[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fPdkJ_0vlYGpI2ty-Ycn6nQaWRcQU8k8uu87lZZL3vYE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":35,"analysis":36,"fingerprints":105},"wpkuaiyun","WPKuaiYun","2.3","老蒋和他的小伙伴","https:\u002F\u002Fprofiles.wordpress.org\u002Flaobuluo\u002F","\u003Cp>\u003Cstrong>基于WordPress程序，可以选择本地+快云对象存储静态资源或者单独使用远程快云对象存储，自定义域名实现自建静态文件图床。\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>主要功能：\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>1、基于WordPress程序且免费提供给用户使用，将网站的静态文件，比如图片、附件，选择存储在景安快云对象存储中或者同时在本地，提高网站加载速度。\u003C\u002Fli>\n\u003Cli>2、景安快云对象存储调用外部资源需要自定义域名，且需要白名单才可以绑定。\u003C\u002Fli>\n\u003Cli>3、建议对象存储配合景安服务器一并使用。\u003C\u002Fli>\n\u003Cli>4、插件更多详细介绍和安装：\u003Ca href=\"https:\u002F\u002Fwww.lezaiyun.com\u002F1103.html\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.lezaiyun.com\u002F1103.html\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>网站支持\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.laojiang.me\u002F\" title=\"老蒋玩运营\" rel=\"nofollow ugc\">老蒋玩运营\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.lezaiyun.com\u002F\" title=\"乐在云工作室\" rel=\"nofollow ugc\">乐在云\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>欢迎加入插件和站长微信公众号：老蒋朋友圈（公众号）\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>About Use API 3rd Party or external service\u003C\u002Fh3>\n\u003Cp>About the Plugin use 3rd Party or external service “$url = “http:\u002F\u002Fapi.storagesdk.com\u002Frestful\u002Fstorageapi\u002Ffile\u002FdeleteFile”; ” ：\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Col>\n\u003Cli>This plugin use kuaiyun cloud storage API interface. The wordpress Plugins can store images and attachments to cloud storage.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003C\u002Fli>\n\u003Cli>\n\u003Col>\n\u003Cli>The link to the service：https:\u002F\u002Fwww.kuaiyun.cn\u002Fstorage\u002Fkystorageindex\u003C\u002Fli>\n\u003C\u002Fol>\n\u003C\u002Fli>\n\u003Cli>\n\u003Col>\n\u003Cli>The services’ a terms of use and\u002For privacy policies : https:\u002F\u002Fwww.kuaiyun.cn\u002Fdocument\u002Fproductdetail?sid=11&id=270&cid=6\u003C\u002Fli>\n\u003C\u002Fol>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","WordPress景安快云对象存储插件（WPKuaiYun），基于景安快云对象存储与WordPress实现静态资源到静态存储。",10,1349,0,"2026-02-09T08:54:00.000Z","6.5.8","4.5.0","7.4",[19,20,21],"%e7%bd%91%e7%ab%99%e9%99%84%e4%bb%b6%e5%ad%98%e5%82%a8","%e5%bf%ab%e4%ba%91%e5%ad%98%e5%82%a8","%e6%99%af%e5%ae%89%e5%bf%ab%e4%ba%91%e5%af%b9%e8%b1%a1%e5%ad%98%e5%82%a8","https:\u002F\u002Fwww.lezaiyun.com\u002F1103.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpkuaiyun.2.3.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":24,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"laobuluo",12,4450,30,94,"2026-04-05T11:59:42.916Z",[],{"attackSurface":37,"codeSignals":62,"taintFlows":72,"riskAssessment":101,"analyzedAt":104},{"hooks":38,"ajaxHandlers":58,"restRoutes":59,"shortcodes":60,"cronEvents":61,"entryPointCount":13,"unprotectedCount":13},[39,45,49,54],{"type":40,"name":41,"callback":42,"file":43,"line":44},"filter","wp_handle_upload","wpkuaiyun_upload_attachments","wpkuaiyun.php",28,{"type":40,"name":46,"callback":47,"file":43,"line":48},"wp_generate_attachment_metadata","wpkuaiyun_upload_thumbs",29,{"type":50,"name":51,"callback":52,"file":43,"line":53},"action","delete_attachment","wpkuaiyun_delete_remote_attachment",33,{"type":50,"name":55,"callback":56,"file":43,"line":57},"admin_menu","wpkuaiyun_add_setting_page",36,[],[],[],[],{"dangerousFunctions":63,"sqlUsage":64,"outputEscaping":66,"fileOperations":69,"externalRequests":69,"nonceChecks":70,"capabilityChecks":70,"bundledLibraries":71},[],{"prepared":13,"raw":13,"locations":65},[],{"escaped":67,"rawEcho":13,"locations":68},22,[],2,1,[],[73,93],{"entryPoint":74,"graph":75,"unsanitizedCount":13,"severity":92},"wpkuaiyun_setting_page (wpkuaiyun_setting_page.php:8)",{"nodes":76,"edges":89},[77,83],{"id":78,"type":79,"label":80,"file":81,"line":82},"n0","source","$_POST","wpkuaiyun_setting_page.php",52,{"id":84,"type":85,"label":86,"file":81,"line":87,"wp_function":88},"n1","sink","update_option() [Settings Manipulation]",53,"update_option",[90],{"from":78,"to":84,"sanitized":91},true,"low",{"entryPoint":94,"graph":95,"unsanitizedCount":13,"severity":92},"\u003Cwpkuaiyun_setting_page> (wpkuaiyun_setting_page.php:0)",{"nodes":96,"edges":99},[97,98],{"id":78,"type":79,"label":80,"file":81,"line":82},{"id":84,"type":85,"label":86,"file":81,"line":87,"wp_function":88},[100],{"from":78,"to":84,"sanitized":91},{"summary":102,"deductions":103},"The \"wpkuaiyun\" v2.3 plugin exhibits a strong security posture based on the provided static analysis. The plugin demonstrates good development practices by having no unprotected entry points, all SQL queries utilizing prepared statements, and all output properly escaped. This suggests a conscious effort to prevent common web vulnerabilities like SQL injection and cross-site scripting (XSS). The absence of dangerous functions and the limited number of file operations and external HTTP requests further contribute to a low-risk profile.\n\nThe vulnerability history, showing zero known CVEs and no recorded vulnerabilities, is a significant positive indicator. This suggests a stable and well-maintained plugin, free from known exploitable flaws. The lack of common vulnerability types in its history reinforces this. However, the presence of a nonce check and a capability check, while generally good practice, could indicate areas where potential privilege escalation or CSRF vulnerabilities might be mitigated. The limited data on taint analysis with no unsanitized flows further supports the low-risk assessment.\n\nOverall, the plugin appears to be very secure with no obvious vulnerabilities identified in the static analysis or historical data. The strengths lie in its robust input handling and output sanitization, coupled with a clean vulnerability history. The only minor point of interest, though not a direct risk based on the data, would be to ensure the nonce and capability checks are correctly implemented to provide effective protection.",[],"2026-03-17T01:38:05.035Z",{"wat":106,"direct":115},{"assetPaths":107,"generatorPatterns":110,"scriptPaths":111,"versionParams":112},[108,109],"\u002Fwp-content\u002Fplugins\u002Fwpkuaiyun\u002Fcss\u002Fwpkuaiyun.css","\u002Fwp-content\u002Fplugins\u002Fwpkuaiyun\u002Fjs\u002Fwpkuaiyun.js",[],[109],[113,114],"wpkuaiyun\u002Fcss\u002Fwpkuaiyun.css?ver=","wpkuaiyun\u002Fjs\u002Fwpkuaiyun.js?ver=",{"cssClasses":116,"htmlComments":117,"htmlAttributes":118,"restEndpoints":119,"jsGlobals":120,"shortcodeOutput":121},[],[],[],[],[],[]]