WP-Safety

Melopo Product Health Checker for WooCommerce Security & Risk Analysis

wordpress.org/plugins/melopo-product-health-checker-for-woocommerce

Scan your WooCommerce catalog for missing prices, images, SKUs and more. Traffic-light health report with bulk fix actions.

0 active installs v1.0.0 PHP 7.4+ WP 5.8+ Updated Apr 4, 2026
auditcataloghealth-checkproductswoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Melopo Product Health Checker for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Melopo Product Health Checker for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The "melopo-product-health-checker-for-woocommerce" v1.0.0 plugin demonstrates a strong security posture based on the static analysis results. It utilizes prepared statements exclusively for all SQL queries and ensures all output is properly escaped, mitigating common web vulnerabilities like SQL injection and cross-site scripting. The presence of nonce and capability checks on all identified AJAX handlers further strengthens its defense against unauthorized actions. The absence of file operations and external HTTP requests also reduces potential attack vectors.

However, the taint analysis revealed two flows with unsanitized paths. While these are not categorized as critical or high severity in this analysis, any unsanitized path represents a potential risk if not handled meticulously. The plugin also bundles the Freemius v1.0 library, which, if outdated, could introduce vulnerabilities not directly related to the plugin's own code. The plugin's vulnerability history is clean, with no known CVEs, which is a positive indicator of its past security performance.

Overall, the plugin adheres to many best security practices. The primary areas for attention are the identified unsanitized paths and the potential for the bundled Freemius library to be outdated. Addressing these points would further enhance the plugin's already commendable security.

Key Concerns

  • Flows with unsanitized paths found
  • Bundled Freemius v1.0 library may be outdated
Vulnerabilities
None known

Melopo Product Health Checker for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Melopo Product Health Checker for WooCommerce Release Timeline

v1.0.0Current
Code Analysis
Analyzed Apr 16, 2026

Melopo Product Health Checker for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
38 prepared
Unescaped Output
0
309 escaped
Nonce Checks
9
Capability Checks
13
File Operations
0
External Requests
0
Bundled Libraries
1

Bundled Libraries

Freemius1.0

SQL Query Safety

100% prepared38 total queries

Output Escaping

100% escaped309 total outputs
Data Flows · Security
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
ajax_scan_finalize (includes/class-wphc-admin.php:758)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Melopo Product Health Checker for WooCommerce Attack Surface

Entry Points9
Unprotected0

AJAX Handlers 9

authwp_ajax_wphc_scan_startincludes/class-wphc-admin.php:56
authwp_ajax_wphc_scan_batchincludes/class-wphc-admin.php:57
authwp_ajax_wphc_scan_finalizeincludes/class-wphc-admin.php:58
authwp_ajax_wphc_get_dashboardincludes/class-wphc-admin.php:59
authwp_ajax_wphc_get_issuesincludes/class-wphc-admin.php:60
authwp_ajax_wphc_preview_productincludes/class-wphc-admin.php:61
authwp_ajax_wphc_bulk_actionincludes/class-wphc-admin.php:62
authwp_ajax_wphc_save_settingsincludes/class-wphc-admin.php:63
authwp_ajax_wphc_exportincludes/class-wphc-admin.php:64
WordPress Hooks 12
actionadmin_menuincludes/class-wphc-admin.php:39
actionadmin_enqueue_scriptsincludes/class-wphc-admin.php:40
actionadd_meta_boxesincludes/class-wphc-admin.php:41
actioncurrent_screenincludes/class-wphc-admin.php:49
actionadmin_enqueue_scriptsincludes/class-wphc-admin.php:50
actionwoocommerce_update_productincludes/class-wphc-admin.php:53
filtermanage_product_posts_columnsincludes/class-wphc-admin.php:153
actionmanage_product_posts_custom_columnincludes/class-wphc-admin.php:154
actionafter_uninstallincludes/class-wphc-freemius.php:67
actionbefore_woocommerce_initmelopo-product-health-checker-for-woocommerce.php:79
actionplugins_loadedmelopo-product-health-checker-for-woocommerce.php:110
actionadmin_noticesmelopo-product-health-checker-for-woocommerce.php:119
Maintenance & Trust

Melopo Product Health Checker for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedApr 4, 2026
PHP min version7.4
Downloads69

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Melopo Product Health Checker for WooCommerce Alternatives

YITH WooCommerce Catalog Mode

YITH WooCommerce Catalog Mode

yith-woocommerce-catalog-mode

A
99

YITH WooCommerce Catalog Mode, a plugin for disabling sales in your e-commerce and turn it into an e-commerce into an online catalogue.

60K 1 CVE
Channel3 for WooCommerce

Channel3 for WooCommerce

channel3-for-woocommerce

A
100

Sync your WooCommerce product catalog to Channel3.

0 No CVEs
DawsonyWeb – Catalog Ops

DawsonyWeb – Catalog Ops

dawsonyweb-catalog-ops

A
100

Audit your WooCommerce catalog for missing SKUs, duplicate SKUs, zero prices, empty descriptions, and more. Fix issues inline.

0 No CVEs
Hide Product Categories & Products for WooCommerce

Hide Product Categories & Products for WooCommerce

hide-product-categories-products-for-woocommerce

A
100

Hide WooCommerce products and categories instantly — without deleting any data. Category tree checkboxes, AJAX live search, and visual chip selection.

0 No CVEs
Selected Product List for WooCommerce

Selected Product List for WooCommerce

selected-product-list-for-woocommerce

A
100

Create customizable product lists by selecting specific WooCommerce products.

0 No CVEs
Developer Profile

Melopo Product Health Checker for WooCommerce Developer Profile

Luis Peel

4 plugins · 1K total installs

93
trust score
Avg Security Score
98/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Melopo Product Health Checker for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/melopo-product-health-checker-for-woocommerce/assets/css/wphc-admin-styles.css/wp-content/plugins/melopo-product-health-checker-for-woocommerce/assets/js/wphc-admin-scripts.js/wp-content/plugins/melopo-product-health-checker-for-woocommerce/assets/js/wphc-checker-admin.js/wp-content/plugins/melopo-product-health-checker-for-woocommerce/assets/js/wphc-bulk-actions.js
Version Parameters
melopo-product-health-checker-for-woocommerce/assets/css/wphc-admin-styles.css?ver=melopo-product-health-checker-for-woocommerce/assets/js/wphc-admin-scripts.js?ver=melopo-product-health-checker-for-woocommerce/assets/js/wphc-checker-admin.js?ver=melopo-product-health-checker-for-woocommerce/assets/js/wphc-bulk-actions.js?ver=

HTML / DOM Fingerprints

CSS Classes
wphc-admin-page
HTML Comments
<!DOCTYPE html><!-- Freemius SDK bootstrap --><!-- HPOS compatibility declaration --><!-- WooCommerce active check -->+8 more
Data Attributes
data-wphc-scan-results-nonce=data-wphc-ignore-product-nonce=data-wphc-ignore-rule-nonce=
JS Globals
wphc_admin_paramswphc_bulk_actions_paramswphc_checker_admin_params
FAQ

Frequently Asked Questions about Melopo Product Health Checker for WooCommerce