WP-Safety

Shipping Deprisa Woo Security & Risk Analysis

wordpress.org/plugins/shipping-deprisa-woo

Deprisa empresa transportadora de Colombia

0 active installs v2.0.5 PHP 8.1+ WP 6.0+ Updated May 13, 2025
commercee-commercestorewordpress-ecommerce
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Shipping Deprisa Woo Safe to Use in 2026?

Generally Safe

Score 92/100

Shipping Deprisa Woo has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The "shipping-deprisa-woo" plugin v2.0.5 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of known CVEs and a clean taint analysis indicate diligent development practices concerning common vulnerabilities like SQL injection and cross-site scripting. The plugin utilizes prepared statements for all SQL queries and demonstrates a reasonable level of output escaping, although there's room for improvement with 37% of outputs not properly escaped.

However, the plugin does present some areas for concern. The presence of 4 AJAX handlers with none explicitly noted as having authentication checks (while also noting 0 unprotected entry points) creates a slight ambiguity and potential for unauthorized access if capability checks are not robustly implemented in practice. The bundling of the Guzzle library also introduces a dependency that, if outdated, could pose a risk, though no specific version information is provided to assess this. Overall, the plugin is well-maintained with no recorded historical vulnerabilities, but the handling of AJAX endpoints and the unescaped output present minor, albeit manageable, risks.

Key Concerns

  • Unescaped output detected
  • Bundled Guzzle library (version unknown)
  • AJAX handlers without explicit auth checks noted
Vulnerabilities
None known

Shipping Deprisa Woo Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Shipping Deprisa Woo Release Timeline

v2.0.5Current
v2.0.4
v2.0.3
v2.0.2
v2.0.1
v2.0.0
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
Code Analysis
Analyzed Apr 16, 2026

Shipping Deprisa Woo Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
6
10 escaped
Nonce Checks
3
Capability Checks
0
File Operations
0
External Requests
2
Bundled Libraries
1

Bundled Libraries

Guzzle

Output Escaping

63% escaped16 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

1 flows
<class-shipping-deprisa-wc-plugin> (includes/class-shipping-deprisa-wc-plugin.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Shipping Deprisa Woo Attack Surface

Entry Points4
Unprotected0

AJAX Handlers 4

authwp_ajax_deprisa_get_citiesincludes/class-shipping-deprisa-wc-plugin.php:76
authwp_ajax_deprisa_generate_labelincludes/class-shipping-deprisa-wc-plugin.php:83
authwp_ajax_deprisa_trackingincludes/class-shipping-deprisa-wc-plugin.php:86
noprivwp_ajax_deprisa_trackingincludes/class-shipping-deprisa-wc-plugin.php:87
WordPress Hooks 18
actionadmin_noticesincludes/class-shipping-deprisa-wc-plugin.php:57
filterwoocommerce_shipping_methodsincludes/class-shipping-deprisa-wc-plugin.php:72
filterwoocommerce_checkout_fieldsincludes/class-shipping-deprisa-wc-plugin.php:73
filtermanage_woocommerce_page_wc-orders_columnsincludes/class-shipping-deprisa-wc-plugin.php:74
actionwoocommerce_checkout_processincludes/class-shipping-deprisa-wc-plugin.php:77
actionwoocommerce_order_status_changedincludes/class-shipping-deprisa-wc-plugin.php:78
actionwoocommerce_process_product_metaincludes/class-shipping-deprisa-wc-plugin.php:79
actionwoocommerce_save_product_variationincludes/class-shipping-deprisa-wc-plugin.php:80
actionmanage_woocommerce_page_wc-orders_custom_columnincludes/class-shipping-deprisa-wc-plugin.php:81
actionadmin_enqueue_scriptsincludes/class-shipping-deprisa-wc-plugin.php:82
actionwoocommerce_order_details_after_order_tableincludes/class-shipping-deprisa-wc-plugin.php:84
actionwp_enqueue_scriptsincludes/class-shipping-deprisa-wc-plugin.php:85
actionplugins_loadedshipping-deprisa-woo.php:23
actionbefore_woocommerce_initshipping-deprisa-woo.php:24
actionadmin_noticesshipping-deprisa-woo.php:56
actionadmin_noticesshipping-deprisa-woo.php:71
actionwoocommerce_product_after_variable_attributesshipping-deprisa-woo.php:99
actionwoocommerce_product_options_shippingshipping-deprisa-woo.php:100
Maintenance & Trust

Shipping Deprisa Woo Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedMay 13, 2025
PHP min version8.1
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Shipping Deprisa Woo Alternatives

Payment Integration Wompi

Payment Integration Wompi

payment-integration-wompi

A
92

Integration of Wompi for Woocommerce

1K No CVEs
Payment Integration Wompi – El Salvador

Payment Integration Wompi – El Salvador

wompi-el-salvador

A
85

Integración para Wompi - El Salvador para Woocommerce

800 No CVEs
Pay with ATH Movil (WooCommerce payment gateway)

Pay with ATH Movil (WooCommerce payment gateway)

pay-with-ath-movil-woocommerce-gateway

A
85

Accept ATH Movil payments on your WooCommerce store.

100 No CVEs
Shipping Rates Cities Woocommerce

Shipping Rates Cities Woocommerce

shipping-rates-cities-woocommerce

A
85

Shipping Rates Cities Woocommerce

30 No CVEs
Subscription Payu Latam

Subscription Payu Latam

subscription-payu-latam

A
85

Receive recurring payments for the countries Brazil, Colombia, Mexico and Peru

30 No CVEs
Developer Profile

Shipping Deprisa Woo Developer Profile

Saul Morales Pacheco

13 plugins · 8K total installs

88
trust score
Avg Security Score
91/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Shipping Deprisa Woo

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/shipping-deprisa-woo/assets/css/admin.css/wp-content/plugins/shipping-deprisa-woo/assets/css/deprisa.css/wp-content/plugins/shipping-deprisa-woo/assets/js/admin.js/wp-content/plugins/shipping-deprisa-woo/assets/js/deprisa.js
Script Paths
/wp-content/plugins/shipping-deprisa-woo/assets/js/admin.js/wp-content/plugins/shipping-deprisa-woo/assets/js/deprisa.js
Version Parameters
shipping-deprisa-woo/assets/css/admin.css?ver=shipping-deprisa-woo/assets/css/deprisa.css?ver=shipping-deprisa-woo/assets/js/admin.js?ver=shipping-deprisa-woo/assets/js/deprisa.js?ver=

HTML / DOM Fingerprints

CSS Classes
shipping_deprisa_wc_methoddeprisa-shipping-options
HTML Comments
<!-- Shipping Deprisa Woo Admin scripts --><!-- Shipping Deprisa Woo frontend scripts --><!-- This is the shipping method-->
Data Attributes
data-plugin-pathdata-nonce-get-cities
JS Globals
shipping_deprisa_wc_datadeprisa_get_cities_ajax_object
REST Endpoints
/wp-json/shipping-deprisa-woo/v1/settings/wp-json/shipping-deprisa-woo/v1/orders
FAQ

Frequently Asked Questions about Shipping Deprisa Woo