[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fAxD0flt7wkYTaMO--0xQx652l1aWVfij0_0e6iMcfbA":3,"$fcpZ-TBEug9Eh4fXUCkguPnbXtUNAmul3PVWmqY4OxxY":276,"$fqtWHnLvizV3vQ0vLuk00NiPX9a3S3V1ngDfEDBvSiiM":281},{"slug":4,"name":4,"version":5,"author":6,"author_profile":7,"description":8,"short_description":9,"active_installs":10,"downloaded":11,"rating":12,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":12,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":38,"analysis":131,"fingerprints":218},"zipaddr-jp","1.42","ta_terunuma","https:\u002F\u002Fprofiles.wordpress.org\u002Fta_terunuma\u002F","\u003Cp>Firstly zipaddr has two sites of zipaddr.com and zipaddr2.com in a service provider.\u003Cbr \u002F>\nIn zipaddr.com, free site, the other are pay sites.\u003Cbr \u002F>\nThis plugin makes WordPress and zipaddr work together.\u003Cbr \u002F>\nSpecifically, generate the following javascript statement on one line.\u003Cbr \u002F>\n\u003Cscript src=”https:\u002F\u002Fzipaddr.com\u002Fjs\u002Fzipaddrx.js”   charset=”UTF-8″>\u003C\u002Fscript> or\u003Cbr \u002F>\n\u003Cscript src=”https:\u002F\u002Fzipaddr2.com\u002Fjs\u002Fzipaddr3.js”  charset=”UTF-8″>\u003C\u002Fscript> or\u003Cbr \u002F>\n\u003Cscript src=”https:\u002F\u002Fzipaddr2.com\u002Fjs\u002Fzipaddr30.js” charset=”UTF-8″>\u003C\u002Fscript>\u003C\u002Fp>\n\u003Ch4>In Japanese:\u003C\u002Fh4>\n\u003Cp>主な動作手順は次のようになります。\u003Cbr \u002F>\n1.起動設定後に郵便番号の入力を待ちます。\u003Cbr \u002F>\n2.Wordpress側は郵便番号検索リクエストをzipaddr側に送ります。\u003Cbr \u002F>\n3.zipaddrでは郵便番号からDBを検索して都道府県、市区町村、地域、データをjsonp形式で返します。\u003Cbr \u002F>\n4.Wordpress側にはガイダンスで検索の途中データが表示されます。\u003Cbr \u002F>\n5.最終的にWordpress側画面の都道府県、市区町村、地域、の各欄にデータが埋め込まれます。\u003Cbr \u002F>\nzipaddr-jpの詳細説明は、https:\u002F\u002Fzipaddr2.com\u002Fwordpress\u002Fを参照して下さい。\u003C\u002Fp>\n\u003Ch4>In English:\u003C\u002Fh4>\n\u003Cp>The main operating procedure is as follows.\u003Cbr \u002F>\n1.Wait for the zip code to be entered after the startup setting.\u003Cbr \u002F>\n2.Wordpress sends a zip code search request to zipaddr.\u003Cbr \u002F>\n3.zipaddr search DB from a zip code and return jsonp form for prefecture, a city, an address.\u003Cbr \u002F>\n4.On the WordPress side, the data in the middle of the search is displayed by the guidance.\u003Cbr \u002F>\n5.Wordpress bury each data in an address column on the WordPress side.\u003C\u002Fp>\n","zipaddr-jp is a collaborative tool that automatically inputs addresses from postal codes.",50000,399597,100,6,"2026-01-12T01:22:00.000Z","6.9.4","3.7","",[19,20,21,22,23],"address","ajax","cross-domain","zip","zipaddr","https:\u002F\u002Fzipaddr2.com\u002Fwordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.42.zip",0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":6,"display_name":6,"profile_url":7,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},4,50020,93,30,89,"2026-05-20T05:17:13.892Z",[39,54,69,91,106],{"slug":40,"name":40,"version":41,"author":6,"author_profile":7,"description":42,"short_description":43,"active_installs":26,"downloaded":44,"rating":26,"num_ratings":26,"last_updated":45,"tested_up_to":46,"requires_at_least":47,"requires_php":17,"tags":48,"homepage":51,"download_link":52,"security_score":53,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"autoin-jp","1.4","\u003Cp>In this plug-in, WordPress and autoin.jp are linked in the application.\u003Cbr \u002F>\nWhen it starts,\u003Cbr \u002F>\n\u003Cscript src=”https:\u002F\u002Fautoin.jp\u002Fjs\u002Fautoin.js” charset=”UTF-8″>\u003C\u002Fscript>\u003Cbr \u002F>\nand\u003Cbr \u002F>\n\u003Cscript src=”https:\u002F\u002Fzipaddr.com\u002Fjs\u002Fzipaddrx.js” charset=”UTF-8″>\u003C\u002Fscript>\u003Cbr \u002F>\nIs called.\u003C\u002Fp>\n\u003Cp>[important]\u003Cbr \u002F>\nAny damage that occurs while using autoin-jp will be at your own risk.\u003C\u002Fp>\n\u003Ch4>In Japanese:\u003C\u002Fh4>\n\u003Cp>次のように動作します。\u003Cbr \u002F>\n1.フォーム起動時に「Autoin入力」ボタンを生成する。\u003Cbr \u002F>\n2.ボタンのクリックで個人情報ファイルの指示画面が出力される。\u003Cbr \u002F>\n（もう一度「Autoin入力」ボタンをクリックすると指示画面が消えます）\u003Cbr \u002F>\n3.ファイルを指示すると入力及びファイル情報がautoin.jp側に送られる。\u003Cbr \u002F>\n4.入力欄とデータが合成されてフォーム側に返送される。\u003Cbr \u002F>\n5.受信内容をフォームに描画して終了する。\u003C\u002Fp>\n\u003Ch4>In English:\u003C\u002Fh4>\n\u003Cp>It works as follows:\u003Cbr \u002F>\n1.Generate “Autoin input” button when form starts.\u003Cbr \u002F>\n2.Clicking the button outputs the personal information file instruction screen.\u003Cbr \u002F>\n3.When a file is specified, input and file information are sent to autoin.jp.\u003Cbr \u002F>\n4.The input field and data are combined and sent back to the form.\u003Cbr \u002F>\n5.Draw the received content on the form and exit.\u003C\u002Fp>\n","The ultimate automatic input tool, autoin-jp, works only in the Japanese version. The operating environment is as follows. Wordpress 5.",1374,"2021-09-01T01:55:00.000Z","5.8.13","5.3",[19,49,21,50,22],"autoin","efo","https:\u002F\u002Fautoin.jp\u002Fwordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fautoin-jp.1.4.zip",85,{"slug":55,"name":55,"version":56,"author":6,"author_profile":7,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":26,"num_ratings":26,"last_updated":61,"tested_up_to":62,"requires_at_least":16,"requires_php":17,"tags":63,"homepage":66,"download_link":67,"security_score":12,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":68},"yuban-jp","1.2","\u003Cp>You can easily auto-fill addresses by simply incorporating the yuban-jp plugin into html written in YubinBango specifications.\u003Cbr \u002F>\nThere are two modules available.\u003Cbr \u002F>\n1.zipaddrx.js series\u003Cbr \u002F>\n2.yubinbango.js\u003Cbr \u002F>\nDesigners can choose and use it according to their preference.\u003Cbr \u002F>\nFor detailed information about yuban-jp, please refer to https:\u002F\u002Fzipaddr2.com\u002Fyuban-jp\u002F.\u003Cbr \u002F>\nOnly the Japanese version is supported.\u003C\u002Fp>\n\u003Ch4>In Japanese:\u003C\u002Fh4>\n\u003Cp>郵便番号から住所自動入力を簡単に利用する為のWordpressプラグインです。\u003Cbr \u002F>\nYubinBango仕様で記述されたhtmlにプラグインyuban-jpを組み込むだけで動きます。\u003Cbr \u002F>\n実働モジュールは次の2系統あります。\u003Cbr \u002F>\n1.zipaddrx.js系\u003Cbr \u002F>\n2.yubinbango.js\u003Cbr \u002F>\n設計者の好みで選択して利用できます。\u003Cbr \u002F>\nyuban-jpの詳細説明は、https:\u002F\u002Fzipaddr2.com\u002Fyuban-jp\u002Fを参照して下さい。\u003Cbr \u002F>\n[日本語版のみ対応]\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin assists in integration with external tools and automatically inserts script statements into HTML.\u003Cbr \u002F>\nThe script statements to be inserted are as follows, and can be selected based on the selection in the administration screen.\u003Cbr \u002F>\n[Free version]\u003Cbr \u002F>\n\u003Cscript type=”text\u002Fjavascript” charset=”UTF-8″ src=”https:\u002F\u002Fyubinbango.github.io\u002Fyubinbango\u002Fyubinbango.js”>\u003Cbr \u002F>\n\u003Cscript type=”text\u002Fjavascript” charset=”UTF-8″ src=”https:\u002F\u002Fzipaddr.github.io\u002Fzipaddrx.js”>\u003Cbr \u002F>\n[Paid version]\u003Cbr \u002F>\n\u003Cscript type=”text\u002Fjavascript” charset=”UTF-8″ src=”https:\u002F\u002Fzipaddr.github.io\u002Fzipaddr3.js”>\u003Cbr \u002F>\n\u003Cscript type=”text\u002Fjavascript” charset=”UTF-8″ src=”https:\u002F\u002Fzipaddr.github.io\u002Fzipaddr30.js”>\u003C\u002Fp>\n","This is a tool that automatically enters addresses from postal codes.",20,292,"2025-06-30T12:12:00.000Z","6.8.5",[19,64,65,22],"yuban","yubinbango","https:\u002F\u002Fzipaddr2.com\u002Fyuban-jp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fyuban-jp.1.2.zip","2026-03-15T15:16:48.613Z",{"slug":70,"name":71,"version":72,"author":73,"author_profile":74,"description":75,"short_description":76,"active_installs":77,"downloaded":78,"rating":26,"num_ratings":26,"last_updated":79,"tested_up_to":80,"requires_at_least":81,"requires_php":82,"tags":83,"homepage":89,"download_link":90,"security_score":53,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"us-address-lookup-by-zip-code","US Address Lookup by Zip Code","1.0.2","PressTigers","https:\u002F\u002Fprofiles.wordpress.org\u002Fpresstigers\u002F","\u003Cp>US Address Lookup by Zip Code is an official plugin maintained by the PressTigers team. This plugin lets you look up US Addresses against the Zip Code and populates fields such as:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>City name\u003C\u002Fli>\n\u003Cli>State name\u003C\u002Fli>\n\u003Cli>Country name (which will always be the USA).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The plugin is compatible with Contact Form 7, Ninja Forms, Gravity Forms, and Formidable Forms.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Populates US addresses against a Zip Code\u003C\u002Fli>\n\u003Cli>List down the related addresses\u003C\u002Fli>\n\u003Cli>Compatible with Contact Form 7, Ninja Forms, Gravity Forms, and Formidable Forms.\u003C\u002Fli>\n\u003Cli>1 click easy configuration button\u003C\u002Fli>\n\u003Cli>Integration control from the admin screen \u003C\u002Fli>\n\u003Cli>Complete integration guidance with each Form plugin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please click here for \u003Ca href=\"https:\u002F\u002Fsources.presstigers.dev\u002Fusz\u002F\" rel=\"nofollow ugc\">US Address Lookup by Zip Code Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>The source of addresses data is \u003Ca href=\"https:\u002F\u002Fsimplemaps.com\u002Fdata\u002Fus-zips\" rel=\"nofollow ugc\">SimpleMaps\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin allows you to auto-fill the address and related fields by putting zip code.",10,2079,"2023-11-10T13:50:00.000Z","6.4.8","4.7","7.4",[84,85,86,87,88],"auto-populate-address","contact-form-7","forms","ninja-forms","us-zip-codes","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fus-address-lookup-by-zip-code\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fus-address-lookup-by-zip-code.1.0.2.zip",{"slug":92,"name":92,"version":93,"author":6,"author_profile":7,"description":94,"short_description":95,"active_installs":26,"downloaded":96,"rating":26,"num_ratings":26,"last_updated":97,"tested_up_to":98,"requires_at_least":99,"requires_php":17,"tags":100,"homepage":104,"download_link":105,"security_score":53,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"myform-jp","1.7","\u003Ch4>In Japanese:\u003C\u002Fh4>\n\u003Cp>当プラグインは問い合わせフォームをWordpress内で実現するもので、日本語環境のみで動作します。\u003Cbr \u002F>\n主な機能は次のような3つの構成になっています。\u003Cbr \u002F>\n1)管理画面によるシステム動作環境の定義。\u003Cbr \u002F>\n2)簡単なフォーム様式の設計。\u003Cbr \u002F>\n3)フォーム全体の処理モジュール群。\u003Cbr \u002F>\n問い合わせフォームは世の中に沢山ありますが、データを横表示と縦表示に切り替えられるのが特徴です。\u003Cbr \u002F>\n当プラグインは一貫システムなので設計から運用までに利用できます。\u003Cbr \u002F>\nなお、上位システムであるマイFORM（https:\u002F\u002Fpierre-soft.com\u002Fmyform\u002F）と連携して信頼性を向上させています。\u003C\u002Fp>\n\u003Ch4>In English:\u003C\u002Fh4>\n\u003Cp>Our plugin realizes an inquiry form in WordPress, and works only in Japanese environment.\u003Cbr \u002F>\nThe main function constitutes following three.\u003Cbr \u002F>\n1)The definition of the system movement environment with the management screen.\u003Cbr \u002F>\n2)The design of the simple form style.\u003Cbr \u002F>\n3)Handling of whole form module group.\u003Cbr \u002F>\nThere is the inquiry form in the world a lot, but it features it that data are changed to wide indication and vertical indication.\u003Cbr \u002F>\nAs our plug in is a consistency system, it is available before operation from a design.\u003Cbr \u002F>\nIn addition, I improve reliability in cooperation with MYFORM (https:\u002F\u002Fpierre-soft.com\u002Fmyform\u002F) which is a higher system.\u003C\u002Fp>\n","This software is inquiry form for the individual. It works only in Japanese.",2024,"2018-04-20T06:21:00.000Z","4.9.29","4.9",[20,21,101,102,103],"form","inquiry","myform","https:\u002F\u002Fpierre-soft.com\u002Fwordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmyform-jp.zip",{"slug":107,"name":108,"version":109,"author":110,"author_profile":111,"description":112,"short_description":113,"active_installs":114,"downloaded":115,"rating":116,"num_ratings":117,"last_updated":118,"tested_up_to":15,"requires_at_least":81,"requires_php":119,"tags":120,"homepage":126,"download_link":127,"security_score":128,"vuln_count":129,"unpatched_count":26,"last_vuln_date":130,"fetched_at":28},"astra-widgets","Astra Widgets","1.2.17","Brainstorm Force","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrainstormforce\u002F","\u003Ch4>The fastest way to add more widgets into your WordPress website.\u003C\u002Fh4>\n\u003Cp>How easy can things get when you can add widgets for particular information and fetch them anywhere on your website? This goes with the most wanted information like the business address, social profile links and list icons.\u003C\u002Fp>\n\u003Cp>The Astra Widget plugin lets you create widgets to add an address, a social profile widget and list icons that you can add into your header, sidebar, footer etc. on your website.\u003C\u002Fp>\n\u003Ch4>How does this work?\u003C\u002Fh4>\n\u003Cp>The Astra Widgets plugin can be installed like any other WordPress plugin. Once installed, you will find the following widgets listed under Appearance -> Widgets\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Astra : Address\u003C\u002Fli>\n\u003Cli>Astra : List Icons\u003C\u002Fli>\n\u003Cli>Astra : Social Profiles\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You simply need to select the place you wish to add the widget in and then add the information in the specific fields. Save this and you are done!\u003C\u002Fp>\n\u003Ch4>WHY PEOPLE LOVE THE ASTRA THEME?\u003C\u002Fh4>\n\u003Cp>Astra is currently powering over 1+ million websites. The performance and ease of use it offers has made it the go-to theme for beginners as well as experts.\u003C\u002Fp>\n\u003Ch4>Here are a few reasons why they love Astra –\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Faster Performance\u003C\u002Fstrong> – Astra follows the best coding standards and is built with speed and performance in mind. It is the best WordPress theme that lets you build faster lading and better performing websites.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Easy Customization\u003C\u002Fstrong> – With an aim to keep it simple and easy, Astra gives you lots of options to customize everything with just a few clicks. Everything can be managed through the customizer itself!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Compatibility with Page Builders\u003C\u002Fstrong> – Astra works seamlessly with all major page builders and therefore is opted as the best \u003Ca href=\"https:\u002F\u002Fwpastra.com\u002Ftheme-for-elementor\u002F?utm_source=wp-repo&utm_medium=astra_desc&utm_campaign=ast_widgets\" rel=\"nofollow ugc\">theme for Elementor\u003C\u002Fa>, Beaver Builder, Gutenberg, etc.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Pixel Perfect Design\u003C\u002Fstrong> – Astra offers pixel-perfect FREE ready-to-use website demos within a huge library of starter sites. These can simply be imported, tweaked and used to reduce your overall design time.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Deeper Integrations\u003C\u002Fstrong> – Astra lets you create and beautify eCommerce websites and those that offer online courses in minutes. This is possible due to its in-depth integrations with all WooCommerce plugins, LifterLMS, LearnDash, etc.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Ready-to-use complete website demos\u003C\u002Fstrong> – Astra offers ready-made starter templates built with Elementor, Beaver Builder, Brizy and Gutenberg. You can import them using the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fastra-sites\u002F\" rel=\"ugc\">Starter Templates\u003C\u002Fa> plugin, tweak and go live in minutes!\u003C\u002Fp>\n","Quickest solution to add widgets like Address, Social Profiles and List icons on a website built with Astra.",200000,4562813,78,17,"2026-03-25T05:19:00.000Z","5.2",[121,122,123,124,125],"add-widget","address-widget","list-icon-widget","social-media","social-profile-widget","https:\u002F\u002Fwpastra.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fastra-widgets.1.2.17.zip",96,3,"2025-12-28 00:00:00",{"attackSurface":132,"codeSignals":161,"taintFlows":178,"riskAssessment":206,"analyzedAt":217},{"hooks":133,"ajaxHandlers":157,"restRoutes":158,"shortcodes":159,"cronEvents":160,"entryPointCount":26,"unprotectedCount":26},[134,141,146,149,153],{"type":135,"name":136,"callback":137,"priority":138,"file":139,"line":140},"filter","usces_filter_apply_admin_addressform","zipaddr_jp_usces",99999,"zipaddr-jp.php",35,{"type":142,"name":143,"callback":144,"file":139,"line":145},"action","admin_menu","zipaddr_admin_menu",41,{"type":135,"name":147,"callback":137,"priority":138,"file":139,"line":148},"usces_filter_apply_addressform",47,{"type":135,"name":150,"callback":151,"priority":138,"file":139,"line":152},"usces_filter_cart_delivery_script","zipaddr_jp_welcart",48,{"type":135,"name":154,"callback":155,"priority":138,"file":139,"line":156},"the_content","zipaddr_jp_change",49,[],[],[],[],{"dangerousFunctions":162,"sqlUsage":172,"outputEscaping":174,"fileOperations":129,"externalRequests":26,"nonceChecks":176,"capabilityChecks":26,"bundledLibraries":177},[163,168],{"fn":164,"file":165,"line":166,"context":167},"unserialize","admin.php",80,"$param= unserialize( get_option(zipaddr_DEFINE) ); \u002F\u002F get定義情報",{"fn":164,"file":169,"line":170,"context":171},"zipaddr.php",5,"$param= @unserialize( get_option(zipaddr_DEFINE) ); \u002F\u002F get定義情報",{"prepared":26,"raw":26,"locations":173},[],{"escaped":13,"rawEcho":26,"locations":175},[],1,[],[179,198],{"entryPoint":180,"graph":181,"unsanitizedCount":176,"severity":197},"zipaddr_jp_change (zipaddr.php:3)",{"nodes":182,"edges":194},[183,188],{"id":184,"type":185,"label":186,"file":169,"line":187},"n0","source","$_SERVER",83,{"id":189,"type":190,"label":191,"file":169,"line":192,"wp_function":193},"n1","sink","file_get_contents() [SSRF\u002FLFI]",92,"file_get_contents",[195],{"from":184,"to":189,"sanitized":196},false,"medium",{"entryPoint":199,"graph":200,"unsanitizedCount":176,"severity":197},"\u003Czipaddr> (zipaddr.php:0)",{"nodes":201,"edges":204},[202,203],{"id":184,"type":185,"label":186,"file":169,"line":187},{"id":189,"type":190,"label":191,"file":169,"line":192,"wp_function":193},[205],{"from":184,"to":189,"sanitized":196},{"summary":207,"deductions":208},"The zipaddr-jp plugin version 1.42 exhibits a generally strong security posture based on the provided static analysis.  The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the plugin's attack surface.  Furthermore, the adherence to prepared statements for all SQL queries and proper output escaping demonstrates good development practices. The single nonce check, while present, is a positive indicator, although the complete lack of capability checks on any entry points is a notable weakness that could allow unauthorized actions if an entry point were discovered or created.\n\nThe static analysis did identify two dangerous 'unserialize' function calls, and importantly, these 'unserialize' calls were part of flows with unsanitized paths. While the taint analysis did not flag these as critical or high severity, the use of 'unserialize' on potentially untrusted data is inherently risky and can lead to remote code execution vulnerabilities if not handled with extreme care and strict input validation. The plugin's history of zero known vulnerabilities is a positive sign, suggesting a diligent approach to security in the past, but it does not negate the inherent risks identified in the code.\n\nIn conclusion, while the plugin benefits from a small attack surface and sound practices in SQL and output handling, the presence of unsanitized 'unserialize' calls represents a significant potential risk. The lack of capability checks on any entry points further exacerbates this, creating a scenario where an attacker could potentially exploit the 'unserialize' functionality if they could trigger it. The plugin has a good foundation but requires careful review and mitigation for the identified 'unserialize' flows.",[209,212,213,215],{"reason":210,"points":211},"Unsanitized path in unserialize flow",15,{"reason":210,"points":211},{"reason":214,"points":170},"Dangerous function: unserialize",{"reason":216,"points":77},"No capability checks on entry points","2026-03-16T17:17:48.413Z",{"wat":219,"direct":233},{"assetPaths":220,"generatorPatterns":223,"scriptPaths":224,"versionParams":230},[221,222],"\u002Fwp-content\u002Fplugins\u002Fzipaddr-jp\u002Fjs\u002Fzipaddr.js","\u002Fwp-content\u002Fplugins\u002Fzipaddr-jp\u002Fcss\u002Fzipaddr.css",[],[225,226,227,228,229],"https:\u002F\u002Fzipaddr.com\u002Fjs\u002Fzipaddr7.js?v=1.42","https:\u002F\u002Fzipaddr.github.io\u002Fzipaddr3.js?v=1.42","https:\u002F\u002Fzipaddr.github.io\u002Fzipaddr30.js?v=1.42","https:\u002F\u002Fzipaddr.github.io\u002Fzipaddrx.js?v=1.42","https:\u002F\u002Fzipaddr.github.io\u002Fzipaddra.js?v=1.42",[231,232],"zipaddr-jp\u002Fstyle.css?ver=","zipaddr.js?v=1.42",{"cssClasses":234,"htmlComments":239,"htmlAttributes":259,"restEndpoints":267,"jsGlobals":268,"shortcodeOutput":274},[235,236,237,238],"zipaddr-form","zipaddr-input","zipaddr-button","zipaddr-label",[240,241,242,243,244,245,246,247,248,249,250,251,252,253,254,255,256,257,258],"\u003C!-- ZIPADDRJP Start -->","\u003C!-- ZIPADDRJP End -->","\u003C!-- Contact Form 7 -->","\u003C!-- MW WP Form -->","\u003C!-- Trust Form -->","\u003C!-- Ninja Forms -->","\u003C!-- WP-Members -->","\u003C!-- WPForms -->","\u003C!-- Visual Forms Builder -->","\u003C!-- Woo Commerce -->","\u003C!-- Welcart -->","\u003C!-- Mailform Pro -->","\u003C!-- Mailform -->","\u003C!-- SnowMonkeyForm -->","\u003C!-- TieredWorks -->","\u003C!-- Forminator -->","\u003C!-- booking-package -->","\u003C!-- YubinBango -->","\u003C!-- Jet-form-builder -->",[260,261,262,263,264,265,266],"data-zipaddr-target","data-zipaddr-button","data-zipaddr-zip","data-zipaddr-pref","data-zipaddr-city","data-zipaddr-town","data-zipaddr-street",[],[269,270,271,272,273],"zipaddr_ownb","zipaddr_data","Zip","delivery_country","delivery_pref",[275],"[zipcode]",{"error":277,"url":278,"statusCode":279,"statusMessage":280,"message":280},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fzipaddr-jp\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":5,"total_versions":59,"versions":282},[283,288,295,302,309,316,323,330,337,344,351,358,365,372,379,386,393,400,407,414],{"version":5,"download_url":25,"svn_tag_url":284,"released_at":27,"has_diff":196,"diff_files_changed":285,"diff_lines":27,"trac_diff_url":286,"vulnerabilities":287,"is_current":277},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.42\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.41&new_path=%2Fzipaddr-jp%2Ftags%2F1.42",[],{"version":289,"download_url":290,"svn_tag_url":291,"released_at":27,"has_diff":196,"diff_files_changed":292,"diff_lines":27,"trac_diff_url":293,"vulnerabilities":294,"is_current":196},"1.41","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.41.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.41\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.40&new_path=%2Fzipaddr-jp%2Ftags%2F1.41",[],{"version":296,"download_url":297,"svn_tag_url":298,"released_at":27,"has_diff":196,"diff_files_changed":299,"diff_lines":27,"trac_diff_url":300,"vulnerabilities":301,"is_current":196},"1.40","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.40.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.40\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.39&new_path=%2Fzipaddr-jp%2Ftags%2F1.40",[],{"version":303,"download_url":304,"svn_tag_url":305,"released_at":27,"has_diff":196,"diff_files_changed":306,"diff_lines":27,"trac_diff_url":307,"vulnerabilities":308,"is_current":196},"1.39","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.39.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.39\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.38&new_path=%2Fzipaddr-jp%2Ftags%2F1.39",[],{"version":310,"download_url":311,"svn_tag_url":312,"released_at":27,"has_diff":196,"diff_files_changed":313,"diff_lines":27,"trac_diff_url":314,"vulnerabilities":315,"is_current":196},"1.38","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.38.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.38\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.37&new_path=%2Fzipaddr-jp%2Ftags%2F1.38",[],{"version":317,"download_url":318,"svn_tag_url":319,"released_at":27,"has_diff":196,"diff_files_changed":320,"diff_lines":27,"trac_diff_url":321,"vulnerabilities":322,"is_current":196},"1.37","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.37.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.37\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.36&new_path=%2Fzipaddr-jp%2Ftags%2F1.37",[],{"version":324,"download_url":325,"svn_tag_url":326,"released_at":27,"has_diff":196,"diff_files_changed":327,"diff_lines":27,"trac_diff_url":328,"vulnerabilities":329,"is_current":196},"1.36","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.36.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.36\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.35&new_path=%2Fzipaddr-jp%2Ftags%2F1.36",[],{"version":331,"download_url":332,"svn_tag_url":333,"released_at":27,"has_diff":196,"diff_files_changed":334,"diff_lines":27,"trac_diff_url":335,"vulnerabilities":336,"is_current":196},"1.35","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.35.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.35\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.34&new_path=%2Fzipaddr-jp%2Ftags%2F1.35",[],{"version":338,"download_url":339,"svn_tag_url":340,"released_at":27,"has_diff":196,"diff_files_changed":341,"diff_lines":27,"trac_diff_url":342,"vulnerabilities":343,"is_current":196},"1.34","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.34.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.34\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.33&new_path=%2Fzipaddr-jp%2Ftags%2F1.34",[],{"version":345,"download_url":346,"svn_tag_url":347,"released_at":27,"has_diff":196,"diff_files_changed":348,"diff_lines":27,"trac_diff_url":349,"vulnerabilities":350,"is_current":196},"1.33","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.33.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.33\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.32&new_path=%2Fzipaddr-jp%2Ftags%2F1.33",[],{"version":352,"download_url":353,"svn_tag_url":354,"released_at":27,"has_diff":196,"diff_files_changed":355,"diff_lines":27,"trac_diff_url":356,"vulnerabilities":357,"is_current":196},"1.32","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.32.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.32\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.31&new_path=%2Fzipaddr-jp%2Ftags%2F1.32",[],{"version":359,"download_url":360,"svn_tag_url":361,"released_at":27,"has_diff":196,"diff_files_changed":362,"diff_lines":27,"trac_diff_url":363,"vulnerabilities":364,"is_current":196},"1.31","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.31.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.31\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.30&new_path=%2Fzipaddr-jp%2Ftags%2F1.31",[],{"version":366,"download_url":367,"svn_tag_url":368,"released_at":27,"has_diff":196,"diff_files_changed":369,"diff_lines":27,"trac_diff_url":370,"vulnerabilities":371,"is_current":196},"1.30","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.30.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.30\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.29&new_path=%2Fzipaddr-jp%2Ftags%2F1.30",[],{"version":373,"download_url":374,"svn_tag_url":375,"released_at":27,"has_diff":196,"diff_files_changed":376,"diff_lines":27,"trac_diff_url":377,"vulnerabilities":378,"is_current":196},"1.29","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.29.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.29\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.28&new_path=%2Fzipaddr-jp%2Ftags%2F1.29",[],{"version":380,"download_url":381,"svn_tag_url":382,"released_at":27,"has_diff":196,"diff_files_changed":383,"diff_lines":27,"trac_diff_url":384,"vulnerabilities":385,"is_current":196},"1.28","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.28.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.28\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.27&new_path=%2Fzipaddr-jp%2Ftags%2F1.28",[],{"version":387,"download_url":388,"svn_tag_url":389,"released_at":27,"has_diff":196,"diff_files_changed":390,"diff_lines":27,"trac_diff_url":391,"vulnerabilities":392,"is_current":196},"1.27","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.27.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.27\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.26&new_path=%2Fzipaddr-jp%2Ftags%2F1.27",[],{"version":394,"download_url":395,"svn_tag_url":396,"released_at":27,"has_diff":196,"diff_files_changed":397,"diff_lines":27,"trac_diff_url":398,"vulnerabilities":399,"is_current":196},"1.26","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.26.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.26\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.25&new_path=%2Fzipaddr-jp%2Ftags%2F1.26",[],{"version":401,"download_url":402,"svn_tag_url":403,"released_at":27,"has_diff":196,"diff_files_changed":404,"diff_lines":27,"trac_diff_url":405,"vulnerabilities":406,"is_current":196},"1.25","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.25.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.25\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.24&new_path=%2Fzipaddr-jp%2Ftags%2F1.25",[],{"version":408,"download_url":409,"svn_tag_url":410,"released_at":27,"has_diff":196,"diff_files_changed":411,"diff_lines":27,"trac_diff_url":412,"vulnerabilities":413,"is_current":196},"1.24","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.24.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.24\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fzipaddr-jp%2Ftags%2F1.0.1&new_path=%2Fzipaddr-jp%2Ftags%2F1.24",[],{"version":415,"download_url":416,"svn_tag_url":417,"released_at":27,"has_diff":196,"diff_files_changed":418,"diff_lines":27,"trac_diff_url":27,"vulnerabilities":419,"is_current":196},"1.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzipaddr-jp.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fzipaddr-jp\u002Ftags\u002F1.0.1\u002F",[],[]]