WP Beacon

WP GoToWebinar

wp-gotowebinar · by northernbeacheswebsites · wordpress.org ↗ · SVN ↗
Active installs
700
Current version
15.11
Added
2016-05-25
Last updated
2024-09-06 (1y ago)
First seen by beacon
1mo ago
Total downloads
61,397

Alerts (0)

No open alerts.

Show 1 resolved alert
Low code_pattern Resolved · vendor_self_update_license_gated_fp 2026-05-08 09:56:53 (1mo ago)
Slugwp-gotowebinar
Patternpuc_update_hijack
Kindbuiltin
Version15.11
Hit count1
First hit
File
wp-gotowebinar.php
Line
1,179
Snippet
$plugin_update_checker_wp_gotowebinar = Puc_v4_Factory::buildUpdateChecker(
Explanationplugin calls `::buildUpdateChecker()` — the factory entry point of the Yahnis Elsts Plugin Update Checker library. A plugin distributed through wordpress.org that registers its own update source is bypassing the Plugin Review Team: every install polls the non-wp.org URL on cron and installs whatever JSON + zip it returns, with full plugin-author permissions. This is the mechanism behind the `anadnet`/quick-pagepost-redirect-plugin compromise (2021) where the author seeded 70,000+ installs through tagged releases and then removed the library from trunk to hide the persistence. Any URL argument pointing away from `downloads.wordpress.org`/`api.wordpress.org` is the hijack signal.
Shapevendor_updater
Urlhttps://northernbeacheswebsites.com.au/?update_action=get_metadata&update_slug=wp-gotowebinar
Url hostnorthernbeacheswebsites.com.au
Slug argwp-gotowebinar
View raw JSON
{
    "slug": "wp-gotowebinar",
    "pattern": "puc_update_hijack",
    "kind": "builtin",
    "version": "15.11",
    "hit_count": 1,
    "first_hit": {
        "file": "wp-gotowebinar.php",
        "line": 1179,
        "snippet": "$plugin_update_checker_wp_gotowebinar = Puc_v4_Factory::buildUpdateChecker("
    },
    "explanation": "plugin calls `::buildUpdateChecker()` \u2014 the factory entry point of the Yahnis Elsts Plugin Update Checker library. A plugin distributed through wordpress.org that registers its own update source is bypassing the Plugin Review Team: every install polls the non-wp.org URL on cron and installs whatever JSON + zip it returns, with full plugin-author permissions. This is the mechanism behind the `anadnet`/quick-pagepost-redirect-plugin compromise (2021) where the author seeded 70,000+ installs through tagged releases and then removed the library from trunk to hide the persistence. Any URL argument pointing away from `downloads.wordpress.org`/`api.wordpress.org` is the hijack signal.",
    "shape": "vendor_updater",
    "url": "https://northernbeacheswebsites.com.au/?update_action=get_metadata&update_slug=wp-gotowebinar",
    "url_host": "northernbeacheswebsites.com.au",
    "slug_arg": "wp-gotowebinar"
}

SVN committers (2)

Accounts with actual commit access to wp-gotowebinar on plugins.svn.wordpress.org, reconstructed from svn log. This is the list that matters for ownership changes — not the readme contributors.

Committer Member since Commits First commit Latest commit
Northern Beaches Websites 2015-06-25 264 2016-05-25 · r1423687 2024-09-06 · r3147471
plugin-master 2007-03-09 1 2016-05-24 · r1423573 2016-05-24 · r1423573

Readme contributors (1)

Names the plugin's readme declares as contributors. A soft signal — anyone can be listed. The SVN access column is the ground-truth cross-reference: does this contributor actually commit code?

Contributor Member since SVN access Status
Northern Beaches Websites 2015-06-25 264 commits Active

Versions (100 most recent)

Version Released Download
15.11 2024-09-06 · 1y ago zip
15.8 2024-07-16 · 1y ago zip
15.7 2024-07-10 · 1y ago zip
15.3 2024-02-29 · 2y ago zip
15.2 2024-02-23 · 2y ago zip
15.1 2024-02-13 · 2y ago zip
14.46 2023-08-29 · 2y ago zip
14.45 2023-08-28 · 2y ago zip
14.39 2023-03-29 · 3y ago zip
14.36 2022-09-29 · 3y ago zip
14.30 2021-06-10 · 5y ago zip
14.21 2020-09-01 · 5y ago zip
14.19 2020-06-24 · 5y ago zip
14.14 2020-04-17 · 6y ago zip
14.12 2020-03-03 · 6y ago zip
14.10 2020-02-17 · 6y ago zip
14.8 2020-01-09 · 6y ago zip
14.7 2020-01-05 · 6y ago zip
14.1 2019-09-19 · 6y ago zip
14.0 2019-09-18 · 6y ago zip
13.8 2019-03-18 · 7y ago zip
13.6 2018-12-13 · 7y ago zip
13.5 2018-12-11 · 7y ago zip
13.4 2018-12-05 · 7y ago zip
13.1 2018-10-25 · 7y ago zip
12.22 2018-10-22 · 7y ago zip
12.20 2018-10-13 · 7y ago zip
12.18 2018-09-13 · 7y ago zip
12.17 2018-08-14 · 7y ago zip
12.16 2018-08-14 · 7y ago zip
12.15 2018-08-14 · 7y ago zip
12.13 2018-07-17 · 7y ago zip
12.12 2018-07-12 · 7y ago zip
12.11 2018-06-22 · 7y ago zip
12.9 2018-06-12 · 8y ago zip
12.7 2018-04-27 · 8y ago zip
12.5 2018-04-05 · 8y ago zip
12.4 2018-04-05 · 8y ago zip
12.3 2018-04-04 · 8y ago zip
12.1 2018-02-27 · 8y ago zip
12.0 2018-02-19 · 8y ago zip
11.2 2017-12-14 · 8y ago zip
11.1 2017-11-01 · 8y ago zip
11.0 2017-10-31 · 8y ago zip
10.1 2017-10-27 · 8y ago zip
10.0 2017-08-31 · 8y ago zip
9.2 2017-07-16 · 8y ago zip
9.1 2017-07-01 · 8y ago zip
9.0 2017-06-30 · 8y ago zip
8.12 2017-06-21 · 8y ago zip
8.10 2017-06-14 · 8y ago zip
8.9 2017-06-08 · 9y ago zip
8.8 2017-06-08 · 9y ago zip
8.7 2017-06-08 · 9y ago zip
8.6 2017-06-08 · 9y ago zip
8.5 2017-06-07 · 9y ago zip
5.6 2017-06-06 · 9y ago zip
8.3 2017-06-06 · 9y ago zip
7.0 2017-06-06 · 9y ago zip
7.5 2017-06-06 · 9y ago zip
7.4 2017-06-06 · 9y ago zip
8.2 2017-06-06 · 9y ago zip
8.4 2017-06-06 · 9y ago zip
8.1 2017-05-03 · 9y ago zip
8.0 2017-05-01 · 9y ago zip
7.6 2017-01-23 · 9y ago zip
7.3 2017-01-09 · 9y ago zip
7.2 2017-01-06 · 9y ago zip
7.1 2016-12-20 · 9y ago zip
6.9 2016-12-05 · 9y ago zip
6.8 2016-12-01 · 9y ago zip
6.7 2016-12-01 · 9y ago zip
6.6 2016-12-01 · 9y ago zip
6.5 2016-11-24 · 9y ago zip
6.4 2016-11-17 · 9y ago zip
6.3 2016-11-16 · 9y ago zip
6.2 2016-11-15 · 9y ago zip
6.1 2016-11-15 · 9y ago zip
6.0 2016-11-10 · 9y ago zip
5.11 2016-10-21 · 9y ago zip
5.10 2016-10-17 · 9y ago zip
5.9 2016-10-11 · 9y ago zip
5.8 2016-10-05 · 9y ago zip
5.7 2016-10-04 · 9y ago zip
5.5 2016-09-22 · 9y ago zip
5.4 2016-09-20 · 9y ago zip
5.3 2016-09-12 · 9y ago zip
5.2 2016-08-24 · 9y ago zip
5.1 2016-08-23 · 9y ago zip
5.0 2016-08-10 · 9y ago zip
4.8 2016-08-09 · 9y ago zip
4.7 2016-08-08 · 9y ago zip
4.6 2016-08-08 · 9y ago zip
4.5 2016-08-02 · 9y ago zip
4.4 2016-07-18 · 9y ago zip
4.3 2016-07-17 · 9y ago zip
4.2 2016-07-16 · 9y ago zip
4.1 2016-07-04 · 9y ago zip
4.0 2016-07-02 · 9y ago zip
3.5 2016-06-30 · 9y ago zip