[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fOsCsV6rg_EYYz_tHlahHaF9AG6mufyecfwfeeYVHtho":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":127,"fingerprints":220},"wp-e-commerce-bulk-category-pricing","WPEC Bulk Category Pricing","1.0.2","Justin Sainton","https:\u002F\u002Fprofiles.wordpress.org\u002Fjustinsainton\u002F","\u003Cp>This plugin allows WP E-Commerce store admins to select certain categories as ‘bulk pricing’ categories, add a product threshold and discount to that category.  On the front-end, when any combination of products from one of these categories is in the shopping cart, and has met or exceeded the specified threshold, the specified discount is applied to each product.\u003C\u002Fp>\n","This plugin allows WP E-Commerce store admins to select certain categories as 'bulk pricing' categories, add a product threshold and discoun …",10,3670,20,1,"2013-01-07T05:17:00.000Z","3.5.2","3.3","",[20,21,22,23,24],"categories","e-commerce","pricing","wordpress-e-commerce","wp-e-commerce","http:\u002F\u002Fzao.is\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-e-commerce-bulk-category-pricing.1.0.2.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"justinsainton",3,30,84,"2026-04-05T14:46:49.765Z",[39,57,73,92,110],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":11,"downloaded":47,"rating":28,"num_ratings":28,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":18,"tags":51,"homepage":55,"download_link":56,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-e-commerce-advance-sales-report-lite","WP E-Commerce Advance Sales Report Lite","1.0","infosoftplugin","https:\u002F\u002Fprofiles.wordpress.org\u002Finfosoftplugin\u002F","\u003Cp>WP E-Commerce Advance Sales Report Lite shows you all key sales information in one main Dashboard in very intuitive, easy to understand format which gives a quick\u003Cbr \u002F>\noverview of your business and helps make smart decisions\u003Cbr \u002F>\nSales Summary Reports like Total Order, Recent Orders, Order Status, Order Summary, Top n Products, Customers, Country, Coupons, Payment Gateway\u003Cbr \u002F>\nDay Wise Summary\u002FDetail, Today, Yesterday, This Week, This Month, This Year\u003Cbr \u002F>\nThe Key feature is that it not only shows key summary data but you can also further click on any item\u002Fdata to see the respective order\u002Fsales details (data drill down)\u003Cbr \u002F>\ngiving you more insight on respective data (this feature is available in Pro Version only)\u003Cbr \u002F>\nWP E-Commerce Advance Sales Report Lite works with WP E-Commerce latest versions and wordpress 3.8+.\u003C\u002Fp>\n\u003Cp>The Lite version is limited to showing summary data for past one month. Purchase the paid \u003Ca href=\"http:\u002F\u002Fplugins.infosofttech.com\" rel=\"nofollow ugc\">pro versions\u003C\u002Fa> for full access along with more features, \u003Ca href=\"http:\u002F\u002Fplugins.infosofttech.com\" rel=\"nofollow ugc\">click here\u003C\u002Fa> for more details\u003C\u002Fp>\n\u003Ch3>1.0\u003C\u002Fh3>\n\u003Ch3>Donations\u003C\u002Fh3>\n","WP E-Commerce Advance Sales Report Lite shows you all key sales information in one main Dashboard in very intuitive, easy to understand format which g …",2731,"2014-03-05T07:36:00.000Z","3.7.41","3.8.1",[52,53,54,23,24],"admin","administration","woocommerce","http:\u002F\u002Fplugins.infosofttech.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-e-commerce-advance-sales-report-lite.zip",{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":11,"downloaded":65,"rating":66,"num_ratings":14,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":18,"tags":70,"homepage":71,"download_link":72,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-e-commerce-expanding-categories","WP E-commerce Expanding Categories","0.1.1","Adam Sargant","https:\u002F\u002Fprofiles.wordpress.org\u002Fadamsargant\u002F","\u003Cp>By default, the categories widget in WP E-commerce is fully expanded. If you have a large number of categories and subcategories this can be a bit too much. The WP E-commerce Expanding Categories plugin wraps the code that is discussed at http:\u002F\u002Fken.ph\u002Fwp-e-commerce-expandablecollapsible-menu\u002F in a WordPress plugin so that no editing of the theme is necessary, and turns the categories widget into an expandable\u002Fcollapsible menu.\u003C\u002Fp>\n","WP E-commerce Expanding Categories converts the WP e-commerce categories widget into a collapsible menu",5818,80,"2012-02-22T08:58:00.000Z","3.2.1","3.0.1",[20,24],"http:\u002F\u002Fwww.sitecoders.net\u002Fwordpress-plugins\u002Fwp-e-commerce-expanding-categories\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-e-commerce-expanding-categories.zip",{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":28,"num_ratings":28,"last_updated":83,"tested_up_to":84,"requires_at_least":85,"requires_php":18,"tags":86,"homepage":90,"download_link":91,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"shippingeasy-for-wp-ecommerce","ShippingEasy for WP e-Commerce","1.03","ShippingDev","https:\u002F\u002Fprofiles.wordpress.org\u002Fshippingdev\u002F","\u003Cp>ShippingEasy is a powerful online shipping platform that integrates seamlessly with your WordPress WP e-Commerce store to give you a complete end-to-end fulfillment solution. You do not need a courier account to use ShippingEasy. We have negotiated discounted shipping rates for you with our trusted courier partners. Up-to-date tracking information comes included, and is accessible by both you and your customers for full visibility and peace of mind.\u003C\u002Fp>\n\u003Cp>Send your packages anywhere in the world in just a few quick steps with ShippingEasy!\u003C\u002Fp>\n\u003Cp>Key features:\u003C\u002Fp>\n\u003Ch4>WordPress Integration\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easy to install WordPress plugin\u003C\u002Fli>\n\u003Cli>Works with any standards compliant WordPress theme\u003C\u002Fli>\n\u003Cli>Integrates with WP e-Commerce\u003C\u002Fli>\n\u003Cli>Adds restfull api connecting your store to ‘MyStores Hub’ in your account section of shippingeasy.com\u003C\u002Fli>\n\u003Cli>Adds Shippingeasy rate calculator to the\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Shipping\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Compare and book couriers in a few quick steps, no courier account necessary.\u003C\u002Fli>\n\u003Cli>Discounted rates from the world’s largest couriers.\u003C\u002Fli>\n\u003Cli>Consolidated view of all sold inventory and fulfillment in one place.\u003C\u002Fli>\n\u003Cli>Supports multiple platforms if you have more than one online store.\u003C\u002Fli>\n\u003Cli>Extensive package tracking and delivery updates give you and your customers peace of mind.\u003C\u002Fli>\n\u003Cli>International shipping options to expand your customer base.\u003C\u002Fli>\n\u003Cli>Comprehensive shipment reporting to help keep you organised.\u003C\u002Fli>\n\u003Cli>Automatically generates all labels and customs forms to save you time.\u003C\u002Fli>\n\u003Cli>Save commonly used package sizes, addresses and credit cards for speedy booking.\u003C\u002Fli>\n\u003Cli>24\u002F7 customer service with email, live chat and free phone support.\u003Cbr \u002F>\nFor more information, visit http:\u002F\u002Fwww.ShippingEasy.com\u003C\u002Fli>\n\u003C\u002Ful>\n","ShippingEasy is a powerful online shipping platform that integrates seamlessly with your WordPress WP e-Commerce store to give you a complete end-to-e …",100,6945,"2012-07-17T11:12:00.000Z","3.3.2","3.0",[87,21,88,89,24],"cart","shipping","shop","http:\u002F\u002Fwww.shippingeasy.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshippingeasy-for-wp-ecommerce.zip",{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":28,"num_ratings":28,"last_updated":102,"tested_up_to":103,"requires_at_least":104,"requires_php":18,"tags":105,"homepage":108,"download_link":109,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-dropstream","DropStream – Automated eCommerce Fulfillment","1.2.3","karlfalconer","https:\u002F\u002Fprofiles.wordpress.org\u002Fkarlfalconer\u002F","\u003Ch4>DropStream Automates Your Order Fulfillment process\u003C\u002Fh4>\n\u003Cp>DropStream is the leading provider of ecommerce fulfillment integrations, allowing merchants to automate the process of fulfilling their sales orders. DropStream automates 3 main processes:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Automatically send orders to your fulfillment center or shipping solution\u003C\u002Fli>\n\u003Cli>Automatically send tracking numbers back to WordPress, notifying shoppers that their package is on the way\u003C\u002Fli>\n\u003Cli>Automatically update product inventory levels, keeping your online store updated with accurate available quantities\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>DropStream offers two core products:\u003C\u002Fp>\n\u003Col>\n\u003Cli>DropStream (http:\u002F\u002Fgetdropstream.com\u002F)\u003C\u002Fli>\n\u003Cli>PackageBee (http:\u002F\u002Fpackagebee.com\u002F)\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Depending on your integration needs, you are able to you use one or the other. Contact DropStream to find out which product is best for you. (http:\u002F\u002Fgetdropstream.com\u002Fcontact)\u003C\u002Fp>\n\u003Ch4>See what others say about DropStream\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Cp>We were hampered by data entry work-arounds, until DropStream tore down the technical wall that stood between us and our customers.\u003Cbr \u002F>\n  — Clay Clarkson, Whole Heart Ministries\u003C\u002Fp>\n\u003Cp>DropStream is a useful capability that gives us greater flexibility in meeting our fulfillment requirements. The service was easy to set up and has been very reliable.\u003Cbr \u002F>\n  — Scott Madsen, National Imports LLC\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Get Started With Your Free 14-day Trial\u003C\u002Fh4>\n\u003Cp>DropStream is actively integrated with thousands of fulfillment providers in North America and Europe, giving you tremendous flexibility on where to send your sales orders. You can see a [list of desitnation systems: (http:\u002F\u002Fsupport.getdropstream.com\u002Fcustomer\u002Fen\u002Fportal\u002Farticles\u002F2847048-currently-supported-warehouse-systems-wmss-imss-erps-?b_id=2404)] on our website. Don’t know the system used by your fulfillment center? \u003Ca href=\"http:\u002F\u002Fgetdropstream.com\u002Fcontact\" title=\"Contact DropStream\" rel=\"nofollow ugc\">Contact us\u003C\u002Fa> and we’ll confirm whether we currently support the system or if we can add support for it for you.\u003C\u002Fp>\n","DropStream is a powerful eCommerce plugin that integrates your WordPress site with your shipping solution or third-party fulfillment provider, allowin …",90,9458,"2022-07-22T19:39:00.000Z","5.9.13","4.0",[21,106,107,54,24],"ecommerce","fulfillment","http:\u002F\u002Fgetdropstream.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-dropstream.1.2.3.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":118,"downloaded":119,"rating":81,"num_ratings":120,"last_updated":121,"tested_up_to":122,"requires_at_least":85,"requires_php":18,"tags":123,"homepage":18,"download_link":126,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wpec-related-products","WP e-Commerce Related Products","1.3.2","Onnay Okheng","https:\u002F\u002Fprofiles.wordpress.org\u002Fonnayokheng\u002F","\u003Cp>WPEC Related Products for WP e-Commerce uses information available within the Single Product or All Page WPEC template to display related Products that belong to the same Product Category or Product Tag.\u003C\u002Fp>\n\u003Cp>WPEC Related Products extend the WP e-Commerce Plugin by displaying related Products to site. It automatically selects related Products based on the Category or Tag.\u003C\u002Fp>\n\u003Cp>Thanks to Versipellis, Adam Sargant, code monkey.\u003C\u002Fp>\n\u003Cp>Contact me for say hello \u003Ca href=\"http:\u002F\u002Fonnayokheng.com\" title=\"WordPress Developer Indonesia\" rel=\"nofollow ugc\">Onnay Okheng\u003C\u002Fa> or buy me a cup of chocolate 🙂\u003C\u002Fp>\n","WPEC Related Products for WP e-Commerce uses information available within the Single Product template to display related Products.",70,16163,4,"2012-11-21T15:20:00.000Z","3.4.2",[124,24,125],"spec","wpsc-related-products","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpec-related-products.1.3.2.zip",{"attackSurface":128,"codeSignals":161,"taintFlows":177,"riskAssessment":206,"analyzedAt":219},{"hooks":129,"ajaxHandlers":157,"restRoutes":158,"shortcodes":159,"cronEvents":160,"entryPointCount":28,"unprotectedCount":28},[130,136,140,144,147,152],{"type":131,"name":132,"callback":133,"file":134,"line":135},"action","wpsc_product_category_add_form_fields","category_forms_add","wpec_bulk_cat.php",18,{"type":131,"name":137,"callback":138,"file":134,"line":139},"wpsc_product_category_edit_form_fields","category_forms_edit",19,{"type":131,"name":141,"callback":142,"priority":143,"file":134,"line":13},"created_wpsc_product_category","category_forms_save",11,{"type":131,"name":145,"callback":142,"priority":143,"file":134,"line":146},"edited_wpsc_product_category",21,{"type":131,"name":148,"callback":149,"priority":150,"file":134,"line":151},"init","refresh_cart",12,22,{"type":153,"name":154,"callback":155,"priority":143,"file":134,"line":156},"filter","wpsc_price","modify_price",23,[],[],[],[],{"dangerousFunctions":162,"sqlUsage":163,"outputEscaping":165,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":176},[],{"prepared":14,"raw":28,"locations":164},[],{"escaped":14,"rawEcho":120,"locations":166},[167,170,172,174],{"file":134,"line":168,"context":169},57,"raw output",{"file":134,"line":171,"context":169},66,{"file":134,"line":173,"context":169},105,{"file":134,"line":175,"context":169},115,[],[178,197],{"entryPoint":179,"graph":180,"unsanitizedCount":195,"severity":196},"category_forms_edit (wpec_bulk_cat.php:76)",{"nodes":181,"edges":192},[182,187],{"id":183,"type":184,"label":185,"file":134,"line":186},"n0","source","$_REQUEST (x2)",78,{"id":188,"type":189,"label":190,"file":134,"line":173,"wp_function":191},"n1","sink","echo() [XSS]","echo",[193],{"from":183,"to":188,"sanitized":194},false,2,"medium",{"entryPoint":198,"graph":199,"unsanitizedCount":195,"severity":205},"\u003Cwpec_bulk_cat> (wpec_bulk_cat.php:0)",{"nodes":200,"edges":203},[201,202],{"id":183,"type":184,"label":185,"file":134,"line":186},{"id":188,"type":189,"label":190,"file":134,"line":173,"wp_function":191},[204],{"from":183,"to":188,"sanitized":194},"low",{"summary":207,"deductions":208},"The plugin \"wp-e-commerce-bulk-category-pricing\" v1.0.2 exhibits a generally good security posture based on the static analysis, with no dangerous functions identified and all SQL queries utilizing prepared statements. The complete absence of known CVEs also suggests a history of stable security. However, a significant concern arises from the taint analysis, which reveals two flows with unsanitized paths. While these are not classified as critical or high severity in this analysis, they represent potential avenues for injection attacks if input is not properly validated and sanitized downstream.  Additionally, the output escaping is low, with only 20% of outputs properly escaped, posing a risk of Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is displayed without adequate sanitization.\n\nThe plugin's attack surface appears to be zero based on the provided metrics, which is a strong positive indicator. The lack of shortcodes, cron events, and exposed AJAX\u002FREST API endpoints suggests a limited exposure. However, the absence of nonce checks and capability checks across all identified entry points (even if there are none listed) is a general weakness that could become a problem if new entry points are introduced in future versions without proper security considerations. The vulnerability history is clean, which is excellent, but the current taint flow and output escaping issues indicate that diligence is still required.",[209,211,214,217],{"reason":210,"points":11},"Flows with unsanitized paths found",{"reason":212,"points":213},"Low percentage of properly escaped output",6,{"reason":215,"points":216},"No nonce checks on entry points",5,{"reason":218,"points":216},"No capability checks on entry points","2026-03-17T01:41:20.227Z",{"wat":221,"direct":226},{"assetPaths":222,"generatorPatterns":223,"scriptPaths":224,"versionParams":225},[],[],[],[],{"cssClasses":227,"htmlComments":230,"htmlAttributes":231,"restEndpoints":232,"jsGlobals":233,"shortcodeOutput":234},[228,229],"wpsc_cat_box","wpsc_cat_image_size",[],[],[],[],[]]