Does API Improver for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in API Improver for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is API Improver for WooCommerce compatible with WordPress 5.6.17?

According to WordPress.org data, API Improver for WooCommerce 1.1.0 has been tested up to WordPress 5.6.17. Check the plugin's changelog for the latest compatibility information.

Is API Improver for WooCommerce compatible with PHP 7.0+?

API Improver for WooCommerce requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is API Improver for WooCommerce updated?

API Improver for WooCommerce was last updated on Jan 7, 2021. Frequent updates are generally a positive security signal.

What is API Improver for WooCommerce's security score?

API Improver for WooCommerce has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

API Improver for WooCommerce Security & Risk Analysis

wordpress.org/plugins/api-improver-for-woocommerce

A plugin to improve your API REST.

0 active installs v1.1.0 PHP 7.0+ WP 4.7+ Updated Jan 7, 2021

apimariovalneyproductsrestwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is API Improver for WooCommerce Safe to Use in 2026?

Generally Safe

Score 85/100

API Improver for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The plugin 'api-improver-for-woocommerce' v1.1.0 exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events with unprotected entry points significantly limits the potential attack surface. The code also demonstrates good practices by using prepared statements for all SQL queries and having a high percentage of properly escaped output.

Furthermore, the plugin has no recorded vulnerabilities (CVEs) and no identified critical or high-severity taint flows, indicating a likely well-written and secure codebase. The presence of a capability check is a positive sign for authorization. While there are no explicitly dangerous functions identified, and file operations and external HTTP requests are absent, the lack of nonce checks across all entry points (though there are zero unprotected entry points) is a minor area for potential future hardening, even in a seemingly secure plugin.

In conclusion, this plugin appears to be highly secure with no immediate critical risks. Its strengths lie in its limited attack surface, secure data handling (SQL and output), and a clean vulnerability history. The primary area for minor improvement, if any, would be to consistently implement nonce checks where applicable for added defense in depth, even though current analysis shows no vulnerabilities stemming from their absence.

Key Concerns

No nonce checks found

Vulnerabilities

None known

API Improver for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

API Improver for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

80% escaped5 total outputs

Attack Surface

API Improver for WooCommerce Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionplugins_loadedapi-improver-for-woocommerce.php:111

actionplugins_loadedapi-improver-for-woocommerce.php:347

actionadmin_noticesmodules\dependence\class-module-dependence.php:69

filterwoocommerce_rest_api_get_rest_namespacesmodules\woocommerce\class-module-woocommerce.php:50

Maintenance & Trust

API Improver for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested5.6.17

Last updatedJan 7, 2021

PHP min version7.0

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

API Improver for WooCommerce Alternatives

Products and Orders Last Modified for WC REST API

products-and-orders-last-modified-for-wc-rest-api

Retrieve Last Modified Products and Orders via WooCommerce REST API

100 No CVEs

CodingMall Product Relay for WooCommerce

codingmall-product-relay-for-woocommerce

100

Sync WooCommerce products, prices, and stock between multiple stores via the REST API.

0 No CVEs

WooCommerce Legacy REST API

woocommerce-legacy-rest-api

The WooCommerce Legacy REST API, which is now part of WooCommerce itself but will be removed in WooCommerce 9.0.

400K No CVEs

Country Based Restrictions for WooCommerce

woo-product-country-base-restrictions

100

Restrict WooCommerce products by country — hide or block purchases using geolocation so only customers in allowed countries can buy.

5K No CVEs

WooCommerce Product Dependencies

woocommerce-product-dependencies

Restrict access to any WooCommerce product, depending on the ownership and/or purchase of other required products.

3K No CVEs

Developer Profile

API Improver for WooCommerce Developer Profile

Mário Valney

7 plugins · 34K total installs

trust score

Avg Security Score

92/100

Avg Patch Time

847 days

View full developer profile

Detection Fingerprints

How We Detect API Improver for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ