Does Order Daemon for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Order Daemon for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, Order Daemon for WooCommerce 1.3.27 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Order Daemon for WooCommerce compatible with PHP 7.4+?

Order Daemon for WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Order Daemon for WooCommerce updated?

Order Daemon for WooCommerce was last updated on Mar 26, 2026. Frequent updates are generally a positive security signal.

What is Order Daemon for WooCommerce's security score?

Order Daemon for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Order Daemon for WooCommerce Security & Risk Analysis

wordpress.org/plugins/order-daemon

Automatically complete WooCommerce orders based on rules you define. Built for digital, virtual, and subscription-based stores.

0 active installs v1.3.27 PHP 7.4+ WP 5.6+ Updated Mar 26, 2026

auto-completeautomationdigital-productsorder-managementwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Order Daemon for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Order Daemon for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The 'order-daemon' plugin version 1.3.27 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The plugin has no recorded CVEs, indicating a history of good security maintenance. The static analysis reveals a well-protected attack surface, with all 15 AJAX handlers properly authenticated. Furthermore, the plugin demonstrates excellent SQL hygiene, with 100% of its 115 SQL queries utilizing prepared statements, mitigating the risk of SQL injection vulnerabilities. The extensive use of nonce checks (42) and capability checks (52) further reinforces its defenses against common WordPress attack vectors. The lack of critical or high-severity taint flows, unsanitized paths, or dangerous functions is also a significant positive. While the output escaping is not perfect at 87%, this still represents a relatively low risk of cross-site scripting (XSS) vulnerabilities given the number of output points. The plugin does engage in two external HTTP requests and two file operations, which are potential, albeit minor, areas for concern if not handled with strict validation and sanitization, but no specific issues are highlighted in the analysis.

Key Concerns

Output escaping is not 100% proper

Vulnerabilities

None known

Order Daemon for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Order Daemon for WooCommerce Release Timeline

v1.3.27Current

v1.3.26

v1.3.25

v1.3.24

Code Analysis

Analyzed Apr 16, 2026

Order Daemon for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

115 prepared

Unescaped Output

118

812 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared115 total queries

Output Escaping

87% escaped930 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

7 flows

<DiagnosticDashboard> (src/Admin/DiagnosticDashboard.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Order Daemon for WooCommerce Attack Surface

Entry Points15

Unprotected0

AJAX Handlers 15

authwp_ajax_odcm_toggle_rule_statussrc/Admin/Admin.php:80

authwp_ajax_odcm_update_rule_ordersrc/Admin/Admin.php:86

authwp_ajax_odcm_run_diagnosticssrc/Admin/DiagnosticDashboard.php:49

authwp_ajax_odcm_run_single_diagnosticsrc/Admin/DiagnosticDashboard.php:50

authwp_ajax_odcm_generate_dual_reportsrc/Admin/DiagnosticDashboard.php:51

authwp_ajax_odcm_update_per_pagesrc/Admin/InsightDashboard.php:75

authwp_ajax_odcm_save_debug_settingssrc/Admin/InsightDashboard.php:76

authwp_ajax_odcm_save_uninstall_data_settingsrc/Admin/InsightDashboard.php:77

authwp_ajax_odcm_reprocess_pending_orderssrc/Admin/InsightDashboard.php:78

authwp_ajax_odcm_check_welcome_scenariosrc/Admin/InsightDashboard.php:81

authwp_ajax_odcm_log_alpine_failuresrc/Admin/InsightDashboard.php:84

authwp_ajax_odcm_dismiss_site_wide_noticesrc/Admin/Notices.php:22

noprivwp_ajax_odcm_dismiss_site_wide_noticesrc/Admin/Notices.php:23

authwp_ajax_odcm_dismiss_data_preservation_noticesrc/Admin/Notices.php:24

authwp_ajax_odcm_update_rule_ordersrc/Includes/actions.php:1517

WordPress Hooks 82

actionbefore_woocommerce_initorder-daemon.php:28

actionplugins_loadedorder-daemon.php:142

actionload-edit.phpsrc/Admin/Admin.php:67

actionadmin_enqueue_scriptssrc/Admin/Admin.php:70

actionwp_enqueue_scriptssrc/Admin/Admin.php:73

filtermanage_odcm_order_rule_posts_columnssrc/Admin/Admin.php:76

actionmanage_odcm_order_rule_posts_custom_columnsrc/Admin/Admin.php:77

actionadmin_bar_menusrc/Admin/Admin.php:83

actionadmin_noticessrc/Admin/Admin.php:105

filterpost_classsrc/Admin/Admin.php:120

actionadmin_enqueue_scriptssrc/Admin/DiagnosticDashboard.php:54

actionadmin_menusrc/Admin/InsightDashboard.php:68

actionadmin_menusrc/Admin/InsightDashboard.php:69

actionadmin_enqueue_scriptssrc/Admin/InsightDashboard.php:70

actionadmin_enqueue_scriptssrc/Admin/InsightDashboard.php:71

filteradmin_body_classsrc/Admin/InsightDashboard.php:72

filterodcm_debug_enabledsrc/Admin/InsightDashboard.php:103

filterscript_loader_tagsrc/Admin/InsightDashboard.php:229

filterodcm_debug_enabledsrc/Admin/InsightDashboard.php:1353

actionadmin_noticessrc/Admin/Notices.php:21

actionadmin_noticessrc/Admin/Notices.php:27

actionadmin_enqueue_scriptssrc/Admin/Notices.php:30

actionadd_meta_boxessrc/Admin/RuleBuilder.php:39

actionadd_meta_boxessrc/Admin/RuleBuilder.php:40

actionadmin_enqueue_scriptssrc/Admin/RuleBuilder.php:41

actionsave_post_odcm_order_rulesrc/Admin/RuleBuilder.php:42

actionodcm_rebuild_rule_indexes_jobsrc/Admin/RuleBuilder.php:45

actionadmin_initsrc/Admin/RuleBuilder.php:49

filterscript_loader_tagsrc/Admin/RuleBuilder.php:238

actionwoocommerce_store_api_checkout_order_processedsrc/Core/BlockCheckoutCompatibility.php:38

actionwoocommerce_blocks_checkout_order_processedsrc/Core/BlockCheckoutCompatibility.php:40

actionwoocommerce_store_api_checkout_update_order_from_requestsrc/Core/BlockCheckoutCompatibility.php:42

actionodcm_process_block_checkout_observationsrc/Core/BlockCheckoutCompatibility.php:45

actionadmin_post_odcm_reprocess_orderssrc/Core/Core.php:136

actionadmin_initsrc/Core/Core.php:141

actionodcm_reprocess_orders_batchsrc/Core/Core.php:144

actionodcm_process_payment_completionsrc/Core/Core.php:147

actionwoocommerce_payment_completesrc/Core/Core.php:157

actionwoocommerce_order_status_changedsrc/Core/Core.php:190

actionwoocommerce_new_ordersrc/Core/Core.php:193

actionwoocommerce_checkout_order_processedsrc/Core/Core.php:194

actionwoocommerce_subscription_status_updatedsrc/Core/Core.php:198

actionwoocommerce_subscription_renewal_payment_completesrc/Core/Core.php:199

actioninitsrc/Core/Core.php:224

actionadmin_noticessrc/Core/Core.php:296

actionodcm_update_rule_execution_eventsrc/Core/Events/RuleExecutionEventUpdater.php:50

actionshutdownsrc/Core/Events/RuleExecutionEventUpdater.php:53

actionodcm_process_pending_rule_execution_updatessrc/Core/Events/RuleExecutionEventUpdater.php:56

actionodcm_cleanup_old_logssrc/Core/LogCleanup.php:39

actionwoocommerce_order_status_changedsrc/Core/ManualStatusTracker.php:69

actionwoocommerce_process_shop_order_metasrc/Core/ManualStatusTracker.php:72

actionwoocommerce_order_refundedsrc/Core/RefundDeletionDiagnostics.php:546

actionwoocommerce_order_partially_refundedsrc/Core/RefundDeletionDiagnostics.php:547

actionwoocommerce_order_fully_refundedsrc/Core/RefundDeletionDiagnostics.php:548

actionwoocommerce_refund_createdsrc/Core/RefundDeletionDiagnostics.php:549

actionwoocommerce_refund_deletedsrc/Core/RefundDeletionDiagnostics.php:550

actionwoocommerce_before_delete_ordersrc/Core/RefundDeletionDiagnostics.php:555

actionwoocommerce_delete_ordersrc/Core/RefundDeletionDiagnostics.php:556

actionwoocommerce_before_trash_ordersrc/Core/RefundDeletionDiagnostics.php:557

actionwoocommerce_trash_ordersrc/Core/RefundDeletionDiagnostics.php:558

actionuntrashed_postsrc/Core/RefundDeletionDiagnostics.php:559

filterodcm_rule_component_missingsrc/Core/RuleComponents/UnknownComponentFallback.php:26

filterodcm_allow_unknown_componentsrc/Core/RuleComponents/UnknownComponentFallback.php:29

filterwp_kses_allowed_htmlsrc/Core/Security/AlpineJsSecurity.php:25

actionadmin_enqueue_scriptssrc/Includes/AssetHelper.php:67

actionadmin_enqueue_scriptssrc/Includes/AssetHelper.php:84

actionodcm_process_log_entrysrc/Includes/actions.php:256

actionodcm_process_order_checksrc/Includes/actions.php:394

actionodcm_process_lifecycle_eventsrc/Includes/actions.php:487

actionodcm_process_checkout_completionsrc/Includes/actions.php:770

actionodcm_process_payment_completionsrc/Includes/actions.php:900

actionodcm_process_queued_log_entrysrc/Includes/actions.php:1340

actionodcm_cleanup_audit_log_queuesrc/Includes/actions.php:1418

actioninitsrc/Includes/actions.php:1445

filteraction_scheduler_list_table_column_argssrc/Includes/functions.php:1383

actionadmin_noticessrc/Plugin.php:81

actioninitsrc/Plugin.php:102

actioninitsrc/Plugin.php:103

actioninitsrc/Plugin.php:104

actioninitsrc/Plugin.php:105

actionrest_api_initsrc/Plugin.php:106

actioninitsrc/Plugin.php:122

Scheduled Events 1

odcm_process_pending_rule_execution_updates

Maintenance & Trust

Order Daemon for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 26, 2026

PHP min version7.4

Downloads271

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Order Daemon for WooCommerce Alternatives

MailPoet – Newsletters, Email Marketing, and Automation

mailpoet

Send beautiful newsletters from WordPress. Collect subscribers with signup forms, automate your emails for WooCommerce, blog post notifications & more

500K 3 CVEs

MailerLite – WooCommerce integration

woo-mailerlite

Powerful e-commerce email marketing tools that are easy to use. Grow your store with automated emails, pop-ups, product blocks, sales tracking + more.

30K 4 CVEs

Brevo for WooCommerce

woocommerce-sendinblue-newsletter-subscription

All-in-one WooCommerce email marketing, automation, SMS, and CRM by Brevo. Grow your store with powerful marketing tools.

30K 3 CVEs

Jetpack CRM – Clients, Leads, Invoices, Billing, Email Marketing, & Automation

zero-bs-crm

The CRM for small businesses. Manage leads, invoicing, billing, email marketing, clients, contacts, quotes, automation. Works with WooCommerce too.

30K 8 CVEs

Bit integrations – Easy Automator with no-code automation, integrate Webhook and automate 300+ Platform

bit-integrations

Perfect Automation and integration plugin: Connect 300+ platforms and automate CRM, Email marketing tools, Google Sheets, Contact forms, LMS and more

20K 1 CVE

Developer Profile

Order Daemon for WooCommerce Developer Profile

Order Daemon

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Order Daemon for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/order-daemon/assets/css/odcm-admin-main.css/wp-content/plugins/order-daemon/assets/css/odcm-frontend-main.css/wp-content/plugins/order-daemon/assets/js/odcm-app.js/wp-content/plugins/order-daemon/assets/js/odcm-frontend.js/wp-content/plugins/order-daemon/assets/js/odcm-vendors.js

Script Paths

/wp-content/plugins/order-daemon/assets/js/odcm-app.js/wp-content/plugins/order-daemon/assets/js/odcm-frontend.js/wp-content/plugins/order-daemon/assets/js/odcm-vendors.js

Version Parameters

/wp-content/plugins/order-daemon/assets/css/odcm-admin-main.css?ver=/wp-content/plugins/order-daemon/assets/css/odcm-frontend-main.css?ver=/wp-content/plugins/order-daemon/assets/js/odcm-app.js?ver=/wp-content/plugins/order-daemon/assets/js/odcm-frontend.js?ver=/wp-content/plugins/order-daemon/assets/js/odcm-vendors.js?ver=

HTML / DOM Fingerprints

CSS Classes

odcm-admin-wrapperodcm-rule-builder-appodcm-completion-rule-list-table

Data Attributes

data-odcm-rule-builderdata-odcm-rule-builder-settings

JS Globals

odcmAppodcmFrontendApp

REST Endpoints

/wp-json/odcm/v1/rules/wp-json/odcm/v1/rule/wp-json/odcm/v1/rule/settings/wp-json/odcm/v1/logs

FAQ