WPS Hide Login Security & Risk Analysis

The 'wps-hide-login' plugin v1.9.18 exhibits a mixed security posture. On the positive side, the static analysis reveals a very small attack surface, with only one AJAX handler and no REST API routes, shortcodes, or cron events. Crucially, this single entry point appears to be protected by nonce and potentially other checks, as the analysis reports zero unprotected entry points and two nonce checks. The absence of file operations, external HTTP requests, and dangerous functions is also commendable. However, significant concerns arise from the handling of SQL queries. All three SQL queries are not using prepared statements, which is a major security risk for SQL injection. Furthermore, a substantial portion of output (52%) is not properly escaped, increasing the risk of cross-site scripting (XSS) vulnerabilities.

The vulnerability history of this plugin is deeply concerning. With a total of 10 known CVEs, including one high severity, eight medium severity, and one low severity, it indicates a pattern of recurring security flaws. The common types of vulnerabilities, such as exposure of sensitive information, incorrect authorization, protection mechanism failure, improper authorization, and CSRF, suggest fundamental issues with how the plugin handles user input and access control. The fact that the last vulnerability was very recent (2024-06-24) and that there are no currently unpatched vulnerabilities is a slight positive, but the sheer volume and recency of past issues point to a plugin that has historically struggled with robust security implementation.

In conclusion, while the plugin has a small attack surface and some good practices like nonce checks, the lack of prepared statements for all SQL queries and the high percentage of unescaped output are critical weaknesses. The extensive and recent vulnerability history strongly suggests that users should exercise extreme caution. The plugin's core functionality might be simple, but its past demonstrates a propensity for exploitable flaws. Given the nature of the past vulnerabilities and the current code analysis findings, the overall security risk is considerable.