Does COD24 Shipping For Woocommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in COD24 Shipping For Woocommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is COD24 Shipping For Woocommerce compatible with WordPress 6.9.4?

According to WordPress.org data, COD24 Shipping For Woocommerce 5.0.6 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is COD24 Shipping For Woocommerce updated?

COD24 Shipping For Woocommerce was last updated on Feb 7, 2026. Frequent updates are generally a positive security signal.

What is COD24 Shipping For Woocommerce's security score?

COD24 Shipping For Woocommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

COD24 Shipping For Woocommerce Security & Risk Analysis

wordpress.org/plugins/cod24-shipping

Add Cod24 shipping methods To Woocommerce

300 active installs v5.0.6 PHP + WP 5.0+ Updated Feb 7, 2026

cod24iran-shippingshipping-methodtipaxwoocommerce-shipping

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is COD24 Shipping For Woocommerce Safe to Use in 2026?

Generally Safe

Score 100/100

COD24 Shipping For Woocommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The cod24-shipping v5.0.6 plugin exhibits a generally positive security posture based on the provided static analysis. A significant strength is the complete absence of raw SQL queries, with all 10 identified SQL queries utilizing prepared statements. Furthermore, the plugin demonstrates good practices by implementing capability checks and nonce checks on its entry points, and there are no recorded vulnerabilities or CVEs associated with this plugin. This suggests a commitment to secure coding principles.

However, there are areas for improvement. While the overall output escaping is high (88%), the remaining 12% represents a potential attack vector for cross-site scripting (XSS) vulnerabilities if user-supplied data is not adequately sanitized before output. The presence of 24 external HTTP requests also warrants attention, as these can introduce risks if the target endpoints are compromised or if the data sent to them is not properly validated and escaped. The absence of taint analysis findings, while positive, should be viewed in conjunction with the unescaped output percentage.

In conclusion, cod24-shipping v5.0.6 appears to be a relatively secure plugin with no critical or high-severity vulnerabilities detected. Its reliance on prepared statements and the presence of authorization checks are commendable. The primary areas for caution lie in the small percentage of unescaped output and the numerous external HTTP requests, which, though not explicitly shown as vulnerable in this analysis, represent potential points of weakness that require ongoing vigilance and best practice adherence.

Key Concerns

Unescaped output percentage
High number of external HTTP requests

Vulnerabilities

None known

COD24 Shipping For Woocommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

COD24 Shipping For Woocommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

342 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

88% escaped388 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

ajax_cod24_change_status (inc\class-cod24-woo.php:774)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

COD24 Shipping For Woocommerce Attack Surface

Entry Points10

Unprotected0

AJAX Handlers 10

authwp_ajax_dokan_cod24_settings_saveinc\class-cod24-dokan.php:42

authwp_ajax_shipping_on_deliveryinc\class-cod24-shcod.php:31

noprivwp_ajax_shipping_on_deliveryinc\class-cod24-shcod.php:32

authwp_ajax_cod24_change_statusinc\class-cod24-woo.php:53

noprivwp_ajax_cod24_change_statusinc\class-cod24-woo.php:54

authwp_ajax_cod24_factor_previewinc\class-cod24-woo.php:57

noprivwp_ajax_cod24_factor_previewinc\class-cod24-woo.php:58

authwp_ajax_cod24_barcode_previewinc\class-cod24-woo.php:61

noprivwp_ajax_cod24_barcode_previewinc\class-cod24-woo.php:62

authwp_ajax_cod24_handle_bulk_actionsinc\class-cod24-woo.php:77

WordPress Hooks 44

actionmigrate_cod24_meta_data_croncod24-shipping.php:48

actionadmin_bar_menuinc\api\class-cod24-api.php:28

filterdokan_get_dashboard_settings_navinc\class-cod24-dokan.php:40

actiondokan_render_settings_contentinc\class-cod24-dokan.php:41

filterwoocommerce_package_ratesinc\class-cod24-dokan.php:45

actionwoocommerce_checkout_create_orderinc\class-cod24-dokan.php:48

actiondokan_order_detail_after_order_itemsinc\class-cod24-dokan.php:51

actionwp_enqueue_scriptsinc\class-cod24-dokan.php:54

filterwoocommerce_settings_tabs_arrayinc\class-cod24-settings.php:15

actionwoocommerce_settings_tabs_cod24_settingsinc\class-cod24-settings.php:16

actionwoocommerce_update_options_cod24_settingsinc\class-cod24-settings.php:17

actionwoocommerce_settings_savedinc\class-cod24-settings.php:19

actionwoocommerce_before_checkout_forminc\class-cod24-shcod.php:28

actionwoocommerce_after_checkout_billing_forminc\class-cod24-shcod.php:29

actionwp_enqueue_scriptsinc\class-cod24-shcod.php:30

actionwoocommerce_cart_calculate_feesinc\class-cod24-shcod.php:33

actionwoocommerce_checkout_update_order_metainc\class-cod24-shcod.php:34

filterwoocommerce_available_payment_gatewaysinc\class-cod24-shcod.php:37

actionwp_enqueue_scriptsinc\class-cod24-woo.php:29

actionadmin_enqueue_scriptsinc\class-cod24-woo.php:30

filterwoocommerce_billing_fieldsinc\class-cod24-woo.php:33

filterwoocommerce_shipping_fieldsinc\class-cod24-woo.php:34

filterwoocommerce_form_field_cityinc\class-cod24-woo.php:35

filterwoocommerce_checkout_fieldsinc\class-cod24-woo.php:36

filterwoocommerce_default_address_fieldsinc\class-cod24-woo.php:37

filterwoocommerce_cart_shipping_packagesinc\class-cod24-woo.php:40

filterwoocommerce_package_ratesinc\class-cod24-woo.php:43

actionwoocommerce_checkout_update_order_metainc\class-cod24-woo.php:46

actionadd_meta_boxesinc\class-cod24-woo.php:49

actionwoocommerce_process_shop_order_metainc\class-cod24-woo.php:50

filtermanage_woocommerce_page_wc-orders_columnsinc\class-cod24-woo.php:65

filtermanage_edit-shop_order_columnsinc\class-cod24-woo.php:66

actionmanage_woocommerce_page_wc-orders_custom_columninc\class-cod24-woo.php:67

actionmanage_shop_order_posts_custom_columninc\class-cod24-woo.php:68

actioninitinc\class-cod24-woo.php:71

filterwc_order_statusesinc\class-cod24-woo.php:72

filterbulk_actions-woocommerce_page_wc-ordersinc\class-cod24-woo.php:75

filterbulk_actions-edit-shop_orderinc\class-cod24-woo.php:76

actionwoocommerce_shipping_initinc\shipping\class-cod24-pishtaz.php:263

filterwoocommerce_shipping_methodsinc\shipping\class-cod24-pishtaz.php:271

actionwoocommerce_shipping_initinc\shipping\class-cod24-special.php:268

filterwoocommerce_shipping_methodsinc\shipping\class-cod24-special.php:276

actionwoocommerce_shipping_initinc\shipping\class-cod24-tipax.php:157

filterwoocommerce_shipping_methodsinc\shipping\class-cod24-tipax.php:165

Scheduled Events 1

migrate_cod24_meta_data_cron

Maintenance & Trust

COD24 Shipping For Woocommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 7, 2026

PHP min version

Downloads6K

Community Trust

Rating100/100

Number of ratings2

Active installs300

Alternatives

COD24 Shipping For Woocommerce Alternatives

User role based shipping methods

user-role-based-shipping-method

Display WooCommerce shipping methods based on User Role and Country. Globally compatible.

500 No CVEs

Conditional Shipping for WooCommerce: Restrict Shipping Options by Anything

wpfactory-conditional-shipping-for-woocommerce

100

Set conditions for WooCommerce shipping methods to show up.

400 No CVEs

Яндекс Доставка

yandex-go-delivery

Яндекс Доставка — это сервис, который помогает бизнесам отправлять заказы клиентам внутри города и между городами.

300 No CVEs

Selloship

selloship

Auto Sync your woocommerce store orders & ship them at lowest shipping rates. Automate your shipping, save time & money.

100 No CVEs

Terminal Africa

terminal-africa

Terminal Africa Shipping Method Plugin for WooCommerce

80 1 unpatched

Developer Profile

COD24 Shipping For Woocommerce Developer Profile

cod24

1 plugin · 300 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect COD24 Shipping For Woocommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/cod24-shipping/assets/css/cod24-dokan-vendor.css

Version Parameters

cod24-dokan-vendor?ver=cod24-shipping/assets/css/cod24-dokan-vendor.css?ver=

HTML / DOM Fingerprints

CSS Classes

cod24-shipping-settings-page

HTML Comments

COD24 DokanLast Modified Time: 2025/12/29 00:35:41

Data Attributes

data-cod24-shipping-typedata-cod24-shipping-value

JS Globals

cod24_shipping_params

FAQ