Does PrecisoBid-SmartForMerchant have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is PrecisoBid-SmartForMerchant compatible with WordPress 6.3.8?

According to WordPress.org data, PrecisoBid-SmartForMerchant 1.0.9 has been tested up to WordPress 6.3.8. Check the plugin's changelog for the latest compatibility information.

Is PrecisoBid-SmartForMerchant compatible with PHP 7.2+?

PrecisoBid-SmartForMerchant requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is PrecisoBid-SmartForMerchant updated?

PrecisoBid-SmartForMerchant was last updated on May 16, 2024. Frequent updates are generally a positive security signal.

What is PrecisoBid-SmartForMerchant's security score?

PrecisoBid-SmartForMerchant has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

PrecisoBid-SmartForMerchant Security & Risk Analysis

wordpress.org/plugins/precisobid-smartformerchant

PrecisoBid-SmartForMerchant plugin is developed for small and medium merchants, Preciso puts big brand capability at your fingertips.

0 active installs v1.0.9 PHP 7.2+ WP 5.2+ Updated May 16, 2024

precisowoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is PrecisoBid-SmartForMerchant Safe to Use in 2026?

Generally Safe

Score 92/100

PrecisoBid-SmartForMerchant has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The plugin "precisobid-smartformerchant" v1.0.9 exhibits a generally good security posture, particularly in its diligent output escaping and lack of critical taint flows or dangerous functions. The code analysis indicates a strong adherence to secure coding practices regarding output handling, which is a significant strength. The absence of known vulnerabilities in its history further reinforces this positive impression.

However, the plugin does present a notable concern with its AJAX handlers. Specifically, 4 out of 32 AJAX handlers lack authentication checks. This creates a potential attack surface where unauthenticated users could trigger actions within the plugin, potentially leading to unintended consequences or information disclosure depending on the specific functionality of these handlers. While raw SQL queries are present, their low number and the absence of critical taint flows suggest the risk might be contained, but this still warrants attention.

In conclusion, "precisobid-smartformerchant" v1.0.9 has several strong security features, but the unprotected AJAX endpoints are a clear weakness that could be exploited. Addressing these unauthenticated entry points should be the priority to significantly improve its security. The lack of past vulnerabilities is a positive sign, but the current findings necessitate careful review and remediation of the identified access control issues.

Key Concerns

Unprotected AJAX handlers
SQL queries without prepared statements

Vulnerabilities

None known

PrecisoBid-SmartForMerchant Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

PrecisoBid-SmartForMerchant Release Timeline

v1.1.0

v1.0.9Current

v1.0.8

v1.0.7

v1.0.6

v1.0.5

v1.0.4

Code Analysis

Analyzed Mar 17, 2026

PrecisoBid-SmartForMerchant Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

344 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared2 total queries

Output Escaping

100% escaped344 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

10 flows

Preciso_Set_Login_details (inc\customfunction.php:16)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

PrecisoBid-SmartForMerchant Attack Surface

Entry Points32

Unprotected4

AJAX Handlers 32

authwp_ajax_Preciso_Set_Login_detailsinc\customfunction.php:41

noprivwp_ajax_Preciso_Set_Login_detailsinc\customfunction.php:42

authwp_ajax_preciso_unset_plugin_settingsinc\customfunction.php:74

noprivwp_ajax_preciso_unset_plugin_settingsinc\customfunction.php:75

authwp_ajax_Preciso_Set_User_registeredinc\customfunction.php:120

noprivwp_ajax_Preciso_Set_User_registeredinc\customfunction.php:121

authwp_ajax_Preciso_Set_User_logininc\customfunction.php:149

noprivwp_ajax_Preciso_Set_User_logininc\customfunction.php:150

authwp_ajax_Preciso_Set_Session_logininc\customfunction.php:190

noprivwp_ajax_Preciso_Set_Session_logininc\customfunction.php:191

authwp_ajax_Preciso_Set_Session_destroyinc\customfunction.php:223

noprivwp_ajax_Preciso_Set_Session_destroyinc\customfunction.php:224

authwp_ajax_preciso_logoutinc\customfunction.php:238

noprivwp_ajax_preciso_logoutinc\customfunction.php:239

authwp_ajax_preciso_set_205inc\customfunction.php:255

noprivwp_ajax_preciso_set_205inc\customfunction.php:256

authwp_ajax_Preciso_Set_Login_detailstrunk\inc\customfunction.php:41

noprivwp_ajax_Preciso_Set_Login_detailstrunk\inc\customfunction.php:42

authwp_ajax_preciso_unset_plugin_settingstrunk\inc\customfunction.php:74

noprivwp_ajax_preciso_unset_plugin_settingstrunk\inc\customfunction.php:75

authwp_ajax_Preciso_Set_User_registeredtrunk\inc\customfunction.php:120

noprivwp_ajax_Preciso_Set_User_registeredtrunk\inc\customfunction.php:121

authwp_ajax_Preciso_Set_User_logintrunk\inc\customfunction.php:149

noprivwp_ajax_Preciso_Set_User_logintrunk\inc\customfunction.php:150

authwp_ajax_Preciso_Set_Session_logintrunk\inc\customfunction.php:190

noprivwp_ajax_Preciso_Set_Session_logintrunk\inc\customfunction.php:191

authwp_ajax_Preciso_Set_Session_destroytrunk\inc\customfunction.php:223

noprivwp_ajax_Preciso_Set_Session_destroytrunk\inc\customfunction.php:224

authwp_ajax_preciso_logouttrunk\inc\customfunction.php:238

noprivwp_ajax_preciso_logouttrunk\inc\customfunction.php:239

authwp_ajax_preciso_set_205trunk\inc\customfunction.php:255

noprivwp_ajax_preciso_set_205trunk\inc\customfunction.php:256

WordPress Hooks 16

actionadmin_menuinc\settings.php:45

actionadmin_enqueue_scriptspreciso-bid-smart-for-merchant.php:118

actionwp_enqueue_scriptspreciso-bid-smart-for-merchant.php:120

actionwp_footerpreciso-bid-smart-for-merchant.php:164

actionwp_footerpreciso-bid-smart-for-merchant.php:220

actionwp_footerpreciso-bid-smart-for-merchant.php:286

actionwp_footerpreciso-bid-smart-for-merchant.php:362

actionadmin_headpreciso-bid-smart-for-merchant.php:444

actionadmin_menutrunk\inc\settings.php:45

actionadmin_enqueue_scriptstrunk\preciso-bid-smart-for-merchant.php:118

actionwp_enqueue_scriptstrunk\preciso-bid-smart-for-merchant.php:120

actionwp_footertrunk\preciso-bid-smart-for-merchant.php:164

actionwp_footertrunk\preciso-bid-smart-for-merchant.php:220

actionwp_footertrunk\preciso-bid-smart-for-merchant.php:286

actionwp_footertrunk\preciso-bid-smart-for-merchant.php:362

actionadmin_headtrunk\preciso-bid-smart-for-merchant.php:444

Maintenance & Trust

PrecisoBid-SmartForMerchant Maintenance & Trust

Maintenance Signals

WordPress version tested6.3.8

Last updatedMay 16, 2024

PHP min version7.2

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

PrecisoBid-SmartForMerchant Alternatives

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 59 CVEs

Limit Login Attempts Reloaded – Login Security, 2FA, Brute Force Protection & Firewall

limit-login-attempts-reloaded

Stop password guessing attacks, secure WooCommerce, block bad IPs, block by countries (Pro), and add email 2FA. Lightweight with better performance.

2.0M 4 CVEs

Google for WooCommerce

google-listings-and-ads

Native integration with Google that allows merchants to easily display their products across Google’s network.

900K 1 CVE

WooPayments: Integrated WooCommerce Payments

woocommerce-payments

Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.

900K 7 CVEs

WooCommerce PayPal Payments

woocommerce-paypal-payments

100

PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.

800K 1 CVE

Developer Profile

PrecisoBid-SmartForMerchant Developer Profile

preciso

2 plugins · 0 total installs

trust score

Avg Security Score

96/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect PrecisoBid-SmartForMerchant

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/precisobid-smart-for-merchant/assets/css/bootstrap.min.css/wp-content/plugins/precisobid-smart-for-merchant/assets/css/style.css/wp-content/plugins/precisobid-smart-for-merchant/assets/css/Chart.min.css/wp-content/plugins/precisobid-smart-for-merchant/assets/css/dashboardstyle.css/wp-content/plugins/precisobid-smart-for-merchant/assets/css/font-awesome.css/wp-content/plugins/precisobid-smart-for-merchant/assets/css/shopifyreset.css/wp-content/plugins/precisobid-smart-for-merchant/assets/js/Chart.min.js/wp-content/plugins/precisobid-smart-for-merchant/assets/js/bootstrap.min.js

Script Paths

//cdn.preciso.net/aud/shopify/main-min-preciso.js

Version Parameters

preciso-bootstrap-min-css?ver=5.3.0preciso-css?ver=1.0.0123preciso-chart-min-css?ver=1.0preciso-dashboardstyle-css?ver=1.12preciso-font-awesome-min-css?ver=1.0preciso-shopifyreset-css?ver=1.0.01preciso-chart-min-js?ver=4.1.1bootstrap-js?ver=5.3.0

HTML / DOM Fingerprints

HTML Comments

+2 more

Data Attributes

id="madv2014rtg"

JS Globals

preciso_ajax_urlrtgsettings

FAQ