Does ePim API importer have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is ePim API importer compatible with WordPress 6.1.10?

According to WordPress.org data, ePim API importer 1.1.7 has been tested up to WordPress 6.1.10. Check the plugin's changelog for the latest compatibility information.

Is ePim API importer compatible with PHP 7.0+?

ePim API importer requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is ePim API importer updated?

ePim API importer was last updated on Apr 12, 2024. Frequent updates are generally a positive security signal.

What is ePim API importer's security score?

ePim API importer has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

ePim API importer Security — No Known CVEs

Safety Verdict

Is ePim API importer Safe to Use in 2026?

Generally Safe

Score 85/100

ePim API importer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The epim-api-importer plugin exhibits a significantly concerning security posture due to a vast attack surface with no authentication checks on its AJAX handlers. While the code displays good practices in SQL query sanitization and a lack of known vulnerabilities, the absence of security measures on its entry points is a critical oversight. The static analysis reveals all 43 AJAX handlers are unprotected, presenting a wide avenue for potential exploitation. Taint analysis, though showing no critical or high severity flows, analyzed a limited number of flows and found 100% of them with unsanitized paths, which is a worrying indicator given the unauthenticated nature of the AJAX handlers.

The vulnerability history shows a clean slate, which is positive but could also be attributed to the plugin's limited adoption or a lack of extensive security auditing. The presence of nonce checks and capability checks on a limited subset of functions suggests some awareness of security principles, but their application is not comprehensive enough to mitigate the risks posed by the unprotected AJAX endpoints. Overall, the plugin's strengths lie in its SQL handling and lack of historical vulnerabilities, but these are severely overshadowed by the high risk introduced by its exposed AJAX interface.

Key Concerns

43 AJAX handlers without auth checks
22 flows with unsanitized paths (taint analysis)
49% output escaping is not properly escaped
4 nonce checks for 43 entry points
7 capability checks for 43 entry points

Vulnerabilities

None known

ePim API importer Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

ePim API importer Release Timeline

v1.1.1

v1.1.0

v1.0.8

v1.0.7

v1.0.6

v1.0.5

v1.0.1

v1.0

v1.0.0

Code Analysis

Analyzed Mar 17, 2026

ePim API importer Code Analysis

Dangerous Functions

0

Raw SQL Queries

0

9 prepared

Unescaped Output

76

74 escaped

Nonce Checks

4

Capability Checks

7

File Operations

7

External Requests

2

Bundled Libraries

0

SQL Query Safety

100% prepared9 total queries

Output Escaping

49% escaped150 total outputs

Data Flows · Security

22 unsanitized

Data Flow Analysis

22 flows22 with unsanitized paths

ajax_epimaapi_divi_write_css_file (includes\autoinc-ajax-handlers.php:87)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

43 unprotected

ePim API importer Attack Surface

Entry Points43

Unprotected43

AJAX Handlers 43

authwp_ajax_get_all_categoriesincludes\autoinc-ajax-handlers.php:23

authwp_ajax_get_all_branchesincludes\autoinc-ajax-handlers.php:24

authwp_ajax_update_branch_stockincludes\autoinc-ajax-handlers.php:25

authwp_ajax_get_branch_stockincludes\autoinc-ajax-handlers.php:26

authwp_ajax_get_all_attributesincludes\autoinc-ajax-handlers.php:27

authwp_ajax_get_all_productsincludes\autoinc-ajax-handlers.php:28

authwp_ajax_get_all_changed_products_sinceincludes\autoinc-ajax-handlers.php:29

authwp_ajax_get_all_changed_products_since_startingincludes\autoinc-ajax-handlers.php:30

authwp_ajax_get_productincludes\autoinc-ajax-handlers.php:31

authwp_ajax_get_categoryincludes\autoinc-ajax-handlers.php:32

authwp_ajax_get_pictureincludes\autoinc-ajax-handlers.php:33

authwp_ajax_get_variationincludes\autoinc-ajax-handlers.php:34

authwp_ajax_create_categoryincludes\autoinc-ajax-handlers.php:35

authwp_ajax_create_branchincludes\autoinc-ajax-handlers.php:36

authwp_ajax_get_category_imagesincludes\autoinc-ajax-handlers.php:37

authwp_ajax_get_picture_web_linkincludes\autoinc-ajax-handlers.php:38

authwp_ajax_import_pictureincludes\autoinc-ajax-handlers.php:39

authwp_ajax_sort_categoriesincludes\autoinc-ajax-handlers.php:40

authwp_ajax_cat_image_linkincludes\autoinc-ajax-handlers.php:41

authwp_ajax_product_image_linkincludes\autoinc-ajax-handlers.php:42

authwp_ajax_product_group_image_linkincludes\autoinc-ajax-handlers.php:43

authwp_ajax_create_productincludes\autoinc-ajax-handlers.php:44

authwp_ajax_get_product_imagesincludes\autoinc-ajax-handlers.php:45

authwp_ajax_product_ID_codeincludes\autoinc-ajax-handlers.php:46

authwp_ajax_get_single_product_imagesincludes\autoinc-ajax-handlers.php:47

authwp_ajax_import_single_product_imagesincludes\autoinc-ajax-handlers.php:48

authwp_ajax_image_importedincludes\autoinc-ajax-handlers.php:49

authwp_ajax_delete_attributesincludes\autoinc-ajax-handlers.php:50

authwp_ajax_get_deleted_entities_countincludes\autoinc-ajax-handlers.php:51

authwp_ajax_get_deleted_entities_variationsincludes\autoinc-ajax-handlers.php:52

authwp_ajax_delete_variationincludes\autoinc-ajax-handlers.php:53

authwp_ajax_delete_categoriesincludes\autoinc-ajax-handlers.php:54

authwp_ajax_delete_epim_imagesincludes\autoinc-ajax-handlers.php:55

authwp_ajax_delete_productsincludes\autoinc-ajax-handlers.php:56

authwp_ajax_clear_woo_downincludes\autoinc-ajax-handlers.php:57

authwp_ajax_fast_createincludes\autoinc-ajax-handlers.php:59

authwp_ajax_stop_background_updateincludes\autoinc-ajax-handlers.php:60

authwp_ajax_get_background_changed_products_sinceincludes\autoinc-ajax-handlers.php:61

authwp_ajax_force_background_updateincludes\autoinc-ajax-handlers.php:62

authwp_ajax_unfreeze_queueincludes\autoinc-ajax-handlers.php:63

authwp_ajax_divi_write_css_fileincludes\autoinc-ajax-handlers.php:65

authwp_ajax_divi_build_category_menuincludes\autoinc-ajax-handlers.php:66

authwp_ajax_cron_tailincludes\autoinc-ajax-handlers.php:69

WordPress Hooks 61

actioninitincludes\autoinc-candc-branches.php:32

filteruse_block_editor_for_post_typeincludes\autoinc-candc-branches.php:34

actioninitincludes\autoinc-candc-branches.php:42

actionadd_meta_boxesincludes\autoinc-candc-branches.php:67

actionsave_postincludes\autoinc-candc-branches.php:115

actionadd_meta_boxesincludes\autoinc-candc-branches.php:138

actionsave_postincludes\autoinc-candc-branches.php:186

actionadd_meta_boxesincludes\autoinc-candc-branches.php:209

actionsave_postincludes\autoinc-candc-branches.php:257

actionadd_meta_boxesincludes\autoinc-candc-branches.php:280

filterwoocommerce_billing_fieldsincludes\autoinc-candc-checkout.php:51

filterwoocommerce_admin_shipping_fieldsincludes\autoinc-candc-checkout.php:65

actionwoocommerce_checkout_create_orderincludes\autoinc-candc-checkout.php:75

actionwoocommerce_admin_order_data_after_shipping_addressincludes\autoinc-candc-checkout.php:77

filtermanage_edit-shop_order_columnsincludes\autoinc-candc-checkout.php:111

actionmanage_shop_order_posts_custom_columnincludes\autoinc-candc-checkout.php:129

actionwoocommerce_shipping_initincludes\autoinc-candc-shipping-method.php:135

filterwoocommerce_shipping_methodsincludes\autoinc-candc-shipping-method.php:148

actionwoocommerce_review_order_before_cart_contentsincludes\autoinc-candc-shipping-method.php:255

actionwoocommerce_after_checkout_validationincludes\autoinc-candc-shipping-method.php:256

filterwoocommerce_order_button_htmlincludes\autoinc-candc-shipping-method.php:315

actionwoocommerce_thankyouincludes\autoinc-candc-shipping-method.php:357

filterwoocommerce_email_order_meta_fieldsincludes\autoinc-candc-shipping-method.php:362

filterwoocommerce_product_tabsincludes\autoinc-candc-stock-functions.php:45

filterwoocommerce_product_data_tabsincludes\autoinc-candc-woo-custom-fields.php:3

actionwoocommerce_product_data_panelsincludes\autoinc-candc-woo-custom-fields.php:14

actionwoocommerce_process_product_metaincludes\autoinc-candc-woo-custom-fields.php:92

filtercron_schedulesincludes\autoinc-cron.php:7

actionepimaapi_update_branch_stock_minutes_actionincludes\autoinc-cron.php:38

actionepimaapi_update_every_minute_minute_actionincludes\autoinc-cron.php:39

actionepimaapi_update_branch_stock_daily_actionincludes\autoinc-cron.php:40

actionepimaapi_update_luckins_daily_actionincludes\autoinc-cron.php:41

filterbody_classincludes\autoinc-divi-add-body-class.php:6

actionadmin_enqueue_scriptsincludes\autoinc-enqueue.php:6

actionwp_enqueue_scriptsincludes\autoinc-enqueue.php:31

filterattachment_fields_to_editincludes\autoinc-media-meta.php:6

filterattachment_fields_to_saveincludes\autoinc-media-meta.php:7

actionadmin_menuincludes\autoinc-options-page.php:28

actionadmin_initincludes\autoinc-options-page.php:84

filterwoocommerce_attribute_labelincludes\autoinc-product-tabs.php:8

filterwoocommerce_product_tabsincludes\autoinc-product-tabs.php:22

actionproduct_cat_add_form_fieldsincludes\autoinc-woo-custom-fields.php:119

actionproduct_cat_edit_form_fieldsincludes\autoinc-woo-custom-fields.php:120

actionedited_product_catincludes\autoinc-woo-custom-fields.php:138

actioncreate_product_catincludes\autoinc-woo-custom-fields.php:139

actionrest_api_initincludes\autoinc-woo-custom-fields.php:145

filterwoocommerce_product_data_tabsincludes\autoinc-woo-custom-fields.php:169

actionwoocommerce_product_data_panelsincludes\autoinc-woo-custom-fields.php:179

actionwoocommerce_process_product_metaincludes\autoinc-woo-custom-fields.php:278

actionwoocommerce_before_calculate_totalsincludes\autoinc-woo-qty-discounts.php:6

actionwoocommerce_edit_account_form_startincludes\autoinc-wpoa-edit-account-form.php:3

filterwoocommerce_available_payment_gatewaysincludes\autoinc-wpoa-rules.php:17

filterwoocommerce_available_payment_gatewaysincludes\autoinc-wpoa-rules.php:53

actionshow_user_profileincludes\autoinc-wpoa-user-meta.php:2

actionedit_user_profileincludes\autoinc-wpoa-user-meta.php:3

actionpersonal_options_updateincludes\autoinc-wpoa-user-meta.php:26

actionedit_user_profile_updateincludes\autoinc-wpoa-user-meta.php:27

filterwoocommerce_payment_gatewaysincludes\autoinc-wpoa-woo-payment-gateway.php:33

actionplugins_loadedincludes\autoinc-wpoa-woo-payment-gateway.php:46

actionwoocommerce_email_before_order_tableincludes\autoinc-wpoa-woo-payment-gateway.php:77

filterwoocommerce_product_backorders_allowedincludes\disable-backorder.php:2

Scheduled Events 13

epimaapi_update_branch_stock_daily_action

epimaapi_update_luckins_daily_action

epimaapi_update_branch_stock_minutes_action

epimaapi_update_every_minute_minute_action

epimaapi_update_branch_stock_minutes_action

epimaapi_update_every_minute_minute_action

epimaapi_update_luckins_daily_action

epimaapi_update_branch_stock_daily_action

epimaapi_update_branch_stock_minutes_action

epimaapi_update_luckins_daily_action

epimaapi_update_branch_stock_daily_action

epimaapi_update_every_minute_minute_action

Maintenance & Trust

ePim API importer Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10

Last updatedApr 12, 2024

PHP min version7.0

Downloads2K

spss12 Importer from Prom.ua to WooCoommerce

spss12-import-prom-woo

A

100

Import products from Prom.ua xml feed directly into your woocommerce store.

0 No CVEs

Developer Profile

ePim API importer Developer Profile

EdwardN

1 plugin · 10 total installs

84

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect ePim API importer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/epim-api-importer/assets/css/jquery-ui-1-8-2.css/wp-content/plugins/epim-api-importer/assets/scripts/processQueue.js/wp-content/plugins/epim-api-importer/assets/scripts/admin.js

Script Paths

/wp-content/plugins/epim-api-importer/assets/scripts/processQueue.js/wp-content/plugins/epim-api-importer/assets/scripts/admin.js

Version Parameters

epim-api-importer/assets/scripts/processQueue.js?ver=epim-api-importer/assets/scripts/admin.js?ver=

HTML / DOM Fingerprints

JS Globals

epim_ajax_object

REST Endpoints

/wp-json/epim-api-importer/v1/products/wp-json/epim-api-importer/v1/categories/wp-json/epim-api-importer/v1/settings

FAQ

ePim API importer Security & Risk Analysis

Is ePim API importer Safe to Use in 2026?

Generally Safe

Key Concerns

ePim API importer Security Vulnerabilities

ePim API importer Release Timeline

ePim API importer Code Analysis

SQL Query Safety

Output Escaping

Data Flow Analysis

ePim API importer Attack Surface

AJAX Handlers 43

Scheduled Events 13

ePim API importer Maintenance & Trust

Maintenance Signals

Community Trust

ePim API importer Alternatives

Course Box

Integration for Artbiz

Product Import for Triumph Underwear

REST API Products Importer for WooCommerce

spss12 Importer from Prom.ua to WooCoommerce

ePim API importer Developer Profile

How We Detect ePim API importer

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about ePim API importer