WP-Safety

LTL Freight Quotes – Old Dominion Edition Security & Risk Analysis

wordpress.org/plugins/ltl-freight-quotes-odfl-edition

Real-time LTL freight quotes from Old Dominion Freight Line. Fifteen day free trial.

30 active installs v4.2.15 PHP + WP 6.4+ Updated Jan 26, 2026
enitureltl-freight-quotesltl-freight-ratesold-dominionshipping-estimates
98
A · Safe
CVEs total1
Unpatched0
Last CVEFeb 18, 2025
Plugin page Download
Safety Verdict

Is LTL Freight Quotes – Old Dominion Edition Safe to Use in 2026?

Generally Safe

Score 98/100

LTL Freight Quotes – Old Dominion Edition has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Feb 18, 2025Updated 2mo ago
Risk Assessment

The "ltl-freight-quotes-odfl-edition" v4.2.15 plugin exhibits a mixed security posture. While it demonstrates some good practices like a relatively low number of file operations and external HTTP requests, significant concerns arise from its attack surface and taint analysis. A substantial portion of its AJAX handlers and one REST API route lack proper authentication and permission checks, creating numerous potential entry points for attackers. The taint analysis revealing a high number of flows with unsanitized paths, particularly those with high severity, points to potential vulnerabilities that could be exploited if not addressed. The vulnerability history, though showing no currently unpatched high-severity issues, does indicate a past SQL injection vulnerability. This, combined with the observed 47% usage of prepared statements for SQL queries, suggests a need for more consistent and robust sanitization and prepared statement implementation across all database interactions.

Overall, the plugin has a large attack surface with a concerning number of unprotected entry points. The taint analysis highlights specific areas where malicious input could lead to vulnerabilities. While the lack of critical CVEs is positive, the presence of a past high-severity SQL injection and the current taint analysis results warrant careful attention. The plugin's security can be significantly improved by rigorously implementing authentication and authorization checks on all exposed endpoints and ensuring that all data flows are properly sanitized, especially those identified in the taint analysis.

Key Concerns

  • Unprotected AJAX handlers
  • REST API route without permission callback
  • High severity unsanitized taint flows
  • Raw SQL queries without prepared statements
  • Unescaped output
  • Past high severity SQL injection vulnerability
Vulnerabilities
1

LTL Freight Quotes – Old Dominion Edition Security Vulnerabilities

CVEs by Year

1 CVE in 2025
2025
Patched Has unpatched

Severity Breakdown

High
1

1 total CVE

CVE-2024-13489high · 7.5Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

LTL Freight Quotes – Old Dominion Edition <= 4.2.10 - Unauthenticated SQL Injection

Feb 18, 2025 Patched in 4.2.11 (1d)
Code Analysis
Analyzed Mar 16, 2026

LTL Freight Quotes – Old Dominion Edition Code Analysis

Dangerous Functions
0
Raw SQL Queries
27
24 prepared
Unescaped Output
104
159 escaped
Nonce Checks
5
Capability Checks
6
File Operations
0
External Requests
4
Bundled Libraries
0

SQL Query Safety

47% prepared51 total queries

Output Escaping

60% escaped263 total outputs
Data Flows
13 unsanitized

Data Flow Analysis

17 flows13 with unsanitized paths
odfl_warehouse_template (warehouse-dropship\odfl-wild-delivery.php:42)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
22 unprotected

LTL Freight Quotes – Old Dominion Edition Attack Surface

Entry Points32
Unprotected22

AJAX Handlers 31

noprivwp_ajax_odfl_fdltl-freight-quotes-odfl-edition.php:540
authwp_ajax_odfl_fdltl-freight-quotes-odfl-edition.php:541
noprivwp_ajax_odfl_actionodfl-test-connection.php:11
authwp_ajax_odfl_actionodfl-test-connection.php:12
authwp_ajax_eniture_calculate_shipping_rates_adminorder\rates\order-rates.php:13
noprivwp_ajax_en_odfl_save_shipping_ruleshipping-rules\shipping-rules-save.php:19
authwp_ajax_en_odfl_save_shipping_ruleshipping-rules\shipping-rules-save.php:20
noprivwp_ajax_en_odfl_edit_shipping_ruleshipping-rules\shipping-rules-save.php:22
authwp_ajax_en_odfl_edit_shipping_ruleshipping-rules\shipping-rules-save.php:23
noprivwp_ajax_en_odfl_delete_shipping_ruleshipping-rules\shipping-rules-save.php:25
authwp_ajax_en_odfl_delete_shipping_ruleshipping-rules\shipping-rules-save.php:26
noprivwp_ajax_en_odfl_update_shipping_rule_statusshipping-rules\shipping-rules-save.php:28
authwp_ajax_en_odfl_update_shipping_rule_statusshipping-rules\shipping-rules-save.php:29
authwp_ajax_en_odfl_quotes_activate_hit_to_update_planupdate-plan.php:10
noprivwp_ajax_en_odfl_quotes_activate_hit_to_update_planupdate-plan.php:11
noprivwp_ajax_odfl_en_wd_get_addresswarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:24
authwp_ajax_odfl_en_wd_get_addresswarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:25
noprivwp_ajax_odfl_en_wd_delete_dropshipwarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:27
authwp_ajax_odfl_en_wd_delete_dropshipwarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:28
noprivwp_ajax_odfl_en_wd_save_warehousewarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:30
authwp_ajax_odfl_en_wd_save_warehousewarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:31
noprivwp_ajax_odfl_en_wd_save_dropshipwarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:33
authwp_ajax_odfl_en_wd_save_dropshipwarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:34
noprivwp_ajax_odfl_en_wd_edit_dropshipwarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:37
authwp_ajax_odfl_en_wd_edit_dropshipwarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:38
noprivwp_ajax_odfl_en_wd_delete_warehousewarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:40
authwp_ajax_odfl_en_wd_delete_warehousewarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:41
noprivwp_ajax_odfl_en_wd_edit_warehousewarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:43
authwp_ajax_odfl_en_wd_edit_warehousewarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:44
noprivwp_ajax_en_odfl_wd_bulk_delete_locationswarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:46
authwp_ajax_en_odfl_wd_bulk_delete_locationswarehouse-dropship\wild\includes\odfl-wild-delivery-save.php:47

REST API Routes 1

POST/wp-json/fdo-company-id/update-statusltl-freight-quotes-odfl-edition.php:583
WordPress Hooks 73
actionbefore_woocommerce_initltl-freight-quotes-odfl-edition.php:20
filteren_pluginsltl-freight-quotes-odfl-edition.php:33
filteren_woo_plans_notification_actionltl-freight-quotes-odfl-edition.php:59
filteren_woo_plans_notification_message_actionltl-freight-quotes-odfl-edition.php:71
filteren_woo_plans_nested_notification_message_actionltl-freight-quotes-odfl-edition.php:84
actionadmin_initltl-freight-quotes-odfl-edition.php:114
actionadmin_noticesltl-freight-quotes-odfl-edition.php:118
actionadmin_initltl-freight-quotes-odfl-edition.php:131
actionadmin_noticesltl-freight-quotes-odfl-edition.php:141
actionadmin_enqueue_scriptsltl-freight-quotes-odfl-edition.php:178
actionadmin_enqueue_scriptsltl-freight-quotes-odfl-edition.php:201
actionadmin_initltl-freight-quotes-odfl-edition.php:257
actionadmin_initltl-freight-quotes-odfl-edition.php:258
actionupgrader_process_completeltl-freight-quotes-odfl-edition.php:298
actionwoocommerce_shipping_initltl-freight-quotes-odfl-edition.php:305
filterwoocommerce_shipping_methodsltl-freight-quotes-odfl-edition.php:306
filterwoocommerce_get_settings_pagesltl-freight-quotes-odfl-edition.php:307
filterwoocommerce_package_ratesltl-freight-quotes-odfl-edition.php:308
filterwoocommerce_shipping_calculator_enable_cityltl-freight-quotes-odfl-edition.php:309
filterplugin_action_linksltl-freight-quotes-odfl-edition.php:310
filterwoocommerce_cart_no_shipping_available_htmlltl-freight-quotes-odfl-edition.php:312
actioninitltl-freight-quotes-odfl-edition.php:313
actioninitltl-freight-quotes-odfl-edition.php:315
actionwoocommerce_proceed_to_checkoutltl-freight-quotes-odfl-edition.php:342
actionwp_enqueue_scriptsltl-freight-quotes-odfl-edition.php:374
filterodfl_quotes_quotes_plans_suscription_and_featuresltl-freight-quotes-odfl-edition.php:424
filterodfl_quotes_plans_notification_linkltl-freight-quotes-odfl-edition.php:453
filteren_append_account_number_multiple_pluginsltl-freight-quotes-odfl-edition.php:524
filteren_append_account_number_hidden_multiple_pluginsltl-freight-quotes-odfl-edition.php:538
actionrest_api_initltl-freight-quotes-odfl-edition.php:580
filteren_suppress_parcel_rates_hookltl-freight-quotes-odfl-edition.php:606
filterwoocommerce_product_importer_parsed_dataodfl-admin-filter.php:206
filteren_odfl_accessorial_excludedodfl-carrier-service.php:542
filteren_fdo_image_urls_mergeodfl-group-package.php:386
filterforce_show_methodsodfl-shipping-class.php:164
filterwoocommerce_package_ratesodfl-shipping-class.php:643
filterwoocommerce_package_ratesodfl-shipping-class.php:842
filterwoocommerce_package_ratesodfl-shipping-class.php:865
filterwoocommerce_settings_tabs_arrayodfl-tab-class.php:23
actionwoocommerce_thankyouorder\en-order-export.php:14
actioninitorder\en-order-export.php:15
actionen_async_orders_exporting_processorder\en-order-export.php:16
filtercron_schedulesorder\en-order-export.php:17
actionwoocommerce_order_actionsorder\en-order-widget.php:16
filteren_order_accessoriesorder\rates\order-rates.php:14
filteren_app_common_plan_statusproduct\en-product-detail.php:23
filteren_compatible_optimized_product_optionsproduct\en-product-detail.php:26
actionwoocommerce_product_options_shippingproduct\en-product-detail.php:31
actionwoocommerce_process_product_metaproduct\en-product-detail.php:32
actionwoocommerce_product_after_variable_attributesproduct\en-product-detail.php:35
actionwoocommerce_save_product_variationproduct\en-product-detail.php:36
filterEn_Plugins_dropship_filterproduct\en-product-detail.php:39
filterEn_Plugins_variable_freight_classification_filterproduct\en-product-detail.php:40
filteren_wd_update_query_stringstandard-package-addon\instore-pickup-local-delivery\instore-local-delivery.php:17
filteren_odfl_wd_origin_array_setstandard-package-addon\instore-pickup-local-delivery\instore-local-delivery.php:18
filteren_wd_standard_plansstandard-package-addon\instore-pickup-local-delivery\instore-local-delivery.php:19
filtersuppress_local_deliverystandard-package-addon\instore-pickup-local-delivery\instore-local-delivery.php:20
filterwoocommerce_product_export_product_column_en_nicknametemplate\csv-export.php:9
filterwoocommerce_product_export_product_column_en_citytemplate\csv-export.php:10
filterwoocommerce_product_export_product_column_en_statetemplate\csv-export.php:11
filterwoocommerce_product_export_product_column_en_ziptemplate\csv-export.php:12
filterwoocommerce_product_export_product_column_en_countrytemplate\csv-export.php:13
filterwoocommerce_product_export_product_column_en_product_freight_classtemplate\csv-export.php:16
filterwoocommerce_product_export_product_column_en_product_freight_class_variationtemplate\csv-export.php:17
filterwoocommerce_product_export_column_namestemplate\csv-export.php:20
filterwoocommerce_product_export_product_default_columnstemplate\csv-export.php:21
actionwoocommerce_product_options_shippingtemplate\products-nested-options.php:31
actionwoocommerce_process_product_metatemplate\products-nested-options.php:34
actionwoocommerce_product_after_variable_attributestemplate\products-nested-options.php:44
actionwoocommerce_save_product_variationtemplate\products-nested-options.php:48
actionadmin_noticesupdate-plan.php:263
filterodfl_en_wd_get_addresswarehouse-dropship\get-distance-request.php:21
actionadmin_enqueue_scriptswarehouse-dropship\odfl-wild-delivery.php:34

Scheduled Events 1

en_async_orders_exporting_process
Maintenance & Trust

LTL Freight Quotes – Old Dominion Edition Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedJan 26, 2026
PHP min version
Downloads5K

Community Trust

Rating100/100
Number of ratings2
Active installs30
Alternatives

LTL Freight Quotes – Old Dominion Edition Alternatives

LTL Freight Quotes – FreightQuote Edition

LTL Freight Quotes – FreightQuote Edition

ltl-freight-quotes-freightquote-edition

A
98

Real-time LTL freight quotes from FreightQuote. Fifteen day free trial.

70 2 CVEs
LTL Freight Quotes – XPO Edition

LTL Freight Quotes – XPO Edition

ltl-freight-quotes-xpo-edition

A
98

Real-time LTL freight quotes from XPO Logistics. Fifteen day free trial.

60 1 CVE
LTL Freight Quotes – Unishippers Edition

LTL Freight Quotes – Unishippers Edition

ltl-freight-quotes-unishippers-edition

A
97

Real-time Unishippers freight quotes from Unishippers. Fifteen day free trial.

50 3 CVEs
LTL Freight Quotes – Estes Edition

LTL Freight Quotes – Estes Edition

ltl-freight-quotes-estes-edition

A
98

Real-time LTL freight quotes from Estes. Fifteen day free trial.

30 1 CVE
LTL Freight Quotes – GlobalTranz Edition

LTL Freight Quotes – GlobalTranz Edition

ltl-freight-quotes-globaltranz-edition

A
98

Real-time LTL freight quotes from GlobalTranz. Fifteen day free trial.

30 2 CVEs
Developer Profile

LTL Freight Quotes – Old Dominion Edition Developer Profile

enituretechnology

29 plugins · 1K total installs

93
trust score
Avg Security Score
98/100
Avg Patch Time
11 days
View full developer profile
Detection Fingerprints

How We Detect LTL Freight Quotes – Old Dominion Edition

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/ltl-freight-quotes-odfl-edition/logs/en-json-tree-view/en-jtv-style.css/wp-content/plugins/ltl-freight-quotes-odfl-edition/logs/en-json-tree-view/en-jtv-script.js/wp-content/plugins/ltl-freight-quotes-odfl-edition/shipping-rules/assets/js/shipping_rules.js/wp-content/plugins/ltl-freight-quotes-odfl-edition/shipping-rules/assets/css/shipping_rules.css/wp-content/plugins/ltl-freight-quotes-odfl-edition/css/wickedpicker.min.css/wp-content/plugins/ltl-freight-quotes-odfl-edition/js/wickedpicker.js/wp-content/plugins/ltl-freight-quotes-odfl-edition/css/odfl-style.css/wp-content/plugins/ltl-freight-quotes-odfl-edition/js/eniture-calculate-shipping-admin.js
Script Paths
/wp-content/plugins/ltl-freight-quotes-odfl-edition/logs/en-json-tree-view/en-jtv-script.js/wp-content/plugins/ltl-freight-quotes-odfl-edition/shipping-rules/assets/js/shipping_rules.js/wp-content/plugins/ltl-freight-quotes-odfl-edition/js/wickedpicker.js/wp-content/plugins/ltl-freight-quotes-odfl-edition/js/eniture-calculate-shipping-admin.js
Version Parameters
ltl-freight-quotes-odfl-edition/logs/en-json-tree-view/en-jtv-style.css?ver=ltl-freight-quotes-odfl-edition/logs/en-json-tree-view/en-jtv-script.js?ver=ltl-freight-quotes-odfl-edition/shipping-rules/assets/js/shipping_rules.js?ver=ltl-freight-quotes-odfl-edition/shipping-rules/assets/css/shipping_rules.css?ver=ltl-freight-quotes-odfl-edition/css/wickedpicker.min.css?ver=ltl-freight-quotes-odfl-edition/js/wickedpicker.js?ver=ltl-freight-quotes-odfl-edition/css/odfl-style.css?ver=ltl-freight-quotes-odfl-edition/js/eniture-calculate-shipping-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
odfl-shipping-rules-sectionodfl-sectionodfl-wrapper
Data Attributes
data-plugin-name="ltl-freight-quotes-odfl-edition"
JS Globals
script.pluginsUrleniture_calculator_shipping_admin_params
FAQ

Frequently Asked Questions about LTL Freight Quotes – Old Dominion Edition