Does MagniPOS have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is MagniPOS compatible with WordPress 6.9.4?

According to WordPress.org data, MagniPOS 1.3.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is MagniPOS compatible with PHP 7.4+?

MagniPOS requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is MagniPOS updated?

MagniPOS was last updated on Dec 13, 2025. Frequent updates are generally a positive security signal.

What is MagniPOS's security score?

MagniPOS has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

MagniPOS Security & Risk Analysis

wordpress.org/plugins/magnipos

MagniPOS is a Free Point of sale(POS) system for WooCommerce. MagniPOS provides you APPS for Android, iOS, Windows and MacOS.

10 active installs v1.3.1 PHP 7.4+ WP 5.4+ Updated Dec 13, 2025

magnipospoint-of-salepospos-pluginwoocommerce-pos

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is MagniPOS Safe to Use in 2026?

Generally Safe

Score 100/100

MagniPOS has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago

Risk Assessment

The static analysis of the "magnipos" v1.3.1 plugin reveals a generally strong security posture, with excellent adherence to best practices. The complete absence of unprotected AJAX handlers, REST API routes, shortcodes, and cron events indicates a well-designed, secure attack surface. Furthermore, the code demonstrates robust security implementations, with 100% of SQL queries utilizing prepared statements and all output being properly escaped. The presence of nonce and capability checks further reinforces these good practices. The plugin also avoids file operations and dangerous functions. However, the analysis does flag one flow with an unsanitized path, which, despite not being classified as critical or high severity in the taint analysis, warrants attention. The lack of any recorded vulnerabilities in its history is a significant positive, suggesting a history of secure development and maintenance.

While the plugin exhibits many strengths, the single unsanitized path flow presents a potential, albeit low-severity, risk. The two external HTTP requests, while not explicitly flagged as problematic, should be monitored for any future changes that could introduce vulnerabilities. The plugin's history of zero vulnerabilities is a testament to its quality. Overall, "magnipos" v1.3.1 appears to be a secure plugin, with its primary area for potential improvement being the thorough review and sanitization of the identified unsanitized path flow.

Key Concerns

Flow with unsanitized path

Vulnerabilities

None known

MagniPOS Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

MagniPOS Release Timeline

v1.3.1Current

v1.3

v1.2.0

v1.0.1

v1.0

Code Analysis

Analyzed Apr 16, 2026

MagniPOS Code Analysis

Dangerous Functions

Raw SQL Queries

70 prepared

Unescaped Output

207 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared70 total queries

Output Escaping

100% escaped208 total outputs

Data Flows · Security

1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths

<magni-pos-admin-dashboard> (admin/templates/magni-pos-admin-dashboard.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

MagniPOS Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 61

actionplugins_loadedincludes/class-magni-pos.php:180

actionadmin_enqueue_scriptsincludes/class-magni-pos.php:193

actionadmin_menuincludes/class-magni-pos.php:194

actionadmin_initincludes/class-magni-pos.php:195

actionadmin_noticesincludes/class-magni-pos.php:211

actionrest_api_initincludes/class-magni-pos.php:212

actionwoocommerce_new_orderincludes/class-magni-pos.php:213

actionmagnipos_customer_billing_addedincludes/class-magni-pos.php:215

actionwoocommerce_after_order_object_saveincludes/class-magni-pos.php:217

actionwoocommerce_refund_createdincludes/class-magni-pos.php:218

filterwoocommerce_rest_prepare_report_salesincludes/class-magni-pos.php:220

filterwoocommerce_rest_prepare_shop_order_objectincludes/class-magni-pos.php:221

filterwoocommerce_rest_prepare_shop_order_refund_objectincludes/class-magni-pos.php:222

filterwoocommerce_rest_prepare_product_catincludes/class-magni-pos.php:223

filterwoocommerce_reports_get_order_report_data_argsincludes/class-magni-pos.php:225

actiondelete_termincludes/class-magni-pos.php:227

actionafter_delete_postincludes/class-magni-pos.php:228

actiondelete_attachmentincludes/class-magni-pos.php:229

actiondelete_userincludes/class-magni-pos.php:230

actionwoocommerce_tax_rate_deletedincludes/class-magni-pos.php:231

actionwoocommerce_attribute_deletedincludes/class-magni-pos.php:232

actionwoocommerce_attribute_updatedincludes/class-magni-pos.php:234

filterwoocommerce_rest_product_queryincludes/class-magni-pos.php:236

filterwoocommerce_rest_orders_prepare_object_queryincludes/class-magni-pos.php:237

filterwoocommerce_rest_product_variation_queryincludes/class-magni-pos.php:238

filterwoocommerce_rest_product_cat_queryincludes/class-magni-pos.php:239

filterwoocommerce_rest_product_tag_queryincludes/class-magni-pos.php:240

filterwoocommerce_rest_customer_queryincludes/class-magni-pos.php:241

filterwoocommerce_rest_orders_prepare_object_queryincludes/class-magni-pos.php:242

filterwoocommerce_customer_get_order_countincludes/class-magni-pos.php:244

filterwoocommerce_customer_get_total_spentincludes/class-magni-pos.php:245

actionwoocommerce_rest_insert_shop_order_objectincludes/class-magni-pos.php:247

actionwoocommerce_product_options_pricingincludes/class-magni-pos.php:249

actionwoocommerce_process_product_metaincludes/class-magni-pos.php:250

filteredit_termsincludes/class-magni-pos.php:252

filtercreate_termincludes/class-magni-pos.php:253

filterjwt_auth_whitelistincludes/class-magni-pos.php:255

actionrest_api_initincludes/class-magni-pos.php:260

filterrest_api_initincludes/class-magni-pos.php:261

filterrest_pre_dispatchincludes/class-magni-pos.php:262

filterdetermine_current_userincludes/class-magni-pos.php:263

actioninitincludes/class-magni-pos.php:265

filterwoocommerce_rest_shop_order_schemaincludes/class-magni-pos.php:266

filterwoocommerce_rest_product_schemaincludes/class-magni-pos.php:267

filterwoocommerce_rest_product_variation_schemaincludes/class-magni-pos.php:268

filterposts_whereincludes/class-magni-pos.php:269

filterwoocommerce_get_catalog_ordering_argsincludes/class-magni-pos.php:270

actionwoocommerce_variation_options_pricingincludes/class-magni-pos.php:272

actionwoocommerce_save_product_variationincludes/class-magni-pos.php:273

filterwoocommerce_available_variationincludes/class-magni-pos.php:274

filterwoocommerce_reports_get_order_report_queryincludes/class-magni-pos.php:275

filterwoocommerce_register_shop_order_post_statusesincludes/class-magni-pos.php:278

filterwoocommerce_order_status_changedincludes/class-magni-pos.php:279

actionplugins_loadedpublic/class-magni-pos-public.php:75

filterwoocommerce_stock_amountpublic/class-mp-modify-query-controller.php:76

filterwc_order_statusespublic/class-mp-rest-orders-controller.php:458

actionprofile_updatepublic/jwt/class-magni-pos-devices.php:20

actionafter_password_resetpublic/jwt/class-magni-pos-devices.php:21

actionuser_registerpublic/jwt/class-magni-pos-devices.php:22

filterjwt_auth_payloadpublic/jwt/class-magni-pos-devices.php:24

filterjwt_auth_extra_token_checkpublic/jwt/class-magni-pos-devices.php:25

Maintenance & Trust

MagniPOS Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 13, 2025

PHP min version7.4

Downloads2K

Community Trust

Rating100/100

Number of ratings2

Active installs10

Alternatives

MagniPOS Alternatives

Vitepos – Point of Sale (POS) for WooCommerce

vitepos-lite

Fast, modern WooCommerce POS plugin for managing sales, outlets, and cashiers directly in WordPress.

2K 5 CVEs

wePOS – Point Of Sale (POS) for WooCommerce

wepos

100

WooCommerce point of sale WordPress plugin.

2K 1 CVE

Oliver POS – A WooCommerce Point of Sale (POS)

oliver-pos

Oliver POS is a WooCommerce Point of Sale (POS) integrated into your shop. Always in sync with your e-commerce shop, Oliver POS lets you sell in-store …

900 3 CVEs

ConnectPOS | Point of Sale for WooCommerce

connectpos-pos-system-for-woocommerce

100

ConnectPOS is a global-awarded Point of Sale (POS) tailor-made for WooCommerce users in Fashion industry. We are the Bronze winner of 2021 Stevie Awar …

70 No CVEs

Final POS – Drag & Drop Point of Sale Builder

finalpos

100

Short Description: Transform your WooCommerce store with Final POS, the drag-and-drop point of sale builder that syncs with your shop.

30 No CVEs

Developer Profile

MagniPOS Developer Profile

Nirmal Kumar Ram

7 plugins · 31K total installs

trust score

Avg Security Score

94/100

Avg Patch Time

826 days

View full developer profile

Detection Fingerprints

How We Detect MagniPOS

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/magnipos/css/magni-pos-admin.css/wp-content/plugins/magnipos/js/magni-pos-public.js

Script Paths

/wp-content/plugins/magnipos/js/magni-pos-public.js

Version Parameters

magnipos/css/magni-pos-admin.css?ver=magnipos/js/magni-pos-public.js?ver=

HTML / DOM Fingerprints

CSS Classes

magni_pos_admin_cssmagni-pos-adminmagni_pos_dashboard

Data Attributes

data-magni-pos

JS Globals

magni_pos_object

FAQ