbr \u002F>\nThe plugin allows you to dynamically design the forms, also including custom fields defined in ScuolaSemplice, allowing you to create completely customizable contact forms\u003C\u002Fp>\n\u003Ch3>\u003C\u002Fh3>\n\u003Ch3>ScuolaSemplice Contacts\u003C\u002Fh3>\n\u003Cp>Contributors: blucloud srl\u003Cbr \u002F>\nTags: ScuolaSemplice, crm, leads, contacts, dynamic forms\u003Cbr \u002F>\nRequires at least: 5.3\u003Cbr \u002F>\nTested up to: 5.3\u003Cbr \u002F>\nRequires PHP: 5.6\u003Cbr \u002F>\nStable tag: 0.1\u003Cbr \u002F>\nLicense: GPLv3\u003C\u002Fp>\n\u003Cp>Plugin that allows you to publish contact forms to acquire leads and student data that will be automatically imported into the ScuolaSemplice software\u003C\u002Fp>\n","Plugin that allows you to publish contact forms to acquire leads and student data that will be automatically imported into the ScuolaSemplice software",1359,"2024-12-06T22:54:00.000Z","5.3","5.6",[19,67,68,20,69],"crm","dynamic-forms","scuolasemplice","https:\u002F\u002Fwww.scuolasemplice.it\u002Fcontacts-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fscuolasemplice-contacts.zip",{"slug":73,"name":74,"version":75,"author":76,"author_profile":77,"description":78,"short_description":79,"active_installs":13,"downloaded":80,"rating":13,"num_ratings":13,"last_updated":81,"tested_up_to":82,"requires_at_least":83,"requires_php":65,"tags":84,"homepage":88,"download_link":89,"security_score":90,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":53},"business-contacts-authentic-verifiable-business-leads","Get Telephone Contacts of Prospective Customers","1.0","Requested","https:\u002F\u002Fprofiles.wordpress.org\u002Frequested\u002F","\u003Cp>Authentic & verifiable telephone contacts of prospective customers in different sectors, countries & states). We help to fetch verifiable business contacts around the world that could be beneficiary to your business!\u003C\u002Fp>\n\u003Cp>Imagine you set up a company that produces bread flour, and you wanted to let all bread factories in your town to know about your business? That’s where we can help. Using powerful tools we can get you contacts that might be interested in your products. These are similar customers for other businesses like yours. When you don’t find a sector you want – you can simply request it! \u003Ca href=\"https:\u002F\u002Frequested.live\" rel=\"nofollow ugc\">product website\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>With contacts, you can send bulk SMS to them or WhatsApp messages or even a cold call announcing your products.\u003C\u002Fp>\n","Authentic & verifiable telephone contacts of prospective customers in different sectors, countries & states). We help to fetch verifiable busi &hellip;",754,"2022-10-19T18:05:00.000Z","6.0.11","3.8",[85,19,20,86,87],"business","numbers","telephone","https:\u002F\u002Frequested.live\u002Fwpplugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbusiness-contacts-authentic-verifiable-business-leads.1.0.zip",85,{"slug":92,"name":93,"version":6,"author":94,"author_profile":95,"description":96,"short_description":97,"active_installs":13,"downloaded":98,"rating":13,"num_ratings":13,"last_updated":99,"tested_up_to":100,"requires_at_least":101,"requires_php":102,"tags":103,"homepage":107,"download_link":108,"security_score":90,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":109},"easy-leads-free","Easy Leads Free","butteff","https:\u002F\u002Fprofiles.wordpress.org\u002Fbutteff\u002F","\u003Cp>Easy Leads Free – collect leads and contacts from your website to the database. Send mails to your leads from the admin panel after.\u003C\u002Fp>\n\u003Cp>All the leads, collected from the form, will be stored inside your database. You can manage Leads and send mails to them with your own texts.\u003C\u002Fp>\n","Easy Leads Free - collect leads and contacts from your website to the database. Send mails to your leads from the admin panel after.",7395,"2020-10-28T17:12:00.000Z","5.5.18","3.0.1","5.4",[19,104,20,105,106],"form","mails","shortcode","https:\u002F\u002Fgithub.com\u002Fbutteff\u002Feasy_leads_free_wordpress_plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-leads-free.zip","2026-03-15T14:54:45.397Z",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":13,"downloaded":118,"rating":13,"num_ratings":13,"last_updated":119,"tested_up_to":120,"requires_at_least":121,"requires_php":122,"tags":123,"homepage":125,"download_link":126,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":53},"formular-af-citizenone-journalsystem","Formular af CitizenOne journalsystem","1.4.0","AWORK Group A\u002FS","https:\u002F\u002Fprofiles.wordpress.org\u002Fawbot123\u002F","\u003Cul>\n\u003Cli>Customizable embed forms with color matching\u003C\u002Fli>\n\u003Cli>Real-time lead submission to CitizenOne dashboard\u003C\u002Fli>\n\u003Cli>Shortcode & Gutenberg block implementation\u003C\u002Fli>\n\u003Cli>“Formular af CitizenOne – Journalsystem med alt inklusiv” branding\u003C\u002Fli>\n\u003Cli>Mobile-responsive design\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin utilizes the following third-party services to enhance functionality:\u003C\u002Fp>\n\u003Ch3>hCaptcha\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Purpose\u003C\u002Fstrong>: Optional spam protection for contact forms\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Data Sent\u003C\u002Fstrong>: User interaction data through hCaptcha’s API\u003C\u002Fli>\n\u003Cli>\u003Cstrong>When\u003C\u002Fstrong>: Only when site administrator has configured hCaptcha keys in plugin settings\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Terms\u003C\u002Fstrong>: https:\u002F\u002Fhcaptcha.com\u002Fterms\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Privacy Policy\u003C\u002Fstrong>: https:\u002F\u002Fhcaptcha.com\u002Fprivacy\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>CitizenOne API\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Purpose\u003C\u002Fstrong>: Processing form submissions and generating authentication tokens\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Data Sent\u003C\u002Fstrong>: Form submission data (as provided by users) and authentication tokens\u003C\u002Fli>\n\u003Cli>\u003Cstrong>When\u003C\u002Fstrong>: When users submit forms through the contact form\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Terms\u003C\u002Fstrong>: https:\u002F\u002Fcitizenone.dk\u002Fvilkaarogbetingelser\u002F\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Privacy Policy\u003C\u002Fstrong>: https:\u002F\u002Fcitizenone.dk\u002Fprivatlivspolitik\u002F\u003C\u002Fli>\n\u003C\u002Ful>\n","Embed customizable contact forms from CitizenOne on any WordPress site.",223,"2026-01-05T06:19:00.000Z","6.9.4","5.8","7.4",[124,19,20],"citizenone","https:\u002F\u002Fgithub.com\u002FAWORK-AS\u002Fcontact-form-app","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fformular-af-citizenone-journalsystem.1.4.0.zip",{"attackSurface":128,"codeSignals":330,"taintFlows":1260,"riskAssessment":1386,"analyzedAt":1408},{"hooks":129,"ajaxHandlers":296,"restRoutes":318,"shortcodes":325,"cronEvents":326,"entryPointCount":329,"unprotectedCount":329},[130,136,140,142,145,149,154,159,163,165,168,170,174,177,181,184,187,190,193,196,201,204,209,212,217,220,224,227,231,236,238,241,245,249,253,257,260,265,268,271,275,278,280,284,287,291],{"type":131,"name":132,"callback":133,"file":134,"line":135},"filter","page_attributes_dropdown_pages_args","register_project_templates","includes\\class-page-templater.php",47,{"type":131,"name":137,"callback":138,"file":134,"line":139},"theme_page_templates","add_new_template",52,{"type":131,"name":132,"callback":133,"file":134,"line":141},57,{"type":131,"name":143,"callback":133,"file":134,"line":144},"wp_insert_post_data",64,{"type":131,"name":146,"callback":147,"file":134,"line":148},"template_include","view_project_template",72,{"type":150,"name":151,"callback":152,"file":134,"line":153},"action","plugins_loaded","get_instance",160,{"type":150,"name":155,"callback":156,"file":157,"line":158},"init","load_settings","includes\\class-wcp-api-tabs.php",90,{"type":150,"name":160,"callback":161,"file":157,"line":162},"admin_init","register_first_tab",91,{"type":150,"name":160,"callback":164,"file":157,"line":52},"register_second_tab",{"type":150,"name":160,"callback":166,"file":157,"line":167},"register_db_tab",93,{"type":150,"name":160,"callback":169,"file":157,"line":32},"register_info_tab",{"type":150,"name":171,"callback":172,"file":157,"line":173},"admin_menu","add_admin_menus",95,{"type":150,"name":171,"callback":175,"file":157,"line":176},"add_admin_submenus",97,{"type":150,"name":178,"callback":179,"file":157,"line":180},"admin_post_wcpdlbackups","dlbackups_callback",107,{"type":150,"name":182,"callback":182,"priority":11,"file":157,"line":183},"admin_enqueue_scripts",1441,{"type":150,"name":182,"callback":185,"priority":11,"file":157,"line":186},"admin_enqueue_styles",1442,{"type":150,"name":182,"callback":188,"priority":11,"file":157,"line":189},"admin_enqueue_db_scripts",1448,{"type":150,"name":182,"callback":191,"priority":11,"file":157,"line":192},"admin_enqueue_db_styles",1449,{"type":150,"name":151,"callback":194,"file":157,"line":195},"closure",1566,{"type":131,"name":197,"callback":198,"file":199,"line":200},"wp_mail_from_name","custom_wp_mail_from_name","includes\\class-wcp-cron.php",89,{"type":131,"name":202,"callback":203,"file":199,"line":158},"wp_mail_content_type","set_html_content_type",{"type":150,"name":205,"callback":206,"file":207,"line":208},"admin_post_wcpexport","wcpexport_callback","includes\\class-wcp-front.php",27,{"type":150,"name":210,"callback":206,"file":207,"line":211},"admin_post_nopriv_wcpexport",28,{"type":150,"name":213,"callback":214,"priority":215,"file":207,"line":216},"wp_enqueue_scripts","enqueue_styles",9999,31,{"type":150,"name":213,"callback":218,"priority":215,"file":207,"line":219},"enqueue_scripts",32,{"type":131,"name":221,"callback":222,"file":207,"line":223},"the_content","wcp_content_filter",36,{"type":150,"name":155,"callback":225,"file":207,"line":226},"wp_bar_show",39,{"type":131,"name":228,"callback":229,"file":207,"line":230},"show_admin_bar","__return_false",58,{"type":150,"name":232,"callback":233,"file":234,"line":235},"enqueue_block_editor_assets","myprefix_enqueue_assets","includes\\class-wcp-gutenberg.php",19,{"type":150,"name":155,"callback":237,"file":234,"line":208},"shwcp_pagedb_translations",{"type":150,"name":155,"callback":239,"file":234,"line":240},"shwcp_pagedb_register_meta",41,{"type":150,"name":242,"callback":243,"file":234,"line":244},"rest_api_init","shwcp_pagedb_api_posts_meta_field",59,{"type":150,"name":182,"callback":246,"priority":11,"file":247,"line":248},"admin_meta_enqueue_script","includes\\class-wcp-metabox.php",13,{"type":150,"name":250,"callback":251,"file":247,"line":252},"add_meta_boxes_page","db_selection",15,{"type":150,"name":254,"callback":255,"file":247,"line":256},"save_post","save_postdata",17,{"type":150,"name":242,"callback":258,"file":259,"line":223},"wcp_register_api_hooks","includes\\class-wcp-rest.php",{"type":150,"name":261,"callback":262,"file":263,"line":264},"wp_head","wcp_slug_render_title","includes\\wcp-fullpage-template.php",25,{"type":150,"name":151,"callback":266,"file":267,"line":223},"shwcp_upload_directory","shwcp-slim.php",{"type":150,"name":155,"callback":269,"file":267,"line":270},"get_the_current_user",42,{"type":150,"name":272,"callback":273,"file":267,"line":274},"after_setup_theme","wcp_slug_setup",43,{"type":150,"name":155,"callback":276,"file":267,"line":277},"shwcp_load_textdomain",86,{"type":150,"name":155,"callback":279,"file":267,"line":32},"shwcp_db_check",{"type":150,"name":281,"callback":282,"priority":11,"file":267,"line":283},"wcp_cron_schedule_hook","wcp_cron_check",110,{"type":150,"name":151,"callback":285,"file":267,"line":286},"shwcp_editor_check",118,{"type":150,"name":288,"callback":289,"file":267,"line":290},"wpcf7_init","wpcf7_add_shortcode_wpcontacts",125,{"type":150,"name":292,"callback":293,"priority":294,"file":267,"line":295},"wpcf7_mail_sent","wpcontacts_add_lead",2,126,[297,302,305,309,313,316],{"action":298,"nopriv":299,"callback":300,"hasNonce":299,"hasCapCheck":299,"file":157,"line":301},"ajax-wcpbackend",false,"myajax_wcpbackend_callback",102,{"action":303,"nopriv":299,"callback":304,"hasNonce":299,"hasCapCheck":299,"file":207,"line":43},"ajax-wcpfrontend","myajax_wcpfrontend_callback",{"action":303,"nopriv":306,"callback":307,"hasNonce":299,"hasCapCheck":299,"file":207,"line":308},true,"nopriv_wcpfrontend_callback",21,{"action":310,"nopriv":306,"callback":311,"hasNonce":299,"hasCapCheck":299,"file":207,"line":312},"ajaxlogin","ajax_login",23,{"action":314,"nopriv":299,"callback":314,"hasNonce":299,"hasCapCheck":299,"file":207,"line":315},"dynamic_css",34,{"action":314,"nopriv":306,"callback":314,"hasNonce":299,"hasCapCheck":299,"file":207,"line":317},35,[319],{"namespace":320,"route":321,"methods":322,"callback":324,"permissionCallback":26,"file":234,"line":135},"shwcpdb\u002Fv1","\u002Fupdate-meta",[323],"POST","shwcp_pagedb_update_callback",[],[327],{"hook":281,"callback":281,"file":267,"line":328},111,7,{"dangerousFunctions":331,"sqlUsage":391,"outputEscaping":664,"fileOperations":1251,"externalRequests":13,"nonceChecks":1252,"capabilityChecks":30,"bundledLibraries":1253},[332,337,341,345,348,350,354,358,361,364,368,371,373,377,380,382,384,388],{"fn":333,"file":334,"line":335,"context":336},"unserialize","includes\\class-allleads.php",747,"$file_data = unserialize($v);",{"fn":333,"file":338,"line":339,"context":340},"includes\\class-form-integration.php",263,"$db_values = unserialize($option->option_value);",{"fn":333,"file":342,"line":343,"context":344},"includes\\class-wcp-ajax.php",525,"$file_data = unserialize($lead_files);",{"fn":333,"file":342,"line":346,"context":347},2395,"$lead_vals['lead_files'] = isset($entry->lead_files) ? unserialize($entry->lead_files) : '';",{"fn":333,"file":199,"line":144,"context":349},"$notify_who = unserialize($v->notify_who);",{"fn":333,"file":351,"line":352,"context":353},"includes\\class-wcp-export.php",379,"$lead_files = unserialize($entries[$k]->lead_files);",{"fn":333,"file":355,"line":356,"context":357},"includes\\class-wcp-individual.php",218,"$lead_files = unserialize($lead_vals['lead_files']);",{"fn":333,"file":259,"line":359,"context":360},558,"$files = unserialize($entry->lead_files);",{"fn":333,"file":259,"line":362,"context":363},817,"$lead_vals['lead_files'] = unserialize($entry->lead_files);",{"fn":333,"file":365,"line":366,"context":367},"includes\\PHPExcel\\Classes\\PHPExcel\\CachedObjectStorage\\APC.php",156,"$this->_currentObject = unserialize($obj);",{"fn":333,"file":369,"line":295,"context":370},"includes\\PHPExcel\\Classes\\PHPExcel\\CachedObjectStorage\\DiscISAM.php","$this->_currentObject = unserialize(fread($this->_fileHandle,$this->_cellCache[$pCoord]['sz']));",{"fn":333,"file":372,"line":153,"context":367},"includes\\PHPExcel\\Classes\\PHPExcel\\CachedObjectStorage\\Memcache.php",{"fn":333,"file":374,"line":375,"context":376},"includes\\PHPExcel\\Classes\\PHPExcel\\CachedObjectStorage\\MemoryGZip.php",98,"$this->_currentObject = unserialize(gzinflate($this->_cellCache[$pCoord]));",{"fn":333,"file":378,"line":375,"context":379},"includes\\PHPExcel\\Classes\\PHPExcel\\CachedObjectStorage\\MemorySerialized.php","$this->_currentObject = unserialize($this->_cellCache[$pCoord]);",{"fn":333,"file":381,"line":286,"context":370},"includes\\PHPExcel\\Classes\\PHPExcel\\CachedObjectStorage\\PHPTemp.php",{"fn":333,"file":383,"line":153,"context":367},"includes\\PHPExcel\\Classes\\PHPExcel\\CachedObjectStorage\\Wincache.php",{"fn":333,"file":385,"line":386,"context":387},"includes\\PHPExcel\\Classes\\PHPExcel\\Worksheet.php",2839,"$this->{$key} = unserialize(serialize($val));",{"fn":333,"file":389,"line":390,"context":387},"includes\\PHPExcel\\Classes\\PHPExcel.php",866,{"prepared":392,"raw":393,"locations":394},26,146,[395,397,398,399,401,404,406,409,411,413,415,417,419,421,423,424,426,427,428,429,431,433,434,436,438,440,442,444,445,446,447,449,451,453,456,458,460,463,465,466,467,468,470,472,473,475,477,478,481,482,483,485,487,489,491,493,495,497,499,501,502,504,506,508,510,512,514,516,518,520,522,524,526,528,530,532,534,536,538,540,542,544,546,548,550,552,554,556,558,560,562,564,566,568,569,570,572,573,574,575,576,578,579,580,582,584,586,588,590,592,594,596,599,600,602,605,607,609,611,613,615,617,620,621,623,625,626,628,630,632,634,636,638,640,642,644,646,648,650,652,654,656,658,660,661,663],{"file":334,"line":135,"context":396},"$wpdb->get_results() with variable interpolation",{"file":334,"line":139,"context":396},{"file":334,"line":141,"context":396},{"file":334,"line":400,"context":396},70,{"file":334,"line":402,"context":403},79,"$wpdb->get_var() with variable interpolation",{"file":334,"line":405,"context":396},99,{"file":334,"line":407,"context":408},131,"$wpdb->get_row() with variable interpolation",{"file":334,"line":410,"context":408},139,{"file":334,"line":412,"context":403},289,{"file":334,"line":414,"context":403},302,{"file":334,"line":416,"context":396},339,{"file":334,"line":418,"context":396},352,{"file":334,"line":420,"context":408},672,{"file":422,"line":392,"context":396},"includes\\class-db-updater.php",{"file":422,"line":216,"context":403},{"file":422,"line":240,"context":425},"$wpdb->query() with variable interpolation",{"file":422,"line":135,"context":403},{"file":422,"line":141,"context":425},{"file":422,"line":144,"context":403},{"file":422,"line":430,"context":425},74,{"file":422,"line":432,"context":403},76,{"file":422,"line":277,"context":425},{"file":422,"line":435,"context":396},144,{"file":422,"line":437,"context":403},149,{"file":422,"line":439,"context":425},159,{"file":422,"line":441,"context":425},164,{"file":422,"line":443,"context":403},179,{"file":338,"line":270,"context":396},{"file":338,"line":158,"context":396},{"file":338,"line":162,"context":396},{"file":338,"line":448,"context":403},96,{"file":338,"line":450,"context":403},108,{"file":338,"line":452,"context":396},259,{"file":454,"line":455,"context":403},"includes\\class-main-wcp.php",325,{"file":454,"line":457,"context":396},381,{"file":454,"line":459,"context":396},473,{"file":461,"line":462,"context":403},"includes\\class-setup-wcp.php",16,{"file":461,"line":464,"context":425},40,{"file":461,"line":240,"context":425},{"file":461,"line":270,"context":425},{"file":461,"line":274,"context":425},{"file":461,"line":469,"context":425},44,{"file":461,"line":471,"context":425},45,{"file":461,"line":400,"context":396},{"file":461,"line":474,"context":396},73,{"file":342,"line":476,"context":396},69,{"file":342,"line":400,"context":396},{"file":342,"line":479,"context":480},145,"$wpdb->get_col() with variable interpolation",{"file":342,"line":437,"context":408},{"file":342,"line":366,"context":396},{"file":342,"line":484,"context":396},162,{"file":342,"line":486,"context":396},262,{"file":342,"line":488,"context":396},269,{"file":342,"line":490,"context":396},366,{"file":342,"line":492,"context":396},402,{"file":342,"line":494,"context":403},513,{"file":342,"line":496,"context":403},514,{"file":342,"line":498,"context":403},515,{"file":342,"line":500,"context":396},593,{"file":342,"line":420,"context":396},{"file":342,"line":503,"context":396},673,{"file":342,"line":505,"context":396},696,{"file":342,"line":507,"context":396},737,{"file":342,"line":509,"context":425},738,{"file":342,"line":511,"context":396},913,{"file":342,"line":513,"context":396},928,{"file":342,"line":515,"context":403},939,{"file":342,"line":517,"context":396},999,{"file":342,"line":519,"context":425},1004,{"file":342,"line":521,"context":480},1025,{"file":342,"line":523,"context":425},1037,{"file":342,"line":525,"context":480},1090,{"file":342,"line":527,"context":425},1092,{"file":342,"line":529,"context":425},1128,{"file":342,"line":531,"context":425},1135,{"file":342,"line":533,"context":425},1140,{"file":342,"line":535,"context":425},1145,{"file":342,"line":537,"context":425},1150,{"file":342,"line":539,"context":396},1403,{"file":342,"line":541,"context":396},1526,{"file":342,"line":543,"context":396},1532,{"file":342,"line":545,"context":403},1558,{"file":342,"line":547,"context":396},1813,{"file":342,"line":549,"context":403},1879,{"file":342,"line":551,"context":396},1911,{"file":342,"line":553,"context":403},1966,{"file":342,"line":555,"context":403},1967,{"file":342,"line":557,"context":396},1993,{"file":342,"line":559,"context":425},2031,{"file":342,"line":561,"context":396},2422,{"file":157,"line":563,"context":396},600,{"file":157,"line":565,"context":396},853,{"file":157,"line":567,"context":396},1421,{"file":199,"line":256,"context":396},{"file":199,"line":139,"context":396},{"file":199,"line":571,"context":403},68,{"file":351,"line":464,"context":396},{"file":351,"line":240,"context":396},{"file":351,"line":270,"context":396},{"file":351,"line":139,"context":396},{"file":351,"line":577,"context":403},61,{"file":351,"line":402,"context":396},{"file":351,"line":283,"context":408},{"file":351,"line":581,"context":396},215,{"file":351,"line":583,"context":396},241,{"file":351,"line":585,"context":396},261,{"file":351,"line":587,"context":396},285,{"file":351,"line":589,"context":396},316,{"file":351,"line":591,"context":403},403,{"file":351,"line":593,"context":403},411,{"file":595,"line":471,"context":396},"includes\\class-wcp-fields.php",{"file":597,"line":598,"context":396},"includes\\class-wcp-front-manage.php",38,{"file":597,"line":176,"context":396},{"file":207,"line":601,"context":396},341,{"file":603,"line":604,"context":396},"includes\\class-wcp-ie.php",103,{"file":603,"line":606,"context":396},154,{"file":355,"line":608,"context":408},22,{"file":355,"line":610,"context":396},135,{"file":355,"line":612,"context":396},152,{"file":355,"line":614,"context":396},681,{"file":355,"line":616,"context":403},722,{"file":618,"line":619,"context":403},"includes\\class-wcp-logging.php",81,{"file":618,"line":32,"context":403},{"file":618,"line":622,"context":396},133,{"file":618,"line":624,"context":396},147,{"file":259,"line":230,"context":396},{"file":259,"line":627,"context":403},328,{"file":259,"line":629,"context":396},376,{"file":259,"line":631,"context":396},377,{"file":259,"line":633,"context":396},435,{"file":259,"line":635,"context":396},436,{"file":259,"line":637,"context":396},459,{"file":259,"line":639,"context":396},467,{"file":259,"line":641,"context":403},663,{"file":259,"line":643,"context":403},725,{"file":259,"line":645,"context":396},844,{"file":259,"line":647,"context":396},1013,{"file":259,"line":649,"context":396},1021,{"file":259,"line":651,"context":396},1022,{"file":259,"line":653,"context":403},1052,{"file":655,"line":598,"context":396},"includes\\class-wcp-stats.php",{"file":655,"line":657,"context":396},106,{"file":655,"line":659,"context":396},143,{"file":655,"line":624,"context":403},{"file":655,"line":662,"context":396},167,{"file":267,"line":230,"context":480},{"escaped":665,"rawEcho":666,"locations":667},190,320,[668,671,672,674,675,677,679,681,683,685,687,689,691,693,695,697,699,701,703,705,707,709,711,713,715,717,719,721,722,724,726,728,730,732,734,736,738,740,742,744,746,748,749,751,753,755,757,759,761,763,765,767,769,771,773,775,777,779,781,783,785,787,789,791,793,795,797,799,801,803,805,807,809,811,813,815,817,819,821,823,825,827,829,831,832,834,836,838,840,842,843,845,847,849,851,853,854,856,858,860,862,864,866,868,870,872,873,874,876,878,880,881,883,884,886,888,889,891,892,894,896,898,900,902,903,904,906,907,909,911,912,914,915,917,918,920,922,924,925,927,929,930,932,934,936,937,939,941,942,944,946,947,949,951,953,954,956,958,959,961,963,965,966,968,970,971,973,975,976,978,980,982,983,985,987,988,990,992,994,995,997,999,1000,1002,1004,1006,1007,1009,1011,1012,1014,1016,1018,1019,1021,1023,1024,1026,1028,1030,1031,1033,1035,1036,1037,1039,1041,1042,1044,1046,1047,1049,1051,1053,1054,1056,1057,1058,1059,1060,1062,1063,1065,1067,1068,1070,1072,1073,1075,1077,1079,1081,1083,1085,1087,1089,1091,1093,1095,1097,1099,1101,1103,1105,1107,1109,1111,1112,1114,1116,1118,1120,1122,1124,1126,1128,1130,1132,1134,1136,1138,1140,1142,1144,1146,1148,1150,1151,1153,1155,1157,1159,1160,1162,1164,1166,1168,1170,1172,1174,1176,1178,1179,1181,1183,1185,1187,1189,1191,1193,1195,1197,1199,1201,1202,1204,1206,1208,1210,1212,1214,1216,1218,1219,1221,1223,1225,1227,1229,1231,1233,1235,1237,1238,1239,1241,1242,1245,1248,1250],{"file":134,"line":669,"context":670},151,"raw output",{"file":342,"line":240,"context":670},{"file":342,"line":673,"context":670},51,{"file":342,"line":189,"context":670},{"file":342,"line":676,"context":670},1489,{"file":342,"line":678,"context":670},1614,{"file":342,"line":680,"context":670},2045,{"file":342,"line":682,"context":670},2094,{"file":342,"line":684,"context":670},2116,{"file":342,"line":686,"context":670},2118,{"file":342,"line":688,"context":670},2135,{"file":342,"line":690,"context":670},2147,{"file":342,"line":692,"context":670},2285,{"file":157,"line":694,"context":670},353,{"file":157,"line":696,"context":670},354,{"file":157,"line":698,"context":670},355,{"file":157,"line":700,"context":670},356,{"file":157,"line":702,"context":670},358,{"file":157,"line":704,"context":670},361,{"file":157,"line":706,"context":670},369,{"file":157,"line":708,"context":670},380,{"file":157,"line":710,"context":670},382,{"file":157,"line":712,"context":670},392,{"file":157,"line":714,"context":670},394,{"file":157,"line":716,"context":670},396,{"file":157,"line":718,"context":670},399,{"file":157,"line":720,"context":670},409,{"file":157,"line":593,"context":670},{"file":157,"line":723,"context":670},413,{"file":157,"line":725,"context":670},416,{"file":157,"line":727,"context":670},426,{"file":157,"line":729,"context":670},428,{"file":157,"line":731,"context":670},430,{"file":157,"line":733,"context":670},433,{"file":157,"line":735,"context":670},443,{"file":157,"line":737,"context":670},445,{"file":157,"line":739,"context":670},447,{"file":157,"line":741,"context":670},450,{"file":157,"line":743,"context":670},460,{"file":157,"line":745,"context":670},462,{"file":157,"line":747,"context":670},464,{"file":157,"line":639,"context":670},{"file":157,"line":750,"context":670},482,{"file":157,"line":752,"context":670},498,{"file":157,"line":754,"context":670},516,{"file":157,"line":756,"context":670},517,{"file":157,"line":758,"context":670},518,{"file":157,"line":760,"context":670},519,{"file":157,"line":762,"context":670},520,{"file":157,"line":764,"context":670},530,{"file":157,"line":766,"context":670},539,{"file":157,"line":768,"context":670},548,{"file":157,"line":770,"context":670},550,{"file":157,"line":772,"context":670},552,{"file":157,"line":774,"context":670},555,{"file":157,"line":776,"context":670},564,{"file":157,"line":778,"context":670},566,{"file":157,"line":780,"context":670},568,{"file":157,"line":782,"context":670},571,{"file":157,"line":784,"context":670},580,{"file":157,"line":786,"context":670},584,{"file":157,"line":788,"context":670},585,{"file":157,"line":790,"context":670},589,{"file":157,"line":792,"context":670},603,{"file":157,"line":794,"context":670},607,{"file":157,"line":796,"context":670},608,{"file":157,"line":798,"context":670},612,{"file":157,"line":800,"context":670},614,{"file":157,"line":802,"context":670},616,{"file":157,"line":804,"context":670},619,{"file":157,"line":806,"context":670},630,{"file":157,"line":808,"context":670},632,{"file":157,"line":810,"context":670},643,{"file":157,"line":812,"context":670},644,{"file":157,"line":814,"context":670},646,{"file":157,"line":816,"context":670},647,{"file":157,"line":818,"context":670},656,{"file":157,"line":820,"context":670},665,{"file":157,"line":822,"context":670},667,{"file":157,"line":824,"context":670},676,{"file":157,"line":826,"context":670},677,{"file":157,"line":828,"context":670},692,{"file":157,"line":830,"context":670},694,{"file":157,"line":505,"context":670},{"file":157,"line":833,"context":670},698,{"file":157,"line":835,"context":670},712,{"file":157,"line":837,"context":670},713,{"file":157,"line":839,"context":670},715,{"file":157,"line":841,"context":670},719,{"file":157,"line":616,"context":670},{"file":157,"line":844,"context":670},724,{"file":157,"line":846,"context":670},739,{"file":157,"line":848,"context":670},740,{"file":157,"line":850,"context":670},742,{"file":157,"line":852,"context":670},744,{"file":157,"line":80,"context":670},{"file":157,"line":855,"context":670},756,{"file":157,"line":857,"context":670},758,{"file":157,"line":859,"context":670},760,{"file":157,"line":861,"context":670},772,{"file":157,"line":863,"context":670},774,{"file":157,"line":865,"context":670},776,{"file":157,"line":867,"context":670},779,{"file":157,"line":869,"context":670},804,{"file":157,"line":871,"context":670},807,{"file":157,"line":871,"context":670},{"file":157,"line":871,"context":670},{"file":157,"line":875,"context":670},823,{"file":157,"line":877,"context":670},825,{"file":157,"line":879,"context":670},826,{"file":157,"line":879,"context":670},{"file":157,"line":882,"context":670},830,{"file":157,"line":882,"context":670},{"file":157,"line":885,"context":670},832,{"file":157,"line":887,"context":670},833,{"file":157,"line":887,"context":670},{"file":157,"line":890,"context":670},838,{"file":157,"line":890,"context":670},{"file":157,"line":893,"context":670},858,{"file":157,"line":895,"context":670},859,{"file":157,"line":897,"context":670},860,{"file":157,"line":899,"context":670},861,{"file":157,"line":901,"context":670},874,{"file":157,"line":901,"context":670},{"file":157,"line":901,"context":670},{"file":157,"line":905,"context":670},875,{"file":157,"line":905,"context":670},{"file":157,"line":908,"context":670},877,{"file":157,"line":910,"context":670},879,{"file":157,"line":910,"context":670},{"file":157,"line":913,"context":670},880,{"file":157,"line":913,"context":670},{"file":157,"line":916,"context":670},883,{"file":157,"line":916,"context":670},{"file":157,"line":919,"context":670},884,{"file":157,"line":921,"context":670},892,{"file":157,"line":923,"context":670},894,{"file":157,"line":923,"context":670},{"file":157,"line":926,"context":670},895,{"file":157,"line":928,"context":670},898,{"file":157,"line":928,"context":670},{"file":157,"line":931,"context":670},899,{"file":157,"line":933,"context":670},903,{"file":157,"line":935,"context":670},906,{"file":157,"line":935,"context":670},{"file":157,"line":938,"context":670},908,{"file":157,"line":940,"context":670},910,{"file":157,"line":940,"context":670},{"file":157,"line":943,"context":670},912,{"file":157,"line":945,"context":670},915,{"file":157,"line":945,"context":670},{"file":157,"line":948,"context":670},916,{"file":157,"line":950,"context":670},919,{"file":157,"line":952,"context":670},921,{"file":157,"line":952,"context":670},{"file":157,"line":955,"context":670},922,{"file":157,"line":957,"context":670},925,{"file":157,"line":957,"context":670},{"file":157,"line":960,"context":670},926,{"file":157,"line":962,"context":670},931,{"file":157,"line":964,"context":670},933,{"file":157,"line":964,"context":670},{"file":157,"line":967,"context":670},935,{"file":157,"line":969,"context":670},938,{"file":157,"line":969,"context":670},{"file":157,"line":972,"context":670},940,{"file":157,"line":974,"context":670},943,{"file":157,"line":974,"context":670},{"file":157,"line":977,"context":670},945,{"file":157,"line":979,"context":670},949,{"file":157,"line":981,"context":670},951,{"file":157,"line":981,"context":670},{"file":157,"line":984,"context":670},952,{"file":157,"line":986,"context":670},955,{"file":157,"line":986,"context":670},{"file":157,"line":989,"context":670},956,{"file":157,"line":991,"context":670},960,{"file":157,"line":993,"context":670},963,{"file":157,"line":993,"context":670},{"file":157,"line":996,"context":670},964,{"file":157,"line":998,"context":670},967,{"file":157,"line":998,"context":670},{"file":157,"line":1001,"context":670},968,{"file":157,"line":1003,"context":670},971,{"file":157,"line":1005,"context":670},973,{"file":157,"line":1005,"context":670},{"file":157,"line":1008,"context":670},974,{"file":157,"line":1010,"context":670},976,{"file":157,"line":1010,"context":670},{"file":157,"line":1013,"context":670},977,{"file":157,"line":1015,"context":670},982,{"file":157,"line":1017,"context":670},984,{"file":157,"line":1017,"context":670},{"file":157,"line":1020,"context":670},985,{"file":157,"line":1022,"context":670},988,{"file":157,"line":1022,"context":670},{"file":157,"line":1025,"context":670},989,{"file":157,"line":1027,"context":670},992,{"file":157,"line":1029,"context":670},994,{"file":157,"line":1029,"context":670},{"file":157,"line":1032,"context":670},995,{"file":157,"line":1034,"context":670},998,{"file":157,"line":1034,"context":670},{"file":157,"line":517,"context":670},{"file":157,"line":1038,"context":670},1002,{"file":157,"line":1040,"context":670},1005,{"file":157,"line":1040,"context":670},{"file":157,"line":1043,"context":670},1006,{"file":157,"line":1045,"context":670},1009,{"file":157,"line":1045,"context":670},{"file":157,"line":1048,"context":670},1010,{"file":157,"line":1050,"context":670},1015,{"file":157,"line":1052,"context":670},1017,{"file":157,"line":1052,"context":670},{"file":157,"line":1055,"context":670},1018,{"file":157,"line":649,"context":670},{"file":157,"line":649,"context":670},{"file":157,"line":651,"context":670},{"file":157,"line":521,"context":670},{"file":157,"line":1061,"context":670},1027,{"file":157,"line":1061,"context":670},{"file":157,"line":1064,"context":670},1028,{"file":157,"line":1066,"context":670},1031,{"file":157,"line":1066,"context":670},{"file":157,"line":1069,"context":670},1032,{"file":157,"line":1071,"context":670},1035,{"file":157,"line":1071,"context":670},{"file":157,"line":1074,"context":670},1036,{"file":157,"line":1076,"context":670},1049,{"file":157,"line":1078,"context":670},1061,{"file":157,"line":1080,"context":670},1062,{"file":157,"line":1082,"context":670},1063,{"file":157,"line":1084,"context":670},1064,{"file":157,"line":1086,"context":670},1069,{"file":157,"line":1088,"context":670},1070,{"file":157,"line":1090,"context":670},1071,{"file":157,"line":1092,"context":670},1074,{"file":157,"line":1094,"context":670},1075,{"file":157,"line":1096,"context":670},1076,{"file":157,"line":1098,"context":670},1077,{"file":157,"line":1100,"context":670},1080,{"file":157,"line":1102,"context":670},1081,{"file":157,"line":1104,"context":670},1082,{"file":157,"line":1106,"context":670},1087,{"file":157,"line":1108,"context":670},1088,{"file":157,"line":1110,"context":670},1089,{"file":157,"line":525,"context":670},{"file":157,"line":1113,"context":670},1093,{"file":157,"line":1115,"context":670},1094,{"file":157,"line":1117,"context":670},1095,{"file":157,"line":1119,"context":670},1098,{"file":157,"line":1121,"context":670},1099,{"file":157,"line":1123,"context":670},1100,{"file":157,"line":1125,"context":670},1103,{"file":157,"line":1127,"context":670},1104,{"file":157,"line":1129,"context":670},1105,{"file":157,"line":1131,"context":670},1110,{"file":157,"line":1133,"context":670},1111,{"file":157,"line":1135,"context":670},1112,{"file":157,"line":1137,"context":670},1115,{"file":157,"line":1139,"context":670},1116,{"file":157,"line":1141,"context":670},1117,{"file":157,"line":1143,"context":670},1120,{"file":157,"line":1145,"context":670},1121,{"file":157,"line":1147,"context":670},1122,{"file":157,"line":1149,"context":670},1127,{"file":157,"line":529,"context":670},{"file":157,"line":1152,"context":670},1129,{"file":157,"line":1154,"context":670},1132,{"file":157,"line":1156,"context":670},1133,{"file":157,"line":1158,"context":670},1134,{"file":157,"line":531,"context":670},{"file":157,"line":1161,"context":670},1143,{"file":157,"line":1163,"context":670},1144,{"file":157,"line":1165,"context":670},1146,{"file":157,"line":1167,"context":670},1148,{"file":157,"line":1169,"context":670},1166,{"file":157,"line":1171,"context":670},1167,{"file":157,"line":1173,"context":670},1168,{"file":157,"line":1175,"context":670},1170,{"file":157,"line":1177,"context":670},1198,{"file":157,"line":1177,"context":670},{"file":157,"line":1180,"context":670},1199,{"file":157,"line":1182,"context":670},1200,{"file":157,"line":1184,"context":670},1201,{"file":157,"line":1186,"context":670},1202,{"file":157,"line":1188,"context":670},1203,{"file":157,"line":1190,"context":670},1204,{"file":157,"line":1192,"context":670},1221,{"file":157,"line":1194,"context":670},1226,{"file":157,"line":1196,"context":670},1232,{"file":157,"line":1198,"context":670},1237,{"file":157,"line":1200,"context":670},1242,{"file":157,"line":1200,"context":670},{"file":157,"line":1203,"context":670},1245,{"file":157,"line":1205,"context":670},1268,{"file":157,"line":1207,"context":670},1271,{"file":157,"line":1209,"context":670},1277,{"file":157,"line":1211,"context":670},1286,{"file":157,"line":1213,"context":670},1292,{"file":157,"line":1215,"context":670},1297,{"file":157,"line":1217,"context":670},1302,{"file":157,"line":1217,"context":670},{"file":157,"line":1220,"context":670},1331,{"file":157,"line":1222,"context":670},1338,{"file":157,"line":1224,"context":670},1339,{"file":157,"line":1226,"context":670},1357,{"file":157,"line":1228,"context":670},1362,{"file":157,"line":1230,"context":670},1368,{"file":157,"line":1232,"context":670},1370,{"file":157,"line":1234,"context":670},1374,{"file":157,"line":1236,"context":670},1553,{"file":157,"line":545,"context":670},{"file":247,"line":430,"context":670},{"file":1240,"line":290,"context":670},"includes\\PHPExcel\\Classes\\PHPExcel\\CalcEngine\\Logger.php",{"file":1240,"line":290,"context":670},{"file":1243,"line":1244,"context":670},"includes\\PHPExcel\\Classes\\PHPExcel\\Chart\\Renderer\\jpgraph.php",836,{"file":1246,"line":1247,"context":670},"includes\\PHPExcel\\Classes\\PHPExcel\\Shared\\PCLZip\\pclzip.lib.php",4101,{"file":1246,"line":1249,"context":670},4114,{"file":263,"line":139,"context":670},201,6,[1254,1257],{"name":1255,"version":75,"knownCves":1256},"TinyMCE",[],{"name":1258,"version":26,"knownCves":1259},"Select2",[],[1261,1292,1305,1319,1327,1367],{"entryPoint":1262,"graph":1263,"unsanitizedCount":30,"severity":1291},"dlbackups_callback (includes\\class-wcp-dlbackups.php:20)",{"nodes":1264,"edges":1287},[1265,1270,1276,1279,1283],{"id":1266,"type":1267,"label":1268,"file":1269,"line":211},"n0","source","$_POST","includes\\class-wcp-dlbackups.php",{"id":1271,"type":1272,"label":1273,"file":1269,"line":1274,"wp_function":1275},"n1","sink","header() [Header Injection]",37,"header",{"id":1277,"type":1267,"label":1268,"file":1269,"line":1278},"n2",33,{"id":1280,"type":1281,"label":1282,"file":1269,"line":1278},"n3","transform","→ Zip()",{"id":1284,"type":1272,"label":1285,"file":1269,"line":402,"wp_function":1286},"n4","file_get_contents() [SSRF\u002FLFI]","file_get_contents",[1288,1289,1290],{"from":1266,"to":1271,"sanitized":306},{"from":1277,"to":1280,"sanitized":299},{"from":1280,"to":1284,"sanitized":299},"medium",{"entryPoint":1293,"graph":1294,"unsanitizedCount":30,"severity":1291},"\u003Cclass-wcp-dlbackups> (includes\\class-wcp-dlbackups.php:0)",{"nodes":1295,"edges":1301},[1296,1297,1298,1299,1300],{"id":1266,"type":1267,"label":1268,"file":1269,"line":211},{"id":1271,"type":1272,"label":1273,"file":1269,"line":1274,"wp_function":1275},{"id":1277,"type":1267,"label":1268,"file":1269,"line":1278},{"id":1280,"type":1281,"label":1282,"file":1269,"line":1278},{"id":1284,"type":1272,"label":1285,"file":1269,"line":402,"wp_function":1286},[1302,1303,1304],{"from":1266,"to":1271,"sanitized":306},{"from":1277,"to":1280,"sanitized":299},{"from":1280,"to":1284,"sanitized":299},{"entryPoint":1306,"graph":1307,"unsanitizedCount":30,"severity":1318},"template_early_check (includes\\class-main-wcp.php:201)",{"nodes":1308,"edges":1316},[1309,1312],{"id":1266,"type":1267,"label":1310,"file":454,"line":1311},"$_SERVER",208,{"id":1271,"type":1272,"label":1313,"file":454,"line":1314,"wp_function":1315},"get_var() [SQLi]",222,"get_var",[1317],{"from":1266,"to":1271,"sanitized":299},"high",{"entryPoint":1320,"graph":1321,"unsanitizedCount":30,"severity":1318},"\u003Cclass-main-wcp> (includes\\class-main-wcp.php:0)",{"nodes":1322,"edges":1325},[1323,1324],{"id":1266,"type":1267,"label":1310,"file":454,"line":1311},{"id":1271,"type":1272,"label":1313,"file":454,"line":1314,"wp_function":1315},[1326],{"from":1266,"to":1271,"sanitized":299},{"entryPoint":1328,"graph":1329,"unsanitizedCount":1366,"severity":1318},"myajax_wcpfrontend_callback (includes\\class-wcp-ajax.php:14)",{"nodes":1330,"edges":1360},[1331,1334,1338,1340,1344,1346,1350,1354,1357],{"id":1266,"type":1267,"label":1332,"file":342,"line":1333},"$_POST (x4)",121,{"id":1271,"type":1272,"label":1335,"file":342,"line":1336,"wp_function":1337},"get_row() [SQLi]",292,"get_row",{"id":1277,"type":1267,"label":1339,"file":342,"line":43},"$_POST (x2)",{"id":1280,"type":1272,"label":1341,"file":342,"line":1342,"wp_function":1343},"update_option() [Settings Manipulation]",1287,"update_option",{"id":1284,"type":1267,"label":1268,"file":342,"line":1345},1455,{"id":1347,"type":1272,"label":1348,"file":342,"line":676,"wp_function":1349},"n5","echo() [XSS]","echo",{"id":1351,"type":1267,"label":1352,"file":342,"line":1353},"n6","$_POST (x5)",384,{"id":1355,"type":1281,"label":1356,"file":342,"line":1353},"n7","→ shwcp_return_entry()",{"id":1358,"type":1272,"label":1359,"file":259,"line":362,"wp_function":333},"n8","unserialize() [Object Injection]",[1361,1362,1363,1364,1365],{"from":1266,"to":1271,"sanitized":306},{"from":1277,"to":1280,"sanitized":306},{"from":1284,"to":1347,"sanitized":306},{"from":1351,"to":1355,"sanitized":299},{"from":1355,"to":1358,"sanitized":299},5,{"entryPoint":1368,"graph":1369,"unsanitizedCount":1366,"severity":1318},"\u003Cclass-wcp-ajax> (includes\\class-wcp-ajax.php:0)",{"nodes":1370,"edges":1380},[1371,1372,1373,1374,1375,1376,1377,1378,1379],{"id":1266,"type":1267,"label":1332,"file":342,"line":1333},{"id":1271,"type":1272,"label":1335,"file":342,"line":1336,"wp_function":1337},{"id":1277,"type":1267,"label":1339,"file":342,"line":43},{"id":1280,"type":1272,"label":1341,"file":342,"line":1342,"wp_function":1343},{"id":1284,"type":1267,"label":1268,"file":342,"line":1345},{"id":1347,"type":1272,"label":1348,"file":342,"line":676,"wp_function":1349},{"id":1351,"type":1267,"label":1352,"file":342,"line":1353},{"id":1355,"type":1281,"label":1356,"file":342,"line":1353},{"id":1358,"type":1272,"label":1359,"file":259,"line":362,"wp_function":333},[1381,1382,1383,1384,1385],{"from":1266,"to":1271,"sanitized":306},{"from":1277,"to":1280,"sanitized":306},{"from":1284,"to":1347,"sanitized":306},{"from":1351,"to":1355,"sanitized":299},{"from":1355,"to":1358,"sanitized":299},{"summary":1387,"deductions":1388},"The \"wp-contacts-slim\" v1.0.0 plugin exhibits significant security concerns primarily due to its large, unprotected attack surface and the presence of dangerous functions.  All identified entry points, including AJAX handlers and REST API routes, lack proper authentication or permission checks, making them highly susceptible to unauthorized access and manipulation.  The extensive use of the `unserialize` function, a known vector for remote code execution when handling untrusted input, is a critical red flag.  Taint analysis further highlights these issues, revealing four high-severity flows where unsanitized data could potentially be exploited.  The static analysis also indicates that a substantial portion of SQL queries and output operations are not properly secured, increasing the risk of injection attacks and cross-site scripting (XSS).\n\nDespite the absence of recorded historical vulnerabilities (CVEs), this can be misleading.  The current code analysis reveals a strong potential for exploitation due to fundamental security misconfigurations. The plugin demonstrates a clear disregard for basic WordPress security best practices, particularly concerning input validation and authorization.  While the presence of nonce checks and capability checks in some areas is a positive sign, their limited application fails to mitigate the overarching risks.  The plugin's current state presents a high risk to WordPress installations and should be addressed with immediate remediation.",[1389,1391,1393,1396,1398,1401,1403,1406],{"reason":1390,"points":11},"All AJAX handlers lack auth checks",{"reason":1392,"points":11},"REST API route lacks permission callback",{"reason":1394,"points":1395},"4 high severity taint flows",12,{"reason":1397,"points":252},"Uses unserialize function",{"reason":1399,"points":1400},"Low percentage of prepared SQL statements",8,{"reason":1402,"points":329},"Low percentage of properly escaped output",{"reason":1404,"points":1405},"Bundled TinyMCE v1.0",3,{"reason":1407,"points":1405},"Bundled Select2","2026-03-16T23:26:12.341Z",{"wat":1410,"direct":1423},{"assetPaths":1411,"generatorPatterns":1416,"scriptPaths":1417,"versionParams":1418},[1412,1413,1414,1415],"\u002Fwp-content\u002Fplugins\u002Fwp-contacts-slim\u002Fassets\u002Fcss\u002Fwcp-admin.css","\u002Fwp-content\u002Fplugins\u002Fwp-contacts-slim\u002Fassets\u002Fcss\u002Fwcp-front.css","\u002Fwp-content\u002Fplugins\u002Fwp-contacts-slim\u002Fassets\u002Fjs\u002Fwcp-admin.js","\u002Fwp-content\u002Fplugins\u002Fwp-contacts-slim\u002Fassets\u002Fjs\u002Fwcp-front.js",[],[],[1419,1420,1421,1422],"wp-contacts-slim\u002Fassets\u002Fcss\u002Fwcp-admin.css?ver=","wp-contacts-slim\u002Fassets\u002Fcss\u002Fwcp-front.css?ver=","wp-contacts-slim\u002Fassets\u002Fjs\u002Fwcp-admin.js?ver=","wp-contacts-slim\u002Fassets\u002Fjs\u002Fwcp-front.js?ver=",{"cssClasses":1424,"htmlComments":1427,"htmlAttributes":1438,"restEndpoints":1440,"jsGlobals":1442,"shortcodeOutput":1445},[1425,1426],"shwcp-admin-wrap","shwcp-main-wrapper",[1428,1429,1430,1431,1432,1433,1434,1435,1436,1437],"\u003C!-- WP Contacts Slim plugin by ScriptHat -->","\u003C!-- For easier overriding we declared the keys"," * here as well as our tabs array which is populated"," * when registering settings"," -->","\u003C!-- Full page template class -->","\u003C!-- Gutenberg or Classic editor - load files and scripts -->","\u003C!-- Form Plugin integrations (Contact Form 7 -->","\u003C!-- Contact Form 7 integration -->","\u003C!-- Rest API Endpoints -->",[1439],"data-shwcp-db",[1441],"\u002Fwp-json\u002Fwpcontacts\u002Fv1",[1443,1444],"shwcp_options","shwcp_vars",[]]