Does E-Invoice for MyInvois LHDN have any unpatched vulnerabilities?

No. All known vulnerabilities in E-Invoice for MyInvois LHDN have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is E-Invoice for MyInvois LHDN compatible with WordPress 6.8.5?

According to WordPress.org data, E-Invoice for MyInvois LHDN 1.0.2 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is E-Invoice for MyInvois LHDN compatible with PHP 7.2+?

E-Invoice for MyInvois LHDN requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is E-Invoice for MyInvois LHDN updated?

E-Invoice for MyInvois LHDN was last updated on Jan 5, 2026. Frequent updates are generally a positive security signal.

What is E-Invoice for MyInvois LHDN's security score?

E-Invoice for MyInvois LHDN has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

E-Invoice for MyInvois LHDN Security Review

Safety Verdict

Is E-Invoice for MyInvois LHDN Safe to Use in 2026?

Generally Safe

Score 100/100

E-Invoice for MyInvois LHDN has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The e-invoice-for-myinvois-lhdn plugin v1.0.2 exhibits a generally good security posture with strong adherence to best practices like prepared statements for SQL queries and proper output escaping. The plugin also demonstrates a commitment to security with a significant number of nonce and capability checks. Its clean vulnerability history with zero recorded CVEs further reinforces this positive impression, suggesting a well-maintained and secure codebase.

However, the analysis reveals specific areas of concern that could potentially be exploited. The presence of 11 AJAX handlers, with 4 lacking authentication checks, represents a significant attack surface that is inadequately protected. Furthermore, the taint analysis identified 2 flows with unsanitized paths, which, while not classified as critical or high severity in this instance, still indicate potential pathways for malicious data to be processed without proper validation. These specific weaknesses, if combined with other factors or targeted attacks, could lead to security breaches.

In conclusion, while the plugin benefits from solid foundational security practices and a clean history, the unprotected AJAX endpoints and unsanitized paths present notable risks. Addressing these specific vulnerabilities should be a priority to further strengthen the plugin's security and mitigate potential threats.

Key Concerns

Unprotected AJAX handlers
Flows with unsanitized paths

Vulnerabilities

None known

E-Invoice for MyInvois LHDN Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

E-Invoice for MyInvois LHDN Code Analysis

Dangerous Functions

0

Raw SQL Queries

2

22 prepared

Unescaped Output

13

185 escaped

Nonce Checks

12

Capability Checks

9

File Operations

7

External Requests

2

Bundled Libraries

1

Bundled Libraries

Select2

SQL Query Safety

92% prepared24 total queries

Output Escaping

93% escaped198 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

10 flows2 with unsanitized paths

render_hpos_metabox_content (includes\integrations\woocommerce\class-woocommerce-order-metabox.php:86)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

E-Invoice for MyInvois LHDN Attack Surface

Entry Points11

Unprotected4

AJAX Handlers 11

authwp_ajax_einvmylhdn_save_settingsincludes\admin\class-settings.php:20

authwp_ajax_einvmylhdn_search_taxpayerincludes\admin\class-settings.php:21

authwp_ajax_einvmylhdn_test_connectionincludes\admin\class-settings.php:22

authwp_ajax_einvmylhdn_get_invoicesincludes\admin\class-settings.php:23

authwp_ajax_einvmylhdn_check_document_statusincludes\admin\class-settings.php:24

authwp_ajax_einvmylhdn_manual_expire_checkincludes\admin\class-settings.php:25

authwp_ajax_einvmylhdn_get_cron_statusincludes\admin\class-settings.php:26

authwp_ajax_einvmylhdn_search_tinincludes\frontend\class-einvoice-form.php:35

noprivwp_ajax_einvmylhdn_search_tinincludes\frontend\class-einvoice-form.php:36

authwp_ajax_einvmylhdn_check_document_statusincludes\frontend\class-einvoice-form.php:37

noprivwp_ajax_einvmylhdn_check_document_statusincludes\frontend\class-einvoice-form.php:38

WordPress Hooks 35

actionplugins_loadede-invoice-for-myinvois-lhdn.php:34

actionadmin_menuincludes\admin\class-settings.php:17

actionadmin_initincludes\admin\class-settings.php:18

actionadmin_enqueue_scriptsincludes\admin\class-settings.php:19

actioneinvmylhdn_plugin_deactivationincludes\core\class-cron-handler.php:37

actioninitincludes\core\class-plugin.php:35

actionadmin_initincludes\core\class-plugin.php:36

actionadmin_noticesincludes\core\class-plugin.php:37

actionshow_user_profileincludes\core\class-user-profile.php:21

actionedit_user_profileincludes\core\class-user-profile.php:22

actionpersonal_options_updateincludes\core\class-user-profile.php:23

actionedit_user_profile_updateincludes\core\class-user-profile.php:24

actioninitincludes\frontend\class-einvoice-form.php:31

filterquery_varsincludes\frontend\class-einvoice-form.php:32

actiontemplate_redirectincludes\frontend\class-einvoice-form.php:33

actioninitincludes\frontend\class-einvoice-form.php:34

actionwp_headincludes\frontend\class-einvoice-template.php:40

actionwoocommerce_order_details_after_order_tableincludes\integrations\woocommerce\class-woocommerce-integration.php:22

actionwoocommerce_order_status_processingincludes\integrations\woocommerce\class-woocommerce-integration.php:23

actionwoocommerce_order_status_completedincludes\integrations\woocommerce\class-woocommerce-integration.php:24

actionwoocommerce_product_options_general_product_dataincludes\integrations\woocommerce\class-woocommerce-integration.php:26

actionwoocommerce_process_product_metaincludes\integrations\woocommerce\class-woocommerce-integration.php:27

actionwoocommerce_variation_options_pricingincludes\integrations\woocommerce\class-woocommerce-integration.php:28

actionwoocommerce_save_product_variationincludes\integrations\woocommerce\class-woocommerce-integration.php:29

actionadmin_enqueue_scriptsincludes\integrations\woocommerce\class-woocommerce-integration.php:32

actionwp_enqueue_scriptsincludes\integrations\woocommerce\class-woocommerce-integration.php:33

filterwoocommerce_my_account_my_orders_actionsincludes\integrations\woocommerce\class-woocommerce-integration.php:35

actionwoocommerce_edit_account_formincludes\integrations\woocommerce\class-woocommerce-integration.php:38

actionwoocommerce_save_account_detailsincludes\integrations\woocommerce\class-woocommerce-integration.php:39

actionadd_meta_boxesincludes\integrations\woocommerce\class-woocommerce-order-metabox.php:16

filtermanage_edit-shop_order_columnsincludes\integrations\woocommerce\class-woocommerce-order-metabox.php:19

actionmanage_shop_order_posts_custom_columnincludes\integrations\woocommerce\class-woocommerce-order-metabox.php:20

filtermanage_woocommerce_page_wc-orders_columnsincludes\integrations\woocommerce\class-woocommerce-order-metabox.php:23

actionmanage_woocommerce_page_wc-orders_custom_columnincludes\integrations\woocommerce\class-woocommerce-order-metabox.php:24

actionadmin_enqueue_scriptsincludes\integrations\woocommerce\class-woocommerce-order-metabox.php:27

Maintenance & Trust

E-Invoice for MyInvois LHDN Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJan 5, 2026

PHP min version7.2

Downloads297

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

E-Invoice for MyInvois LHDN Alternatives

MyInvoice Sync

myinvoice-sync

A

100

Automated invoice submission to LHDN MyInvois system for Malaysian businesses.

0 No CVEs

WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes & Shipping Labels

print-invoices-packing-slip-labels-for-woocommerce

A

96

Auto-generate and attach WooCommerce PDF invoices and packing slips to order emails with customizable templates & bulk print options.

60K 6 CVEs

Flexible PDF Invoices for WooCommerce & WordPress

flexible-invoices

A

99

WooCommerce PDF invoices made simple. EU VAT validation, reverse charge invoice, proforma invoices, MOSS / OSS support, invoices in bulk and more.

7K 1 CVE

toyyibPay for WooCommerce

toyyibpay-for-woocommerce

A

100

The official toyyibPay payment gateway plugin for WooCommerce — enabling Malaysian merchants to accept secure online payments with ease.

7K No CVEs

PeproDev Ultimate Invoice

pepro-ultimate-invoice

A

96

Advanced WooCommerce invoice plugin: create customizable HTML/PDF invoices, attach to emails, and let customers download styled invoices easily.

6K 4 CVEs

Developer Profile

E-Invoice for MyInvois LHDN Developer Profile

Web Impian

5 plugins · 840 total installs

87

trust score

Avg Security Score

98/100

Avg Patch Time

31 days

View full developer profile

Detection Fingerprints

How We Detect E-Invoice for MyInvois LHDN

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/e-invoice-for-myinvois-lhdn/admin/assets/css/admin.css/wp-content/plugins/e-invoice-for-myinvois-lhdn/admin/assets/css/invoices.css/wp-content/plugins/e-invoice-for-myinvois-lhdn/admin/assets/js/vue.global.prod.js/wp-content/plugins/e-invoice-for-myinvois-lhdn/admin/assets/js/vue-invoices.js/wp-content/plugins/e-invoice-for-myinvois-lhdn/admin/assets/js/select2.min.js/wp-content/plugins/e-invoice-for-myinvois-lhdn/admin/assets/js/vue-settings.js

Script Paths

/wp-content/plugins/e-invoice-for-myinvois-lhdn/admin/assets/css/admin.css/wp-content/plugins/e-invoice-for-myinvois-lhdn/admin/assets/css/invoices.css/wp-content/plugins/e-invoice-for-myinvois-lhdn/admin/assets/js/vue.global.prod.js/wp-content/plugins/e-invoice-for-myinvois-lhdn/admin/assets/js/vue-invoices.js/wp-content/plugins/e-invoice-for-myinvois-lhdn/admin/assets/js/select2.min.js/wp-content/plugins/e-invoice-for-myinvois-lhdn/admin/assets/js/vue-settings.js

Version Parameters

e-invoice-for-myinvois-lhdn/admin/assets/css/admin.css?ver=e-invoice-for-myinvois-lhdn/admin/assets/css/invoices.css?ver=e-invoice-for-myinvois-lhdn/admin/assets/js/vue.global.prod.js?ver=e-invoice-for-myinvois-lhdn/admin/assets/js/vue-invoices.js?ver=e-invoice-for-myinvois-lhdn/admin/assets/js/select2.min.js?ver=e-invoice-for-myinvois-lhdn/admin/assets/js/vue-settings.js?ver=

HTML / DOM Fingerprints

CSS Classes

einvmylhdn-wrapeinvmylhdn-settings-vueeinvmylhdn-invoices-vue

HTML Comments

+1 more

Data Attributes

v-cloak

JS Globals

einvmylhdnSettingseinvmylhdnInvoices

REST Endpoints

/wp-json/einvmylhdn/v1/settings/wp-json/einvmylhdn/v1/invoices/wp-json/einvmylhdn/v1/test_connection/wp-json/einvmylhdn/v1/taxpayer_search

FAQ

E-Invoice for MyInvois LHDN Security & Risk Analysis

Is E-Invoice for MyInvois LHDN Safe to Use in 2026?

Generally Safe

Key Concerns

E-Invoice for MyInvois LHDN Security Vulnerabilities

E-Invoice for MyInvois LHDN Code Analysis

Bundled Libraries

SQL Query Safety

Output Escaping

Data Flow Analysis

E-Invoice for MyInvois LHDN Attack Surface

AJAX Handlers 11

E-Invoice for MyInvois LHDN Maintenance & Trust

Maintenance Signals

Community Trust

E-Invoice for MyInvois LHDN Alternatives

MyInvoice Sync

WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes & Shipping Labels

Flexible PDF Invoices for WooCommerce & WordPress

toyyibPay for WooCommerce

PeproDev Ultimate Invoice

E-Invoice for MyInvois LHDN Developer Profile

How We Detect E-Invoice for MyInvois LHDN

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about E-Invoice for MyInvois LHDN