WP-Safety

Elementary POS for WooCommerce Security & Risk Analysis

wordpress.org/plugins/elementary-pos-for-woocommerce

Bidirectional synchronization of products and stock levels between Elementary POS and WooCommerce.

10 active installs v0.9.17 PHP 7.4+ WP 5.8+ Updated Mar 15, 2026
inventoryposstocksyncwoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Elementary POS for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Elementary POS for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 19d ago
Risk Assessment

The "elementary-pos-for-woocommerce" plugin version 0.9.17 exhibits a generally strong security posture with a significant number of good security practices in place. The static analysis reveals a high percentage of prepared SQL statements and properly escaped output, which are critical for preventing common web vulnerabilities like SQL injection and Cross-Site Scripting. The presence of nonce and capability checks on all identified AJAX handlers is also a very positive sign, indicating robust authentication and authorization mechanisms for interactive elements. Furthermore, the complete absence of known CVEs and past vulnerabilities suggests a commitment to security by the developers or a lack of prior discovery, which is a good indicator.

Key Concerns

  • REST API route without permission callback
  • One unprotected entry point
Vulnerabilities
None known

Elementary POS for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Elementary POS for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
5
40 prepared
Unescaped Output
2
55 escaped
Nonce Checks
21
Capability Checks
21
File Operations
1
External Requests
1
Bundled Libraries
0

SQL Query Safety

89% prepared45 total queries

Output Escaping

96% escaped57 total outputs
Attack Surface
1 unprotected

Elementary POS for WooCommerce Attack Surface

Entry Points22
Unprotected1

AJAX Handlers 21

authwp_ajax_eposwcp_test_apiadmin\class-admin-menu.php:45
authwp_ajax_eposwcp_save_settingsadmin\class-admin-menu.php:46
authwp_ajax_eposwcp_load_productsadmin\class-admin-menu.php:52
authwp_ajax_eposwcp_import_productsadmin\class-admin-menu.php:53
authwp_ajax_eposwcp_delete_all_wc_products_chunkadmin\class-admin-menu.php:54
authwp_ajax_eposwcp_import_products_from_ep_chunkadmin\class-admin-menu.php:55
authwp_ajax_eposwcp_load_stock_from_ep_chunkadmin\class-admin-menu.php:56
authwp_ajax_eposwcp_load_wc_products_for_importadmin\class-admin-menu.php:59
authwp_ajax_eposwcp_import_wc_to_ep_chunkadmin\class-admin-menu.php:60
authwp_ajax_eposwcp_load_tax_mappingadmin\class-admin-menu.php:63
authwp_ajax_eposwcp_load_stock_ep_to_wcadmin\class-admin-menu.php:66
authwp_ajax_eposwcp_sync_stock_ep_to_wcadmin\class-admin-menu.php:67
authwp_ajax_eposwcp_load_stock_wc_to_epadmin\class-admin-menu.php:68
authwp_ajax_eposwcp_sync_stock_wc_to_epadmin\class-admin-menu.php:69
authwp_ajax_eposwcp_process_queueadmin\class-admin-menu.php:72
authwp_ajax_eposwcp_dashboard_statsadmin\class-admin-menu.php:75
authwp_ajax_eposwcp_get_logsadmin\class-admin-menu.php:78
authwp_ajax_eposwcp_clear_logsadmin\class-admin-menu.php:79
authwp_ajax_eposwcp_enable_webhookadmin\class-admin-menu.php:82
authwp_ajax_eposwcp_disable_webhookadmin\class-admin-menu.php:83
authwp_ajax_eposwcp_get_webhook_statusadmin\class-admin-menu.php:84

REST API Routes 1

GET/wp-json/elementary-pos/v1/webhookincludes\class-webhook-handler.php:47
WordPress Hooks 11
actionadmin_menuadmin\class-admin-menu.php:43
actionadmin_enqueue_scriptsadmin\class-admin-menu.php:44
actionplugins_loadedelementary-pos-for-woocommerce.php:63
actionadmin_noticeselementary-pos-for-woocommerce.php:86
actionbefore_woocommerce_initelementary-pos-for-woocommerce.php:91
actioneposwcp_process_queueelementary-pos-for-woocommerce.php:172
actioneposwcp_cleanupelementary-pos-for-woocommerce.php:173
filtercron_scheduleselementary-pos-for-woocommerce.php:308
actionwoocommerce_reduce_order_item_stockincludes\class-wc-stock-handler.php:42
actionwoocommerce_before_product_object_saveincludes\class-wc-stock-handler.php:45
actionrest_api_initincludes\class-webhook-handler.php:40

Scheduled Events 2

eposwcp_process_queue
eposwcp_cleanup
Maintenance & Trust

Elementary POS for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 15, 2026
PHP min version7.4
Downloads282

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Elementary POS for WooCommerce Alternatives

Sync Master Sheet – Product Sync with Google Sheet for WooCommerce

Sync Master Sheet – Product Sync with Google Sheet for WooCommerce

product-sync-master-sheet

A
99

Help you to connect your WooCommerce website with Google Sheet as well as Manage your Stock easy from one menu with Advance Filter

500 1 CVE
Product Sync for WooCommerce

Product Sync for WooCommerce

products-sync-for-woocommerce

A
100

Import products to WooCommerce from external suppliers, dropshipping APIs. Automatically sync products and inventory details into your WooCommerce to …

300 No CVEs
Integration for Epos Now and WooCommerce

Integration for Epos Now and WooCommerce

woo-epos-now-integration

A
100

Seamlessly integrate WooCommerce and Epos Now.

300 No CVEs
Syncio — Multistore Product & Inventory Sync For WooCommerce

Syncio — Multistore Product & Inventory Sync For WooCommerce

syncio-multistore-product-inventory-sync-for-woocommerce

A
100

Real-time sync inventory and products across multiple WooCommerce and Shopify stores.

100 No CVEs
Wp Stock Sync

Wp Stock Sync

wp-stock-sync

A
85

This is a simple plugin for WooCommerce that will sum variable product stock quantity and then saves that sum as the parent product's stock value …

10 No CVEs
Developer Profile

Elementary POS for WooCommerce Developer Profile

Elementary POS

1 plugin · 10 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Elementary POS for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/elementary-pos-for-woocommerce/assets/css/admin.css/wp-content/plugins/elementary-pos-for-woocommerce/assets/css/frontend.css/wp-content/plugins/elementary-pos-for-woocommerce/assets/js/admin.js/wp-content/plugins/elementary-pos-for-woocommerce/assets/js/frontend.js
Script Paths
/wp-content/plugins/elementary-pos-for-woocommerce/assets/js/admin.js/wp-content/plugins/elementary-pos-for-woocommerce/assets/js/frontend.js
Version Parameters
elementary-pos-for-woocommerce/assets/css/admin.css?ver=elementary-pos-for-woocommerce/assets/css/frontend.css?ver=elementary-pos-for-woocommerce/assets/js/admin.js?ver=elementary-pos-for-woocommerce/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
eposwcp-settings-pageeposwcp-admin-menu-wrappereposwcp-modaleposwcp-noticeeposwcp-loading-overlay
HTML Comments
<!-- Elementary POS for WooCommerce --><!-- End Elementary POS for WooCommerce --><!-- Main plugin class --><!-- Get single instance -->+26 more
Data Attributes
data-eposwcp-product-iddata-eposwcp-actiondata-eposwcp-modal-target
JS Globals
eposwcp_ajax_objectEposwcpFrontendEposwcpAdmin
REST Endpoints
/wp-json/eposwcp/v1/products/wp-json/eposwcp/v1/stock/wp-json/eposwcp/v1/orders
FAQ

Frequently Asked Questions about Elementary POS for WooCommerce