WP-Safety

QuoteCart Connector – Trade Quote Portal for WooCommerce Security & Risk Analysis

wordpress.org/plugins/quotecart-connector-for-woocommerce

Seamlessly connects WordPress and WooCommerce with QuoteCart, optimizing API performance for faster quote processing and order creation.

0 active installs v1.3.3 PHP 7.4+ WP 6.0+ Updated Feb 24, 2026
apiintegrationordersquoteswoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is QuoteCart Connector – Trade Quote Portal for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

QuoteCart Connector – Trade Quote Portal for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The plugin "quotecart-connector-for-woocommerce" v1.3.3 exhibits a generally strong security posture with excellent practices in output escaping (99%) and the significant use of prepared statements for SQL queries (76%). The absence of known CVEs and dangerous functions further contributes to this positive outlook. However, there are specific areas of concern that warrant attention. The presence of two REST API routes without permission callbacks represents a significant attack vector, as these endpoints could be accessed and potentially exploited by unauthenticated users. Additionally, the taint analysis revealed one high-severity flow with unsanitized paths, indicating a potential for injection vulnerabilities if this flow is not properly handled. While the plugin has a clean vulnerability history, the existence of these potential entry points and the high-severity taint flow suggest a need for immediate review and remediation.

Key Concerns

  • REST API routes without permission callbacks
  • High severity unsanitized taint flow
Vulnerabilities
None known

QuoteCart Connector – Trade Quote Portal for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

QuoteCart Connector – Trade Quote Portal for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
5
16 prepared
Unescaped Output
3
260 escaped
Nonce Checks
11
Capability Checks
2
File Operations
2
External Requests
12
Bundled Libraries
0

SQL Query Safety

76% prepared21 total queries

Output Escaping

99% escaped263 total outputs
Data Flows
9 unsanitized

Data Flow Analysis

9 flows9 with unsanitized paths
process_delete_quote (inc\class-shortcodes.php:424)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

QuoteCart Connector – Trade Quote Portal for WooCommerce Attack Surface

Entry Points10
Unprotected2

REST API Routes 4

POST/wp-json/quotecart/v1/create-orderinc\class-rest-api.php:28
GET/wp-json/quotecart/v1/trade-user/quotesinc\class-rest-api.php:39
GET/wp-json/quotecart/v1/trade-user/quotes/(?P<quote_id>[a-zA-Z0-9_-]+)inc\class-rest-api.php:56
PATCH/wp-json/quotecart/v1/trade-user/quotes/(?P<quote_id>[a-zA-Z0-9_-]+)/statusinc\class-rest-api.php:96

Shortcodes 6

[quotecart_login] inc\class-shortcodes.php:40
[quotecart_logout] inc\class-shortcodes.php:41
[quotecart_register] inc\class-shortcodes.php:42
[quotecart_quotes] inc\class-shortcodes.php:43
[quotecart_add_to_cart] inc\class-shortcodes.php:44
[quotecart_current] inc\class-shortcodes.php:45
WordPress Hooks 37
actionadmin_initinc\class-mu.php:23
actionrest_api_initinc\class-rest-api.php:18
actionadmin_menuinc\class-settings.php:18
actionadmin_initinc\class-settings.php:19
actioninitinc\class-shortcodes.php:18
actionwp_enqueue_scriptsinc\class-shortcodes.php:19
actionwoocommerce_single_product_summaryinc\class-shortcodes.php:20
actionwpinc\class-shortcodes.php:21
actionwpinc\class-shortcodes.php:22
actionwpinc\class-shortcodes.php:23
actionwpinc\class-shortcodes.php:24
actionwpinc\class-shortcodes.php:25
actionwpinc\class-shortcodes.php:26
actionwpinc\class-shortcodes.php:27
actionwpinc\class-shortcodes.php:28
actionwpinc\class-shortcodes.php:29
actionwpinc\class-shortcodes.php:30
actionwpinc\class-shortcodes.php:31
actionadmin_initinc\class-welcome.php:31
actionadmin_menuinc\class-welcome.php:32
actionadmin_headinc\class-welcome.php:33
actionadmin_print_scriptsinc\class-welcome.php:34
actioninitinc\class-woocommerce-account.php:30
filterquery_varsinc\class-woocommerce-account.php:31
filterwoocommerce_account_menu_itemsinc\class-woocommerce-account.php:32
actionupdate_option_quotecart_auto_display_quotes_in_woo_accountinc\class-woocommerce-account.php:34
actionwp_logininc\class-wp-auth.php:18
actioninitinc\class-wp-auth.php:19
actionwp_logoutinc\class-wp-auth.php:20
filtertemplatemu-quotecart-helper.php:45
filterstylesheetmu-quotecart-helper.php:46
filtersidebars_widgetsmu-quotecart-helper.php:49
filterwp_nav_menu_argsmu-quotecart-helper.php:52
actionmuplugins_loadedmu-quotecart-helper.php:60
actionplugins_loadedmu-quotecart-helper.php:61
actioninitmu-quotecart-helper.php:62
actionplugins_loadedquotecart-connector-for-woocommerce.php:37
Maintenance & Trust

QuoteCart Connector – Trade Quote Portal for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 24, 2026
PHP min version7.4
Downloads253

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

QuoteCart Connector – Trade Quote Portal for WooCommerce Alternatives

Wappbiz

Wappbiz

wappbiz

A
100

Advanced integration with the Wappbiz API for seamless WooCommerce order and cart synchronization.

0 No CVEs
Bit integrations – Easy Automator with no-code automation, integrate Webhook and automate 300+ Platform

Bit integrations – Easy Automator with no-code automation, integrate Webhook and automate 300+ Platform

bit-integrations

A
98

Perfect Automation and integration plugin: Connect 300+ platforms and automate CRM, Email marketing tools, Google Sheets, Contact forms, LMS and more

20K 1 CVE
Products and Orders Last Modified for WC REST API

Products and Orders Last Modified for WC REST API

products-and-orders-last-modified-for-wc-rest-api

A
85

Retrieve Last Modified Products and Orders via WooCommerce REST API

100 No CVEs
Webhook Helper

Webhook Helper

api2cart-webhook-helper

A
100

Enhance Your WooCommerce Integration with Extended Webhook Support

40 No CVEs
Orders Sync to Airtable for WooCommerce

Orders Sync to Airtable for WooCommerce

orders-sync-to-airtable-for-woocommerce

A
100

Sync WooCommerce orders to Airtable easily and efficiently.

20 No CVEs
Developer Profile

QuoteCart Connector – Trade Quote Portal for WooCommerce Developer Profile

ReplyBox

2 plugins · 70 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect QuoteCart Connector – Trade Quote Portal for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/quotecart-connector-for-woocommerce/assets/css/shortcodes.css/wp-content/plugins/quotecart-connector-for-woocommerce/assets/js/add-to-quote-variation.js
Script Paths
/wp-content/plugins/quotecart-connector-for-woocommerce/assets/js/add-to-quote-variation.js
Version Parameters
quotecart-connector-for-woocommerce/assets/css/shortcodes.css?ver=quotecart-connector-for-woocommerce/assets/js/add-to-quote-variation.js?ver=

HTML / DOM Fingerprints

Data Attributes
quotecart_loginquotecart_logoutquotecart_registerquotecart_quotesquotecart_add_to_cartquotecart_current+6 more
Shortcode Output
[quotecart_login][quotecart_logout][quotecart_register][quotecart_quotes]
FAQ

Frequently Asked Questions about QuoteCart Connector – Trade Quote Portal for WooCommerce