[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f7E8hJo-inDiMfJSmwDyYQZSkyr9_gdF3Nti-MRkCrGA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":195,"crawl_stats":38,"alternatives":203,"analysis":270,"fingerprints":1593},"wpschoolpress","School Management System – WPSchoolPress","2.2.35","Ronik@UnlimitedWP","https:\u002F\u002Fprofiles.wordpress.org\u002Fjdsofttech\u002F","\u003Cp>WPSchoolPress is currently a highly demanding WordPress plugin for the school management system in 2025-26. WPSchoolPress is a No.#1 School Management WordPress Plugin allows you to manage entities such as classes, students, sections, exams, timetables, results, ID Cards, teachers, staff, fee management, parent control, invoices, noticeboards, and more.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Role based access:Users like school admin, students, parents and teachers can easily login and access their respective user-friendly dashboards.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Student Attendance Management System:Admin and Teachers can do entire attendance management on daily basis of the students of each class. Students and parents can see date wise attendance report. Teacher can also add the reason for absence of each student. Whenever any student is absent, an automatic message is sent to the registered parent mentioning the day, date and reason of being absent. Automatic messages are sent only if the school has purchased our SMS add-on.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Class rooms and subjects:As a student managing plugin,WPSchoolPress has made simple for admin to create new classes and assign subjects. Eventually, teacher’s management can be done by assigning subjects and classes. For parents, their child information like class number, respective subjects and assigned teachers can be viewed when they login to their respective dashboards.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Student Grade Management System:As student report management system,WPSchoolPress has a feature by which admin and teachers can insert student grades\u002Fmarks on the bases of their class and subjects. Along with grades, teachers can also write remarks or student-reviews on student’s performance. Subject-wise grades will be visible on students and parent’s dashboards. Using our paid Import-Export add-on, teachers can import a .csv file with grades for quicker upload of marksin bulk. The students and parents can further print grade sheets.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>School Schedule Management System:Admin and teachers can create exam schedule for each subject of their respective class.Along with this, upcoming school event schedules like cultural festival schedule, sports tournament schedule, annual leaves management and likewise can be easily created. For sudden changes in acedemics, admin can notify teachers, students and parents by sending email-notifications(free) or sending messages through our paid SMS add-on.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>School Transportation Management System: Details regarding Public Transport bus, tram or School Private transport, routes and driver details can be provided on students, parents and teachers dashboards by admin. Also admin can send notifications in form of e-mail (free) or SMS (with use of paid add-on) to parents if there is a replacement in driver, transport bus, change in route, etc.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Constant feature updates:We are constantly trying to have feature updatesfor you to run the school operations smoothly. These updates are on the bases our customer suggestions and feature requirements. Check our website for any new updates and add-ons\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>2.2.33\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fixed   – Fixed issue of default user roles which vanished when plugin activate\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>2.2.34\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fixed   – teacher not able to edit students info. fixed it\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>2.2.35\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Updated – Make Class field mandatory when new student registered or existing studen updated\u003C\u002Fli>\n\u003Cli>Fixed   – make validation such that same roll no is not used in same class\u003C\u002Fli>\n\u003C\u002Ful>\n","An extensive plugin for school management with features like attendance, class management, time table, exams, grades, student-teacher-parent notificat …",2000,196650,80,21,"2026-02-17T12:09:00.000Z","6.9.4","6.7","7.4",[20,21,22,23,24],"attendance-management","exam-schedule-management","staff-information-management","student-information-management","time-table-management","http:\u002F\u002Fwpschoolpress.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpschoolpress.2.2.35.zip",88,13,0,"2025-11-13 22:05:08","2026-03-15T15:16:48.613Z",[33,49,64,75,88,99,111,123,137,150,163,177,184],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2025-11981","school-management-system-wpschoolpress-authenticated-administrator-sql-injection","School Management System – WPSchoolPress \u003C= 2.2.23 - Authenticated (Administrator+) SQL Injection","The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'SCodes' parameter in all versions up to, and including, 2.2.23 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with administrator-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.",null,"\u003C=2.2.23","2.2.24","medium",4.9,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:U\u002FC:H\u002FI:N\u002FA:N","Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')","2025-11-14 11:20:19",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F04bc4a20-0136-4fb4-9489-07140b2b86aa?source=api-prod",1,{"id":50,"url_slug":51,"title":52,"description":53,"plugin_slug":4,"theme_slug":38,"affected_versions":54,"patched_in_version":55,"severity":41,"cvss_score":56,"cvss_vector":57,"vuln_type":58,"published_date":59,"updated_date":60,"references":61,"days_to_patch":63},"CVE-2025-1668","school-management-system-wpschoolpress-missing-authorization-to-arbitrary-user-deletion","School Management System – WPSchoolPress \u003C= 2.2.16 - Missing Authorization to Arbitrary User Deletion","The School Management System – WPSchoolPress plugin for WordPress is vulnerable to arbitrary user deletion due to a missing capability check on the wpsp_DeleteUser() function in all versions up to, and including, 2.2.16. This makes it possible for authenticated attackers, with teacher-level access and above, to delete arbitrary user accounts.","\u003C=2.2.16","2.2.17",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2025-03-14 14:23:26","2025-11-05 19:41:23",[62],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ffd5638b6-134d-4386-af40-6ac961a915d7?source=api-prod",236,{"id":65,"url_slug":66,"title":67,"description":68,"plugin_slug":4,"theme_slug":38,"affected_versions":54,"patched_in_version":55,"severity":41,"cvss_score":69,"cvss_vector":70,"vuln_type":44,"published_date":71,"updated_date":72,"references":73,"days_to_patch":63},"CVE-2025-1670","school-management-system-wpschoolpress-authenticated-parent-sql-injection","School Management System – WPSchoolPress \u003C= 2.2.16 - Authenticated (Parent+) SQL Injection","The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'cid' parameter in all versions up to, and including, 2.2.16 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.  This makes it possible for authenticated attackers, with Custom-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.",6.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:H\u002FI:N\u002FA:N","2025-03-14 14:23:15","2025-11-05 19:40:30",[74],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ff38c28f4-e73a-4eb2-8bbd-73c849385c4e?source=api-prod",{"id":76,"url_slug":77,"title":78,"description":79,"plugin_slug":4,"theme_slug":38,"affected_versions":54,"patched_in_version":55,"severity":80,"cvss_score":81,"cvss_vector":82,"vuln_type":83,"published_date":84,"updated_date":85,"references":86,"days_to_patch":63},"CVE-2025-1667","school-management-system-wpschoolpress-missing-authorization-to-privilege-escalation-via-account-takeover","School Management System – WPSchoolPress \u003C= 2.2.16 - Missing Authorization to Privilege Escalation via Account Takeover","The School Management System – WPSchoolPress plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the wpsp_UpdateTeacher() function in all versions up to, and including, 2.2.16. This makes it possible for authenticated attackers, with teacher-level access and above, to update arbitrary user details including email which makes it possible to request a password reset and access arbitrary user accounts, including administrators.","high",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Authorization Bypass Through User-Controlled Key","2025-03-14 14:22:59","2025-11-05 19:39:41",[87],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fe54f98bc-c538-4f3c-b24a-6e778a3748ef?source=api-prod",{"id":89,"url_slug":90,"title":91,"description":92,"plugin_slug":4,"theme_slug":38,"affected_versions":93,"patched_in_version":94,"severity":41,"cvss_score":69,"cvss_vector":70,"vuln_type":44,"published_date":95,"updated_date":96,"references":97,"days_to_patch":63},"CVE-2025-1669","school-management-system-wpschoolpress-authenticated-teacher-sql-injection","School Management System – WPSchoolPress \u003C= 2.2.17 - Authenticated (Teacher+) SQL Injection","The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'addNotify' action in all versions up to, and including, 2.2.17 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.  This makes it possible for authenticated attackers, with teacher-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.","\u003C=2.2.17","2.2.18","2025-03-14 14:22:45","2025-11-05 19:39:04",[98],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fb7413d90-aed1-4f78-a17c-bed76efb48f8?source=api-prod",{"id":100,"url_slug":101,"title":102,"description":103,"plugin_slug":4,"theme_slug":38,"affected_versions":104,"patched_in_version":105,"severity":41,"cvss_score":69,"cvss_vector":70,"vuln_type":44,"published_date":106,"updated_date":107,"references":108,"days_to_patch":110},"CVE-2024-12332","school-management-system-wpschoolpress-authenticated-studentparent-sql-injection","School Management System – WPSchoolPress \u003C= 2.2.14 - Authenticated (Student\u002FParent+) SQL Injection","The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'cid' parameter in all versions up to, and including, 2.2.14 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.  This makes it possible for authenticated attackers, with Student\u002FParent-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.","\u003C=2.2.14","2.2.15","2025-01-06 16:09:37","2025-07-25 19:42:32",[109],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fc0248af2-f9f3-4652-bf6d-b46aa91b66f3?source=api-prod",200,{"id":112,"url_slug":113,"title":114,"description":115,"plugin_slug":4,"theme_slug":38,"affected_versions":116,"patched_in_version":117,"severity":80,"cvss_score":81,"cvss_vector":82,"vuln_type":83,"published_date":118,"updated_date":119,"references":120,"days_to_patch":122},"CVE-2024-9637","school-management-system-wpschoolpress-insecure-direct-object-reference-to-authenticated-teacher-account-takeoverprivile","School Management System – WPSchoolPress \u003C= 2.2.10 - Insecure Direct Object Reference to Authenticated (Teacher+) Account Takeover\u002FPrivilege Escalation","The School Management System – WPSchoolPress plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.2.10. This is due to the plugin not properly validating a user's identity prior to updating their details like email. This makes it possible for authenticated attackers, with teacher-level access and above, to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account.","\u003C=2.2.10","2.2.11","2024-10-25 20:05:13","2024-10-30 17:35:19",[121],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F411693fc-9df3-44b1-9a6f-58a6e8ef23b8?source=api-prod",5,{"id":124,"url_slug":125,"title":126,"description":127,"plugin_slug":4,"theme_slug":38,"affected_versions":128,"patched_in_version":129,"severity":80,"cvss_score":130,"cvss_vector":131,"vuln_type":44,"published_date":132,"updated_date":133,"references":134,"days_to_patch":136},"CVE-2023-4776","wpschoolpress-authenticatedteacher-sql-injection-via-classid","WPSchoolPress \u003C= 2.2.4 - Authenticated(Teacher+) SQL Injection via ClassID","The WPSchoolPress plugin for WordPress is vulnerable to time-based blind SQL Injection via the ‘ClassID’ parameter in versions up to, and including, 2.2.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.  This makes it possible for authenticated attackers with Teacher permissions to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.","\u003C=2.2.4","2.2.5",7.2,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","2023-09-25 00:00:00","2024-01-22 19:56:02",[135],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fd070e12e-ec53-4574-ac37-dc8805d9a553?source=api-prod",120,{"id":138,"url_slug":139,"title":140,"description":141,"plugin_slug":4,"theme_slug":38,"affected_versions":142,"patched_in_version":129,"severity":41,"cvss_score":143,"cvss_vector":144,"vuln_type":145,"published_date":146,"updated_date":133,"references":147,"days_to_patch":149},"WF-1a2fb050-1a7c-45cc-86c7-02331d47f780-wpschoolpress","wpschoolpress-cross-site-request-forgery","WPSchoolPress \u003C= 2.2.4 - Cross-Site Request Forgery","The WPSchoolPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.2.4. This is due to missing nonce validation on several functions called via AJAX actions in the \u002Flib\u002Fwpsp-ajaxworks.php file. This makes it possible for unauthenticated attackers to perform a multitude of actions on behalf of other students or teachers, via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.","\u003C2.2.5",6.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:L\u002FI:L\u002FA:L","Cross-Site Request Forgery (CSRF)","2023-09-18 00:00:00",[148],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F1a2fb050-1a7c-45cc-86c7-02331d47f780?source=api-prod",127,{"id":151,"url_slug":152,"title":153,"description":154,"plugin_slug":4,"theme_slug":38,"affected_versions":155,"patched_in_version":156,"severity":41,"cvss_score":157,"cvss_vector":158,"vuln_type":58,"published_date":159,"updated_date":133,"references":160,"days_to_patch":162},"CVE-2023-37887","wpschoolpress-missing-authorization","WPSchoolPress \u003C= 2.2.3 - Missing Authorization","The WPSchoolPress plugin for WordPress is vulnerable to unauthorized use of functionality due to a missing capability check on several functions such as wpsp_AddStudent(), wpsp_DeleteTeacher(), wpsp_UpdateStudent(), wpsp_DeleteStudent and more in versions up to, and including, 2.2.3. This makes it possible for authenticated attackers, with student-level access and above, modify student and teacher accounts.","\u003C=2.2.3","2.2.4",5.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:N","2023-07-11 00:00:00",[161],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F1410d37a-fa8d-41e1-bed7-1c1436b52a83?source=api-prod",196,{"id":164,"url_slug":165,"title":166,"description":167,"plugin_slug":4,"theme_slug":38,"affected_versions":168,"patched_in_version":169,"severity":80,"cvss_score":170,"cvss_vector":171,"vuln_type":172,"published_date":173,"updated_date":133,"references":174,"days_to_patch":176},"WF-58a83ec8-e294-4fb6-9f1a-19562b2e499d-wpschoolpress","school-management-system-wpschoolpress-reflected-cross-site-scripting","School Management System – WPSchoolPress \u003C 2.1.10 - Reflected Cross-Site Scripting","The School Management System – WPSchoolPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘entry_date’ parameter in versions before 2.1.10 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.","\u003C2.1.10","2.1.10",7.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:L","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2021-10-11 00:00:00",[175],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F58a83ec8-e294-4fb6-9f1a-19562b2e499d?source=api-prod",834,{"id":178,"url_slug":179,"title":180,"description":181,"plugin_slug":4,"theme_slug":38,"affected_versions":168,"patched_in_version":169,"severity":80,"cvss_score":81,"cvss_vector":82,"vuln_type":44,"published_date":173,"updated_date":133,"references":182,"days_to_patch":176},"CVE-2021-24575","school-management-system-wpschoolpress-sql-injection","School Management System – WPSchoolPress \u003C= 2.1.9 - SQL Injection","The School Management System – WPSchoolPress plugin for WordPress is vulnerable to blind SQL Injection via the several parameters in versions up to, and including, 2.1.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.  This makes it possible for authenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.\r\n\r\nThe following are the parameters that are vulnerable: 'main_m_id', 'Class', 'data', 'exmarks', 'day', 'absent' and 'AttendanceClass'.",[183],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F7de51bf2-f3dc-40d7-8d63-c85c267c4e98?source=api-prod",{"id":185,"url_slug":186,"title":187,"description":188,"plugin_slug":4,"theme_slug":38,"affected_versions":189,"patched_in_version":190,"severity":41,"cvss_score":191,"cvss_vector":192,"vuln_type":172,"published_date":173,"updated_date":133,"references":193,"days_to_patch":176},"CVE-2021-24664","school-management-system-wpschoolpress-stored-cross-site-scripting","School Management System – WPSchoolPress \u003C= 2.1.16 - Stored Cross-Site Scripting","The School Management System – WPSchoolPress WordPress plugin before 2.1.17 sanitise some fields using sanitize_text_field() but does not escape them before outputting in attributes, resulting in Stored Cross-Site Scripting issues.","\u003C2.1.17","2.1.17",4.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N",[194],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F850f554f-abb5-4b9f-9b7b-67439abb1a31?source=api-prod",{"slug":196,"display_name":7,"profile_url":8,"plugin_count":197,"total_installs":198,"avg_security_score":199,"avg_patch_time_days":200,"trust_score":201,"computed_at":202},"jdsofttech",3,2110,79,315,64,"2026-04-04T11:42:36.148Z",[204,228,250],{"slug":205,"name":206,"version":207,"author":208,"author_profile":209,"description":210,"short_description":211,"active_installs":212,"downloaded":213,"rating":214,"num_ratings":122,"last_updated":215,"tested_up_to":216,"requires_at_least":217,"requires_php":218,"tags":219,"homepage":224,"download_link":225,"security_score":226,"vuln_count":48,"unpatched_count":29,"last_vuln_date":227,"fetched_at":31},"wp-hr-manager","WP-HR Manager: The Human Resources Plugin for WordPress","3.2.0","wphrmanager","https:\u002F\u002Fprofiles.wordpress.org\u002Fwphrmanager\u002F","\u003Cp>Now you can easily manage HR (Human Resource) records and processes from within your website with our highly rated plugin, WP-HR Manager. You can quickly install an ESS (employee self-service) portal and HRM system, update staff records, track attendance and absence, message team members, approve leave and more.\u003C\u002Fp>\n\u003Cp>Ideal for small and medium sized businesses (SME) who want to create their own HR information system (HRIS) on WordPress.\u003C\u002Fp>\n\u003Ch4>WP-HR Manager enables you to:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Install a powerful HRM system on your website to record and manage employee HR information via any browser \u003C\u002Fli>\n\u003Cli>Take advantage of employee self service (ESS) features to reduce admin and improve accuracy (ideal for remote workers)\u003C\u002Fli>\n\u003Cli>Retain control of your data (and host your site\u002Fdata in the location of your choice) helping with GDPR compliance\u003C\u002Fli>\n\u003Cli>Manage as many employees as you wish, with our free HR WordPress plugin: No incremental\u002Fper employee charges unlike cloud based HR systems\u003C\u002Fli>\n\u003Cli>Add features and plugins as you need them (even build your own!) with fully editable open source code\u003C\u002Fli>\n\u003Cli>Control access to data and capabilities with three inbuilt user levels (Admin, HR Manager and Employee)\u003C\u002Fli>\n\u003Cli>Keep it focussed – WP-HR Manager only adds HR features, keeping the plugin as lite as possible \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>New – WP-HR Mobile Check In Add On\u003C\u002Fh4>\n\u003Cp>We now offer a mobile app to enable employees to check in\u002Fout (clock in\u002Fout) with mobile phones.\u003Cbr \u002F>\nRequires Pro version and WP-HR Attendance upgrade within WP-HR Manager (Settings) or\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.wphrmanager.com\u002Fproduct\u002Fwp-hr-check-in-out\u002F\" rel=\"nofollow ugc\">Find out more\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FvygOR0o6Z-s?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>This plugin includes –\u003C\u002Fp>\n\u003Ch4>WP-HR Manager Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Company profile\u003C\u002Fli>\n\u003Cli>Branch listing – add local offices, outlets, factories etc.\u003C\u002Fli>\n\u003Cli>Employee profile – record and manage employee information\u003C\u002Fli>\n\u003Cli>Department listing – create departments and assign to employees\u003C\u002Fli>\n\u003Cli>Roles listing – create roles (eg ‘Driver’ or ‘Branch Manager’) and assign to employees\u003C\u002Fli>\n\u003Cli>Leave \u002F holiday management – create and approve holiday, sickness, unpaid and other leave requests\u003C\u002Fli>\n\u003Cli>Set multiple leave \u002F holiday policies to specify number of day’s leave allowed, national (Bank) holiday dates, etc\u003C\u002Fli>\n\u003Cli>Monitor number of leave days taken and remaining for each employee\u003C\u002Fli>\n\u003Cli>Enable Employee Self Service (ESS) options so staff and update their own records\u003C\u002Fli>\n\u003Cli>Front end view for employees (discourages logged in employees from viewing WordPress backend screens)\u003C\u002Fli>\n\u003Cli>Employee Assessments and Appraisals – track performance and set goals\u003C\u002Fli>\n\u003Cli>WordPress admin dashboard customizing features\u003C\u002Fli>\n\u003Cli>DashBoard Tab added in the setting page\u003C\u002Fli>\n\u003Cli>Admin can hid\u002Fshow the dashboard widgets as well as in the employee profile\u003C\u002Fli>\n\u003Cli>Emoloyee have option to show\u002Fhide Annual Work Anniversary,Birthday Anniversary and InOutopts from profile edit window\u003C\u002Fli>\n\u003Cli>Audit log – track changes to records\u003C\u002Fli>\n\u003Cli>44 currencies supported\u003C\u002Fli>\n\u003Cli>Announcements feature – send to specific employees or all employees \u003C\u002Fli>\n\u003Cli>Notification emails with custom templates and shortcode support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin is forked from https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ferp\u002F by Tareq Hasan,Nizam Uddin,weDevs\u003Cbr \u002F>\nin order to keep up with changes to the core WordPress.\u003C\u002Fp>\n\u003Cp>This plugin includes additional features than the original plugin:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Enhancements to leave management, fixes, and licensing SDK.\u003C\u002Fli>\n\u003Cli>Plugin supports in multiple languages.\u003C\u002Fli>\n\u003Cli>Added feature to book leave from the front end view.\u003C\u002Fli>\n\u003Cli>Added feature to resend the welcome email.\u003C\u002Fli>\n\u003Cli>Added feature to allow more than one leave per day.\u003C\u002Fli>\n\u003Cli>Enable employees to apply for leave for a half-day or a few hours based on their needs.\u003C\u002Fli>\n\u003Cli>Calculate leave from the start date (by months left in the year).\u003C\u002Fli>\n\u003Cli>Enable leave for future and past years.\u003C\u002Fli>\n\u003Cli>Added feature to be able to sync “Who is out” widget with the calendar.\u003C\u002Fli>\n\u003Cli>Display all employees on the calendar of who is going to be off throughout the year.\u003C\u002Fli>\n\u003Cli>Added feature to only display assigned leave policies to the employee.\u003C\u002Fli>\n\u003Cli>Added feature to display employee leave to the line managers.\u003C\u002Fli>\n\u003Cli>Added feature to change the employee profile title based on the department.\u003C\u002Fli>\n\u003Cli>Added feature to archive old leave requests  (PRO VERSION ONLY).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Upgrade to WP-HR Manager Pro for additional features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Reports\u003C\u002Fli>\n\u003Cli>Import \u002F export employee data\u003C\u002Fli>\n\u003Cli>Option to force employee to front end profile page on log in (restrict access to WP back end)\u003C\u002Fli>\n\u003Cli>Multiple Holiday Calendars (useful to create holiday sets for different countries)\u003C\u002Fli>\n\u003Cli>Allow \u002F Restrich leave notifications and approvals from HR Managers and Line Managers\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WP-HR Manager Extensions\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>WP-HR Attendance\u003C\u002Fstrong> (monitor check-in \u002F check-out, add shifts)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WP-HR Mobile Check In\u003C\u002Fstrong> (NEW! enable employees to check-in \u002F check-out on their mobile phones)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WP-HR Recruitment\u003C\u002Fstrong> (create and advertise job vacancies on your site and manage recruitment process)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WP-HR GDPR Pro\u003C\u002Fstrong> (a set of useful tools to: Create your Privacy Policy; Record Consent to Manage Data from employees and job applicants; track employee GDPR training; log and manage Subject Access Requests; and more.) We also offer a stand alone lite version for free \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-hr-gdpr\u002F\" rel=\"ugc\">here\u003C\u002Fa> \u003C\u002Fli>\n\u003Cli>\u003Cstrong>WP-HR SMS Messages\u003C\u002Fstrong>(Send SMS messages to employees)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WP-HR Documents\u003C\u002Fstrong> (Upload documents to a company library or to employee profiles)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WP-HR Add Fields\u003C\u002Fstrong>(Add extra fields to collect and display information in the employee profile and all other tabs)\u003C\u002Fli>\n\u003Cli>More planned – watch this space!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>These extensions can be added from with the WPHR Settings menu on your WordPress dashboard.\u003C\u002Fp>\n\u003Ch4>Links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwphrmanager.com\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwphrmanager.com\u002F\" rel=\"nofollow ugc\">Project Site\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.wphrmanager.com\u002Fshop\u002F\" rel=\"nofollow ugc\">Extensions\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Translations (full or partial)\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Bulgarian \u002F Български\u003C\u002Fli>\n\u003Cli>Chinese (China) \u002F 简体中文\u003C\u002Fli>\n\u003Cli>Danish \u002F Dansk\u003C\u002Fli>\n\u003Cli>Dutch \u002F Nederlands\u003C\u002Fli>\n\u003Cli>German \u002F Deutsch\u003C\u002Fli>\n\u003Cli>Japanese \u002F 日本語 \u003C\u002Fli>\n\u003Cli>Norwegian (Bokmål) \u002F Norsk bokmål\u003C\u002Fli>\n\u003Cli>Polish \u002F Polski\u003C\u002Fli>\n\u003Cli>Persian (Iranian)\u003C\u002Fli>\n\u003Cli>Spanish (Spain) \u002F Español\u003C\u002Fli>\n\u003Cli>Swedish \u002F Svenska\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you would like to help with translating this plugin, please go \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fwp-hr-manager\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Press Coverage\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>\"WP-HR Manager is a new approach to HRM software - neither a clunky old desktop application, nor a cloud system with expensive per employee pricing. An exciting new tool for HR managers.\"\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cem>Becki Clarke, Editor, www.HRreview.co.uk\u003C\u002Fem>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\"A great tool for organisations of all sizes.  The free version does all the basics things you need - and then you can customize with add-ons to get the exact mix of functionality you want.  This one will just get better and better.\" \n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cem>Bill Banham, Publisher, www.hr-gazette.com\u003C\u002Fem>\u003C\u002Fp>\n","Easily add a powerful HR \u002F human resource management system and employee self service (ESS) portal to your website. = Credits = This plugin uses [WP E …",300,46156,40,"2025-03-27T14:40:00.000Z","6.7.5","5.0","",[20,220,221,222,223],"hr","human-resources","leave","recruitment","http:\u002F\u002Fwww.wphrmanager.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-hr-manager.zip",91,"2025-01-16 00:00:00",{"slug":229,"name":230,"version":231,"author":232,"author_profile":233,"description":234,"short_description":235,"active_installs":236,"downloaded":237,"rating":236,"num_ratings":238,"last_updated":239,"tested_up_to":240,"requires_at_least":217,"requires_php":241,"tags":242,"homepage":247,"download_link":248,"security_score":199,"vuln_count":48,"unpatched_count":48,"last_vuln_date":249,"fetched_at":31},"clockify-lite","Clockinator Lite","1.0.8","BeastThemes","https:\u002F\u002Fprofiles.wordpress.org\u002Fbeastthemes\u002F","\u003Cp>Clockinator Lite is a powerful and easy-to-use \u003Cstrong>employee and attendance management plugin\u003C\u002Fstrong> for WordPress.\u003Cbr \u002F>\nIt helps you track working hours, manage staff, monitor shifts, and streamline HR processes.\u003C\u002Fp>\n\u003Cp>With Clockinator Lite, you can:\u003Cbr \u002F>\n– Track \u003Cstrong>attendance and working hours\u003C\u002Fstrong> in real time\u003Cbr \u002F>\n– Manage \u003Cstrong>departments, designations, and holidays\u003C\u002Fstrong>\u003Cbr \u002F>\n– Generate \u003Cstrong>monthly attendance reports\u003C\u002Fstrong>\u003Cbr \u002F>\n– View employees \u003Cstrong>past attendance history\u003C\u002Fstrong>\u003Cbr \u002F>\n– Enable \u003Cstrong>employee dashboards\u003C\u002Fstrong> on the frontend\u003Cbr \u002F>\n– Notify admins when employees \u003Cstrong>clock in\u002Fout\u003C\u002Fstrong>\u003Cbr \u002F>\n– Access an intuitive, translation-ready dashboard\u003Cbr \u002F>\n– And many other features\u003C\u002Fp>\n\u003Cp>Designed for businesses of all sizes, Clockinator Lite gives you the essential tools to manage your workforce directly inside WordPress.\u003C\u002Fp>\n\u003Ch3>🔑 Key Features (Lite Version)\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>User Management (Admin \u002F Employee)\u003C\u002Fli>\n\u003Cli>Attendance & Holiday Management\u003C\u002Fli>\n\u003Cli>Real-time employee tracking\u003C\u002Fli>\n\u003Cli>Monthly & past attendance reports\u003C\u002Fli>\n\u003Cli>Admin notifications on clock in\u002Fout ( Email & SMS notifications )\u003C\u002Fli>\n\u003Cli>Employee self-service frontend dashboard\u003C\u002Fli>\n\u003Cli>Centralized admin dashboard\u003C\u002Fli>\n\u003Cli>Clean UI & translation ready\u003C\u002Fli>\n\u003Cli>And many other features\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🚀 Upgrade to Pro\u003C\u002Fh3>\n\u003Cp>Unlock advanced HR features with \u003Cstrong>Clockinator Pro\u003C\u002Fstrong>, including:\u003Cbr \u002F>\n– Shift, leave, payroll & reimbursement management\u003Cbr \u002F>\n– Project & task management\u003Cbr \u002F>\n– Payslip & Pauroll generation( partial & monthly wise )\u003Cbr \u002F>\n– Exportable reports (CSV)\u003Cbr \u002F>\n– Customizable email\u002FSMS notifications\u003Cbr \u002F>\n– Department & role-based access control\u003Cbr \u002F>\n– More robust dashboards for HR Managers & Department Heads\u003C\u002Fp>\n\u003Cp>👉 \u003Ca href=\"https:\u002F\u002Fbeastthemes.com\u002Fplugins\u002Fclockify-pro\u002F\" rel=\"nofollow ugc\">Learn More\u003C\u002Fa>\u003Cbr \u002F>\n👉 \u003Ca href=\"https:\u002F\u002Fdemo.beastthemes.com\u002Fclockify-pro-wordpress-plugin\u002F\" rel=\"nofollow ugc\">View Demo\u003C\u002Fa>\u003Cbr \u002F>\n👉 \u003Ca href=\"https:\u002F\u002Fbeastthemes.com\u002Faccount\u002Fsignup\u002Fclockify-pro-plugin\" rel=\"nofollow ugc\">Buy Now\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Short Description\u003C\u002Fh3>\n\u003Cp>A complete HR and attendance management plugin with clock-in\u002Fout, leave tracking, shift scheduling, and employee dashboards.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>Clockinator Lite WordPress plugin, Copyright (C) 2021 Beastthemes\u003Cbr \u002F>\nLicensed under the GPL3 (https:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-3.0.en.html).\u003C\u002Fp>\n","Clockinator Lite is a powerful and easy-to-use employee and attendance management plugin for WordPress.",100,6874,2,"2025-08-23T12:27:00.000Z","6.8.5","7.0",[20,243,244,245,246],"clock-in-out","hr-management","leave-management","shift-management","https:\u002F\u002Fbeastthemes.com\u002Fplugins\u002Fclockify-pro","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fclockify-lite.1.0.8.zip","2025-04-01 00:00:00",{"slug":251,"name":252,"version":253,"author":254,"author_profile":255,"description":256,"short_description":257,"active_installs":258,"downloaded":259,"rating":29,"num_ratings":29,"last_updated":260,"tested_up_to":216,"requires_at_least":261,"requires_php":18,"tags":262,"homepage":266,"download_link":267,"security_score":268,"vuln_count":48,"unpatched_count":48,"last_vuln_date":269,"fetched_at":31},"hr-press-lite","Hr Press Lite","1.0.2","CODECLOVE","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodeclove\u002F","\u003Cp>\u003Cstrong>Hr Press Lite\u003C\u002Fstrong> is \u003Cstrong>Employee management system\u003C\u002Fstrong> that help companies to manage employees and employees time, holidays, leave etc. it is user friendly and easy to user wordpress plugin. You can use Hr Press Lite completely free.\u003C\u002Fp>\n\u003Cp>It can also manage Departments, Designations, Employee Leaves, Holidays, Employee Attendance and more will be added as plugin progress.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Hr Press Lite\u003C\u002Fstrong> lets you manage Employees daily timings and breaks. Hr Press Lite uses a \u003Cstrong>very modern, clean and easy to use interface\u003C\u002Fstrong> to make managing a breeze!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Did you know?\u003C\u002Fstrong>\u003Cbr \u002F>\nMore than \u003Ca href=\"https:\u002F\u002Fwww.wordfence.com\u002Fblog\u002F2020\u002F09\u002Fmillions-of-sites-targeted-in-file-manager-vulnerability-attacks\u002F\" rel=\"nofollow ugc\">700,000 WordPress websites\u003C\u002Fa> were attacked during September 2020.\u003Cbr \u002F>\nMalicious bots are looking to exploit vulnerable versions of WP file manager plugins.\u003C\u002Fp>\n\u003Cp>Fortunately, Hr Press Lite is built with \u003Cstrong>security in mind\u003C\u002Fstrong> and comes with this vulnerability \u003Cstrong>fixed\u003C\u002Fstrong>! So rest assured! Hr Press Lite poses no risk to you!\u003C\u002Fp>\n\u003Ch3>⚡️Features include:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Employees check-in and check-out time\u003C\u002Fli>\n\u003Cli>Employees Break logs\u003C\u002Fli>\n\u003Cli>Send emails to employees\u003C\u002Fli>\n\u003Cli>Announcements\u003C\u002Fli>\n\u003Cli>Departments\u003C\u002Fli>\n\u003Cli>Designations\u003C\u002Fli>\n\u003Cli>Attendance\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>\u003Ca href=\"https:\u002F\u002Fcodeclove.com\u002Fplugins\u002Fhr-press\" rel=\"nofollow ugc\">👉 \u003Cstrong>Hr Press PRO\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fh3>\n\u003Ch3>⭐️ PRO FEATURES\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Leave requests\u003C\u002Fli>\n\u003Cli>Send Holiday emails to employees\u003C\u002Fli>\n\u003Cli>IP Addresses restriction\u003C\u002Fli>\n\u003Cli>IP Address whitelisting\u003C\u002Fli>\n\u003Cli>Better support\u003C\u002Fli>\n\u003Cli>Features requests\u003C\u002Fli>\n\u003Cli>More coming…\u003C\u002Fli>\n\u003C\u002Ful>\n","Hr Press Lite is a modern Employee Management System to track attendance, breaks, and manage employees efficiently. HRM (Human Resource Management) is …",50,2485,"2026-01-18T09:47:00.000Z","6.0",[20,263,220,264,265],"employee-self-service","hrm","human-resources-management","https:\u002F\u002FCodeClove.com\u002Fhr-press","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhr-press-lite.1.0.2.zip",78,"2026-03-20 15:15:10",{"attackSurface":271,"codeSignals":644,"taintFlows":1092,"riskAssessment":1577,"analyzedAt":1592},{"hooks":272,"ajaxHandlers":336,"restRoutes":641,"shortcodes":642,"cronEvents":643,"entryPointCount":268,"unprotectedCount":268},[273,279,283,287,292,297,302,306,310,314,320,324,329,332],{"type":274,"name":275,"callback":276,"file":277,"line":278},"action","plugins_loaded","wpsp_plugins_loaded","wpschoolpress.php",46,{"type":274,"name":280,"callback":281,"file":277,"line":282},"admin_init","ajax_actions",74,{"type":274,"name":284,"callback":285,"file":277,"line":286},"activated_plugin","wpsp_save_error",170,{"type":288,"name":289,"callback":290,"file":277,"line":291},"filter","login_headerurl","wp_wp_login_url",182,{"type":274,"name":293,"callback":294,"priority":295,"file":277,"line":296},"init","wpsp_std_role",11,189,{"type":274,"name":298,"callback":299,"file":300,"line":301},"admin_menu","wpsp_admin_menu","wpsp-class-admin.php",666,{"type":274,"name":303,"callback":304,"file":300,"line":305},"login_enqueue_scripts","wpsp_custom_loginlogo",670,{"type":274,"name":307,"callback":308,"file":300,"line":309},"admin_enqueue_scripts","wpsp_add_admin_scripts",672,{"type":274,"name":311,"callback":312,"file":300,"line":313},"wp_before_admin_bar_render","wpsp_add_adminbar",677,{"type":288,"name":315,"callback":316,"priority":317,"file":318,"line":319},"login_redirect","wpsp_login_redirect",10,"wpsp-class-public.php",150,{"type":288,"name":321,"callback":322,"file":318,"line":323},"page_template","wpsp_page_template",155,{"type":274,"name":325,"callback":326,"file":327,"line":328},"login_head","wp_no_robots","wpsp-school-login.php",34,{"type":274,"name":325,"callback":330,"file":327,"line":331},"wp_login_viewport_meta",35,{"type":274,"name":325,"callback":333,"priority":334,"file":327,"line":335},"wp_shake_js",12,49,[337,342,345,348,351,355,359,363,367,371,375,379,382,386,390,393,397,401,405,409,413,417,421,425,428,432,436,440,444,448,452,456,460,464,468,472,476,480,484,488,492,496,500,503,507,511,515,519,523,527,530,534,538,542,546,550,554,558,562,566,570,574,578,582,586,590,594,598,602,606,610,614,617,621,625,629,633,637],{"action":338,"nopriv":339,"callback":340,"hasNonce":339,"hasCapCheck":339,"file":277,"line":341},"listdashboardschedule",false,"wpsp_listdashboardschedule",77,{"action":343,"nopriv":339,"callback":344,"hasNonce":339,"hasCapCheck":339,"file":277,"line":268},"StudentProfile","wpsp_StudentProfile",{"action":346,"nopriv":339,"callback":347,"hasNonce":339,"hasCapCheck":339,"file":277,"line":199},"AddStudent","wpsp_AddStudent",{"action":349,"nopriv":339,"callback":350,"hasNonce":339,"hasCapCheck":339,"file":277,"line":13},"UpdateStudent","wpsp_UpdateStudent",{"action":352,"nopriv":339,"callback":353,"hasNonce":339,"hasCapCheck":339,"file":277,"line":354},"StudentPublicProfile","wpsp_StudentPublicProfile",81,{"action":356,"nopriv":339,"callback":357,"hasNonce":339,"hasCapCheck":339,"file":277,"line":358},"ParentPublicProfile","wpsp_ParentPublicProfile",82,{"action":360,"nopriv":339,"callback":361,"hasNonce":339,"hasCapCheck":339,"file":277,"line":362},"TeacherPublicProfile","wpsp_TeacherPublicProfile",83,{"action":364,"nopriv":339,"callback":365,"hasNonce":339,"hasCapCheck":339,"file":277,"line":366},"bulkDelete","wpsp_BulkDelete",84,{"action":368,"nopriv":339,"callback":369,"hasNonce":339,"hasCapCheck":339,"file":277,"line":370},"undoImport","wpsp_UndoImport",85,{"action":372,"nopriv":339,"callback":373,"hasNonce":339,"hasCapCheck":339,"file":277,"line":374},"AddTeacher","wpsp_AddTeacher",86,{"action":376,"nopriv":339,"callback":377,"hasNonce":339,"hasCapCheck":339,"file":277,"line":378},"AddParent","wpsp_AddParent",87,{"action":380,"nopriv":339,"callback":381,"hasNonce":339,"hasCapCheck":339,"file":277,"line":27},"AddClass","wpsp_AddClass",{"action":383,"nopriv":339,"callback":384,"hasNonce":339,"hasCapCheck":339,"file":277,"line":385},"UpdateClass","wpsp_UpdateClass",89,{"action":387,"nopriv":339,"callback":388,"hasNonce":339,"hasCapCheck":339,"file":277,"line":389},"GetClass","wpsp_GetClass",90,{"action":391,"nopriv":339,"callback":392,"hasNonce":339,"hasCapCheck":339,"file":277,"line":226},"DeleteClass","wpsp_DeleteClass",{"action":394,"nopriv":339,"callback":395,"hasNonce":339,"hasCapCheck":339,"file":277,"line":396},"Updateregisterdeactive","wpsp_Updateregisterdeactive",92,{"action":398,"nopriv":339,"callback":399,"hasNonce":339,"hasCapCheck":339,"file":277,"line":400},"Updateregisteractive","wpsp_Updateregisteractive",93,{"action":402,"nopriv":339,"callback":403,"hasNonce":339,"hasCapCheck":339,"file":277,"line":404},"bulkaproverequest","wpsp_bulkaproverequest",94,{"action":406,"nopriv":339,"callback":407,"hasNonce":339,"hasCapCheck":339,"file":277,"line":408},"bulkdisaproverequest","wpsp_bulkdisaproverequest",95,{"action":410,"nopriv":339,"callback":411,"hasNonce":339,"hasCapCheck":339,"file":277,"line":412},"AddExam","wpsp_AddExam",96,{"action":414,"nopriv":339,"callback":415,"hasNonce":339,"hasCapCheck":339,"file":277,"line":416},"UpdateExam","wpsp_UpdateExam",97,{"action":418,"nopriv":339,"callback":419,"hasNonce":339,"hasCapCheck":339,"file":277,"line":420},"ExamInfo","wpsp_ExamInfo",98,{"action":422,"nopriv":339,"callback":423,"hasNonce":339,"hasCapCheck":339,"file":277,"line":424},"DeleteExam","wpsp_DeleteExam",99,{"action":426,"nopriv":339,"callback":427,"hasNonce":339,"hasCapCheck":339,"file":277,"line":236},"getStudentsList","wpsp_getStudentsList",{"action":429,"nopriv":339,"callback":430,"hasNonce":339,"hasCapCheck":339,"file":277,"line":431},"AttendanceEntry","wpsp_AttendanceEntry",101,{"action":433,"nopriv":339,"callback":434,"hasNonce":339,"hasCapCheck":339,"file":277,"line":435},"deleteAttendance","wpsp_DeleteAttendance",102,{"action":437,"nopriv":339,"callback":438,"hasNonce":339,"hasCapCheck":339,"file":277,"line":439},"getStudentsAttendanceList","wpsp_getStudentsAttendanceList",103,{"action":441,"nopriv":339,"callback":442,"hasNonce":339,"hasCapCheck":339,"file":277,"line":443},"getAbsentees","wpsp_GetAbsentees",104,{"action":445,"nopriv":339,"callback":446,"hasNonce":339,"hasCapCheck":339,"file":277,"line":447},"getAbsentDates","wpsp_GetAbsentDates",105,{"action":449,"nopriv":339,"callback":450,"hasNonce":339,"hasCapCheck":339,"file":277,"line":451},"getAttReport","wpsp_GetAttReport",106,{"action":453,"nopriv":339,"callback":454,"hasNonce":339,"hasCapCheck":339,"file":277,"line":455},"AddSubject","wpsp_AddSubject",107,{"action":457,"nopriv":339,"callback":458,"hasNonce":339,"hasCapCheck":339,"file":277,"line":459},"SubjectInfo","wpsp_SubjectInfo",108,{"action":461,"nopriv":339,"callback":462,"hasNonce":339,"hasCapCheck":339,"file":277,"line":463},"UpdateSubject","wpsp_UpdateSubject",109,{"action":465,"nopriv":339,"callback":466,"hasNonce":339,"hasCapCheck":339,"file":277,"line":467},"DeleteSubject","wpsp_DeleteSubject",110,{"action":469,"nopriv":339,"callback":470,"hasNonce":339,"hasCapCheck":339,"file":277,"line":471},"subjectList","wpsp_SubjectList",111,{"action":473,"nopriv":339,"callback":474,"hasNonce":339,"hasCapCheck":339,"file":277,"line":475},"save_timetable","wpsp_SaveTimetable",112,{"action":477,"nopriv":339,"callback":478,"hasNonce":339,"hasCapCheck":339,"file":277,"line":479},"deletsloat","wpsp_DeleteTimetablesloat",113,{"action":481,"nopriv":339,"callback":482,"hasNonce":339,"hasCapCheck":339,"file":277,"line":483},"deletTimetable","wpsp_DeleteTimetable",114,{"action":485,"nopriv":339,"callback":486,"hasNonce":339,"hasCapCheck":339,"file":277,"line":487},"addMark","wpsp_AddMark",115,{"action":489,"nopriv":339,"callback":490,"hasNonce":339,"hasCapCheck":339,"file":277,"line":491},"getMarksubject","wpsp_getMarksubject",116,{"action":493,"nopriv":339,"callback":494,"hasNonce":339,"hasCapCheck":339,"file":277,"line":495},"GenSetting","wpsp_GenSetting",118,{"action":497,"nopriv":339,"callback":498,"hasNonce":339,"hasCapCheck":339,"file":277,"line":499},"GenSettingsms","wpsp_GenSettingsms",119,{"action":501,"nopriv":339,"callback":502,"hasNonce":339,"hasCapCheck":339,"file":277,"line":136},"GenSettingsocial","wpsp_GenSettingsocial",{"action":504,"nopriv":339,"callback":505,"hasNonce":339,"hasCapCheck":339,"file":277,"line":506},"GenSettinglicensing","wpsp_GenSettinglicensing",121,{"action":508,"nopriv":339,"callback":509,"hasNonce":339,"hasCapCheck":339,"file":277,"line":510},"addSubField","wpsp_AddSubField",122,{"action":512,"nopriv":339,"callback":513,"hasNonce":339,"hasCapCheck":339,"file":277,"line":514},"updateSubField","wpsp_UpdateSubField",123,{"action":516,"nopriv":339,"callback":517,"hasNonce":339,"hasCapCheck":339,"file":277,"line":518},"deleteSubField","wpsp_DeleteSubField",124,{"action":520,"nopriv":339,"callback":521,"hasNonce":339,"hasCapCheck":339,"file":277,"line":522},"manageGrade","wpsp_ManageGrade",125,{"action":524,"nopriv":339,"callback":525,"hasNonce":339,"hasCapCheck":339,"file":277,"line":526},"addEvent","wpsp_AddEvent",126,{"action":528,"nopriv":339,"callback":529,"hasNonce":339,"hasCapCheck":339,"file":277,"line":149},"updateEvent","wpsp_UpdateEvent",{"action":531,"nopriv":339,"callback":532,"hasNonce":339,"hasCapCheck":339,"file":277,"line":533},"deleteEvent","wpsp_DeleteEvent",128,{"action":535,"nopriv":339,"callback":536,"hasNonce":339,"hasCapCheck":339,"file":277,"line":537},"listEvent","wpsp_ListEvent",129,{"action":539,"nopriv":339,"callback":540,"hasNonce":339,"hasCapCheck":339,"file":277,"line":541},"deleteAllLeaves","wpsp_DeleteLeave",130,{"action":543,"nopriv":339,"callback":544,"hasNonce":339,"hasCapCheck":339,"file":277,"line":545},"addLeaveDay","wpsp_AddLeaveDay",131,{"action":547,"nopriv":339,"callback":548,"hasNonce":339,"hasCapCheck":339,"file":277,"line":549},"getLeaveDays","wpsp_GetLeaveDays",132,{"action":551,"nopriv":339,"callback":552,"hasNonce":339,"hasCapCheck":339,"file":277,"line":553},"getClassYear","wpsp_GetClassYear",133,{"action":555,"nopriv":339,"callback":556,"hasNonce":339,"hasCapCheck":339,"file":277,"line":557},"addTransport","wpsp_AddTransport",134,{"action":559,"nopriv":339,"callback":560,"hasNonce":339,"hasCapCheck":339,"file":277,"line":561},"updateTransport","wpsp_UpdateTransport",135,{"action":563,"nopriv":339,"callback":564,"hasNonce":339,"hasCapCheck":339,"file":277,"line":565},"viewTransport","wpsp_ViewTransport",136,{"action":567,"nopriv":339,"callback":568,"hasNonce":339,"hasCapCheck":339,"file":277,"line":569},"deleteTransport","wpsp_DeleteTransport",137,{"action":571,"nopriv":339,"callback":572,"hasNonce":339,"hasCapCheck":339,"file":277,"line":573},"sendMessage","wpsp_SendMessage",138,{"action":575,"nopriv":339,"callback":576,"hasNonce":339,"hasCapCheck":339,"file":277,"line":577},"sendSubMessage","wpsp_sendSubMessage",139,{"action":579,"nopriv":339,"callback":580,"hasNonce":339,"hasCapCheck":339,"file":277,"line":581},"viewMessage","wpsp_ViewMessage",140,{"action":583,"nopriv":339,"callback":584,"hasNonce":339,"hasCapCheck":339,"file":277,"line":585},"deleteMessage","wpsp_DeleteMessage",141,{"action":587,"nopriv":339,"callback":588,"hasNonce":339,"hasCapCheck":339,"file":277,"line":589},"photoUpload","wpsp_UploadPhoto",142,{"action":591,"nopriv":339,"callback":592,"hasNonce":339,"hasCapCheck":339,"file":277,"line":593},"deletePhoto","wpsp_DeletePhoto",143,{"action":595,"nopriv":339,"callback":596,"hasNonce":339,"hasCapCheck":339,"file":277,"line":597},"DeleteStudent","wpsp_DeleteStudent",144,{"action":599,"nopriv":339,"callback":600,"hasNonce":339,"hasCapCheck":339,"file":277,"line":601},"DeleteTeacher","wpsp_DeleteTeacher",145,{"action":603,"nopriv":339,"callback":604,"hasNonce":339,"hasCapCheck":339,"file":277,"line":605},"getTeachersList","wpsp_getTeachersList",147,{"action":607,"nopriv":339,"callback":608,"hasNonce":339,"hasCapCheck":339,"file":277,"line":609},"TeacherAttendanceEntry","wpsp_TeacherAttendanceEntry",148,{"action":611,"nopriv":339,"callback":612,"hasNonce":339,"hasCapCheck":339,"file":277,"line":613},"TeacherAttendanceDelete","wpsp_TeacherAttendanceDelete",149,{"action":615,"nopriv":339,"callback":616,"hasNonce":339,"hasCapCheck":339,"file":277,"line":319},"TeacherAttendanceView","wpsp_TeacherAttendanceView",{"action":618,"nopriv":339,"callback":619,"hasNonce":339,"hasCapCheck":339,"file":277,"line":620},"UpdateTeacher","wpsp_UpdateTeacher",151,{"action":622,"nopriv":339,"callback":623,"hasNonce":339,"hasCapCheck":339,"file":277,"line":624},"deleteNotify","wpsp_deleteNotify",153,{"action":626,"nopriv":339,"callback":627,"hasNonce":339,"hasCapCheck":339,"file":277,"line":628},"getNotify","wpsp_getNotifyInfo",154,{"action":630,"nopriv":339,"callback":631,"hasNonce":339,"hasCapCheck":339,"file":277,"line":632},"addNotify","wpsp_addNotify",156,{"action":634,"nopriv":339,"callback":635,"hasNonce":339,"hasCapCheck":339,"file":277,"line":636},"changepassword","wpsp_changepassword",158,{"action":638,"nopriv":339,"callback":639,"hasNonce":339,"hasCapCheck":339,"file":277,"line":640},"ImportContents","wpsp_Import_Dummy_contents",160,[],[],[],{"dangerousFunctions":645,"sqlUsage":749,"outputEscaping":892,"fileOperations":29,"externalRequests":29,"nonceChecks":122,"capabilityChecks":29,"bundledLibraries":1088},[646,650,653,656,659,661,664,667,670,674,677,681,683,685,688,690,692,695,698,699,702,705,708,712,714,716,720,723,726,729,732,734,737,741,744,746],{"fn":647,"file":648,"line":354,"context":649},"unserialize","includes\\wpsp-createTimetable.php","$get_sessions = unserialize($check_tt->heading);",{"fn":647,"file":651,"line":652,"context":649},"includes\\wpsp-editTimetable.php",24,{"fn":647,"file":654,"line":655,"context":649},"includes\\wpsp-newTimetable.php",75,{"fn":647,"file":657,"line":624,"context":658},"includes\\wpsp-parentList.php","$class_id_array = unserialize( $stu->class_id );",{"fn":647,"file":657,"line":660,"context":658},180,{"fn":647,"file":662,"line":663,"context":658},"includes\\wpsp-studentList.php",159,{"fn":647,"file":662,"line":665,"context":666},186,"$class_id_array = unserialize( $stinfo->class_id );",{"fn":647,"file":662,"line":668,"context":669},250,"$class_id_array = unserialize($stinfo->class_id);",{"fn":647,"file":671,"line":672,"context":673},"includes\\wpsp-studentProfile.php",646,"$classIDArray = unserialize($stinfo->class_id);",{"fn":647,"file":675,"line":676,"context":658},"includes\\wpsp-viewMark.php",38,{"fn":647,"file":678,"line":679,"context":680},"includes\\wpsp-viewTimetable.php",19,"$session = unserialize($get_heading->heading);",{"fn":647,"file":682,"line":431,"context":658},"pages\\wpsp-attendance.php",{"fn":647,"file":682,"line":684,"context":669},241,{"fn":647,"file":682,"line":686,"context":687},257,"$classid_array = unserialize($stinfo->class_id);",{"fn":647,"file":682,"line":689,"context":669},345,{"fn":647,"file":682,"line":691,"context":687},360,{"fn":647,"file":693,"line":694,"context":658},"pages\\wpsp-class.php",69,{"fn":647,"file":696,"line":278,"context":697},"pages\\wpsp-dashboard.php","$classIDArray = unserialize($sclas->class_id);",{"fn":647,"file":696,"line":613,"context":697},{"fn":647,"file":696,"line":700,"context":701},268,"$class_id_array = unserialize( $wpsp_stud_data[0]->class_id );",{"fn":647,"file":696,"line":703,"context":704},521,"$examclassid =   unserialize($examinfo->class_id);",{"fn":647,"file":696,"line":706,"context":707},556,"$examclassid =   unserialize($parray);",{"fn":647,"file":709,"line":710,"context":711},"pages\\wpsp-history.php",76,"$class_id_array = unserialize($count->class_id);",{"fn":647,"file":713,"line":162,"context":658},"pages\\wpsp-marks.php",{"fn":647,"file":713,"line":715,"context":658},264,{"fn":647,"file":717,"line":718,"context":719},"pages\\wpsp-messages.php",454,"$class_id_array = unserialize($studentdata->class_id);",{"fn":647,"file":717,"line":721,"context":722},506,"$class_id_array = unserialize($parentdata->class_id);",{"fn":647,"file":717,"line":724,"context":725},555,"$c_id = unserialize($sid->class_id);",{"fn":647,"file":717,"line":727,"context":728},591,"$class_data = unserialize($sid->class_id);",{"fn":647,"file":730,"line":731,"context":701},"pages\\wpsp-payment.php",167,{"fn":647,"file":733,"line":374,"context":673},"pages\\wpsp-student.php",{"fn":647,"file":733,"line":735,"context":736},232,"$jsonArray = unserialize($jsondata);",{"fn":647,"file":738,"line":739,"context":740},"wpsp-layout.php",585,"$class_id_array = unserialize( $wpsp_stud[0]->class_id );",{"fn":647,"file":738,"line":742,"context":743},662,"$classIDArray = unserialize($wpsp_classes[0]->class_id);",{"fn":647,"file":738,"line":745,"context":740},887,{"fn":647,"file":738,"line":747,"context":748},984,"$classArray = unserialize($sclas->class_id);",{"prepared":750,"raw":710,"locations":751},388,[752,756,758,759,761,764,766,769,772,774,776,778,780,782,784,787,789,790,791,792,793,794,796,798,799,801,802,804,806,808,809,810,813,816,818,819,821,823,825,827,829,831,833,835,837,839,841,843,845,846,847,849,851,852,853,854,856,858,860,862,864,866,868,869,871,872,874,876,878,881,882,886,888,889,890,891],{"file":753,"line":754,"context":755},"includes\\wpsp-attendanceView.php",6,"$wpdb->get_results() with variable interpolation",{"file":757,"line":754,"context":755},"includes\\wpsp-classForm.php",{"file":648,"line":14,"context":755},{"file":760,"line":754,"context":755},"includes\\wpsp-editsubjectForm.php",{"file":762,"line":763,"context":755},"includes\\wpsp-misc.php",15,{"file":654,"line":765,"context":755},16,{"file":657,"line":767,"context":768},193,"$wpdb->get_row() with variable interpolation",{"file":770,"line":771,"context":755},"includes\\wpsp-studentForm.php",715,{"file":662,"line":773,"context":755},42,{"file":662,"line":775,"context":755},152,{"file":662,"line":777,"context":755},168,{"file":662,"line":779,"context":755},197,{"file":671,"line":781,"context":755},628,{"file":783,"line":122,"context":755},"includes\\wpsp-subjectForm.php",{"file":675,"line":785,"context":786},72,"$wpdb->get_var() with variable interpolation",{"file":678,"line":788,"context":755},25,{"file":682,"line":258,"context":755},{"file":682,"line":389,"context":755},{"file":682,"line":404,"context":755},{"file":682,"line":491,"context":755},{"file":693,"line":258,"context":755},{"file":693,"line":795,"context":755},53,{"file":693,"line":797,"context":755},61,{"file":693,"line":581,"context":755},{"file":696,"line":800,"context":768},20,{"file":696,"line":14,"context":768},{"file":696,"line":803,"context":768},22,{"file":696,"line":805,"context":768},23,{"file":696,"line":807,"context":755},37,{"file":696,"line":585,"context":755},{"file":696,"line":727,"context":755},{"file":811,"line":812,"context":755},"pages\\wpsp-exams.php",28,{"file":814,"line":815,"context":755},"pages\\wpsp-importhistory.php",17,{"file":817,"line":763,"context":755},"pages\\wpsp-leavecalendar.php",{"file":817,"line":605,"context":755},{"file":817,"line":820,"context":768},221,{"file":817,"line":822,"context":755},237,{"file":713,"line":824,"context":755},36,{"file":713,"line":826,"context":755},188,{"file":713,"line":828,"context":755},256,{"file":717,"line":830,"context":755},431,{"file":717,"line":832,"context":755},447,{"file":717,"line":834,"context":755},484,{"file":717,"line":836,"context":755},493,{"file":717,"line":838,"context":755},533,{"file":717,"line":840,"context":755},775,{"file":717,"line":842,"context":755},787,{"file":844,"line":328,"context":755},"pages\\wpsp-notify.php",{"file":844,"line":331,"context":755},{"file":844,"line":824,"context":755},{"file":844,"line":848,"context":755},178,{"file":850,"line":396,"context":768},"pages\\wpsp-parent.php",{"file":730,"line":694,"context":755},{"file":730,"line":785,"context":755},{"file":730,"line":663,"context":755},{"file":730,"line":855,"context":755},235,{"file":857,"line":14,"context":755},"pages\\wpsp-registration-request.php",{"file":857,"line":859,"context":755},73,{"file":861,"line":424,"context":755},"pages\\wpsp-settings.php",{"file":861,"line":863,"context":755},173,{"file":861,"line":865,"context":755},332,{"file":861,"line":867,"context":755},363,{"file":733,"line":820,"context":755},{"file":870,"line":13,"context":755},"pages\\wpsp-subject.php",{"file":870,"line":424,"context":755},{"file":870,"line":873,"context":755},205,{"file":870,"line":875,"context":755},293,{"file":877,"line":518,"context":755},"pages\\wpsp-teacher.php",{"file":879,"line":880,"context":755},"pages\\wpsp-transport.php",33,{"file":879,"line":499,"context":755},{"file":883,"line":884,"context":885},"uninstall.php",44,"$wpdb->get_col() with variable interpolation",{"file":883,"line":887,"context":885},45,{"file":883,"line":278,"context":885},{"file":883,"line":483,"context":885},{"file":883,"line":487,"context":885},{"file":883,"line":491,"context":885},{"escaped":893,"rawEcho":487,"locations":894},3238,[895,899,902,903,905,906,908,909,910,911,913,914,916,917,918,919,920,921,922,923,924,925,926,927,929,931,932,934,936,938,940,942,944,946,948,950,951,952,953,954,955,956,957,958,959,960,961,962,964,966,968,970,971,973,975,977,978,979,980,983,984,985,986,988,990,992,993,996,998,999,1001,1003,1004,1006,1008,1010,1012,1014,1016,1018,1020,1021,1023,1025,1027,1029,1031,1033,1035,1037,1039,1041,1043,1044,1046,1048,1050,1052,1054,1056,1058,1060,1062,1064,1066,1068,1070,1072,1074,1076,1078,1080,1082,1084,1086],{"file":896,"line":897,"context":898},"includes\\wpsp-examForm.php",169,"raw output",{"file":900,"line":901,"context":898},"includes\\wpsp-parentForm.php",18,{"file":900,"line":652,"context":898},{"file":900,"line":904,"context":898},30,{"file":900,"line":807,"context":898},{"file":900,"line":907,"context":898},41,{"file":900,"line":887,"context":898},{"file":900,"line":335,"context":898},{"file":900,"line":795,"context":898},{"file":900,"line":912,"context":898},57,{"file":900,"line":797,"context":898},{"file":900,"line":915,"context":898},68,{"file":900,"line":408,"context":898},{"file":900,"line":420,"context":898},{"file":900,"line":435,"context":898},{"file":900,"line":451,"context":898},{"file":900,"line":467,"context":898},{"file":900,"line":483,"context":898},{"file":900,"line":495,"context":898},{"file":900,"line":510,"context":898},{"file":900,"line":573,"context":898},{"file":900,"line":597,"context":898},{"file":900,"line":319,"context":898},{"file":657,"line":928,"context":898},212,{"file":657,"line":930,"context":898},214,{"file":770,"line":28,"context":898},{"file":770,"line":933,"context":898},51,{"file":770,"line":935,"context":898},55,{"file":770,"line":937,"context":898},59,{"file":770,"line":939,"context":898},348,{"file":770,"line":941,"context":898},386,{"file":770,"line":943,"context":898},390,{"file":770,"line":945,"context":898},394,{"file":770,"line":947,"context":898},599,{"file":770,"line":949,"context":898},678,{"file":662,"line":537,"context":898},{"file":662,"line":541,"context":898},{"file":662,"line":545,"context":898},{"file":662,"line":549,"context":898},{"file":662,"line":557,"context":898},{"file":662,"line":569,"context":898},{"file":662,"line":577,"context":898},{"file":662,"line":581,"context":898},{"file":671,"line":807,"context":898},{"file":671,"line":785,"context":898},{"file":671,"line":710,"context":898},{"file":671,"line":13,"context":898},{"file":671,"line":963,"context":898},229,{"file":671,"line":965,"context":898},242,{"file":671,"line":967,"context":898},318,{"file":671,"line":969,"context":898},358,{"file":671,"line":945,"context":898},{"file":671,"line":972,"context":898},398,{"file":671,"line":974,"context":898},402,{"file":671,"line":976,"context":898},598,{"file":783,"line":14,"context":898},{"file":783,"line":199,"context":898},{"file":783,"line":491,"context":898},{"file":981,"line":982,"context":898},"includes\\wpsp-teacherForm.php",9,{"file":981,"line":824,"context":898},{"file":981,"line":214,"context":898},{"file":981,"line":884,"context":898},{"file":981,"line":987,"context":898},234,{"file":981,"line":989,"context":898},295,{"file":991,"line":569,"context":898},"includes\\wpsp-teacherProfile.php",{"file":678,"line":412,"context":898},{"file":994,"line":995,"context":898},"pages\\wpsp-editprofile.php",164,{"file":994,"line":997,"context":898},286,{"file":713,"line":439,"context":898},{"file":717,"line":1000,"context":898},220,{"file":1002,"line":408,"context":898},"pages\\wpsp-timetable.php",{"file":1002,"line":593,"context":898},{"file":300,"line":1005,"context":898},661,{"file":738,"line":1007,"context":898},277,{"file":738,"line":1009,"context":898},290,{"file":738,"line":1011,"context":898},314,{"file":738,"line":1013,"context":898},333,{"file":738,"line":1015,"context":898},341,{"file":738,"line":1017,"context":898},355,{"file":738,"line":1019,"context":898},362,{"file":738,"line":941,"context":898},{"file":738,"line":1022,"context":898},391,{"file":738,"line":1024,"context":898},409,{"file":738,"line":1026,"context":898},427,{"file":738,"line":1028,"context":898},437,{"file":738,"line":1030,"context":898},443,{"file":738,"line":1032,"context":898},452,{"file":738,"line":1034,"context":898},459,{"file":738,"line":1036,"context":898},464,{"file":738,"line":1038,"context":898},471,{"file":738,"line":1040,"context":898},475,{"file":738,"line":1042,"context":898},480,{"file":738,"line":834,"context":898},{"file":738,"line":1045,"context":898},611,{"file":738,"line":1047,"context":898},623,{"file":738,"line":1049,"context":898},641,{"file":738,"line":1051,"context":898},648,{"file":738,"line":1053,"context":898},699,{"file":738,"line":1055,"context":898},749,{"file":738,"line":1057,"context":898},755,{"file":738,"line":1059,"context":898},773,{"file":738,"line":1061,"context":898},779,{"file":738,"line":1063,"context":898},788,{"file":738,"line":1065,"context":898},914,{"file":738,"line":1067,"context":898},927,{"file":738,"line":1069,"context":898},954,{"file":738,"line":1071,"context":898},961,{"file":738,"line":1073,"context":898},968,{"file":738,"line":1075,"context":898},1030,{"file":738,"line":1077,"context":898},1075,{"file":738,"line":1079,"context":898},1081,{"file":738,"line":1081,"context":898},1087,{"file":738,"line":1083,"context":898},1093,{"file":738,"line":1085,"context":898},1102,{"file":738,"line":1087,"context":898},1369,[1089],{"name":1090,"version":38,"knownCves":1091},"DataTables",[],[1093,1162,1177,1186,1212,1221,1233,1246,1264,1288,1301,1332,1340,1361,1374,1400,1408,1424,1452,1460,1474,1496,1520,1534,1543,1551,1566],{"entryPoint":1094,"graph":1095,"unsanitizedCount":48,"severity":41},"\u003Cwpsp-school-login> (wpsp-school-login.php:0)",{"nodes":1096,"edges":1152},[1097,1101,1106,1109,1111,1115,1120,1124,1129,1133,1136,1140,1143,1146,1150],{"id":1098,"type":1099,"label":1100,"file":327,"line":765},"n0","source","$_SERVER['REQUEST_URI']",{"id":1102,"type":1103,"label":1104,"file":327,"line":765,"wp_function":1105},"n1","sink","wp_redirect() [Open Redirect]","wp_redirect",{"id":1107,"type":1099,"label":1108,"file":327,"line":679},"n2","$_SERVER['HTTP_HOST']",{"id":1110,"type":1103,"label":1104,"file":327,"line":679,"wp_function":1105},"n3",{"id":1112,"type":1099,"label":1113,"file":327,"line":1114},"n4","$_SERVER",349,{"id":1116,"type":1103,"label":1117,"file":327,"line":1118,"wp_function":1119},"n5","update_option() [Settings Manipulation]",351,"update_option",{"id":1121,"type":1099,"label":1122,"file":327,"line":1123},"n6","$_POST (x5)",467,{"id":1125,"type":1103,"label":1126,"file":327,"line":1127,"wp_function":1128},"n7","echo() [XSS]",472,"echo",{"id":1130,"type":1099,"label":1131,"file":327,"line":1132},"n8","$_REQUEST (x2)",451,{"id":1134,"type":1103,"label":1126,"file":327,"line":1135,"wp_function":1128},"n9",481,{"id":1137,"type":1099,"label":1138,"file":327,"line":1139},"n10","$_POST",668,{"id":1141,"type":1103,"label":1104,"file":327,"line":1142,"wp_function":1105},"n11",736,{"id":1144,"type":1099,"label":1138,"file":327,"line":1145},"n12",717,{"id":1147,"type":1148,"label":1149,"file":327,"line":1145},"n13","transform","→ wpsp_login_header()",{"id":1151,"type":1103,"label":1126,"file":327,"line":624,"wp_function":1128},"n14",[1153,1155,1156,1157,1158,1159,1160,1161],{"from":1098,"to":1102,"sanitized":1154},true,{"from":1107,"to":1110,"sanitized":1154},{"from":1112,"to":1116,"sanitized":1154},{"from":1121,"to":1125,"sanitized":1154},{"from":1130,"to":1134,"sanitized":1154},{"from":1137,"to":1141,"sanitized":1154},{"from":1144,"to":1147,"sanitized":339},{"from":1147,"to":1151,"sanitized":339},{"entryPoint":1163,"graph":1164,"unsanitizedCount":29,"severity":1176},"\u003Cwpsp-parentList> (includes\\wpsp-parentList.php:0)",{"nodes":1165,"edges":1173},[1166,1169,1170,1172],{"id":1098,"type":1099,"label":1167,"file":657,"line":1168},"$_POST (x3)",54,{"id":1102,"type":1103,"label":1126,"file":657,"line":1168,"wp_function":1128},{"id":1107,"type":1099,"label":1171,"file":657,"line":487},"$_POST['ClassID']",{"id":1110,"type":1103,"label":1126,"file":657,"line":487,"wp_function":1128},[1174,1175],{"from":1098,"to":1102,"sanitized":1154},{"from":1107,"to":1110,"sanitized":1154},"low",{"entryPoint":1178,"graph":1179,"unsanitizedCount":29,"severity":1176},"\u003Cwpsp-studentList> (includes\\wpsp-studentList.php:0)",{"nodes":1180,"edges":1184},[1181,1183],{"id":1098,"type":1099,"label":1182,"file":662,"line":859},"$_POST (x2)",{"id":1102,"type":1103,"label":1126,"file":662,"line":282,"wp_function":1128},[1185],{"from":1098,"to":1102,"sanitized":1154},{"entryPoint":1187,"graph":1188,"unsanitizedCount":29,"severity":1176},"\u003Cwpsp-studentProfile> (includes\\wpsp-studentProfile.php:0)",{"nodes":1189,"edges":1207},[1190,1192,1195,1197,1199,1200,1202,1203],{"id":1098,"type":1099,"label":1191,"file":671,"line":754},"$_GET",{"id":1102,"type":1103,"label":1193,"file":671,"line":763,"wp_function":1194},"get_row() [SQLi]","get_row",{"id":1107,"type":1099,"label":1196,"file":671,"line":754},"$_GET (x18)",{"id":1110,"type":1103,"label":1126,"file":671,"line":1198,"wp_function":1128},63,{"id":1112,"type":1099,"label":1191,"file":671,"line":754},{"id":1116,"type":1103,"label":1201,"file":671,"line":672,"wp_function":647},"unserialize() [Object Injection]",{"id":1121,"type":1099,"label":1191,"file":671,"line":754},{"id":1125,"type":1103,"label":1204,"file":671,"line":1205,"wp_function":1206},"get_results() [SQLi]",673,"get_results",[1208,1209,1210,1211],{"from":1098,"to":1102,"sanitized":1154},{"from":1107,"to":1110,"sanitized":1154},{"from":1112,"to":1116,"sanitized":1154},{"from":1121,"to":1125,"sanitized":1154},{"entryPoint":1213,"graph":1214,"unsanitizedCount":29,"severity":1176},"\u003Cwpsp-teacherList> (includes\\wpsp-teacherList.php:0)",{"nodes":1215,"edges":1219},[1216,1218],{"id":1098,"type":1099,"label":1167,"file":1217,"line":904},"includes\\wpsp-teacherList.php",{"id":1102,"type":1103,"label":1126,"file":1217,"line":408,"wp_function":1128},[1220],{"from":1098,"to":1102,"sanitized":1154},{"entryPoint":1222,"graph":1223,"unsanitizedCount":29,"severity":1176},"\u003Cwpsp-teacherProfile> (includes\\wpsp-teacherProfile.php:0)",{"nodes":1224,"edges":1230},[1225,1226,1227,1229],{"id":1098,"type":1099,"label":1191,"file":991,"line":122},{"id":1102,"type":1103,"label":1193,"file":991,"line":803,"wp_function":1194},{"id":1107,"type":1099,"label":1228,"file":991,"line":122},"$_GET (x32)",{"id":1110,"type":1103,"label":1126,"file":991,"line":694,"wp_function":1128},[1231,1232],{"from":1098,"to":1102,"sanitized":1154},{"from":1107,"to":1110,"sanitized":1154},{"entryPoint":1234,"graph":1235,"unsanitizedCount":29,"severity":1176},"\u003Cwpsp-leavecalendar> (pages\\wpsp-leavecalendar.php:0)",{"nodes":1236,"edges":1243},[1237,1238,1239,1242],{"id":1098,"type":1099,"label":1182,"file":817,"line":331},{"id":1102,"type":1103,"label":1193,"file":817,"line":773,"wp_function":1194},{"id":1107,"type":1099,"label":1240,"file":817,"line":1241},"$_GET (x2)",227,{"id":1110,"type":1103,"label":1204,"file":817,"line":735,"wp_function":1206},[1244,1245],{"from":1098,"to":1102,"sanitized":1154},{"from":1107,"to":1110,"sanitized":1154},{"entryPoint":1247,"graph":1248,"unsanitizedCount":29,"severity":1176},"\u003Cwpsp-settings> (pages\\wpsp-settings.php:0)",{"nodes":1249,"edges":1260},[1250,1251,1252,1253,1254,1257],{"id":1098,"type":1099,"label":1191,"file":861,"line":795},{"id":1102,"type":1103,"label":1204,"file":861,"line":935,"wp_function":1206},{"id":1107,"type":1099,"label":1240,"file":861,"line":795},{"id":1110,"type":1103,"label":1126,"file":861,"line":1198,"wp_function":1128},{"id":1112,"type":1099,"label":1255,"file":861,"line":1256},"$_POST['hname']",244,{"id":1116,"type":1103,"label":1258,"file":861,"line":1256,"wp_function":1259},"get_var() [SQLi]","get_var",[1261,1262,1263],{"from":1098,"to":1102,"sanitized":1154},{"from":1107,"to":1110,"sanitized":1154},{"from":1112,"to":1116,"sanitized":1154},{"entryPoint":1265,"graph":1266,"unsanitizedCount":238,"severity":1176},"\u003Cwpsp-timetable> (pages\\wpsp-timetable.php:0)",{"nodes":1267,"edges":1281},[1268,1270,1272,1273,1274,1275,1277,1278,1279,1280],{"id":1098,"type":1099,"label":1269,"file":1002,"line":805},"$_POST (x4)",{"id":1102,"type":1103,"label":1126,"file":1002,"line":1271,"wp_function":1128},66,{"id":1107,"type":1099,"label":1240,"file":1002,"line":400},{"id":1110,"type":1103,"label":1126,"file":1002,"line":408,"wp_function":1128},{"id":1112,"type":1099,"label":1138,"file":1002,"line":887},{"id":1116,"type":1148,"label":1276,"file":1002,"line":887},"→ wpsp_ViewTimetable()",{"id":1121,"type":1103,"label":1204,"file":678,"line":268,"wp_function":1206},{"id":1125,"type":1099,"label":1240,"file":1002,"line":404},{"id":1130,"type":1148,"label":1276,"file":1002,"line":404},{"id":1134,"type":1103,"label":1204,"file":678,"line":268,"wp_function":1206},[1282,1283,1284,1285,1286,1287],{"from":1098,"to":1102,"sanitized":1154},{"from":1107,"to":1110,"sanitized":339},{"from":1112,"to":1116,"sanitized":339},{"from":1116,"to":1121,"sanitized":1154},{"from":1125,"to":1130,"sanitized":339},{"from":1130,"to":1134,"sanitized":1154},{"entryPoint":1289,"graph":1290,"unsanitizedCount":48,"severity":80},"\u003Cwpsp-classForm> (includes\\wpsp-classForm.php:0)",{"nodes":1291,"edges":1298},[1292,1293,1294,1297],{"id":1098,"type":1099,"label":1191,"file":757,"line":982},{"id":1102,"type":1103,"label":1204,"file":757,"line":295,"wp_function":1206},{"id":1107,"type":1099,"label":1295,"file":757,"line":1296},"$_GET (x4)",27,{"id":1110,"type":1103,"label":1126,"file":757,"line":328,"wp_function":1128},[1299,1300],{"from":1098,"to":1102,"sanitized":339},{"from":1107,"to":1110,"sanitized":1154},{"entryPoint":1302,"graph":1303,"unsanitizedCount":754,"severity":80},"\u003Cwpsp-createTimetable> (includes\\wpsp-createTimetable.php:0)",{"nodes":1304,"edges":1323},[1305,1306,1307,1308,1309,1310,1311,1312,1313,1314,1315,1316,1317,1319,1320,1321],{"id":1098,"type":1099,"label":1138,"file":648,"line":982},{"id":1102,"type":1103,"label":1193,"file":648,"line":763,"wp_function":1194},{"id":1107,"type":1099,"label":1269,"file":648,"line":982},{"id":1110,"type":1103,"label":1126,"file":648,"line":880,"wp_function":1128},{"id":1112,"type":1099,"label":1167,"file":648,"line":982},{"id":1116,"type":1103,"label":1193,"file":648,"line":199,"wp_function":1194},{"id":1121,"type":1099,"label":1138,"file":648,"line":982},{"id":1125,"type":1103,"label":1201,"file":648,"line":354,"wp_function":647},{"id":1130,"type":1099,"label":1138,"file":648,"line":1198},{"id":1134,"type":1103,"label":1204,"file":648,"line":467,"wp_function":1206},{"id":1137,"type":1099,"label":1138,"file":648,"line":1198},{"id":1141,"type":1103,"label":1204,"file":648,"line":499,"wp_function":1206},{"id":1144,"type":1099,"label":1318,"file":648,"line":149},"$_POST['wpsp_class_name']",{"id":1147,"type":1103,"label":1126,"file":648,"line":149,"wp_function":1128},{"id":1151,"type":1099,"label":1138,"file":648,"line":1198},{"id":1322,"type":1103,"label":1126,"file":648,"line":865,"wp_function":1128},"n15",[1324,1325,1326,1327,1328,1329,1330,1331],{"from":1098,"to":1102,"sanitized":1154},{"from":1107,"to":1110,"sanitized":1154},{"from":1112,"to":1116,"sanitized":339},{"from":1121,"to":1125,"sanitized":339},{"from":1130,"to":1134,"sanitized":339},{"from":1137,"to":1141,"sanitized":1154},{"from":1144,"to":1147,"sanitized":1154},{"from":1151,"to":1322,"sanitized":339},{"entryPoint":1333,"graph":1334,"unsanitizedCount":48,"severity":80},"\u003Cwpsp-editsubjectForm> (includes\\wpsp-editsubjectForm.php:0)",{"nodes":1335,"edges":1338},[1336,1337],{"id":1098,"type":1099,"label":1191,"file":760,"line":197},{"id":1102,"type":1103,"label":1204,"file":760,"line":982,"wp_function":1206},[1339],{"from":1098,"to":1102,"sanitized":339},{"entryPoint":1341,"graph":1342,"unsanitizedCount":754,"severity":80},"\u003Cwpsp-editTimetable> (includes\\wpsp-editTimetable.php:0)",{"nodes":1343,"edges":1355},[1344,1346,1347,1348,1349,1350,1351,1352,1353,1354],{"id":1098,"type":1099,"label":1345,"file":651,"line":754},"$_GET (x3)",{"id":1102,"type":1103,"label":1193,"file":651,"line":800,"wp_function":1194},{"id":1107,"type":1099,"label":1191,"file":651,"line":754},{"id":1110,"type":1103,"label":1201,"file":651,"line":652,"wp_function":647},{"id":1112,"type":1099,"label":1240,"file":651,"line":754},{"id":1116,"type":1103,"label":1204,"file":651,"line":278,"wp_function":1206},{"id":1121,"type":1099,"label":1191,"file":651,"line":754},{"id":1125,"type":1103,"label":1204,"file":651,"line":1168,"wp_function":1206},{"id":1130,"type":1099,"label":1240,"file":651,"line":754},{"id":1134,"type":1103,"label":1126,"file":651,"line":1198,"wp_function":1128},[1356,1357,1358,1359,1360],{"from":1098,"to":1102,"sanitized":339},{"from":1107,"to":1110,"sanitized":339},{"from":1112,"to":1116,"sanitized":339},{"from":1121,"to":1125,"sanitized":1154},{"from":1130,"to":1134,"sanitized":1154},{"entryPoint":1362,"graph":1363,"unsanitizedCount":48,"severity":80},"\u003Cwpsp-examForm> (includes\\wpsp-examForm.php:0)",{"nodes":1364,"edges":1371},[1365,1366,1368,1370],{"id":1098,"type":1099,"label":1191,"file":896,"line":754},{"id":1102,"type":1103,"label":1204,"file":896,"line":1367,"wp_function":1206},8,{"id":1107,"type":1099,"label":1369,"file":896,"line":901},"$_GET (x5)",{"id":1110,"type":1103,"label":1126,"file":896,"line":805,"wp_function":1128},[1372,1373],{"from":1098,"to":1102,"sanitized":339},{"from":1107,"to":1110,"sanitized":1154},{"entryPoint":1375,"graph":1376,"unsanitizedCount":754,"severity":80},"\u003Cwpsp-newTimetable> (includes\\wpsp-newTimetable.php:0)",{"nodes":1377,"edges":1393},[1378,1380,1381,1382,1383,1385,1386,1388,1389,1390,1391,1392],{"id":1098,"type":1099,"label":1269,"file":654,"line":1379},7,{"id":1102,"type":1103,"label":1193,"file":654,"line":295,"wp_function":1194},{"id":1107,"type":1099,"label":1269,"file":654,"line":1379},{"id":1110,"type":1103,"label":1126,"file":654,"line":1296,"wp_function":1128},{"id":1112,"type":1099,"label":1138,"file":654,"line":1384},70,{"id":1116,"type":1103,"label":1201,"file":654,"line":655,"wp_function":647},{"id":1121,"type":1099,"label":1138,"file":654,"line":1387},56,{"id":1125,"type":1103,"label":1204,"file":654,"line":455,"wp_function":1206},{"id":1130,"type":1099,"label":1318,"file":654,"line":471},{"id":1134,"type":1103,"label":1126,"file":654,"line":471,"wp_function":1128},{"id":1137,"type":1099,"label":1138,"file":654,"line":1387},{"id":1141,"type":1103,"label":1126,"file":654,"line":963,"wp_function":1128},[1394,1395,1396,1397,1398,1399],{"from":1098,"to":1102,"sanitized":339},{"from":1107,"to":1110,"sanitized":1154},{"from":1112,"to":1116,"sanitized":339},{"from":1121,"to":1125,"sanitized":1154},{"from":1130,"to":1134,"sanitized":1154},{"from":1137,"to":1141,"sanitized":339},{"entryPoint":1401,"graph":1402,"unsanitizedCount":48,"severity":80},"\u003Cwpsp-subjectForm> (includes\\wpsp-subjectForm.php:0)",{"nodes":1403,"edges":1406},[1404,1405],{"id":1098,"type":1099,"label":1191,"file":783,"line":197},{"id":1102,"type":1103,"label":1204,"file":783,"line":1367,"wp_function":1206},[1407],{"from":1098,"to":1102,"sanitized":339},{"entryPoint":1409,"graph":1410,"unsanitizedCount":122,"severity":80},"\u003Cwpsp-viewMark> (includes\\wpsp-viewMark.php:0)",{"nodes":1411,"edges":1420},[1412,1414,1415,1416,1418,1419],{"id":1098,"type":1099,"label":1138,"file":675,"line":1413},4,{"id":1102,"type":1103,"label":1204,"file":675,"line":679,"wp_function":1206},{"id":1107,"type":1099,"label":1269,"file":675,"line":805},{"id":1110,"type":1103,"label":1258,"file":675,"line":1417,"wp_function":1259},67,{"id":1112,"type":1099,"label":1167,"file":675,"line":805},{"id":1116,"type":1103,"label":1126,"file":675,"line":514,"wp_function":1128},[1421,1422,1423],{"from":1098,"to":1102,"sanitized":339},{"from":1107,"to":1110,"sanitized":339},{"from":1112,"to":1116,"sanitized":1154},{"entryPoint":1425,"graph":1426,"unsanitizedCount":28,"severity":80},"\u003Cwpsp-attendance> (pages\\wpsp-attendance.php:0)",{"nodes":1427,"edges":1445},[1428,1430,1431,1432,1433,1435,1436,1437,1439,1440,1442,1443],{"id":1098,"type":1099,"label":1429,"file":682,"line":1417},"$_POST['entry_date']",{"id":1102,"type":1103,"label":1126,"file":682,"line":1417,"wp_function":1128},{"id":1107,"type":1099,"label":1369,"file":682,"line":820},{"id":1110,"type":1103,"label":1193,"file":682,"line":1241,"wp_function":1194},{"id":1112,"type":1099,"label":1295,"file":682,"line":1434},219,{"id":1116,"type":1103,"label":1201,"file":682,"line":684,"wp_function":647},{"id":1121,"type":1099,"label":1240,"file":682,"line":1434},{"id":1125,"type":1103,"label":1204,"file":682,"line":1438,"wp_function":1206},253,{"id":1130,"type":1099,"label":1240,"file":682,"line":1434},{"id":1134,"type":1103,"label":1258,"file":682,"line":1441,"wp_function":1259},261,{"id":1137,"type":1099,"label":1240,"file":682,"line":1434},{"id":1141,"type":1103,"label":1126,"file":682,"line":1444,"wp_function":1128},306,[1446,1447,1448,1449,1450,1451],{"from":1098,"to":1102,"sanitized":1154},{"from":1107,"to":1110,"sanitized":339},{"from":1112,"to":1116,"sanitized":339},{"from":1121,"to":1125,"sanitized":339},{"from":1130,"to":1134,"sanitized":339},{"from":1137,"to":1141,"sanitized":1154},{"entryPoint":1453,"graph":1454,"unsanitizedCount":238,"severity":80},"\u003Cwpsp-exams> (pages\\wpsp-exams.php:0)",{"nodes":1455,"edges":1458},[1456,1457],{"id":1098,"type":1099,"label":1240,"file":811,"line":296},{"id":1102,"type":1103,"label":1204,"file":811,"line":162,"wp_function":1206},[1459],{"from":1098,"to":1102,"sanitized":339},{"entryPoint":1461,"graph":1462,"unsanitizedCount":1413,"severity":80},"\u003Cwpsp-history> (pages\\wpsp-history.php:0)",{"nodes":1463,"edges":1470},[1464,1465,1466,1467,1468,1469],{"id":1098,"type":1099,"label":1191,"file":709,"line":317},{"id":1102,"type":1103,"label":1193,"file":709,"line":14,"wp_function":1194},{"id":1107,"type":1099,"label":1191,"file":709,"line":317},{"id":1110,"type":1103,"label":1126,"file":709,"line":880,"wp_function":1128},{"id":1112,"type":1099,"label":1240,"file":709,"line":317},{"id":1116,"type":1103,"label":1204,"file":709,"line":1387,"wp_function":1206},[1471,1472,1473],{"from":1098,"to":1102,"sanitized":339},{"from":1107,"to":1110,"sanitized":339},{"from":1112,"to":1116,"sanitized":339},{"entryPoint":1475,"graph":1476,"unsanitizedCount":754,"severity":80},"\u003Cwpsp-marks> (pages\\wpsp-marks.php:0)",{"nodes":1477,"edges":1490},[1478,1479,1480,1481,1482,1483,1484,1485,1487,1488],{"id":1098,"type":1099,"label":1167,"file":713,"line":901},{"id":1102,"type":1103,"label":1204,"file":713,"line":282,"wp_function":1206},{"id":1107,"type":1099,"label":1138,"file":713,"line":800},{"id":1110,"type":1103,"label":1258,"file":713,"line":396,"wp_function":1259},{"id":1112,"type":1099,"label":1138,"file":713,"line":679},{"id":1116,"type":1103,"label":1126,"file":713,"line":439,"wp_function":1128},{"id":1121,"type":1099,"label":1269,"file":713,"line":679},{"id":1125,"type":1103,"label":1126,"file":713,"line":1486,"wp_function":1128},161,{"id":1130,"type":1099,"label":1138,"file":713,"line":901},{"id":1134,"type":1103,"label":1193,"file":713,"line":1489,"wp_function":1194},216,[1491,1492,1493,1494,1495],{"from":1098,"to":1102,"sanitized":339},{"from":1107,"to":1110,"sanitized":339},{"from":1112,"to":1116,"sanitized":339},{"from":1121,"to":1125,"sanitized":1154},{"from":1130,"to":1134,"sanitized":339},{"entryPoint":1497,"graph":1498,"unsanitizedCount":122,"severity":80},"\u003Cwpsp-messages> (pages\\wpsp-messages.php:0)",{"nodes":1499,"edges":1514},[1500,1501,1502,1503,1505,1507,1508,1510,1511,1512],{"id":1098,"type":1099,"label":1345,"file":717,"line":815},{"id":1102,"type":1103,"label":1204,"file":717,"line":214,"wp_function":1206},{"id":1107,"type":1099,"label":1191,"file":717,"line":815},{"id":1110,"type":1103,"label":1258,"file":717,"line":1504,"wp_function":1259},43,{"id":1112,"type":1099,"label":1506,"file":717,"line":1000},"$_GET['mid']",{"id":1116,"type":1103,"label":1126,"file":717,"line":1000,"wp_function":1128},{"id":1121,"type":1099,"label":1506,"file":717,"line":1509},230,{"id":1125,"type":1103,"label":1126,"file":717,"line":1509,"wp_function":1128},{"id":1130,"type":1099,"label":1191,"file":717,"line":807},{"id":1134,"type":1103,"label":1126,"file":717,"line":1513,"wp_function":1128},373,[1515,1516,1517,1518,1519],{"from":1098,"to":1102,"sanitized":339},{"from":1107,"to":1110,"sanitized":339},{"from":1112,"to":1116,"sanitized":339},{"from":1121,"to":1125,"sanitized":1154},{"from":1130,"to":1134,"sanitized":1154},{"entryPoint":1521,"graph":1522,"unsanitizedCount":122,"severity":80},"\u003Cwpsp-payment> (pages\\wpsp-payment.php:0)",{"nodes":1523,"edges":1530},[1524,1525,1526,1527,1528,1529],{"id":1098,"type":1099,"label":1295,"file":730,"line":295},{"id":1102,"type":1103,"label":1204,"file":730,"line":884,"wp_function":1206},{"id":1107,"type":1099,"label":1240,"file":730,"line":295},{"id":1110,"type":1103,"label":1126,"file":730,"line":408,"wp_function":1128},{"id":1112,"type":1099,"label":1191,"file":730,"line":295},{"id":1116,"type":1103,"label":1201,"file":730,"line":731,"wp_function":647},[1531,1532,1533],{"from":1098,"to":1102,"sanitized":339},{"from":1107,"to":1110,"sanitized":1154},{"from":1112,"to":1116,"sanitized":339},{"entryPoint":1535,"graph":1536,"unsanitizedCount":197,"severity":80},"\u003Cwpsp-subject> (pages\\wpsp-subject.php:0)",{"nodes":1537,"edges":1541},[1538,1540],{"id":1098,"type":1099,"label":1345,"file":870,"line":1539},176,{"id":1102,"type":1103,"label":1204,"file":870,"line":291,"wp_function":1206},[1542],{"from":1098,"to":1102,"sanitized":339},{"entryPoint":1544,"graph":1545,"unsanitizedCount":238,"severity":80},"\u003Cwpsp-teacher> (pages\\wpsp-teacher.php:0)",{"nodes":1546,"edges":1549},[1547,1548],{"id":1098,"type":1099,"label":1240,"file":877,"line":1504},{"id":1102,"type":1103,"label":1204,"file":877,"line":785,"wp_function":1206},[1550],{"from":1098,"to":1102,"sanitized":339},{"entryPoint":1552,"graph":1553,"unsanitizedCount":238,"severity":80},"wpsp_body_start (wpsp-layout.php:1115)",{"nodes":1554,"edges":1563},[1555,1557,1559,1561],{"id":1098,"type":1099,"label":1191,"file":738,"line":1556},1293,{"id":1102,"type":1103,"label":1193,"file":738,"line":1558,"wp_function":1194},1298,{"id":1107,"type":1099,"label":1191,"file":738,"line":1560},1117,{"id":1110,"type":1103,"label":1126,"file":738,"line":1562,"wp_function":1128},1301,[1564,1565],{"from":1098,"to":1102,"sanitized":339},{"from":1107,"to":1110,"sanitized":339},{"entryPoint":1567,"graph":1568,"unsanitizedCount":238,"severity":80},"\u003Cwpsp-layout> (wpsp-layout.php:0)",{"nodes":1569,"edges":1574},[1570,1571,1572,1573],{"id":1098,"type":1099,"label":1191,"file":738,"line":1556},{"id":1102,"type":1103,"label":1193,"file":738,"line":1558,"wp_function":1194},{"id":1107,"type":1099,"label":1191,"file":738,"line":1560},{"id":1110,"type":1103,"label":1126,"file":738,"line":1562,"wp_function":1128},[1575,1576],{"from":1098,"to":1102,"sanitized":339},{"from":1107,"to":1110,"sanitized":339},{"summary":1578,"deductions":1579},"The WPSchoolPress plugin exhibits a concerning security posture, primarily due to a significant number of unprotected AJAX handlers, representing a large attack surface. The static analysis reveals 78 AJAX handlers, all of which lack authentication checks, making them direct entry points for potential attackers. Furthermore, the plugin utilizes a dangerous function ('unserialize') 36 times and demonstrates a high number of unsanitized paths in its taint analysis, with 18 critical flows, indicating a substantial risk of vulnerabilities like Cross-Site Scripting and SQL Injection. The plugin's vulnerability history, with 13 known CVEs including SQL Injection, Authorization Bypass, CSRF, and XSS, further underscores these systemic weaknesses. While the plugin does show strengths in its use of prepared statements for SQL queries (84%) and proper output escaping (97%), these positive aspects are significantly overshadowed by the critical vulnerabilities present in its entry point security and data handling.",[1580,1582,1584,1586,1588,1590],{"reason":1581,"points":317},"Large attack surface without auth checks",{"reason":1583,"points":1367},"Dangerous function 'unserialize' used",{"reason":1585,"points":763},"High severity taint flows found",{"reason":1587,"points":1367},"Missing nonce checks on AJAX handlers",{"reason":1589,"points":334},"Known vulnerability history (13 CVEs)",{"reason":1591,"points":197},"Bundled outdated library (DataTables)","2026-03-16T18:37:29.509Z",{"wat":1594,"direct":1613},{"assetPaths":1595,"generatorPatterns":1603,"scriptPaths":1604,"versionParams":1605},[1596,1597,1598,1599,1600,1601,1602],"\u002Fwp-content\u002Fplugins\u002Fwpschoolpress\u002Fassets\u002Fcss\u002Fwpschoolpress-admin.css","\u002Fwp-content\u002Fplugins\u002Fwpschoolpress\u002Fassets\u002Fcss\u002Fwpschoolpress-public.css","\u002Fwp-content\u002Fplugins\u002Fwpschoolpress\u002Fassets\u002Fjs\u002Fwpschoolpress-admin.js","\u002Fwp-content\u002Fplugins\u002Fwpschoolpress\u002Fassets\u002Fjs\u002Fwpschoolpress-public.js","\u002Fwp-content\u002Fplugins\u002Fwpschoolpress\u002Fassets\u002Fjs\u002Fwpschoolpress-settings.js","\u002Fwp-content\u002Fplugins\u002Fwpschoolpress\u002Fassets\u002Fjs\u002Fwpschoolpress-custom.js","\u002Fwp-content\u002Fplugins\u002Fwpschoolpress\u002Fassets\u002Fcss\u002Fwpsp-responsive.css",[],[1598,1599,1600,1601],[1606,1607,1608,1609,1610,1611,1612],"wpschoolpress\u002Fassets\u002Fcss\u002Fwpschoolpress-admin.css?ver=","wpschoolpress\u002Fassets\u002Fcss\u002Fwpschoolpress-public.css?ver=","wpschoolpress\u002Fassets\u002Fjs\u002Fwpschoolpress-admin.js?ver=","wpschoolpress\u002Fassets\u002Fjs\u002Fwpschoolpress-public.js?ver=","wpschoolpress\u002Fassets\u002Fjs\u002Fwpschoolpress-settings.js?ver=","wpschoolpress\u002Fassets\u002Fjs\u002Fwpschoolpress-custom.js?ver=","wpschoolpress\u002Fassets\u002Fcss\u002Fwpsp-responsive.css?ver=",{"cssClasses":1614,"htmlComments":1636,"htmlAttributes":1657,"restEndpoints":1660,"jsGlobals":1674,"shortcodeOutput":1680},[1615,1616,1617,1618,1619,1620,1621,1622,1623,1624,1625,1626,1627,1628,1629,1630,1631,1632,1633,1634,1635],"wpsp-admin-wrapper","wpsp-public-wrapper","wpsp-settings-page","wpsp-dashboard-schedule","wpsp-student-profile","wpsp-teacher-profile","wpsp-add-student-form","wpsp-update-student-form","wpsp-add-teacher-form","wpsp-update-teacher-form","wpsp-add-parent-form","wpsp-add-class-form","wpsp-update-class-form","wpsp-exam-form","wpsp-subject-form","wpsp-attendance-entry","wpsp-timetable-form","wpsp-transport-form","wpsp-message-form","wpsp-photo-upload","wpsp-grade-manage",[1637,1638,1639,1640,1641,1642,1643,1644,1645,1646,1647,1648,1649,1650,1651,1652,1653,1654,1655,1656],"\u003C!-- WPSchoolPress Settings -->","\u003C!-- WPSchoolPress Admin Dashboard -->","\u003C!-- WPSchoolPress Public View -->","\u003C!-- WPSchoolPress Student Profile -->","\u003C!-- WPSchoolPress Teacher Profile -->","\u003C!-- WPSchoolPress Add Student Form -->","\u003C!-- WPSchoolPress Update Student Form -->","\u003C!-- WPSchoolPress Add Teacher Form -->","\u003C!-- WPSchoolPress Update Teacher Form -->","\u003C!-- WPSchoolPress Add Parent Form -->","\u003C!-- WPSchoolPress Add Class Form -->","\u003C!-- WPSchoolPress Update Class Form -->","\u003C!-- WPSchoolPress Exam Form -->","\u003C!-- WPSchoolPress Subject Form -->","\u003C!-- WPSchoolPress Attendance Entry -->","\u003C!-- WPSchoolPress Timetable Form -->","\u003C!-- WPSchoolPress Transport Form -->","\u003C!-- WPSchoolPress Message Form -->","\u003C!-- WPSchoolPress Photo Upload -->","\u003C!-- WPSchoolPress Grade Management -->",[1658,1659],"data-wpsp-action","data-wpsp-id",[1661,1662,1663,1664,1665,1666,1667,1668,1669,1670,1671,1672,1673],"\u002Fwp-json\u002Fwpschoolpress\u002Fv1\u002Fsettings","\u002Fwp-json\u002Fwpschoolpress\u002Fv1\u002Fstudents","\u002Fwp-json\u002Fwpschoolpress\u002Fv1\u002Fteachers","\u002Fwp-json\u002Fwpschoolpress\u002Fv1\u002Fparents","\u002Fwp-json\u002Fwpschoolpress\u002Fv1\u002Fclasses","\u002Fwp-json\u002Fwpschoolpress\u002Fv1\u002Fexams","\u002Fwp-json\u002Fwpschoolpress\u002Fv1\u002Fsubjects","\u002Fwp-json\u002Fwpschoolpress\u002Fv1\u002Fattendance","\u002Fwp-json\u002Fwpschoolpress\u002Fv1\u002Ftimetable","\u002Fwp-json\u002Fwpschoolpress\u002Fv1\u002Ftransport","\u002Fwp-json\u002Fwpschoolpress\u002Fv1\u002Fmessages","\u002Fwp-json\u002Fwpschoolpress\u002Fv1\u002Fphotos","\u002Fwp-json\u002Fwpschoolpress\u002Fv1\u002Fgrades",[1675,1676,1677,1678,1679],"WPSP_AJAX_URL","WPSP_PLUGIN_URL","wpsp_settings_data","wpsp_admin","wpsp_public",[1681,1682,1683,1684,1685,1686,1687,1688,1689,1690,1691,1692,1693],"[wpsp_dashboard]","[wpsp_student_profile]","[wpsp_teacher_profile]","[wpsp_parent_profile]","[wpsp_class_list]","[wpsp_exam_schedule]","[wpsp_subject_list]","[wpsp_attendance_report]","[wpsp_timetable_view]","[wpsp_transport_info]","[wpsp_messaging]","[wpsp_photo_gallery]","[wpsp_gradebook]"]