Essential Addons for Elementor – Popular Elementor Templates & Widgets

{
    "slug": "essential-addons-for-elementor-lite",
    "finding_count": 2,
    "findings": [
        {
            "pattern": "remote_enqueue",
            "kind": "builtin",
            "file": "includes/Elements/Login_Register.php",
            "line": 6182,
            "snippet": "wp_register_script('eael-recaptcha-v3', \"https://www.recaptcha.net/recaptcha/api.js?{$recaptcha_api_args1}\", false, EAEL_PLUGIN_VERSION, false);",
            "confidence": "medium",
            "details": {
                "url": "https://www.recaptcha.net/recaptcha/api.js?{$recaptcha_api_args1}",
                "url_host": "www.recaptcha.net"
            }
        },
        {
            "pattern": "remote_enqueue",
            "kind": "builtin",
            "file": "includes/Traits/Enqueue.php",
            "line": 48,
            "snippet": "wp_register_script('eael-recaptcha', \"https://www.recaptcha.net/recaptcha/api.js?{$recaptcha_api_args}\", false, EAEL_PLUGIN_VERSION, false);",
            "confidence": "medium",
            "details": {
                "url": "https://www.recaptcha.net/recaptcha/api.js?{$recaptcha_api_args}",
                "url_host": "www.recaptcha.net"
            }
        }
    ],
    "resolved_sha": "0c014dc1fa52f91db5cd9e472c5a7d140a7d9ae9"
}

{
    "slug": "essential-addons-for-elementor-lite",
    "pattern": "unserialize_after_remote_call",
    "kind": "builtin",
    "version": "6.6.2",
    "hit_count": 1,
    "first_hit": {
        "file": "includes/Classes/WPDeveloper_Plugin_Installer.php",
        "line": 76,
        "snippet": "L57: $response = wp_remote_post(  \u2192  L76: return unserialize(wp_remote_retrieve_body($response));"
    },
    "explanation": "a remote HTTP fetch (`wp_remote_*`/`curl_exec`) is followed by `unserialize`/`maybe_unserialize` within the same file \u2014 classic PHP Object Injection C2 gadget used by EP and most WP supply-chain backdoors. Legit plugins essentially never do this."
}

{
    "slug": "essential-addons-for-elementor-lite",
    "previous_version": "6.6.2",
    "current_version": "6.6.2",
    "new_findings": [
        {
            "pattern": "unserialize_after_remote_call",
            "kind": "builtin",
            "file": "includes/Classes/WPDeveloper_Plugin_Installer.php",
            "line": 76,
            "snippet": "L57: $response = wp_remote_post(  \u2192  L76: return unserialize(wp_remote_retrieve_body($response));",
            "confidence": "high"
        }
    ],
    "new_finding_count": 1
}

{
    "committer": "wpdevteam",
    "member_since": "2017-11-16",
    "plugins_joined": 5,
    "spread_days": 175,
    "earliest_join": "2021-03-23 06:43:31",
    "latest_join": "2021-09-14 08:44:13",
    "combined_installs": 3700000,
    "sample_plugins": [
        {
            "slug": "essential-addons-for-elementor-lite",
            "active_installs": 2000000,
            "first_commit_at": "2021-09-14 08:44:13"
        },
        {
            "slug": "disable-comments",
            "active_installs": 1000000,
            "first_commit_at": "2021-04-06 07:53:13"
        },
        {
            "slug": "templately",
            "active_installs": 400000,
            "first_commit_at": "2021-04-20 05:39:07"
        },
        {
            "slug": "essential-blocks",
            "active_installs": 200000,
            "first_commit_at": "2021-06-30 11:05:06"
        },
        {
            "slug": "embedpress",
            "active_installs": 100000,
            "first_commit_at": "2021-03-23 06:43:31"
        }
    ]
}