[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fqxI0Z1zbDV0mwsD2Z3mCjFcEgjNi0exCac_SRVUXxTk":3,"$feSoP7w8WLmiE7LmJQNWp8hksRkLGd2RqyyDLaZJxYx4":420,"$fKqvuEd1WStORnBEfPUSBRFld2Tm2qkp_VCS0nTwN1CA":424},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":30,"crawl_stats":26,"alternatives":35,"analysis":129,"fingerprints":403},"yaurau-ip-blocker","Yaurau-Ip-Blocker","1.2.1","yaurau","https:\u002F\u002Fprofiles.wordpress.org\u002Fyaurau\u002F","\u003Cp>The plugin blocks IP-addresses on the entered IP-address, and temporarily blocks IP-addresses when exceeding the limit enter login and password and displays them in the table.\u003C\u002Fp>\n\u003Ch4>Development\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fyaurau\u002Fyaurau-ip-blocker\"https:\u002F\u002Fgithub.com\u002Fyaurau\u002Fyaurau-ip-blocker\"\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fyaurau\u002Fyaurau-ip-blocker\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Version 1.2.1 (18-09-2018)\u003C\u002Fh4>\n\u003Cp>*Error correction\u003C\u002Fp>\n\u003Ch4>Version 1.2 (06-06-2018)\u003C\u002Fh4>\n\u003Cp>*Error correction\u003C\u002Fp>\n\u003Ch4>Version 1.1 (18-05-2018)\u003C\u002Fh4>\n\u003Cp>*Error correction\u003C\u002Fp>\n\u003Ch4>Version 1.00 (24-02-2018)\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>NEW: Initial Release\u003C\u002Fli>\n\u003C\u002Ful>\n","The plugin blocks IP-addresses on the entered IP-address, and temporarily blocks IP-addresses when exceeding the limit enter login and password and di &hellip;",0,5217,"2018-09-18T13:50:00.000Z","4.9.29","4.3","",[18,19,20,21,22],"ban","banned","denied","deny","permission","https:\u002F\u002Fgithub.com\u002Fyaurau\u002Fyaurau-ip-blocker","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fyaurau-ip-blocker.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},1,30,84,"2026-05-19T21:02:21.761Z",[36,56,72,91,110],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":15,"requires_php":16,"tags":50,"homepage":51,"download_link":52,"security_score":53,"vuln_count":54,"unpatched_count":11,"last_vuln_date":55,"fetched_at":27},"wp-ban","WP-Ban","1.69.2","Lester Chan","https:\u002F\u002Fprofiles.wordpress.org\u002Fgamerz\u002F","\u003Cp>It will display a custom ban message when the banned IP, IP range, host name or referrer url that tries to visit you blog. You can also exclude certain IPs from being banned. There will be statistics recorded on how many times they attempt to visit your blog. It allows wildcard matching too.\u003C\u002Fp>\n\u003Ch3>Development\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Flesterchan\u002Fwp-ban\" title=\"https:\u002F\u002Fgithub.com\u002Flesterchan\u002Fwp-ban\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Flesterchan\u002Fwp-ban\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Translations\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fdev.wp-plugins.org\u002Fbrowser\u002Fwp-ban\u002Fi18n\u002F\" title=\"http:\u002F\u002Fdev.wp-plugins.org\u002Fbrowser\u002Fwp-ban\u002Fi18n\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fdev.wp-plugins.org\u002Fbrowser\u002Fwp-ban\u002Fi18n\u002F\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Plugin icon by \u003Ca href=\"http:\u002F\u002Ffontawesome.io\" rel=\"nofollow ugc\">Dave Gandy\u003C\u002Fa> from \u003Ca href=\"http:\u002F\u002Fwww.flaticon.com\" rel=\"nofollow ugc\">Flaticon\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Donations\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>I spent most of my free time creating, updating, maintaining and supporting these plugins, if you really love my plugins and could spare me a couple of bucks, I will really appreciate it. If not feel free to use it without any obligations.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Upgrading\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Deactivate \u003Ccode>WP-Ban\u003C\u002Fcode> Plugin\u003C\u002Fli>\n\u003Cli>Open \u003Ccode>wp-content\u002Fplugins\u003C\u002Fcode> Folder\u003C\u002Fli>\n\u003Cli>Put\u002FOverwrite: \u003Ccode>Folder: wp-ban\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Activate \u003Ccode>WP-Ban\u003C\u002Fcode> Plugin\u003C\u002Fli>\n\u003C\u002Fol>\n","Ban users by IP, IP Range, host name, user agent and referrer url from visiting your WordPress's blog.",9000,325979,74,27,"2025-03-09T05:29:00.000Z","6.5.8",[18,19,20,21,22],"https:\u002F\u002Flesterchan.net\u002Fportfolio\u002Fprogramming\u002Fphp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-ban.1.69.2.zip",91,2,"2022-12-06 00:00:00",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":11,"num_ratings":11,"last_updated":66,"tested_up_to":67,"requires_at_least":15,"requires_php":16,"tags":68,"homepage":70,"download_link":71,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"wp-restricted","Wp Restricted","0.2","Navdeep","https:\u002F\u002Fprofiles.wordpress.org\u002Fneerajsharma2855\u002F","\u003Cp>This plugin is restricted all ip except one ip . if you want open wp admin with particular IP.\u003C\u002Fp>\n","wp admin ban for all ip except one ip .",40,1303,"2019-01-05T14:09:00.000Z","5.0.25",[69,18,19,20,22],"all-ip-restricted","https:\u002F\u002Fneeraj2855.wordpress.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-restricted.zip",{"slug":73,"name":74,"version":75,"author":76,"author_profile":77,"description":78,"short_description":79,"active_installs":80,"downloaded":81,"rating":82,"num_ratings":54,"last_updated":83,"tested_up_to":84,"requires_at_least":85,"requires_php":16,"tags":86,"homepage":89,"download_link":90,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"mw-ip-denied","MW IP Denied","0.3.2","Takashi Kitajima","https:\u002F\u002Fprofiles.wordpress.org\u002Finc2734\u002F","\u003Cp>MW IP Denied allows you to set access restrictions by IP address for each article. When access is restricted and there is template-access-denied.php, MW IP Denied load it.\u003C\u002Fp>\n\u003Cp>You can also use short code for controlling the access on a part of the article.\u003C\u002Fp>\n\u003Cp>Only the IP address that you specify can access.\u003Cbr \u002F>\n[mw-ip-allow allow=”IPAddress,…”]text[\u002Fmw-ip-allow]\u003C\u002Fp>\n\u003Cp>Only the IP address that you specify can not access.\u003Cbr \u002F>\n[mw-ip-deny deny=”IPAddress,…”]text[\u002Fmw-ip-deny]\u003C\u002Fp>\n","MW IP Denied allows you to set access restrictions by IP address for each article.",300,3607,100,"2013-12-06T07:18:00.000Z","3.5.2","3.3",[87,20,21,88],"access","ip","http:\u002F\u002F2inc.org","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmw-ip-denied.0.3.2.zip",{"slug":92,"name":93,"version":94,"author":95,"author_profile":96,"description":97,"short_description":98,"active_installs":99,"downloaded":100,"rating":11,"num_ratings":11,"last_updated":101,"tested_up_to":16,"requires_at_least":16,"requires_php":16,"tags":102,"homepage":108,"download_link":109,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"buddypress-restrict-email-domains","BuddyPress Restrict Email Domains","0.1.0","rich! @ etiviti","https:\u002F\u002Fprofiles.wordpress.org\u002Fnuprn1\u002F","\u003Cp>** IMPORTANT **\u003C\u002Fp>\n\u003Cp>This plugin will not be updated for future versions of BuddyPress (1.3) – if you would like to take over this plugin, please contact me.\u003Cbr \u002F>\nhttp:\u002F\u002Ftwitter.com\u002F#!\u002Fetiviti\u002Fstatuses\u002F29550143485247489\u003C\u002Fp>\n\u003Cp>This plugin enables restriction of email domains during user registration for a single (non-multisite) WordPress installation of BuddyPress\u003C\u002Fp>\n\u003Cp>This plugin will NOT work for a multisite\u002Fnetwork WordPress install – intended for single WordPress ONLY.\u003C\u002Fp>\n\u003Ch4>Related Links:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fblog.etiviti.com\u002F2010\u002F09\u002Fbuddypress-restrict-email-domains-plugin\u002F\" rel=\"nofollow ugc\">Plugin About Page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fetivite.com\" title=\"Plugin Demo Site\" rel=\"nofollow ugc\">Author’s BuddyPress Demo Site\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Extra Configuration\u003C\u002Fh3>\n","This plugin enables restriction of email domains during user registration for a single (non-multisite) WordPress installation of BuddyPress",10,3511,"2011-01-24T16:51:00.000Z",[103,104,105,106,107],"banned-email","buddypress","email","registration","restrict-email","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fbuddypress-restrict-email-domains\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-restrict-email-domains.0.1.0.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":99,"downloaded":118,"rating":11,"num_ratings":11,"last_updated":119,"tested_up_to":120,"requires_at_least":121,"requires_php":16,"tags":122,"homepage":127,"download_link":128,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"notifier-and-ip-blocker","Notifier and IP Blocker","1.0","Mike Luskavets","https:\u002F\u002Fprofiles.wordpress.org\u002Fmlwebdevelopment\u002F","\u003Cp>Notifier and IP Blocker is a simple plugin that can secure your web-site from spam bots and notify users. The many users, who write a comment want to know, whether the administrator had got it or not. Send a message where it is written that the comment had been received and the answer would be sent as soon as possible also if it is spam user can go to link and blocked IP.\u003C\u002Fp>\n\u003Ch4>Features list\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Notify a user about when he sent comment.\u003C\u002Fli>\n\u003Cli>Automatically block IP, if the users is informed that it is spam.\u003C\u002Fli>\n\u003Cli>Set span amount message.\u003C\u002Fli>\n\u003Cli>Manually block and unblock access by IP.\u003C\u002Fli>\n\u003Cli>Manually configure user letter template by editor.\u003C\u002Fli>\n\u003Cli>User can unlock your IP.\u003C\u002Fli>\n\u003Cli>Manually block IP user can’t unlock.\u003C\u002Fli>\n\u003Cli>Manually customized Block Page content by editor.\u003C\u002Fli>\n\u003C\u002Ful>\n","Notify a user about when he sent comment or form via Contact Form 7 and automatically blocked spammer IP by notifier users.",1560,"2015-12-08T22:04:00.000Z","4.4.34","3.0",[123,19,124,125,126],"alerts","blocked-ip","comment","customize","http:\u002F\u002Fml.lviv.ua\u002Fprojects\u002Fplugins\u002Fnotifier-and-ip-blocker\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnotifier-and-ip-blocker.zip",{"attackSurface":130,"codeSignals":176,"taintFlows":211,"riskAssessment":389,"analyzedAt":402},{"hooks":131,"ajaxHandlers":163,"restRoutes":173,"shortcodes":174,"cronEvents":175,"entryPointCount":54,"unprotectedCount":54},[132,138,142,148,150,155,159],{"type":133,"name":134,"callback":135,"file":136,"line":137},"action","admin_menu","createMenu","includes\\Yaurau_IP_Blocker_Admin.php",53,{"type":133,"name":139,"callback":140,"file":136,"line":141},"admin_init","my_register_settings",54,{"type":133,"name":143,"callback":144,"priority":145,"file":146,"line":147},"admin_print_footer_scripts","includeAjax",99,"public\\table_blocked_ IP.php",9,{"type":133,"name":143,"callback":144,"priority":145,"file":149,"line":147},"public\\table_repository.php",{"type":133,"name":151,"callback":152,"file":153,"line":154},"wp_login_failed","handleIP","yaurau_ip_blocker.php",18,{"type":133,"name":156,"callback":157,"file":153,"line":158},"init","redirectingBlockedIP",19,{"type":133,"name":160,"callback":161,"priority":145,"file":153,"line":162},"admin_enqueue_scripts","getCSS",20,[164,169],{"action":165,"nopriv":166,"callback":167,"hasNonce":166,"hasCapCheck":166,"file":153,"line":168},"delete_ip_bloked",false,"deleteIP",21,{"action":170,"nopriv":166,"callback":171,"hasNonce":166,"hasCapCheck":166,"file":153,"line":172},"delete_ip_repository","deleteIPDbRepositoryByPost",22,[],[],[],{"dangerousFunctions":177,"sqlUsage":178,"outputEscaping":181,"fileOperations":147,"externalRequests":11,"nonceChecks":11,"capabilityChecks":31,"bundledLibraries":210},[],{"prepared":179,"raw":11,"locations":180},45,[],{"escaped":182,"rawEcho":183,"locations":184},7,15,[185,188,190,192,194,195,197,198,200,202,203,204,205,206,208],{"file":186,"line":158,"context":187},"public\\add_IPv4.php","raw output",{"file":186,"line":189,"context":187},24,{"file":191,"line":99,"context":187},"public\\admin_widget.php",{"file":191,"line":193,"context":187},13,{"file":191,"line":32,"context":187},{"file":146,"line":196,"context":187},23,{"file":146,"line":189,"context":187},{"file":146,"line":199,"context":187},25,{"file":146,"line":201,"context":187},26,{"file":149,"line":196,"context":187},{"file":149,"line":189,"context":187},{"file":149,"line":199,"context":187},{"file":149,"line":201,"context":187},{"file":207,"line":199,"context":187},"public\\Yaurau_IP_Blocker_View.php",{"file":207,"line":209,"context":187},47,[],[212,232,242,254,264,275,285,295,313,323,333,343,353,378],{"entryPoint":213,"graph":214,"unsanitizedCount":11,"severity":231},"setIPDBRepository (includes\\Yaurau_IP_Blocker_DB.php:60)",{"nodes":215,"edges":228},[216,222],{"id":217,"type":218,"label":219,"file":220,"line":221},"n0","source","$_SERVER","includes\\Yaurau_IP_Blocker_DB.php",63,{"id":223,"type":224,"label":225,"file":220,"line":226,"wp_function":227},"n1","sink","query() [SQLi]",66,"query",[229],{"from":217,"to":223,"sanitized":230},true,"low",{"entryPoint":233,"graph":234,"unsanitizedCount":11,"severity":231},"seachIPRepository (includes\\Yaurau_IP_Blocker_DB.php:98)",{"nodes":235,"edges":240},[236,238],{"id":217,"type":218,"label":219,"file":220,"line":237},101,{"id":223,"type":224,"label":225,"file":220,"line":239,"wp_function":227},103,[241],{"from":217,"to":223,"sanitized":230},{"entryPoint":243,"graph":244,"unsanitizedCount":11,"severity":231},"getTimeRepository (includes\\Yaurau_IP_Blocker_DB.php:111)",{"nodes":245,"edges":252},[246,248],{"id":217,"type":218,"label":219,"file":220,"line":247},114,{"id":223,"type":224,"label":249,"file":220,"line":250,"wp_function":251},"get_results() [SQLi]",116,"get_results",[253],{"from":217,"to":223,"sanitized":230},{"entryPoint":255,"graph":256,"unsanitizedCount":11,"severity":231},"deleteIPDBRepository (includes\\Yaurau_IP_Blocker_DB.php:146)",{"nodes":257,"edges":262},[258,260],{"id":217,"type":218,"label":219,"file":220,"line":259},149,{"id":223,"type":224,"label":225,"file":220,"line":261,"wp_function":227},151,[263],{"from":217,"to":223,"sanitized":230},{"entryPoint":265,"graph":266,"unsanitizedCount":11,"severity":231},"deleteIPDbRepositoryByPost (includes\\Yaurau_IP_Blocker_DB.php:158)",{"nodes":267,"edges":273},[268,271],{"id":217,"type":218,"label":269,"file":220,"line":270},"$_POST",161,{"id":223,"type":224,"label":225,"file":220,"line":272,"wp_function":227},163,[274],{"from":217,"to":223,"sanitized":230},{"entryPoint":276,"graph":277,"unsanitizedCount":11,"severity":231},"setIPDB (includes\\Yaurau_IP_Blocker_DB.php:207)",{"nodes":278,"edges":283},[279,281],{"id":217,"type":218,"label":219,"file":220,"line":280},210,{"id":223,"type":224,"label":225,"file":220,"line":282,"wp_function":227},213,[284],{"from":217,"to":223,"sanitized":230},{"entryPoint":286,"graph":287,"unsanitizedCount":11,"severity":231},"handleIPDB (includes\\Yaurau_IP_Blocker_DB.php:233)",{"nodes":288,"edges":293},[289,291],{"id":217,"type":218,"label":219,"file":220,"line":290},236,{"id":223,"type":224,"label":225,"file":220,"line":292,"wp_function":227},238,[294],{"from":217,"to":223,"sanitized":230},{"entryPoint":296,"graph":297,"unsanitizedCount":11,"severity":231},"counterViews (includes\\Yaurau_IP_Blocker_DB.php:257)",{"nodes":298,"edges":310},[299,301,305,307],{"id":217,"type":218,"label":219,"file":220,"line":300},260,{"id":223,"type":224,"label":302,"file":220,"line":303,"wp_function":304},"get_var() [SQLi]",262,"get_var",{"id":306,"type":218,"label":219,"file":220,"line":300},"n2",{"id":308,"type":224,"label":225,"file":220,"line":309,"wp_function":227},"n3",264,[311,312],{"from":217,"to":223,"sanitized":230},{"from":306,"to":308,"sanitized":230},{"entryPoint":314,"graph":315,"unsanitizedCount":11,"severity":231},"getTime (includes\\Yaurau_IP_Blocker_DB.php:296)",{"nodes":316,"edges":321},[317,319],{"id":217,"type":218,"label":219,"file":220,"line":318},299,{"id":223,"type":224,"label":249,"file":220,"line":320,"wp_function":251},301,[322],{"from":217,"to":223,"sanitized":230},{"entryPoint":324,"graph":325,"unsanitizedCount":11,"severity":231},"deleteIPDB (includes\\Yaurau_IP_Blocker_DB.php:308)",{"nodes":326,"edges":331},[327,329],{"id":217,"type":218,"label":219,"file":220,"line":328},311,{"id":223,"type":224,"label":225,"file":220,"line":330,"wp_function":227},313,[332],{"from":217,"to":223,"sanitized":230},{"entryPoint":334,"graph":335,"unsanitizedCount":11,"severity":231},"getViews (includes\\Yaurau_IP_Blocker_DB.php:344)",{"nodes":336,"edges":341},[337,339],{"id":217,"type":218,"label":219,"file":220,"line":338},347,{"id":223,"type":224,"label":249,"file":220,"line":340,"wp_function":251},349,[342],{"from":217,"to":223,"sanitized":230},{"entryPoint":344,"graph":345,"unsanitizedCount":11,"severity":231},"updateData (includes\\Yaurau_IP_Blocker_DB.php:356)",{"nodes":346,"edges":351},[347,349],{"id":217,"type":218,"label":219,"file":220,"line":348},359,{"id":223,"type":224,"label":225,"file":220,"line":350,"wp_function":227},363,[352],{"from":217,"to":223,"sanitized":230},{"entryPoint":354,"graph":355,"unsanitizedCount":11,"severity":231},"\u003CYaurau_IP_Blocker_DB> (includes\\Yaurau_IP_Blocker_DB.php:0)",{"nodes":356,"edges":373},[357,359,360,362,364,367,369,371],{"id":217,"type":218,"label":358,"file":220,"line":221},"$_SERVER (x13)",{"id":223,"type":224,"label":225,"file":220,"line":226,"wp_function":227},{"id":306,"type":218,"label":361,"file":220,"line":221},"$_SERVER (x8)",{"id":308,"type":224,"label":249,"file":220,"line":363,"wp_function":251},78,{"id":365,"type":218,"label":366,"file":220,"line":270},"n4","$_POST (x4)",{"id":368,"type":224,"label":225,"file":220,"line":272,"wp_function":227},"n5",{"id":370,"type":218,"label":219,"file":220,"line":300},"n6",{"id":372,"type":224,"label":302,"file":220,"line":303,"wp_function":304},"n7",[374,375,376,377],{"from":217,"to":223,"sanitized":230},{"from":306,"to":308,"sanitized":230},{"from":365,"to":368,"sanitized":230},{"from":370,"to":372,"sanitized":230},{"entryPoint":379,"graph":380,"unsanitizedCount":31,"severity":231},"\u003Cadmin_widget> (public\\admin_widget.php:0)",{"nodes":381,"edges":387},[382,384],{"id":217,"type":218,"label":383,"file":191,"line":193},"$_SERVER['REMOTE_ADDR']",{"id":223,"type":224,"label":385,"file":191,"line":193,"wp_function":386},"echo() [XSS]","echo",[388],{"from":217,"to":223,"sanitized":166},{"summary":390,"deductions":391},"The yaurau-ip-blocker plugin, version 1.2.1, exhibits a mixed security posture.  On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and has no recorded vulnerability history, suggesting a generally well-maintained codebase. However, significant security concerns arise from its attack surface. The presence of two AJAX handlers that lack authentication checks creates a direct entry point for potential malicious activity. This is further exacerbated by the finding of one unsanitized path in the taint analysis, which, although not classified as critical or high severity, points to a potential weakness where user input could be improperly handled, potentially leading to unintended consequences. The complete absence of nonce checks on these unprotected AJAX endpoints is a critical oversight. While the plugin doesn't appear to have known vulnerabilities, the identified code signals suggest areas of potential weakness that could be exploited if a vulnerability were to be introduced in the future.",[392,394,397,400],{"reason":393,"points":99},"AJAX handlers without authentication checks",{"reason":395,"points":396},"Unsanitized path in taint analysis",5,{"reason":398,"points":399},"No nonce checks on AJAX handlers",8,{"reason":401,"points":396},"Low percentage of properly escaped output","2026-03-17T06:09:52.767Z",{"wat":404,"direct":412},{"assetPaths":405,"generatorPatterns":407,"scriptPaths":408,"versionParams":410},[406],"\u002Fwp-content\u002Fplugins\u002Fyaurau-ip-blocker\u002Fpublic\u002Fcss\u002Fyib-admin.css",[],[409],"\u002Fwp-content\u002Fplugins\u002Fyaurau-ip-blocker\u002Fpublic\u002Fjs\u002Fyib-admin.js",[411],"yaurau-ip-blocker\u002Fpublic\u002Fcss\u002Fyib-admin.css?ver=",{"cssClasses":413,"htmlComments":415,"htmlAttributes":416,"restEndpoints":417,"jsGlobals":418,"shortcodeOutput":419},[414],"yibButton",[],[],[],[],[],{"error":230,"url":421,"statusCode":422,"statusMessage":423,"message":423},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fyaurau-ip-blocker\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":425,"versions":426},4,[427,434,441,448],{"version":428,"download_url":429,"svn_tag_url":430,"released_at":26,"has_diff":166,"diff_files_changed":431,"diff_lines":26,"trac_diff_url":432,"vulnerabilities":433,"is_current":166},"1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fyaurau-ip-blocker.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fyaurau-ip-blocker\u002Ftags\u002F1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fyaurau-ip-blocker%2Ftags%2F1.2.0&new_path=%2Fyaurau-ip-blocker%2Ftags%2F1.2",[],{"version":435,"download_url":436,"svn_tag_url":437,"released_at":26,"has_diff":166,"diff_files_changed":438,"diff_lines":26,"trac_diff_url":439,"vulnerabilities":440,"is_current":166},"1.2.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fyaurau-ip-blocker.1.2.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fyaurau-ip-blocker\u002Ftags\u002F1.2.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fyaurau-ip-blocker%2Ftags%2F1.1&new_path=%2Fyaurau-ip-blocker%2Ftags%2F1.2.0",[],{"version":442,"download_url":443,"svn_tag_url":444,"released_at":26,"has_diff":166,"diff_files_changed":445,"diff_lines":26,"trac_diff_url":446,"vulnerabilities":447,"is_current":166},"1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fyaurau-ip-blocker.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fyaurau-ip-blocker\u002Ftags\u002F1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fyaurau-ip-blocker%2Ftags%2F1.00&new_path=%2Fyaurau-ip-blocker%2Ftags%2F1.1",[],{"version":449,"download_url":450,"svn_tag_url":451,"released_at":26,"has_diff":166,"diff_files_changed":452,"diff_lines":26,"trac_diff_url":26,"vulnerabilities":453,"is_current":166},"1.00","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fyaurau-ip-blocker.1.00.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fyaurau-ip-blocker\u002Ftags\u002F1.00\u002F",[],[]]