Does Ninja Shop – The Quickest Way to Start Selling have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Ninja Shop – The Quickest Way to Start Selling compatible with WordPress 5.2.24?

According to WordPress.org data, Ninja Shop – The Quickest Way to Start Selling 1.1.11 has been tested up to WordPress 5.2.24. Check the plugin's changelog for the latest compatibility information.

Is Ninja Shop – The Quickest Way to Start Selling compatible with PHP 5.6+?

Ninja Shop – The Quickest Way to Start Selling requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Ninja Shop – The Quickest Way to Start Selling updated?

Ninja Shop – The Quickest Way to Start Selling was last updated on Dec 12, 2019. Frequent updates are generally a positive security signal.

What is Ninja Shop – The Quickest Way to Start Selling's security score?

Ninja Shop – The Quickest Way to Start Selling has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Ninja Shop – The Quickest Way to Start Selling Security & Risk Analysis

wordpress.org/plugins/ninja-shop

Ninja Shop is an easy to use eCommerce plugin, the quickest way to start selling your products with WordPress.

20 active installs v1.1.11 PHP 5.6+ WP 4.7+ Updated Dec 12, 2019

e-commerceecommercesalessellstore

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Ninja Shop – The Quickest Way to Start Selling Safe to Use in 2026?

Generally Safe

Score 85/100

Ninja Shop – The Quickest Way to Start Selling has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The ninja-shop plugin v1.1.11 demonstrates a generally strong security posture, characterized by a complete absence of known vulnerabilities and a proactive approach to security best practices. The static analysis reveals no critical or high-severity security signals, including a lack of dangerous functions, all SQL queries utilizing prepared statements, and a robust presence of nonce and capability checks. This indicates a well-developed and security-conscious codebase. The low number of attack surface points, all of which are protected, further contributes to its secure standing.

However, there are minor areas for improvement. The taint analysis shows one flow with an unsanitized path, which, while not deemed critical or high severity in this instance, represents a potential avenue for issues if not carefully managed. Additionally, while 75% of output escaping is considered good, the remaining 25% could potentially lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is involved in the unescaped outputs. The single file operation and five external HTTP requests, while not inherently insecure, warrant review to ensure they are implemented securely and do not introduce unintended vulnerabilities.

Overall, ninja-shop v1.1.11 presents as a secure plugin, backed by zero historical vulnerabilities. Its adherence to prepared statements, nonce checks, and capability checks are significant strengths. The limited number of potential weaknesses identified in the taint analysis and output escaping, combined with the absence of known CVEs, suggests that the plugin is well-maintained and prioritizes security. Continued vigilance in code reviews, especially concerning the identified unsanitized path and output escaping, will further solidify its secure reputation.

Key Concerns

Flows with unsanitized paths
Output escaping not fully proper

Vulnerabilities

None known

Ninja Shop – The Quickest Way to Start Selling Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Ninja Shop – The Quickest Way to Start Selling Release Timeline

v1.1.11Current

v1.1.10

v1.1.9

v1.1.8

v1.1.7

v1.1.6

v1.1.5

v1.1.4

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.1

v1.0

Code Analysis

Analyzed Mar 16, 2026

Ninja Shop – The Quickest Way to Start Selling Code Analysis

Dangerous Functions

Raw SQL Queries

6 prepared

Unescaped Output

257 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2

SQL Query Safety

100% prepared6 total queries

Output Escaping

75% escaped341 total outputs

Data Flows · Security

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

it_exchange_paypal_standard_addon_process_webhook (core-addons\transaction-methods\paypal-standard\init.php:777)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Ninja Shop – The Quickest Way to Start Selling Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 109

actiontemplate_redirectapi\customers.php:315

filterwp_get_nav_menu_itemsapi\misc.php:352

filterthe_contentapi\theme\product.php:344

actionwp_dashboard_setupcore-addons\admin\basic-reporting\init.php:23

filterwp_dashboard_widgetscore-addons\admin\basic-reporting\init.php:70

filterninja_shop_billing_address_purchase_requirement_enabledcore-addons\admin\billing-address\init.php:13

actionninja_shop_super_widget_registration_end_fields_loopcore-addons\admin\ithemes-security\init.php:76

actionninja_shop_content_registration_end_fields_loopcore-addons\admin\ithemes-security\init.php:77

actionninja_shop_super_widget_login_end_fields_loopcore-addons\admin\ithemes-security\init.php:100

actionninja_shop_content_login_after_fields_loopcore-addons\admin\ithemes-security\init.php:101

filterninja_shop_register_user_errorscore-addons\admin\ithemes-security\init.php:157

filterninja_shop_pre_sw_login_errorscore-addons\admin\ithemes-security\init.php:213

actionninja_shop_libraries_loadedcore-addons\admin\multi-item-cart\init.php:36

filterninja_shop_multi_item_cart_allowedcore-addons\admin\multi-item-cart\init.php:101

actionadmin_initcore-addons\admin\multi-item-cart\init.php:175

actionninja_shop_product_metabox_callbackcore-addons\admin\product-type-metabox\init.php:17

actionninja_shop_save_productcore-addons\admin\product-type-metabox\init.php:18

actionadmin_enqueue_scriptscore-addons\admin\terms-of-service\init.php:57

actionwp_enqueue_scriptscore-addons\admin\terms-of-service\init.php:58

actionninja_shop_register_addonscore-addons\load.php:499

actionninja_shop_libraries_loadedcore-addons\load.php:580

filterninja_shop_public_css_pathcore-addons\opinionated-styles\init.php:23

actionninja_shop_save_add_on_settings_opinionated_stylescore-addons\opinionated-styles\init.php:69

filterninja_shop_storage_get_defaults_exchange_addon_opinionated_stylescore-addons\opinionated-styles\init.php:73

actioninitcore-addons\product-features\categories\init.php:49

actionwidgets_initcore-addons\product-features\categories\init.php:69

actionadmin_menucore-addons\product-features\categories\init.php:86

actionadmin_head-edit-tags.phpcore-addons\product-features\categories\init.php:103

actionpre_get_postscore-addons\product-features\categories\init.php:126

filterpost_row_actionscore-addons\product-features\duplicate-products\init.php:40

filterpage_row_actionscore-addons\product-features\duplicate-products\init.php:41

filterdefault_contentcore-addons\product-features\duplicate-products\init.php:61

filterdefault_titlecore-addons\product-features\duplicate-products\init.php:81

filterdefault_excerptcore-addons\product-features\duplicate-products\init.php:101

actionadd_meta_boxescore-addons\product-features\duplicate-products\init.php:132

actionload-post-new.phpcore-addons\product-features\page-templates\init.php:20

actionload-post.phpcore-addons\product-features\page-templates\init.php:21

actionninja_shop_save_productcore-addons\product-features\page-templates\init.php:22

filterninja_shop_fetch_template_override_default_page_templatecore-addons\product-features\page-templates\init.php:24

filterninja_shop_fetch_template_override_located_templatecore-addons\product-features\page-templates\init.php:25

actionninja_shop_enabled_addons_loadedcore-addons\product-features\page-templates\init.php:27

filterninja_shop_get_product_feature_page-templatecore-addons\product-features\page-templates\init.php:28

filterninja_shop_product_has_feature_page-templatecore-addons\product-features\page-templates\init.php:29

filterninja_shop_product_supports_feature_page-templatecore-addons\product-features\page-templates\init.php:30

actionninja_shop_update_product_feature_page-templatecore-addons\product-features\page-templates\init.php:31

actioninitcore-addons\product-features\tags\init.php:49

actionadmin_menucore-addons\product-features\tags\init.php:66

actionadmin_head-edit-tags.phpcore-addons\product-features\tags\init.php:83

actionpre_get_postscore-addons\product-features\tags\init.php:106

actionninja_shop_duplicate_product_addon_default_product_metacore-addons\product-types\digital-downloads\init.php:57

actionninja_shop_save_add_on_settings_digital_downloadscore-addons\product-types\digital-downloads\init.php:103

filterninja_shop_storage_get_defaults_exchange_addon_digital_downloadscore-addons\product-types\digital-downloads\init.php:107

actionadmin_enqueue_scriptscore-addons\taxes\taxes-canada\init.php:68

actionadmin_enqueue_scriptscore-addons\taxes\taxes-canada\init.php:86

filterninja_shop_get_data_set_properties_eu-member-statescore-addons\taxes\taxes-eu-vat\api\data-sets.php:17

actionadmin_noticescore-addons\taxes\taxes-eu-vat\init.php:21

actionninja_shop_register_tax_providerscore-addons\taxes\taxes-simple\init.php:22

filterninja_shop_storage_get_defaults_exchange_addon_taxes_simplecore-addons\taxes\taxes-simple\init.php:91

actionadmin_initcore-addons\taxes\taxes-simple\init.php:124

actionadmin_print_stylescore-addons\taxes\taxes-simple\init.php:249

actionninja_shop_replace_order_table_tag_before_total_rowcore-addons\taxes\taxes-simple\init.php:262

actionninja_shop_save_add_on_settings_offline-paymentscore-addons\transaction-methods\offline-payments\deprecated.php:260

filterninja_shop_storage_get_defaults_exchange_addon_offline_paymentscore-addons\transaction-methods\offline-payments\deprecated.php:264

actionninja_shop_register_gatewayscore-addons\transaction-methods\offline-payments\init.php:11

filterninja_shop_offline-payments_transaction_status_can_be_manually_changedcore-addons\transaction-methods\offline-payments\init.php:26

filterninja_shop_get_status_options_for_offline-payments_transactioncore-addons\transaction-methods\offline-payments\init.php:46

filterninja_shop_possible_template_pathscore-addons\transaction-methods\offline-payments\init.php:93

filterninja_shop_transaction_instructions_offline-paymentscore-addons\transaction-methods\offline-payments\init.php:114

filterninja_shop_transaction_status_label_offline-paymentscore-addons\transaction-methods\offline-payments\init.php:147

filterninja_shop_offline-payments_transaction_is_cleared_for_deliverycore-addons\transaction-methods\offline-payments\init.php:163

filterninja_shop_auto_activate_non_renewing_offline-payments_subscriptionscore-addons\transaction-methods\offline-payments\init.php:165

filterninja_shop_subscriber_status_activity_use_gateway_actorcore-addons\transaction-methods\offline-payments\init.php:192

actionninja_shop_add_transaction_successcore-addons\transaction-methods\offline-payments\init.php:205

filterninja_shop_subscriber_status_activity_use_gateway_actorcore-addons\transaction-methods\offline-payments\init.php:242

actionninja_shop_update_transaction_statuscore-addons\transaction-methods\offline-payments\init.php:252

filterninja_shop_offline-payments_subscription_requires_subscriber_idcore-addons\transaction-methods\offline-payments\init.php:255

filterninja_shop_subscriber_status_activity_use_gateway_actorcore-addons\transaction-methods\offline-payments\init.php:289

filterninja_shop_recurring_payments_handle_expiredcore-addons\transaction-methods\offline-payments\init.php:300

actionninja_shop_email_notifications_register_tagscore-addons\transaction-methods\offline-payments\init.php:355

filterthe_titlecore-addons\transaction-methods\paypal-standard\handlers\class.purchase.php:130

actionninja_shop_register_gatewayscore-addons\transaction-methods\paypal-standard\init.php:20

filterninja_shop_paypal-standard_transaction_status_can_be_manually_changedcore-addons\transaction-methods\paypal-standard\init.php:34

filterninja_shop_get_status_options_for_paypal-standard_transactioncore-addons\transaction-methods\paypal-standard\init.php:54

filterninja_shop_refund_url_for_paypal-standardcore-addons\transaction-methods\paypal-standard\init.php:106

filterhandle_purchase_cart_request_already_processed_for_paypal-standardcore-addons\transaction-methods\paypal-standard\init.php:150

actiontemplate_redirectcore-addons\transaction-methods\paypal-standard\init.php:554

filterninja_shop_transaction_status_label_paypal-standardcore-addons\transaction-methods\paypal-standard\init.php:1234

filterninja_shop_paypal-standard_transaction_is_cleared_for_deliverycore-addons\transaction-methods\paypal-standard\init.php:1258

filterninja_shop_paypal-standard_unsubscribe_actioncore-addons\transaction-methods\paypal-standard\init.php:1282

actionninja_shop_after_payment_details_cancel_url_for_paypal-standardcore-addons\transaction-methods\paypal-standard\init.php:1333

filterninja_shop_get_optioncore-addons\transaction-methods\paypal-standard\init.php:1364

actionninja_shop_register_gatewayscore-addons\transaction-methods\zero-sum-checkout\init.php:10

filterninja_shop_zero-sum-checkout_transaction_is_cleared_for_deliverycore-addons\transaction-methods\zero-sum-checkout\init.php:61

actionadmin_initcore-addons\transaction-methods\zero-sum-checkout\init.php:226

filterninja_shop_auto_activate_non_renewing_zero-sum-checkout_subscriptionscore-addons\transaction-methods\zero-sum-checkout\init.php:228

filterninja_shop_subscriber_status_activity_use_gateway_actorcore-addons\transaction-methods\zero-sum-checkout\init.php:257

actionninja_shop_add_transaction_successcore-addons\transaction-methods\zero-sum-checkout\init.php:271

filterninja_shop_subscriber_status_activity_use_gateway_actorcore-addons\transaction-methods\zero-sum-checkout\init.php:304

actionninja_shop_update_transaction_statuscore-addons\transaction-methods\zero-sum-checkout\init.php:313

actionadmin_noticesinit.php:40

actionadmin_noticesinit.php:77

actionninja_shop_libraries_loadedninja-shop.php:81

filterninja-forms-dashboard-promotionsninja-shop.php:83

actionadmin_noticesninja-shop.php:231

actionplugins_loadedninja-shop.php:247

actionninja_shop_version_updatedninja-shop.php:265

actionadmin_initninja-shop.php:290

actioninitninja-shop.php:309

actionninja_shop_version_updatedninja-shop.php:323

Maintenance & Trust

Ninja Shop – The Quickest Way to Start Selling Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24

Last updatedDec 12, 2019

PHP min version5.6

Downloads8K

Community Trust

Rating76/100

Number of ratings5

Active installs20

Alternatives

Ninja Shop – The Quickest Way to Start Selling Alternatives

TriPay Payment Gateway

tripay-payment-gateway

100

TriPay Payment adalah payment gateway indonesia yang menyediakan beragam metode pembayaran seperti virtual account, convenience store, e-wallet, dll

1K 1 CVE

Ovic Pinmap

ovic-pinmap

Need support? [Contact Us](https://kutethemes.com/contact-us/ "Contact Us")

200 No CVEs

ShipperHQ: Shipping & Checkout Experience Solution

woo-shipperhq

100

Control the shipping rates and options you show in your WooCommerce cart. Live rates from 30+ carriers, LTL Freight and custom rates.

200 No CVEs

OPay Payment for WooCommerce

woo-opay-payment

歐付寶金流外掛套件，提供合作特店以及個人會員使用開放原始碼商店系統時，無須自行處理複雜的檢核，直接透過安裝設定外掛套件，便可以較快速的方式介接的金流系統。

30 No CVEs

BBA Mastro Plugin

bba-mastro

BBA Mastro Multi Carrier Shipping and Logistics Technology able to seamlessly integrate into your Woo cart.

10 No CVEs

Developer Profile

Ninja Shop – The Quickest Way to Start Selling Developer Profile

Kevin Stover

5 plugins · 610K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

1015 days

View full developer profile

Detection Fingerprints

How We Detect Ninja Shop – The Quickest Way to Start Selling

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ninja-shop/assets/css/ninja-shop.css/wp-content/plugins/ninja-shop/assets/js/ninja-shop.js

Script Paths

/wp-content/plugins/ninja-shop/assets/js/ninja-shop.js

Version Parameters

ninja-shop/assets/css/ninja-shop.css?ver=ninja-shop/assets/js/ninja-shop.js?ver=

HTML / DOM Fingerprints

CSS Classes

ninja-shop

JS Globals

IT_Exchange

FAQ