WP-Safety

PDF Invoice & Packing Slip Generator Lite For WooCommerce Security & Risk Analysis

wordpress.org/plugins/pdf-invoice-packing-slip-generator-lite-for-woocommerce

Automatic PDF Invoice generation, Packing Slip & Shipping Label for WooCommerce orders in a robust & eminent plugin to boost WooCommerce online stores

100 active installs v1.3.3 PHP + WP 3.0.1+ Updated Dec 19, 2025
invoiceinvoice-generatorpdfshipping-labelwoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is PDF Invoice & Packing Slip Generator Lite For WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

PDF Invoice & Packing Slip Generator Lite For WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago
Risk Assessment

The static analysis of "pdf-invoice-packing-slip-generator-lite-for-woocommerce" v1.3.3 reveals a generally good security posture with several strong practices in place. The plugin demonstrates a commitment to secure coding by utilizing prepared statements for all SQL queries and a high percentage of properly escaped output. The absence of any recorded CVEs, unpatched vulnerabilities, or common vulnerability types in its history suggests a mature and well-maintained codebase.

However, there are a few areas of concern. The presence of two instances of the `unserialize` function, especially without explicit mention of sanitization, poses a potential risk. Additionally, four flows with unsanitized paths identified by the taint analysis, while not classified as critical or high severity, warrant further investigation as they represent potential avenues for unexpected behavior or privilege escalation if exploited.

The plugin's attack surface appears minimal based on the provided data, with no AJAX handlers, REST API routes, shortcodes, or cron events exposed without authentication or permission checks. The file operations and external HTTP requests are also within reasonable bounds. While the lack of capability checks is a weakness, the limited attack surface may mitigate some of the risk. Overall, the plugin is strong in its handling of data and its limited attack surface, but the identified `unserialize` usage and unsanitized paths introduce a calculated risk that should be addressed.

Key Concerns

  • Dangerous function: unserialize used
  • Taint analysis: 4 flows with unsanitized paths
  • Capability checks: 0
Vulnerabilities
None known

PDF Invoice & Packing Slip Generator Lite For WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

PDF Invoice & Packing Slip Generator Lite For WooCommerce Code Analysis

Dangerous Functions
2
Raw SQL Queries
0
1 prepared
Unescaped Output
48
864 escaped
Nonce Checks
27
Capability Checks
0
File Operations
87
External Requests
3
Bundled Libraries
1

Dangerous Functions Found

unserialize$rtwcpiglw_mpdf = new \Mpdf\Mpdf( ['mode' => 'utf-8', 'format' => unserialize( $rtwcpiglw_page_size includes\rtwcpiglw_general_function.php:1930
unserialize$rtwcpiglw_mpdf = new \Mpdf\Mpdf( ['mode' => 'utf-8', 'format' => unserialize( $rtwcpiglw_page_size includes\rtwcpiglw_general_function.php:2930

Bundled Libraries

TCPDF

SQL Query Safety

100% prepared1 total queries

Output Escaping

95% escaped912 total outputs
Data Flows
4 unsanitized

Data Flow Analysis

8 flows4 with unsanitized paths
rtwcpiglw_invoice_regenerate_callback (admin\rtwcpiglw-class-woocommerce-pdf-invoice-generator-admin.php:315)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

PDF Invoice & Packing Slip Generator Lite For WooCommerce Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 3
actionbefore_woocommerce_initrtwcpiglw-woocommerce-pdf-invoice-generator.php:62
actionadmin_noticesrtwcpiglw-woocommerce-pdf-invoice-generator.php:187
actionadmin_initrtwcpiglw-woocommerce-pdf-invoice-generator.php:189
Maintenance & Trust

PDF Invoice & Packing Slip Generator Lite For WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 19, 2025
PHP min version
Downloads4K

Community Trust

Rating100/100
Number of ratings5
Active installs100
Alternatives

PDF Invoice & Packing Slip Generator Lite For WooCommerce Alternatives

WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes & Shipping Labels

WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes & Shipping Labels

print-invoices-packing-slip-labels-for-woocommerce

A
96

Auto-generate and attach WooCommerce PDF invoices and packing slips to order emails with customizable templates & bulk print options.

60K 6 CVEs
PDF Invoices & Packing Slips for WooCommerce – Challan

PDF Invoices & Packing Slips for WooCommerce – Challan

webappick-pdf-invoice-for-woocommerce

A
97

WooCommerce PDF invoice generator with automatic email attachment. Create packing slips, shipping labels, credit notes, multilingual.

3K 2 CVEs
PDF Invoices & Packing Slips for WooCommerce

PDF Invoices & Packing Slips for WooCommerce

woocommerce-pdf-invoices-packing-slips

A
88

Create, print & automatically email PDF or XML Invoices & PDF Packing Slips for WooCommerce orders.

300K 12 CVEs
Print Invoice & Delivery Notes for WooCommerce

Print Invoice & Delivery Notes for WooCommerce

woocommerce-delivery-notes

A
89

Create and print PDF invoices, delivery notes and receipts for your WooCommerce orders. Choose your document format from multiple templates.

30K 8 CVEs
Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools

Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools

woocommerce-jetpack

B
82

Supercharge WooCommerce with FREE Abandoned Cart Recovery, Product Variation Swatches, PDF Invoices & 100+ tools. Boost sales & save time.

30K 31 CVEs
Developer Profile

PDF Invoice & Packing Slip Generator Lite For WooCommerce Developer Profile

RedefiningTheWeb

6 plugins · 2K total installs

76
trust score
Avg Security Score
96/100
Avg Patch Time
180 days
View full developer profile
Detection Fingerprints

How We Detect PDF Invoice & Packing Slip Generator Lite For WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/pdf-invoice-packing-slip-generator-lite-for-woocommerce/assets/css/rtwcpiglw-admin-style.css/wp-content/plugins/pdf-invoice-packing-slip-generator-lite-for-woocommerce/assets/css/rtwcpiglw-frontend.css/wp-content/plugins/pdf-invoice-packing-slip-generator-lite-for-woocommerce/assets/js/rtwcpiglw-admin-script.js/wp-content/plugins/pdf-invoice-packing-slip-generator-lite-for-woocommerce/assets/js/rtwcpiglw-frontend.js
Script Paths
/wp-content/plugins/pdf-invoice-packing-slip-generator-lite-for-woocommerce/assets/js/rtwcpiglw-admin-script.js/wp-content/plugins/pdf-invoice-packing-slip-generator-lite-for-woocommerce/assets/js/rtwcpiglw-frontend.js
Version Parameters
pdf-invoice-packing-slip-generator-lite-for-woocommerce/assets/css/rtwcpiglw-admin-style.css?ver=pdf-invoice-packing-slip-generator-lite-for-woocommerce/assets/css/rtwcpiglw-frontend.css?ver=pdf-invoice-packing-slip-generator-lite-for-woocommerce/assets/js/rtwcpiglw-admin-script.js?ver=pdf-invoice-packing-slip-generator-lite-for-woocommerce/assets/js/rtwcpiglw-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
rtwcpiglw_error_notice
FAQ

Frequently Asked Questions about PDF Invoice & Packing Slip Generator Lite For WooCommerce