Plugin Name: Administrative Shortcodes Version: 0.3.4 Author: Hassan Derakhshandeh Description: A set of shortcodes for site admins File Path: /trunk/administrative-shortcodes.php File Size: 7.9 KB Last Change: Revision 2529996, 5 years ago, checked in by shazdeh Potential Vulnerabilities: Shortcode vulnerabilities: The plugin provides several shortcodes that could potentially be exploited if not properly sanitized. For example, the shortcode allows for conditional content, which could be misused if input is not checked properly. Database interaction: The shortcode interacts directly with the database to switch blog contexts. Improper sanitation of or parameters could lead to SQL injection risks. Function execution: The shortcode allows function execution via . If is not properly validated, this could lead to code execution vulnerabilities. File loading: The shortcode loads template files. If the parameter is not sanitized, it could be exploited for Local File Inclusion (LFI).