Does FlowDino have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is FlowDino compatible with WordPress 6.9.4?

According to WordPress.org data, FlowDino 1.1.13 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is FlowDino compatible with PHP 7.4+?

FlowDino requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is FlowDino updated?

FlowDino was last updated on Apr 11, 2026. Frequent updates are generally a positive security signal.

What is FlowDino's security score?

FlowDino has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

FlowDino Security — No Known CVEs

Safety Verdict

Is FlowDino Safe to Use in 2026?

Generally Safe

Score 100/100

FlowDino has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The "flowdino" plugin v1.1.13 exhibits a generally strong security posture, evidenced by the extensive use of prepared statements for SQL queries and a high percentage of properly escaped output. The absence of known CVEs and common vulnerability types in its history further suggests a diligent approach to security or a lack of prior significant issues. However, a significant concern arises from the presence of 17 AJAX handlers, with 3 of them lacking authentication checks. While taint analysis did not reveal critical or high-severity unsanitized paths, the potential for unauthorized actions via these unprotected AJAX endpoints represents a notable risk.

The plugin's strengths lie in its secure database interactions and output handling. The large number of nonce checks (27) and capability checks (16) indicate an effort to secure various functionalities. Despite the low risk indicated by the taint analysis, the 4 flows with unsanitized paths warrant attention as they could potentially lead to unexpected behavior or vulnerabilities if exploited in conjunction with other weaknesses. The overall assessment is positive due to the lack of historical vulnerabilities and good coding practices in most areas, but the unprotected AJAX handlers present a clear and immediate area for improvement and potential exploitation.

Key Concerns

Unprotected AJAX handlers
Flows with unsanitized paths

Vulnerabilities

None known

FlowDino Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

FlowDino Release Timeline

v1.1.13Current

v1.1.12

v1.0.11

v1.0.10

v1.0.9

v1.0.8

v1.0.7

v1.0.6

v1.0.5

Code Analysis

Analyzed Apr 16, 2026

FlowDino Code Analysis

Dangerous Functions

0

Raw SQL Queries

0

33 prepared

Unescaped Output

13

1050 escaped

Nonce Checks

27

Capability Checks

16

File Operations

6

External Requests

31

Bundled Libraries

0

SQL Query Safety

100% prepared33 total queries

Output Escaping

99% escaped1063 total outputs

Data Flows · Security

4 unsanitized

Data Flow Analysis

23 flows4 with unsanitized paths

ajax_search_brands (includes/class-flowdino-wc-admin.php:531)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

3 unprotected

FlowDino Attack Surface

Entry Points17

Unprotected3

AJAX Handlers 17

authwp_ajax_flowdino_sync_productflowdino.php:164

authwp_ajax_flowdino_test_connectionflowdino.php:165

authwp_ajax_flowdino_proxy_labelflowdino.php:166

authwp_ajax_flowdino_search_brandsincludes/class-flowdino-wc-admin.php:33

noprivwp_ajax_flowdino_search_brandsincludes/class-flowdino-wc-admin.php:34

authwp_ajax_flowdino_create_brandincludes/class-flowdino-wc-admin.php:37

authwp_ajax_flowdino_search_colorsincludes/class-flowdino-wc-admin.php:40

noprivwp_ajax_flowdino_search_colorsincludes/class-flowdino-wc-admin.php:41

authwp_ajax_flowdino_test_connectionincludes/class-flowdino-wc-admin.php:44

authwp_ajax_flowdino_debug_advancedincludes/class-flowdino-wc-admin.php:47

authwp_ajax_flowdino_force_reconnectincludes/class-flowdino-wc-admin.php:50

authwp_ajax_flowdino_sync_single_productincludes/class-flowdino-wc-admin.php:53

authwp_ajax_flowdino_get_non_compliant_productsincludes/class-flowdino-wc-admin.php:56

authwp_ajax_flowdino_check_selected_products_complianceincludes/class-flowdino-wc-admin.php:59

authwp_ajax_flowdino_refresh_product_statsincludes/class-flowdino-wc-admin.php:62

authwp_ajax_flowdino_fetch_product_updatesincludes/class-flowdino-wc-admin.php:65

authwp_ajax_flowdino_sync_salesincludes/class-flowdino-wc-admin.php:68

WordPress Hooks 27

actionadmin_noticesflowdino.php:38

actioninitflowdino.php:89

actionwoocommerce_update_productflowdino.php:136

actionwoocommerce_new_productflowdino.php:137

actionwoocommerce_delete_productflowdino.php:138

actionwoocommerce_update_product_variationflowdino.php:141

actionwoocommerce_save_product_variationflowdino.php:144

actionwoocommerce_product_set_stock_statusflowdino.php:148

actionwoocommerce_product_set_stockflowdino.php:150

actionwoocommerce_variation_set_stock_statusflowdino.php:152

actionwoocommerce_variation_set_stockflowdino.php:153

actionadmin_menuflowdino.php:156

actionadmin_enqueue_scriptsflowdino.php:157

actionadmin_enqueue_scriptsflowdino.php:158

actionadd_meta_boxesflowdino.php:161

filterautoptimize_filter_js_excludeflowdino.php:209

filterrocket_exclude_jsflowdino.php:210

filterlitespeed_optimize_js_excludesflowdino.php:211

filterw3tc_minify_js_do_tag_minificationflowdino.php:212

filterscript_loader_tagflowdino.php:214

actionplugins_loadedflowdino.php:754

actioninitflowdino.php:784

filterlocaleflowdino.php:798

actionadmin_initflowdino.php:807

actionadmin_initincludes/class-flowdino-wc-admin.php:30

actionadmin_noticesincludes/tabs/class-flowdino-wc-settings-tab.php:194

actionadmin_noticesincludes/tabs/class-flowdino-wc-settings-tab.php:216

Maintenance & Trust

FlowDino Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 11, 2026

PHP min version7.4

Downloads429

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

FlowDino Alternatives

Catalog Booster & Product Catalog Mode for WooCommerce

catalog-booster-for-woocommerce

A

100

Catalog Booster for WooCommerce lets you modify the standard layout, disable sales, transform e-commerce into simple & beautiful catalog.

1K No CVEs

Simple Catalog for WooCommerce

simple-catalog-for-woocommerce

A

92

Turn your WooCommerce store into a simple online catalog or alternatively, only allow store access to customers once they're logged in.

1K No CVEs

Price & Cart Hider – WooCommerce Catalog Mode, Wholesale & B2B

price-cart-hider-for-woocommerce

A

100

Turn WooCommerce into Catalog Mode. Hide prices & Add to Cart. Perfect for Wholesale, B2B, and Members-only stores. No coding needed.

100 No CVEs

Channel3 for WooCommerce

channel3-for-woocommerce

A

100

Sync your WooCommerce product catalog to Channel3.

0 No CVEs

Račun123 for WooCommerce

racun123-for-woocommerce

A

100

Connect WooCommerce with Račun123 and automatically create invoices from completed orders.

0 No CVEs

Developer Profile

FlowDino Developer Profile

FlowDino

1 plugin · 0 total installs

94

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect FlowDino

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/flowdino/assets/pdf.min.js/wp-content/plugins/flowdino/assets/pdf-utils.js/wp-content/plugins/flowdino/assets/pdf.worker.min.js

Script Paths