WP Webhooks – Automate repetitive tasks by creating powerful automation workflows directly within WordPress

{
    "slug": "wp-webhooks",
    "finding_count": 1,
    "findings": [
        {
            "pattern": "serialized_admin_role",
            "kind": "builtin",
            "file": "core/includes/classes/class-wp-webhooks-run.php",
            "line": 1275,
            "snippet": "0 => 'a:1:{s:13:\"administrator\";b:1;}',",
            "confidence": "high"
        }
    ],
    "resolved_sha": "07403c6f6c5142c62231297dada2baa407b88601"
}

{
    "slug": "wp-webhooks",
    "pattern": "serialized_admin_role",
    "kind": "builtin",
    "version": "3.4.1",
    "hit_count": 4,
    "first_hit": {
        "file": "core/includes/integrations/wordpress/triggers/create_user.php",
        "line": 249,
        "snippet": "0 => 'a:1:{s:13:\"administrator\";b:1;}',"
    },
    "explanation": "plugin source contains `s:13:\"administrator\"` \u2014 the PHP-serialized representation of the `administrator` role meta value. Used to bypass `wp_insert_user()` by writing directly to `wp_usermeta` with a hand-crafted capabilities string. Near-zero FP because legit code uses `WP_User::set_role()` instead of building the serialized form by hand."
}

{
    "slug": "wp-webhooks",
    "previous_version": "3.4.0",
    "current_version": "3.4.1",
    "new_findings": [
        {
            "pattern": "serialized_admin_role",
            "kind": "builtin",
            "file": "core/includes/integrations/wordpress/triggers/create_user.php",
            "line": 249,
            "snippet": "0 => 'a:1:{s:13:\"administrator\";b:1;}',",
            "confidence": "high"
        },
        {
            "pattern": "serialized_admin_role",
            "kind": "builtin",
            "file": "core/includes/integrations/wordpress/triggers/update_user.php",
            "line": 269,
            "snippet": "0 => 'a:1:{s:13:\"administrator\";b:1;}',",
            "confidence": "high"
        },
        {
            "pattern": "serialized_admin_role",
            "kind": "builtin",
            "file": "core/includes/integrations/wordpress/triggers/deleted_user.php",
            "line": 306,
            "snippet": "0 => 'a:1:{s:13:\"administrator\";b:1;}',",
            "confidence": "high"
        },
        {
            "pattern": "serialized_admin_role",
            "kind": "builtin",
            "file": "core/includes/integrations/wordpress/triggers/login_user.php",
            "line": 265,
            "snippet": "0 => 'a:1:{s:13:\"administrator\";b:1;}',",
            "confidence": "high"
        }
    ],
    "new_finding_count": 4
}