Yarns Microsub Server Security & Risk Analysis

The "yarns-microsub-server" v1.1.0 plugin exhibits a concerning security posture primarily due to a significant number of unprotected AJAX handlers. While the plugin demonstrates good practices by not using dangerous functions, employing prepared statements for all SQL queries, and having no recorded vulnerabilities, the lack of authentication on its 12 AJAX entry points presents a substantial risk. The absence of capability checks on these handlers means any authenticated user, regardless of their role, could potentially trigger these functions, opening the door to various attacks if the functionality is sensitive.

The static analysis highlights three flows with unsanitized paths, though none reached critical or high severity in the taint analysis. This, combined with a notable percentage of improperly escaped output, suggests potential for cross-site scripting (XSS) or information disclosure vulnerabilities if these unsanitized paths or unescaped outputs are exploited. The presence of capability checks in only two instances further underscores the lack of robust access control across its attack surface. The plugin's history of zero known CVEs is positive, indicating a lack of previously discovered critical flaws. However, the current lack of authentication on its AJAX endpoints creates a significant risk that outweighs its strengths in other areas.