Does Inkedjoy-POD Dropshipping have any unpatched vulnerabilities?

No. All known vulnerabilities in Inkedjoy-POD Dropshipping have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Inkedjoy-POD Dropshipping compatible with WordPress 6.8.5?

According to WordPress.org data, Inkedjoy-POD Dropshipping 1.5 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Inkedjoy-POD Dropshipping compatible with PHP 5.6+?

Inkedjoy-POD Dropshipping requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Inkedjoy-POD Dropshipping updated?

Inkedjoy-POD Dropshipping was last updated on Sep 1, 2025. Frequent updates are generally a positive security signal.

What is Inkedjoy-POD Dropshipping's security score?

Inkedjoy-POD Dropshipping has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Inkedjoy-POD Dropshipping Security & Risk Analysis

wordpress.org/plugins/eprolo-pod-dropshipping

Impressive Products & Price - Print On Demand Dropshipping.

200 active installs v1.5 PHP 5.6+ WP 4.4+ Updated Sep 1, 2025

dropshipdropshippinge-commerceecommercewoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Inkedjoy-POD Dropshipping Safe to Use in 2026?

Generally Safe

Score 100/100

Inkedjoy-POD Dropshipping has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7mo ago

Risk Assessment

The "eprolo-pod-dropshipping" plugin v1.5 presents a significant security risk primarily due to its unprotected attack surface. All identified AJAX handlers and the sole REST API route lack authentication and authorization checks, making them direct entry points for attackers. While the plugin demonstrates good practices in output escaping and doesn't exhibit critical taint analysis findings, the absence of proper access controls is a major concern. The plugin also uses raw SQL queries, which, while not explicitly identified as vulnerable in this analysis, are a known risk vector if not handled carefully. The lack of any recorded vulnerability history might suggest a historically secure codebase or a lack of public discovery, but it doesn't negate the immediate risks posed by the exposed entry points. In conclusion, the plugin's strengths in output sanitization are overshadowed by critical weaknesses in access control, demanding immediate attention to secure its exposed functionality.

Key Concerns

AJAX handlers lack authentication checks
REST API route lacks permission callbacks
SQL queries not using prepared statements
Flows with unsanitized paths (6 total)

Vulnerabilities

None known

Inkedjoy-POD Dropshipping Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Inkedjoy-POD Dropshipping Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

57 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared2 total queries

Output Escaping

98% escaped58 total outputs

Data Flows

6 unsanitized

Data Flow Analysis

6 flows6 with unsanitized paths

eprolo_pod_disconnect (Eprolo_pod_ajax.php:12)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

8 unprotected

Inkedjoy-POD Dropshipping Attack Surface

Entry Points8

Unprotected8

AJAX Handlers 7

authwp_ajax_aftership_get_all_orderseprolo_pod.php:101

authwp_ajax_eprolo_pod_disconnecteprolo_pod.php:102

authwp_ajax_eprolo_pod_connect_keyeprolo_pod.php:103

authwp_ajax_eprolo_pod_reflsheprolo_pod.php:104

authwp_ajax_eprolo_pod_save_tracking_dataEprolo_pod_tracking.php:207

authwp_ajax_eprolo_pod_get_order_infoEprolo_pod_tracking.php:208

authwp_ajax_eprolo_pod_delete_trackingEprolo_pod_tracking.php:209

REST API Routes 1

POST/wp-json/eprolo/v1/ship-order/(?P<id>\d+)Eprolo_pod_tracking_api.php:41

WordPress Hooks 12

actionadmin_noticeseprolo_pod.php:31

actionplugins_loadedieprolo_pod.php:49

actionadmin_initeprolo_pod.php:73

actionadmin_menuEprolo_pod_plugin.php:23

filtermanage_woocommerce_page_wc-orders_columnsEprolo_pod_tracking.php:200

actionmanage_woocommerce_page_wc-orders_custom_columnEprolo_pod_tracking.php:201

filtermanage_edit-shop_order_columnsEprolo_pod_tracking.php:203

actionmanage_shop_order_posts_custom_columnEprolo_pod_tracking.php:204

actionadd_meta_boxesEprolo_pod_tracking.php:206

actioninitEprolo_pod_tracking_api.php:36

filterwc_order_statusesEprolo_pod_tracking_api.php:38

actionrest_api_initEprolo_pod_tracking_api.php:40

Maintenance & Trust

Inkedjoy-POD Dropshipping Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedSep 1, 2025

PHP min version5.6

Downloads4K

Community Trust

Rating60/100

Number of ratings5

Active installs200

Alternatives

Inkedjoy-POD Dropshipping Alternatives

Spocket ‑ US & EU Dropshipping

spocket

Find fast shipping products from reliable suppliers, import them to your WooCommerce store and manage your orders automatically: all for free.

1K No CVEs

AppScenic – Smart AI Dropshipping

appscenic

Expand your store catalogue with no upfront inventory cost. Source high-quality products from verified domestic suppliers and use AI in the process.

2K No CVEs

Hertwill – EU and US Dropshipping

hertwill

100

Dropship high-quality products from European and US suppliers with the first premium dropshipping app.

100 No CVEs

Sharkdropship & affiliate for Amazon

sharkdropship-affiliate-for-amazon

100

Complete Amazon dropshipping solution for WordPress and WooCommerce. Import products, manage inventory, and automate your dropshipping business.

60 No CVEs

Yakkyofy

yakkyofy

Yakkyofy completely automates your woocommerce dropshipping store so you can focus on what matters most: marketing. You run ads, we power your store.

50 No CVEs

Developer Profile

Inkedjoy-POD Dropshipping Developer Profile

paulepro2019

2 plugins · 1K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

6 days

View full developer profile

Detection Fingerprints

How We Detect Inkedjoy-POD Dropshipping

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/eprolo-pod-dropshipping/js/startup.js/wp-content/plugins/eprolo-pod-dropshipping/js/bootstrap.min.js/wp-content/plugins/eprolo-pod-dropshipping/css/bootstrap.min.css/wp-content/plugins/eprolo-pod-dropshipping/css/main.css

Script Paths

js/startup.jsjs/bootstrap.min.js

Version Parameters

eprolo-pod-dropshipping/js/startup.js?ver=eprolo-pod-dropshipping/js/bootstrap.min.js?ver=eprolo-pod-dropshipping/css/bootstrap.min.css?ver=eprolo-pod-dropshipping/css/main.css?ver=

HTML / DOM Fingerprints

CSS Classes

eprolo_pod_form_action

Data Attributes

eprolo_pod_store_tokeneprolo_pod_connectedeprolo_pod_shop_urleprolo_pod_user_ideprolo_pod_file_urleprolo_pod_nonce_field

JS Globals

ajax_startup_inkedjoy

REST Endpoints

/wp-json/eprolo-pod-dropshipping/v1/...

FAQ