Does Experto Dashboard for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Experto Dashboard for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, Experto Dashboard for WooCommerce 1.0.5 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Experto Dashboard for WooCommerce compatible with PHP 5.6+?

Experto Dashboard for WooCommerce requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Experto Dashboard for WooCommerce updated?

Experto Dashboard for WooCommerce was last updated on Mar 27, 2026. Frequent updates are generally a positive security signal.

What is Experto Dashboard for WooCommerce's security score?

Experto Dashboard for WooCommerce has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Experto Dashboard for WooCommerce Security & Risk Analysis

wordpress.org/plugins/experto-custom-dashboard

Customize the appearance and functionality of your WooCommerce My Account dashboard with personalized colors, fonts, and custom content blocks.

10 active installs v1.0.5 PHP 5.6+ WP 5.5.4+ Updated Mar 27, 2026

customer-dashboardcustomizationdashboardmy-accountwoocommerce

A · Safe

CVEs total1

Unpatched0

Last CVEApr 8, 2026

Plugin page Download

Safety Verdict

Is Experto Dashboard for WooCommerce Safe to Use in 2026?

Generally Safe

Score 99/100

Experto Dashboard for WooCommerce has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

1 known CVELast CVE: Apr 8, 2026Updated 1mo ago

Risk Assessment

The plugin "experto-custom-dashboard" v1.0.1 exhibits a mixed security posture. On the positive side, it demonstrates strong practices regarding SQL queries, with 100% utilizing prepared statements, and excellent output escaping, with 99% of outputs properly escaped. It also has a clean vulnerability history with no recorded CVEs, suggesting a generally well-maintained codebase. However, significant security concerns arise from its attack surface. The plugin exposes two AJAX handlers, and critically, both of these lack any authentication checks. This presents a clear risk of unauthorized access and manipulation of plugin functionality by unauthenticated users. While the taint analysis shows no critical or high-severity unsanitized flows, the presence of two flows with unsanitized paths, combined with the unprotected AJAX endpoints, warrants careful consideration as these could potentially be exploited in conjunction with other vulnerabilities or through different vectors.

Key Concerns

AJAX handlers without authentication
Flows with unsanitized paths

Vulnerabilities

1 published

Experto Dashboard for WooCommerce Security Vulnerabilities

CVEs by Year

1 CVE in 2026

2026

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2026-3574medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Experto Dashboard for WooCommerce <= 1.0.4 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Navigation Font Size' Setting

Apr 8, 2026 Patched in 1.0.5 (1d)

Version History

Experto Dashboard for WooCommerce Release Timeline

v1.0.5Current

Code Analysis

Analyzed Mar 17, 2026

Experto Dashboard for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

133 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

99% escaped134 total outputs

Data Flows · Security

2 unsanitized

Data Flow Analysis

3 flows2 with unsanitized paths

ewc_update_dash_item (admin\class-ewc-admin.php:319)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

Experto Dashboard for WooCommerce Attack Surface

Entry Points2

Unprotected2

AJAX Handlers 2

authwp_ajax_ewc_update_dash_item_actionadmin\class-ewc-admin.php:31

noprivwp_ajax_ewc_update_dash_item_actionadmin\class-ewc-admin.php:32

WordPress Hooks 12

filtertemplate_includeadmin\class-ewc-admin.php:26

filterwoocommerce_locate_templateadmin\class-ewc-admin.php:27

filtertheme_page_templatesadmin\class-ewc-admin.php:28

actionadmin_menuadmin\class-ewc-admin.php:29

actionadmin_initadmin\class-ewc-admin.php:30

actionadmin_noticesadmin\partials\ewc-admin-settings.php:22

actionadmin_enqueue_scriptsincludes\class-ewc.php:66

actionadmin_enqueue_scriptsincludes\class-ewc.php:67

actiondeactivated_pluginincludes\class-ewc.php:68

actionwp_enqueue_scriptsincludes\class-ewc.php:76

actionwp_enqueue_scriptsincludes\class-ewc.php:77

actionwoocommerce_account_dashboardpublic\class-ewc-public.php:24

Maintenance & Trust

Experto Dashboard for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 27, 2026

PHP min version5.6

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Experto Dashboard for WooCommerce Alternatives

NextDash – Modern Customer Dashboard

nextdash

100

Replace WooCommerce’s outdated My Account page with a fast, modern React-powered customer dashboard.

0 No CVEs

Customize My Account Page For WooCommerce

customize-my-account-page

100

Customize the default WooCommerce My Account Page. Add unlimited menu tabs, manage endpoints & display personalized content in the customer dashboard.

1K No CVEs

Customize My Account for WooCommerce – Dashboard, Endpoints & Design

my-account-customize-for-wp

100

Easily customize the WooCommerce My Account page. Edit custom endpoints, redesign the WooCommerce dashboard, manage menus, and apply premium styles.

500 No CVEs

ACL – Woo Advanced Customer Dashboard

acl-woo-advanced-customer-dashboard

Customer Dashboard Plugin is the most Advanced Award Wining WooCommerce plugin that lets you create the decorative users end dashboard with many inter …

10 No CVEs

Advanced Customer Account for WooCommerce

advanced-customer-account

100

A modern, React-powered WooCommerce My Account page replacement with beautiful dashboard, orders management, and enhanced customer experience.

10 No CVEs

Developer Profile

Experto Dashboard for WooCommerce Developer Profile

UX Design Experts

4 plugins · 220 total installs

100

trust score

Avg Security Score

100/100

Avg Patch Time

5 days

View full developer profile

Detection Fingerprints

How We Detect Experto Dashboard for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/experto-custom-dashboard/admin/css/ewc-admin.css/wp-content/plugins/experto-custom-dashboard/admin/js/ewc-admin.js

Script Paths

/wp-content/plugins/experto-custom-dashboard/admin/js/ewc-admin.js

Version Parameters

experto-custom-dashboard/admin/css/ewc-admin.css?ver=experto-custom-dashboard/admin/js/ewc-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

ewc-admin-menu

Data Attributes

data-plugin-name="experto-custom-dashboard"data-plugin-version="1.0.1"

JS Globals

ewcURLS

FAQ