Does Shiperman for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Shiperman for WooCommerce compatible with WordPress 6.8.5?

According to WordPress.org data, Shiperman for WooCommerce 1.4.3 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Shiperman for WooCommerce compatible with PHP 7.4+?

Shiperman for WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Shiperman for WooCommerce updated?

Shiperman for WooCommerce was last updated on Dec 17, 2025. Frequent updates are generally a positive security signal.

What is Shiperman for WooCommerce's security score?

Shiperman for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Shiperman for WooCommerce Security & Risk Analysis

wordpress.org/plugins/shiperman-for-woocommerce

Ship instantly from NL, DE, IT, ES, HU, PL, CZ, BG, RO, UA from €3.79 to worldwide, with automated AWB label creation and customizable shipping rates.

0 active installs v1.4.3 PHP 7.4+ WP 5.6+ Updated Dec 17, 2025

awb-automationcost-reductionlogisticsshipermanshipping-woocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Shiperman for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Shiperman for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago

Risk Assessment

The shiperman-for-woocommerce plugin v1.4.3 exhibits a generally strong security posture with excellent adherence to several best practices. The absence of known CVEs and a complete lack of raw SQL queries demonstrate a mature development approach. Furthermore, the high percentage of properly escaped output (97%) and the presence of nonce and capability checks on its entry points are commendable. The plugin's attack surface is also remarkably small, with only one AJAX handler and no REST API routes or shortcodes, all of which appear to be protected by authentication checks.

However, the static analysis does highlight a couple of areas for concern. The presence of three 'flows with unsanitized paths' in the taint analysis, although not classified as critical or high severity, indicates potential weaknesses. While the plugin performs file operations and external HTTP requests, the lack of further detail prevents a deeper assessment of their security implications without manual code review. The vulnerability history, being completely clean, is a positive indicator, suggesting a generally secure codebase over time. Overall, shiperman-for-woocommerce is a well-developed plugin with a strong emphasis on security, but the identified unsanitized path flows warrant further investigation to ensure they do not pose a latent risk.

Key Concerns

Flows with unsanitized paths found

Vulnerabilities

None known

Shiperman for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Shiperman for WooCommerce Release Timeline

v1.4.3Current

v1.4.2

v1.4.1

v1.4.0

v1.3.2

v1.3.1

v1.3

v1.2

v1.1

v1.0

Code Analysis

Analyzed Apr 16, 2026

Shiperman for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

229 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

97% escaped237 total outputs

Data Flows · Security

3 unsanitized

Data Flow Analysis

7 flows3 with unsanitized paths

display_shipment_creation_notice (includes/Admin/class-shiperman-shipment.php:181)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Shiperman for WooCommerce Attack Surface

Entry Points1

Unprotected0

AJAX Handlers 1

authwp_ajax_fetch_shipment_dataincludes/Admin/class-shiperman-admin.php:34

WordPress Hooks 33

actioninitincludes/Admin/class-shiperman-admin.php:20

actionadmin_menuincludes/Admin/class-shiperman-admin.php:22

actionadmin_headincludes/Admin/class-shiperman-admin.php:24

actionadmin_enqueue_scriptsincludes/Admin/class-shiperman-admin.php:26

actionadmin_post_shiperman_loginincludes/Admin/class-shiperman-admin.php:28

actionadmin_post_shiperman_logoutincludes/Admin/class-shiperman-admin.php:30

actionadmin_footerincludes/Admin/class-shiperman-admin.php:32

actionadmin_post_shiperman_connectincludes/Admin/class-shiperman-admin.php:36

actionadmin_noticesincludes/Admin/class-shiperman-admin.php:38

actionadmin_noticesincludes/Admin/class-shiperman-admin.php:40

actionadmin_noticesincludes/Admin/class-shiperman-admin.php:42

actionwoocommerce_process_product_metaincludes/Admin/class-shiperman-product-validation.php:11

actionadmin_noticesincludes/Admin/class-shiperman-product-validation.php:54

filterwoocommerce_settings_tabs_arrayincludes/Admin/class-shiperman-settings.php:12

actionwoocommerce_settings_tabs_shipermanincludes/Admin/class-shiperman-settings.php:13

actionwoocommerce_update_options_shipermanincludes/Admin/class-shiperman-settings.php:14

filtermanage_woocommerce_page_wc-orders_columnsincludes/Admin/class-shiperman-shipment.php:15

filtermanage_edit-shop_order_columnsincludes/Admin/class-shiperman-shipment.php:16

actionmanage_woocommerce_page_wc-orders_custom_columnincludes/Admin/class-shiperman-shipment.php:18

actionmanage_shop_order_posts_custom_columnincludes/Admin/class-shiperman-shipment.php:19

actionadmin_post_create_shipmentincludes/Admin/class-shiperman-shipment.php:21

actionadmin_noticesincludes/Admin/class-shiperman-shipment.php:23

filterwoocommerce_shipping_methodsincludes/class-shiperman-shipping-method.php:89

actionbefore_woocommerce_initshiperman-for-woocommerce.php:54

actionadmin_noticesshiperman-for-woocommerce.php:61

actionplugins_loadedshiperman-for-woocommerce.php:72

actionadmin_noticesshiperman-for-woocommerce.php:100

actionadmin_noticesshiperman-for-woocommerce.php:104

filterwoocommerce_shipping_methodsshiperman-for-woocommerce.php:168

actionwp_enqueue_scriptstemplates/shiperman/depo-content.php:29

actionadmin_enqueue_scriptstemplates/shiperman/depo-content.php:30

actionwp_enqueue_scriptstemplates/shiperman/homepage-content-v2.php:9

actionadmin_enqueue_scriptstemplates/shiperman/homepage-content-v2.php:10

Maintenance & Trust

Shiperman for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedDec 17, 2025

PHP min version7.4

Downloads882

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Shiperman for WooCommerce Alternatives

Shiprocket

shiprocket

Auto Sync your Woocommerce store orders & ship them at lowest shipping rates. Automate your shipping, save time & money.

10K 1 unpatched

Dropshipping XML for WooCommerce

dropshipping-xml-for-woocommerce

100

Import products from CSV or XML product feeds to WooCommerce. WooCommerce dropshipping plugin to import wholesale products, update and synchronize the …

800 No CVEs

AfterShip Returns – automated return, exchange, and refund management for WooCommerce

automizely-returnscenter

Offer scalable, self-service returns, exchanges, warranties, and refunds while automating status notifications and integrating reverse logistics.

200 No CVEs

Envíopack (Argentina)

enviopack-argentina

100

Logística de alto desempeño para empresas que no pueden fallar.

100 No CVEs

Quiqup Connector

quiqup-connector

100

A Woocommerce extension that connects your store to Quiqup Delivery, a top UAE e-commerce enabler for last mile and fulfillment services.

100 No CVEs

Developer Profile

Shiperman for WooCommerce Developer Profile

shiperman

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Shiperman for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/shiperman-for-woocommerce/assets/css/admin.css/wp-content/plugins/shiperman-for-woocommerce/assets/js/admin.js/wp-content/plugins/shiperman-for-woocommerce/assets/css/frontend.css/wp-content/plugins/shiperman-for-woocommerce/assets/js/frontend.js

Script Paths

/wp-content/plugins/shiperman-for-woocommerce/assets/js/admin.js/wp-content/plugins/shiperman-for-woocommerce/assets/js/frontend.js

Version Parameters

/wp-content/plugins/shiperman-for-woocommerce/assets/css/admin.css?ver=/wp-content/plugins/shiperman-for-woocommerce/assets/js/admin.js?ver=/wp-content/plugins/shiperman-for-woocommerce/assets/css/frontend.css?ver=/wp-content/plugins/shiperman-for-woocommerce/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

shiperman-modalshiperman-login-formshiperman-noticeshiperman-connection-noticeshiperman-configuration-notice

HTML Comments

+1 more

Data Attributes

data-shiperman-shipping-methoddata-shiperman-order-id

JS Globals

shiperman_admin_ajax_objectshiperman_frontend_ajax_object

REST Endpoints

/wp-json/shiperman/v1/connect

FAQ