WP Beacon

Cozmoslabs

@cozmoslabs · wordpress.org profile ↗
Member since
2014-09-16
Location
Employer
Job title
Authored
11
SVN commit access
0
Readme contributor
6
Combined install base
577k+ across 17 plugins

Alerts (0)

No open alerts.

Show 4 resolved alerts
Critical code_pattern WP Webhooks – Automate repetitive tasks by creating powerful automation workflows directly within WordPress Resolved · false_positive_sample_payload 3d ago
Slugwp-webhooks
Patternserialized_admin_role
Kindbuiltin
Version3.4.1
Hit count4
First hit
File
core/includes/integrations/wordpress/triggers/create_user.php
Line
249
Snippet
0 => 'a:1:{s:13:"administrator";b:1;}',
Explanationplugin source contains `s:13:"administrator"` — the PHP-serialized representation of the `administrator` role meta value. Used to bypass `wp_insert_user()` by writing directly to `wp_usermeta` with a hand-crafted capabilities string. Near-zero FP because legit code uses `WP_User::set_role()` instead of building the serialized form by hand.
View raw JSON
{
    "slug": "wp-webhooks",
    "pattern": "serialized_admin_role",
    "kind": "builtin",
    "version": "3.4.1",
    "hit_count": 4,
    "first_hit": {
        "file": "core/includes/integrations/wordpress/triggers/create_user.php",
        "line": 249,
        "snippet": "0 => 'a:1:{s:13:\"administrator\";b:1;}',"
    },
    "explanation": "plugin source contains `s:13:\"administrator\"` \u2014 the PHP-serialized representation of the `administrator` role meta value. Used to bypass `wp_insert_user()` by writing directly to `wp_usermeta` with a hand-crafted capabilities string. Near-zero FP because legit code uses `WP_User::set_role()` instead of building the serialized form by hand."
}
Critical code_scan_delta WP Webhooks – Automate repetitive tasks by creating powerful automation workflows directly within WordPress Resolved · false_positive_sample_payload 3d ago
Slugwp-webhooks
Previous version3.4.0
Current version3.4.1
New findings
PatternKindFileLineSnippetConfidence
serialized_admin_rolebuiltincore/includes/integrations/wordpress/triggers/create_user.php2490 => 'a:1:{s:13:"administrator";b:1;}',high
serialized_admin_rolebuiltincore/includes/integrations/wordpress/triggers/update_user.php2690 => 'a:1:{s:13:"administrator";b:1;}',high
serialized_admin_rolebuiltincore/includes/integrations/wordpress/triggers/deleted_user.php3060 => 'a:1:{s:13:"administrator";b:1;}',high
serialized_admin_rolebuiltincore/includes/integrations/wordpress/triggers/login_user.php2650 => 'a:1:{s:13:"administrator";b:1;}',high
New finding count4
View raw JSON
{
    "slug": "wp-webhooks",
    "previous_version": "3.4.0",
    "current_version": "3.4.1",
    "new_findings": [
        {
            "pattern": "serialized_admin_role",
            "kind": "builtin",
            "file": "core/includes/integrations/wordpress/triggers/create_user.php",
            "line": 249,
            "snippet": "0 => 'a:1:{s:13:\"administrator\";b:1;}',",
            "confidence": "high"
        },
        {
            "pattern": "serialized_admin_role",
            "kind": "builtin",
            "file": "core/includes/integrations/wordpress/triggers/update_user.php",
            "line": 269,
            "snippet": "0 => 'a:1:{s:13:\"administrator\";b:1;}',",
            "confidence": "high"
        },
        {
            "pattern": "serialized_admin_role",
            "kind": "builtin",
            "file": "core/includes/integrations/wordpress/triggers/deleted_user.php",
            "line": 306,
            "snippet": "0 => 'a:1:{s:13:\"administrator\";b:1;}',",
            "confidence": "high"
        },
        {
            "pattern": "serialized_admin_role",
            "kind": "builtin",
            "file": "core/includes/integrations/wordpress/triggers/login_user.php",
            "line": 265,
            "snippet": "0 => 'a:1:{s:13:\"administrator\";b:1;}',",
            "confidence": "high"
        }
    ],
    "new_finding_count": 4
}
Critical code_pattern Translate Multilingual sites – TranslatePress Resolved · no_longer_matches 7d ago
Slugtranslatepress-multilingual
Patternunserialize_after_remote_call
Kindbuiltin
Version3.1.7
Hit count3
First hit
File
includes/class-edd-sl-plugin-updater.php
Line
418
Snippet
L411: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverify' = → L418: $request->sections = maybe_unserialize($request->sections);
Explanationa remote HTTP fetch (`wp_remote_*`/`curl_exec`/`file_get_contents`) is followed by `@unserialize` within the same file — classic PHP Object Injection C2 gadget used by EP and most WP supply-chain backdoors. The error-suppressed form is the tell: legit code wants to know when deserialize fails; attackers suppress so malformed gadgets do not leak.
View raw JSON
{
    "slug": "translatepress-multilingual",
    "pattern": "unserialize_after_remote_call",
    "kind": "builtin",
    "version": "3.1.7",
    "hit_count": 3,
    "first_hit": {
        "file": "includes/class-edd-sl-plugin-updater.php",
        "line": 418,
        "snippet": "L411: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverify' =  \u2192  L418: $request->sections = maybe_unserialize($request->sections);"
    },
    "explanation": "a remote HTTP fetch (`wp_remote_*`/`curl_exec`/`file_get_contents`) is followed by `@unserialize` within the same file \u2014 classic PHP Object Injection C2 gadget used by EP and most WP supply-chain backdoors. The error-suppressed form is the tell: legit code wants to know when deserialize fails; attackers suppress so malformed gadgets do not leak."
}
Critical code_scan_delta Translate Multilingual sites – TranslatePress Resolved · fp_edd_updater_library 7d ago
Slugtranslatepress-multilingual
Previous version3.1.7
Current version3.1.7
New findings
PatternKindFileLineSnippetConfidence
unserialize_after_remote_callbuiltinincludes/class-edd-sl-plugin-updater.php418L411: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverify' = → L418: $request->sections = maybe_unserialize($request->sections);high
unserialize_after_remote_callbuiltinincludes/class-edd-sl-plugin-updater.php424L411: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverify' = → L424: $request->banners = maybe_unserialize($request->banners);high
unserialize_after_remote_callbuiltinincludes/class-edd-sl-plugin-updater.php483L475: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverif → L483: $version_info->sections = maybe_unserialize($version_info->sections);high
New finding count3
View raw JSON
{
    "slug": "translatepress-multilingual",
    "previous_version": "3.1.7",
    "current_version": "3.1.7",
    "new_findings": [
        {
            "pattern": "unserialize_after_remote_call",
            "kind": "builtin",
            "file": "includes/class-edd-sl-plugin-updater.php",
            "line": 418,
            "snippet": "L411: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverify' =  \u2192  L418: $request->sections = maybe_unserialize($request->sections);",
            "confidence": "high"
        },
        {
            "pattern": "unserialize_after_remote_call",
            "kind": "builtin",
            "file": "includes/class-edd-sl-plugin-updater.php",
            "line": 424,
            "snippet": "L411: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverify' =  \u2192  L424: $request->banners = maybe_unserialize($request->banners);",
            "confidence": "high"
        },
        {
            "pattern": "unserialize_after_remote_call",
            "kind": "builtin",
            "file": "includes/class-edd-sl-plugin-updater.php",
            "line": 483,
            "snippet": "L475: $request = wp_remote_post($this->api_url, array('timeout' => 15, 'sslverif  \u2192  L483: $version_info->sections = maybe_unserialize($version_info->sections);",
            "confidence": "high"
        }
    ],
    "new_finding_count": 3
}

Plugins authored (11)

Plugin Version Installs Last updated Status
Translate Multilingual sites – TranslatePress ·translatepress-multilingual 3.1.8 400k+ 4d ago Active
User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor ·profile-builder 3.16.0 50k+ 8d ago Active
User Profile Picture ·metronet-profile-picture 2.6.3 40k+ 1y ago Active
WP Webhooks – Automate repetitive tasks by creating powerful automation workflows directly within WordPress ·wp-webhooks 3.4.1 20k+ 4d ago Active
Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction ·paid-member-subscriptions 3.0.3 10k+ 4d ago Active
WPWH – WP Reset Webhook Integration ·wpwh-wp-reset-webhook-integration 1.1.0 100 5y ago Active
WP Webhooks – Contact Form 7 Integration ·wpwh-contact-form-7 1.2.1 100 5y ago Active
WP Webhooks – Email integration ·wp-webhooks-email-integration 1.1.0 20 5y ago Active
WP Webhooks – Comments ·wp-webhooks-comments 1.1.0 10 5y ago Active
WP Webhooks – Manage Taxonomy Terms ·wp-webhooks-manage-taxonomy-terms 1.1.0 10 5y ago Active
WP Webhooks – Easy Digital Downloads ·wp-webhooks-easy-digital-downloads 1.0.1 10 5y ago Active

Contributor on other plugins (6)

Plugins where this account is listed in the readme contributors (distinct from SVN commit access).

Plugin Primary author Version Installs
Visual Composer Website Builder visualcomposer 45.15.0 40k+
Custom Post Types and Custom Fields creator – WCK madalinungureanu 2.3.8 10k+
Client Portal – Private user pages and login madalinungureanu 1.2.2 3k+
Custom Login Page Templates – Change Logo, Background and CSS sareiodata 1.0.1 2k+
Passwordless Login madalinungureanu 1.1.4 1k+
WEB-T – eTranslation Multilingual ecwebt 2.0.6 400