MiMap – Pick My Location For WooCommerce Security & Risk Analysis

wordpress.org/plugins/mymap-pick-my-location-for-woocommerce

This plugin speed up checkout with automatic address filling on checkout page and share location URL with order using google map API.

0 active installs v2.1 PHP 5.6+ WP 5.7+ Updated Feb 24, 2025
checkoutfast-checkoutmapshippingwoocommerce
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Safety Verdict

Is MiMap – Pick My Location For WooCommerce Safe to Use in 2026?

Generally Safe

Score 92/100

MiMap – Pick My Location For WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The "mymap-pick-my-location-for-woocommerce" plugin version 2.1 exhibits a generally strong security posture based on the provided static analysis. It demonstrates good practices by avoiding dangerous functions, utilizing prepared statements for all SQL queries, and properly escaping a high percentage of its output. The absence of external HTTP requests and file operations further reduces its attack surface. Crucially, the taint analysis found no unsanitized paths or critical/high severity issues, indicating robust data handling. The plugin also implements nonce checks, contributing to its security.

However, a notable area for improvement is the complete lack of capability checks. While the attack surface is currently small and appears to be protected, relying solely on nonces without capability checks means that any authenticated user, regardless of their role, could potentially interact with the plugin's entry points. Given the absence of past vulnerabilities, the plugin has a clean history, suggesting developers have maintained good security standards. Overall, the plugin is well-coded with minimal immediate risks, but the missing capability checks represent a potential area of concern for more granular access control.

Key Concerns

  • Missing capability checks
Vulnerabilities
None known

MiMap – Pick My Location For WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

MiMap – Pick My Location For WooCommerce Release Timeline

v2.1Current
v2.0
v1.0
Code Analysis
Analyzed Apr 16, 2026

MiMap – Pick My Location For WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
3
29 escaped
Nonce Checks
2
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

91% escaped32 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

3 flows
mymap_plugin_save_api_key (admin/settings.php:167)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

MiMap – Pick My Location For WooCommerce Attack Surface

Entry Points2
Unprotected0

Shortcodes 2

[pickmylocation_billing] czar-pick-my-location.php:25
[pickmylocation_shipping] czar-pick-my-location.php:30
WordPress Hooks 14
actionadmin_menuadmin/settings.php:15
actionadmin_initadmin/settings.php:106
actionadmin_initadmin/settings.php:193
actionwoocommerce_checkout_billingczar-pick-my-location.php:24
actionwoocommerce_checkout_shippingczar-pick-my-location.php:29
actionwp_enqueue_scriptsczar-pick-my-location.php:66
actionwoocommerce_after_order_notesczar-pick-my-location.php:73
actionwoocommerce_checkout_update_order_metaczar-pick-my-location.php:74
actionwoocommerce_admin_order_data_after_billing_addressczar-pick-my-location.php:75
filterwoocommerce_email_order_meta_keysczar-pick-my-location.php:76
actionwoocommerce_after_checkout_billing_formczar-pick-my-location.php:87
filterplugin_action_linksczar-pick-my-location.php:124
actionadmin_enqueue_scriptsczar-pick-my-location.php:134
actionwp_footerczar-pick-my-location.php:145
Maintenance & Trust

MiMap – Pick My Location For WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedFeb 24, 2025
PHP min version5.6
Downloads763

Community Trust

Rating0/100
Number of ratings0
Active installs0
Developer Profile

MiMap – Pick My Location For WooCommerce Developer Profile

chintanshah0704

1 plugin · 0 total installs

88
trust score
Avg Security Score
92/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect MiMap – Pick My Location For WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/mymap-pick-my-location-for-woocommerce/assets/js/script.js/wp-content/plugins/mymap-pick-my-location-for-woocommerce/assets/css/style.css
Script Paths
https://maps.googleapis.com/maps/api/js?key=assets/js/script.js
Version Parameters
mymap-pick-location-scriptmymap-pick-location-style

HTML / DOM Fingerprints

CSS Classes
mymap_pick_location_billingmymap_pick_location_shipping
Data Attributes
id="mymap_map_canvas"
Shortcode Output
<button class="button mymap_pick_location_billing"><button class="button mymap_pick_location_shipping">
FAQ

Frequently Asked Questions about MiMap – Pick My Location For WooCommerce