eShop Order Emailer Security & Risk Analysis
wordpress.org/plugins/eshop-order-emailerEmail your successful eShop orders to one or more email addresses for unlimited suppliers.
Is eShop Order Emailer Safe to Use in 2026?
Generally Safe
Score 85/100eShop Order Emailer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The eshop-order-emailer v2.1.1 plugin exhibits a generally positive security posture based on the provided static analysis. The absence of any registered AJAX handlers, REST API routes, shortcodes, or cron events significantly limits its potential attack surface, which is a strong security practice. Furthermore, the use of prepared statements for all SQL queries and the lack of known CVEs in its history are commendable. However, the static analysis reveals a significant concern regarding output escaping, as 100% of detected outputs are not properly escaped. This could lead to cross-site scripting (XSS) vulnerabilities if any user-supplied data is ever reflected in the plugin's output without sanitization. The lack of nonce and capability checks on any potential entry points (though none are explicitly identified in this analysis) also presents a theoretical risk, as it implies that if entry points were to be added in future updates or through unforeseen interactions, they might be exposed.
Key Concerns
- Unescaped output detected
- No nonce checks on entry points
- No capability checks on entry points
eShop Order Emailer Security Vulnerabilities
eShop Order Emailer Release Timeline
eShop Order Emailer Code Analysis
SQL Query Safety
Output Escaping
eShop Order Emailer Attack Surface
WordPress Hooks 2
Maintenance & Trust
eShop Order Emailer Maintenance & Trust
Maintenance Signals
Community Trust
eShop Order Emailer Alternatives
Export Orders for WooCommerce
woocommerce-export-orders
Easily export WooCommerce orders with itemized details in CSV, Excel, or PDF formats.
Export All Posts, Products, Orders, Refunds & Users
wp-ultimate-exporter
Export any WordPress website including WooCommerce data seamlessly with our powerful export plugin. Save records as CSV, XML, or Excel file for secure …
Store Exporter – Export WooCommerce Products, Orders, Subscriptions, Customers
woocommerce-exporter
Export WooCommerce products, orders, customers, categories, tags, subscriptions & more into formatted files like CSV, XML, Excel 2007, XLS, XLSX.
Infoplus Connect for WooCommerce
infoplus-connect-for-woocommerce
Connects your store to Infoplus to sync inventory, orders, and shipment tracking information for optimized order fulfillment.
Email Orders Digest
woo-email-orders
Sends out a daily email digest of all orders made the previous day in WooCommerce
eShop Order Emailer Developer Profile
5 plugins · 250 total installs
How We Detect eShop Order Emailer
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/eshop-order-emailer/css/eshop-order-emailer.css/wp-content/plugins/eshop-order-emailer/js/eshop-order-emailer.js/wp-content/plugins/eshop-order-emailer/js/eshop-order-emailer.jseshop-order-emailer/css/eshop-order-emailer.css?ver=eshop-order-emailer/js/eshop-order-emailer.js?ver=HTML / DOM Fingerprints
pws_eordem<!-- Automatically email eShop orders to your suppliers or a fulfillment center. --><!-- LICENSE --><!-- Copyright 2012 Paul's Web Solutions (email : paul@paulswebsolutions.com ) --><!-- This program is free software; you can redistribute it and/or modify -->+16 moredata-plugin-name="eShop Order Emailer"data-plugin-version="2.1.1"eordempwsPlugin_1_0