Does SEUR Oficial have any unpatched vulnerabilities?

No. All known vulnerabilities in SEUR Oficial have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is SEUR Oficial compatible with WordPress 6.9.4?

According to WordPress.org data, SEUR Oficial 2.2.29 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is SEUR Oficial updated?

SEUR Oficial was last updated on Feb 25, 2026. Frequent updates are generally a positive security signal.

What is SEUR Oficial's security score?

SEUR Oficial has a WP-Safety security score of 90/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SEUR Oficial Security & Risk Analysis

wordpress.org/plugins/seur

Add SEUR shipping method to WooCommerce. The SEUR plugin for WooCommerce allows you to manage your order dispatches in a fast and easy way

1K active installs v2.2.29 PHP + WP 4.0+ Updated Feb 25, 2026

enviar-paquetelogisticaseurshippingwoocommerce

A · Safe

CVEs total5

Unpatched0

Last CVEApr 25, 2025

Plugin page Download

Safety Verdict

Is SEUR Oficial Safe to Use in 2026?

Generally Safe

Score 90/100

SEUR Oficial has a strong security track record. Known vulnerabilities have been patched promptly.

5 known CVEsLast CVE: Apr 25, 2025Updated 1mo ago

Risk Assessment

The "seur" plugin exhibits a mixed security posture. While it demonstrates good practices like a high percentage of prepared SQL statements and properly escaped output, significant concerns arise from its attack surface and historical vulnerabilities. The presence of multiple unprotected AJAX handlers and a REST API route without permission callbacks creates clear entry points for unauthorized actions. The use of `unserialize` is a known dangerous function that, when not properly handled with input validation, can lead to remote code execution. The vulnerability history, with a past critical CVE and several high/medium severity issues including Remote File Inclusion and SQL Injection, indicates a pattern of past security weaknesses that required significant attention. These historical issues, coupled with the current lack of authentication on several entry points, suggest a plugin that has historically struggled with robust security controls.

Despite the positive aspects like a good rate of prepared SQL statements and output escaping, the identified risks are substantial. The 6 unprotected AJAX handlers are a direct invitation for various attacks if not adequately secured. The high severity taint flows, even though not classified as critical, signal potential for data manipulation or execution of unintended code. The plugin's past record of severe vulnerabilities, particularly Remote File Inclusion, warrants extreme caution. The conclusion is that "seur" has potential but requires immediate attention to its unprotected entry points and a thorough review of its `unserialize` usage to mitigate significant risks.

Key Concerns

Unprotected AJAX handlers present
Unprotected REST API route present
Dangerous function 'unserialize' used
High severity taint flows identified
Vulnerability history includes critical CVE
Vulnerability history includes high severity CVE
Bundled outdated library: Select2 v3.5.4
Bundled outdated library: TCPDF v1.0.004

Vulnerabilities

SEUR Oficial Security Vulnerabilities

CVEs by Year

1 CVE in 2021

2021

1 CVE in 2022

2022

2 CVEs in 2024

2024

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Critical

High

Medium

5 total CVEs

CVE-2025-46474critical · 9.8Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

SEUR Oficial <= 2.2.23 - Unauthenticated Local File Inclusion

Apr 25, 2025 Patched in 2.2.24 (13d)

CVE-2024-9438medium · 6.1Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)

SEUR Oficial <= 2.2.11 - Reflected Cross-Site Scripting

Oct 28, 2024 Patched in 2.2.12 (1d)

CVE-2024-9201high · 7.5Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

SEUR Oficial <= 2.2.10.2 - Unauthenticated SQL Injection

Oct 10, 2024 Patched in 2.2.11 (9d)

CVE-2021-25004medium · 4.9Files or Directories Accessible to External Parties

SEUR Oficial < 1.7.2 - Authenticated Arbitrary File Download

Jan 10, 2022 Patched in 1.7.2 (743d)

CVE-2021-25005medium · 4.8Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

SEUR Oficial <= 1.6.0 - Cross-Site Scripting

Dec 20, 2021 Patched in 1.7.0 (764d)

Code Analysis

Analyzed Mar 16, 2026

SEUR Oficial Code Analysis

Dangerous Functions

Raw SQL Queries

41 prepared

Unescaped Output

777 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$ecbs = unserialize($ecbs);core\labels-cpt\labels-cpt.php:475

Bundled Libraries

Select23.5.4DataTablesTCPDF1.0.004

SQL Query Safety

73% prepared56 total queries

Output Escaping

92% escaped842 total outputs

Data Flows

6 unsanitized

Data Flow Analysis

19 flows6 with unsanitized paths

seur_after_seur_2shop_shipping_rate (core\woocommerce\includes\class-seur_local_shipping_method.php:342)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

6 unprotected

SEUR Oficial Attack Surface

Entry Points8

Unprotected6

AJAX Handlers 6

authwp_ajax_seur_country_state_processcore\functions\functions.php:1532

noprivwp_ajax_seur_country_state_processcore\functions\functions.php:1533

authwp_ajax_seur_regenerate_upload_dircore\functions\functions.php:1708

authwp_ajax_seur_get_labelcore\woocommerce\includes\seur-woo-functions.php:474

authwp_ajax_woocommerce_save_order_itemscore\woocommerce\includes\seur-woo-functions.php:794

authwp_ajax_seur_dismiss_upgrade_noticecore\woocommerce\seur-woocommerce.php:70

REST API Routes 2

GET/wp-json/seur/v1/pickupscore\woocommerce\includes\class-seur_local_shipping_method.php:628

POST/wp-json/seur/v1/save-pickupseur-block-integration.php:138

WordPress Hooks 119

actioninitclasses\class-seur-scheduled-actions.php:18

actionseur_get_token_hookclasses\class-seur-scheduled-actions.php:19

actionadmin_noticescore\functions\functions.php:29

actionadmin_noticescore\functions\functions.php:32

actionadmin_print_scripts-post.phpcore\functions\functions.php:201

actionadmin_enqueue_scriptscore\functions\functions.php:224

actionadmin_enqueue_scriptscore\functions\functions.php:241

actionadmin_enqueue_scriptscore\functions\functions.php:258

actionadmin_enqueue_scriptscore\functions\functions.php:272

actionadmin_enqueue_scriptscore\functions\functions.php:285

actionadmin_enqueue_scriptscore\functions\functions.php:302

actionadmin_enqueue_scriptscore\functions\functions.php:319

actionadmin_enqueue_scriptscore\functions\functions.php:336

actionadmin_enqueue_scriptscore\functions\functions.php:353

actionadmin_enqueue_scriptscore\functions\functions.php:370

filtercustom_menu_ordercore\functions\functions.php:372

actionadmin_headcore\functions\functions.php:398

actionadmin_noticescore\functions\functions.php:432

actionadmin_noticescore\functions\functions.php:446

actionshutdowncore\functions\functions.php:1536

actionwoocommerce_process_shop_order_metacore\functions\functions.php:1586

actionadmin_noticescore\functions\functions.php:1657

actionwoocommerce_order_details_before_order_tablecore\functions\functions.php:1737

actionadmin_headcore\help\seur-help-tabs.php:147

actionadmin_headcore\help\seur-help-tabs.php:201

actioninitcore\labels-cpt\labels-cpt.php:72

filtermanage_seur_labels_posts_columnscore\labels-cpt\labels-cpt.php:100

actionmanage_seur_labels_posts_custom_columncore\labels-cpt\labels-cpt.php:176

actioninitcore\labels-cpt\labels-cpt.php:218

actionadd_meta_boxescore\labels-cpt\labels-cpt.php:230

filterbulk_actions-edit-seur_labelscore\labels-cpt\labels-cpt.php:362

filterhandle_bulk_actions-edit-seur_labelscore\labels-cpt\labels-cpt.php:533

actionadmin_noticescore\labels-cpt\labels-cpt.php:745

actionadmin_noticescore\labels-cpt\labels-cpt.php:762

actionadmin_enqueue_scriptscore\menu\menu.php:40

actionadmin_menucore\menu\menu.php:124

filterparent_filecore\menu\menu.php:144

actionadmin_initcore\pages\setting-options\advanced-settings.php:274

actionadmin_initcore\pages\setting-options\user-settings.php:346

actionadmin_enqueue_scriptscore\pages\seur-settings.php:104

actionupdate_option_seur_activate_cron_update_shipments_fieldcore\scheduled-actions\update-shipments.php:155

actionupdate_option_seur_cron_update_shipments_intervalcore\scheduled-actions\update-shipments.php:171

actionadd_meta_boxescore\tracking\back\tracking-back.php:30

actionwoocommerce_process_shop_order_metacore\tracking\back\tracking-back.php:126

actionsave_postcore\tracking\back\tracking-back.php:128

actionwoocommerce_view_ordercore\tracking\front\tracking-front.php:49

actionwoocommerce_review_order_before_cart_contentscore\woocommerce\includes\class-seur_local_shipping_method.php:598

actionwoocommerce_after_checkout_validationcore\woocommerce\includes\class-seur_local_shipping_method.php:599

actionwoocommerce_after_checkout_validationcore\woocommerce\includes\class-seur_local_shipping_method.php:600

actionwoocommerce_after_shipping_ratecore\woocommerce\includes\class-seur_local_shipping_method.php:601

actionwp_enqueue_scriptscore\woocommerce\includes\class-seur_local_shipping_method.php:602

actionwp_footercore\woocommerce\includes\class-seur_local_shipping_method.php:603

actionwoocommerce_checkout_update_order_metacore\woocommerce\includes\class-seur_local_shipping_method.php:604

actionwoocommerce_store_api_checkout_update_order_from_requestcore\woocommerce\includes\class-seur_local_shipping_method.php:605

actionrest_api_initcore\woocommerce\includes\class-seur_local_shipping_method.php:627

actionadmin_enqueue_scriptscore\woocommerce\includes\class-wc-shipping-seur.php:244

filteroption_woocommerce_cod_settingscore\woocommerce\includes\class-wc-shipping-seur.php:245

filterwoocommerce_package_ratescore\woocommerce\includes\class-wc-shipping-seur.php:606

filterwoocommerce_cart_shipping_method_full_labelcore\woocommerce\includes\class-wc-shipping-seur.php:626

actionadd_meta_boxescore\woocommerce\includes\metabox\seur-metabox.php:30

actionwoocommerce_process_shop_order_metacore\woocommerce\includes\metabox\seur-metabox.php:181

actionsave_post_shop_ordercore\woocommerce\includes\metabox\seur-metabox.php:183

actionadmin_print_scripts-post.phpcore\woocommerce\includes\metabox\seur-metabox.php:197

actionwoocommerce_before_save_order_itemscore\woocommerce\includes\seur-woo-functions.php:54

actionwoocommerce_order_item_addedcore\woocommerce\includes\seur-woo-functions.php:58

actionwoocommerce_after_order_item_quantity_updatecore\woocommerce\includes\seur-woo-functions.php:62

actionwoocommerce_checkout_create_ordercore\woocommerce\includes\seur-woo-functions.php:97

filtermanage_woocommerce_page_wc-orders_columnscore\woocommerce\includes\seur-woo-functions.php:104

filtermanage_edit-shop_order_columnscore\woocommerce\includes\seur-woo-functions.php:106

actionmanage_woocommerce_page_wc-orders_custom_columncore\woocommerce\includes\seur-woo-functions.php:118

actionmanage_shop_order_posts_custom_columncore\woocommerce\includes\seur-woo-functions.php:121

actioninitcore\woocommerce\includes\seur-woo-functions.php:168

filterwc_order_statusescore\woocommerce\includes\seur-woo-functions.php:190

actioninitcore\woocommerce\includes\seur-woo-functions.php:210

filterwc_order_statusescore\woocommerce\includes\seur-woo-functions.php:231

actionwoocommerce_order_actionscore\woocommerce\includes\seur-woo-functions.php:240

actioninitcore\woocommerce\includes\seur-woo-functions.php:260

actionwoocommerce_order_action_wc_custom_order_actioncore\woocommerce\includes\seur-woo-functions.php:274

actionadmin_footer-edit.phpcore\woocommerce\includes\seur-woo-functions.php:276

actionadmin_footer-woocommerce_page_wc-orderscore\woocommerce\includes\seur-woo-functions.php:278

actionload-edit.phpcore\woocommerce\includes\seur-woo-functions.php:388

actionload-woocommerce_page_wc-orderscore\woocommerce\includes\seur-woo-functions.php:389

filterwoocommerce_admin_order_actionscore\woocommerce\includes\seur-woo-functions.php:394

actionadmin_headcore\woocommerce\includes\seur-woo-functions.php:407

filterwoocommerce_checkout_fieldscore\woocommerce\includes\seur-woo-functions.php:475

actionwoocommerce_admin_order_data_after_billing_addresscore\woocommerce\includes\seur-woo-functions.php:491

filterwoocommerce_checkout_fieldscore\woocommerce\includes\seur-woo-functions.php:497

actionwoocommerce_admin_order_data_after_shipping_addresscore\woocommerce\includes\seur-woo-functions.php:513

actionwoocommerce_admin_order_data_after_shipping_addresscore\woocommerce\includes\seur-woo-functions.php:526

actionwoocommerce_order_list_table_restrict_manage_orderscore\woocommerce\includes\seur-woo-functions.php:590

actionrestrict_manage_postscore\woocommerce\includes\seur-woo-functions.php:592

filterwoocommerce_order_query_argscore\woocommerce\includes\seur-woo-functions.php:629

filterrequestcore\woocommerce\includes\seur-woo-functions.php:631

actioninitcore\woocommerce\includes\seur-woo-functions.php:657

filterwc_order_statusescore\woocommerce\includes\seur-woo-functions.php:682

actionwoocommerce_after_order_itemmetacore\woocommerce\includes\seur-woo-functions.php:684

actionadmin_footercore\woocommerce\includes\seur-woo-functions.php:775

actionwoocommerce_save_order_itemscore\woocommerce\includes\seur-woo-functions.php:777

actionwoocommerce_saved_order_itemscore\woocommerce\includes\seur-woo-functions.php:782

actionadmin_initcore\woocommerce\seur-woocommerce.php:63

actioninitcore\woocommerce\seur-woocommerce.php:64

actionwoocommerce_shipping_initcore\woocommerce\seur-woocommerce.php:66

filterwoocommerce_shipping_methodscore\woocommerce\seur-woocommerce.php:67

filterwoocommerce_shipping_methodscore\woocommerce\seur-woocommerce.php:68

actionadmin_noticescore\woocommerce\seur-woocommerce.php:69

actionadmin_noticescore\woocommerce\seur-woocommerce.php:72

actionbefore_woocommerce_initloader.php:59

actioninitloader.php:74

actionplugins_loadedloader.php:102

actionadmin_initloader.php:132

actionadmin_noticesloader.php:190

actionadmin_noticesloader.php:206

actionadmin_enqueue_scriptsloader.php:215

actionwoocommerce_blocks_loadedloader.php:220

actionwoocommerce_blocks_checkout_block_registrationloader.php:226

actionrest_api_initseur-block-integration.php:137

actionwoocommerce_thankyouseur-block-integration.php:179

actionwoocommerce_payment_completeseur-block-integration.php:182

actionwp_footerseur-block-integration.php:198

Maintenance & Trust

SEUR Oficial Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 25, 2026

PHP min version

Downloads31K

Community Trust

Rating20/100

Number of ratings2

Active installs1K

Alternatives

SEUR Oficial Alternatives

SuperFrete

superfrete

100

Integração com a plataforma SuperFrete para WooCommerce.

1K No CVEs

Andreani WooCommerce

andreani-shipping

100

Plugin oficial de Andreani para envíos en WooCommerce.

300 No CVEs

Weight Based Shipping Table Rate for WooCommerce – Flexible Shipping

flexible-shipping

Weight based shipping methods for WooCommerce. Flexible shipping with table rate rules by cart weight and order value. Accurate rates at checkout.

100K 2 CVEs

WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes & Shipping Labels

print-invoices-packing-slip-labels-for-woocommerce

Auto-generate and attach WooCommerce PDF invoices and packing slips to order emails with customizable templates & bulk print options.

60K 6 CVEs

Weight Based Shipping for WooCommerce

weight-based-shipping-for-woocommerce

100

Weight Based Shipping is a flexible and widely-used solution to calculate shipping costs based on the total cart weight and value.

60K 1 CVE

Developer Profile

SEUR Oficial Developer Profile

SEUR OFICIAL

1 plugin · 1K total installs

trust score

Avg Security Score

90/100

Avg Patch Time

306 days

View full developer profile

Detection Fingerprints

How We Detect SEUR Oficial

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/seur/assets/css/seur-notice.css

Version Parameters

seur/style.css?ver=seur-notice.css?ver=

HTML / DOM Fingerprints

CSS Classes

woocommerce-messagewoocommerce-seur-messages

FAQ

SEUR Oficial Security & Risk Analysis

Is SEUR Oficial Safe to Use in 2026?

Generally Safe

Key Concerns

SEUR Oficial Security Vulnerabilities

CVEs by Year

Severity Breakdown

SEUR Oficial Code Analysis

Dangerous Functions Found

Bundled Libraries

SQL Query Safety

Output Escaping

Data Flow Analysis

SEUR Oficial Attack Surface

AJAX Handlers 6

REST API Routes 2

SEUR Oficial Maintenance & Trust

Maintenance Signals

Community Trust

SEUR Oficial Alternatives

SuperFrete

Andreani WooCommerce

Weight Based Shipping Table Rate for WooCommerce – Flexible Shipping

WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes & Shipping Labels

Weight Based Shipping for WooCommerce

SEUR Oficial Developer Profile

How We Detect SEUR Oficial

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about SEUR Oficial