cleverplugins

@cleverplugins · wordpress.org profile ↗
Member since
2017-05-19
Location
Miami
Employer
Job title
Authored
4 (1 closed)
SVN commit access
5 (1 closed)
Readme contributor
3
Combined install base
27k+ across 7 plugins

Alerts (0)

No open alerts.

Show 1 resolved alert
Critical code_pattern Security Ninja – WordPress Security & Firewall Resolved · false_positive_defensive_string_check 2mo ago
Slugsecurity-ninja
Patternserialized_admin_role
Kindbuiltin
Version5.281
Hit count2
First hit
File
modules/events-logger/events-logger.php
Line
206
Snippet
'%s:13:"administrator"%',
Explanationplugin source contains `s:13:"administrator"` — the PHP-serialized representation of the `administrator` role meta value. Used to bypass `wp_insert_user()` by writing directly to `wp_usermeta` with a hand-crafted capabilities string. Near-zero FP because legit code uses `WP_User::set_role()` instead of building the serialized form by hand.
View raw JSON
{
    "slug": "security-ninja",
    "pattern": "serialized_admin_role",
    "kind": "builtin",
    "version": "5.281",
    "hit_count": 2,
    "first_hit": {
        "file": "modules/events-logger/events-logger.php",
        "line": 206,
        "snippet": "'%s:13:\"administrator\"%',"
    },
    "explanation": "plugin source contains `s:13:\"administrator\"` \u2014 the PHP-serialized representation of the `administrator` role meta value. Used to bypass `wp_insert_user()` by writing directly to `wp_usermeta` with a hand-crafted capabilities string. Near-zero FP because legit code uses `WP_User::set_role()` instead of building the serialized form by hand."
}

Plugins authored (4)

Plugin Version Installs Last updated Status
Remove & Disable XML-RPC Pingback ·remove-xmlrpc-pingback-ping 1.6 8k+ 2y ago Active
Security Ninja – WordPress Security & Firewall ·security-ninja 5.289 7k+ 14d ago Active
SEO Booster ·seo-booster 7.2 1k+ 20d ago Active
WooCommerce Cross-Seller ·wc-cross-seller 1.0.5 Closed

SVN commit access (5)

Plugins this account has pushed commits to, reconstructed from plugins.svn.wordpress.org. A new name showing up here on an established plugin is the strongest ownership-transfer signal.

Plugin Primary author Installs Commits First Latest Status
SEO Booster cleverplugins 1k+ 169 9y ago 4y ago Active
Security Ninja – WordPress Security & Firewall cleverplugins 7k+ 85 6y ago 4y ago Active
Delete Duplicate Posts lkoudal 10k+ 22 7y ago 4y ago Active
Remove & Disable XML-RPC Pingback cleverplugins 8k+ 5 5y ago 4y ago Active
WooCommerce Cross-Seller cleverplugins 5 7y ago 5y ago Closed

Contributor on other plugins (3)

Plugins where this account is listed in the readme contributors (distinct from SVN commit access).

Plugin Primary author Version Installs
Delete Duplicate Posts lkoudal 5.1 10k+
Security Ninja For MainWP lkoudal 2.1.0 500
Grumpy AI Gate lkoudal 1.0.2