WP-Safety

Fatura Entegratör – Gurmehub Fatura Eklentisi Security & Risk Analysis

wordpress.org/plugins/fatura-entegrator

Kolay, hızlı entegre edilebilir WordPress Fatura eklentisi.

50 active installs v1.1.12 PHP 7.4+ WP 6.4+ Updated Feb 12, 2026
fatura
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Fatura Entegratör – Gurmehub Fatura Eklentisi Safe to Use in 2026?

Generally Safe

Score 100/100

Fatura Entegratör – Gurmehub Fatura Eklentisi has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The "fatura-entegrator" plugin v1.1.12 exhibits a generally good security posture, with several positive indicators. Notably, all identified output operations are properly escaped, and the vast majority of SQL queries utilize prepared statements, significantly mitigating risks of injection vulnerabilities. The absence of known CVEs and a clean vulnerability history further contribute to its perceived security. However, the analysis also highlights areas of concern. The presence of "flows with unsanitized paths" in the taint analysis, particularly two high-severity flows, suggests potential vulnerabilities related to how external data is handled within the plugin. While the attack surface appears limited in terms of direct entry points like AJAX, REST API, and shortcodes, the single cron event could be a potential vector if not properly secured. The lack of capability checks on any entry points, though currently not exposed by the static analysis, is a weakness that could be exploited if an attack vector is discovered.

Key Concerns

  • High severity taint flows
  • Unsanitized paths in taint analysis
  • No capability checks on entry points
Vulnerabilities
None known

Fatura Entegratör – Gurmehub Fatura Eklentisi Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Fatura Entegratör – Gurmehub Fatura Eklentisi Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
22 prepared
Unescaped Output
0
26 escaped
Nonce Checks
1
Capability Checks
0
File Operations
2
External Requests
1
Bundled Libraries
0

SQL Query Safety

96% prepared23 total queries

Output Escaping

100% escaped26 total outputs
Data Flows
4 unsanitized

Data Flow Analysis

7 flows4 with unsanitized paths
middleware (hooks\class-ginvoice-ajax.php:86)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Fatura Entegratör – Gurmehub Fatura Eklentisi Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 27
actioninithooks\class-ginvoice-ajax.php:38
actionbefore_woocommerce_inithooks\class-ginvoice-woocommerce.php:36
filterwoocommerce_my_account_my_orders_actionshooks\class-ginvoice-woocommerce.php:38
actionwoocommerce_before_account_ordershooks\class-ginvoice-woocommerce.php:39
filtermanage_woocommerce_page_wc-orders_columnshooks\class-ginvoice-woocommerce.php:41
filtermanage_shop_order_posts_columnshooks\class-ginvoice-woocommerce.php:42
actionmanage_woocommerce_page_wc-orders_custom_columnhooks\class-ginvoice-woocommerce.php:43
actionmanage_shop_order_posts_custom_columnhooks\class-ginvoice-woocommerce.php:44
actionwoocommerce_inithooks\class-ginvoice-woocommerce.php:49
filterwoocommerce_billing_fieldshooks\class-ginvoice-woocommerce.php:51
actionwoocommerce_admin_billing_fieldshooks\class-ginvoice-woocommerce.php:53
filterginvoice_orders_table_localize_datahooks\class-ginvoice-woocommerce.php:176
actionadmin_footerhooks\class-ginvoice-wordpress.php:50
actionadmin_menuhooks\class-ginvoice-wordpress.php:51
actionadd_meta_boxeshooks\class-ginvoice-wordpress.php:52
actioninithooks\class-ginvoice-wordpress.php:54
actionplugins_loadedhooks\class-ginvoice-wordpress.php:55
filterquery_varshooks\class-ginvoice-wordpress.php:56
filtertemplate_includehooks\class-ginvoice-wordpress.php:57
filterscript_loader_taghooks\class-ginvoice-wordpress.php:58
actionadmin_enqueue_scriptshooks\class-ginvoice-wordpress.php:59
actionupgrader_process_completehooks\class-ginvoice-wordpress.php:61
filterbulk_actions-edit-shop_orderhooks\class-ginvoice-wordpress.php:62
filterbulk_actions-woocommerce_page_wc-ordershooks\class-ginvoice-wordpress.php:63
filterhandle_bulk_actions-edit-shop_orderhooks\class-ginvoice-wordpress.php:64
filterhandle_bulk_actions-woocommerce_page_wc-ordershooks\class-ginvoice-wordpress.php:65
actionginvoice_auto_invoiceincludes\class-ginvoice-schedule.php:19

Scheduled Events 1

ginvoice_auto_invoice
Maintenance & Trust

Fatura Entegratör – Gurmehub Fatura Eklentisi Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 12, 2026
PHP min version7.4
Downloads2K

Community Trust

Rating90/100
Number of ratings2
Active installs50
Alternatives

Fatura Entegratör – Gurmehub Fatura Eklentisi Alternatives

Hezarfen – WooCommerce için Kargo Entegrasyonu – Sözleşmeler, Mahalle, İlçe, SMS

Hezarfen – WooCommerce için Kargo Entegrasyonu – Sözleşmeler, Mahalle, İlçe, SMS

hezarfen-for-woocommerce

A
100

🚀 2 bin site! Kargo takip, ücretsiz Hepsijet Entegrasyonu (1-4 desi: 89,24TL+KDV - Hezarfen Pro gerekmez), Mesafeli Sözleşmeler, NetGSM sipariş SMS

2K No CVEs
Link Invoice Payment for WooCommerce

Link Invoice Payment for WooCommerce

invoice-payment-for-woocommerce

A
98

Link Invoice Payment plugin is a powerful extension for WooCommerce, designed to simplify online billing. Whether for one-time or recurring invoices.

200 2 CVEs
WTC: Sözleşmeler, Kargo, SMS, İade, Form, OTP (SMS Doğrulama), Puan, Kupon Yönetimi

WTC: Sözleşmeler, Kargo, SMS, İade, Form, OTP (SMS Doğrulama), Puan, Kupon Yönetimi

wtc-checkout

A
100

WC Turkiye: Contracts, Form Fields, District/Neighborhood Select, Auto Postcode, Cargo, SMS, OTP, Points, Coupons, Return and Dashboard Management.

20 No CVEs
Eafatura Kargo & E-Arşiv ve E-Fatura Entegrasyonu

Eafatura Kargo & E-Arşiv ve E-Fatura Entegrasyonu

eafatura-e-arsiv-entegrasyon

A
100

Kısa açıklama: WordPress WooCommerce için Fatura ve Kargo eklentisi.

10 No CVEs
Marvinerp

Marvinerp

marvinerp-api

A
85

O Marvin ERP é um produto com a qualidade da PONTO 25 – informática lda.

10 No CVEs
Developer Profile

Fatura Entegratör – Gurmehub Fatura Eklentisi Developer Profile

Gurmehub

4 plugins · 1K total installs

100
trust score
Avg Security Score
100/100
Avg Patch Time
6 days
View full developer profile
Detection Fingerprints

How We Detect Fatura Entegratör – Gurmehub Fatura Eklentisi

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/fatura-entegrator/assets/css/fatura-entegrator.css/wp-content/plugins/fatura-entegrator/assets/js/fatura-entegrator.js
Script Paths
/wp-content/plugins/fatura-entegrator/assets/js/fatura-entegrator.js
Version Parameters
fatura-entegrator/assets/css/fatura-entegrator.css?ver=fatura-entegrator/assets/js/fatura-entegrator.js?ver=

HTML / DOM Fingerprints

CSS Classes
fatura-entegrator
Data Attributes
data-ginvoice-fielddata-ginvoice-item
JS Globals
faturaEntegratorginvoice_vue_vars
REST Endpoints
/wp-json/fatura-entegrator/v1/settings/wp-json/fatura-entegrator/v1/order-status/wp-json/fatura-entegrator/v1/connect
Shortcode Output
[fatura_entegrator_button]
FAQ

Frequently Asked Questions about Fatura Entegratör – Gurmehub Fatura Eklentisi