Does ActiveCampaign for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is ActiveCampaign for WooCommerce compatible with WordPress 6.8.5?

According to WordPress.org data, ActiveCampaign for WooCommerce 2.10.3 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is ActiveCampaign for WooCommerce compatible with PHP 7.4+?

ActiveCampaign for WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is ActiveCampaign for WooCommerce updated?

ActiveCampaign for WooCommerce was last updated on Apr 16, 2026. Frequent updates are generally a positive security signal.

What is ActiveCampaign for WooCommerce's security score?

ActiveCampaign for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

ActiveCampaign for WooCommerce Security & Risk Analysis

wordpress.org/plugins/activecampaign-for-woocommerce

Autonomous marketing to transform your store. Fuel your customer journeys with personalized experiences across email, SMS, and WhatsApp.

6K active installs v2.10.3 PHP 7.4+ WP 6.0+ Updated Apr 16, 2026

abandoned-cartactivecampaignecommerceemail-marketingwoocommerce

A · Safe

CVEs total1

Unpatched0

Last CVEDec 20, 2022

Plugin page Download

Safety Verdict

Is ActiveCampaign for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

ActiveCampaign for WooCommerce has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

1 known CVELast CVE: Dec 20, 2022Updated 1mo ago

Risk Assessment

The ActiveCampaign for WooCommerce plugin v2.10.2 presents a mixed security posture. While it demonstrates strong practices in output escaping (97% proper) and uses prepared statements for a majority of its SQL queries (70%), significant concerns arise from its attack surface. A substantial 31 AJAX handlers lack authentication checks, creating a large entry point for potential unauthorized actions. The absence of capability checks in any of the code is a critical oversight, as it means any user could potentially trigger sensitive functionalities. The plugin has a history of medium-severity vulnerabilities, with one known CVE. Although currently patched, this indicates a potential for past vulnerabilities to be re-introduced or similar weaknesses to exist, especially in areas like CSRF, which has been a past issue. The lack of taint analysis results for this version is also a point of concern, as it limits visibility into how user-supplied data is handled and whether it could be exploited.

Key Concerns

Large attack surface without authentication checks
Missing capability checks
History of medium severity CVE
Bundled Guzzle library (potential for outdated versions)

Vulnerabilities

1 published

ActiveCampaign for WooCommerce Security Vulnerabilities

CVEs by Year

1 CVE in 2022

2022

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2022-3923medium · 6.5Cross-Site Request Forgery (CSRF)

ActiveCampaign for WooCommerce <= 1.9.7 - Cross-Site Request Forgery

Dec 20, 2022 Patched in 1.9.8 (399d)

Version History

ActiveCampaign for WooCommerce Release Timeline

v2.10.3Current

v2.10.2

v2.9.2

v2.9.1

v2.9.0

v2.8.7

v2.8.6

v2.8.3

v2.8.2

v2.8.1

v2.8.0

v2.7.11

v2.7.10

v2.7.7

v2.7.6

v2.7.5

v2.7.4

v2.7.3

v2.7.2

v2.7.1

Code Analysis

Analyzed Mar 16, 2026

ActiveCampaign for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

85 prepared

Unescaped Output

452 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Guzzle

SQL Query Safety

70% prepared121 total queries

Output Escaping

97% escaped467 total outputs

Attack Surface

31 unprotected

ActiveCampaign for WooCommerce Attack Surface

Entry Points32

Unprotected31

AJAX Handlers 31

authwp_ajax_activecampaign_for_woocommerce_schedule_bulk_historical_syncincludes\class-activecampaign-for-woocommerce.php:836

authwp_ajax_activecampaign_for_woocommerce_check_historical_sync_statusincludes\class-activecampaign-for-woocommerce.php:842

authwp_ajax_activecampaign_for_woocommerce_cancel_historical_syncincludes\class-activecampaign-for-woocommerce.php:848

authwp_ajax_activecampaign_for_woocommerce_pause_historical_syncincludes\class-activecampaign-for-woocommerce.php:854

authwp_ajax_activecampaign_for_woocommerce_reset_historical_syncincludes\class-activecampaign-for-woocommerce.php:860

authwp_ajax_activecampaign_for_woocommerce_run_single_subscription_syncincludes\class-activecampaign-for-woocommerce.php:948

authwp_ajax_api_testincludes\class-activecampaign-for-woocommerce.php:1147

authwp_ajax_activecampaign_for_woocommerce_dismiss_error_noticeincludes\class-activecampaign-for-woocommerce.php:1153

authwp_ajax_activecampaign_for_woocommerce_load_connection_blockincludes\class-activecampaign-for-woocommerce.php:1159

authwp_ajax_activecampaign_for_woocommerce_dismiss_plugin_noticeincludes\class-activecampaign-for-woocommerce.php:1165

authwp_ajax_activecampaign_for_woocommerce_clear_error_logincludes\class-activecampaign-for-woocommerce.php:1171

authwp_ajax_activecampaign_for_woocommerce_clear_all_settingsincludes\class-activecampaign-for-woocommerce.php:1177

authwp_ajax_activecampaign_for_woocommerce_reset_connection_idincludes\class-activecampaign-for-woocommerce.php:1184

authwp_ajax_activecampaign_for_woocommerce_create_connectionincludes\class-activecampaign-for-woocommerce.php:1190

authwp_ajax_activecampaign_for_woocommerce_update_connectionincludes\class-activecampaign-for-woocommerce.php:1196

authwp_ajax_activecampaign_for_woocommerce_select_connectionincludes\class-activecampaign-for-woocommerce.php:1202

authwp_ajax_activecampaign_for_woocommerce_delete_connectionincludes\class-activecampaign-for-woocommerce.php:1208

authwp_ajax_activecampaign_for_woocommerce_resync_featuresincludes\class-activecampaign-for-woocommerce.php:1214

authwp_ajax_activecampaign_for_woocommerce_manual_abandonment_syncincludes\class-activecampaign-for-woocommerce.php:1225

authwp_ajax_activecampaign_for_woocommerce_reset_failed_abandonment_syncincludes\class-activecampaign-for-woocommerce.php:1231

authwp_ajax_activecampaign_for_woocommerce_delete_abandoned_cart_rowincludes\class-activecampaign-for-woocommerce.php:1237

authwp_ajax_activecampaign_for_woocommerce_sync_abandoned_cart_rowincludes\class-activecampaign-for-woocommerce.php:1243

authwp_ajax_activecampaign_for_woocommerce_schedule_product_syncincludes\class-activecampaign-for-woocommerce.php:1249

authwp_ajax_activecampaign_for_woocommerce_check_product_sync_statusincludes\class-activecampaign-for-woocommerce.php:1255

authwp_ajax_activecampaign_for_woocommerce_cancel_product_syncincludes\class-activecampaign-for-woocommerce.php:1261

authwp_ajax_activecampaign_for_woocommerce_reset_product_syncincludes\class-activecampaign-for-woocommerce.php:1269

authwp_ajax_activecampaign_for_woocommerce_run_single_record_syncincludes\class-activecampaign-for-woocommerce.php:1277

authwp_ajax_activecampaign_for_woocommerce_create_status_mappingincludes\class-activecampaign-for-woocommerce.php:1284

authwp_ajax_activecampaign_for_woocommerce_delete_status_mappingincludes\class-activecampaign-for-woocommerce.php:1291

authwp_ajax_activecampaign_for_woocommerce_cart_sync_guestincludes\class-activecampaign-for-woocommerce.php:1385

noprivwp_ajax_activecampaign_for_woocommerce_cart_sync_guestincludes\class-activecampaign-for-woocommerce.php:1391

REST API Routes 1

POST/wp-json/wc/v2/active-campaign-for-woocommerce/register-integrationadmin\class-activecampaign-for-woocommerce-admin.php:1122

WordPress Hooks 80

actionbefore_woocommerce_initactivecampaign-for-woocommerce.php:52

actionbefore_woocommerce_initactivecampaign-for-woocommerce.php:61

actionadmin_noticesactivecampaign-for-woocommerce.php:171

filterplugin_row_metaactivecampaign-for-woocommerce.php:198

actionplugins_loadedactivecampaign-for-woocommerce.php:206

actionplugins_loadedincludes\class-activecampaign-for-woocommerce.php:378

actionupgrader_post_installincludes\class-activecampaign-for-woocommerce.php:392

actionactivecampaign_for_woocommerce_verify_tablesincludes\class-activecampaign-for-woocommerce.php:399

actionupgrader_process_completeincludes\class-activecampaign-for-woocommerce.php:406

actionupdate_plugin_complete_actionsincludes\class-activecampaign-for-woocommerce.php:413

actionplugins_loadedincludes\class-activecampaign-for-woocommerce.php:420

filtercron_schedulesincludes\class-activecampaign-for-woocommerce.php:441

actionwoocommerce_update_cart_action_cart_updatedincludes\class-activecampaign-for-woocommerce.php:448

actionwoocommerce_add_to_cartincludes\class-activecampaign-for-woocommerce.php:454

actionwoocommerce_cart_item_removedincludes\class-activecampaign-for-woocommerce.php:460

actionwoocommerce_cart_emptiedincludes\class-activecampaign-for-woocommerce.php:466

actionwoocommerce_checkout_update_order_metaincludes\class-activecampaign-for-woocommerce.php:472

actionwoocommerce_new_orderincludes\class-activecampaign-for-woocommerce.php:483

actionwoocommerce_payment_completeincludes\class-activecampaign-for-woocommerce.php:495

actionwoocommerce_checkout_update_order_metaincludes\class-activecampaign-for-woocommerce.php:510

actionwoocommerce_checkout_order_createdincludes\class-activecampaign-for-woocommerce.php:519

actionuser_registerincludes\class-activecampaign-for-woocommerce.php:528

actionactivecampaign_for_woocommerce_admin_settings_updatedincludes\class-activecampaign-for-woocommerce.php:556

actionactivecampaign_for_woocommerce_admin_settings_updatedincludes\class-activecampaign-for-woocommerce.php:563

filteractivecampaign_for_woocommerce_admin_settings_updatedincludes\class-activecampaign-for-woocommerce.php:569

actionactivecampaign_for_woocommerce_update_connection_optionsincludes\class-activecampaign-for-woocommerce.php:575

actionactivecampaign_for_woocommerce_retrieve_connection_optionsincludes\class-activecampaign-for-woocommerce.php:581

actionactivecampaign_for_woocommerce_ready_new_orderincludes\class-activecampaign-for-woocommerce.php:587

actionactivecampaign_for_woocommerce_download_log_dataincludes\class-activecampaign-for-woocommerce.php:595

actionbefore_delete_postincludes\class-activecampaign-for-woocommerce.php:603

actionwp_trash_postincludes\class-activecampaign-for-woocommerce.php:611

actionwp_trash_postincludes\class-activecampaign-for-woocommerce.php:619

actionuntrash_postincludes\class-activecampaign-for-woocommerce.php:627

actionwp_create_postincludes\class-activecampaign-for-woocommerce.php:635

actionwoocommerce_process_shop_order_metaincludes\class-activecampaign-for-woocommerce.php:643

actionwoocommerce_order_status_changedincludes\class-activecampaign-for-woocommerce.php:651

actionwoocommerce_order_edit_statusincludes\class-activecampaign-for-woocommerce.php:661

actionwc_gateway_stripe_process_responseincludes\class-activecampaign-for-woocommerce.php:670

actionwoocommerce_order_refundedincludes\class-activecampaign-for-woocommerce.php:679

actionactivecampaign_for_woocommerce_admin_sync_single_order_activeincludes\class-activecampaign-for-woocommerce.php:695

actionactivecampaign_for_woocommerce_admin_sync_single_order_statusincludes\class-activecampaign-for-woocommerce.php:703

actionactivecampaign_for_woocommerce_run_product_syncincludes\class-activecampaign-for-woocommerce.php:720

actionactivecampaign_for_woocommerce_run_single_product_syncincludes\class-activecampaign-for-woocommerce.php:728

actionactivecampaign_for_woocommerce_run_sync_connectionincludes\class-activecampaign-for-woocommerce.php:736

actionactivecampaign_for_woocommerce_build_product_sync_schedulesincludes\class-activecampaign-for-woocommerce.php:744

actionwoocommerce_product_set_stock_statusincludes\class-activecampaign-for-woocommerce.php:752

actionactivecampaign_for_woocommerce_admin_sync_single_order_historicalincludes\class-activecampaign-for-woocommerce.php:766

actionactivecampaign_for_woocommerce_prep_historical_dataincludes\class-activecampaign-for-woocommerce.php:790

actionadd_meta_boxesincludes\class-activecampaign-for-woocommerce.php:797

actionactivecampaign_for_woocommerce_ready_existing_historical_dataincludes\class-activecampaign-for-woocommerce.php:805

actionactivecampaign_for_woocommerce_run_historical_sync_contactsincludes\class-activecampaign-for-woocommerce.php:812

actionadd_meta_boxesincludes\class-activecampaign-for-woocommerce.php:875

actionactivecampaign_for_woocommerce_admin_sync_single_subscription_activeincludes\class-activecampaign-for-woocommerce.php:883

actionactivecampaign_for_woocommerce_admin_sync_single_subscription_historicalincludes\class-activecampaign-for-woocommerce.php:891

actionactivecampaign_for_woocommerce_update_subscriptionincludes\class-activecampaign-for-woocommerce.php:908

actionwoocommerce_subscription_status_updatedincludes\class-activecampaign-for-woocommerce.php:916

actionactivecampaign_for_woocommerce_route_order_update_to_subscriptionincludes\class-activecampaign-for-woocommerce.php:924

actionwoocommerce_scheduled_subscription_trial_endincludes\class-activecampaign-for-woocommerce.php:932

actionwoocommerce_checkout_subscription_createdincludes\class-activecampaign-for-woocommerce.php:940

actionactivecampaign_for_woocommerce_miscat_order_to_subscriptionincludes\class-activecampaign-for-woocommerce.php:956

actionactivecampaign_for_woocommerce_miscat_order_to_subscription_historicalincludes\class-activecampaign-for-woocommerce.php:964

actionwoocommerce_checkout_create_orderincludes\class-activecampaign-for-woocommerce.php:998

actionwoocommerce_store_api_checkout_order_processedincludes\class-activecampaign-for-woocommerce.php:1005

actionactivecampaign_for_woocommerce_load_sitetrackingincludes\class-activecampaign-for-woocommerce.php:1013

actionactivecampaign_for_woocommerce_cart_updated_recurring_eventincludes\class-activecampaign-for-woocommerce.php:1020

actionadmin_enqueue_scriptsincludes\class-activecampaign-for-woocommerce.php:1036

actionadmin_menuincludes\class-activecampaign-for-woocommerce.php:1043

actionadmin_menuincludes\class-activecampaign-for-woocommerce.php:1050

actionrest_api_initincludes\class-activecampaign-for-woocommerce.php:1069

actionadmin_noticesincludes\class-activecampaign-for-woocommerce.php:1090

filteradmin_noticesincludes\class-activecampaign-for-woocommerce.php:1112

actionactivecampaign_for_woocommerce_run_manual_abandonment_syncincludes\class-activecampaign-for-woocommerce.php:1123

actionactivecampaign_for_woocommerce_run_force_row_abandonment_syncincludes\class-activecampaign-for-woocommerce.php:1129

actionactivecampaign_for_woocommerce_run_manual_abandonment_deleteincludes\class-activecampaign-for-woocommerce.php:1135

actionwp_enqueue_scriptsincludes\class-activecampaign-for-woocommerce.php:1321

actionwoocommerce_checkout_create_orderincludes\class-activecampaign-for-woocommerce.php:1335

actionwoocommerce_store_api_checkout_order_processedincludes\class-activecampaign-for-woocommerce.php:1342

actionwoocommerce_after_checkout_billing_formincludes\class-activecampaign-for-woocommerce.php:1349

actionwoocommerce_after_checkout_formincludes\class-activecampaign-for-woocommerce.php:1357

actionwoocommerce_initincludes\class-activecampaign-for-woocommerce.php:1364

Maintenance & Trust

ActiveCampaign for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedApr 16, 2026

PHP min version7.4

Downloads491K

Community Trust

Rating80/100

Number of ratings47

Active installs6K

Alternatives

ActiveCampaign for WooCommerce Alternatives

Campaigner Email Marketing

campaigner-email-marketing

100

An easy-to-use email marketing plugin to recover abandoned carts, notify customers about back-in-stock items, and grow your contact list.

0 No CVEs

Cart Rescue – Abandoned Cart Recovery for WooCommerce

cart-rescue-abandoned-cart-recovery

100

A complete abandoned cart recovery solution to grow your business. Features a premium UI, email templates, and detailed reports.

0 No CVEs

MailerLite – WooCommerce integration

woo-mailerlite

Powerful e-commerce email marketing tools that are easy to use. Grow your store with automated emails, pop-ups, product blocks, sales tracking + more.

30K 4 CVEs

CartBounty – Save and recover abandoned carts for WooCommerce

woo-save-abandoned-carts

Save abandoned carts and send automated abandoned cart recovery messages. Get more leads, reduce cart abandonment, and increase sales.

10K 1 CVE

MWB HubSpot for WooCommerce – CRM, Abandoned Cart, Email Marketing, Marketing Automation & Analytics

makewebbetter-hubspot-for-woocommerce

Integrate WooCommerce with HubSpot’s free CRM, abandoned cart tracking, email marketing, marketing automation, analytics & more.

7K 1 CVE

Developer Profile

ActiveCampaign for WooCommerce Developer Profile

ActiveCampaign

1 plugin · 6K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

399 days

View full developer profile

Detection Fingerprints

How We Detect ActiveCampaign for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/activecampaign-for-woocommerce/admin/js/abandoned-cart.js/wp-content/plugins/activecampaign-for-woocommerce/admin/js/settings.js/wp-content/plugins/activecampaign-for-woocommerce/admin/css/abandoned-cart.css/wp-content/plugins/activecampaign-for-woocommerce/admin/css/settings.css/wp-content/plugins/activecampaign-for-woocommerce/includes/js/account-linking.js

Script Paths

Version Parameters

activecampaign-for-woocommerce/admin/js/abandoned-cart.js?ver=activecampaign-for-woocommerce/admin/js/settings.js?ver=activecampaign-for-woocommerce/admin/css/abandoned-cart.css?ver=activecampaign-for-woocommerce/admin/css/settings.css?ver=activecampaign-for-woocommerce/includes/js/account-linking.js?ver=

HTML / DOM Fingerprints

CSS Classes

activecampaign-for-woocommerce-abandoned-cart-display

Data Attributes

data-ac-integration-settings

JS Globals

activecampaign_for_woocommerce_params

FAQ