From 29bc9a8e71543344d52aadcaed7ba8d22d6926f4 Mon Sep 17 00:00:00 2001 From: DefectDojo release bot Date: Mon, 5 Jan 2026 19:52:45 +0000 Subject: [PATCH 01/20] Update versions in application files --- components/package.json | 2 +- helm/defectdojo/Chart.yaml | 8 ++++---- helm/defectdojo/README.md | 2 +- 3 files changed, 6 insertions(+), 6 deletions(-) diff --git a/components/package.json b/components/package.json index 348ad4248bc..6fc51fe3ce9 100644 --- a/components/package.json +++ b/components/package.json @@ -1,6 +1,6 @@ { "name": "defectdojo", - "version": "2.54.0", + "version": "2.55.0-dev", "license" : "BSD-3-Clause", "private": true, "dependencies": { diff --git a/helm/defectdojo/Chart.yaml b/helm/defectdojo/Chart.yaml index a39152718f0..7845acdd904 100644 --- a/helm/defectdojo/Chart.yaml +++ b/helm/defectdojo/Chart.yaml @@ -1,8 +1,8 @@ apiVersion: v2 -appVersion: "2.54.0" +appVersion: "2.55.0-dev" description: A Helm chart for Kubernetes to install DefectDojo name: defectdojo -version: 1.9.6 +version: 1.9.7-dev icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png maintainers: - name: madchap @@ -33,5 +33,5 @@ dependencies: # - kind: security # description: Critical bug annotations: - artifacthub.io/prerelease: "false" - artifacthub.io/changes: "- kind: changed\n description: Bump DefectDojo to 2.54.0\n" + artifacthub.io/prerelease: "true" + artifacthub.io/changes: "" diff --git a/helm/defectdojo/README.md b/helm/defectdojo/README.md index ca10a9462d8..d4147df2ced 100644 --- a/helm/defectdojo/README.md +++ b/helm/defectdojo/README.md @@ -511,7 +511,7 @@ The HELM schema will be generated for you. # General information about chart values -![Version: 1.9.6](https://img.shields.io/badge/Version-1.9.6-informational?style=flat-square) ![AppVersion: 2.54.0](https://img.shields.io/badge/AppVersion-2.54.0-informational?style=flat-square) +![Version: 1.9.7-dev](https://img.shields.io/badge/Version-1.9.7--dev-informational?style=flat-square) ![AppVersion: 2.55.0-dev](https://img.shields.io/badge/AppVersion-2.55.0--dev-informational?style=flat-square) A Helm chart for Kubernetes to install DefectDojo From d9bf1f8d0c1ea5fb20ad949e0acccaade269c3a5 Mon Sep 17 00:00:00 2001 From: Valentijn Scholten Date: Tue, 6 Jan 2026 19:01:56 +0100 Subject: [PATCH 02/20] announcements: catch exceptions --- dojo/product_announcements.py | 21 +++++++++++++++------ 1 file changed, 15 insertions(+), 6 deletions(-) diff --git a/dojo/product_announcements.py b/dojo/product_announcements.py index 94708aee3cd..8510b42a0f8 100644 --- a/dojo/product_announcements.py +++ b/dojo/product_announcements.py @@ -1,9 +1,14 @@ + +import logging + from django.conf import settings from django.contrib import messages from django.http import HttpRequest, HttpResponse from django.utils.safestring import mark_safe from django.utils.translation import gettext_lazy as _ +logger = logging.getLogger(__name__) + class ProductAnnouncementManager: @@ -48,12 +53,16 @@ def __init__( def _add_django_message(self, request: HttpRequest, message: str): """Add a message to the UI""" - messages.add_message( - request=request, - level=messages.INFO, - message=_(message), - extra_tags="alert-info", - ) + try: + messages.add_message( + request=request, + level=messages.INFO, + message=_(message), + extra_tags="alert-info", + ) + except Exception: + # make sure we catch any exceptions that might happen: https://github.com/DefectDojo/django-DefectDojo/issues/14041 + logger.exception(f"Error adding message to Django: {message}") def _add_api_response_key(self, message: str, data: dict) -> dict: """Update the response data in place""" From 35c2f63fc31a4f77ceb570a9e2cff2b2722ec7f7 Mon Sep 17 00:00:00 2001 From: valentijnscholten Date: Tue, 6 Jan 2026 19:15:41 +0100 Subject: [PATCH 03/20] Update migration notes for django-pghistory (#14043) Clarify the migration process for django-pghistory tables. --- docs/content/en/open_source/upgrading/2.54.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/content/en/open_source/upgrading/2.54.md b/docs/content/en/open_source/upgrading/2.54.md index 0a5c97c8df4..3992fab2c4b 100644 --- a/docs/content/en/open_source/upgrading/2.54.md +++ b/docs/content/en/open_source/upgrading/2.54.md @@ -30,9 +30,9 @@ The switch to `django-pghistory` provides several advantages: ### Migration Notes -- A one-time data migration will take place to populate the `django-pghistory` tables with the initial snapshot of the tracked models. +- A one-time data migration will take place to "backfill" the `django-pghistory` tables with the initial snapshot of the tracked models. - The migration is designed to be fail-safe: if it fails for some reason, it will continue where it left off. -- The migration can also be performed up front via +- If it fails completely or for any other reason you want to trigger it manually, you can do so via: - `docker compose exec uwsgi bash -c "python manage.py pghistory_backfill_fast"`, or - `docker compose exec uwsgi bash -c "python manage.py pghistory_backfill_simple"`, or - `docker compose exec uwsgi bash -c "python manage.py pghistory_backfill"` From b7a7d23cf4a297533db1f758452d25c57eba3917 Mon Sep 17 00:00:00 2001 From: Paul Osinski <42211303+paulOsinski@users.noreply.github.com> Date: Wed, 7 Jan 2026 11:44:27 -0500 Subject: [PATCH 04/20] fix front matter in PingCastle docs (#14036) --- docs/content/supported_tools/parsers/file/pingcastle.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/docs/content/supported_tools/parsers/file/pingcastle.md b/docs/content/supported_tools/parsers/file/pingcastle.md index 836877d5519..1ef66cfd290 100644 --- a/docs/content/supported_tools/parsers/file/pingcastle.md +++ b/docs/content/supported_tools/parsers/file/pingcastle.md @@ -1,7 +1,8 @@ +--- title: "PingCastle" toc_hide: true --- Import results from the [PingCastle](https://www.pingcastle.com/documentation/). ### Sample Scan Data -Sample PingCastle scans can be found [here](https://github.com/DefectDojo/django-DefectDojo/tree/master/unittests/scans/pingcastle). \ No newline at end of file +Sample PingCastle scans can be found [here](https://github.com/DefectDojo/django-DefectDojo/tree/master/unittests/scans/pingcastle). From bc95464c778e3aeedccbf1484bc5cbf110af3714 Mon Sep 17 00:00:00 2001 From: manuelsommer <47991713+manuel-sommer@users.noreply.github.com> Date: Wed, 7 Jan 2026 17:44:36 +0100 Subject: [PATCH 05/20] :lipstick: Add output description reference to google cloud artifactory scan (#14038) --- .../supported_tools/parsers/file/gcloud_artifact_scan.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/docs/content/supported_tools/parsers/file/gcloud_artifact_scan.md b/docs/content/supported_tools/parsers/file/gcloud_artifact_scan.md index dc1ead4ef53..ef113912993 100644 --- a/docs/content/supported_tools/parsers/file/gcloud_artifact_scan.md +++ b/docs/content/supported_tools/parsers/file/gcloud_artifact_scan.md @@ -8,6 +8,8 @@ Once a scan is completed, results can be pulled via API/gcloud https://cloud.goo ### File Types DefectDojo parser accepts Google Cloud Artifact Vulnerability Scan data as a .json file. +[This issue](https://github.com/DefectDojo/django-DefectDojo/issues/8552) describes the way to retrieve the json output. + ### Sample Scan Data Sample reports can be found at https://github.com/DefectDojo/django-DefectDojo/tree/master/unittests/scans/gcloud_artifact_scan From 1c7d7439ba4f091f33afba5f116fd63cba3fbdbc Mon Sep 17 00:00:00 2001 From: Cody Maffucci <46459665+Maffooch@users.noreply.github.com> Date: Thu, 8 Jan 2026 10:34:45 -0700 Subject: [PATCH 06/20] Update .gitignore --- .gitignore | 1 + 1 file changed, 1 insertion(+) diff --git a/.gitignore b/.gitignore index 9fcbe1e95b4..166e3a75fe8 100644 --- a/.gitignore +++ b/.gitignore @@ -127,6 +127,7 @@ docker/extra_fixtures/* !docker/extra_fixtures/readme.txt docker/extra_settings/* !docker/extra_settings/README.md +dojo/settings/pro_settings.py # Helm dependencies From ef8af4f6638881aaa8eef75e3ddc2da03820d7b2 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 8 Jan 2026 15:28:10 -0600 Subject: [PATCH 07/20] chore(deps): bump urllib3 from 2.6.2 to 2.6.3 (#14059) Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.6.2 to 2.6.3. - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/2.6.2...2.6.3) --- updated-dependencies: - dependency-name: urllib3 dependency-version: 2.6.3 dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 9691129a8b6..26eaf1e0126 100644 --- a/requirements.txt +++ b/requirements.txt @@ -35,7 +35,7 @@ python-dateutil==2.9.0.post0 redis==7.1.0 requests==2.32.5 sqlalchemy==2.0.45 # Required by Celery broker transport -urllib3==2.6.2 +urllib3==2.6.3 uWSGI==2.0.31 vobject==0.9.9 whitenoise==5.2.0 From 533f30d88c2299c1bc796dda501704d8c0d03ad2 Mon Sep 17 00:00:00 2001 From: manuelsommer <47991713+manuel-sommer@users.noreply.github.com> Date: Thu, 8 Jan 2026 22:31:27 +0100 Subject: [PATCH 08/20] :bug: Fix multiple google cloud artifact scan bugs (#14052) * :bug: Fix multiple google cloud artifact scan bugs * udpate --- dojo/tools/gcloud_artifact_scan/parser.py | 15 +- .../artifact-analysis-occurrences-sample.json | 903 ++++++++++++++++++ .../tools/test_gcloud_artifact_scan_parser.py | 15 + 3 files changed, 930 insertions(+), 3 deletions(-) create mode 100644 unittests/scans/gcloud_artifact_scan/artifact-analysis-occurrences-sample.json diff --git a/dojo/tools/gcloud_artifact_scan/parser.py b/dojo/tools/gcloud_artifact_scan/parser.py index e53da28967f..7e4e8978250 100644 --- a/dojo/tools/gcloud_artifact_scan/parser.py +++ b/dojo/tools/gcloud_artifact_scan/parser.py @@ -35,7 +35,6 @@ def get_findings(self, json_output, test): for vuln in tree["package_vulnerability_summary"]["vulnerabilities"][severity]: description = "name: " + str(vuln["name"]) + "\n\n" description += "resourceUri: " + str(vuln["resourceUri"]) + "\n" - description += "fixAvailable: " + str(vuln["vulnerability"]["fixAvailable"]) + "\n" description += "packageIssue: " + str(vuln["vulnerability"]["packageIssue"]) + "\n" description += "CVE: " + str(vuln["vulnerability"]["shortDescription"]) + "\n" reference = "" @@ -45,13 +44,23 @@ def get_findings(self, json_output, test): title=vuln["noteName"], test=test, description=description, - severity=severity.lower().capitalize(), + severity=self.severity_mapper(severity), references=reference, component_name="affectedCPEUri: " + vuln["vulnerability"]["packageIssue"][0]["affectedCpeUri"] + " affectedPackage: " + vuln["vulnerability"]["packageIssue"][0]["affectedPackage"], component_version=vuln["vulnerability"]["packageIssue"][0]["affectedVersion"]["fullName"], static_finding=True, dynamic_finding=False, - cvssv3_score=vuln["vulnerability"]["cvssScore"], ) + if vuln["vulnerability"].get("fixAvailable"): + finding.fix_available = vuln["vulnerability"].get("fixAvailable") + if vuln["vulnerability"].get("cvssScore"): + finding.cvssv3_score = vuln["vulnerability"].get("cvssScore") findings.append(finding) return findings + + def severity_mapper(self, severity): + if severity.lower().capitalize() in {"Critical", "High", "Medium", "Low", "Info"}: + return severity.lower().capitalize() + if severity == "Minimal": + return "Low" + return "Info" diff --git a/unittests/scans/gcloud_artifact_scan/artifact-analysis-occurrences-sample.json b/unittests/scans/gcloud_artifact_scan/artifact-analysis-occurrences-sample.json new file mode 100644 index 00000000000..107d3b5504b --- /dev/null +++ b/unittests/scans/gcloud_artifact_scan/artifact-analysis-occurrences-sample.json @@ -0,0 +1,903 @@ +{ + "discovery_summary": { + "discovery": [ + { + "createTime": "2005-05-15T10:02:04.052380Z", + "discovery": { + "analysisCompleted": { + "analysisType": [ + "GO", + "MAVEN", + "OS", + "COMPOSER", + "NUGET", + "NPM", + "PYPI", + "RUBYGEMS", + "RUST" + ] + }, + "analysisStatus": "FINISHED_SUCCESS", + "continuousAnalysis": "ACTIVE", + "lastScanTime": "2005-05-15T14:15:20.837212135Z" + }, + "kind": "DISCOVERY", + "name": "projects/my-project/locations/region-east2/occurrences/671711b8-59e5-45eb-a39b-1de940e9f2a1", + "noteName": "projects/goog-analysis/locations/region-east2/notes/PACKAGE_VULNERABILITY", + "resourceUri": "https://region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "updateTime": "2005-05-15T14:15:20.943784Z" + } + ] + }, + "image_summary": { + "digest": "sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "fully_qualified_digest": "region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "registry": "region-east2-docker.pkg.dev", + "repository": "my-image" + }, + "package_vulnerability_summary": { + "vulnerabilities": { + "CRITICAL": [ + { + "createTime": "2005-05-15T10:02:42.904882Z", + "kind": "VULNERABILITY", + "name": "projects/my-project/locations/region-east2/occurrences/8ab969a2-81cf-4f32-bb01-b77d103c94f6", + "noteName": "projects/goog-vulnz/notes/CVE-2023-36665", + "resourceUri": "https://region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "updateTime": "2005-05-15T10:02:42.904882Z", + "vulnerability": { + "cvssScore": 9.8, + "cvssVersion": "CVSS_VERSION_3", + "cvssv3": { + "attackComplexity": "ATTACK_COMPLEXITY_LOW", + "attackVector": "ATTACK_VECTOR_NETWORK", + "availabilityImpact": "IMPACT_HIGH", + "baseScore": 9.8, + "confidentialityImpact": "IMPACT_HIGH", + "exploitabilityScore": 3.9, + "impactScore": 5.9, + "integrityImpact": "IMPACT_HIGH", + "privilegesRequired": "PRIVILEGES_REQUIRED_NONE", + "scope": "SCOPE_UNCHANGED", + "userInteraction": "USER_INTERACTION_NONE" + }, + "effectiveSeverity": "CRITICAL", + "fixAvailable": true, + "longDescription": "NIST vectors: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "packageIssue": [ + { + "affectedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "affectedPackage": "some_package", + "affectedVersion": { + "fullName": "7.0.0", + "kind": "NORMAL", + "name": "7.0.0" + }, + "effectiveSeverity": "CRITICAL", + "fileLocation": [ + { + "filePath": "filePath", + "layerDetails": { + "chainId": "sha256:dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "command": "command", + "diffId": "8a271324e30f2db078751809a026839101047220c6154378e87121673ec43fbd", + "index": 13 + } + } + ], + "fixAvailable": true, + "fixedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "fixedPackage": "some_package", + "fixedVersion": { + "fullName": "7.2.5", + "kind": "NORMAL", + "name": "7.2.5" + }, + "packageType": "NPM" + } + ], + "relatedUrls": [ + { + "label": "More Info", + "url": "https://github.com/advisories/GHSA-h755-8qp9-cq85" + } + ], + "severity": "CRITICAL", + "shortDescription": "CVE-2023-36665" + } + }, + { + "createTime": "2005-05-15T10:02:42.918992Z", + "kind": "VULNERABILITY", + "name": "projects/my-project/locations/region-east2/occurrences/b960d779-36e3-4c42-a0f1-b4e64384a07b", + "noteName": "projects/goog-vulnz/notes/CVE-2023-45853", + "resourceUri": "https://region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "updateTime": "2005-05-15T10:02:42.918992Z", + "vulnerability": { + "cvssScore": 9.8, + "cvssVersion": "CVSS_VERSION_3", + "cvssv3": { + "attackComplexity": "ATTACK_COMPLEXITY_LOW", + "attackVector": "ATTACK_VECTOR_NETWORK", + "availabilityImpact": "IMPACT_HIGH", + "baseScore": 9.8, + "confidentialityImpact": "IMPACT_HIGH", + "exploitabilityScore": 3.9, + "impactScore": 5.9, + "integrityImpact": "IMPACT_HIGH", + "privilegesRequired": "PRIVILEGES_REQUIRED_NONE", + "scope": "SCOPE_UNCHANGED", + "userInteraction": "USER_INTERACTION_NONE" + }, + "effectiveSeverity": "CRITICAL", + "longDescription": "NIST vectors: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "packageIssue": [ + { + "affectedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "affectedPackage": "some_package", + "affectedVersion": { + "epoch": 1, + "fullName": "1:1.2.13.dfsg-1", + "kind": "NORMAL", + "name": "1.2.13.dfsg", + "revision": "1" + }, + "effectiveSeverity": "CRITICAL", + "fileLocation": [ + { + "filePath": "filePath", + "layerDetails": { + "baseImages": [ + { + "repository": "someOS" + }, + { + "repository": "amd64/someOS" + }, + { + "repository": "library/someOS" + } + ], + "chainId": "sha256:dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "command": "command", + "diffId": "dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy" + } + } + ], + "fixedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "fixedPackage": "some_package", + "fixedVersion": { + "kind": "MAXIMUM" + }, + "packageType": "OS" + } + ], + "relatedUrls": [ + { + "label": "More Info", + "url": "https://security-tracker.someOS.org/tracker/CVE-2023-45853" + } + ], + "severity": "CRITICAL", + "shortDescription": "CVE-2023-45853" + } + } + ], + "HIGH": [ + { + "createTime": "2005-05-15T10:02:42.956487Z", + "kind": "VULNERABILITY", + "name": "projects/my-project/locations/region-east2/occurrences/00527240-4359-4ad1-88c7-98d8b25f190b", + "noteName": "projects/goog-vulnz/notes/CVE-2022-37620", + "resourceUri": "https://region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "updateTime": "2005-05-15T10:02:42.956487Z", + "vulnerability": { + "cvssScore": 7.5, + "cvssVersion": "CVSS_VERSION_3", + "cvssv3": { + "attackComplexity": "ATTACK_COMPLEXITY_LOW", + "attackVector": "ATTACK_VECTOR_NETWORK", + "availabilityImpact": "IMPACT_HIGH", + "baseScore": 7.5, + "confidentialityImpact": "IMPACT_NONE", + "exploitabilityScore": 3.9, + "impactScore": 3.6, + "integrityImpact": "IMPACT_NONE", + "privilegesRequired": "PRIVILEGES_REQUIRED_NONE", + "scope": "SCOPE_UNCHANGED", + "userInteraction": "USER_INTERACTION_NONE" + }, + "effectiveSeverity": "HIGH", + "longDescription": "NIST vectors: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "packageIssue": [ + { + "affectedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "affectedPackage": "some_package", + "affectedVersion": { + "fullName": "4.0.0", + "kind": "NORMAL", + "name": "4.0.0" + }, + "effectiveSeverity": "HIGH", + "fileLocation": [ + { + "filePath": "filePath", + "layerDetails": { + "chainId": "sha256:dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "command": "command", + "diffId": "8a271324e30f2db078751809a026839101047220c6154378e87121673ec43fbd", + "index": 13 + } + } + ], + "fixedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "fixedPackage": "some_package", + "fixedVersion": { + "kind": "MAXIMUM" + }, + "packageType": "NPM" + } + ], + "relatedUrls": [ + { + "label": "More Info", + "url": "https://github.com/advisories/GHSA-pfq8-rq6v-vf5m" + } + ], + "severity": "HIGH", + "shortDescription": "CVE-2022-37620" + } + }, + { + "createTime": "2005-05-15T10:02:42.894665Z", + "kind": "VULNERABILITY", + "name": "projects/my-project/locations/region-east2/occurrences/0ef3bf77-3bf7-4557-a08e-dc12febf3d8f", + "noteName": "projects/goog-vulnz/notes/CVE-2025-64756", + "resourceUri": "https://region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "updateTime": "2005-05-15T10:02:42.894665Z", + "vulnerability": { + "cvssScore": 7.5, + "cvssVersion": "CVSS_VERSION_3", + "cvssv3": { + "attackComplexity": "ATTACK_COMPLEXITY_HIGH", + "attackVector": "ATTACK_VECTOR_NETWORK", + "availabilityImpact": "IMPACT_HIGH", + "baseScore": 7.5, + "confidentialityImpact": "IMPACT_HIGH", + "exploitabilityScore": 1.6, + "impactScore": 5.9, + "integrityImpact": "IMPACT_HIGH", + "privilegesRequired": "PRIVILEGES_REQUIRED_LOW", + "scope": "SCOPE_UNCHANGED", + "userInteraction": "USER_INTERACTION_NONE" + }, + "effectiveSeverity": "HIGH", + "fixAvailable": true, + "longDescription": "NIST vectors: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "packageIssue": [ + { + "affectedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "affectedPackage": "some_package", + "affectedVersion": { + "fullName": "10.4.5", + "kind": "NORMAL", + "name": "10.4.5" + }, + "effectiveSeverity": "HIGH", + "fileLocation": [ + { + "filePath": "filePath", + "layerDetails": { + "baseImages": [ + { + "repository": "node" + }, + { + "repository": "library/node" + } + ], + "chainId": "sha256:dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "command": "command", + "diffId": "616f6b198b3c0a4d537e28a6e3dc165fcb03c9c30d2aaf884c272332eef50423", + "index": 3 + } + } + ], + "fixAvailable": true, + "fixedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "fixedPackage": "some_package", + "fixedVersion": { + "fullName": "10.5.0", + "kind": "NORMAL", + "name": "10.5.0" + }, + "packageType": "NPM" + }, + { + "affectedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "affectedPackage": "some_package", + "affectedVersion": { + "fullName": "11.0.3", + "kind": "NORMAL", + "name": "11.0.3" + }, + "effectiveSeverity": "HIGH", + "fileLocation": [ + { + "filePath": "filePath", + "layerDetails": { + "baseImages": [ + { + "repository": "node" + }, + { + "repository": "library/node" + } + ], + "chainId": "sha256:dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "command": "command", + "diffId": "616f6b198b3c0a4d537e28a6e3dc165fcb03c9c30d2aaf884c272332eef50423", + "index": 3 + } + } + ], + "fixAvailable": true, + "fixedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "fixedPackage": "some_package", + "fixedVersion": { + "fullName": "11.1.0", + "kind": "NORMAL", + "name": "11.1.0" + }, + "packageType": "NPM" + } + ], + "relatedUrls": [ + { + "label": "More Info", + "url": "https://security-tracker.someOS.org/tracker/CVE-2025-64756" + }, + { + "label": "More Info", + "url": "https://github.com/advisories/GHSA-5j98-mcp5-4vw2" + } + ], + "severity": "HIGH", + "shortDescription": "CVE-2025-64756" + } + } + ], + "LOW": [ + { + "createTime": "2005-05-15T10:02:42.895751Z", + "kind": "VULNERABILITY", + "name": "projects/my-project/locations/region-east2/occurrences/4d498bb4-fa47-4c81-916b-c1e9cb88bf49", + "noteName": "projects/goog-vulnz/notes/CVE-2025-9820", + "resourceUri": "https://region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "updateTime": "2005-05-15T10:02:42.895751Z", + "vulnerability": { + "effectiveSeverity": "LOW", + "packageIssue": [ + { + "affectedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "affectedPackage": "some_package", + "affectedVersion": { + "fullName": "3.7.9-2+deb12u5", + "kind": "NORMAL", + "name": "3.7.9", + "revision": "2+deb12u5" + }, + "effectiveSeverity": "LOW", + "fileLocation": [ + { + "filePath": "filePath", + "layerDetails": { + "baseImages": [ + { + "repository": "someOS" + }, + { + "repository": "amd64/someOS" + }, + { + "repository": "library/someOS" + } + ], + "chainId": "sha256:dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "command": "command", + "diffId": "dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy" + } + } + ], + "fixedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "fixedPackage": "some_package", + "fixedVersion": { + "kind": "MAXIMUM" + }, + "packageType": "OS" + } + ], + "relatedUrls": [ + { + "label": "More Info", + "url": "https://security-tracker.someOS.org/tracker/CVE-2025-9820" + } + ], + "shortDescription": "CVE-2025-9820" + } + }, + { + "createTime": "2005-05-15T10:02:43.008086Z", + "kind": "VULNERABILITY", + "name": "projects/my-project/locations/region-east2/occurrences/75f1086b-456e-4267-92b7-7e687004c1fb", + "noteName": "projects/goog-vulnz/notes/CVE-2016-2781", + "resourceUri": "https://region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "updateTime": "2005-05-15T10:02:43.008086Z", + "vulnerability": { + "cvssScore": 6.5, + "cvssV2": { + "attackComplexity": "ATTACK_COMPLEXITY_LOW", + "attackVector": "ATTACK_VECTOR_LOCAL", + "authentication": "AUTHENTICATION_NONE", + "availabilityImpact": "IMPACT_NONE", + "baseScore": 2.1, + "confidentialityImpact": "IMPACT_NONE", + "integrityImpact": "IMPACT_PARTIAL" + }, + "cvssVersion": "CVSS_VERSION_3", + "cvssv3": { + "attackComplexity": "ATTACK_COMPLEXITY_LOW", + "attackVector": "ATTACK_VECTOR_LOCAL", + "availabilityImpact": "IMPACT_NONE", + "baseScore": 6.5, + "confidentialityImpact": "IMPACT_NONE", + "exploitabilityScore": 2.0, + "impactScore": 4.0, + "integrityImpact": "IMPACT_HIGH", + "privilegesRequired": "PRIVILEGES_REQUIRED_LOW", + "scope": "SCOPE_CHANGED", + "userInteraction": "USER_INTERACTION_NONE" + }, + "effectiveSeverity": "LOW", + "longDescription": "NIST vectors: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N", + "packageIssue": [ + { + "affectedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "affectedPackage": "some_package", + "affectedVersion": { + "fullName": "9.1-1", + "kind": "NORMAL", + "name": "9.1", + "revision": "1" + }, + "effectiveSeverity": "LOW", + "fileLocation": [ + { + "filePath": "filePath", + "layerDetails": { + "baseImages": [ + { + "repository": "someOS" + }, + { + "repository": "amd64/someOS" + }, + { + "repository": "library/someOS" + } + ], + "chainId": "sha256:dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "command": "command", + "diffId": "dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy" + } + } + ], + "fixedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "fixedPackage": "some_package", + "fixedVersion": { + "kind": "MAXIMUM" + }, + "packageType": "OS" + } + ], + "relatedUrls": [ + { + "label": "More Info", + "url": "https://security-tracker.someOS.org/tracker/CVE-2016-2781" + } + ], + "severity": "MEDIUM", + "shortDescription": "CVE-2016-2781" + } + }, + { + "createTime": "2005-05-15T10:02:42.924778Z", + "kind": "VULNERABILITY", + "name": "projects/my-project/locations/region-east2/occurrences/cf7c61c0-322a-47d0-9b90-2bb76c791f22", + "noteName": "projects/goog-vulnz/notes/CVE-2024-56433", + "resourceUri": "https://region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "updateTime": "2005-05-15T10:02:42.924778Z", + "vulnerability": { + "effectiveSeverity": "LOW", + "packageIssue": [ + { + "affectedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "affectedPackage": "some_package", + "affectedVersion": { + "epoch": 1, + "fullName": "1:4.13+dfsg1-1+deb12u1", + "kind": "NORMAL", + "name": "4.13+dfsg1", + "revision": "1+deb12u1" + }, + "effectiveSeverity": "LOW", + "fileLocation": [ + { + "filePath": "filePath", + "layerDetails": { + "baseImages": [ + { + "repository": "someOS" + }, + { + "repository": "amd64/someOS" + }, + { + "repository": "library/someOS" + } + ], + "chainId": "sha256:dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "command": "command", + "diffId": "dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy" + } + } + ], + "fixedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "fixedPackage": "some_package", + "fixedVersion": { + "kind": "MAXIMUM" + }, + "packageType": "OS" + } + ], + "relatedUrls": [ + { + "label": "More Info", + "url": "https://security-tracker.someOS.org/tracker/CVE-2024-56433" + } + ], + "shortDescription": "CVE-2024-56433" + } + } + ], + "MEDIUM": [ + { + "createTime": "2005-05-15T10:02:42.971526Z", + "kind": "VULNERABILITY", + "name": "projects/my-project/locations/region-east2/occurrences/c656e94d-e929-4714-963a-f2a49aa842a2", + "noteName": "projects/goog-vulnz/notes/CVE-2025-67898", + "resourceUri": "https://region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "updateTime": "2005-05-15T10:02:42.971526Z", + "vulnerability": { + "effectiveSeverity": "MEDIUM", + "packageIssue": [ + { + "affectedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "affectedPackage": "some_package", + "affectedVersion": { + "fullName": "4.18.0", + "kind": "NORMAL", + "name": "4.18.0" + }, + "effectiveSeverity": "MEDIUM", + "fileLocation": [ + { + "filePath": "filePath", + "layerDetails": { + "chainId": "sha256:dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "command": "command", + "diffId": "8a271324e30f2db078751809a026839101047220c6154378e87121673ec43fbd", + "index": 13 + } + } + ], + "fixedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "fixedPackage": "some_package", + "fixedVersion": { + "kind": "MAXIMUM" + }, + "packageType": "NPM" + } + ], + "relatedUrls": [ + { + "label": "More Info", + "url": "https://github.com/advisories/GHSA-45h5-66jx-r2wf" + } + ], + "shortDescription": "CVE-2025-67898" + } + } + ], + "MINIMAL": [ + { + "createTime": "2005-05-15T10:02:42.850300Z", + "kind": "VULNERABILITY", + "name": "projects/my-project/locations/region-east2/occurrences/0ff600e0-133a-4ca7-8159-f39450534b21", + "noteName": "projects/goog-vulnz/notes/CVE-2018-6829", + "resourceUri": "https://region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "updateTime": "2005-05-15T10:02:42.850300Z", + "vulnerability": { + "cvssScore": 7.5, + "cvssV2": { + "attackComplexity": "ATTACK_COMPLEXITY_LOW", + "attackVector": "ATTACK_VECTOR_NETWORK", + "authentication": "AUTHENTICATION_NONE", + "availabilityImpact": "IMPACT_NONE", + "baseScore": 5.0, + "confidentialityImpact": "IMPACT_PARTIAL", + "integrityImpact": "IMPACT_NONE" + }, + "cvssVersion": "CVSS_VERSION_3", + "cvssv3": { + "attackComplexity": "ATTACK_COMPLEXITY_LOW", + "attackVector": "ATTACK_VECTOR_NETWORK", + "availabilityImpact": "IMPACT_NONE", + "baseScore": 7.5, + "confidentialityImpact": "IMPACT_HIGH", + "exploitabilityScore": 3.9, + "impactScore": 3.6, + "integrityImpact": "IMPACT_NONE", + "privilegesRequired": "PRIVILEGES_REQUIRED_NONE", + "scope": "SCOPE_UNCHANGED", + "userInteraction": "USER_INTERACTION_NONE" + }, + "effectiveSeverity": "MINIMAL", + "longDescription": "NIST vectors: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", + "packageIssue": [ + { + "affectedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "affectedPackage": "some_package", + "affectedVersion": { + "fullName": "1.10.1-3", + "kind": "NORMAL", + "name": "1.10.1", + "revision": "3" + }, + "effectiveSeverity": "MINIMAL", + "fileLocation": [ + { + "filePath": "filePath", + "layerDetails": { + "baseImages": [ + { + "repository": "someOS" + }, + { + "repository": "amd64/someOS" + }, + { + "repository": "library/someOS" + } + ], + "chainId": "sha256:dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "command": "command", + "diffId": "dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy" + } + } + ], + "fixedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "fixedPackage": "some_package", + "fixedVersion": { + "kind": "MAXIMUM" + }, + "packageType": "OS" + } + ], + "relatedUrls": [ + { + "label": "More Info", + "url": "https://security-tracker.someOS.org/tracker/CVE-2018-6829" + } + ], + "severity": "HIGH", + "shortDescription": "CVE-2018-6829" + } + }, + { + "createTime": "2005-05-15T10:02:42.883991Z", + "kind": "VULNERABILITY", + "name": "projects/my-project/locations/region-east2/occurrences/1b959538-c9f3-4a79-aa67-4c9483c04ca0", + "noteName": "projects/goog-vulnz/notes/CVE-2023-31439", + "resourceUri": "https://region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "updateTime": "2005-05-15T10:02:42.883991Z", + "vulnerability": { + "cvssScore": 5.3, + "cvssVersion": "CVSS_VERSION_3", + "cvssv3": { + "attackComplexity": "ATTACK_COMPLEXITY_LOW", + "attackVector": "ATTACK_VECTOR_NETWORK", + "availabilityImpact": "IMPACT_NONE", + "baseScore": 5.3, + "confidentialityImpact": "IMPACT_NONE", + "exploitabilityScore": 3.9, + "impactScore": 1.4, + "integrityImpact": "IMPACT_LOW", + "privilegesRequired": "PRIVILEGES_REQUIRED_NONE", + "scope": "SCOPE_UNCHANGED", + "userInteraction": "USER_INTERACTION_NONE" + }, + "effectiveSeverity": "MINIMAL", + "longDescription": "NIST vectors: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", + "packageIssue": [ + { + "affectedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "affectedPackage": "some_package", + "affectedVersion": { + "fullName": "252.39-1~deb12u1", + "kind": "NORMAL", + "name": "252.39", + "revision": "1~deb12u1" + }, + "effectiveSeverity": "MINIMAL", + "fileLocation": [ + { + "filePath": "filePath", + "layerDetails": { + "baseImages": [ + { + "repository": "someOS" + }, + { + "repository": "amd64/someOS" + }, + { + "repository": "library/someOS" + } + ], + "chainId": "sha256:dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "command": "command", + "diffId": "dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy" + } + } + ], + "fixedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "fixedPackage": "some_package", + "fixedVersion": { + "kind": "MAXIMUM" + }, + "packageType": "OS" + } + ], + "relatedUrls": [ + { + "label": "More Info", + "url": "https://security-tracker.someOS.org/tracker/CVE-2023-31439" + }, + { + "label": "More Info", + "url": "https://security-tracker.someOS.org/tracker/CVE-2023-31439 | https://nvd.nist.gov/vuln/detail/CVE-2023-31439 | http://people.ubuntu.com/~ubuntu-security/cve/CVE-2023-31439 | https://alas.aws.amazon.com/AL2/ALAS-2024-2636.html | https://packages.cgr.dev/chainguard/osv/CGA-mhjv-hvjp-g2g6.json | https://alas.aws.amazon.com/AL2/ALAS2-2024-2636.html" + } + ], + "severity": "MEDIUM", + "shortDescription": "CVE-2023-31439" + } + } + ], + "None": [ + { + "createTime": "2005-05-15T10:02:42.886881Z", + "kind": "VULNERABILITY", + "name": "projects/my-project/locations/region-east2/occurrences/80cef2d3-e132-44b8-9c3e-a7e612529166", + "noteName": "projects/goog-vulnz/notes/CVE-2025-6020", + "resourceUri": "https://region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "updateTime": "2005-05-15T10:02:42.886881Z", + "vulnerability": { + "packageIssue": [ + { + "affectedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "affectedPackage": "some_package", + "affectedVersion": { + "fullName": "1.5.2-6+deb12u1", + "kind": "NORMAL", + "name": "1.5.2", + "revision": "6+deb12u1" + }, + "fileLocation": [ + { + "filePath": "filePath", + "layerDetails": { + "baseImages": [ + { + "repository": "someOS" + }, + { + "repository": "amd64/someOS" + }, + { + "repository": "library/someOS" + } + ], + "chainId": "sha256:dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "command": "command", + "diffId": "dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy" + } + } + ], + "fixedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "fixedPackage": "some_package", + "fixedVersion": { + "kind": "MAXIMUM" + }, + "packageType": "OS" + } + ], + "relatedUrls": [ + { + "label": "More Info", + "url": "https://security-tracker.someOS.org/tracker/CVE-2025-6020" + } + ], + "shortDescription": "CVE-2025-6020" + } + }, + { + "createTime": "2005-05-15T10:02:42.985531Z", + "kind": "VULNERABILITY", + "name": "projects/my-project/locations/region-east2/occurrences/e6b94e1d-xxxxx-xxxx-xxx-xxxxxxx", + "noteName": "projects/goog-vulnz/notes/CVE-2025-68973", + "resourceUri": "https://region-east2-docker.pkg.dev/my-project/my-image/staging@sha256:33ceexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "updateTime": "2005-05-15T10:02:42.985531Z", + "vulnerability": { + "packageIssue": [ + { + "affectedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "affectedPackage": "some_package", + "affectedVersion": { + "fullName": "2.2.40-1.1+deb12u1", + "kind": "NORMAL", + "name": "2.2.40", + "revision": "1.1+deb12u1" + }, + "fileLocation": [ + { + "filePath": "filePath", + "layerDetails": { + "baseImages": [ + { + "repository": "someOS" + }, + { + "repository": "amd64/someOS" + }, + { + "repository": "library/someOS" + } + ], + "chainId": "sha256:dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy", + "command": "command", + "diffId": "dc6a9xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxtolstoy" + } + } + ], + "fixedCpeUri": "cpe:/o:someOS:someOS_windows:12", + "fixedPackage": "some_package", + "fixedVersion": { + "kind": "MAXIMUM" + }, + "packageType": "OS" + } + ], + "relatedUrls": [ + { + "label": "More Info", + "url": "https://security-tracker.someOS.org/tracker/CVE-2025-68973" + } + ], + "shortDescription": "CVE-2025-68973" + } + } + ] + } + } +} diff --git a/unittests/tools/test_gcloud_artifact_scan_parser.py b/unittests/tools/test_gcloud_artifact_scan_parser.py index 2ae9cacf743..67cc65170e2 100644 --- a/unittests/tools/test_gcloud_artifact_scan_parser.py +++ b/unittests/tools/test_gcloud_artifact_scan_parser.py @@ -18,3 +18,18 @@ def test_parse_file_with_multiple_vuln_has_multiple_findings(self): finding = findings[2] self.assertEqual("projects/goog-vulnz/notes/CVE-2023-29404", finding.title) self.assertEqual("Critical", finding.severity) + + def test_parse_file_artifact_analysis_occurrences_sample(self): + with (get_unit_tests_scans_path("gcloud_artifact_scan") / "artifact-analysis-occurrences-sample.json").open(encoding="utf-8") as testfile: + parser = GCloudArtifactScanParser() + findings = parser.get_findings(testfile, Test()) + self.assertEqual(12, len(findings)) + finding = findings[0] + self.assertEqual("projects/goog-vulnz/notes/CVE-2023-36665", finding.title) + self.assertEqual("Critical", finding.severity) + finding = findings[1] + self.assertEqual("projects/goog-vulnz/notes/CVE-2023-45853", finding.title) + self.assertEqual("Critical", finding.severity) + finding = findings[2] + self.assertEqual("projects/goog-vulnz/notes/CVE-2022-37620", finding.title) + self.assertEqual("High", finding.severity) From 046211a1530b55d4cdc5e161bd546c250aa1b122 Mon Sep 17 00:00:00 2001 From: manuelsommer <47991713+manuel-sommer@users.noreply.github.com> Date: Thu, 8 Jan 2026 22:34:21 +0100 Subject: [PATCH 09/20] :lipstick: Refactor multiple scan results (#14046) --- .../php_security_audit_v2/many_vulns.json | 8541 ++++++++++++++++- ...php_security_audit_v2.0.0_unformatted.json | 270 +- .../scans/veracode_sca/veracode_sca.json | 76 +- .../veracode_sca/veracode_sca_fixed.json | 65 +- 4 files changed, 8948 insertions(+), 4 deletions(-) diff --git a/unittests/scans/php_security_audit_v2/many_vulns.json b/unittests/scans/php_security_audit_v2/many_vulns.json index 576e775a932..c1ef125d913 100644 --- a/unittests/scans/php_security_audit_v2/many_vulns.json +++ b/unittests/scans/php_security_audit_v2/many_vulns.json @@ -1 +1,8540 @@ -{"totals":{"errors":2,"warnings":906,"fixable":0},"files":{"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/page-blog-2.php":{"errors":0,"warnings":21,"messages":[{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":33,"column":17},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":38,"column":60},{"message":"Possible XSS detected with $subtitle on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":38,"column":89},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":46,"column":21},{"message":"Possible XSS detected with $centered_title on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":51,"column":38},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":52,"column":21},{"message":"Possible XSS detected with $subtitle on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":52,"column":47},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":71,"column":25},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":71,"column":55},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":74,"column":29},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":93,"column":26},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":93,"column":60},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":102,"column":52},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":115,"column":70},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":116,"column":67},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":117,"column":67},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":125,"column":37},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":130,"column":49},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":144,"column":53},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":153,"column":82},{"message":"Possible XSS detected with $img_width on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":153,"column":151}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/options.php":{"errors":0,"warnings":10,"messages":[{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":7,"column":49},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":14,"column":27},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":487,"column":9},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":488,"column":9},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":489,"column":9},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":492,"column":9},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":493,"column":9},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":494,"column":9},{"message":"Possible XSS detected with THEME_DOCUMENT_ROOT on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":560,"column":22},{"message":"Possible XSS detected with THEME_DOCUMENT_ROOT on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":571,"column":22}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/slider.inc.php":{"errors":0,"warnings":93,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":4,"column":24},{"message":"Filesystem function pathinfo() detected with dynamic parameter","source":"Security.BadFunctions.FilesystemFunctions.WarnFilesystem","severity":5,"fixable":false,"type":"WARNING","line":8,"column":11},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":18,"column":86},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":79,"column":40},{"message":"Possible XSS detected with $page_urls on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":82,"column":45},{"message":"Possible XSS detected with $page_extra_images on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":83,"column":50},{"message":"Possible XSS detected with $page_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":83,"column":94},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":85,"column":54},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":85,"column":86},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":87,"column":58},{"message":"Possible XSS detected with $page_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":87,"column":72},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":88,"column":62},{"message":"Possible XSS detected with $page_descriptions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":88,"column":88},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":105,"column":62},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":115,"column":40},{"message":"Possible XSS detected with $post_urls on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":118,"column":45},{"message":"Possible XSS detected with $post_extra_images on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":119,"column":50},{"message":"Possible XSS detected with $post_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":119,"column":94},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":121,"column":54},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":121,"column":86},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":123,"column":58},{"message":"Possible XSS detected with $post_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":123,"column":72},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":124,"column":62},{"message":"Possible XSS detected with $post_descriptions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":124,"column":88},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":143,"column":33},{"message":"Possible XSS detected with get_the_ID on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":148,"column":36},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":158,"column":83},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":161,"column":30},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":175,"column":58},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":176,"column":62},{"message":"Possible XSS detected with $portfolio_item_urls on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":179,"column":49},{"message":"Possible XSS detected with $portfolio_item_extra_images on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":180,"column":89},{"message":"Possible XSS detected with $portfolio_item_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":180,"column":147},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":182,"column":72},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":182,"column":118},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":184,"column":76},{"message":"Possible XSS detected with $portfolio_item_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":184,"column":90},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":185,"column":80},{"message":"Possible XSS detected with $portfolio_item_descriptions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":185,"column":106},{"message":"Possible XSS detected with $portfolio_item_urls on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":189,"column":49},{"message":"Possible XSS detected with $portfolio_item_extra_images on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":190,"column":89},{"message":"Possible XSS detected with $portfolio_item_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":190,"column":151},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":192,"column":76},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":192,"column":126},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":194,"column":80},{"message":"Possible XSS detected with $portfolio_item_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":194,"column":94},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":195,"column":84},{"message":"Possible XSS detected with $portfolio_item_descriptions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":195,"column":110},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":210,"column":54},{"message":"Possible XSS detected with $portfolio_item_urls on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":213,"column":49},{"message":"Possible XSS detected with $portfolio_item_extra_images on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":214,"column":54},{"message":"Possible XSS detected with $portfolio_item_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":214,"column":108},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":216,"column":68},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":216,"column":110},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":218,"column":72},{"message":"Possible XSS detected with $portfolio_item_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":218,"column":86},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":219,"column":76},{"message":"Possible XSS detected with $portfolio_item_descriptions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":219,"column":102},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":236,"column":61},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":240,"column":33},{"message":"Possible XSS detected with get_the_ID on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":245,"column":36},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":255,"column":83},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":258,"column":30},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":272,"column":48},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":273,"column":52},{"message":"Possible XSS detected with $post_urls on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":276,"column":49},{"message":"Possible XSS detected with $post_extra_images on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":277,"column":89},{"message":"Possible XSS detected with $post_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":277,"column":137},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":279,"column":62},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":279,"column":98},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":281,"column":66},{"message":"Possible XSS detected with $post_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":281,"column":80},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":282,"column":70},{"message":"Possible XSS detected with $post_descriptions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":282,"column":96},{"message":"Possible XSS detected with $post_urls on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":286,"column":49},{"message":"Possible XSS detected with $post_extra_images on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":287,"column":89},{"message":"Possible XSS detected with $post_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":287,"column":141},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":289,"column":66},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":289,"column":106},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":291,"column":70},{"message":"Possible XSS detected with $post_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":291,"column":84},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":292,"column":74},{"message":"Possible XSS detected with $post_descriptions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":292,"column":100},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":307,"column":44},{"message":"Possible XSS detected with $post_urls on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":310,"column":49},{"message":"Possible XSS detected with $post_extra_images on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":311,"column":54},{"message":"Possible XSS detected with $post_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":311,"column":98},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":313,"column":58},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":313,"column":90},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":315,"column":62},{"message":"Possible XSS detected with $post_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":315,"column":76},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":316,"column":66},{"message":"Possible XSS detected with $post_descriptions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":316,"column":92}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/page-blog-3.php":{"errors":0,"warnings":20,"messages":[{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":34,"column":17},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":39,"column":60},{"message":"Possible XSS detected with $subtitle on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":39,"column":89},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":47,"column":21},{"message":"Possible XSS detected with $centered_title on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":52,"column":38},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":53,"column":21},{"message":"Possible XSS detected with $subtitle on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":53,"column":47},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":72,"column":25},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":72,"column":55},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":75,"column":29},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":96,"column":26},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":96,"column":60},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":103,"column":52},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":112,"column":37},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":117,"column":49},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":131,"column":53},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":139,"column":82},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":152,"column":70},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":153,"column":67},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":154,"column":67}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/page-blog-5.php":{"errors":0,"warnings":21,"messages":[{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":35,"column":17},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":40,"column":60},{"message":"Possible XSS detected with $subtitle on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":40,"column":89},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":48,"column":21},{"message":"Possible XSS detected with $centered_title on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":53,"column":38},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":54,"column":21},{"message":"Possible XSS detected with $subtitle on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":54,"column":47},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":73,"column":25},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":73,"column":55},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":76,"column":29},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":97,"column":26},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":97,"column":60},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":108,"column":70},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":109,"column":67},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":110,"column":67},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":118,"column":37},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":123,"column":49},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":137,"column":53},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":146,"column":82},{"message":"Possible XSS detected with $img_width on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":146,"column":151},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":153,"column":52}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/footer.php":{"errors":0,"warnings":20,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":5,"column":55},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":6,"column":55},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":9,"column":13},{"message":"Filesystem function pathinfo() detected with dynamic parameter","source":"Security.BadFunctions.FilesystemFunctions.WarnFilesystem","severity":5,"fixable":false,"type":"WARNING","line":12,"column":9},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":15,"column":20},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":84,"column":13},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":118,"column":21},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":132,"column":15},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":132,"column":41},{"message":"Possible XSS detected with $bg_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":135,"column":49},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":138,"column":15},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":138,"column":41},{"message":"Possible XSS detected with $bg_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":141,"column":31},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":147,"column":77},{"message":"Possible XSS detected with of_get_option on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":170,"column":12},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":172,"column":57},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":243,"column":52},{"message":"Possible XSS detected with BRANKIC_ROOT on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":247,"column":48},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":302,"column":57},{"message":"Possible XSS detected with of_get_option on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":307,"column":12}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/content-chat.php":{"errors":0,"warnings":10,"messages":[{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":10,"column":115},{"message":"Possible XSS detected with get_post_meta on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":10,"column":144},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":19,"column":76},{"message":"Possible XSS detected with $all_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":26,"column":49},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":32,"column":77},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":51,"column":17},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":56,"column":29},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":70,"column":33},{"message":"Possible XSS detected with $additional_html on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":74,"column":6},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":77,"column":52}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/page-blog-6.php":{"errors":0,"warnings":21,"messages":[{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":34,"column":17},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":39,"column":60},{"message":"Possible XSS detected with $subtitle on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":39,"column":89},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":47,"column":21},{"message":"Possible XSS detected with $centered_title on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":52,"column":38},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":53,"column":21},{"message":"Possible XSS detected with $subtitle on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":53,"column":47},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":72,"column":25},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":72,"column":55},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":75,"column":29},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":96,"column":26},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":96,"column":60},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":107,"column":70},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":108,"column":67},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":109,"column":67},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":117,"column":37},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":122,"column":49},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":136,"column":53},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":145,"column":82},{"message":"Possible XSS detected with $img_width on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":145,"column":151},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":152,"column":52}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/content-gallery.php":{"errors":0,"warnings":14,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":8,"column":26},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":8,"column":60},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":10,"column":29},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":13,"column":74},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":17,"column":52},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":30,"column":77},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":31,"column":74},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":32,"column":74},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":40,"column":37},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":45,"column":49},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":59,"column":53},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":68,"column":60},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":69,"column":50},{"message":"Possible XSS detected with $img_width on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":69,"column":117}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/single.php":{"errors":0,"warnings":21,"messages":[{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":5,"column":74},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":7,"column":70},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":12,"column":30},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":13,"column":30},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":14,"column":30},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":15,"column":30},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":16,"column":30},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":17,"column":30},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":23,"column":13},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":24,"column":13},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":25,"column":13},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":26,"column":13},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":27,"column":13},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":28,"column":13},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":31,"column":13},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":33,"column":30},{"message":"Possible XSS detected with $inner_content_class on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":36,"column":30},{"message":"Possible XSS detected with $inner_content_class on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":42,"column":45},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":52,"column":13},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":54,"column":53},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":72,"column":32}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/slider.inc.3.php":{"errors":0,"warnings":13,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":4,"column":24},{"message":"Filesystem function pathinfo() detected with dynamic parameter","source":"Security.BadFunctions.FilesystemFunctions.WarnFilesystem","severity":5,"fixable":false,"type":"WARNING","line":8,"column":11},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":18,"column":86},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":48,"column":40},{"message":"Possible XSS detected with $post_urls on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":51,"column":45},{"message":"Possible XSS detected with $post_extra_images on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":52,"column":50},{"message":"Possible XSS detected with $post_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":52,"column":94},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":54,"column":54},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":54,"column":86},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":56,"column":58},{"message":"Possible XSS detected with $post_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":56,"column":72},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":57,"column":62},{"message":"Possible XSS detected with $post_descriptions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":57,"column":88}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/content-aside.php":{"errors":0,"warnings":14,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":7,"column":26},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":7,"column":60},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":9,"column":29},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":12,"column":74},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":18,"column":52},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":29,"column":37},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":34,"column":49},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":48,"column":53},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":57,"column":60},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":58,"column":50},{"message":"Possible XSS detected with $img_width on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":58,"column":117},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":70,"column":77},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":71,"column":74},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":72,"column":74}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/page-blog-1.php":{"errors":0,"warnings":21,"messages":[{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":34,"column":17},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":39,"column":60},{"message":"Possible XSS detected with $subtitle on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":39,"column":89},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":47,"column":21},{"message":"Possible XSS detected with $centered_title on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":52,"column":38},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":53,"column":21},{"message":"Possible XSS detected with $subtitle on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":53,"column":47},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":72,"column":25},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":72,"column":55},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":75,"column":29},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":96,"column":26},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":96,"column":60},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":103,"column":52},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":114,"column":37},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":119,"column":49},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":133,"column":53},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":142,"column":82},{"message":"Possible XSS detected with $img_width on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":142,"column":151},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":155,"column":70},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":156,"column":67},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":157,"column":67}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/images\/single-portfolio_item.php":{"errors":0,"warnings":12,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":42,"column":70},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":61,"column":40},{"message":"Possible XSS detected with $page_urls on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":65,"column":45},{"message":"Possible XSS detected with $page_extra_images on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":66,"column":50},{"message":"Possible XSS detected with $page_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":66,"column":94},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":68,"column":54},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":68,"column":86},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":70,"column":58},{"message":"Possible XSS detected with $page_captions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":70,"column":83},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":71,"column":62},{"message":"Possible XSS detected with $page_descriptions on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":71,"column":90},{"message":"Possible RFI detected with $include_file on include","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":104,"column":13}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/page-contact-2.php":{"errors":0,"warnings":20,"messages":[{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":39,"column":72},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":44,"column":115},{"message":"Possible XSS detected with get_post_meta on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":44,"column":144},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":53,"column":21},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":57,"column":25},{"message":"Possible XSS detected with of_get_option on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":68,"column":65},{"message":"Possible XSS detected with of_get_option on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":68,"column":146},{"message":"Possible XSS detected with get_post_meta on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":75,"column":46},{"message":"Possible XSS detected with get_post_meta on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":76,"column":31},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":91,"column":123},{"message":"Possible XSS detected with get_post_meta on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":91,"column":152},{"message":"Possible XSS detected with of_get_option on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":105,"column":24},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":115,"column":53},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":120,"column":16},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":121,"column":17},{"message":"Possible XSS detected with recaptcha_get_html on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":129,"column":19},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":179,"column":73},{"message":"Possible XSS detected with BRANKIC_ROOT on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":197,"column":38},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":219,"column":77},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":312,"column":77}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/content-audio.php":{"errors":0,"warnings":14,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":8,"column":26},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":8,"column":60},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":10,"column":29},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":13,"column":74},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":21,"column":77},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":22,"column":74},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":23,"column":74},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":31,"column":37},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":36,"column":49},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":50,"column":53},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":59,"column":60},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":60,"column":50},{"message":"Possible XSS detected with $img_width on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":60,"column":117},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":68,"column":52}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/page-contact.php":{"errors":0,"warnings":18,"messages":[{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":45,"column":72},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":50,"column":115},{"message":"Possible XSS detected with get_post_meta on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":50,"column":144},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":59,"column":76},{"message":"Possible XSS detected with get_post_meta on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":64,"column":38},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":65,"column":76},{"message":"Possible XSS detected with get_post_meta on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":65,"column":102},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":74,"column":21},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":77,"column":25},{"message":"Possible XSS detected with of_get_option on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":93,"column":24},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":103,"column":53},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":108,"column":16},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":109,"column":17},{"message":"Possible XSS detected with recaptcha_get_html on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":117,"column":19},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":167,"column":73},{"message":"Possible XSS detected with BRANKIC_ROOT on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":185,"column":38},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":205,"column":77},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":234,"column":77}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/single-portfolio_item.php":{"errors":0,"warnings":11,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":5,"column":70},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":17,"column":115},{"message":"Possible XSS detected with get_post_meta on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":17,"column":144},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":26,"column":76},{"message":"Possible XSS detected with $all_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":33,"column":49},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":39,"column":77},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":58,"column":17},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":63,"column":29},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":77,"column":33},{"message":"Possible XSS detected with $additional_html on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":81,"column":6},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":84,"column":52}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/functions.php":{"errors":0,"warnings":11,"messages":[{"message":"Possible RFI detected with BRANKIC_INCLUDES on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":35,"column":15},{"message":"Possible RFI detected with BRANKIC_INCLUDES on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":36,"column":15},{"message":"Possible RFI detected with BRANKIC_INCLUDES on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":37,"column":15},{"message":"Possible RFI detected with BRANKIC_INCLUDES on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":38,"column":15},{"message":"Possible RFI detected with BRANKIC_INCLUDES on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":42,"column":15},{"message":"Possible RFI detected with BRANKIC_INCLUDES on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":43,"column":15},{"message":"Possible RFI detected with BRANKIC_INCLUDES on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":44,"column":15},{"message":"Possible RFI detected with BRANKIC_INCLUDES on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":45,"column":15},{"message":"Possible RFI detected with BRANKIC_INCLUDES on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":46,"column":15},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":60,"column":51},{"message":"Possible RFI detected with TEMPLATEPATH on include_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":76,"column":15}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/page-blog-4.php":{"errors":0,"warnings":21,"messages":[{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":34,"column":17},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":39,"column":60},{"message":"Possible XSS detected with $subtitle on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":39,"column":89},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":47,"column":21},{"message":"Possible XSS detected with $centered_title on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":52,"column":38},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":53,"column":21},{"message":"Possible XSS detected with $subtitle on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":53,"column":47},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":72,"column":25},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":72,"column":55},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":75,"column":29},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":96,"column":26},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":96,"column":60},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":105,"column":37},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":110,"column":49},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":124,"column":53},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":133,"column":82},{"message":"Possible XSS detected with $img_width on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":133,"column":151},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":140,"column":52},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":153,"column":70},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":154,"column":67},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":155,"column":67}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/content-quote.php":{"errors":0,"warnings":12,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":8,"column":26},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":8,"column":60},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":10,"column":29},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":15,"column":52},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":24,"column":37},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":29,"column":49},{"message":"Possible XSS detected with $video_link on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":43,"column":53},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":51,"column":60},{"message":"Possible XSS detected with $featured_image on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":52,"column":50},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":66,"column":77},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":67,"column":74},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":68,"column":74}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/share.inc.php":{"errors":0,"warnings":1,"messages":[{"message":"No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.","source":"Internal.NoCodeFound","severity":5,"fixable":false,"type":"WARNING","line":1,"column":1}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/comments.php":{"errors":1,"warnings":3,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":4,"column":60},{"message":"Filesystem function basename() detected with dynamic parameter directly from user input","source":"Security.BadFunctions.FilesystemFunctions.ErrFilesystem","severity":5,"fixable":false,"type":"ERROR","line":4,"column":63},{"message":"Possible XSS detected with get_avatar on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":71,"column":40},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":85,"column":38}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/sidebar.php":{"errors":0,"warnings":1,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":5,"column":22}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/bra_shortcodes_map.php":{"errors":0,"warnings":1,"messages":[{"message":"No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.","source":"Internal.NoCodeFound","severity":5,"fixable":false,"type":"WARNING","line":1,"column":1}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/bra_shortcodes_dropcaps.php":{"errors":0,"warnings":1,"messages":[{"message":"No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.","source":"Internal.NoCodeFound","severity":5,"fixable":false,"type":"WARNING","line":1,"column":1}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/ajax.recaptcha.php":{"errors":0,"warnings":5,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":9,"column":16},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":10,"column":17},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":19,"column":37},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":40,"column":29},{"message":"Possible XSS detected with . on die","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":58,"column":78}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/bra_shortcodes_centered_title.php":{"errors":0,"warnings":1,"messages":[{"message":"No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.","source":"Internal.NoCodeFound","severity":5,"fixable":false,"type":"WARNING","line":1,"column":1}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/inc2.0\/class-tgm-plugin-activation.php":{"errors":0,"warnings":46,"messages":[{"message":"Function handling function function_exists() detected with dynamic parameter","source":"Security.BadFunctions.FunctionHandlingFunctions.WarnFunctionHandling","severity":5,"fixable":false,"type":"WARNING","line":120,"column":5},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":431,"column":59},{"message":"Possible RFI detected with ABSPATH on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":432,"column":18},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":517,"column":75},{"message":"Possible XSS detected with esc_html on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":524,"column":20},{"message":"Possible XSS detected with $this on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":530,"column":72},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":565,"column":123},{"message":"Possible RFI detected with ABSPATH on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":597,"column":18},{"message":"Possible RFI detected with ABSPATH on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":598,"column":18},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":601,"column":47},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":623,"column":26},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":641,"column":50},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":642,"column":27},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":646,"column":18},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":654,"column":27},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":669,"column":17},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":676,"column":129},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":690,"column":49},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":691,"column":26},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":698,"column":52},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":1002,"column":16},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":1026,"column":65},{"message":"Possible RFI detected with ABSPATH on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":1141,"column":16},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":1282,"column":21},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":1313,"column":16},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":1526,"column":14},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":1526,"column":31},{"message":"Function array_map() that supports callback detected","source":"Security.BadFunctions.CallbackFunctions.WarnCallbackFunctions","severity":5,"fixable":false,"type":"WARNING","line":1582,"column":24},{"message":"Function array_map() that supports callback detected","source":"Security.BadFunctions.CallbackFunctions.WarnCallbackFunctions","severity":5,"fixable":false,"type":"WARNING","line":1583,"column":24},{"message":"Function array_map() that supports callback detected","source":"Security.BadFunctions.CallbackFunctions.WarnCallbackFunctions","severity":5,"fixable":false,"type":"WARNING","line":1584,"column":24},{"message":"Possible RFI detected with ABSPATH on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":1611,"column":18},{"message":"Possible RFI detected with ABSPATH on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":1612,"column":18},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":1634,"column":63},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":1649,"column":18},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":1694,"column":49},{"message":"Possible RFI detected with ABSPATH on require_once","source":"Security.BadFunctions.EasyRFI.WarnEasyRFI","severity":5,"fixable":false,"type":"WARNING","line":1746,"column":15},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":1905,"column":35},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":2135,"column":62},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":2136,"column":66},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":2159,"column":37},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":2161,"column":37},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":2163,"column":64},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":2168,"column":38},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":2169,"column":63},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":2195,"column":27},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":2210,"column":17}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/bra_shortcodes_sliding_graph_bar.php":{"errors":0,"warnings":1,"messages":[{"message":"No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.","source":"Internal.NoCodeFound","severity":5,"fixable":false,"type":"WARNING","line":1,"column":1}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/bra_create_portfolio_select.php":{"errors":0,"warnings":4,"messages":[{"message":"Filesystem function fopen() detected with dynamic parameter","source":"Security.BadFunctions.FilesystemFunctions.WarnFilesystem","severity":5,"fixable":false,"type":"WARNING","line":6,"column":7},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":8,"column":76},{"message":"Filesystem function fwrite() detected with dynamic parameter","source":"Security.BadFunctions.FilesystemFunctions.WarnFilesystem","severity":5,"fixable":false,"type":"WARNING","line":45,"column":1},{"message":"Filesystem function fclose() detected with dynamic parameter","source":"Security.BadFunctions.FilesystemFunctions.WarnFilesystem","severity":5,"fixable":false,"type":"WARNING","line":46,"column":1}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/bra_shortcodes_toggle.php":{"errors":0,"warnings":1,"messages":[{"message":"No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.","source":"Internal.NoCodeFound","severity":5,"fixable":false,"type":"WARNING","line":1,"column":1}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/ambrosite-post-link-plus.php":{"errors":0,"warnings":18,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":36,"column":23},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":38,"column":23},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":59,"column":17},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":59,"column":42},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":101,"column":23},{"message":"Function array_map() that supports callback detected","source":"Security.BadFunctions.CallbackFunctions.WarnCallbackFunctions","severity":5,"fixable":false,"type":"WARNING","line":121,"column":28},{"message":"Function array_map() that supports callback detected","source":"Security.BadFunctions.CallbackFunctions.WarnCallbackFunctions","severity":5,"fixable":false,"type":"WARNING","line":142,"column":28},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":152,"column":40},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":152,"column":70},{"message":"Function array_map() that supports callback detected","source":"Security.BadFunctions.CallbackFunctions.WarnCallbackFunctions","severity":5,"fixable":false,"type":"WARNING","line":157,"column":22},{"message":"Function array_map() that supports callback detected","source":"Security.BadFunctions.CallbackFunctions.WarnCallbackFunctions","severity":5,"fixable":false,"type":"WARNING","line":163,"column":22},{"message":"Crypto function md5 used.","source":"Security.BadFunctions.CryptoFunctions.WarnCryptoFunc","severity":5,"fixable":false,"type":"WARNING","line":195,"column":35},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":283,"column":36},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":283,"column":85},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":288,"column":26},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":342,"column":24},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":342,"column":54},{"message":"Possible XSS detected with apply_filters on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":389,"column":7}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/bra_shortcodes_photostream.php":{"errors":0,"warnings":1,"messages":[{"message":"No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.","source":"Internal.NoCodeFound","severity":5,"fixable":false,"type":"WARNING","line":1,"column":1}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/bra_shortcodes_blockquotes.php":{"errors":0,"warnings":1,"messages":[{"message":"No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.","source":"Internal.NoCodeFound","severity":5,"fixable":false,"type":"WARNING","line":1,"column":1}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/bra_shortcodes_team_member.php":{"errors":0,"warnings":1,"messages":[{"message":"No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.","source":"Internal.NoCodeFound","severity":5,"fixable":false,"type":"WARNING","line":1,"column":1}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/bra_admin_1.php":{"errors":0,"warnings":4,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":37,"column":22},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":45,"column":46},{"message":"Possible XSS detected with $page_title on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":66,"column":16},{"message":"Possible XSS detected with $menu_slug on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":68,"column":41}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/recaptchalib.php":{"errors":0,"warnings":23,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":81,"column":19},{"message":"Filesystem function fwrite() detected with dynamic parameter","source":"Security.BadFunctions.FilesystemFunctions.WarnFilesystem","severity":5,"fixable":false,"type":"WARNING","line":85,"column":9},{"message":"Filesystem function feof() detected with dynamic parameter","source":"Security.BadFunctions.FilesystemFunctions.WarnFilesystem","severity":5,"fixable":false,"type":"WARNING","line":87,"column":18},{"message":"Filesystem function fgets() detected with dynamic parameter","source":"Security.BadFunctions.FilesystemFunctions.WarnFilesystem","severity":5,"fixable":false,"type":"WARNING","line":88,"column":30},{"message":"Filesystem function fclose() detected with dynamic parameter","source":"Security.BadFunctions.FilesystemFunctions.WarnFilesystem","severity":5,"fixable":false,"type":"WARNING","line":89,"column":9},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":109,"column":14},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":109,"column":33},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":155,"column":18},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":155,"column":38},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":159,"column":16},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":159,"column":37},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":166,"column":24},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":166,"column":54},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":166,"column":72},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":166,"column":101},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":185,"column":33},{"message":"Crypto function mcrypt_encrypt used.","source":"Security.BadFunctions.CryptoFunctions.WarnCryptoFunc","severity":5,"fixable":false,"type":"WARNING","line":222,"column":9},{"message":"Crypto function base64_encode used.","source":"Security.BadFunctions.CryptoFunctions.WarnCryptoFunc","severity":5,"fixable":false,"type":"WARNING","line":227,"column":15},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":232,"column":14},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":232,"column":31},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":232,"column":51},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":232,"column":69},{"message":"Possible XSS detected with . on die","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":233,"column":88}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/bra_admin_3.php":{"errors":0,"warnings":4,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":28,"column":22},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":38,"column":46},{"message":"Possible XSS detected with $page_title_3 on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":62,"column":16},{"message":"Possible XSS detected with $menu_slug_3 on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":64,"column":41}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/bra_pagenavi.php":{"errors":0,"warnings":19,"messages":[{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":66,"column":30},{"message":"You are using the comparison operator \"!=\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":78,"column":32},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":88,"column":68},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":91,"column":36},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":94,"column":34},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":96,"column":24},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":98,"column":37},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":103,"column":13},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":105,"column":38},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":108,"column":25},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":114,"column":37},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":116,"column":24},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":120,"column":27},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":121,"column":106},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":124,"column":20},{"message":"You are using the comparison operator \"==\" that converts type and may cause unintended results.","source":"Security.Misc.TypeJuggle.TypeJuggle","severity":5,"fixable":false,"type":"WARNING","line":127,"column":13},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":129,"column":30},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":132,"column":30},{"message":"Possible XSS detected with . on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":139,"column":17}]},"\/home\/xcvb\/xfgkfhkhlj\/bigbangwp\/includes\/bra_shortcodes_portfolio.php":{"errors":0,"warnings":2,"messages":[{"message":"Possible XSS detected with $select on echo","source":"Security.BadFunctions.EasyXSS.EasyXSSwarn","severity":5,"fixable":false,"type":"WARNING","line":42,"column":7},{"message":"Possible XSS detected with \"\" on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 52, + "column": 8 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/bra_custom_fields.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/bra_shortcodes_icon_boxes.php": { + "errors": 0, + "warnings": 8, + "messages": [ + { + "message": "Possible XSS detected with $real_icon_url on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 35, + "column": 39 + }, + { + "message": "Possible XSS detected with $icon_url on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 35, + "column": 70 + }, + { + "message": "Possible XSS detected with $real_icon_url on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 78, + "column": 39 + }, + { + "message": "Possible XSS detected with $icon_url on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 78, + "column": 70 + }, + { + "message": "Possible XSS detected with $real_icon_url on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 121, + "column": 39 + }, + { + "message": "Possible XSS detected with $icon_url on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 121, + "column": 70 + }, + { + "message": "Possible XSS detected with $real_icon_url on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 164, + "column": 39 + }, + { + "message": "Possible XSS detected with $icon_url on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 164, + "column": 70 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/bra_shortcodes_highlights.php": { + "errors": 0, + "warnings": 1, + "messages": [ + { + "message": "No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.", + "source": "Internal.NoCodeFound", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 1, + "column": 1 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/bra_admin_2.php": { + "errors": 0, + "warnings": 4, + "messages": [ + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 28, + "column": 22 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 38, + "column": 46 + }, + { + "message": "Possible XSS detected with $page_title_2 on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 62, + "column": 16 + }, + { + "message": "Possible XSS detected with $menu_slug_2 on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 64, + "column": 41 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/bra_shortcodes_divider.php": { + "errors": 0, + "warnings": 1, + "messages": [ + { + "message": "No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.", + "source": "Internal.NoCodeFound", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 1, + "column": 1 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/bra_shortcodes_buttons.php": { + "errors": 0, + "warnings": 1, + "messages": [ + { + "message": "No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.", + "source": "Internal.NoCodeFound", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 1, + "column": 1 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/bra_shortcodes_grid.php": { + "errors": 0, + "warnings": 1, + "messages": [ + { + "message": "No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.", + "source": "Internal.NoCodeFound", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 1, + "column": 1 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/bra_theme_functions.php": { + "errors": 0, + "warnings": 37, + "messages": [ + { + "message": "Possible XSS detected with \" $separator \" on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 17, + "column": 14 + }, + { + "message": "Dynamic usage of preg_replace, please check manually for /e modifier or user input.", + "source": "Security.BadFunctions.PregReplace.PregReplaceDyn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 40, + "column": 23 + }, + { + "message": "Possible XSS detected with $only_post_text on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 43, + "column": 21 + }, + { + "message": "Dynamic usage of preg_replace, please check manually for /e modifier or user input.", + "source": "Security.BadFunctions.PregReplace.PregReplaceDyn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 49, + "column": 8 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 58, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 67, + "column": 90 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 70, + "column": 40 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 71, + "column": 40 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 133, + "column": 21 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 161, + "column": 26 + }, + { + "message": "Weird usage of preg_replace, please check manually for /e modifier.", + "source": "Security.BadFunctions.PregReplace.PregReplaceWeird", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 240, + "column": 20 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 252, + "column": 35 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 256, + "column": 36 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 437, + "column": 29 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 438, + "column": 29 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 441, + "column": 17 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 444, + "column": 29 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 466, + "column": 57 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 543, + "column": 33 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 545, + "column": 46 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 550, + "column": 46 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 558, + "column": 55 + }, + { + "message": "Possible XSS detected with $bra_contact_page_field_title on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 559, + "column": 43 + }, + { + "message": "Possible XSS detected with $required on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 559, + "column": 97 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 561, + "column": 49 + }, + { + "message": "Possible XSS detected with $field_name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 564, + "column": 45 + }, + { + "message": "Possible XSS detected with $required_class on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 564, + "column": 92 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 570, + "column": 49 + }, + { + "message": "Possible XSS detected with $field_name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 573, + "column": 48 + }, + { + "message": "Possible XSS detected with $required_class on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 573, + "column": 103 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 579, + "column": 49 + }, + { + "message": "Possible XSS detected with $field_name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 583, + "column": 46 + }, + { + "message": "Possible XSS detected with $required_class on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 583, + "column": 81 + }, + { + "message": "Possible XSS detected with $option on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 589, + "column": 42 + }, + { + "message": "Dynamic usage of preg_replace, please check manually for /e modifier or user input.", + "source": "Security.BadFunctions.PregReplace.PregReplaceDyn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 609, + "column": 14 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 667, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 667, + "column": 56 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/bra_admin_functions.php": { + "errors": 0, + "warnings": 24, + "messages": [ + { + "message": "Possible XSS detected with . on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 14, + "column": 53 + }, + { + "message": "Possible XSS detected with . on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 44, + "column": 38 + }, + { + "message": "Possible XSS detected with . on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 45, + "column": 30 + }, + { + "message": "Possible XSS detected with . on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 59, + "column": 38 + }, + { + "message": "Possible XSS detected with . on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 60, + "column": 30 + }, + { + "message": "Possible XSS detected with . on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 70, + "column": 42 + }, + { + "message": "Possible XSS detected with . on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 71, + "column": 34 + }, + { + "message": "Possible XSS detected with get_the_term_list on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 105, + "column": 14 + }, + { + "message": "Possible XSS detected with the_post_thumbnail on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 109, + "column": 14 + }, + { + "message": "Possible XSS detected with the_post_thumbnail on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 125, + "column": 14 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 174, + "column": 16 + }, + { + "message": "Possible XSS detected with $show on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 177, + "column": 21 + }, + { + "message": "Possible XSS detected with $html on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 189, + "column": 10 + }, + { + "message": "Possible XSS detected with $html on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 204, + "column": 10 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 212, + "column": 19 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 212, + "column": 44 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 217, + "column": 18 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 221, + "column": 23 + }, + { + "message": "Possible XSS detected with $html on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 232, + "column": 10 + }, + { + "message": "Possible XSS detected with $html on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 262, + "column": 10 + }, + { + "message": "Possible XSS detected with $html on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 270, + "column": 10 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 299, + "column": 47 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 299, + "column": 104 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 299, + "column": 172 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/shortcodes_portfolio.php": { + "errors": 0, + "warnings": 67, + "messages": [ + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 11, + "column": 32 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 13, + "column": 34 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 16, + "column": 47 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 16, + "column": 68 + }, + { + "message": "Possible XSS detected with $field_ on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 16, + "column": 91 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 17, + "column": 78 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 17, + "column": 99 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 17, + "column": 128 + }, + { + "message": "Possible XSS detected with $default on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 17, + "column": 158 + }, + { + "message": "Possible XSS detected with $description on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 18, + "column": 27 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 23, + "column": 47 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 23, + "column": 68 + }, + { + "message": "Possible XSS detected with $field_ on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 23, + "column": 91 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 24, + "column": 77 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 24, + "column": 98 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 24, + "column": 127 + }, + { + "message": "Possible XSS detected with $default on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 24, + "column": 157 + }, + { + "message": "Possible XSS detected with $description on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 25, + "column": 27 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 30, + "column": 47 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 30, + "column": 68 + }, + { + "message": "Possible XSS detected with $field_ on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 30, + "column": 91 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 32, + "column": 64 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 32, + "column": 85 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 32, + "column": 114 + }, + { + "message": "Possible XSS detected with $term_id on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 45, + "column": 31 + }, + { + "message": "Possible XSS detected with $term_name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 45, + "column": 56 + }, + { + "message": "Possible XSS detected with $term_id_2 on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 61, + "column": 31 + }, + { + "message": "Possible XSS detected with $term_name_2 on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 61, + "column": 58 + }, + { + "message": "Possible XSS detected with $description on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 68, + "column": 31 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 73, + "column": 47 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 73, + "column": 68 + }, + { + "message": "Possible XSS detected with $field_ on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 73, + "column": 91 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 75, + "column": 64 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 75, + "column": 85 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 75, + "column": 114 + }, + { + "message": "Possible XSS detected with $description on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 82, + "column": 31 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 87, + "column": 47 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 87, + "column": 68 + }, + { + "message": "Possible XSS detected with $field_ on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 87, + "column": 91 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 89, + "column": 64 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 89, + "column": 85 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 89, + "column": 114 + }, + { + "message": "Possible XSS detected with $description on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 97, + "column": 31 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 102, + "column": 47 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 102, + "column": 68 + }, + { + "message": "Possible XSS detected with $field_ on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 102, + "column": 91 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 104, + "column": 64 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 104, + "column": 85 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 104, + "column": 114 + }, + { + "message": "Possible XSS detected with $description on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 113, + "column": 31 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 118, + "column": 47 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 118, + "column": 68 + }, + { + "message": "Possible XSS detected with $field_ on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 118, + "column": 91 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 120, + "column": 64 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 120, + "column": 85 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 120, + "column": 114 + }, + { + "message": "Possible XSS detected with $description on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 127, + "column": 31 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 132, + "column": 47 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 132, + "column": 68 + }, + { + "message": "Possible XSS detected with $field_ on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 132, + "column": 91 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 133, + "column": 77 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 133, + "column": 98 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 133, + "column": 127 + }, + { + "message": "Possible XSS detected with $default on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 133, + "column": 157 + }, + { + "message": "Possible XSS detected with $description on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 134, + "column": 27 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 140, + "column": 49 + }, + { + "message": "Possible XSS detected with $submit on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 140, + "column": 108 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/bra_shortcodes_list.php": { + "errors": 0, + "warnings": 1, + "messages": [ + { + "message": "No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.", + "source": "Internal.NoCodeFound", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 1, + "column": 1 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/shortcodes_template.php": { + "errors": 0, + "warnings": 22, + "messages": [ + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 14, + "column": 32 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 16, + "column": 34 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 26, + "column": 15 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 30, + "column": 47 + }, + { + "message": "Possible XSS detected with $field_ on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 30, + "column": 68 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 30, + "column": 92 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 31, + "column": 78 + }, + { + "message": "Possible XSS detected with $field_ on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 31, + "column": 99 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 31, + "column": 129 + }, + { + "message": "Possible XSS detected with $default on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 31, + "column": 159 + }, + { + "message": "Possible XSS detected with $description on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 32, + "column": 27 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 36, + "column": 15 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 40, + "column": 47 + }, + { + "message": "Possible XSS detected with $field_ on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 40, + "column": 68 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 40, + "column": 92 + }, + { + "message": "Possible XSS detected with $field on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 41, + "column": 60 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 41, + "column": 98 + }, + { + "message": "Possible XSS detected with $field_ on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 41, + "column": 119 + }, + { + "message": "Possible XSS detected with $default on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 41, + "column": 143 + }, + { + "message": "Possible XSS detected with $description on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 43, + "column": 27 + }, + { + "message": "Possible XSS detected with $name on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 52, + "column": 49 + }, + { + "message": "Possible XSS detected with $submit on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 52, + "column": 108 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/bra_shortcodes.php": { + "errors": 0, + "warnings": 45, + "messages": [ + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 22, + "column": 42 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 47, + "column": 40 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 144, + "column": 17 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 256, + "column": 25 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 262, + "column": 25 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 263, + "column": 25 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 264, + "column": 25 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 267, + "column": 26 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 276, + "column": 30 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 315, + "column": 15 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 317, + "column": 16 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 319, + "column": 15 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 397, + "column": 23 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 423, + "column": 17 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 436, + "column": 19 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 466, + "column": 16 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 470, + "column": 23 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 480, + "column": 25 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 487, + "column": 16 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 513, + "column": 18 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 515, + "column": 16 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 515, + "column": 32 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 522, + "column": 16 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 542, + "column": 16 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 546, + "column": 13 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 546, + "column": 31 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 548, + "column": 19 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 557, + "column": 14 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 557, + "column": 51 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 558, + "column": 14 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 558, + "column": 51 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 560, + "column": 20 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 562, + "column": 20 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 569, + "column": 22 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 577, + "column": 15 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 577, + "column": 53 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 578, + "column": 15 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 578, + "column": 53 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 580, + "column": 15 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 590, + "column": 20 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 593, + "column": 20 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 599, + "column": 25 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 601, + "column": 27 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 605, + "column": 20 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 610, + "column": 26 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/includes/bra_shortcodes_border_divider.php": { + "errors": 0, + "warnings": 1, + "messages": [ + { + "message": "No PHP code was found in this file and short open tags are not allowed by this install of PHP. This file may be using short open tags but PHP does not allow them.", + "source": "Internal.NoCodeFound", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 1, + "column": 1 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/index.php": { + "errors": 0, + "warnings": 81, + "messages": [ + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 7, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 8, + "column": 36 + }, + { + "message": "Possible XSS detected with $title on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 44, + "column": 38 + }, + { + "message": "Possible XSS detected with $subtitle on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 44, + "column": 66 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 48, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 49, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 50, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 51, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 52, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 53, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 57, + "column": 36 + }, + { + "message": "Possible XSS detected with $inner_content_class on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 60, + "column": 32 + }, + { + "message": "Possible XSS detected with $inner_content_class on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 66, + "column": 47 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 73, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 73, + "column": 60 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 75, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 80, + "column": 26 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 87, + "column": 52 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 98, + "column": 37 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 103, + "column": 49 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 117, + "column": 53 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 123, + "column": 60 + }, + { + "message": "Possible XSS detected with $featured_image on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 126, + "column": 82 + }, + { + "message": "Possible XSS detected with $img_width on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 126, + "column": 151 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 139, + "column": 70 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 140, + "column": 67 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 141, + "column": 67 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 149, + "column": 26 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 156, + "column": 52 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 169, + "column": 70 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 170, + "column": 67 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 171, + "column": 67 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 179, + "column": 37 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 184, + "column": 49 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 198, + "column": 53 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 204, + "column": 60 + }, + { + "message": "Possible XSS detected with $featured_image on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 207, + "column": 82 + }, + { + "message": "Possible XSS detected with $img_width on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 207, + "column": 151 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 216, + "column": 26 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 223, + "column": 52 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 232, + "column": 37 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 237, + "column": 49 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 251, + "column": 53 + }, + { + "message": "Possible XSS detected with $featured_image on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 259, + "column": 82 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 272, + "column": 70 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 273, + "column": 67 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 274, + "column": 67 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 282, + "column": 26 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 291, + "column": 37 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 296, + "column": 49 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 310, + "column": 53 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 316, + "column": 60 + }, + { + "message": "Possible XSS detected with $featured_image on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 319, + "column": 82 + }, + { + "message": "Possible XSS detected with $img_width on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 319, + "column": 151 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 326, + "column": 52 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 339, + "column": 70 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 340, + "column": 67 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 341, + "column": 67 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 349, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 360, + "column": 70 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 361, + "column": 67 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 362, + "column": 67 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 370, + "column": 37 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 375, + "column": 49 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 389, + "column": 53 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 395, + "column": 60 + }, + { + "message": "Possible XSS detected with $featured_image on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 398, + "column": 82 + }, + { + "message": "Possible XSS detected with $img_width on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 398, + "column": 151 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 405, + "column": 52 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 416, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 427, + "column": 70 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 428, + "column": 67 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 429, + "column": 67 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 437, + "column": 37 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 442, + "column": 49 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 456, + "column": 53 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 462, + "column": 60 + }, + { + "message": "Possible XSS detected with $featured_image on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 465, + "column": 82 + }, + { + "message": "Possible XSS detected with $img_width on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 465, + "column": 151 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 472, + "column": 52 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 511, + "column": 36 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/content-status.php": { + "errors": 0, + "warnings": 14, + "messages": [ + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 8, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 8, + "column": 60 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 10, + "column": 29 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 13, + "column": 74 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 21, + "column": 37 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 26, + "column": 49 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 40, + "column": 53 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 49, + "column": 60 + }, + { + "message": "Possible XSS detected with $featured_image on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 50, + "column": 50 + }, + { + "message": "Possible XSS detected with $img_width on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 50, + "column": 117 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 58, + "column": 52 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 71, + "column": 77 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 72, + "column": 74 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 73, + "column": 74 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/content-video.php": { + "errors": 0, + "warnings": 14, + "messages": [ + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 8, + "column": 26 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 8, + "column": 60 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 10, + "column": 29 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 13, + "column": 74 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 21, + "column": 77 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 22, + "column": 74 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 23, + "column": 74 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 31, + "column": 37 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 36, + "column": 49 + }, + { + "message": "Possible XSS detected with $video_link on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 50, + "column": 53 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 59, + "column": 60 + }, + { + "message": "Possible XSS detected with $featured_image on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 60, + "column": 50 + }, + { + "message": "Possible XSS detected with $img_width on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 60, + "column": 117 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 68, + "column": 52 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/header.php": { + "errors": 1, + "warnings": 18, + "messages": [ + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 7, + "column": 55 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 8, + "column": 55 + }, + { + "message": "Filesystem function pathinfo() detected with dynamic parameter", + "source": "Security.BadFunctions.FilesystemFunctions.WarnFilesystem", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 11, + "column": 9 + }, + { + "message": "Possible XSS detected with home_url on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 21, + "column": 37 + }, + { + "message": "Possible XSS detected with of_get_option on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 22, + "column": 44 + }, + { + "message": "Possible XSS detected with stripslashes on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 26, + "column": 45 + }, + { + "message": "Possible XSS detected with of_get_option on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 28, + "column": 16 + }, + { + "message": "Possible XSS detected with of_get_option on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 32, + "column": 20 + }, + { + "message": "Possible XSS detected with get_option on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 41, + "column": 74 + }, + { + "message": "Possible XSS detected with home_url on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 53, + "column": 40 + }, + { + "message": "Possible XSS detected with parse_url on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 53, + "column": 65 + }, + { + "message": "Easy XSS detected because of direct user input with $_SERVER on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSerr", + "severity": 5, + "fixable": false, + "type": "ERROR", + "line": 53, + "column": 75 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 59, + "column": 13 + }, + { + "message": "Possible XSS detected with home_url on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 74, + "column": 37 + }, + { + "message": "Possible XSS detected with of_get_option on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 74, + "column": 74 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 94, + "column": 13 + }, + { + "message": "You are using the comparison operator \"==\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 96, + "column": 24 + }, + { + "message": "Possible XSS detected with $class on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 98, + "column": 31 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 101, + "column": 20 + } + ] + }, + "/home/xcvb/xfgkfhkhlj/bigbangwp/page.php": { + "errors": 0, + "warnings": 10, + "messages": [ + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 12, + "column": 72 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 17, + "column": 115 + }, + { + "message": "Possible XSS detected with get_post_meta on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 17, + "column": 144 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 32, + "column": 76 + }, + { + "message": "Possible XSS detected with get_post_meta on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 37, + "column": 38 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 38, + "column": 76 + }, + { + "message": "Possible XSS detected with get_post_meta on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 38, + "column": 102 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 55, + "column": 21 + }, + { + "message": "You are using the comparison operator \"!=\" that converts type and may cause unintended results.", + "source": "Security.Misc.TypeJuggle.TypeJuggle", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 55, + "column": 51 + }, + { + "message": "Possible XSS detected with $featured_image on echo", + "source": "Security.BadFunctions.EasyXSS.EasyXSSwarn", + "severity": 5, + "fixable": false, + "type": "WARNING", + "line": 58, + "column": 25 + } + ] + } + } +} \ No newline at end of file diff --git a/unittests/scans/php_security_audit_v2/php_security_audit_v2.0.0_unformatted.json b/unittests/scans/php_security_audit_v2/php_security_audit_v2.0.0_unformatted.json index 7d1aa8a9388..a1d2dbc5940 100644 --- a/unittests/scans/php_security_audit_v2/php_security_audit_v2.0.0_unformatted.json +++ b/unittests/scans/php_security_audit_v2/php_security_audit_v2.0.0_unformatted.json @@ -1 +1,269 @@ -{"totals":{"errors":2,"warnings":0,"fixable":0},"files":{"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/functions.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/404.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/inc\/icon-functions.php":{"errors":1,"warnings":0,"messages":[{"message":"No file extension has been found in a include\/require function. This implies that some PHP code is not scanned by PHPCS.","source":"PHPCS_SecurityAudit.Misc.IncludeMismatch.ErrMiscIncludeMismatchNoExt","severity":5,"fixable":false,"type":"ERROR","line":19,"column":3}]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/inc\/customizer.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/inc\/custom-header.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/inc\/color-patterns.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/inc\/template-tags.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/inc\/template-functions.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/inc\/back-compat.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/index.php":{"errors":1,"warnings":0,"messages":[{"message":"Easy XSS detected because of direct user input with $_GET on echo","source":"PHPCS_SecurityAudit.BadFunctions.EasyXSS.EasyXSSerr","severity":5,"fixable":false,"type":"ERROR","line":35,"column":22}]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/archive.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/comments.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/search.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/header.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/footer\/footer-widgets.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/footer\/site-info.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/page\/content-page.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/page\/content-front-page.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/page\/content-front-page-panels.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/post\/content-gallery.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/post\/content-none.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/post\/content-excerpt.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/post\/content.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/post\/content-audio.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/post\/content-video.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/post\/content-image.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/navigation\/navigation-top.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/header\/site-branding.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/template-parts\/header\/header-image.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/footer.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/style.css":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/single.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/page.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/assets\/css\/colors-dark.css":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/assets\/css\/ie9.css":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/assets\/css\/ie8.css":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/assets\/css\/editor-style.css":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/assets\/js\/html5.js":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/assets\/js\/skip-link-focus-fix.js":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/assets\/js\/customize-preview.js":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/assets\/js\/global.js":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/assets\/js\/jquery.scrollTo.js":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/assets\/js\/navigation.js":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/assets\/js\/customize-controls.js":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/rtl.css":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/sidebar.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/front-page.php":{"errors":0,"warnings":0,"messages":[]},"\/Applications\/MAMP\/htdocs\/wordpress\/wp-content\/themes\/twentyseventeen\/searchform.php":{"errors":0,"warnings":0,"messages":[]}}} +{ + "totals": { + "errors": 2, + "warnings": 0, + "fixable": 0 + }, + "files": { + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/functions.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/404.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/inc/icon-functions.php": { + "errors": 1, + "warnings": 0, + "messages": [ + { + "message": "No file extension has been found in a include/require function. This implies that some PHP code is not scanned by PHPCS.", + "source": "PHPCS_SecurityAudit.Misc.IncludeMismatch.ErrMiscIncludeMismatchNoExt", + "severity": 5, + "fixable": false, + "type": "ERROR", + "line": 19, + "column": 3 + } + ] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/inc/customizer.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/inc/custom-header.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/inc/color-patterns.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/inc/template-tags.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/inc/template-functions.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/inc/back-compat.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/index.php": { + "errors": 1, + "warnings": 0, + "messages": [ + { + "message": "Easy XSS detected because of direct user input with $_GET on echo", + "source": "PHPCS_SecurityAudit.BadFunctions.EasyXSS.EasyXSSerr", + "severity": 5, + "fixable": false, + "type": "ERROR", + "line": 35, + "column": 22 + } + ] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/archive.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/comments.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/search.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/header.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/footer/footer-widgets.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/footer/site-info.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/page/content-page.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/page/content-front-page.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/page/content-front-page-panels.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/post/content-gallery.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/post/content-none.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/post/content-excerpt.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/post/content.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/post/content-audio.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/post/content-video.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/post/content-image.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/navigation/navigation-top.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/header/site-branding.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/template-parts/header/header-image.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/footer.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/style.css": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/single.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/page.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/assets/css/colors-dark.css": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/assets/css/ie9.css": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/assets/css/ie8.css": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/assets/css/editor-style.css": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/assets/js/html5.js": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/assets/js/customize-preview.js": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/assets/js/global.js": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/assets/js/navigation.js": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/assets/js/customize-controls.js": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/rtl.css": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/sidebar.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/front-page.php": { + "errors": 0, + "warnings": 0, + "messages": [] + }, + "/Applications/MAMP/htdocs/wordpress/wp-content/themes/twentyseventeen/searchform.php": { + "errors": 0, + "warnings": 0, + "messages": [] + } + } +} \ No newline at end of file diff --git a/unittests/scans/veracode_sca/veracode_sca.json b/unittests/scans/veracode_sca/veracode_sca.json index 3c4e09d3379..b610003b956 100644 --- a/unittests/scans/veracode_sca/veracode_sca.json +++ b/unittests/scans/veracode_sca/veracode_sca.json @@ -1 +1,75 @@ -{"_embedded":{"issues":[{"id":"ddcc6e1b-3ed9-45c8-b77a-ead759fb5e2c","site_id":129556889,"created_date":"2022-07-29T05:13:00.924+0000","issue_status":"open","issue_type":"vulnerability","ignored":false,"severity":8.8,"workspace_id":"12345","project_id":"12345","project_name":"some-project","project_branch":"master","library":{"id":"maven:org.apache.calcite.avatica:avatica-core:1.11.0:","name":"Apache Calcite Avatica","version":"1.11.0","release_date":"2018-03-06","latest_version":"1.22.0","latest_version_release_date":"2022-07-26","direct":true,"transitive":false,"_links":{"self":{"href":"https://api.veracode.com/srcclr/v3/libraries/maven:org.apache.calcite.avatica:avatica-core:1.11.0:"}}},"vulnerability":{"id":"36527","title":"Arbitrary Code Execution","cve":"2022-36364","cvss2_vector":"(AV:L/AC:L/Au:S/C:P/I:P/A:P)","cvss3_vector":"AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss2_score":4.3,"cvss3_score":8.8,"cwe_id":"CWE-665","_links":{"self":{"href":"https://api.veracode.com/srcclr/v3/vulnerabilities/36527"}}},"vulnerable_method":false,"_links":{"vulnerability":{"href":"https://api.veracode.com/srcclr/v3/vulnerabilities/36527"},"workspace":{"href":"https://api.veracode.com/srcclr/v3/workspaces/123456"},"html":{"href":"https://sca.analysiscenter.veracode.com/teams/X33hjMQ/issues/vulnerabilities/12345"},"self":{"href":"https://api.veracode.com/srcclr/v3/issues/12355"}}}]},"_links":{"self":{"href":"https://api.veracode.com/srcclr/v3/workspaces/12345/issues?type=vulnerability&project_id=1234&page=0&size=200&sort=id,desc"}},"page":{"size":200,"total_elements":1,"total_pages":1,"number":0}} +{ + "_embedded": { + "issues": [ + { + "id": "ddcc6e1b-3ed9-45c8-b77a-ead759fb5e2c", + "site_id": 129556889, + "created_date": "2022-07-29T05:13:00.924+0000", + "issue_status": "open", + "issue_type": "vulnerability", + "ignored": false, + "severity": 8.8, + "workspace_id": "12345", + "project_id": "12345", + "project_name": "some-project", + "project_branch": "master", + "library": { + "id": "maven:org.apache.calcite.avatica:avatica-core:1.11.0:", + "name": "Apache Calcite Avatica", + "version": "1.11.0", + "release_date": "2018-03-06", + "latest_version": "1.22.0", + "latest_version_release_date": "2022-07-26", + "direct": true, + "transitive": false, + "_links": { + "self": { + "href": "https://api.veracode.com/srcclr/v3/libraries/maven:org.apache.calcite.avatica:avatica-core:1.11.0:" + } + } + }, + "vulnerability": { + "id": "36527", + "title": "Arbitrary Code Execution", + "cve": "2022-36364", + "cvss2_vector": "(AV:L/AC:L/Au:S/C:P/I:P/A:P)", + "cvss3_vector": "AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "cvss2_score": 4.3, + "cvss3_score": 8.8, + "cwe_id": "CWE-665", + "_links": { + "self": { + "href": "https://api.veracode.com/srcclr/v3/vulnerabilities/36527" + } + } + }, + "vulnerable_method": false, + "_links": { + "vulnerability": { + "href": "https://api.veracode.com/srcclr/v3/vulnerabilities/36527" + }, + "workspace": { + "href": "https://api.veracode.com/srcclr/v3/workspaces/123456" + }, + "html": { + "href": "https://sca.analysiscenter.veracode.com/teams/X33hjMQ/issues/vulnerabilities/12345" + }, + "self": { + "href": "https://api.veracode.com/srcclr/v3/issues/12355" + } + } + } + ] + }, + "_links": { + "self": { + "href": "https://api.veracode.com/srcclr/v3/workspaces/12345/issues?type=vulnerability&project_id=1234&page=0&size=200&sort=id,desc" + } + }, + "page": { + "size": 200, + "total_elements": 1, + "total_pages": 1, + "number": 0 + } +} \ No newline at end of file diff --git a/unittests/scans/veracode_sca/veracode_sca_fixed.json b/unittests/scans/veracode_sca/veracode_sca_fixed.json index e3746fecd0b..31b7a4bfaba 100644 --- a/unittests/scans/veracode_sca/veracode_sca_fixed.json +++ b/unittests/scans/veracode_sca/veracode_sca_fixed.json @@ -1 +1,64 @@ -{"_embedded": {"issues": [{"id": "8ef6657a-bd7b-4f18-8107-e5c7b320f718", "site_id": 127637430, "created_date": "2022-07-18T15:49:10.704+0000", "issue_status": "fixed", "issue_type": "vulnerability", "ignored": false, "severity": 6.5, "workspace_id": "cf0a843f-b732-4a2b-ade8-a36ff3ae0181", "project_id": "d5535c41-439a-4d06-a600-4b6da095edda", "project_name": "some-project", "project_branch": "master", "library": {"id": "maven:com.amazonaws:aws-java-sdk-s3:1.11.951:", "name": "AWS Java SDK for Amazon S3", "version": "1.11.951", "release_date": "2021-02-08", "latest_version": "1.12.307", "latest_version_release_date": "2022-09-20", "direct": false, "transitive": true, "_links": {"self": {"href": "https://api.veracode.com/srcclr/v3/libraries/maven:com.amazonaws:aws-java-sdk-s3:1.11.951:"}}}, "vulnerability": {"id": "36376", "title": "Path Traversal", "cve": "2022-31159", "cvss2_vector": "", "cvss3_vector": "AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "cvss2_score": 6.4, "cvss3_score": 6.5, "cwe_id": "CWE-22", "_links": {"self": {"href": "https://api.veracode.com/srcclr/v3/vulnerabilities/36376"}}}, "vulnerable_method": false, "_links": {"vulnerability": {"href": "https://api.veracode.com/srcclr/v3/vulnerabilities/36376"}, "workspace": {"href": "https://api.veracode.com/srcclr/v3/workspaces/cf0a043f-b752-4a2b-ade8-a36fe3ae0285"}, "html": {"href": "https://sca.analysiscenter.veracode.com/teams/dppFqb3/issues/vulnerabilities/12345"}, "self": {"href": "https://api.veracode.com/srcclr/v3/issues/8ef6552a-bd7b-4f18-8107-12345"}}}]}} +{ + "_embedded": { + "issues": [ + { + "id": "8ef6657a-bd7b-4f18-8107-e5c7b320f718", + "site_id": 127637430, + "created_date": "2022-07-18T15:49:10.704+0000", + "issue_status": "fixed", + "issue_type": "vulnerability", + "ignored": false, + "severity": 6.5, + "workspace_id": "cf0a843f-b732-4a2b-ade8-a36ff3ae0181", + "project_id": "d5535c41-439a-4d06-a600-4b6da095edda", + "project_name": "some-project", + "project_branch": "master", + "library": { + "id": "maven:com.amazonaws:aws-java-sdk-s3:1.11.951:", + "name": "AWS Java SDK for Amazon S3", + "version": "1.11.951", + "release_date": "2021-02-08", + "latest_version": "1.12.307", + "latest_version_release_date": "2022-09-20", + "direct": false, + "transitive": true, + "_links": { + "self": { + "href": "https://api.veracode.com/srcclr/v3/libraries/maven:com.amazonaws:aws-java-sdk-s3:1.11.951:" + } + } + }, + "vulnerability": { + "id": "36376", + "title": "Path Traversal", + "cve": "2022-31159", + "cvss2_vector": "", + "cvss3_vector": "AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", + "cvss2_score": 6.4, + "cvss3_score": 6.5, + "cwe_id": "CWE-22", + "_links": { + "self": { + "href": "https://api.veracode.com/srcclr/v3/vulnerabilities/36376" + } + } + }, + "vulnerable_method": false, + "_links": { + "vulnerability": { + "href": "https://api.veracode.com/srcclr/v3/vulnerabilities/36376" + }, + "workspace": { + "href": "https://api.veracode.com/srcclr/v3/workspaces/cf0a043f-b752-4a2b-ade8-a36fe3ae0285" + }, + "html": { + "href": "https://sca.analysiscenter.veracode.com/teams/dppFqb3/issues/vulnerabilities/12345" + }, + "self": { + "href": "https://api.veracode.com/srcclr/v3/issues/8ef6552a-bd7b-4f18-8107-12345" + } + } + } + ] + } +} \ No newline at end of file From fa8d6696af93fd8c68c43c5aad3a7c1a95ebdf92 Mon Sep 17 00:00:00 2001 From: Jino Tesauro <53376807+Jino-T@users.noreply.github.com> Date: Thu, 8 Jan 2026 15:35:53 -0600 Subject: [PATCH 10/20] reordered-jira-alert-description (#14058) --- dojo/jira_link/helper.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/dojo/jira_link/helper.py b/dojo/jira_link/helper.py index 453a33cd23d..add39666c0d 100644 --- a/dojo/jira_link/helper.py +++ b/dojo/jira_link/helper.py @@ -602,7 +602,7 @@ def log_jira_alert(error, obj): create_notification( event="jira_update", title="Error pushing to JIRA " + "(" + truncate_with_dots(prod_name(obj), 25) + ")", - description=to_str_typed(obj) + ", " + error, + description=error + "\n" + to_str_typed(obj), url=obj.get_absolute_url(), icon="bullseye", source="Push to JIRA", @@ -614,7 +614,7 @@ def log_jira_cannot_be_pushed_reason(error, obj): create_notification( event="jira_update", title="Error pushing to JIRA " + "(" + truncate_with_dots(prod_name(obj), 25) + ")", - description=obj.__class__.__name__ + ": " + error, + description=error + "\n" + obj.__class__.__name__, url=obj.get_absolute_url(), icon="bullseye", source="Push to JIRA", From c90f2ab99044618d32da1a841ae773a0b4370c3e Mon Sep 17 00:00:00 2001 From: Paul Osinski <42211303+paulOsinski@users.noreply.github.com> Date: Thu, 8 Jan 2026 19:04:15 -0500 Subject: [PATCH 11/20] [docs] pro release notes 2.54.0 (#14047) * update changelog headings * update changelog --------- Co-authored-by: Paul Osinski --- docs/content/en/changelog/changelog.md | 14 ++++++++++---- 1 file changed, 10 insertions(+), 4 deletions(-) diff --git a/docs/content/en/changelog/changelog.md b/docs/content/en/changelog/changelog.md index 8227102fd0b..2b61f5d09e1 100644 --- a/docs/content/en/changelog/changelog.md +++ b/docs/content/en/changelog/changelog.md @@ -8,6 +8,12 @@ Here are the release notes for **DefectDojo Pro (Cloud Version)**. These release For Open Source release notes, please see the [Releases page on GitHub](https://github.com/DefectDojo/django-DefectDojo/releases), or alternatively consult the Open Source [upgrade notes](/en/open_source/upgrading/upgrading_guide/). +## Jan 2025: v2.54 + +### Jan 5, 2025: v2.54.0 + +No significant UX changes. + ## Dec 2025: v2.53 ### Dec 29, 2025: v2.53.5 @@ -64,7 +70,7 @@ For Open Source release notes, please see the [Releases page on GitHub](https:// ## Oct 2025: v2.51 -### Oct 27, 2025: v2.51.3 +#### Oct 27, 2025: v2.51.3 * **(Tools)** Added Nuclei scan support for Smart Upload. * **(Priority)** Added Prioritization Engine to allow for configurable Priority and Risk calculations for individual Findings under a given Product. @@ -73,12 +79,12 @@ For Open Source release notes, please see the [Releases page on GitHub](https:// -### Oct 20, 2025: v2.51.2 +#### Oct 20, 2025: v2.51.2 * **(Connectors)** Added Anchore Enterprise Connector. -### Oct 14, 2025: v2.51.1 +#### Oct 14, 2025: v2.51.1 * **(Pro UI)** Added Finding Quick Report feature. Quick report allows users to quickly render an HTML report with the currently displayed Findings on a Finding table. @@ -95,7 +101,7 @@ Click the calculator button to render a score based on the vector string. * **(Pro UI)** File names (for attached artifacts) can now be edited directly in the UI. * **(Pro UI)** Redirect user to Home after a successful Support Inquiry submission. -### Oct 6, 2025: v2.51.0 +#### Oct 6, 2025: v2.51.0 No significant Pro changes are present in this release. From ab8d3d1578e1f778865f1178c51e85ff54b4b00c Mon Sep 17 00:00:00 2001 From: Manuel Sommer Date: Fri, 9 Jan 2026 09:32:14 +0100 Subject: [PATCH 12/20] :tada: Advance Google Cloud Artifact Scan to parse vulnid --- dojo/tools/gcloud_artifact_scan/parser.py | 2 ++ unittests/tools/test_gcloud_artifact_scan_parser.py | 2 ++ 2 files changed, 4 insertions(+) diff --git a/dojo/tools/gcloud_artifact_scan/parser.py b/dojo/tools/gcloud_artifact_scan/parser.py index 7e4e8978250..8ba25d794bb 100644 --- a/dojo/tools/gcloud_artifact_scan/parser.py +++ b/dojo/tools/gcloud_artifact_scan/parser.py @@ -55,6 +55,8 @@ def get_findings(self, json_output, test): finding.fix_available = vuln["vulnerability"].get("fixAvailable") if vuln["vulnerability"].get("cvssScore"): finding.cvssv3_score = vuln["vulnerability"].get("cvssScore") + if vuln["vulnerability"]["shortDescription"]: + finding.unsaved_vulnerability_ids = [vuln["vulnerability"]["shortDescription"]] findings.append(finding) return findings diff --git a/unittests/tools/test_gcloud_artifact_scan_parser.py b/unittests/tools/test_gcloud_artifact_scan_parser.py index 67cc65170e2..f560e12b681 100644 --- a/unittests/tools/test_gcloud_artifact_scan_parser.py +++ b/unittests/tools/test_gcloud_artifact_scan_parser.py @@ -17,6 +17,7 @@ def test_parse_file_with_multiple_vuln_has_multiple_findings(self): self.assertEqual("Critical", finding.severity) finding = findings[2] self.assertEqual("projects/goog-vulnz/notes/CVE-2023-29404", finding.title) + self.assertEqual("CVE-2023-29404", finding.unsaved_vulnerability_ids[0]) self.assertEqual("Critical", finding.severity) def test_parse_file_artifact_analysis_occurrences_sample(self): @@ -33,3 +34,4 @@ def test_parse_file_artifact_analysis_occurrences_sample(self): finding = findings[2] self.assertEqual("projects/goog-vulnz/notes/CVE-2022-37620", finding.title) self.assertEqual("High", finding.severity) + self.assertEqual("CVE-2022-37620", finding.unsaved_vulnerability_ids[0]) From ba6ab380ffc16b6131819331383b4fff56dde66c Mon Sep 17 00:00:00 2001 From: Manuel Sommer Date: Fri, 9 Jan 2026 13:10:16 +0100 Subject: [PATCH 13/20] :tada: Implement Cloudflare insights parser --- .../parsers/file/cloudflare_insights.md | 23 ++++ dojo/tools/cloudflare_insights/__init__.py | 0 dojo/tools/cloudflare_insights/parser.py | 128 ++++++++++++++++++ .../cloudflare_insights/many_findings.csv | 15 ++ .../scans/cloudflare_insights/one_finding.csv | 2 + .../tools/test_cloudflare_insights_parser.py | 24 ++++ 6 files changed, 192 insertions(+) create mode 100644 docs/content/supported_tools/parsers/file/cloudflare_insights.md create mode 100644 dojo/tools/cloudflare_insights/__init__.py create mode 100644 dojo/tools/cloudflare_insights/parser.py create mode 100644 unittests/scans/cloudflare_insights/many_findings.csv create mode 100644 unittests/scans/cloudflare_insights/one_finding.csv create mode 100644 unittests/tools/test_cloudflare_insights_parser.py diff --git a/docs/content/supported_tools/parsers/file/cloudflare_insights.md b/docs/content/supported_tools/parsers/file/cloudflare_insights.md new file mode 100644 index 00000000000..619b5573f9f --- /dev/null +++ b/docs/content/supported_tools/parsers/file/cloudflare_insights.md @@ -0,0 +1,23 @@ + +--- +title: "Cloudflare Insights" +toc_hide: true +--- + +Import Cloudflare Insights findings using the **CSV export** provided by Cloudflare. + +### Sample Scan Data +Sample Cloudflare Insights files can be found [here](https://github.com/DefectDojo/django-DefectDojo/tree/master/unittests/scans/cloudflare_insights). + +### Supported Fields +The parser supports the following CSV columns: + +- `severity` +- `issue_class` +- `subject` +- `issue_type` +- `status` +- `insight` *(optional)* +- `detection_method` *(optional)* +- `risk` *(optional)* +- `recommended_action` diff --git a/dojo/tools/cloudflare_insights/__init__.py b/dojo/tools/cloudflare_insights/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/dojo/tools/cloudflare_insights/parser.py b/dojo/tools/cloudflare_insights/parser.py new file mode 100644 index 00000000000..ded2dea2538 --- /dev/null +++ b/dojo/tools/cloudflare_insights/parser.py @@ -0,0 +1,128 @@ +import csv +import io +from urllib.parse import urlparse + +from dojo.models import Endpoint, Finding + + +class CloudflareInsightsParser: + + """ + DefectDojo parser for Cloudflare Insights CSV exports. + + Expected columns: + - severity + - issue_class + - subject (used as Endpoint host; not repeated in description) + - issue_type + - scan_performed_on (ignored) + - status + - insight (optional) + - detection_method (optional) + - risk (optional) + - recommended_action (used as mitigation if present) + """ + + def get_scan_types(self): + return ["Cloudflare Insights"] + + def get_label_for_scan_types(self, scan_type): + return scan_type + + def get_description_for_scan_types(self, scan_type): + return "Import Cloudflare Insights (CSV export)." + + def _map_severity(self, value): + normalized = value.strip().lower() + mapping = { + "low": "Low", + "moderate": "Medium", + "critical": "Critical", + "high": "High", # optional: Cloudflare occasionally uses this + } + return mapping.get(normalized, "Info") + + def _extract_host_from_subject(self, subject: str) -> str | None: + if not subject: + return None + s = subject.strip() + if not s: + return None + parsed = urlparse(s) + netloc = parsed.netloc + if not netloc and ("." in s or ":" in s or s.startswith("localhost")): + parsed2 = urlparse(f"http://{s}") + netloc = parsed2.netloc + host = netloc or s + if ":" in host: + host = host.split(":", 1)[0] + host = host.strip().strip("/").strip() + + return host or None + + def _is_inactive_status(self, status: str) -> bool: + inactive_markers = {"resolved", "mitigated", "closed", "fixed"} + return bool(status) and status.strip().lower() in inactive_markers + + def get_findings(self, filename, test): + content = filename.read() + if isinstance(content, bytes): + content = content.decode("utf-8", errors="replace") + + reader = csv.DictReader( + io.StringIO(content), + delimiter=",", + quotechar='"', + skipinitialspace=True, + ) + findings = [] + for row in reader: + severity_raw = (row.get("severity") or "").strip() + issue_class = (row.get("issue_class") or "").strip() + subject = (row.get("subject") or "").strip() + issue_type = (row.get("issue_type") or "").strip() + status = (row.get("status") or "").strip() + insight = (row.get("insight") or "").strip() + detection_method = (row.get("detection_method") or "").strip() + risk = (row.get("risk") or "").strip() + recommended_action = (row.get("recommended_action") or "").strip() + mapped_severity = self._map_severity(severity_raw) + if issue_type and subject: + title = f"{issue_type}: {subject}" + elif issue_type: + title = issue_type + elif subject: + title = subject + else: + title = "Cloudflare Insight" + description_parts = [] + if issue_class: + description_parts.append(f"**Issue class**: {issue_class}") + if issue_type: + description_parts.append(f"**Issue type**: {issue_type}") + if status: + description_parts.append(f"**Status**: {status}") + if insight: + description_parts.append(f"**Insight**: {insight}") + if detection_method: + description_parts.append(f"**Detection method**: {detection_method}") + if risk: + description_parts.append(f"**Risk**: {risk}") + description = "\n\n".join(description_parts) + finding = Finding( + test=test, + title=title, + severity=mapped_severity, + description=description, + mitigation=recommended_action or "Not provided!", + references="Not provided!", + static_finding=False, + dynamic_finding=True, + ) + finding.active = not self._is_inactive_status(status) + host = self._extract_host_from_subject(subject) + if host: + finding.unsaved_endpoints = [Endpoint(host=host, port=None)] + findings.append(finding) + + return findings diff --git a/unittests/scans/cloudflare_insights/many_findings.csv b/unittests/scans/cloudflare_insights/many_findings.csv new file mode 100644 index 00000000000..48a00cbbcd0 --- /dev/null +++ b/unittests/scans/cloudflare_insights/many_findings.csv @@ -0,0 +1,15 @@ +severity,issue_class,subject,issue_type,scan_performed_on,status,insight,detection_method,risk,recommended_action +Moderate,Unproxied 'A' Records,domain1.com,Exposed infrastructure,2024-07-05T05:30:57.976844Z,Active,,,,"Configure Cloudflare to proxy the DNS record. By setting up Cloudflare as your hostname's reverse proxy, Cloudflare protects origin servers from DDoS attacks by hiding their IP addresses. You can configure Cloudflare to proxy your hostname in your DNS settings." +Moderate,Unproxied 'A' Records,domain2.com,Exposed infrastructure,2024-07-05T05:31:39.692808Z,Active,,,,"Configure Cloudflare to proxy the DNS record. By setting up Cloudflare as your hostname's reverse proxy, Cloudflare protects origin servers from DDoS attacks by hiding their IP addresses. You can configure Cloudflare to proxy your hostname in your DNS settings." +Low,Security.txt not configured,domain3.com,Configuration suggestion,2024-12-01T05:43:45.712676Z,Active,Security.txt not configured. Configure and manage the Security.txt file to improve the website's vulnerability disclosure process,We evaluated the Security Settings configured for this domain and found that Security.txt is not enabled.,"The absence of Security.txt insights creates a lack of a clear, accessible method for researchers to report vulnerabilities. This can lead to security issues going unnoticed or under-reported, increasing the risk of exploitation.","Configure Security.txt file. " +Low,Security.txt not configured,domain4.com,Configuration suggestion,2024-12-01T05:43:44.252529Z,Active,Security.txt not configured. Configure and manage the Security.txt file to improve the website's vulnerability disclosure process,We evaluated the Security Settings configured for this domain and found that Security.txt is not enabled.,"The absence of Security.txt insights creates a lack of a clear, accessible method for researchers to report vulnerabilities. This can lead to security issues going unnoticed or under-reported, increasing the risk of exploitation.","Configure Security.txt file. " +Moderate,Unproxied CNAME Records,domain5.com,Exposed infrastructure,2024-07-08T03:37:16.031911Z,Active,,,,"Configure Cloudflare to proxy the DNS record. By setting up Cloudflare as your hostname's reverse proxy, Cloudflare protects origin servers from DDoS attacks by hiding their IP addresses. You can configure Cloudflare to proxy your hostname in your DNS settings." +Moderate,Unproxied 'A' Records,domain6.com,Exposed infrastructure,2024-07-02T12:55:57.798974Z,Active,,,,"Configure Cloudflare to proxy the DNS record. By setting up Cloudflare as your hostname's reverse proxy, Cloudflare protects origin servers from DDoS attacks by hiding their IP addresses. You can configure Cloudflare to proxy your hostname in your DNS settings." +Low,Security.txt not configured,domain7.com,Configuration suggestion,2025-03-25T17:33:40.070204Z,Active,Security.txt not configured. Configure and manage the Security.txt file to improve the website's vulnerability disclosure process,We evaluated the Security Settings configured for this domain and found that Security.txt is not enabled.,"The absence of Security.txt insights creates a lack of a clear, accessible method for researchers to report vulnerabilities. This can lead to security issues going unnoticed or under-reported, increasing the risk of exploitation.","Configure Security.txt file. " +Low,Security.txt not configured,domain8.com,Configuration suggestion,2025-03-25T17:33:41.970652Z,Active,Security.txt not configured. Configure and manage the Security.txt file to improve the website's vulnerability disclosure process,We evaluated the Security Settings configured for this domain and found that Security.txt is not enabled.,"The absence of Security.txt insights creates a lack of a clear, accessible method for researchers to report vulnerabilities. This can lead to security issues going unnoticed or under-reported, increasing the risk of exploitation.","Configure Security.txt file. " +Moderate,Unproxied 'A' Records,domain9.com,Exposed infrastructure,2024-07-05T05:30:46.435059Z,Active,,,,"Configure Cloudflare to proxy the DNS record. By setting up Cloudflare as your hostname's reverse proxy, Cloudflare protects origin servers from DDoS attacks by hiding their IP addresses. You can configure Cloudflare to proxy your hostname in your DNS settings." +Low,Security.txt not configured,domain10.com,Configuration suggestion,2024-11-29T05:32:39.671608Z,Active,Security.txt not configured. Configure and manage the Security.txt file to improve the website's vulnerability disclosure process,We evaluated the Security Settings configured for this domain and found that Security.txt is not enabled.,"The absence of Security.txt insights creates a lack of a clear, accessible method for researchers to report vulnerabilities. This can lead to security issues going unnoticed or under-reported, increasing the risk of exploitation.","Configure Security.txt file. " +Low,Security.txt not configured,domain11.com,Configuration suggestion,2025-03-06T15:16:53.931468Z,Active,Security.txt not configured. Configure and manage the Security.txt file to improve the website's vulnerability disclosure process,We evaluated the Security Settings configured for this domain and found that Security.txt is not enabled.,"The absence of Security.txt insights creates a lack of a clear, accessible method for researchers to report vulnerabilities. This can lead to security issues going unnoticed or under-reported, increasing the risk of exploitation.","Configure Security.txt file. " +Moderate,Unproxied CNAME Records,domain12.com,Exposed infrastructure,2026-01-02T12:29:43.13416Z,Active,Unproxied CNAME Records. This DNS record is not proxied by Cloudflare. Your origin server is directly exposed and has a higher risk of a DDoS attack.,We reviewed your Cloudflare DNS settings and checked whether your hostname accepts connections on either port 80 or 443.,DDoS Attack,"Configure Cloudflare to proxy the DNS record. By setting up Cloudflare as your hostname's reverse proxy, Cloudflare protects origin servers from DDoS attacks by hiding their IP addresses. You can configure Cloudflare to proxy your hostname in your DNS settings." +Moderate,Unproxied 'A' Records,domain13.com,Exposed infrastructure,2024-07-02T12:57:30.878124Z,Active,,,,"Configure Cloudflare to proxy the DNS record. By setting up Cloudflare as your hostname's reverse proxy, Cloudflare protects origin servers from DDoS attacks by hiding their IP addresses. You can configure Cloudflare to proxy your hostname in your DNS settings." +Critical,Managed Rules not deployed,domain14.com,Configuration suggestion,2024-07-01T17:44:27.896818Z,Active,Managed Rules not deployed. We have detected that you have not enabled the Cloudflare Managed Rules feature on your zone.,We evaluated your websites and you have no Managed Rules deployed.,Insufficient protection for vulnerabilities targeting Web and API applications,Turn on Managed Rules. Deploy Cloudflare Managed Rules on your zone to protect your web application against common vulnerabilities in web applications. \ No newline at end of file diff --git a/unittests/scans/cloudflare_insights/one_finding.csv b/unittests/scans/cloudflare_insights/one_finding.csv new file mode 100644 index 00000000000..9d376771de0 --- /dev/null +++ b/unittests/scans/cloudflare_insights/one_finding.csv @@ -0,0 +1,2 @@ +severity,issue_class,subject,issue_type,scan_performed_on,status,insight,detection_method,risk,recommended_action +Moderate,Unproxied 'A' Records,domain.com,Exposed infrastructure,2024-07-06T13:50:15.536086Z,Active,,,,"Configure Cloudflare to proxy the DNS record. By setting up Cloudflare as your hostname's reverse proxy, Cloudflare protects origin servers from DDoS attacks by hiding their IP addresses. You can configure Cloudflare to proxy your hostname in your DNS settings." \ No newline at end of file diff --git a/unittests/tools/test_cloudflare_insights_parser.py b/unittests/tools/test_cloudflare_insights_parser.py new file mode 100644 index 00000000000..8d48280df82 --- /dev/null +++ b/unittests/tools/test_cloudflare_insights_parser.py @@ -0,0 +1,24 @@ +from dojo.models import Test +from dojo.tools.cloudflare_insights.parser import CloudflareInsightsParser +from unittests.dojo_test_case import DojoTestCase, get_unit_tests_scans_path + + +class TestCloudflareInsightsParser(DojoTestCase): + + def test_cloudflare_insights_parser_with_one_finding(self): + with (get_unit_tests_scans_path("cloudflare_insights") / "one_finding.csv").open(encoding="utf-8") as testfile: + parser = CloudflareInsightsParser() + findings = parser.get_findings(testfile, Test()) + self.assertEqual(1, len(findings)) + finding = findings[0] + self.assertEqual("Exposed infrastructure: domain.com", finding.title) + self.assertEqual("Medium", finding.severity) + + def test_cloudflare_insights_parser_with_many_findings(self): + with (get_unit_tests_scans_path("cloudflare_insights") / "many_findings.csv").open(encoding="utf-8") as testfile: + parser = CloudflareInsightsParser() + findings = parser.get_findings(testfile, Test()) + self.assertEqual(14, len(findings)) + finding = findings[0] + self.assertEqual("Exposed infrastructure: domain1.com", finding.title) + self.assertEqual("Medium", finding.severity) From 43715ab311c16e97e7688a2f81979f9abb886ddf Mon Sep 17 00:00:00 2001 From: Manuel Sommer Date: Fri, 9 Jan 2026 13:12:16 +0100 Subject: [PATCH 14/20] . --- docs/content/supported_tools/parsers/file/cloudflare_insights.md | 1 - 1 file changed, 1 deletion(-) diff --git a/docs/content/supported_tools/parsers/file/cloudflare_insights.md b/docs/content/supported_tools/parsers/file/cloudflare_insights.md index 619b5573f9f..035ed4f7033 100644 --- a/docs/content/supported_tools/parsers/file/cloudflare_insights.md +++ b/docs/content/supported_tools/parsers/file/cloudflare_insights.md @@ -1,4 +1,3 @@ - --- title: "Cloudflare Insights" toc_hide: true From bc3d13b0c0286bf54e38131bc543174f2e06f2d0 Mon Sep 17 00:00:00 2001 From: manuelsommer <47991713+manuel-sommer@users.noreply.github.com> Date: Sun, 11 Jan 2026 19:50:45 +0100 Subject: [PATCH 15/20] Update dojo/tools/cloudflare_insights/parser.py Co-authored-by: valentijnscholten --- dojo/tools/cloudflare_insights/parser.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dojo/tools/cloudflare_insights/parser.py b/dojo/tools/cloudflare_insights/parser.py index ded2dea2538..e47065b1e61 100644 --- a/dojo/tools/cloudflare_insights/parser.py +++ b/dojo/tools/cloudflare_insights/parser.py @@ -114,7 +114,7 @@ def get_findings(self, filename, test): title=title, severity=mapped_severity, description=description, - mitigation=recommended_action or "Not provided!", + mitigation=recommended_action, references="Not provided!", static_finding=False, dynamic_finding=True, From 53b341e6398bba3415289fbd066c43ba71fd23a7 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Carl=20Anthon=20Wellsj=C3=B6?= <58119759+anthonwellsjo@users.noreply.github.com> Date: Mon, 12 Jan 2026 07:29:41 +0100 Subject: [PATCH 16/20] fix: update redis/valkey comment (#13858) * fix: update redis/valkey comment * feat(ci): additional comment updates --------- Co-authored-by: valentijnscholten --- helm/defectdojo/README.md | 2 +- helm/defectdojo/values.schema.json | 2 +- helm/defectdojo/values.yaml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/helm/defectdojo/README.md b/helm/defectdojo/README.md index d4147df2ced..26307d24629 100644 --- a/helm/defectdojo/README.md +++ b/helm/defectdojo/README.md @@ -751,7 +751,7 @@ A Helm chart for Kubernetes to install DefectDojo | redisParams | string | `""` | Parameters attached to the redis connection string, defaults to "ssl_cert_reqs=optional" if `redisScheme` is `rediss` | | redisPort | int | `6379` | Define the protocol to use with the external Redis instance | | redisScheme | string | `"redis"` | Define the protocol to use with the external Redis instance | -| redisServer | string | `nil` | To use an external Redis instance, set `redis.enabled` to false and set the address here: | +| redisServer | string | `nil` | To use an external Redis instance, set `valkey.enabled` to false and set the address here: | | revisionHistoryLimit | int | `10` | Allow overriding of revisionHistoryLimit across all deployments. | | secrets.annotations | object | `{}` | Add annotations for secret resources | | securityContext | object | `{"containerSecurityContext":{"runAsNonRoot":true},"enabled":true,"podSecurityContext":{"runAsNonRoot":true}}` | Security context settings | diff --git a/helm/defectdojo/values.schema.json b/helm/defectdojo/values.schema.json index 212f89b850e..1ad08c9f298 100644 --- a/helm/defectdojo/values.schema.json +++ b/helm/defectdojo/values.schema.json @@ -1330,7 +1330,7 @@ "type": "string" }, "redisServer": { - "description": "To use an external Redis instance, set `redis.enabled` to false and set the address here:", + "description": "To use an external Redis instance, set `valkey.enabled` to false and set the address here:", "type": [ "string", "null" diff --git a/helm/defectdojo/values.yaml b/helm/defectdojo/values.yaml index 66bdb88efeb..0bbe442275f 100644 --- a/helm/defectdojo/values.yaml +++ b/helm/defectdojo/values.yaml @@ -701,7 +701,7 @@ valkeyParams: "" # External database support. # # @schema type:[string, null] -# -- To use an external Redis instance, set `redis.enabled` to false and set the address here: +# -- To use an external Redis instance, set `valkey.enabled` to false and set the address here: redisServer: ~ # -- Parameters attached to the redis connection string, defaults to "ssl_cert_reqs=optional" if `redisScheme` is `rediss` redisParams: "" From 1e79866a9454c5e86f7830ec6af6c92a0bf336e0 Mon Sep 17 00:00:00 2001 From: Cody Maffucci <46459665+Maffooch@users.noreply.github.com> Date: Mon, 12 Jan 2026 09:21:47 -0700 Subject: [PATCH 17/20] Product Grade: Configuration Removal (#14075) * Remove product grade configuration and related management command * Remove product_grade field from system_settings model * Update expected query counts in performance tests for importer --- ...55_remove_system_settings_product_grade.py | 17 +++++++++ dojo/fixtures/defect_dojo_sample_data.json | 1 - dojo/fixtures/dojo_testdata.json | 1 - dojo/fixtures/system_settings.json | 1 - dojo/forms.py | 2 +- dojo/management/commands/system_settings.py | 35 ------------------- dojo/models.py | 16 +-------- dojo/utils.py | 34 +++++++++++++----- unittests/test_importers_performance.py | 4 +-- 9 files changed, 46 insertions(+), 65 deletions(-) create mode 100644 dojo/db_migrations/0255_remove_system_settings_product_grade.py delete mode 100644 dojo/management/commands/system_settings.py diff --git a/dojo/db_migrations/0255_remove_system_settings_product_grade.py b/dojo/db_migrations/0255_remove_system_settings_product_grade.py new file mode 100644 index 00000000000..c39857bda0a --- /dev/null +++ b/dojo/db_migrations/0255_remove_system_settings_product_grade.py @@ -0,0 +1,17 @@ +# Generated by Django 5.2.9 on 2026-01-09 23:56 + +from django.db import migrations + + +class Migration(migrations.Migration): + + dependencies = [ + ('dojo', '0254_remove_vulnerability_id_template_model'), + ] + + operations = [ + migrations.RemoveField( + model_name='system_settings', + name='product_grade', + ), + ] diff --git a/dojo/fixtures/defect_dojo_sample_data.json b/dojo/fixtures/defect_dojo_sample_data.json index a9dbc052b5d..fe8b78b2229 100644 --- a/dojo/fixtures/defect_dojo_sample_data.json +++ b/dojo/fixtures/defect_dojo_sample_data.json @@ -814,7 +814,6 @@ "url_prefix": "", "team_name": "", "enable_product_grade": true, - "product_grade": "def grade_product(crit, high, med, low):\r\n health=100\r\n if crit > 0:\r\n health = 40\r\n health = health - ((crit - 1) * 5)\r\n if high > 0:\r\n if health == 100:\r\n health = 60\r\n health = health - ((high - 1) * 3)\r\n if med > 0:\r\n if health == 100:\r\n health = 80\r\n health = health - ((med - 1) * 2)\r\n if low > 0:\r\n if health == 100:\r\n health = 95\r\n health = health - low\r\n\r\n if health < 5:\r\n health = 5\r\n\r\n return health", "product_grade_a": 90, "product_grade_b": 80, "product_grade_c": 70, diff --git a/dojo/fixtures/dojo_testdata.json b/dojo/fixtures/dojo_testdata.json index d5b2d4f4538..26148621eaf 100644 --- a/dojo/fixtures/dojo_testdata.json +++ b/dojo/fixtures/dojo_testdata.json @@ -242,7 +242,6 @@ "mail_notifications_to": "", "enable_jira": false, "enable_product_grade": true, - "product_grade": "def grade_product(crit, high, med, low):\r\n health=100\r\n if crit > 0:\r\n health = 40\r\n health = health - ((crit - 1) * 5)\r\n if high > 0:\r\n if health == 100:\r\n health = 60\r\n health = health - ((high - 1) * 3)\r\n if med > 0:\r\n if health == 100:\r\n health = 80\r\n health = health - ((med - 1) * 2)\r\n if low > 0:\r\n if health == 100:\r\n health = 95\r\n health = health - low\r\n\r\n if health < 5:\r\n health = 5\r\n\r\n return health", "product_grade_a": 90, "product_grade_b": 80, "product_grade_c": 70, diff --git a/dojo/fixtures/system_settings.json b/dojo/fixtures/system_settings.json index 37033d658f0..eca1b4cc1be 100644 --- a/dojo/fixtures/system_settings.json +++ b/dojo/fixtures/system_settings.json @@ -6,7 +6,6 @@ "enable_deduplication": false, "enable_jira": false, "url_prefix": "", - "product_grade": "def grade_product(crit, high, med, low):\r\n health=100\r\n if crit > 0:\r\n health = 40\r\n health = health - ((crit - 1) * 5)\r\n if high > 0:\r\n if health == 100:\r\n health = 60\r\n health = health - ((high - 1) * 3)\r\n if med > 0:\r\n if health == 100:\r\n health = 80\r\n health = health - ((med - 1) * 2)\r\n if low > 0:\r\n if health == 100:\r\n health = 95\r\n health = health - low\r\n\r\n if health < 5:\r\n health = 5\r\n\r\n return health", "product_grade_a": 90, "product_grade_b": 80, "product_grade_c": 70, diff --git a/dojo/forms.py b/dojo/forms.py index a73abb00ce6..b2b39509933 100644 --- a/dojo/forms.py +++ b/dojo/forms.py @@ -3129,7 +3129,7 @@ def clean(self): class Meta: model = System_Settings - exclude = ["product_grade"] + fields = "__all__" class BenchmarkForm(forms.ModelForm): diff --git a/dojo/management/commands/system_settings.py b/dojo/management/commands/system_settings.py deleted file mode 100644 index eace6a7e2b5..00000000000 --- a/dojo/management/commands/system_settings.py +++ /dev/null @@ -1,35 +0,0 @@ -from django.core.management.base import BaseCommand - -from dojo.models import System_Settings - - -class Command(BaseCommand): - help = "Updates product grade calculation" - - def handle(self, *args, **options): - code = """def grade_product(crit, high, med, low): - health=100 - if crit > 0: - health = 40 - health = health - ((crit - 1) * 5) - if high > 0: - if health == 100: - health = 60 - health = health - ((high - 1) * 3) - if med > 0: - if health == 100: - health = 80 - health = health - ((med - 1) * 2) - if low > 0: - if health == 100: - health = 95 - health = health - low - - if health < 5: - health = 5 - - return health - """ - system_settings = System_Settings.objects.get(id=1) - system_settings.product_grade = code - system_settings.save() diff --git a/dojo/models.py b/dojo/models.py index 57ce9c18e72..7ab85e710d9 100644 --- a/dojo/models.py +++ b/dojo/models.py @@ -441,7 +441,6 @@ class System_Settings(models.Model): url_prefix = models.CharField(max_length=300, default="", blank=True, help_text=_("URL prefix if DefectDojo is installed in it's own virtual subdirectory.")) team_name = models.CharField(max_length=100, default="", blank=True) enable_product_grade = models.BooleanField(default=False, verbose_name=_("Enable Product Grading"), help_text=_("Displays a grade letter next to a product to show the overall health.")) - product_grade = models.CharField(max_length=800, blank=True) product_grade_a = models.IntegerField(default=90, verbose_name=_("Grade A"), help_text=_("Percentage score for an " @@ -685,19 +684,6 @@ def clean(self): }) -class SystemSettingsFormAdmin(forms.ModelForm): - product_grade = forms.CharField(widget=forms.Textarea) - - class Meta: - model = System_Settings - fields = ["product_grade"] - - -class System_SettingsAdmin(admin.ModelAdmin): - form = SystemSettingsFormAdmin - fields = ("product_grade",) - - def get_current_date(): return timezone.now().date() @@ -4854,7 +4840,7 @@ def __str__(self): admin.site.register(Tool_Type) admin.site.register(Cred_User) admin.site.register(Cred_Mapping) -admin.site.register(System_Settings, System_SettingsAdmin) +admin.site.register(System_Settings) admin.site.register(SLA_Configuration) admin.site.register(CWE) admin.site.register(Regulation) diff --git a/dojo/utils.py b/dojo/utils.py index 33e99846b81..cba54ac0009 100644 --- a/dojo/utils.py +++ b/dojo/utils.py @@ -20,7 +20,6 @@ import crum import cvss import vobject -from asteval import Interpreter from auditlog.models import LogEntry from cryptography.hazmat.backends import default_backend from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes @@ -1224,6 +1223,26 @@ def get_setting(setting): return getattr(settings, setting) +def grade_product(crit, high, med, low): + health = 100 + if crit > 0: + health = 40 + health -= ((crit - 1) * 5) + if high > 0: + if health == 100: + health = 60 + health -= ((high - 1) * 3) + if med > 0: + if health == 100: + health = 80 + health -= ((med - 1) * 2) + if low > 0: + if health == 100: + health = 95 + health -= low + return max(health, 5) + + @dojo_model_to_id @dojo_async_task(signature=True) @app.task @@ -1276,17 +1295,14 @@ def calculate_grade_internal(product, *args, **kwargs): medium = severity_count["numerical_severity__count"] elif severity_count["severity"] == "Low": low = severity_count["numerical_severity__count"] - aeval = Interpreter() - aeval(system_settings.product_grade) - grade_product = f"grade_product({critical}, {high}, {medium}, {low})" - prod_numeric_grade = aeval(grade_product) - if prod_numeric_grade != product.prod_numeric_grade: - logger.debug("Updating product %s grade from %s to %s", product.id, product.prod_numeric_grade, prod_numeric_grade) - product.prod_numeric_grade = prod_numeric_grade + grade = grade_product(critical, high, medium, low) + if grade != product.prod_numeric_grade: + logger.debug("Updating product %s grade from %s to %s", product.id, product.prod_numeric_grade, grade) + product.prod_numeric_grade = grade super(Product, product).save() else: # Use %s to safely handle None grades without formatter errors - logger.debug("Product %s grade %s is up to date", product.id, prod_numeric_grade) + logger.debug("Product %s grade %s is up to date", product.id, product.prod_numeric_grade) def perform_product_grading(product): diff --git a/unittests/test_importers_performance.py b/unittests/test_importers_performance.py index 1e7b05d8fe5..26ab5d025ce 100644 --- a/unittests/test_importers_performance.py +++ b/unittests/test_importers_performance.py @@ -310,9 +310,9 @@ def test_import_reimport_reimport_performance_pghistory_no_async_with_product_gr self.system_settings(enable_product_grade=True) self._import_reimport_performance( - expected_num_queries1=315, + expected_num_queries1=320, expected_num_async_tasks1=8, - expected_num_queries2=241, + expected_num_queries2=246, expected_num_async_tasks2=19, expected_num_queries3=123, expected_num_async_tasks3=18, From f3fc3c5a23ffa3e3d13e7d62fb91c013d9ae166c Mon Sep 17 00:00:00 2001 From: DefectDojo release bot Date: Mon, 12 Jan 2026 16:31:11 +0000 Subject: [PATCH 18/20] Update versions in application files --- components/package.json | 2 +- dojo/__init__.py | 2 +- helm/defectdojo/Chart.yaml | 8 ++++---- helm/defectdojo/README.md | 2 +- 4 files changed, 7 insertions(+), 7 deletions(-) diff --git a/components/package.json b/components/package.json index 6fc51fe3ce9..98eb5bef559 100644 --- a/components/package.json +++ b/components/package.json @@ -1,6 +1,6 @@ { "name": "defectdojo", - "version": "2.55.0-dev", + "version": "2.54.1", "license" : "BSD-3-Clause", "private": true, "dependencies": { diff --git a/dojo/__init__.py b/dojo/__init__.py index af8f028cb1c..4a99e33730d 100644 --- a/dojo/__init__.py +++ b/dojo/__init__.py @@ -4,6 +4,6 @@ # Django starts so that shared_task will use this app. from .celery import app as celery_app # noqa: F401 -__version__ = "2.54.0" +__version__ = "2.54.1" __url__ = "https://github.com/DefectDojo/django-DefectDojo" __docs__ = "https://documentation.defectdojo.com" diff --git a/helm/defectdojo/Chart.yaml b/helm/defectdojo/Chart.yaml index 7845acdd904..58bf9ea03f4 100644 --- a/helm/defectdojo/Chart.yaml +++ b/helm/defectdojo/Chart.yaml @@ -1,8 +1,8 @@ apiVersion: v2 -appVersion: "2.55.0-dev" +appVersion: "2.54.1" description: A Helm chart for Kubernetes to install DefectDojo name: defectdojo -version: 1.9.7-dev +version: 1.9.7 icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png maintainers: - name: madchap @@ -33,5 +33,5 @@ dependencies: # - kind: security # description: Critical bug annotations: - artifacthub.io/prerelease: "true" - artifacthub.io/changes: "" + artifacthub.io/prerelease: "false" + artifacthub.io/changes: "- kind: changed\n description: Bump DefectDojo to 2.54.1\n" diff --git a/helm/defectdojo/README.md b/helm/defectdojo/README.md index 26307d24629..10ff197441b 100644 --- a/helm/defectdojo/README.md +++ b/helm/defectdojo/README.md @@ -511,7 +511,7 @@ The HELM schema will be generated for you. # General information about chart values -![Version: 1.9.7-dev](https://img.shields.io/badge/Version-1.9.7--dev-informational?style=flat-square) ![AppVersion: 2.55.0-dev](https://img.shields.io/badge/AppVersion-2.55.0--dev-informational?style=flat-square) +![Version: 1.9.7](https://img.shields.io/badge/Version-1.9.7-informational?style=flat-square) ![AppVersion: 2.54.1](https://img.shields.io/badge/AppVersion-2.54.1-informational?style=flat-square) A Helm chart for Kubernetes to install DefectDojo From 00735b5a2d8fbab667726908cfb1bd3f61a36474 Mon Sep 17 00:00:00 2001 From: DefectDojo release bot Date: Mon, 12 Jan 2026 17:13:24 +0000 Subject: [PATCH 19/20] Update versions in application files --- components/package.json | 2 +- dojo/__init__.py | 2 +- helm/defectdojo/Chart.yaml | 8 ++++---- helm/defectdojo/README.md | 2 +- 4 files changed, 7 insertions(+), 7 deletions(-) diff --git a/components/package.json b/components/package.json index 98eb5bef559..6fc51fe3ce9 100644 --- a/components/package.json +++ b/components/package.json @@ -1,6 +1,6 @@ { "name": "defectdojo", - "version": "2.54.1", + "version": "2.55.0-dev", "license" : "BSD-3-Clause", "private": true, "dependencies": { diff --git a/dojo/__init__.py b/dojo/__init__.py index 4a99e33730d..fe74ae3fec3 100644 --- a/dojo/__init__.py +++ b/dojo/__init__.py @@ -4,6 +4,6 @@ # Django starts so that shared_task will use this app. from .celery import app as celery_app # noqa: F401 -__version__ = "2.54.1" +__version__ = "2.55.0-dev" __url__ = "https://github.com/DefectDojo/django-DefectDojo" __docs__ = "https://documentation.defectdojo.com" diff --git a/helm/defectdojo/Chart.yaml b/helm/defectdojo/Chart.yaml index 58bf9ea03f4..3f4198243e3 100644 --- a/helm/defectdojo/Chart.yaml +++ b/helm/defectdojo/Chart.yaml @@ -1,8 +1,8 @@ apiVersion: v2 -appVersion: "2.54.1" +appVersion: "2.55.0-dev" description: A Helm chart for Kubernetes to install DefectDojo name: defectdojo -version: 1.9.7 +version: 1.9.8-dev icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png maintainers: - name: madchap @@ -33,5 +33,5 @@ dependencies: # - kind: security # description: Critical bug annotations: - artifacthub.io/prerelease: "false" - artifacthub.io/changes: "- kind: changed\n description: Bump DefectDojo to 2.54.1\n" + artifacthub.io/prerelease: "true" + artifacthub.io/changes: "" diff --git a/helm/defectdojo/README.md b/helm/defectdojo/README.md index 10ff197441b..bd48dd00d4c 100644 --- a/helm/defectdojo/README.md +++ b/helm/defectdojo/README.md @@ -511,7 +511,7 @@ The HELM schema will be generated for you. # General information about chart values -![Version: 1.9.7](https://img.shields.io/badge/Version-1.9.7-informational?style=flat-square) ![AppVersion: 2.54.1](https://img.shields.io/badge/AppVersion-2.54.1-informational?style=flat-square) +![Version: 1.9.8-dev](https://img.shields.io/badge/Version-1.9.8--dev-informational?style=flat-square) ![AppVersion: 2.55.0-dev](https://img.shields.io/badge/AppVersion-2.55.0--dev-informational?style=flat-square) A Helm chart for Kubernetes to install DefectDojo From a8a8a1a574d82f23f48825b3279b6663c07dec6a Mon Sep 17 00:00:00 2001 From: Cody Maffucci <46459665+Maffooch@users.noreply.github.com> Date: Mon, 12 Jan 2026 10:41:58 -0700 Subject: [PATCH 20/20] Update expected query counts in performance tests for importers --- unittests/test_importers_performance.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/unittests/test_importers_performance.py b/unittests/test_importers_performance.py index cb6732afefe..c9bd839be00 100644 --- a/unittests/test_importers_performance.py +++ b/unittests/test_importers_performance.py @@ -320,9 +320,9 @@ def test_import_reimport_reimport_performance_pghistory_no_async_with_product_gr self.system_settings(enable_product_grade=True) self._import_reimport_performance( - expected_num_queries1=316, + expected_num_queries1=319, expected_num_async_tasks1=8, - expected_num_queries2=243, + expected_num_queries2=246, expected_num_async_tasks2=19, expected_num_queries3=125, expected_num_async_tasks3=18,