cleverplugins

@cleverplugins · wordpress.org profile ↗

Member since: 2017-05-19
Location: Miami
Employer: —
Job title: —
Authored: 4 (1 closed)
SVN commit access: 4
Readme contributor: 3
Combined install base: 38k+ across 7 plugins

Alerts (0)

No open alerts.

Show 1 resolved alert

Critical code_pattern Security Ninja – WordPress Security & Firewall Resolved · false_positive_defensive_string_check 2d ago

Slug	security-ninja
Pattern	`serialized_admin_role`
Kind	`builtin`
Version	`5.281`
Hit count	2
First hit	File `modules/events-logger/events-logger.php` Line 206 Snippet `'%s:13:"administrator"%',`
Explanation	plugin source contains `s:13:"administrator"` — the PHP-serialized representation of the `administrator` role meta value. Used to bypass `wp_insert_user()` by writing directly to `wp_usermeta` with a hand-crafted capabilities string. Near-zero FP because legit code uses `WP_User::set_role()` instead of building the serialized form by hand.

View raw JSON

{
    "slug": "security-ninja",
    "pattern": "serialized_admin_role",
    "kind": "builtin",
    "version": "5.281",
    "hit_count": 2,
    "first_hit": {
        "file": "modules/events-logger/events-logger.php",
        "line": 206,
        "snippet": "'%s:13:\"administrator\"%',"
    },
    "explanation": "plugin source contains `s:13:\"administrator\"` \u2014 the PHP-serialized representation of the `administrator` role meta value. Used to bypass `wp_insert_user()` by writing directly to `wp_usermeta` with a hand-crafted capabilities string. Near-zero FP because legit code uses `WP_User::set_role()` instead of building the serialized form by hand."
}

Plugins authored (4)

Plugin	Version	Installs	Last updated	Status
Remove & Disable XML-RPC Pingback ·`remove-xmlrpc-pingback-ping`	1.6	9k+	2y ago	Active
Security Ninja – WordPress Security & Firewall ·`security-ninja`	5.281	7k+	9d ago	Active
SEO Booster ·`seo-booster`	6.1.8	1k+	1y ago	Active
WooCommerce Cross-Seller ·`wc-cross-seller`	1.0.5	—	—	Closed

SVN commit access (4)

Plugins this account has pushed commits to, reconstructed from plugins.svn.wordpress.org. A new name showing up here on an established plugin is the strongest ownership-transfer signal.

Plugin	Primary author	Installs	Commits	First	Latest	Status
SEO Booster	cleverplugins	1k+	169	8y ago	4y ago	Active
Security Ninja – WordPress Security & Firewall	cleverplugins	7k+	85	6y ago	4y ago	Active
Delete Duplicate Posts	lkoudal	20k+	22	7y ago	4y ago	Active
Remove & Disable XML-RPC Pingback	cleverplugins	9k+	5	5y ago	4y ago	Active

Contributor on other plugins (3)

Plugins where this account is listed in the readme contributors (distinct from SVN commit access).

Plugin	Primary author	Version	Installs
Delete Duplicate Posts	lkoudal	5.0.3	20k+
Security Ninja For MainWP	lkoudal	2.0.18	500
Grumpy AI Gate	lkoudal	1.0.2	—