Does Delyva have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Delyva compatible with WordPress 5.3.21?

According to WordPress.org data, Delyva 1.0.1 has been tested up to WordPress 5.3.21. Check the plugin's changelog for the latest compatibility information.

Is Delyva compatible with PHP 7.1+?

Delyva requires PHP 7.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Delyva updated?

Delyva was last updated on Apr 26, 2021. Frequent updates are generally a positive security signal.

What is Delyva's security score?

Delyva has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Delyva Security & Risk Analysis

wordpress.org/plugins/delyva-com

THIS PLUGIN IS NOT ACTIVELY MAINTAINED ANYMORE, please use DelyvaX instead.

10 active installs v1.0.1 PHP 7.1+ WP 4.4+ Updated Apr 26, 2021

courierdeliverydelyvasame-day-deliveryshipping

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Delyva Safe to Use in 2026?

Generally Safe

Score 85/100

Delyva has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The "delyva-com" v1.0.1 plugin exhibits a seemingly strong security posture based on the provided static analysis results. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events with unprotected entry points suggests a minimal attack surface. Furthermore, the lack of dangerous functions and no critical or high-severity taint flows are positive indicators. However, several concerning aspects are present. The fact that 100% of the two SQL queries are not using prepared statements presents a significant risk of SQL injection vulnerabilities, which is a critical flaw. Additionally, the absence of nonce checks and capability checks for any potential entry points, although none were identified in this analysis, leaves room for potential privilege escalation or cross-site request forgery if such entry points were to be introduced or missed in the static analysis. The vulnerability history shows no known CVEs, which is positive, but this should not be taken as a definitive sign of perfect security, especially given the identified code-level risks.

Key Concerns

100% of SQL queries lack prepared statements
No nonce checks implemented
No capability checks implemented
Low output escaping coverage (60%)

Vulnerabilities

None known

Delyva Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Delyva Release Timeline

No version history available.

Code Analysis

Analyzed Mar 16, 2026

Delyva Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared2 total queries

Output Escaping

60% escaped5 total outputs

Attack Surface

Delyva Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 8

actionwoocommerce_shipping_initdelyva.php:24

filterwoocommerce_shipping_methodsdelyva.php:29

filterwoocommerce_shipping_methodsdelyva.php:34

filterparse_requestfunctions.php:5

filterwoocommerce_settings_tabs_arrayincludes\delyva-shipping.php:38

actionadd_meta_boxesincludes\shipping-widget.php:3

actionwoocommerce_process_shop_order_metaincludes\shipping-widget.php:4

actionwoocommerce_order_status_completedincludes\shipping-widget.php:5

Maintenance & Trust

Delyva Maintenance & Trust

Maintenance Signals

WordPress version tested5.3.21

Last updatedApr 26, 2021

PHP min version7.1

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Delyva Alternatives

Delyva

delyvax

100

The official Delyva plugin helps store owners to integrate WooCommerce store with Delyva delivery management platform for seamless service comparison …

200 No CVEs

Pickupp Delivery for eCommerce Shops using WooCommerce

wc-pickupp

Pickupp offers door-to-door, same-day delivery in HK, SG, TW, MY. Easily create orders from your WooCommerce shop to the Pickupp platform!

30 1 unpatched

Local Delivery Drivers for WooCommerce

local-delivery-drivers-for-woocommerce

Improve the way you deliver, manage drivers, assign drivers to orders, send WhatsApp, SMS, and email notifications, route planning, navigation & more!

1K 1 CVE

[Niewspierana wersja – sprawdź nową] epaka.pl – Integracja z WooCommerce

epaka-pl

100

Integracja Woocommerce z epaka.pl. Składanie zamówień, generowanie etykiet, tracking przesyłek, mapa puntów odbioru dla klientów sklepu oraz o wiele w …

200 No CVEs

Woot

woot-ro

100

Unified shipping solution for WooCommerce. Integrates all popular couriers in Romania with real-time pricing and pickup point selection.

100 No CVEs

Developer Profile

Delyva Developer Profile

delyva

2 plugins · 210 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Delyva

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ