Does KleverList: Simplified WooCommerce Customer Sync have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is KleverList: Simplified WooCommerce Customer Sync compatible with WordPress 6.7.5?

According to WordPress.org data, KleverList: Simplified WooCommerce Customer Sync 2.5.0 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is KleverList: Simplified WooCommerce Customer Sync compatible with PHP 8.0.2+?

KleverList: Simplified WooCommerce Customer Sync requires PHP 8.0.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is KleverList: Simplified WooCommerce Customer Sync's security score?

KleverList: Simplified WooCommerce Customer Sync has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

KleverList: Simplified WooCommerce Customer Sync Security

Safety Verdict

Is KleverList: Simplified WooCommerce Customer Sync Safe to Use in 2026?

Generally Safe

Score 92/100

KleverList: Simplified WooCommerce Customer Sync has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The 'kleverlist' plugin v2.5.0 exhibits a generally good security posture with a strong adherence to secure coding practices. The plugin demonstrates excellent use of prepared statements for all SQL queries and properly escapes a vast majority of its output, significantly mitigating risks of SQL injection and cross-site scripting (XSS). Furthermore, the absence of known vulnerabilities in its history is a positive indicator of consistent security development. The plugin also utilizes nonce checks for its entry points, further reinforcing its defenses.

However, there are specific areas that introduce notable risk. The presence of 20 AJAX handlers, with one lacking any authentication checks, presents a direct attack vector. Similarly, a REST API route without permission callbacks is another unprotected entry point. These unauthenticated entry points, while few, can be exploited to trigger plugin functionality without proper authorization, potentially leading to unintended actions or information disclosure. The analysis did not reveal any critical or high-severity taint flows, nor any raw SQL queries, which are significant strengths.

In conclusion, while 'kleverlist' generally follows secure coding principles and has a clean vulnerability history, the unprotected AJAX handler and REST API route are significant security concerns that require immediate attention. Addressing these specific weaknesses would substantially improve the plugin's overall security posture.

Key Concerns

AJAX handler without authentication
REST API route without permission callback

Vulnerabilities

None known

KleverList: Simplified WooCommerce Customer Sync Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

KleverList: Simplified WooCommerce Customer Sync Release Timeline

v2.5.0Current

v2.4.2

v2.4.1

v2.4

v2.3.3

v2.3.2

v2.3.1

v2.3

v2.2

v2.1

v2.0.1

v2.0

v1.04

Code Analysis

Analyzed Apr 16, 2026

KleverList: Simplified WooCommerce Customer Sync Code Analysis

Dangerous Functions

0

Raw SQL Queries

0

2 prepared

Unescaped Output

13

909 escaped

Nonce Checks

22

Capability Checks

3

File Operations

0

External Requests

19

Bundled Libraries

2

Bundled Libraries

Freemius1.0Guzzle

SQL Query Safety

100% prepared2 total queries

Output Escaping

99% escaped922 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

18 flows

kleverlist_sendy_settings_handle (admin/class-kleverlist-admin.php:211)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

KleverList: Simplified WooCommerce Customer Sync Attack Surface

Entry Points21

Unprotected2

AJAX Handlers 20

authwp_ajax_kleverlist_sendy_settingsadmin/class-kleverlist-admin.php:40

authwp_ajax_kleverlist_generate_listsadmin/class-kleverlist-admin.php:42

authwp_ajax_kleverlist_mapping_settingsadmin/class-kleverlist-admin.php:44

authwp_ajax_kleverlist_remove_api_infoadmin/class-kleverlist-admin.php:46

authwp_ajax_kleverlist_global_settingsadmin/class-kleverlist-ajax.php:28

authwp_ajax_kleverlist_mailchimp_settingadmin/class-kleverlist-ajax.php:30

authwp_ajax_kleverlist_load_mailchimp_audienceadmin/class-kleverlist-ajax.php:32

authwp_ajax_kleverlist_mailchimp_mapping_settingsadmin/class-kleverlist-ajax.php:34

authwp_ajax_kleverlist_mailchimp_tags_settingsadmin/class-kleverlist-ajax.php:36

authwp_ajax_kleverlist_aweber_tags_settingsadmin/class-kleverlist-ajax.php:38

authwp_ajax_kleverlist_sendy_tags_settingsadmin/class-kleverlist-ajax.php:40

authwp_ajax_kleverlist_mailchimp_global_settingsadmin/class-kleverlist-ajax.php:42

authwp_ajax_kleverlist_sendy_bulk_list_settingsadmin/class-kleverlist-ajax.php:44

authwp_ajax_kleverlist_mailchimp_bulk_list_settingsadmin/class-kleverlist-ajax.php:46

authwp_ajax_kleverlist_aweber_bulk_list_settingsadmin/class-kleverlist-ajax.php:48

authwp_ajax_kleverlist_aweber_choose_listadmin/class-kleverlist-aweber-ajax.php:18

authwp_ajax_kleverlist_aweber_global_settingsadmin/class-kleverlist-aweber-ajax.php:20

authwp_ajax_kleverlist_aweber_mapping_settingsadmin/class-kleverlist-aweber-ajax.php:22

authwp_ajax_kleverlist_aweber_settingsadmin/class-kleverlist-aweber.php:60

authwp_ajax_add_privacy_policy_gutenburg_blockadmin/partials/gutenberg-block/class-kleverlist-gutenburg-block.php:10

REST API Routes 1

POST/wp-json/wp/v2/authenticateadmin/class-kleverlist-admin.php:52

WordPress Hooks 42

actionadmin_initadmin/class-kleverlist-admin.php:33

filterkleverlist_get_screen_idsadmin/class-kleverlist-admin.php:35

actionadmin_menuadmin/class-kleverlist-admin.php:37

actionadmin_menuadmin/class-kleverlist-admin.php:38

actionrest_api_initadmin/class-kleverlist-admin.php:48

actionadmin_noticesadmin/class-kleverlist-admin.php:86

actionadmin_noticesadmin/class-kleverlist-admin.php:92

actionwoocommerce_order_status_processingadmin/class-kleverlist-aweber.php:62

actionwoocommerce_order_status_completedadmin/class-kleverlist-aweber.php:63

filterwoocommerce_product_data_tabsadmin/class-kleverlist-aweber.php:69

actionwoocommerce_product_data_panelsadmin/class-kleverlist-aweber.php:75

actionwoocommerce_process_product_metaadmin/class-kleverlist-aweber.php:76

actionwoocommerce_product_options_general_product_dataadmin/class-kleverlist-aweber.php:77

actionmanage_posts_extra_tablenavadmin/class-kleverlist-aweber.php:78

actionwoocommerce_order_status_processingadmin/class-kleverlist-mailchimp-wc.php:43

actionwoocommerce_order_status_completedadmin/class-kleverlist-mailchimp-wc.php:44

filterwoocommerce_product_data_tabsadmin/class-kleverlist-mailchimp-wc.php:50

actionwoocommerce_product_data_panelsadmin/class-kleverlist-mailchimp-wc.php:56

actionwoocommerce_process_product_metaadmin/class-kleverlist-mailchimp-wc.php:57

actionwoocommerce_product_options_general_product_dataadmin/class-kleverlist-mailchimp-wc.php:58

actionmanage_posts_extra_tablenavadmin/class-kleverlist-mailchimp-wc.php:59

actionwoocommerce_order_status_processingadmin/class-kleverlist-wc.php:44

actionwoocommerce_order_status_completedadmin/class-kleverlist-wc.php:50

filterwoocommerce_product_data_tabsadmin/class-kleverlist-wc.php:56

actionwoocommerce_product_data_panelsadmin/class-kleverlist-wc.php:62

actionwoocommerce_process_product_metaadmin/class-kleverlist-wc.php:63

actionwoocommerce_product_options_general_product_dataadmin/class-kleverlist-wc.php:64

actionmanage_posts_extra_tablenavadmin/class-kleverlist-wc.php:65

actionadmin_enqueue_scriptsadmin/partials/gutenberg-block/class-kleverlist-gutenburg-block.php:9

actionplugins_loadedincludes/class-kleverlist.php:92

actionadmin_enqueue_scriptsincludes/class-kleverlist.php:107

actionadmin_enqueue_scriptsincludes/class-kleverlist.php:108

actionadmin_enqueue_scriptsincludes/class-kleverlist.php:123

actionadmin_enqueue_scriptsincludes/class-kleverlist.php:124

actionadmin_enqueue_scriptsincludes/class-kleverlist.php:137

actionadmin_enqueue_scriptsincludes/class-kleverlist.php:166

actionadmin_enqueue_scriptsincludes/class-kleverlist.php:167

actionwp_enqueue_scriptsincludes/class-kleverlist.php:182

actionwp_enqueue_scriptsincludes/class-kleverlist.php:183

actionfs_uninstall_cleanupincludes/kleverlist-cleanup.php:16

actionactivated_pluginkleverlist-load.php:89

actiondeactivated_pluginkleverlist-load.php:99

Maintenance & Trust

KleverList: Simplified WooCommerce Customer Sync Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedNov 16, 2024

PHP min version8.0.2

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

KleverList: Simplified WooCommerce Customer Sync Alternatives

Purchase Tagger – Product-Based Mailchimp Tags

purchase-tagger-for-mailchimp

A

100

Assign Mailchimp tags to contacts based on WooCommerce purchases.

0 No CVEs

MailPoet – Newsletters, Email Marketing, and Automation

mailpoet

A

98

Send beautiful newsletters from WordPress. Collect subscribers with signup forms, automate your emails for WooCommerce, blog post notifications & more

500K 3 CVEs

Email Marketing for WooCommerce by Omnisend

omnisend-connect

A

95

Email Marketing, Newsletter, Email Automation, Forms, Pop Up, SMS, Abandoned Cart made easy for WordPress & WooCommerce by Omnisend

50K 3 CVEs

Genesis eNews Extended

genesis-enews-extended

A

92

Creates a new widget to easily add mailing lists integration to a Genesis website. Works with FeedBurner, MailChimp, AWeber, FeedBlitz, ConvertKit and …

40K No CVEs

MailerLite – WooCommerce integration

woo-mailerlite

A

93

Powerful e-commerce email marketing tools that are easy to use. Grow your store with automated emails, pop-ups, product blocks, sales tracking + more.

30K 4 CVEs

Developer Profile

KleverList: Simplified WooCommerce Customer Sync Developer Profile

KleverPlugins

1 plugin · 10 total installs

88

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect KleverList: Simplified WooCommerce Customer Sync

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Version Parameters

kleverlist/style.css?ver=kleverlist/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

kleverlist-admin-wrap

HTML Comments

Data Attributes

data-kleverlist-brand-iddata-kleverlist-sync-nonce

JS Globals

kleverlist_ajax_object

REST Endpoints

/wp-json/wp/v2/authenticate

FAQ

KleverList: Simplified WooCommerce Customer Sync Security & Risk Analysis

Is KleverList: Simplified WooCommerce Customer Sync Safe to Use in 2026?

Generally Safe

Key Concerns

KleverList: Simplified WooCommerce Customer Sync Security Vulnerabilities

KleverList: Simplified WooCommerce Customer Sync Release Timeline

KleverList: Simplified WooCommerce Customer Sync Code Analysis

Bundled Libraries

SQL Query Safety

Output Escaping

Data Flow Analysis

KleverList: Simplified WooCommerce Customer Sync Attack Surface

AJAX Handlers 20

REST API Routes 1

KleverList: Simplified WooCommerce Customer Sync Maintenance & Trust

Maintenance Signals

Community Trust

KleverList: Simplified WooCommerce Customer Sync Alternatives

Purchase Tagger – Product-Based Mailchimp Tags

MailPoet – Newsletters, Email Marketing, and Automation

Email Marketing for WooCommerce by Omnisend

Genesis eNews Extended

MailerLite – WooCommerce integration

KleverList: Simplified WooCommerce Customer Sync Developer Profile

How We Detect KleverList: Simplified WooCommerce Customer Sync

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about KleverList: Simplified WooCommerce Customer Sync