WP-Safety

CargoHub – Kargo Takip Sistemi Security & Risk Analysis

wordpress.org/plugins/cargohub-kargo-takip

Cargo tracking for WooCommerce: add carriers and tracking numbers, email customers, and show tracking on My Account.

0 active installs v1.1.3 PHP 7.3+ WP 5.0+ Updated Aug 21, 2025
kargoshippingtakiptrackingwoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is CargoHub – Kargo Takip Sistemi Safe to Use in 2026?

Generally Safe

Score 100/100

CargoHub – Kargo Takip Sistemi has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7mo ago
Risk Assessment

The 'cargohub-kargo-takip' plugin v1.1.3 presents a mixed security posture. On the positive side, it exhibits strong adherence to security best practices by utilizing prepared statements for a significant majority of its SQL queries and employing proper output escaping for most outputs. The absence of external HTTP requests and known CVEs in its history is also commendable, suggesting a generally secure development approach. However, there are specific areas of concern that warrant attention. The presence of a taint flow with an unsanitized path, even if not classified as critical or high severity in the taint analysis itself, represents a potential entry point for vulnerabilities if exploited. While the static analysis reports no unprotected entry points and a good number of nonce and capability checks, this single unsanitized path is a notable deviation from an otherwise robust security implementation. The plugin's vulnerability history being entirely clear is a strong positive indicator, suggesting diligent maintenance and a lack of past security flaws. In conclusion, while the plugin demonstrates good security foundations, the identified unsanitized path needs careful review and remediation to prevent potential exploitation, especially given the absence of any recorded past vulnerabilities which might suggest this is an oversight rather than a recurring issue.

Key Concerns

  • Taint flow with unsanitized path
Vulnerabilities
None known

CargoHub – Kargo Takip Sistemi Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

CargoHub – Kargo Takip Sistemi Code Analysis

Dangerous Functions
0
Raw SQL Queries
8
28 prepared
Unescaped Output
33
143 escaped
Nonce Checks
8
Capability Checks
6
File Operations
7
External Requests
0
Bundled Libraries
0

SQL Query Safety

78% prepared36 total queries

Output Escaping

81% escaped176 total outputs
Data Flows
1 unsanitized

Data Flow Analysis

4 flows1 with unsanitized paths
handle_add_carrier (includes\class-cargohub-free-admin.php:386)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

CargoHub – Kargo Takip Sistemi Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 42
actionbefore_woocommerce_initcargohub-kargo-takip.php:41
actionplugins_loadedcargohub-kargo-takip.php:48
actionadmin_noticescargohub-kargo-takip.php:52
actionadmin_noticescargohub-kargo-takip.php:63
actionplugins_loadedcargohub-kargo-takip.php:142
actioninitcargohub-kargo-takip.php:145
actionwp_loadedcargohub-kargo-takip.php:327
actionadmin_noticescargohub-kargo-takip.php:399
actionplugins_loadedcargohub-kargo-takip.php:407
actioncargohub_free_cleanupcargohub-kargo-takip.php:435
actionadmin_menuincludes\class-cargohub-free-admin.php:32
actionadmin_enqueue_scriptsincludes\class-cargohub-free-admin.php:33
actionwoocommerce_admin_order_data_after_order_detailsincludes\class-cargohub-free-admin.php:39
actionwoocommerce_process_shop_order_metaincludes\class-cargohub-free-admin.php:40
filterwoocommerce_my_account_my_orders_columnsincludes\class-cargohub-free-admin.php:43
actionwoocommerce_my_account_my_orders_column_carrierincludes\class-cargohub-free-admin.php:44
actionwoocommerce_my_account_my_orders_column_trackingincludes\class-cargohub-free-admin.php:45
filterwoocommerce_my_account_my_orders_actionsincludes\class-cargohub-free-admin.php:46
actionwp_enqueue_scriptsincludes\class-cargohub-free-admin.php:49
actionadmin_noticesincludes\class-cargohub-free-admin.php:389
actionadmin_noticesincludes\class-cargohub-free-admin.php:408
actionadmin_noticesincludes\class-cargohub-free-admin.php:419
actionadmin_noticesincludes\class-cargohub-free-admin.php:430
actionadmin_noticesincludes\class-cargohub-free-admin.php:454
actionadmin_noticesincludes\class-cargohub-free-admin.php:477
actionadmin_noticesincludes\class-cargohub-free-admin.php:493
actionadmin_noticesincludes\class-cargohub-free-admin.php:516
filterupload_mimesincludes\class-cargohub-free-admin.php:538
actionadmin_noticesincludes\class-cargohub-free-admin.php:598
actionadmin_noticesincludes\class-cargohub-free-admin.php:608
actionadmin_noticesincludes\class-cargohub-free-admin.php:626
actioncargohub_free_tracking_addedincludes\class-cargohub-free-email.php:33
actionwp_enqueue_scriptsincludes\class-cargohub-free-orders.php:32
actioninitincludes\class-cargohub-free-orders.php:33
actionwoocommerce_order_status_changedincludes\class-cargohub-free-orders.php:37
actionwoocommerce_order_details_after_order_tableincludes\class-cargohub-free-orders.php:38
actionwoocommerce_email_order_detailsincludes\class-cargohub-free-orders.php:39
filterwc_order_statusesincludes\class-cargohub-free-orders.php:40
actionadmin_noticesincludes\class-cargohub-free-orders.php:42
actionwoocommerce_order_status_changedincludes\class-cargohub-free-orders.php:70
actionadmin_noticesincludes\class-cargohub-free-orders.php:87
actionadmin_noticesincludes\class-cargohub-free-orders.php:97

Scheduled Events 1

cargohub_free_cleanup
Maintenance & Trust

CargoHub – Kargo Takip Sistemi Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedAug 21, 2025
PHP min version7.3
Downloads317

Community Trust

Rating100/100
Number of ratings1
Active installs0
Alternatives

CargoHub – Kargo Takip Sistemi Alternatives

Cargo Tracking for WooCommerce

Cargo Tracking for WooCommerce

cargo-tracking-for-woocommerce

A
85

With the WooCommerce cargo tracking plugin, you can add as many cargo companies as you want, show cargo tracking links on the front and admin side, an …

400 No CVEs
Advanced Shipment Tracking for WooCommerce

Advanced Shipment Tracking for WooCommerce

woo-advanced-shipment-tracking

A
98

Add shipment tracking info to WooCommerce orders, send tracking numbers to customers via email, and let them track deliveries from My Account.

60K 2 CVEs
Shiprocket

Shiprocket

shiprocket

B
78

Auto Sync your Woocommerce store orders & ship them at lowest shipping rates. Automate your shipping, save time & money.

10K 1 unpatched
AfterShip Tracking – All-In-One WooCommerce Order Tracking (Free plan available)

AfterShip Tracking – All-In-One WooCommerce Order Tracking (Free plan available)

aftership-woocommerce-tracking

A
99

Track orders in one place. shipment tracking, automated notifications, order lookup, branded tracking page, delivery day prediction

8K 1 CVE
YITH WooCommerce Order & Shipment Tracking

YITH WooCommerce Order & Shipment Tracking

yith-woocommerce-order-tracking

A
99

Add an easy tool to manage order shipping information of your shop and to notified your customers about the shipping.

7K 1 CVE
Developer Profile

CargoHub – Kargo Takip Sistemi Developer Profile

RomiTeT

1 plugin · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect CargoHub – Kargo Takip Sistemi

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/cargohub-kargo-takip/assets/css/cargohub-admin.css/wp-content/plugins/cargohub-kargo-takip/assets/css/cargohub-front.css/wp-content/plugins/cargohub-kargo-takip/assets/js/cargohub-admin.js

HTML / DOM Fingerprints

CSS Classes
cargohub-admin-notice
FAQ

Frequently Asked Questions about CargoHub – Kargo Takip Sistemi