[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fTdumSVe6KU7JDA3AOv1O4__81PmcafXx_vQclJf1sAg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":36,"analysis":37,"fingerprints":184},"cedcommerce-connector-for-tiktok-shop","CedCommerce Connector for TikTok Shop","1.0.1","cedcommerce","https:\u002F\u002Fprofiles.wordpress.org\u002Fcedcommerce\u002F","\u003Cp>Maximize your sales potential on TikTok Shop with CedCommerce’s powerful TikTok integration app, tailored for eCommerce businesses aiming to expand their reach. This app provides a smooth connection between WooCommerce and TikTok, simplifying online selling through automation.\u003C\u002Fp>\n\u003Cp>Save time with one-click bulk uploads and real-time inventory management, ensuring your products are always available to millions of potential customers. Enhance operational efficiency with customizable product templates and a centralized order management dashboard. Its user-friendly interface and robust features simplify online selling by automating essential tasks for peak performance.\u003C\u002Fp>\n\u003Ch4>Main features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>One-Click Bulk Upload\u003C\u002Fstrong>\u003Cbr \u002F>\nUpload your entire product catalog to TikTok Shop with just a few clicks. This feature guarantees accuracy and saves valuable time, enabling you to focus on growing your business.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Automated Inventory Management\u003C\u002Fstrong>\u003Cbr \u002F>\nKeep your stock levels synchronized in near real-time across both TikTok Shop and WooCommerce. Regular updates and threshold inventory notifications ensure you never miss a sale due to stockouts.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Simplified Product Listing\u003C\u002Fstrong>\u003Cbr \u002F>\nStreamline the process of listing products on TikTok Shop. Reach millions of potential customers, reducing errors and maintaining consistency across your listings.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Advanced Category Template\u003C\u002Fstrong>\u003Cbr \u002F>\nIncrease your operational efficiency with customizable product profiles. Organize your offerings with ease, making product management on TikTok Shop more intuitive and effective.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Near Real-Time Synchronization\u003C\u002Fstrong>\u003Cbr \u002F>\nStay ahead with instant updates of product prices and inventory levels. This synchronization ensures that your TikTok Shop and eCommerce store data are always accurate and up to date.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Advanced Order Management\u003C\u002Fstrong>\u003Cbr \u002F>\nManage all your orders from TikTok Shop from a single, centralized dashboard. This comprehensive order management system enhances customer satisfaction by making order processing smoother and more reliable.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>External API\u003C\u002Fh4>\n\u003Cp>This plugin uses external APIs (https:\u002F\u002Ftiktok-api-backend.cifapps.com\u002F(endpoint), https:\u002F\u002Ftiktok-app-backend.cifapps.com\u002F(endpoint)) to facilitate seamless integration with TikTok Shop.The API enables advanced features such as managing product listings, order synchronization. For more information about the API, please visit Cedcommerce Privacy Policy Page (https:\u002F\u002Fcedcommerce.com\u002Fprivacy-policy).\u003C\u002Fp>\n","This plugin enables seamless integration with TikTok Shop, providing advanced features like managing products listing and order synchronization.",200,2570,0,"2025-07-23T05:21:00.000Z","6.6.5","4.0","7.4",[4,19,20,21,22],"solution-for-tiktok-shop-woocommerce-integration","tiktok-shop-integration-for-woocommerce","tiktok-shop-integration-for-woocommerce-plugin","tiktok-shop-woocommerce-integration","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch\u002Fcedcommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcedcommerce-connector-for-tiktok-shop.1.0.1.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},21,4900,83,204,67,"2026-04-04T04:38:57.723Z",[],{"attackSurface":38,"codeSignals":113,"taintFlows":142,"riskAssessment":170,"analyzedAt":183},{"hooks":39,"ajaxHandlers":101,"restRoutes":109,"shortcodes":110,"cronEvents":111,"entryPointCount":112,"unprotectedCount":112},[40,45,49,52,57,60,62,65,69,72,75,78,81,84,87,90,92,95,98],{"type":41,"name":42,"callback":43,"file":44,"line":25},"action","admin_notices","ced_tiktok_admin_notice_activation","cedcommerce-connector-for-tiktok-shop.php",{"type":41,"name":46,"callback":47,"file":44,"line":48},"admin_init","CCTS_deactivate_woo_missing",102,{"type":41,"name":42,"callback":50,"file":44,"line":51},"CCTS_woo_missing_notice",108,{"type":41,"name":53,"callback":54,"file":55,"line":56},"plugins_loaded","anonymous","includes\\class-CCTS.php",126,{"type":41,"name":58,"callback":54,"file":55,"line":59},"admin_enqueue_scripts",139,{"type":41,"name":58,"callback":54,"file":55,"line":61},140,{"type":41,"name":63,"callback":54,"file":55,"line":64},"admin_menu",141,{"type":66,"name":67,"callback":54,"file":55,"line":68},"filter","ced_add_marketplace_menus_array",142,{"type":41,"name":70,"callback":54,"file":55,"line":71},"rest_api_init",143,{"type":66,"name":73,"callback":54,"file":55,"line":74},"woocommerce_rest_api_get_rest_namespaces",144,{"type":66,"name":76,"callback":54,"file":55,"line":77},"woocommerce_api_permissions_in_scope",145,{"type":41,"name":79,"callback":54,"file":55,"line":80},"woocommerce_product_options_pricing",146,{"type":41,"name":82,"callback":54,"file":55,"line":83},"save_post",147,{"type":41,"name":85,"callback":54,"file":55,"line":86},"woocommerce_variation_options_pricing",148,{"type":41,"name":88,"callback":54,"file":55,"line":89},"woocommerce_save_product_variation",149,{"type":41,"name":82,"callback":54,"file":55,"line":91},150,{"type":41,"name":93,"callback":54,"file":55,"line":94},"add_meta_boxes",151,{"type":66,"name":96,"callback":54,"file":55,"line":97},"manage_edit-shop_order_columns",152,{"type":41,"name":99,"callback":54,"file":55,"line":100},"manage_shop_order_posts_custom_column",153,[102,106],{"action":103,"nopriv":104,"callback":54,"hasNonce":104,"hasCapCheck":104,"file":55,"line":105},"ced_tiktok_connect_account",false,154,{"action":107,"nopriv":104,"callback":54,"hasNonce":104,"hasCapCheck":104,"file":55,"line":108},"ced_tiktok_manual_connect_account",155,[],[],[],2,{"dangerousFunctions":114,"sqlUsage":115,"outputEscaping":122,"fileOperations":13,"externalRequests":112,"nonceChecks":140,"capabilityChecks":13,"bundledLibraries":141},[],{"prepared":13,"raw":116,"locations":117},1,[118],{"file":119,"line":120,"context":121},"includes\\ced\\CCTS-rest-ced-api-controller.php",187,"$wpdb->get_results() with variable interpolation",{"escaped":123,"rawEcho":124,"locations":125},54,6,[126,130,132,134,136,138],{"file":127,"line":128,"context":129},"admin\\class-CCTS-admin.php",430,"raw output",{"file":127,"line":131,"context":129},528,{"file":127,"line":133,"context":129},587,{"file":127,"line":135,"context":129},596,{"file":127,"line":137,"context":129},605,{"file":44,"line":139,"context":129},116,5,[],[143],{"entryPoint":144,"graph":145,"unsanitizedCount":116,"severity":169},"\u003CCCTS-main> (admin\\partials\\CCTS-main.php:0)",{"nodes":146,"edges":165},[147,153,159,161],{"id":148,"type":149,"label":150,"file":151,"line":152},"n0","source","$_GET","admin\\partials\\CCTS-main.php",23,{"id":154,"type":155,"label":156,"file":151,"line":157,"wp_function":158},"n1","sink","update_option() [Settings Manipulation]",25,"update_option",{"id":160,"type":149,"label":150,"file":151,"line":152},"n2",{"id":162,"type":155,"label":163,"file":151,"line":59,"wp_function":164},"n3","echo() [XSS]","echo",[166,167],{"from":148,"to":154,"sanitized":104},{"from":160,"to":162,"sanitized":168},true,"low",{"summary":171,"deductions":172},"The static analysis of the \"cedcommerce-connector-for-tiktok-shop\" plugin v1.0.1 reveals a concerning security posture primarily due to unprotected entry points. While the plugin demonstrates good practices in output escaping and avoids dangerous functions, the presence of two AJAX handlers without authentication checks presents a significant attack surface. This means that any user, including unauthenticated ones, could potentially trigger actions within these handlers, leading to unforeseen consequences or unintended operations within the WordPress site.\n\nTaint analysis indicates a flow with an unsanitized path, although it did not result in a critical or high-severity finding. This suggests a potential weakness in how data is handled, which could be exploited in conjunction with other vulnerabilities. The plugin's SQL query is not using prepared statements, which is a notable weakness that could expose it to SQL injection vulnerabilities if user-supplied data is directly incorporated into the query. The complete absence of capability checks further exacerbates the risk, as it implies that sensitive operations might be accessible without proper authorization verification.\n\nFortunately, the plugin has no recorded vulnerability history, which is a positive sign. However, this can sometimes be attributed to insufficient security auditing or a lack of public disclosure of past issues. In conclusion, while the plugin exhibits some strengths like good output escaping, the unprotected AJAX handlers, raw SQL query, and lack of capability checks are substantial security weaknesses that require immediate attention. The taint flow also warrants further investigation to ensure no latent vulnerabilities exist.",[173,176,178,180],{"reason":174,"points":175},"2 AJAX handlers without auth checks",10,{"reason":177,"points":140},"1 SQL query without prepared statements",{"reason":179,"points":175},"0 capability checks",{"reason":181,"points":182},"1 unsanitized path in taint analysis",8,"2026-03-16T20:26:04.417Z",{"wat":185,"direct":195},{"assetPaths":186,"generatorPatterns":189,"scriptPaths":190,"versionParams":192},[187,188],"\u002Fwp-content\u002Fplugins\u002Fcedcommerce-connector-for-tiktok-shop\u002Fadmin\u002Fcss\u002FCCTS-admin.css","\u002Fwp-content\u002Fplugins\u002Fcedcommerce-connector-for-tiktok-shop\u002Fadmin\u002Fjs\u002FCCTS-admin.js",[],[191],"admin\u002Fjs\u002FCCTS-admin.js",[193,194],"cedcommerce-connector-for-tiktok-shop\u002Fadmin\u002Fcss\u002FCCTS-admin.css?ver=","cedcommerce-connector-for-tiktok-shop\u002Fadmin\u002Fjs\u002FCCTS-admin.js?ver=",{"cssClasses":196,"htmlComments":198,"htmlAttributes":199,"restEndpoints":201,"jsGlobals":202,"shortcodeOutput":203},[197],"cedcommerce-integrations",[],[200],"ced_tiktok_obj",[],[200],[]]