WP-Safety

Clonable – Translate Woocommerce / WordPress website. Multilingual in 5 minutes. Security & Risk Analysis

wordpress.org/plugins/clonable

Seamlessly translate and maintain your multilingual websites. Speed up and simplify your internationalisation with Clonable.

300 active installs v2.9.8 PHP 7.4+ WP 5.0+ Updated Apr 13, 2026
clonablemultilingualseotranslatetranslations
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Clonable – Translate Woocommerce / WordPress website. Multilingual in 5 minutes. Safe to Use in 2026?

Generally Safe

Score 100/100

Clonable – Translate Woocommerce / WordPress website. Multilingual in 5 minutes. has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The 'clonable' plugin v2.9.5 presents a generally positive security posture with a low immediate risk. The absence of known CVEs and a clean vulnerability history are strong indicators of responsible development and maintenance in the past. Static analysis reveals good practices in output escaping and the presence of capability checks and nonce checks, which are crucial for securing WordPress functionality. Furthermore, the limited attack surface with no unprotected entry points is a significant strength.

However, there are areas for concern. The most notable is the complete lack of prepared statements for all SQL queries, posing a significant risk for SQL injection vulnerabilities, especially as the number of queries increases. The presence of unsanitized paths in taint analysis, although not resulting in critical or high severity flows in this specific analysis, warrants caution. Additionally, while file operations and external HTTP requests themselves aren't inherently risky, their implementation without further context could potentially introduce vulnerabilities if not handled securely.

In conclusion, while the plugin benefits from a clean vulnerability history and good overall escaping, the reliance on raw SQL queries without preparation is a critical weakness that significantly elevates its risk profile. Addressing this, along with careful review of file operations and HTTP requests, would substantially improve its security.

Key Concerns

  • Raw SQL queries without prepared statements
  • Flows with unsanitized paths in taint analysis
  • File operations without clear security context
  • External HTTP requests without clear security context
Vulnerabilities
None known

Clonable – Translate Woocommerce / WordPress website. Multilingual in 5 minutes. Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Clonable – Translate Woocommerce / WordPress website. Multilingual in 5 minutes. Release Timeline

v2.9.8Current
v2.9.7
v2.9.6
v2.9.5
v2.9.4
v2.9.3
v2.9.2
v2.9.1
v2.9.0
v2.8.2
v2.8.1
v2.8.0
v2.7.7
v2.7.6
v2.7.5
v2.7.4
v2.7.3
v2.7.2
v2.7.1
v2.7.0
Code Analysis
Analyzed Mar 16, 2026

Clonable – Translate Woocommerce / WordPress website. Multilingual in 5 minutes. Code Analysis

Dangerous Functions
0
Raw SQL Queries
4
0 prepared
Unescaped Output
25
195 escaped
Nonce Checks
2
Capability Checks
5
File Operations
2
External Requests
6
Bundled Libraries
0

SQL Query Safety

0% prepared4 total queries

Output Escaping

89% escaped220 total outputs
Data Flows · Security
4 unsanitized

Data Flow Analysis

6 flows4 with unsanitized paths
site_domain_field (views\DashboardView.php:43)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Clonable – Translate Woocommerce / WordPress website. Multilingual in 5 minutes. Attack Surface

Entry Points3
Unprotected0

Shortcodes 3

[clonable_language_switcher] services\LanguageSwitcherService.php:40
[not-clone] services\ShortCodeService.php:11
[clone-only] services\ShortCodeService.php:12
WordPress Hooks 71
actionin_admin_footerBootstrap.php:39
actionadmin_menuBootstrap.php:43
actionin_admin_headerBootstrap.php:64
actionwp_headclonable-wp.php:140
actionwp_headclonable-wp.php:154
actionclonable_public_key_cron_hookclonable-wp.php:157
actionbefore_woocommerce_initclonable-wp.php:183
actionadmin_enqueue_scriptshelpers\Html.php:44
filtermanage_edit-product_columnsobjects\ExcludedProductTerm.php:34
actionmanage_product_posts_custom_columnobjects\ExcludedProductTerm.php:36
actionadmin_footerobjects\ExcludedProductTerm.php:38
actioninitservices\AdminUIService.php:21
actionadmin_bar_menuservices\AdminUIService.php:23
actionadmin_initservices\AdminUIService.php:25
filtershow_admin_barservices\AdminUIService.php:124
filtershow_admin_barservices\AdminUIService.php:136
filterallowed_redirect_hostsservices\AllowedHostsService.php:12
filtersupercache_filename_strservices\CacheService.php:16
actionwp_headersservices\CacheService.php:17
actionwoocommerce_after_order_notesservices\ClonableWooCommerceService.php:36
actionwoocommerce_checkout_update_order_metaservices\ClonableWooCommerceService.php:37
actionwoocommerce_admin_order_data_after_shipping_addressservices\ClonableWooCommerceService.php:38
filterwoocommerce_get_checkout_order_received_urlservices\ClonableWooCommerceService.php:41
filterwoocommerce_get_checkout_payment_urlservices\ClonableWooCommerceService.php:44
filtermollie-payments-for-woocommerce_return_urlservices\ClonableWooCommerceService.php:47
filterwoocommerce_get_return_urlservices\ClonableWooCommerceService.php:50
filterwoocommerce_payment_successful_resultservices\ClonableWooCommerceService.php:53
filterwoocommerce_get_endpoint_urlservices\ClonableWooCommerceService.php:56
actionplugins_loadedservices\ClonableWooCommerceService.php:68
filterdefault_checkout_billing_countryservices\ClonableWooCommerceService.php:70
filterdefault_checkout_shipping_countryservices\ClonableWooCommerceService.php:71
actionwoocommerce_after_order_notesservices\ClonableWooCommerceService.php:78
actionwoocommerce_checkout_update_order_metaservices\ClonableWooCommerceService.php:80
actionplugins_loadedservices\ClonableWooCommerceService.php:85
filterwpo_wcpdf_get_htmlservices\ClonableWooCommerceService.php:104
filterwpo_wcpdf_logoservices\ClonableWooCommerceService.php:115
filterwpo_wcpdf_document_logoservices\ClonableWooCommerceService.php:116
filterwpo_wcpdf_header_logoservices\ClonableWooCommerceService.php:117
filterwpo_wcpdf_template_logoservices\ClonableWooCommerceService.php:118
filterwpo_wcpdf_header_logo_idservices\ClonableWooCommerceService.php:121
filterwp_mailservices\EmailTranslationsService.php:25
filterwp_mail_fromservices\EmailTranslationsService.php:26
filterwp_mail_from_nameservices\EmailTranslationsService.php:27
filteroption_woocommerce_email_header_imageservices\EmailTranslationsService.php:28
actionphpmailer_initservices\EmailTranslationsService.php:29
actionwp_headservices\LanguageSwitcherService.php:38
actionwp_headservices\LanguageSwitcherService.php:39
actionadmin_head-nav-menus.phpservices\LanguageSwitcherService.php:43
filterwp_nav_menu_objectsservices\LanguageSwitcherService.php:45
filterwalker_nav_menu_start_elservices\LanguageSwitcherService.php:47
filterrender_block_core/navigation-submenuservices\LanguageSwitcherService.php:50
filterlocaleservices\LocaleService.php:26
actionwoocommerce_product_data_tabsservices\modules\DataPanelModule.php:13
actionwoocommerce_product_data_panelsservices\modules\DataPanelModule.php:14
actionwoocommerce_process_product_metaservices\modules\DataPanelModule.php:16
actioninitservices\modules\ExclusionModule.php:21
actionadmin_enqueue_scriptsservices\modules\ExclusionModule.php:32
actionpre_get_postsservices\modules\ExclusionModule.php:40
actionwpservices\modules\ExclusionModule.php:41
filterwoocommerce_product_is_visibleservices\modules\ExclusionModule.php:42
filterwoocommerce_csv_product_import_mapping_optionsservices\modules\ProductImporterModule.php:11
filterwoocommerce_csv_product_import_mapping_default_columnsservices\modules\ProductImporterModule.php:12
filterwoocommerce_product_import_pre_insert_product_objectservices\modules\ProductImporterModule.php:13
filterwoocommerce_product_export_column_namesservices\modules\ProductImporterModule.php:15
filterwoocommerce_product_export_product_default_columnsservices\modules\ProductImporterModule.php:16
actioninitservices\modules\TaxonomyModule.php:20
actionwp_headservices\MultiCurrencyService.php:19
actioninitservices\MultiCurrencyService.php:20
actionclonable_before_page_translationservices\MultiCurrencyService.php:21
actionwp_enqueue_scriptsservices\SubfolderService.php:31
actionplugins_loadedservices\SubfolderService.php:32

Scheduled Events 1

clonable_public_key_cron_hook
Maintenance & Trust

Clonable – Translate Woocommerce / WordPress website. Multilingual in 5 minutes. Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedApr 13, 2026
PHP min version7.4
Downloads15K

Community Trust

Rating100/100
Number of ratings4
Active installs300
Alternatives

Clonable – Translate Woocommerce / WordPress website. Multilingual in 5 minutes. Alternatives

Iris Translate

Iris Translate

iris-translate

A
100

Translate your WordPress site with free automatic translation or SEO-friendly Google Cloud API translation.

0 No CVEs
Website translator & Language switcher – TranslateJS

Website translator & Language switcher – TranslateJS

translatejs-website-translator

A
100

Short Description: Automatically translate your website and add a language switcher in 10 seconds. Boost global SEO with instant localization.

0 No CVEs
URL Export Addon for TranslatePress

URL Export Addon for TranslatePress

url-export-addon-for-translatepress

A
92

Easily export WooCommerce product URLs translated with TranslatePress into a multilingual CSV file for SEO and marketplace use.

0 No CVEs
Translate WordPress with GTranslate

Translate WordPress with GTranslate

gtranslate

A
99

Translate WordPress with Google Translate multilanguage plugin to make your website multilingual. Complete multilingual SEO solution for WordPress.

900K 5 CVEs
Polylang

Polylang

polylang

A
94

Go multilingual in a simple and efficient way. Keep writing posts and taxonomy terms as usual while defining their languages all at once.

800K 3 CVEs
Developer Profile

Clonable – Translate Woocommerce / WordPress website. Multilingual in 5 minutes. Developer Profile

Clonable

1 plugin · 300 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Clonable – Translate Woocommerce / WordPress website. Multilingual in 5 minutes.

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/clonable/assets/css/clonable-frontend.css/wp-content/plugins/clonable/assets/js/clonable-frontend.js
Script Paths
/wp-content/plugins/clonable/assets/js/clonable-frontend.js
Version Parameters
clonable/assets/css/clonable-frontend.css?ver=clonable/assets/js/clonable-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
clonable-frontend-language-switcher
Data Attributes
data-clonable-id
JS Globals
clonableFrontendConfig
REST Endpoints
/wp-json/clonable/v1/settings/wp-json/clonable/v1/language
FAQ

Frequently Asked Questions about Clonable – Translate Woocommerce / WordPress website. Multilingual in 5 minutes.