Send Custom Fields From WooCommerce to Active Campaign Security & Risk Analysis
wordpress.org/plugins/send-custom-fields-from-store-to-active-campaignThis plugin sends custom fields from WooCommerce orders into Active Campaign contacts.
Is Send Custom Fields From WooCommerce to Active Campaign Safe to Use in 2026?
Generally Safe
Score 85/100Send Custom Fields From WooCommerce to Active Campaign has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The plugin "send-custom-fields-from-store-to-active-campaign" v1.0.0 exhibits a generally strong security posture with several positive indicators. The absence of any known CVEs, critical or high-severity taint flows, and the consistent use of prepared statements for SQL queries are significant strengths. The plugin also appears to have a very small attack surface, with no AJAX handlers, REST API routes, shortcodes, or cron events directly exposed, which is excellent for limiting potential entry points. However, there are areas for concern. The lack of any nonce checks and capability checks, coupled with a significant percentage of unescaped output, presents a notable risk. While the taint analysis didn't reveal critical or high severity issues, the presence of unsanitized paths in all analyzed flows suggests potential for vulnerabilities if malicious input were to reach these paths, especially given the lack of proper authorization and validation mechanisms.
Key Concerns
- No nonce checks present
- No capability checks present
- Significant percentage of unescaped output
- Unsanitized paths in all taint flows
Send Custom Fields From WooCommerce to Active Campaign Security Vulnerabilities
Send Custom Fields From WooCommerce to Active Campaign Code Analysis
SQL Query Safety
Output Escaping
Data Flow Analysis
Send Custom Fields From WooCommerce to Active Campaign Attack Surface
WordPress Hooks 1
Maintenance & Trust
Send Custom Fields From WooCommerce to Active Campaign Maintenance & Trust
Maintenance Signals
Community Trust
Send Custom Fields From WooCommerce to Active Campaign Alternatives
Data Sync with ActiveCampaign for WooCommerce
data-sync-for-woocommerce-with-activecampaign
WooCommerce data synchronization with ActiveCampaign
Essential Addons for Elementor – Popular Elementor Templates & Widgets
essential-addons-for-elementor-lite
Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.
Google for WooCommerce
google-listings-and-ads
Native integration with Google that allows merchants to easily display their products across Google’s network.
WooPayments: Integrated WooCommerce Payments
woocommerce-payments
Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.
WooCommerce PayPal Payments
woocommerce-paypal-payments
PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.
Send Custom Fields From WooCommerce to Active Campaign Developer Profile
1 plugin · 10 total installs
How We Detect Send Custom Fields From WooCommerce to Active Campaign
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
HTML / DOM Fingerprints
wp-list-tablewidefatfixedstripedpagesdata-ac-custom-field-idname="ac_api_key"name="ac_base_url"name="delete_key"