Does Order Picking For WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Order Picking For WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Order Picking For WooCommerce compatible with WordPress 6.8.5?

According to WordPress.org data, Order Picking For WooCommerce 1.0.6 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Order Picking For WooCommerce compatible with PHP 5.6+?

Order Picking For WooCommerce requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Order Picking For WooCommerce updated?

Order Picking For WooCommerce was last updated on May 17, 2025. Frequent updates are generally a positive security signal.

What is Order Picking For WooCommerce's security score?

Order Picking For WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Order Picking For WooCommerce Security & Risk Analysis

wordpress.org/plugins/order-picking-for-woocommerce

Order picking done right, every time.

60 active installs v1.0.6 PHP 5.6+ WP 4.5+ Updated May 17, 2025

deliveryfulfillmentorder-pickingwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Order Picking For WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Order Picking For WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10mo ago

Risk Assessment

The "order-picking-for-woocommerce" plugin version 1.0.6 exhibits a mixed security posture. On the positive side, it demonstrates good practices by avoiding dangerous functions, file operations, and external HTTP requests. All SQL queries are properly prepared, and a high percentage of output is correctly escaped, indicating a developer awareness of common web vulnerabilities. The absence of known CVEs and vulnerability history is also a reassuring sign of general security consciousness.

However, a significant concern arises from the plugin's attack surface. With a total of 2 entry points, both identified as AJAX handlers, and critically, neither of them have authentication checks. This creates a direct pathway for unauthenticated users to interact with potentially sensitive plugin functionality, posing a substantial risk of unauthorized actions or information disclosure. While taint analysis shows no critical or high-severity flows, the lack of authorization on these AJAX handlers is a fundamental security oversight.

The plugin's strengths lie in its secure coding practices for data handling and output. Yet, the unprotected AJAX endpoints represent a significant vulnerability that could be exploited if any functionality behind these handlers can be manipulated by unauthenticated users. The presence of nonce checks on some actions is positive, but their absence on these critical AJAX handlers is a notable weakness.

Key Concerns

Unprotected AJAX handlers

Vulnerabilities

None known

Order Picking For WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Order Picking For WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

96 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Freemius1.0

Output Escaping

81% escaped118 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

opfw_ajax (admin\class-order-picking-for-woocommerce-admin.php:465)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

Order Picking For WooCommerce Attack Surface

Entry Points2

Unprotected2

AJAX Handlers 2

authwp_ajax_opfw_ajaxincludes\class-order-picking-for-woocommerce.php:173

noprivwp_ajax_opfw_ajaxincludes\class-order-picking-for-woocommerce.php:174

WordPress Hooks 29

actionadmin_enqueue_scriptsincludes\class-order-picking-for-woocommerce.php:155

actionadmin_enqueue_scriptsincludes\class-order-picking-for-woocommerce.php:156

actionadmin_menuincludes\class-order-picking-for-woocommerce.php:160

actionadmin_initincludes\class-order-picking-for-woocommerce.php:169

actionwoocommerce_shop_order_list_table_custom_columnincludes\class-order-picking-for-woocommerce.php:179

filterwoocommerce_shop_order_list_table_columnsincludes\class-order-picking-for-woocommerce.php:186

filtermanage_woocommerce_page_wc-orders_sortable_columnsincludes\class-order-picking-for-woocommerce.php:192

actionwoocommerce_order_list_table_restrict_manage_ordersincludes\class-order-picking-for-woocommerce.php:196

actionwoocommerce_order_list_table_prepare_items_query_argsincludes\class-order-picking-for-woocommerce.php:203

filterhandle_bulk_actions-woocommerce_page_wc-ordersincludes\class-order-picking-for-woocommerce.php:207

filterbulk_actions-woocommerce_page_wc-ordersincludes\class-order-picking-for-woocommerce.php:214

actionwoocommerce_order_list_table_restrict_manage_ordersincludes\class-order-picking-for-woocommerce.php:224

actionmanage_shop_order_posts_custom_columnincludes\class-order-picking-for-woocommerce.php:235

filtermanage_edit-shop_order_columnsincludes\class-order-picking-for-woocommerce.php:242

filtermanage_edit-shop_order_sortable_columnsincludes\class-order-picking-for-woocommerce.php:248

filterhandle_bulk_actions-edit-shop_orderincludes\class-order-picking-for-woocommerce.php:252

filterbulk_actions-edit-shop_orderincludes\class-order-picking-for-woocommerce.php:259

actionrestrict_manage_postsincludes\class-order-picking-for-woocommerce.php:269

actionparse_queryincludes\class-order-picking-for-woocommerce.php:270

actionmanage_posts_extra_tablenavincludes\class-order-picking-for-woocommerce.php:274

filterwoocommerce_admin_order_actionsincludes\class-order-picking-for-woocommerce.php:285

actionwoocommerce_admin_order_data_after_order_detailsincludes\class-order-picking-for-woocommerce.php:295

actionwoocommerce_order_action_mark_awaiting_fulfillmentincludes\class-order-picking-for-woocommerce.php:302

actionwoocommerce_order_action_mark_cancel_fulfillmentincludes\class-order-picking-for-woocommerce.php:309

filterwoocommerce_order_actionsincludes\class-order-picking-for-woocommerce.php:316

actionbefore_woocommerce_initorder-picking-for-woocommerce.php:33

actionadmin_noticesorder-picking-for-woocommerce.php:143

actionplugins_loadedorder-picking-for-woocommerce.php:164

actionplugins_loadedorder-picking-for-woocommerce.php:179

Maintenance & Trust

Order Picking For WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedMay 17, 2025

PHP min version5.6

Downloads4K

Community Trust

Rating70/100

Number of ratings4

Active installs60

Alternatives

Order Picking For WooCommerce Alternatives

Order Product Picking For WooCommerce

order-product-picking-for-woocommerce

100

Streamline your WooCommerce store with Order Product Picking: guide staff to pick products accurately, manage inventory, and fulfill orders.

0 No CVEs

Hi Express for WooCommerce

hi-express-for-woocommerce

100

Integrate Hi Express shipping and delivery services with your WooCommerce store in Iraq.

0 No CVEs

Smart COD for WooCommerce

wc-smart-cod

100

All the COD restrictions and extra fees you'll ever need, in a single plugin.

30K No CVEs

Claudio Sanches – Correios for WooCommerce

woocommerce-correios

Integration between the Correios and WooCommerce

30K No CVEs

Print Invoice & Delivery Notes for WooCommerce

woocommerce-delivery-notes

Create and print PDF invoices, delivery notes and receipts for your WooCommerce orders. Choose your document format from multiple templates.

30K 8 CVEs

Developer Profile

Order Picking For WooCommerce Developer Profile

powerfulwp

8 plugins · 3K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

17 days

View full developer profile

Detection Fingerprints

How We Detect Order Picking For WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/order-picking-for-woocommerce/assets/css/order-picking-for-woocommerce-public.css/wp-content/plugins/order-picking-for-woocommerce/assets/js/order-picking-for-woocommerce-public.js/wp-content/plugins/order-picking-for-woocommerce/assets/css/order-picking-for-woocommerce-admin.css/wp-content/plugins/order-picking-for-woocommerce/assets/js/order-picking-for-woocommerce-admin.js

Script Paths

freemius/start.php

Version Parameters

order-picking-for-woocommerce/assets/css/order-picking-for-woocommerce-public.css?ver=order-picking-for-woocommerce/assets/js/order-picking-for-woocommerce-public.js?ver=order-picking-for-woocommerce/assets/css/order-picking-for-woocommerce-admin.css?ver=order-picking-for-woocommerce/assets/js/order-picking-for-woocommerce-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

opfw-notice-wrap

HTML Comments

+9 more

JS Globals

window.opfw_fs

FAQ