WP-Safety

Datafeedr WooCommerce Importer Security & Risk Analysis

wordpress.org/plugins/datafeedr-woocommerce-importer

Import products from the Datafeedr API into your WooCommerce store.

6K active installs v1.3.10 PHP 7.4+ WP 3.8+ Updated Nov 8, 2024
affiliate-woocommercecsv-importimport-affiliate-productsimport-datafeedimport-woocommerce
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Datafeedr WooCommerce Importer Safe to Use in 2026?

Generally Safe

Score 92/100

Datafeedr WooCommerce Importer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The "datafeedr-woocommerce-importer" plugin v1.3.10 demonstrates a generally strong security posture based on the provided static analysis. The absence of any reported CVEs and the zero findings in the taint analysis for critical or high severity issues are very positive indicators. The code signals show a reasonable approach to security with capability checks in place and a majority of SQL queries utilizing prepared statements. However, the complete lack of nonce checks, coupled with a significant percentage of outputs that are not properly escaped, presents a potential concern. While the attack surface appears minimal (0 entry points), any future additions to this surface without proper input validation and output sanitization could introduce vulnerabilities. The plugin's history of zero vulnerabilities is encouraging, suggesting a commitment to security by the developers. Overall, the plugin appears to be developed with security in mind, but the identified areas for improvement in nonce checking and output escaping should be addressed to further harden its security.

Key Concerns

  • No nonce checks implemented
  • 33% of outputs not properly escaped
  • 40% of SQL queries not using prepared statements
Vulnerabilities
None known

Datafeedr WooCommerce Importer Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Datafeedr WooCommerce Importer Code Analysis

Dangerous Functions
0
Raw SQL Queries
7
8 prepared
Unescaped Output
23
47 escaped
Nonce Checks
0
Capability Checks
5
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

53% prepared15 total queries

Output Escaping

67% escaped70 total outputs
Attack Surface

Datafeedr WooCommerce Importer Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 38
actionbefore_woocommerce_initdatafeedr-woocommerce-importer.php:73
actionadmin_noticesdatafeedr-woocommerce-importer.php:155
actionadmin_noticesdatafeedr-woocommerce-importer.php:168
actionadmin_noticesdatafeedr-woocommerce-importer.php:223
actioninitdatafeedr-woocommerce-importer.php:233
actionadmin_menudatafeedr-woocommerce-importer.php:266
actionadmin_initdatafeedr-woocommerce-importer.php:327
filterwoocommerce_product_add_to_cart_textdatafeedr-woocommerce-importer.php:592
filterwoocommerce_product_single_add_to_cart_textdatafeedr-woocommerce-importer.php:593
filterw3tc_flushable_postdatafeedr-woocommerce-importer.php:751
filterdfrpswc_filter_attribute_valuedatafeedr-woocommerce-importer.php:1203
filterdfrpswc_filter_attribute_positiondatafeedr-woocommerce-importer.php:1215
filterdfrpswc_filter_attribute_visibilitydatafeedr-woocommerce-importer.php:1227
filterdfrpswc_filter_attribute_valuedatafeedr-woocommerce-importer.php:1239
filterdfrpswc_filter_attribute_positiondatafeedr-woocommerce-importer.php:1251
filterdfrpswc_filter_attribute_valuedatafeedr-woocommerce-importer.php:1263
filterdfrpswc_filter_attribute_positiondatafeedr-woocommerce-importer.php:1277
actiondfrps_set_update_completedatafeedr-woocommerce-importer.php:1552
filterwoocommerce_product_classdatafeedr-woocommerce-importer.php:1578
actionplugins_loadeddatafeedr-woocommerce-importer.php:1648
filterwccal_filter_urldatafeedr-woocommerce-importer.php:1654
actionadmin_menudatafeedr-woocommerce-importer.php:1672
actionwoocommerce_after_shop_loop_itemdatafeedr-woocommerce-importer.php:1721
actionwoocommerce_after_single_product_summarydatafeedr-woocommerce-importer.php:1722
filterplugin_row_metadatafeedr-woocommerce-importer.php:1811
actionsplit_shared_termdatafeedr-woocommerce-importer.php:1866
actiondfrps_update_resetdatafeedr-woocommerce-importer.php:1962
filterwoocommerce_locate_templatedatafeedr-woocommerce-importer.php:2112
filterdfrpswc_product_cat_category_idsfilters.php:35
filterwoocommerce_get_price_htmlfilters.php:139
filterdebug_informationfilters.php:147
filterdfrps_import_post_thumbnail/argsfilters.php:224
filterdfrpswc_single_product_add_to_cart_button_relfilters.php:243
filterwoocommerce_loop_add_to_cart_argsfilters.php:264
filterdfrpswc_single_product_add_to_cart_button_targetfilters.php:283
filterwoocommerce_loop_add_to_cart_argsfilters.php:305
filterwc_product_sku_enabledfilters.php:328
filterw3tc_flushable_postfunctions.php:54
Maintenance & Trust

Datafeedr WooCommerce Importer Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedNov 8, 2024
PHP min version7.4
Downloads146K

Community Trust

Rating96/100
Number of ratings38
Active installs6K
Alternatives

Datafeedr WooCommerce Importer Alternatives

WP All Import – Product Import for WooCommerce

WP All Import – Product Import for WooCommerce

woocommerce-xml-csv-product-import

A
100

Drag & drop to import products from any CSV, XML, Excel, or Google Sheets file. Supports variations, images, attributes, brands, and more with pow …

20K No CVEs
Datafeedr API

Datafeedr API

datafeedr-api

A
92

Connect to the Datafeedr API.

6K No CVEs
Datafeedr Product Sets

Datafeedr Product Sets

datafeedr-product-sets

A
92

Build sets of products to import into your website.

6K No CVEs
WP All Import – Drag & Drop Import for CSV, XML, Excel & Google Sheets

WP All Import – Drag & Drop Import for CSV, XML, Excel & Google Sheets

wp-all-import

B
75

Easily import any file of any size into any plugin, post type, custom field, or taxonomy. Supports WooCommerce, ACF, images, galleries, users, real es …

100K 22 CVEs
Product Import Export for WooCommerce – Import Export Product CSV Suite

Product Import Export for WooCommerce – Import Export Product CSV Suite

product-import-export-for-woo

A
94

Easily import/export WooCommerce products (simple, grouped, external/affiliate) via CSV. Transfer product data, including images, reviews, categories, …

90K 7 CVEs
Developer Profile

Datafeedr WooCommerce Importer Developer Profile

datafeedr

6 plugins · 23K total installs

83
trust score
Avg Security Score
93/100
Avg Patch Time
70 days
View full developer profile
Detection Fingerprints

How We Detect Datafeedr WooCommerce Importer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/datafeedr-woocommerce-importer/css/admin.css/wp-content/plugins/datafeedr-woocommerce-importer/css/public.css/wp-content/plugins/datafeedr-woocommerce-importer/js/admin.js/wp-content/plugins/datafeedr-woocommerce-importer/js/public.js
Script Paths
/wp-content/plugins/datafeedr-woocommerce-importer/js/admin.js/wp-content/plugins/datafeedr-woocommerce-importer/js/public.js
Version Parameters
datafeedr-woocommerce-importer/css/admin.css?ver=datafeedr-woocommerce-importer/css/public.css?ver=datafeedr-woocommerce-importer/js/admin.js?ver=datafeedr-woocommerce-importer/js/public.js?ver=

HTML / DOM Fingerprints

CSS Classes
dfrpswc-admin-notice
Data Attributes
data-dfrpswc-api-key
JS Globals
dfrpswc_admin_params
FAQ

Frequently Asked Questions about Datafeedr WooCommerce Importer