Does Data Sync Q by Wbsync have any unpatched vulnerabilities?

No. All known vulnerabilities in Data Sync Q by Wbsync have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Data Sync Q by Wbsync compatible with WordPress 5.3.21?

According to WordPress.org data, Data Sync Q by Wbsync 1.1.0 has been tested up to WordPress 5.3.21. Check the plugin's changelog for the latest compatibility information.

How often is Data Sync Q by Wbsync updated?

Data Sync Q by Wbsync was last updated on May 24, 2020. Frequent updates are generally a positive security signal.

What is Data Sync Q by Wbsync's security score?

Data Sync Q by Wbsync has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Data Sync Q by Wbsync Security & Risk Analysis

wordpress.org/plugins/data-sync-q-by-wbsync

Automatically sync your data, like orders and inventory, from WooCommerce to Quickbooks.

40 active installs v1.1.0 PHP + WP 3.0.1+ Updated May 24, 2020

data-syncquickbookswoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Data Sync Q by Wbsync Safe to Use in 2026?

Generally Safe

Score 85/100

Data Sync Q by Wbsync has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The "data-sync-q-by-wbsync" plugin version 1.1.0 exhibits a generally good security posture based on the static analysis. The plugin demonstrates strong adherence to secure coding practices by having zero reported vulnerabilities in its history and a clean taint analysis, indicating no critical or high severity flows with unsanitized data. Furthermore, the code signals show a complete absence of dangerous functions and SQL queries that do not utilize prepared statements, which are significant strengths. The plugin also has a very limited attack surface, with no AJAX handlers, REST API routes, shortcodes, or cron events, and importantly, no entry points are noted as unprotected.

Despite these positive aspects, there are minor areas for improvement. The percentage of properly escaped output, while above the threshold for concern (71%), suggests that a portion of the output might not be adequately sanitized, potentially leading to cross-site scripting (XSS) vulnerabilities if the unescaped data is user-controlled and rendered directly. Additionally, the presence of external HTTP requests without explicit mention of validation or sanitization of the data being sent or received could pose a risk if those external services are compromised or if the plugin blindly trusts responses. The single nonce check is a positive sign, but the complete lack of capability checks on any entry points (though there are no entry points) is a potential weakness if the attack surface were to expand in future versions.

In conclusion, the plugin is currently in a strong security state with no known vulnerabilities or critical code flaws. Its minimal attack surface and use of prepared statements are commendable. The primary areas of attention would be ensuring all output is properly escaped and carefully managing the security implications of its external HTTP requests. The vulnerability history of zero CVEs is an excellent indicator of past development diligence, but continuous monitoring and secure coding practices remain essential.

Key Concerns

Unescaped output percentage is below 100%
External HTTP requests without clear sanitization

Vulnerabilities

None known

Data Sync Q by Wbsync Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Data Sync Q by Wbsync Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

52 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

71% escaped73 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

handle_form (includes\class-data-sync-q-woocommerce.php:465)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Data Sync Q by Wbsync Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 9

actionadmin_menuincludes\class-data-sync-q-woocommerce.php:109

actionwp_loadedincludes\class-data-sync-q-woocommerce.php:112

actionwoocommerce_order_status_changedincludes\class-data-sync-q-woocommerce.php:122

actionwoocommerce_checkout_update_order_metaincludes\class-data-sync-q-woocommerce.php:126

actionplugins_loadedincludes\class-data-sync-q-woocommerce.php:190

actionadmin_enqueue_scriptsincludes\class-data-sync-q-woocommerce.php:205

actionadmin_enqueue_scriptsincludes\class-data-sync-q-woocommerce.php:206

actionwp_enqueue_scriptsincludes\class-data-sync-q-woocommerce.php:221

actionwp_enqueue_scriptsincludes\class-data-sync-q-woocommerce.php:222

Maintenance & Trust

Data Sync Q by Wbsync Maintenance & Trust

Maintenance Signals

WordPress version tested5.3.21

Last updatedMay 24, 2020

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs40

Alternatives

Data Sync Q by Wbsync Alternatives

MyWorks Sync for WooCommerce & QuickBooks Online

myworks-woo-sync-for-quickbooks-online

Automatically sync your customers, orders, inventory and more in real time between your WooCommerce store and QuickBooks! Requires a MyWorks account.

5K 1 CVE

Integration for WooCommerce and QuickBooks

wp-woocommerce-quickbooks

WooCommerce QuickBooks Plugin allows you to quickly integrate WooCommerce Orders with QuickBooks Online.

1K 3 CVEs

Data Sync for Xero by Wbsync

data-sync-x-by-wbsync

Automatically sync your data, like orders and inventory, from WooCommerce to Xero.

100 No CVEs

Parex Bridge for Quickbooks & Xero

parex-bridge-for-quickbooks-xero

100

Parex Bridge for QuickBooks & Xero Plugin allows you to quickly integrate WooCommerce Order information with QuickBooks Online or Xero

90 No CVEs

Crishik Order Sync for QuickBooks

crishik-order-sync-for-quickbooks

100

Connect your WooCommerce store with QuickBooks Online to sync orders, customers, and financial data automatically.

0 No CVEs

Developer Profile

Data Sync Q by Wbsync Developer Profile

wbsync

2 plugins · 140 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Data Sync Q by Wbsync

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/data-sync-q-by-wbsync/admin/css/data-sync-q-woocommerce-admin.css/wp-content/plugins/data-sync-q-by-wbsync/admin/js/data-sync-q-woocommerce-admin.js

Version Parameters

data-sync-q-woocommerce-admin.css?ver=data-sync-q-woocommerce-admin.js?ver=

HTML / DOM Fingerprints

HTML Comments

<!-- This file is read by WordPress to generate the plugin information in the plugin
 * admin area. This file also includes all of the dependencies used by the plugin,
 * registers the activation and deactivation functions, and defines a function
 * that starts the plugin. -->

+22 more

Data Attributes

data-sync-q

JS Globals

window.data_sync_q_woocommerce_admin_object

FAQ