Does Extendago Woocommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Extendago Woocommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Extendago Woocommerce compatible with WordPress 6.8.5?

According to WordPress.org data, Extendago Woocommerce 1.6.9 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Extendago Woocommerce compatible with PHP 8.0+?

Extendago Woocommerce requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Extendago Woocommerce updated?

Extendago Woocommerce was last updated on Sep 26, 2025. Frequent updates are generally a positive security signal.

What is Extendago Woocommerce's security score?

Extendago Woocommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Extendago Woocommerce Security & Risk Analysis

wordpress.org/plugins/extendago-wp-connection

Extenda GO Connect, developed and maintained by Arture, makes it simple. No duplication of work, but a central place for your product management.

20 active installs v1.6.9 PHP 8.0+ WP 6.0+ Updated Sep 26, 2025

artureextendaextendagoposwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Extendago Woocommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Extendago Woocommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6mo ago

Risk Assessment

The plugin 'extendago-wp-connection' v1.6.9 presents a significant security risk due to a large number of unprotected entry points. The static analysis reveals 14 AJAX handlers, all of which lack authentication checks. This directly translates to an unprotected attack surface of 14, meaning any unauthenticated user could potentially trigger these functions. While the plugin has no recorded vulnerability history and does not utilize dangerous functions, this absence of historical issues does not mitigate the current, evident risks. The taint analysis shows 5 flows with unsanitized paths, though none are classified as critical or high severity. However, these unsanitized paths, combined with the unprotected AJAX handlers, create a strong potential for various injection vulnerabilities if user input is not handled carefully within these handlers. The limited output escaping (35%) also raises concerns about potential Cross-Site Scripting (XSS) vulnerabilities, as sensitive data might be rendered without proper sanitization. The presence of nonce checks and capability checks (1 and 2 respectively) is a positive sign, but their limited use exacerbates the risk posed by the unprotected AJAX handlers.

Key Concerns

14 unprotected AJAX handlers
5 flows with unsanitized paths
Only 35% of outputs properly escaped
Only 1 nonce check for 14 entry points
Only 2 capability checks for 14 entry points

Vulnerabilities

None known

Extendago Woocommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Extendago Woocommerce Code Analysis

Dangerous Functions

Raw SQL Queries

10 prepared

Unescaped Output

178

96 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

91% prepared11 total queries

Output Escaping

35% escaped274 total outputs

Data Flows

5 unsanitized

Data Flow Analysis

7 flows5 with unsanitized paths

extendago_woocommerce_sync (includes\cronjob\class-extendago-cronjob-functions.php:85)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

14 unprotected

Extendago Woocommerce Attack Surface

Entry Points14

Unprotected14

AJAX Handlers 14

authwp_ajax_check_extendago_api_connectionincludes\class-extendago-wp-connection.php:44

authwp_ajax_extendago_woocommerce_syncincludes\class-extendago-wp-connection.php:49

authwp_ajax_extendago_import_productincludes\class-extendago-wp-connection.php:50

authwp_ajax_woocommerce_extendago_syncincludes\class-extendago-wp-connection.php:51

authwp_ajax_woocommerce_extendago_sync_newincludes\class-extendago-wp-connection.php:52

authwp_ajax_extendago_export_productincludes\class-extendago-wp-connection.php:53

authwp_ajax_stop_exportincludes\class-extendago-wp-connection.php:54

authwp_ajax_resend_new_order_to_extendagoincludes\class-extendago-wp-connection.php:57

authwp_ajax_extendago_save_platformincludes\class-extendago-wp-connection.php:58

authwp_ajax_extendago_complete_wizardincludes\class-extendago-wp-connection.php:59

authwp_ajax_check_extendago_voucherincludes\class-extendago-wp-connection.php:68

noprivwp_ajax_check_extendago_voucherincludes\class-extendago-wp-connection.php:69

authwp_ajax_get_log_fileincludes\class-extendago-wp-connection.php:82

authwp_ajax_get_batch_fileincludes\class-extendago-wp-connection.php:83

WordPress Hooks 37

filtercron_schedulesincludes\admin\class-extendago-wp-connection-admin.php:21

filtermanage_edit-product_cat_columnsincludes\admin\class-extendago-wp-connection-admin.php:23

filtermanage_product_cat_custom_columnincludes\admin\class-extendago-wp-connection-admin.php:24

actionadmin_post_download_logincludes\admin\class-extendago-wp-connection-admin.php:25

actionadmin_menuincludes\class-extendago-wp-connection.php:41

actionadmin_initincludes\class-extendago-wp-connection.php:42

actionadmin_enqueue_scriptsincludes\class-extendago-wp-connection.php:43

actionparse_requestincludes\class-extendago-wp-connection.php:48

actionadmin_noticesincludes\class-extendago-wp-connection.php:60

actionadmin_menuincludes\class-extendago-wp-connection.php:64

actionwoocommerce_before_cartincludes\class-extendago-wp-connection.php:65

actionwoocommerce_before_checkout_formincludes\class-extendago-wp-connection.php:66

actionwp_enqueue_scriptsincludes\class-extendago-wp-connection.php:67

actionwoocommerce_order_status_changedincludes\class-extendago-wp-connection.php:70

actionadd_meta_boxesincludes\class-extendago-wp-connection.php:71

filtermanage_woocommerce_page_wc-orders_columnsincludes\class-extendago-wp-connection.php:73

actionmanage_woocommerce_page_wc-orders_custom_columnincludes\class-extendago-wp-connection.php:74

actionmanage_edit-shop_order_columnsincludes\class-extendago-wp-connection.php:75

actionmanage_shop_order_posts_custom_columnincludes\class-extendago-wp-connection.php:76

actionwoocommerce_product_after_variable_attributesincludes\class-extendago-wp-connection.php:78

actionwoocommerce_thankyouincludes\woocommerce\class-extendago-woocommerce-functions.php:5

actionwoocommerce_thankyouincludes\woocommerce\class-extendago-woocommerce-functions.php:6

actionwoocommerce_new_productincludes\woocommerce\class-extendago-woocommerce-functions.php:8

actionwoocommerce_update_productincludes\woocommerce\class-extendago-woocommerce-functions.php:9

actionwp_trash_postincludes\woocommerce\class-extendago-woocommerce-functions.php:10

actionuntrash_postincludes\woocommerce\class-extendago-woocommerce-functions.php:11

filterwoocommerce_product_data_tabsincludes\woocommerce\class-extendago-woocommerce-functions.php:13

actionwoocommerce_product_data_panelsincludes\woocommerce\class-extendago-woocommerce-functions.php:14

actionwoocommerce_process_product_metaincludes\woocommerce\class-extendago-woocommerce-functions.php:15

filterbulk_actions-edit-productincludes\woocommerce\class-extendago-woocommerce-functions.php:17

filterhandle_bulk_actions-edit-productincludes\woocommerce\class-extendago-woocommerce-functions.php:18

actionadmin_noticesincludes\woocommerce\class-extendago-woocommerce-functions.php:19

actionwoocommerce_order_status_changedincludes\woocommerce\class-extendago-woocommerce-functions.php:21

filtermanage_product_posts_columnsincludes\woocommerce\class-extendago-woocommerce-functions.php:704

actionmanage_product_posts_custom_columnincludes\woocommerce\class-extendago-woocommerce-functions.php:705

filtermanage_edit-product_sortable_columnsincludes\woocommerce\class-extendago-woocommerce-functions.php:706

filterpre_get_postsincludes\woocommerce\class-extendago-woocommerce-functions.php:707

Maintenance & Trust

Extendago Woocommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedSep 26, 2025

PHP min version8.0

Downloads5K

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

Extendago Woocommerce Alternatives

MailPoet – Newsletters, Email Marketing, and Automation

mailpoet

Send beautiful newsletters from WordPress. Collect subscribers with signup forms, automate your emails for WooCommerce, blog post notifications & more

500K 3 CVEs

Filter Everything — Product Filter & WordPress Filter

filter-everything

100

The most universal filters plugin for WordPress and WooCommerce products.

50K No CVEs

Kliken: Ads + Pixel for Meta

kliken-ads-pixel-for-meta

100

Drive Sales on Facebook and Instagram in 5 minutes—upload your catalog, implement the Meta Pixel & Conversions API, and grow via Meta Advantage+ now.

50K No CVEs

PayTR Sanal POS WooCommerce – iFrame API

paytr-sanal-pos-woocommerce-iframe-api

100

PayTR üyeliğiniz ile WooCommerce üzerinden ödeme almanız için gerekli altyapı.

10K No CVEs

Advance Product Search & Ajax Search for WooCommerce

th-advance-product-search

Upgrade WooCommerce search with fast Ajax product search, live results, and category-based search. Help customers find products instantly.

10K 3 CVEs

Developer Profile

Extendago Woocommerce Developer Profile

ExtendaGO

1 plugin · 20 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Extendago Woocommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/extendago-wp-connection/includes/admin/css/bootstrap.min.css/wp-content/plugins/extendago-wp-connection/includes/admin/css/extendago-api-admin.css/wp-content/plugins/extendago-wp-connection/includes/admin/js/bootstrap.bundle.min.js/wp-content/plugins/extendago-wp-connection/includes/admin/js/extendago-api-admin.js/wp-content/plugins/extendago-wp-connection/includes/admin/js/extendago-admin.js

Script Paths

/wp-content/plugins/extendago-wp-connection/includes/admin/js/bootstrap.bundle.min.js/wp-content/plugins/extendago-wp-connection/includes/admin/js/extendago-api-admin.js/wp-content/plugins/extendago-wp-connection/includes/admin/js/extendago-admin.js

Version Parameters

extendago-wp-connection/style.css?ver=extendago-wp-connection/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

extendago-wp-connection-panel

Data Attributes

data-bs-toggledata-bs-targetdata-bs-dismissdata-bs-placement

JS Globals

extendago_wp_connection_params

FAQ