WP-Safety

Kinguin API for WooCommerce Security & Risk Analysis

wordpress.org/plugins/kinguin

Integrate your Woocommerce store with Kinguin marketplace. This tool allows you to import games from Kinguin into your Woocommerce shop.

100 active installs v1.0.7 PHP 7.4+ WP 5.0+ Updated Jul 11, 2024
digital-downloadseddestoremarketplacevideo-games
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Kinguin API for WooCommerce Safe to Use in 2026?

Generally Safe

Score 92/100

Kinguin API for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The Kinguin plugin v1.0.7 exhibits a generally good security posture, with a robust approach to input validation and endpoint security. The static analysis indicates that all identified entry points (AJAX handlers, REST API routes, and cron events) are protected by authorization checks. Furthermore, the absence of dangerous functions and critical taint flows suggests that the plugin has been developed with security in mind. The majority of SQL queries utilize prepared statements, and a significant portion of output is properly escaped, mitigating common web vulnerabilities.

However, there are a few areas that warrant attention. The plugin's vulnerability history is clean, showing no past CVEs, which is a strong positive indicator. Yet, the capability checks are entirely absent across all analyzed code signals. This absence is concerning as it implies that access control might be relying solely on other mechanisms, potentially leaving gaps if those mechanisms are not comprehensively implemented or secured. While the immediate static analysis doesn't reveal direct exploitable paths, the lack of explicit capability checks on endpoints could present a future risk if authorization logic elsewhere is flawed.

In conclusion, the Kinguin plugin v1.0.7 has strong foundational security practices, particularly in handling its attack surface and database interactions. The lack of known vulnerabilities and the use of prepared statements are significant strengths. The primary weakness lies in the complete absence of capability checks, which, while not directly leading to exploitable vulnerabilities in this static analysis, represents a notable gap in defense-in-depth that should be addressed to further harden the plugin.

Key Concerns

  • No capability checks found
Vulnerabilities
None known

Kinguin API for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Kinguin API for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
5 prepared
Unescaped Output
82
167 escaped
Nonce Checks
3
Capability Checks
0
File Operations
5
External Requests
5
Bundled Libraries
0

SQL Query Safety

71% prepared7 total queries

Output Escaping

67% escaped249 total outputs
Attack Surface

Kinguin API for WooCommerce Attack Surface

Entry Points5
Unprotected0

AJAX Handlers 3

authwp_ajax_set_cachesrc\Plugin\Admin\Import.php:64
authwp_ajax_import_products_to_cachesrc\Plugin\Admin\Import.php:65
authwp_ajax_import_products_to_woocommercesrc\Plugin\Admin\Import.php:66

REST API Routes 2

GET/wp-json/kinguin/v1/order/updatesrc\Plugin\Common\OrderWebHook.php:27
GET/wp-json/kinguin/v1/products/updatesrc\Plugin\Common\ProductWebHook.php:26
WordPress Hooks 58
actionadmin_enqueue_scriptssrc\Plugin\Admin\Import.php:63
actionadmin_menusrc\Plugin\Admin\MainAdmin.php:79
actionbefore_delete_postsrc\Plugin\Admin\MainAdmin.php:80
actionadmin_noticessrc\Plugin\Admin\MainAdmin.php:81
actionwoocommerce_order_actionssrc\Plugin\Admin\Order\ActionsSelect.php:26
actionwoocommerce_order_action_get_kinguin_keyssrc\Plugin\Admin\Order\ActionsSelect.php:27
actionwoocommerce_order_action_send_kinguin_keyssrc\Plugin\Admin\Order\ActionsSelect.php:28
actionadmin_enqueue_scriptssrc\Plugin\Admin\Order\MetaBoxDetails.php:43
actionadd_meta_boxessrc\Plugin\Admin\Order\MetaBoxDetails.php:44
actionadmin_initsrc\Plugin\Admin\Product\Attributes.php:37
actionadmin_initsrc\Plugin\Admin\Product\Attributes.php:38
actionadmin_initsrc\Plugin\Admin\Product\Attributes.php:39
actionadmin_initsrc\Plugin\Admin\Product\Attributes.php:40
actionadmin_initsrc\Plugin\Admin\Product\Attributes.php:41
actionadmin_enqueue_scriptssrc\Plugin\Admin\Product\DataTabs.php:44
filterwoocommerce_product_data_tabssrc\Plugin\Admin\Product\DataTabs.php:45
actionwoocommerce_product_data_panelssrc\Plugin\Admin\Product\DataTabs.php:46
actionwoocommerce_product_data_panelssrc\Plugin\Admin\Product\DataTabs.php:47
actionwoocommerce_process_product_metasrc\Plugin\Admin\Product\DataTabs.php:48
actionwoocommerce_product_options_pricingsrc\Plugin\Admin\Product\DataTabs.php:50
filtergettextsrc\Plugin\Admin\Product\DataTabs.php:51
actionadmin_initsrc\Plugin\Admin\SettingsPage.php:50
actionadmin_enqueue_scriptssrc\Plugin\Admin\SettingsPage.php:51
actionkinguin_update_pricessrc\Plugin\Common\CRON.php:22
actionadd_meta_boxessrc\Plugin\Common\GalleryFromMeta.php:30
filterwoocommerce_product_get_imagesrc\Plugin\Common\GalleryFromMeta.php:33
filterwoocommerce_single_product_image_thumbnail_htmlsrc\Plugin\Common\GalleryFromMeta.php:36
filterwc_get_templatesrc\Plugin\Common\GalleryFromMeta.php:37
actionwp_mail_failedsrc\Plugin\Common\KeysEmail.php:33
filterwoocommerce_product_get_pricesrc\Plugin\Common\ProductMargin.php:25
filterwoocommerce_product_get_regular_pricesrc\Plugin\Common\ProductMargin.php:26
actionpre_get_postssrc\Plugin\Frontend\MainFrontend.php:69
actionwoocommerce_archive_descriptionsrc\Plugin\Frontend\MainFrontend.php:70
actionwoocommerce_add_to_cartsrc\Plugin\Frontend\MainFrontend.php:72
actionwp_enqueue_scriptssrc\Plugin\Frontend\ProductView.php:43
filtertemplate_includesrc\Plugin\Frontend\ProductView.php:44
actionkinguin_product_contentsrc\Plugin\Frontend\ProductView.php:45
actionkinguin_product_contentsrc\Plugin\Frontend\ProductView.php:46
actionkinguin_product_contentsrc\Plugin\Frontend\ProductView.php:47
actionkinguin_product_contentsrc\Plugin\Frontend\ProductView.php:48
actionkinguin_product_accordionsrc\Plugin\Frontend\ProductView.php:49
actionkinguin_product_accordionsrc\Plugin\Frontend\ProductView.php:50
actionkinguin_product_accordionsrc\Plugin\Frontend\ProductView.php:51
actionkinguin_product_accordionsrc\Plugin\Frontend\ProductView.php:52
actionkinguin_product_contentsrc\Plugin\Frontend\ProductView.php:53
filterwoocommerce_display_product_attributessrc\Plugin\Frontend\ProductViewDefault.php:45
filterwc_product_sku_enabledsrc\Plugin\Frontend\ProductViewDefault.php:46
filterwoocommerce_product_tabssrc\Plugin\Frontend\ProductViewDefault.php:48
actioninitsrc\Plugin\Frontend\UserAccountKeys.php:44
filterquery_varssrc\Plugin\Frontend\UserAccountKeys.php:45
actionwp_enqueue_scriptssrc\Plugin\Frontend\UserAccountKeys.php:46
filterwoocommerce_account_menu_itemssrc\Plugin\Frontend\UserAccountKeys.php:47
filterwoocommerce_get_endpoint_urlsrc\Plugin\Frontend\UserAccountKeys.php:48
actionwoocommerce_account_kinguin-keys_endpointsrc\Plugin\Frontend\UserAccountKeys.php:49
actionrest_api_initsrc\Plugin\Plugin.php:104
actionrest_api_initsrc\Plugin\Plugin.php:105
actionwoocommerce_order_status_changedsrc\Plugin\Plugin.php:107
actionwoocommerce_order_status_changedsrc\Plugin\Plugin.php:108

Scheduled Events 1

kinguin_update_prices
Maintenance & Trust

Kinguin API for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8
Last updatedJul 11, 2024
PHP min version7.4
Downloads6K

Community Trust

Rating54/100
Number of ratings7
Active installs100
Alternatives

Kinguin API for WooCommerce Alternatives

Easy Digital Downloads Free Link

Easy Digital Downloads Free Link

easy-digital-downloads-free-link

A
100

replace EDD add-to-cart button with download link when product is free

1K No CVEs
EDD Auto Register

EDD Auto Register

edd-auto-register

A
92

Automatically creates a WP user account at checkout, based on customer's email address.

1K No CVEs
Easy Digital Downloads Featured Downloads

Easy Digital Downloads Featured Downloads

edd-featured-downloads

A
100

Easily feature your downloads

1K No CVEs
Counten- Sale Counter Advanced

Counten- Sale Counter Advanced

counten-sale-counter-advanced

A
92

A Sale Counter Plugin work with the Easy Digital Download Products

300 No CVEs
Sale Price for EDD

Sale Price for EDD

edd-sale-price

A
100

Promote your downloads with a sale price!

300 No CVEs
Developer Profile

Kinguin API for WooCommerce Developer Profile

kinguin

1 plugin · 100 total installs

88
trust score
Avg Security Score
92/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Kinguin API for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/kinguin/assets/css/kinguin-admin-import.css/wp-content/plugins/kinguin/assets/js/kinguin-products-import.js
Script Paths
/wp-content/plugins/kinguin/assets/js/kinguin-products-import.js
Version Parameters
kinguin/assets/js/kinguin-products-import.js?ver=

HTML / DOM Fingerprints

Data Attributes
data-nonce
JS Globals
kinguin
FAQ

Frequently Asked Questions about Kinguin API for WooCommerce