WP Beacon

revmakx

@revmakx · wordpress.org profile ↗
Member since
2024-07-31
Location
Employer
Job title
Authored
8
SVN commit access
2
Readme contributor
0
Combined install base
224k+ across 8 plugins

Alerts (0)

No open alerts.

Show 3 resolved alerts
Critical code_pattern InfiniteWP Client Resolved · no_longer_matches 7d ago
Slugiwp-client
Patternunserialize_after_remote_call
Kindbuiltin
Version1.13.5
Hit count1
First hit
File
backup/backup.php
Line
2,276
Snippet
L2276: $var = maybe_unserialize(file_get_contents($cache_file_base.'-info.tmp')); → L2276: $var = maybe_unserialize(file_get_contents($cache_file_base.'-info.tmp'));
Explanationa remote HTTP fetch (`wp_remote_*`/`curl_exec`/`file_get_contents`) is followed by `@unserialize` within the same file — classic PHP Object Injection C2 gadget used by EP and most WP supply-chain backdoors. The error-suppressed form is the tell: legit code wants to know when deserialize fails; attackers suppress so malformed gadgets do not leak.
View raw JSON
{
    "slug": "iwp-client",
    "pattern": "unserialize_after_remote_call",
    "kind": "builtin",
    "version": "1.13.5",
    "hit_count": 1,
    "first_hit": {
        "file": "backup/backup.php",
        "line": 2276,
        "snippet": "L2276: $var = maybe_unserialize(file_get_contents($cache_file_base.'-info.tmp'));  \u2192  L2276: $var = maybe_unserialize(file_get_contents($cache_file_base.'-info.tmp'));"
    },
    "explanation": "a remote HTTP fetch (`wp_remote_*`/`curl_exec`/`file_get_contents`) is followed by `@unserialize` within the same file \u2014 classic PHP Object Injection C2 gadget used by EP and most WP supply-chain backdoors. The error-suppressed form is the tell: legit code wants to know when deserialize fails; attackers suppress so malformed gadgets do not leak."
}
Critical code_scan_delta InfiniteWP Client Resolved · fp_local_disk_cache 7d ago
Slugiwp-client
Previous version1.13.5
Current version1.13.5
New findings
PatternKindFileLineSnippetConfidence
unserialize_after_remote_callbuiltinbackup/backup.php2,276L2276: $var = maybe_unserialize(file_get_contents($cache_file_base.'-info.tmp')); → L2276: $var = maybe_unserialize(file_get_contents($cache_file_base.'-info.tmp'));high
New finding count1
View raw JSON
{
    "slug": "iwp-client",
    "previous_version": "1.13.5",
    "current_version": "1.13.5",
    "new_findings": [
        {
            "pattern": "unserialize_after_remote_call",
            "kind": "builtin",
            "file": "backup/backup.php",
            "line": 2276,
            "snippet": "L2276: $var = maybe_unserialize(file_get_contents($cache_file_base.'-info.tmp'));  \u2192  L2276: $var = maybe_unserialize(file_get_contents($cache_file_base.'-info.tmp'));",
            "confidence": "high"
        }
    ],
    "new_finding_count": 1
}
Medium domain_younger_than_plugin Backup and Staging by WP Time Capsule Resolved · no_longer_matches 8d ago
Slugwp-time-capsule
Domainguzzle-project.com
Domain sourcec2_http_call
Domain registered at2024-01-28
Plugin earliest commit2014-11-10 21:25:38
Plugin latest release2025-09-22 10:35:44
Gap days3,365
Domain age at release603
Active installs20,000
View raw JSON
{
    "slug": "wp-time-capsule",
    "domain": "guzzle-project.com",
    "domain_source": "c2_http_call",
    "domain_registered_at": "2024-01-28",
    "plugin_earliest_commit": "2014-11-10 21:25:38",
    "plugin_latest_release": "2025-09-22 10:35:44",
    "gap_days": 3365,
    "domain_age_at_release": 603,
    "active_installs": 20000
}

Plugins authored (8)

Plugin Version Installs Last updated Status
InfiniteWP Client ·iwp-client 1.13.5 200k+ 2mo ago Active
Backup and Staging by WP Time Capsule ·wp-time-capsule 1.22.25 20k+ 7mo ago Active
DefendWP Firewall ·defend-wp-firewall 1.1.6 3k+ 10mo ago Active
WPCal.io – Easy Meeting Scheduler ·wpcal 0.9.5.10 1k+ 5mo ago Active
WP Duplicate – WordPress Migration Plugin ·local-sync 1.1.10 200 2mo ago Active
Super Stage WP ·super-stage-wp 1.0.2 10 2mo ago Active
Kiss Feedback ·kiss-feedback 1.0.0 10 5y ago Active
Matram.io ·matram 0.0.2 10 11y ago Active

SVN commit access (2)

Plugins this account has pushed commits to, reconstructed from plugins.svn.wordpress.org. A new name showing up here on an established plugin is the strongest ownership-transfer signal.

Plugin Primary author Installs Commits First Latest Status
DefendWP Firewall revmakx 3k+ 18 1y ago 10mo ago Active
InfiniteWP Client revmakx 200k+ 9 1y ago 2mo ago Active