WP-Safety

Profitblue – Financial reporting for WooCommerce Security & Risk Analysis

wordpress.org/plugins/profitblue-financial-reporting-for-woocommerce

Profitblue is an advanced financial reporting tool for WooCommerce. With this tool, even small and medium-sized companies can measure their profit.

10 active installs v1.1.0 PHP 7.4.0+ WP 6.2+ Updated Jan 26, 2026
cogsmarginprofitreportingwoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Profitblue – Financial reporting for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Profitblue – Financial reporting for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The plugin "profitblue-financial-reporting-for-woocommerce" v1.1.0 exhibits a mixed security posture. On the positive side, it demonstrates good practices in its SQL query handling, with an overwhelming majority (99%) using prepared statements, and it has a clean vulnerability history with no recorded CVEs. The absence of external HTTP requests and a relatively low number of file operations are also strengths. However, significant concerns arise from the attack surface analysis. A substantial number of AJAX handlers (34 out of 37) lack authentication checks, creating a large potential entry point for malicious actors. Furthermore, the taint analysis reveals 23 flows with unsanitized paths, including two classified as high severity, indicating potential vulnerabilities where user-supplied data could be manipulated or lead to unintended code execution. While there are no current unpatched CVEs, the presence of high-severity taint flows suggests an internal risk that needs immediate attention. The lack of capability checks on AJAX handlers is a critical oversight. The plugin's strengths in SQL and its clean CVE history are overshadowed by the numerous unprotected AJAX endpoints and the identified taint flows.

Key Concerns

  • Large attack surface without auth on AJAX
  • High severity taint flows with unsanitized paths
  • Missing capability checks on AJAX handlers
  • Flows with unsanitized paths (23 total)
  • Output escaping: 22% not properly escaped
Vulnerabilities
None known

Profitblue – Financial reporting for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Profitblue – Financial reporting for WooCommerce Release Timeline

v1.1.0Current
v1.0.9
v1.0.8
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
Code Analysis
Analyzed Mar 16, 2026

Profitblue – Financial reporting for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
4
792 prepared
Unescaped Output
338
1172 escaped
Nonce Checks
37
Capability Checks
0
File Operations
4
External Requests
0
Bundled Libraries
1

Bundled Libraries

Select2

SQL Query Safety

99% prepared796 total queries

Output Escaping

78% escaped1510 total outputs
Data Flows
23 unsanitized

Data Flow Analysis

25 flows23 with unsanitized paths
render (src\Admin\AdminPage.php:36)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
34 unprotected

Profitblue – Financial reporting for WooCommerce Attack Surface

Entry Points37
Unprotected34

AJAX Handlers 37

authwp_ajax_save_shipping_costssrc\Admin\AjaxActions.php:54
authwp_ajax_render_shipping_costssrc\Admin\AjaxActions.php:55
authwp_ajax_save_cogs_custom_periodsrc\Admin\AjaxActions.php:56
authwp_ajax_save_cogs_products_datasrc\Admin\AjaxActions.php:57
authwp_ajax_create_cogs_products_datasrc\Admin\AjaxActions.php:58
authwp_ajax_cogs_get_modalsrc\Admin\AjaxActions.php:59
authwp_ajax_get_fixed_linesrc\Admin\AjaxActions.php:60
authwp_ajax_get_variable_linesrc\Admin\AjaxActions.php:61
authwp_ajax_get_income_linesrc\Admin\AjaxActions.php:62
authwp_ajax_save_acci_datasrc\Admin\AjaxActions.php:63
authwp_ajax_save_payments_custom_periodsrc\Admin\AjaxActions.php:64
authwp_ajax_save_shipping_custom_periodsrc\Admin\AjaxActions.php:65
authwp_ajax_delete_shipping_datasrc\Admin\AjaxActions.php:66
authwp_ajax_save_payments_datasrc\Admin\AjaxActions.php:67
authwp_ajax_delete_payments_datasrc\Admin\AjaxActions.php:68
authwp_ajax_save_notifications_datasrc\Admin\AjaxActions.php:69
authwp_ajax_save_shop_settingsrc\Admin\AjaxActions.php:70
authwp_ajax_save_shop_setting_custom_periodsrc\Admin\AjaxActions.php:71
authwp_ajax_process_cogs_batchsrc\Admin\AjaxActions.php:72
authwp_ajax_delete_cogs_datasrc\Admin\AjaxActions.php:73
authwp_ajax_recalculate_orders_datasrc\Admin\AjaxActions.php:75
authwp_ajax_get_best_seller_productsrc\Admin\AjaxActions.php:76
authwp_ajax_get_overwiev_category_datasrc\Admin\AjaxActions.php:77
authwp_ajax_load_more_orderssrc\Admin\AjaxActions.php:78
authwp_ajax_save_wizard_stepsrc\Admin\AjaxActions.php:80
authwp_ajax_save_wizard_endsrc\Admin\AjaxActions.php:81
authwp_ajax_load_more_cogssrc\Admin\AjaxActions.php:83
authwp_ajax_load_more_productssrc\Admin\AjaxActions.php:84
authwp_ajax_load_more_product_orderssrc\Admin\AjaxActions.php:85
authwp_ajax_update_order_shipping_paymentsrc\Admin\AjaxActions.php:87
authwp_ajax_create_orders_datasrc\Admin\AjaxActions.php:88
authwp_ajax_save_last_year_ccai_datasrc\Admin\AjaxActions.php:90
authwp_ajax_products_get_modalsrc\Admin\AjaxActions.php:92
authwp_ajax_orders_get_modalsrc\Admin\AjaxActions.php:93
authwp_ajax_create_productssrc\Admin\AjaxActions.php:95
authwp_ajax_profitblue_installsrc\Admin\AjaxActions.php:97
authwp_ajax_profitblue_create_missing_orderssrc\Admin\AjaxActions.php:98
WordPress Hooks 30
actionplugins_loadedprofitblue.php:50
actioninitprofitblue.php:527
actioninitprofitblue.php:528
actiontemplate_redirectprofitblue.php:529
actionwoocommerce_order_status_changedprofitblue.php:533
actioninitprofitblue.php:535
filterwoocommerce_email_classesprofitblue.php:536
filterwoocommerce_locate_templateprofitblue.php:537
actionwoocommerce_after_order_object_saveprofitblue.php:538
actionprofitblue_calculate_orderprofitblue.php:539
actionwoocommerce_delete_orderprofitblue.php:541
actionprofitblue_delete_orderprofitblue.php:542
actionbefore_woocommerce_initprofitblue.php:544
filterwoocommerce_order_data_store_cpt_get_orders_queryprofitblue.php:901
actionadmin_menusrc\ProfitBlueAdmin.php:70
filterplugin_row_metasrc\ProfitBlueAdmin.php:72
filterplugin_action_linkssrc\ProfitBlueAdmin.php:73
filterplugin_action_linkssrc\ProfitBlueAdmin.php:74
actionadmin_enqueue_scriptssrc\ProfitBlueAdmin.php:77
actionadmin_enqueue_scriptssrc\ProfitBlueAdmin.php:78
actionadmin_footersrc\ProfitBlueAdmin.php:80
actionadmin_initsrc\ProfitBlueAdmin.php:81
actionadmin_headsrc\ProfitBlueAdmin.php:83
actionadmin_footersrc\ProfitBlueAdmin.php:84
actionwoocommerce_new_productsrc\ProfitBlueAdmin.php:86
actionwoocommerce_new_product_variationsrc\ProfitBlueAdmin.php:87
actionwoocommerce_update_productsrc\ProfitBlueAdmin.php:88
actionwoocommerce_update_product_variationsrc\ProfitBlueAdmin.php:89
actionadmin_initsrc\ProfitBlueAdmin.php:90
actionadmin_initsrc\Settings.php:29
Maintenance & Trust

Profitblue – Financial reporting for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedJan 26, 2026
PHP min version7.4.0
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Profitblue – Financial reporting for WooCommerce Alternatives

Quarkcode NeuralCommerce Lite – Profit Analytics & Cost Intelligence Hub

Quarkcode NeuralCommerce Lite – Profit Analytics & Cost Intelligence Hub

quarkcode-neuralcommerce-lite

A
100

Accurate WooCommerce profit analytics by tracking real costs, margins, and net profit — not just revenue.

0 No CVEs
Profit Margin Calculator for WooCommerce

Profit Margin Calculator for WooCommerce

profit-margin-calculator

A
100

A lightweight, easy-to-use WooCommerce extension that calculates product profit and profit margins automatically.

10 No CVEs
Advanced COGS & Profit for WooCommerce

Advanced COGS & Profit for WooCommerce

advanced-cogs-profit-for-woocommerce

A
100

Unlock profit insights for your WooCommerce store. This plugin extends WooCommerce's native Cost of Goods Sold (COGS) functionality, allowing you …

0 No CVEs
Alpha Insights – Advanced Analytics, Sales Reporting & COGS for WooCommerce

Alpha Insights – Advanced Analytics, Sales Reporting & COGS for WooCommerce

alpha-insights-sales-report-builder-analytics-for-woocommerce

A
100

Advanced WooCommerce analytics plugin for profit reporting, traffic insights, cost of goods (COGS), and custom sales reports.

0 No CVEs
Cost of Goods: Product Cost & Profit Calculator for WooCommerce

Cost of Goods: Product Cost & Profit Calculator for WooCommerce

cost-of-goods-for-woocommerce

A
96

Unlock detailed insights into products profitability, calculate COGS & profit margins, and get a better financial analytics insights with our Cost …

10K 4 CVEs
Developer Profile

Profitblue – Financial reporting for WooCommerce Developer Profile

Profitblue

1 plugin · 10 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Profitblue – Financial reporting for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/css/admin.css/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/css/backend.css/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/css/backend_reports.css/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/css/frontend.css/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/js/admin.js/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/js/backend.js/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/js/frontend.js
Version Parameters
/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/css/admin.css?ver=/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/css/backend.css?ver=/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/css/backend_reports.css?ver=/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/css/frontend.css?ver=/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/js/admin.js?ver=/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/js/backend.js?ver=/wp-content/plugins/profitblue-financial-reporting-for-woocommerce/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
profitblue_ccaiprofitblue-logoprofitblue-main-wrapprofitblue-page-titleprofitblue-tabs-menuprofitblue-form-fieldprofitblue-report-chartprofitblue-data-table+1 more
Data Attributes
data-profitblue-id
JS Globals
profitblue_admin_objectprofitblue_frontend_object
REST Endpoints
/wp-json/profitblue/v1/reports/wp-json/profitblue/v1/orders/wp-json/profitblue/v1/settings
Shortcode Output
[profitblue_report][profitblue_sales_overview][profitblue_order_list]
FAQ

Frequently Asked Questions about Profitblue – Financial reporting for WooCommerce