[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fJ1TJDMt3Tt0QG0o-QgNXbt02c1IwW0Fo9FEj5ySDx64":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":34,"analysis":133,"fingerprints":231},"yesnology","YesNology WordPress Plugin","1.0.0","Lorenzo Bonazzi","https:\u002F\u002Fprofiles.wordpress.org\u002Flbonazzi\u002F","\u003Cp>Through the plugin for YesNology it is possible to store the data entered by the user in a safe and reliable place 100% compliant with the GDPR. The plugin can be used for an unlimited number of collectors: collect newsletter subscriptions, customer satisfaction forms, customer surveys, … and much more!!!\u003C\u002Fp>\n\u003Cp>Through a short code you can collect all the information you deem appropriate. Through the YesNology backend you will be able to consult the data collected and you will be able to use them in a form compliant with the GDPR. You will also be able to share the collected data with your CRM using the APIs that YesNology makes available to you.\u003C\u002Fp>\n\u003Cp>To use the plugin you need to have a subscription to YesNology. You can find more information at https:\u002F\u002Fyesnology.com. You can contact us at info@yesnology.com\u003C\u002Fp>\n","YesNology Plugin for WordPress allows you to collect data from your website in a GDPR compliant way.",0,643,"2023-01-16T09:34:00.000Z","6.1.10","4.0.0","7.0.0",[18,19,20,21,4],"form","gdpr","newsletter","privacy","https:\u002F\u002Fyesnology.com\u002Fen\u002Fhow-does-it-work\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fyesnology.1.0.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"lbonazzi",1,30,84,"2026-04-05T09:47:21.494Z",[35,59,77,95,116],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":45,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":55,"download_link":56,"security_score":57,"vuln_count":46,"unpatched_count":11,"last_vuln_date":58,"fetched_at":26},"laposta-signup-basic","Laposta Signup Basic","3.2.5","stijnvanderree","https:\u002F\u002Fprofiles.wordpress.org\u002Fstijnvanderree\u002F","\u003Cp>Laposta is a Dutch email marketing tool. Load your Laposta lists and render fields in a HTML form with custom styling.\u003C\u002Fp>\n","Laposta is a Dutch email marketing tool. Load your Laposta lists and render fields in a HTML form with custom styling.",2000,38826,100,2,"2026-02-24T10:01:00.000Z","6.9.4","4.7","7.1",[18,19,52,53,54],"laposta","marketing","newsletters","https:\u002F\u002Fdocs.laposta.nl\u002Farticle\u002F546-installatie-van-laposta-signup-basic","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flaposta-signup-basic.3.2.5.zip",99,"2023-09-05 00:00:00",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":45,"num_ratings":46,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":75,"download_link":76,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"wider-gravity-forms-stop-entries","Wider Gravity Forms Stop Entries","1.0","wearewider","https:\u002F\u002Fprofiles.wordpress.org\u002Fwearewider\u002F","\u003Cp>Gravity Forms is a wonderful plugin and each form submission is stored on your web server and is accessible through the admin area – which can be great if you have problems with the email address you have setup to receive form submissions.\u003C\u002Fp>\n\u003Cp>However, there is no easy way in the admin area to selectively stop entries being stored on your web server, it has to be done in code and is a bit of hassle – this plugin makes it easy to stop this potentially sensitive data being stored.\u003C\u002Fp>\n\u003Cp>Improve the privacy of your visitors form submissions and make your website comply with the GDPR – this plugin allows you to select individual Gravity Forms you have setup and stop these entries being stored through easy to use admin options.\u003C\u002Fp>\n\u003Cp>You will find the options under \u003Ccode>Settings > Gravity Forms Stop Entries\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>NOTE: Requires Gravity Forms v1.8 or newer!\u003C\u002Fp>\n","Selectively stop Gravity Forms entries being stored on your web server to comply with privacy and the GDPR.",700,5283,"2017-08-01T08:44:00.000Z","4.8.28","4.5","",[19,74,21],"gravity-forms","https:\u002F\u002Fwww.wider.co.uk","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwider-gravity-forms-stop-entries.zip",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":45,"num_ratings":46,"last_updated":87,"tested_up_to":88,"requires_at_least":49,"requires_php":89,"tags":90,"homepage":93,"download_link":94,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"gdpr-for-gravity-forms","Gravity Forms: GDPR Framework Add-On","2.0.0","Data443 Risk Mitigation, Inc.","https:\u002F\u002Fprofiles.wordpress.org\u002Fdata443\u002F","\u003Cp>The easiest way to make your Gravity Forms GDPR compliant!\u003C\u002Fp>\n\u003Cp>This plugin is a service of \u003Ca href=\"https:\u002F\u002Fdata443.com\" rel=\"nofollow ugc\">Data443\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Data443 is a Data Security and Compliance company traded on the OTCMarkets as \u003Ca href=\"https:\u002F\u002Fwww.otcmarkets.com\u002Fstock\u002FATDS\u002Foverview\" rel=\"nofollow ugc\">ATDS\u003C\u002Fa>. We have been providing leading GDPR compliance products such as Global Privacy Manager (\u003Ca href=\"https:\u002F\u002Fwww.data443.com\u002Fglobal-privacy-manager\u002F\" rel=\"nofollow ugc\">Data443™ Global Privacy Manager\u003C\u002Fa>), Blockchain privacy, and enterprise cloud eDiscovery tools.\u003C\u002Fp>\n\u003Cp>This plugin adds new privacy features to Gravity Forms. Your visitors can download or delete their form submissions automatically or submit a request for the site admin to do so.\u003C\u002Fp>\n\u003Cp>Until WordPress releases their own GDPR compliance update, this plugin requires \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgdpr-framework\u002F\" rel=\"ugc\">The GDPR Framework\u003C\u002Fa> to function (it’s free!)\u003C\u002Fp>\n\u003Cp>Make sure to also read the guide! You don’t need to drown your customers in pointless acceptance checkboxes if you know what you’re doing!\u003C\u002Fp>\n\u003Ch3>Disclaimer\u003C\u002Fh3>\n\u003Cp>Using Gravity Forms: GDPR Add-On does NOT guarantee compliance to GDPR. This plugin gives you general information and tools, but is NOT meant to serve as complete compliance package. Compliance to GDPR is risk-based ongoing process that involves your whole business. Data443 is not eligible for any claim or action based on any information or functionality provided by this plugin.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>How to use this plugin (practical guide): \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F28246137\" rel=\"nofollow ugc\">Making your Gravity Forms GDPR-compliant\u003C\u002Fa>\u003Cbr \u002F>\nHow to use this plugin (the legal stuff explained): \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F2079293576\" rel=\"nofollow ugc\">Legal grounds for processing data\u003C\u002Fa>\u003Cbr \u002F>\nFull documentation: \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F2078998660\" rel=\"nofollow ugc\">The WordPress Site Owner’s Guide to GDPR\u003C\u002Fa>\u003Cbr \u002F>\nFor developers: \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F2082439194\" rel=\"nofollow ugc\">Developer Docs\u003C\u002Fa>\u003Cbr \u002F>\nKnowledge Base: \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F192708653\" rel=\"nofollow ugc\">Knowledge Base\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cp>☑ Allow both users and visitors without an account to view, export and delete their form submissions or request the site admin to do so;\u003Cbr \u002F>\n☑ Configure forms to be excluded from viewing, exporting or deleting.\u003Cbr \u002F>\n☑ Support for anonymization: allow admin to select which fields must be anonymized;\u003Cbr \u002F>\n☑ Track, manage and withdraw consent.\u003C\u002Fp>\n","The easiest way to make your Gravity Forms GDPR-compliant. Fully documented, extendable and developer-friendly.",400,18304,"2022-07-28T14:55:00.000Z","6.0.11","5.6",[91,19,74,21,92],"compliance","security","https:\u002F\u002Fwww.data443.com\u002Fgdpr-framework-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgdpr-for-gravity-forms.zip",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":45,"downloaded":103,"rating":104,"num_ratings":105,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":72,"tags":109,"homepage":114,"download_link":115,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"email-blaster-newsletter-signup-form","Email Blaster Newsletter Signup Form","1.0.7","emailblaster","https:\u002F\u002Fprofiles.wordpress.org\u002Femailblaster\u002F","\u003Cp>\u003Cstrong>Capture email subscribers\u003C\u002Fstrong> and \u003Cstrong>send beautiful email\u003C\u002Fstrong>. The email blaster widget allows you to \u003Cstrong>collect email subscribers, design and send stunning HTML emails\u003C\u002Fstrong> and email marketing. Manage your email subscribers and email marketing from one single place.\u003C\u002Fp>\n\u003Cp>Email subscribe form is fully \u003Cstrong>GDPR compliant\u003C\u002Fstrong>. All data is stored in the UK, optimising a \u003Cstrong>double opt-in email subscribe\u003C\u002Fstrong> form.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Email Blaster & Email Subscribe Reviews\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>“Email blaster a very user friendly system”\u003Cbr \u002F>\n  Sarah Foster @ University of Bedfordshire\u003C\u002Fp>\n\u003Cp>“We have found Email Blaster’s interface really easy to use, allowing us to create good looking emails to send out to a wide array of potential clients. Uploading new lists is simple and the scheduling, delivery and analytics of the emails we send is really useful.”\u003Cbr \u002F>\n  David Rolf @ Armchair Call Handling\u003C\u002Fp>\n\u003Cp>“We would highly recommend email blaster, customer service is excellent, queries answered within minutes.”\u003Cbr \u002F>\n  Barbara Staite @ Ability First Aid Training\u003C\u002Fp>\n\u003Cp>“The email blaster support team is second to none, they were friendly, helpful and very efficient. The software is very easy to use and made bulk emailing such a simple task. Highly recommended for anyone in need of a top-notch, no hassle bulk emailing service.”\u003Cbr \u002F>\n  Ben Gulliver @ AYC Ltd\u003C\u002Fp>\n\u003Cp>“We are very happy with email blaster and we have used them for many, many years and probably liaise with them every week… no issues.”\u003Cbr \u002F>\n  Joe Boll @ No Risk Recruitment\u003C\u002Fp>\n\u003Cp>“By far the best email subscribe and email marketing software.”\u003Cbr \u002F>\n  Ben Philp @ Philp & Co\u003C\u002Fp>\n\u003Cp>“We have used email blaster since 2012 and had trialled several other ESP tools prior to this. However, I can confirm that this is the by far the simplest and most effective and reliable service that we have used to date and the unparalleled customer service we receive from the EB team ensures that we will not be going anywhere else soon.”\u003Cbr \u002F>\n  Mark Stephens @ F10 Group\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Free To Use, Collect Email Subscribers\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>It is \u003Cstrong>completely free\u003C\u002Fstrong> to design and embed any email subscribe form. Simply open a free account with email blaster, design your form, enter the quick code…done!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>It only takes 5 minutes to create a stunning email subscribe form and start building leads.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>After setting up your subscribe form, you won’t have to ever look at it again. Subscribe will automatically collect new email subscribers adding them to your mailing list. Subscribe offers a fully automated easy to use solution.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Send Email Marketing\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>After collecting email subscribers, quickly design beautiful email using the intuitive \u003Cstrong>drag and drop HTML email newsletter designer\u003C\u002Fstrong>. Integrated into the software, including a free library of pro designed ready to use templates. You do not need to be a coder or HTML expert to quickly create stunning email marketing and build email subscribers.\u003C\u002Fp>\n\u003Cp>Email subscribe and email blaster also includes a huge selection of free to use email marketing templates, allowing you to create stunning email quickly and easily.\u003C\u002Fp>\n\u003Cp>Check out the full template library: \u003Ca href=\"https:\u002F\u002Fwww.emailblasteruk.com\u002Femail-marketing-resources\u002Ffree-email-marketing-templates\" rel=\"nofollow ugc\">Free email subscribe and email marketing templates\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>GDPR Compliant\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Email blaster and the Email Subscribe app is fully \u003Cstrong>GDPR compliant\u003C\u002Fstrong>. For EU citizens, GDPR requires that you store all personal information and customer records inside the EU and protection of GDPR zone.\u003C\u002Fp>\n\u003Cp>When using email blaster and the email subscribe app, all data is safely stored in the UK under full protection of GDPR.\u003C\u002Fp>\n\u003Cp>A full \u003Cstrong>record of consent\u003C\u002Fstrong> is kept with every email subscribe, providing complete GDPR compliance and assurance.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Fast UK Based Support\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>We pride ourselves on providing friendly prompt support for every user (\u003Cstrong>free of charge!\u003C\u002Fstrong>). We aim to pickup any support request within 15 minutes (during UK office hours). Don’t believe it? After creating an account, open a support ticket and put us to the test! We also offer live chat and office based telephone support.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Email Marketing Automation\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>After a user subscribes to your newsletter, use the integrated ‘automate’ app to sent a series of timed welcome emails or auto responders. Automate can link to your email subscribe form to provide a truly \u003Cstrong>automated email marketing\u003C\u002Fstrong> solution for your website. Once setup, new subscribers can be sent a series of introduction emails without any manual intervention or tweaking.\u003C\u002Fp>\n\u003Cp>Discover how to automate your email marketing with our dedicated information page: \u003Ca href=\"https:\u002F\u002Fwww.emailblasteruk.com\u002Femail-marketing-solutions\u002Fautomate\" rel=\"nofollow ugc\">Email Marketing Automation\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Automatic Email Subscriber Verification\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Integrated at no extra cost, email blaster’s powerful list checking engine will \u003Cstrong>automatically verify all subscribers\u003C\u002Fstrong> details. \u003Cstrong>Removing dead and invalid email addresses\u003C\u002Fstrong>. Giving you complete control of your email marketing and email subscribes.\u003C\u002Fp>\n\u003Cp>Check out more information on \u003Ca href=\"https:\u002F\u002Fwww.emailblasteruk.com\u002Femail-marketing-solutions\u002Flist-ai\" rel=\"nofollow ugc\">Email Subscriber Verification\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Email Subscribers Feature List\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Protect your list from bot attacks\u003C\u002Fstrong> – Double opt-in subscribe form to protect against bots.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Free newsletter templates\u003C\u002Fstrong> – Professionally designed \u003Ca href=\"https:\u002F\u002Fwww.emailblasteruk.com\u002Femail-marketing-resources\u002Ffree-email-marketing-templates_\" rel=\"nofollow ugc\">email newsletter templates\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Automatic list cleaning\u003C\u002Fstrong> – Automatically verify all email addresses, removing dead and invalid data.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Integrated analytics\u003C\u002Fstrong> – Track who read, clicked on and interacted with your email subscribe newsletter.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Drag and drop designer\u003C\u002Fstrong> – Easy to use drag and drop email designer, create beautiful subscribe forms and email newsletters.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Free stock images\u003C\u002Fstrong> – Choose from millions of royalty free stock images to embed on your email subscribe or email newsletter design.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Spam score\u003C\u002Fstrong> – Check your email newsletter spam rating before sending, helping to ensure your email lands directly into your subscribers inbox.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Send scheduling\u003C\u002Fstrong> – Automatically schedule an email marketing send for any time or date of your choosing.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Social media integration\u003C\u002Fstrong> – Sync with your favourite social networks, posting a copy of your email newsletter to both your Facebook and Twitter feeds.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>GDPR compliant\u003C\u002Fstrong> – Fully GDPR compliant opt-in forms and email marketing solution.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Free UK based support\u003C\u002Fstrong> – Free UK based; telephone, online, live help and email support.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>For all business sizes\u003C\u002Fstrong> – Our UK based network sends over 5 million emails every week. Trusted by over 65,000 businesses.\u003C\u002Fli>\n\u003C\u002Ful>\n","Email subscribe forms for your website. Send HTML email marketing (newsletters). GDPR compliant, UK based email marketing and email automation.",17361,80,4,"2019-04-08T08:58:00.000Z","5.1.22","2.3",[110,111,19,112,113],"email-marketing","email-newsletter-form","opt-in","subscription","http:\u002F\u002Fwww.emailblasteruk.com\u002Fwordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Femail-blaster-newsletter-signup-form.zip",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":124,"downloaded":125,"rating":11,"num_ratings":11,"last_updated":126,"tested_up_to":127,"requires_at_least":128,"requires_php":129,"tags":130,"homepage":131,"download_link":132,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"gf-privacy-addon","Gravity Forms Privacy AddOn","0.1.0","andytela","https:\u002F\u002Fprofiles.wordpress.org\u002Fandymoonshine\u002F","\u003Cp>When you use the “Export Personal Data” under tools in WP 4.9.6+, Gravity Forms data will be included in the export.\u003Cbr \u002F>\nIf you “Erase Personal Data” this will remove the entries from the relevant entries table in Gravity Forms.\u003C\u002Fp>\n","Add Gravity Forms data to the \"Export Personal Data\" and \"Erase Personal Data\" tools.",70,2591,"2018-05-24T16:58:00.000Z","4.9.29","4.9.6","7.0",[19,74,21],"http:\u002F\u002Fwww.tela.co.uk\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgf-privacy-addon.zip",{"attackSurface":134,"codeSignals":168,"taintFlows":196,"riskAssessment":222,"analyzedAt":230},{"hooks":135,"ajaxHandlers":164,"restRoutes":165,"shortcodes":166,"cronEvents":167,"entryPointCount":11,"unprotectedCount":11},[136,142,145,147,150,153,156,158,161],{"type":137,"name":138,"callback":139,"file":140,"line":141},"action","plugins_loaded","anonymous","includes\\class-yesnology.php",162,{"type":137,"name":143,"callback":139,"file":140,"line":144},"admin_enqueue_scripts",177,{"type":137,"name":143,"callback":139,"file":140,"line":146},178,{"type":137,"name":148,"callback":139,"file":140,"line":149},"admin_menu",179,{"type":137,"name":151,"callback":139,"file":140,"line":152},"admin_init",180,{"type":137,"name":154,"callback":139,"file":140,"line":155},"wp_enqueue_scripts",197,{"type":137,"name":154,"callback":139,"file":140,"line":157},198,{"type":137,"name":159,"callback":139,"file":140,"line":160},"wp_head",199,{"type":137,"name":162,"callback":139,"file":140,"line":163},"rest_api_init",201,[],[],[],[],{"dangerousFunctions":169,"sqlUsage":170,"outputEscaping":172,"fileOperations":11,"externalRequests":189,"nonceChecks":190,"capabilityChecks":191,"bundledLibraries":192},[],{"prepared":11,"raw":11,"locations":171},[],{"escaped":173,"rawEcho":174,"locations":175},154,5,[176,180,182,184,186],{"file":177,"line":178,"context":179},"admin\\submenu_page.php",60,"raw output",{"file":177,"line":181,"context":179},61,{"file":177,"line":183,"context":179},123,{"file":177,"line":185,"context":179},125,{"file":187,"line":188,"context":179},"public\\class-yesnology-public.php",159,10,9,3,[193],{"name":194,"version":25,"knownCves":195},"Select2",[],[197,214],{"entryPoint":198,"graph":199,"unsanitizedCount":30,"severity":213},"getLanguage (public\\class-yesnology-public.php:196)",{"nodes":200,"edges":210},[201,205],{"id":202,"type":203,"label":204,"file":187,"line":157},"n0","source","$_SERVER['HTTP_ACCEPT_LANGUAGE']",{"id":206,"type":207,"label":208,"file":187,"line":157,"wp_function":209},"n1","sink","wp_remote_get() [SSRF]","wp_remote_get",[211],{"from":202,"to":206,"sanitized":212},false,"medium",{"entryPoint":215,"graph":216,"unsanitizedCount":30,"severity":213},"\u003Cclass-yesnology-public> (public\\class-yesnology-public.php:0)",{"nodes":217,"edges":220},[218,219],{"id":202,"type":203,"label":204,"file":187,"line":157},{"id":206,"type":207,"label":208,"file":187,"line":157,"wp_function":209},[221],{"from":202,"to":206,"sanitized":212},{"summary":223,"deductions":224},"The 'yesnology' v1.0.0 plugin exhibits a generally strong security posture based on the static analysis provided. The absence of AJAX handlers, REST API routes, shortcodes, and cron events with or without authentication significantly limits its attack surface. Furthermore, the complete reliance on prepared statements for SQL queries and a high rate of output escaping (97%) are excellent security practices. The presence of nonce and capability checks, though limited in number, indicates an awareness of security principles.\n\nDespite these strengths, there are a couple of areas for concern. The taint analysis revealed two flows with unsanitized paths. While these did not escalate to critical or high severity, unsanitized paths can be a precursor to vulnerabilities if they interact with sensitive functionalities or user-supplied data. Additionally, the plugin makes 10 external HTTP requests. Without further context, it's impossible to determine if these requests are handled securely, but they represent a potential vector for issues like SSRF or credential leakage if not properly validated and sanitized.\n\nThe vulnerability history for 'yesnology' is completely clean, with zero recorded CVEs. This is a very positive indicator, suggesting that the plugin has been developed with security in mind or has not yet been a target for widespread exploitation. However, a clean history does not guarantee future security, and the findings from the static analysis, particularly the unsanitized paths, should still be addressed to maintain this strong security record.",[225,228],{"reason":226,"points":227},"Taint flows with unsanitized paths",8,{"reason":229,"points":174},"External HTTP requests without context","2026-03-17T06:19:41.906Z",{"wat":232,"direct":241},{"assetPaths":233,"generatorPatterns":236,"scriptPaths":237,"versionParams":238},[234,235],"\u002Fwp-content\u002Fplugins\u002Fyesnology\u002Fcss\u002Fyesnology-admin.css","\u002Fwp-content\u002Fplugins\u002Fyesnology\u002Fjs\u002Fyesnology-admin.js",[],[235],[239,240],"yesnology-admin.css?ver=","yesnology-admin.js?ver=",{"cssClasses":242,"htmlComments":243,"htmlAttributes":244,"restEndpoints":246,"jsGlobals":247,"shortcodeOutput":249},[],[],[245],"data-yesnology",[],[248],"yesnologyobject",[]]