Does Horeka Core have any unpatched vulnerabilities?

No. All known vulnerabilities in Horeka Core have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Horeka Core compatible with WordPress 5.9.13?

According to WordPress.org data, Horeka Core 2.4.2 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

How often is Horeka Core updated?

Horeka Core was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Horeka Core's security score?

Horeka Core has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Horeka Core Security & Risk Analysis

wordpress.org/plugins/horeka-core

This module helps restaurants to manage their products and sales better.

50 active installs v2.4.2 PHP + WP 3.5+ Updated Unknown

horekarestaurant-solutionwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Horeka Core Safe to Use in 2026?

Generally Safe

Score 100/100

Horeka Core has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The "horeka-core" plugin v2.4.2 presents a mixed security posture with several significant concerns despite a lack of recorded historical vulnerabilities. The plugin exposes a considerable attack surface, with 6 out of 7 total entry points lacking authentication checks, including all AJAX handlers. This is a major red flag, as unauthenticated AJAX requests are prime targets for exploitation. Furthermore, the taint analysis reveals 2 high-severity flows with unsanitized paths, indicating potential vulnerabilities that could lead to code execution or sensitive data leakage if exploited. The code also shows a concerning lack of output escaping, with nearly half of all outputs not properly escaped, which could lead to cross-site scripting (XSS) vulnerabilities. The absence of nonce checks on AJAX handlers further exacerbates these risks. While the plugin has no recorded CVEs, this does not guarantee security, especially given the identified code-level weaknesses.

Key Concerns

Unprotected AJAX handlers
High severity taint flows
Insufficient output escaping
Missing nonce checks
Limited capability checks

Vulnerabilities

None known

Horeka Core Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Horeka Core Code Analysis

Dangerous Functions

Raw SQL Queries

6 prepared

Unescaped Output

173

166 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

55% prepared11 total queries

Output Escaping

49% escaped339 total outputs

Data Flows

8 unsanitized

Data Flow Analysis

9 flows8 with unsanitized paths

loginThroughApi (inc\Api\Actions.php:292)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

6 unprotected

Horeka Core Attack Surface

Entry Points7

Unprotected6

AJAX Handlers 6

authwp_ajax_woo_get_ajax_datainc\Woocommerce\Functions.php:44

noprivwp_ajax_woo_get_ajax_datainc\Woocommerce\Functions.php:45

authwp_ajax_apply_coupon_via_ajaxinc\Woocommerce\Functions.php:59

noprivwp_ajax_apply_coupon_via_ajaxinc\Woocommerce\Functions.php:60

noprivwp_ajax_checking_cart_itemsinc\Woocommerce\ParentCategoryRestriction.php:27

authwp_ajax_checking_cart_itemsinc\Woocommerce\ParentCategoryRestriction.php:28

Shortcodes 1

[discount_banner] inc\Woocommerce\Functions.php:32

WordPress Hooks 183

actionwoocommerce_order_details_after_order_tableinc\Api\Actions.php:26

actionwoocommerce_checkout_processinc\Api\Actions.php:27

actionadmin_post_nopriv_api_logininc\Api\Actions.php:28

actionadmin_post_api_logininc\Api\Actions.php:29

actioninitinc\Api\Actions.php:30

actioninitinc\Api\Actions.php:31

filterrtb_insert_bookinginc\Api\Actions.php:36

actionadmin_menuinc\Api\SettingsApi.php:22

actionadmin_initinc\Api\SettingsApi.php:26

filtertemplate_redirectinc\Base\CronController.php:18

filtertemplate_redirectinc\Base\CronController.php:19

filtertemplate_redirectinc\Base\CronController.php:20

actionwp_enqueue_scriptsinc\Base\Dequeue.php:76

actionwp_print_scriptsinc\Base\Dequeue.php:77

actionadmin_enqueue_scriptsinc\Base\Enqueue.php:16

actionwp_enqueue_scriptsinc\Base\Enqueue.php:19

actionwp_headinc\Base\Enqueue.php:21

actionwp_enqueue_scriptsinc\Base\Enqueue.php:24

actionwp_footerinc\Base\Enqueue.php:25

actionwp_enqueue_scriptsinc\Base\Enqueue.php:26

actionwp_footerinc\Base\Enqueue.php:27

actionwp_footerinc\Base\Enqueue.php:28

actionwp_enqueue_scriptsinc\Base\Enqueue.php:29

actionwp_enqueue_scriptsinc\Base\Enqueue.php:30

actionwp_footerinc\Base\Enqueue.php:31

actionplugins_loadedinc\Base\Functions.php:21

actioninitinc\Base\Functions.php:22

actionwpinc\Base\Functions.php:23

actionwp_headinc\Base\Functions.php:24

actionhoreka_core_before_head_closing_taginc\Base\Functions.php:25

filterwoocommerce_account_menu_itemsinc\Base\Functions.php:30

filtersite_transient_update_pluginsinc\Base\Functions.php:31

actionadmin_noticesinc\Base\Functions.php:41

actionwoocommerce_register_form_startinc\Base\RegisterController.php:24

actionwoocommerce_register_postinc\Base\RegisterController.php:25

actionwoocommerce_created_customerinc\Base\RegisterController.php:26

actionwoocommerce_created_customerinc\Base\RegisterController.php:27

filtertheme_page_templatesinc\Base\Templates.php:31

filterpage_templateinc\Base\Templates.php:32

actionproduct_cat_add_form_fieldsinc\Woocommerce\Category.php:26

actionproduct_cat_edit_form_fieldsinc\Woocommerce\Category.php:27

actionproduct_cat_add_form_fieldsinc\Woocommerce\Category.php:28

actionproduct_cat_edit_form_fieldsinc\Woocommerce\Category.php:29

actionedited_product_catinc\Woocommerce\Category.php:30

actioncreate_product_catinc\Woocommerce\Category.php:31

actionproduct_cat_edit_form_fieldsinc\Woocommerce\CategoryDeliveryTime.php:22

actionedited_product_catinc\Woocommerce\CategoryDeliveryTime.php:23

actioncreate_product_catinc\Woocommerce\CategoryDeliveryTime.php:24

actionadmin_footerinc\Woocommerce\CategoryDeliveryTime.php:25

actionadmin_enqueue_scriptsinc\Woocommerce\CategoryDeliveryTime.php:26

actionwoocommerce_checkout_update_order_metainc\Woocommerce\CheckoutFields.php:28

actionwoocommerce_checkout_update_order_metainc\Woocommerce\CheckoutFields.php:29

actionwoocommerce_checkout_update_order_metainc\Woocommerce\CheckoutFields.php:30

actionwoocommerce_checkout_update_order_metainc\Woocommerce\CheckoutFields.php:31

actionwoocommerce_checkout_update_order_metainc\Woocommerce\CheckoutFields.php:32

actionwoocommerce_checkout_update_order_metainc\Woocommerce\CheckoutFields.php:33

actionwoocommerce_checkout_update_order_metainc\Woocommerce\CheckoutFields.php:34

actionwoocommerce_checkout_update_order_metainc\Woocommerce\CheckoutFields.php:35

actionwoocommerce_after_checkout_validationinc\Woocommerce\CheckoutFields.php:36

actionwoocommerce_review_order_before_submitinc\Woocommerce\CheckoutFields.php:37

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutFields.php:39

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutFields.php:40

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutFields.php:41

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutFields.php:42

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutFields.php:43

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutFields.php:44

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutFields.php:45

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutFields.php:46

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutFields.php:47

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutFields.php:48

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutFields.php:49

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutFields.php:50

filterwoocommerce_form_fieldinc\Woocommerce\CheckoutFields.php:51

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutFields.php:52

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutV2.php:30

filterwoocommerce_form_fieldinc\Woocommerce\CheckoutV2.php:31

filterwoocommerce_form_fieldinc\Woocommerce\CheckoutV2.php:32

filterwoocommerce_checkout_fieldsinc\Woocommerce\CheckoutV2.php:33

filterwoocommerce_form_fieldinc\Woocommerce\CheckoutV2.php:34

filterwoocommerce_cart_totals_coupon_labelinc\Woocommerce\CheckoutV2.php:35

filterwoocommerce_cart_totals_coupon_htmlinc\Woocommerce\CheckoutV2.php:36

filterwoocommerce_add_errorinc\Woocommerce\CheckoutV2.php:37

filterwoocommerce_add_messageinc\Woocommerce\CheckoutV2.php:38

actionwp_headinc\Woocommerce\CheckoutV2.php:40

actionwoocommerce_before_close_billing_forminc\Woocommerce\CheckoutV2.php:41

actionwoocommerce_checkout_after_order_wrapperinc\Woocommerce\CheckoutV2.php:45

actionwoocommerce_checkout_after_coupon_wrapperinc\Woocommerce\CheckoutV2.php:46

actionwp_enqueue_scriptsinc\Woocommerce\CheckoutV2.php:47

actionhoreka_after_payment_method_thank_you_pageinc\Woocommerce\CheckoutV2.php:48

actionwoocommerce_review_order_before_submitinc\Woocommerce\CheckoutV2.php:49

actionwoocommerce_before_mini_cart_contentsinc\Woocommerce\CheckoutV2.php:50

actionwoocommerce_checkout_processinc\Woocommerce\CheckoutV2.php:51

actionwoocommerce_customer_processing_orderinc\Woocommerce\CheckoutV2.php:52

actionwoocommerce_checkout_before_customer_detailsinc\Woocommerce\CheckoutV2.php:53

actionwoocommerce_widget_shopping_cart_before_buttonsinc\Woocommerce\CheckoutV2.php:54

actionorder_details_customer_after_addressinc\Woocommerce\CheckoutV2.php:55

actionwoocommerce_add_to_cartinc\Woocommerce\CheckoutV2.php:56

actionwoocommerce_checkout_update_order_reviewinc\Woocommerce\CompanyDiscount.php:27

actionwp_logoutinc\Woocommerce\CompanyDiscount.php:28

filterwoocommerce_coupon_is_validinc\Woocommerce\CompanyDiscount.php:29

actionwp_enqueue_scriptsinc\Woocommerce\CustomPickupPoints.php:25

actionwoocommerce_checkout_processinc\Woocommerce\CustomPickupPoints.php:26

filterwoocommerce_form_fieldinc\Woocommerce\CustomPickupPoints.php:28

filterwoocommerce_form_fieldinc\Woocommerce\CustomPickupPoints.php:29

actionwoocommerce_checkout_processinc\Woocommerce\Functions.php:37

actionwoocommerce_checkout_processinc\Woocommerce\Functions.php:38

actionwoocommerce_before_cartinc\Woocommerce\Functions.php:39

actionwoocommerce_cart_calculate_feesinc\Woocommerce\Functions.php:40

actionwoocommerce_checkout_update_order_metainc\Woocommerce\Functions.php:41

actionwp_enqueue_scriptsinc\Woocommerce\Functions.php:42

actionwoocommerce_receipt_mobilpaycardinc\Woocommerce\Functions.php:43

actionwoocommerce_checkout_update_order_reviewinc\Woocommerce\Functions.php:46

actionwp_footerinc\Woocommerce\Functions.php:47

actionwoocommerce_after_checkout_validationinc\Woocommerce\Functions.php:48

actionwoocommerce_product_queryinc\Woocommerce\Functions.php:49

actionwp_footerinc\Woocommerce\Functions.php:50

actionwoocommerce_checkout_processinc\Woocommerce\Functions.php:51

actionwp_footerinc\Woocommerce\Functions.php:52

actionwoocommerce_checkout_processinc\Woocommerce\Functions.php:53

actionwoocommerce_email_after_order_tableinc\Woocommerce\Functions.php:54

actionwoocommerce_cart_calculate_feesinc\Woocommerce\Functions.php:55

actionwoocommerce_cart_calculate_feesinc\Woocommerce\Functions.php:56

actionwp_footerinc\Woocommerce\Functions.php:57

actionwp_footerinc\Woocommerce\Functions.php:58

actionwoocommerce_email_after_order_tableinc\Woocommerce\Functions.php:61

actionwoocommerce_email_after_order_tableinc\Woocommerce\Functions.php:62

actionwp_footerinc\Woocommerce\Functions.php:63

actionwoocommerce_order_details_after_order_tableinc\Woocommerce\Functions.php:64

actionwoocommerce_checkout_processinc\Woocommerce\Functions.php:65

actionwp_footerinc\Woocommerce\Functions.php:66

actionwoocommerce_checkout_processinc\Woocommerce\Functions.php:67

actionwoocommerce_checkout_processinc\Woocommerce\Functions.php:68

actionwoocommerce_email_after_order_tableinc\Woocommerce\Functions.php:69

actionwoocommerce_after_delivery_methodinc\Woocommerce\Functions.php:70

actionwp_footerinc\Woocommerce\Functions.php:71

actionwoocommerce_after_checkout_validationinc\Woocommerce\Functions.php:72

actionwp_footerinc\Woocommerce\Functions.php:73

actionwp_footerinc\Woocommerce\Functions.php:74

actionbefore_add_to_cart_templateinc\Woocommerce\Functions.php:75

actionbefore_add_to_cart_templateinc\Woocommerce\Functions.php:76

actionhoreka_review_order_before_shippinginc\Woocommerce\Functions.php:77

actionhoreka_review_order_before_shipping_thank_you_pageinc\Woocommerce\Functions.php:78

actionhoreka_review_order_before_shipping_email_order_detailsinc\Woocommerce\Functions.php:79

actionwoocommerce_checkout_before_order_reviewinc\Woocommerce\Functions.php:80

filterwoocommerce_locate_templateinc\Woocommerce\Functions.php:85

filterwoocommerce_checkout_fieldsinc\Woocommerce\Functions.php:86

filterwoocommerce_billing_fieldsinc\Woocommerce\Functions.php:87

filterwoocommerce_checkout_fieldsinc\Woocommerce\Functions.php:88

filterwoocommerce_form_fieldinc\Woocommerce\Functions.php:89

filterwoocommerce_cart_shipping_method_full_labelinc\Woocommerce\Functions.php:90

filterwoocommerce_package_ratesinc\Woocommerce\Functions.php:91

filterpre_get_postsinc\Woocommerce\Functions.php:92

filterwoocommerce_get_catalog_ordering_argsinc\Woocommerce\Functions.php:93

filterwoocommerce_package_ratesinc\Woocommerce\Functions.php:94

filterwoocommerce_billing_fieldsinc\Woocommerce\Functions.php:95

filterwoocommerce_rest_product_object_queryinc\Woocommerce\Functions.php:96

filterwoocommerce_coupon_is_validinc\Woocommerce\Functions.php:97

filterwoocommerce_package_ratesinc\Woocommerce\Functions.php:98

actionwp_loadedinc\Woocommerce\LightFunctions.php:20

actionwoocommerce_checkout_update_order_metainc\Woocommerce\LightFunctions.php:21

actiontemplate_redirectinc\Woocommerce\LightFunctions.php:22

actionwp_footerinc\Woocommerce\LightFunctions.php:23

actiontemplate_redirectinc\Woocommerce\LightFunctions.php:24

actionwp_footerinc\Woocommerce\LightFunctions.php:25

actionwp_footerinc\Woocommerce\LightFunctions.php:26

filterbody_classinc\Woocommerce\LightFunctions.php:31

actionwoocommerce_checkout_billinginc\Woocommerce\Mobilpay.php:22

actionwoocommerce_after_order_notesinc\Woocommerce\Mobilpay.php:23

actionwoocommerce_checkout_update_order_metainc\Woocommerce\Mobilpay.php:24

filterwoocommerce_add_to_cart_validationinc\Woocommerce\ParentCategoryRestriction.php:26

actionwp_enqueue_scriptsinc\Woocommerce\ParentCategoryRestriction.php:29

actionwp_footerinc\Woocommerce\ParentCategoryRestriction.php:30

actionwp_footerinc\Woocommerce\ParentCategoryRestriction.php:31

actionadmin_enqueue_scriptsinc\Woocommerce\ProductActions.php:27

actionsave_postinc\Woocommerce\ProductActions.php:28

actionwp_trash_postinc\Woocommerce\ProductActions.php:29

actionadmin_footerinc\Woocommerce\ProductActions.php:30

filterbulk_actions-edit-productinc\Woocommerce\ProductActions.php:32

filterpost_row_actionsinc\Woocommerce\ProductActions.php:33

actionproduct_tag_add_form_fieldsinc\Woocommerce\Tag.php:26

actionproduct_tag_edit_form_fieldsinc\Woocommerce\Tag.php:27

actionedited_product_taginc\Woocommerce\Tag.php:28

actioncreate_product_taginc\Woocommerce\Tag.php:29

Maintenance & Trust

Horeka Core Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedUnknown

PHP min version

Downloads7K

Community Trust

Rating0/100

Number of ratings0

Active installs50

Alternatives

Horeka Core Alternatives

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs

Google for WooCommerce

google-listings-and-ads

Native integration with Google that allows merchants to easily display their products across Google’s network.

900K 1 CVE

WooPayments: Integrated WooCommerce Payments

woocommerce-payments

Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.

900K 7 CVEs

WooCommerce PayPal Payments

woocommerce-paypal-payments

100

PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.

800K 1 CVE

Click to Chat – HoliThemes

click-to-chat-for-whatsapp

WhatsApp Chat🔥. Let's make your Web page visitors contact you through 'WhatsApp', 'WhatsApp Business'. Add matching Widget✅

700K 3 CVEs

Developer Profile

Horeka Core Developer Profile

rowebdevelopment

1 plugin · 50 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Horeka Core

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/horeka-core/assets/css/rpd-admin.min.css/wp-content/plugins/horeka-core/assets/js/rpd-admin.min.js/wp-content/plugins/horeka-core/assets/css/woocommerce/rpd-checkout-light.min.css/wp-content/plugins/horeka-core/assets/css/api/rpd-themes-map.min.css/wp-content/plugins/horeka-core/assets/js/api/rpd-header-scripts.min.js/wp-content/plugins/horeka-core/assets/js/woocommerce/rpd-custom-light.min.js/wp-content/plugins/horeka-core/assets/js/api/rpd-dataservice.min.js/wp-content/plugins/horeka-core/assets/js/api/rpd-helper.min.js+13 more

Script Paths

/wp-content/plugins/horeka-core/assets/js/rpd-admin.min.js/wp-content/plugins/horeka-core/assets/js/api/rpd-header-scripts.min.js/wp-content/plugins/horeka-core/assets/js/woocommerce/rpd-custom-light.min.js/wp-content/plugins/horeka-core/assets/js/api/rpd-dataservice.min.js/wp-content/plugins/horeka-core/assets/js/api/rpd-helper.min.js/wp-content/plugins/horeka-core/assets/js/api/rpd-settings.min.js+6 more

Version Parameters

horeka-core/assets/css/rpd-admin.min.css?ver=horeka-core/assets/js/rpd-admin.min.js?ver=horeka-core/assets/css/woocommerce/rpd-checkout-light.min.css?ver=horeka-core/assets/css/api/rpd-themes-map.min.css?ver=horeka-core/assets/js/api/rpd-header-scripts.min.js?ver=horeka-core/assets/js/woocommerce/rpd-custom-light.min.js?ver=horeka-core/assets/js/api/rpd-dataservice.min.js?ver=horeka-core/assets/js/api/rpd-helper.min.js?ver=horeka-core/assets/js/api/rpd-settings.min.js?ver=horeka-core/assets/css/checkout-v2/rpd-checkout-v2.min.css?ver=horeka-core/assets/css/checkout-v2/rpd-checkout-v2-lite.min.css?ver=horeka-core/assets/css/checkout-v2/rpd-checkout-v2-color-themes.min.css?ver=horeka-core/assets/js/checkout-v2/rpd-checkout-v2.min.js?ver=horeka-core/assets/js/checkout-v2/rpd-checkout-v2-lite.min.js?ver=horeka-core/assets/js/checkout-v2/rpd-checkout-v2-color-themes.min.js?ver=horeka-core/assets/css/datepicker.min.css?ver=horeka-core/assets/js/datepicker.min.js?ver=horeka-core/assets/js/rpd-display-city.min.js?ver=horeka-core/assets/js/rpd-forgot-password-lite.min.js?ver=

HTML / DOM Fingerprints

CSS Classes

rpd-checkout-v2rpd-checkout-v2-literpd-checkout-v2-color-themes

Data Attributes

data-api-keydata-api-url

JS Globals

invalid_login_messageapi_settings

FAQ