Does Shipvista Live Shipping Rates have any unpatched vulnerabilities?

No. All known vulnerabilities in Shipvista Live Shipping Rates have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Shipvista Live Shipping Rates compatible with WordPress 6.9.0?

According to WordPress.org data, Shipvista Live Shipping Rates 3.4.2 has been tested up to WordPress 6.9.0. Check the plugin's changelog for the latest compatibility information.

Is Shipvista Live Shipping Rates compatible with PHP 7.4.0+?

Shipvista Live Shipping Rates requires PHP 7.4.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Shipvista Live Shipping Rates updated?

Shipvista Live Shipping Rates was last updated on Jan 18, 2026. Frequent updates are generally a positive security signal.

What is Shipvista Live Shipping Rates's security score?

Shipvista Live Shipping Rates has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Shipvista Live Shipping Rates Security & Risk Analysis

wordpress.org/plugins/shipvista-live-shipping-rates

Shipvista live shipping rates is a free WordPress – WooCommerce multi-warehouses and multi-carriers (Canada Post, UPS, Canpar and more) extension that …

10 active installs v3.4.2 PHP 7.4.0+ WP 5.0.0+ Updated Jan 18, 2026

deliveryfree-shippinglogisticsshippingwoocomemrce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Shipvista Live Shipping Rates Safe to Use in 2026?

Generally Safe

Score 100/100

Shipvista Live Shipping Rates has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The "shipvista-live-shipping-rates" v3.4.2 plugin demonstrates a generally good security posture with a significant strength in its handling of SQL queries, all of which are properly prepared. The plugin also shows a high rate of output escaping, indicating an awareness of common web vulnerabilities. However, a notable concern arises from the presence of one AJAX handler that lacks authentication checks, presenting an unprotected entry point. While the taint analysis did not reveal critical or high-severity issues, one flow with unsanitized paths suggests a potential for vulnerabilities if this path is exposed to user input. The complete absence of recorded vulnerabilities and CVEs is a positive sign, suggesting a history of secure development and maintenance. Overall, the plugin has strong foundational security practices, but the unprotected AJAX endpoint warrants immediate attention.

Key Concerns

AJAX handler without auth checks
Flow with unsanitized paths

Vulnerabilities

None known

Shipvista Live Shipping Rates Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Shipvista Live Shipping Rates Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

343 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared1 total queries

Output Escaping

80% escaped428 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

shipvista_update_order (shipvista.php:229)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Shipvista Live Shipping Rates Attack Surface

Entry Points2

Unprotected1

AJAX Handlers 2

authwp_ajax_shipvista_ajax_callsshipvista.php:452

noprivwp_ajax_shipvista_postcodeshipvista.php:514

WordPress Hooks 19

actionwoocommerce_shipping_initshipvista.php:186

filterwoocommerce_shipping_methodsshipvista.php:194

actionadmin_enqueue_scriptsshipvista.php:421

actionwp_enqueue_scriptsshipvista.php:513

actionwp_footershipvista.php:516

actionadd_meta_boxesshipvista.php:771

actionupdated_optionshipvista.php:776

actionadmin_noticesshipvista.php:806

actionadmin_noticesshipvista.php:808

actionadmin_noticesshipvista.php:812

actionupgrader_process_completeshipvista.php:848

actionplugins_loadedshipvista.php:874

actionwoocommerce_after_checkout_validationshipvista.php:900

actionwoocommerce_update_ordershipvista.php:901

actionhttp_api_curlshipvista.php:903

filterwoocommerce_locate_templateshipvista.php:910

actioninitshipvista.php:979

actionadmin_noticesshipvista.php:988

actionadmin_noticesshipvista.php:1003

Maintenance & Trust

Shipvista Live Shipping Rates Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.0

Last updatedJan 18, 2026

PHP min version7.4.0

Downloads5K

Community Trust

Rating100/100

Number of ratings2

Active installs10

Alternatives

Shipvista Live Shipping Rates Alternatives

Shiprocket

shiprocket

Auto Sync your Woocommerce store orders & ship them at lowest shipping rates. Automate your shipping, save time & money.

10K 1 unpatched

Table rate shipping for WooCommerce

advanced-table-rate-shipping-for-woocommerce

100

Table rate shipping a addon plugin for WooCommerce shipping.

200 No CVEs

ParcelBroker for Woocommerce

parcelbroker-for-woocommerce

Quote, compare, book and manage your national and international shipments with DHL, TNT, FedEx, DPD, UPS, ParcelForce and more.

10 No CVEs

SHIIP

shiip

You can “Shiip” with top logistics companies at half their standard rates

10 No CVEs

Bijak

bijak

100

Add smart freight shipping to WooCommerce with live rate estimates and order integration via the Bijak API.

0 No CVEs

Developer Profile

Shipvista Live Shipping Rates Developer Profile

shipvista

1 plugin · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Shipvista Live Shipping Rates

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/shipvista-live-shipping-rates/assets/js/shipvista-shipping-settings.js/wp-content/plugins/shipvista-live-shipping-rates/assets/css/shipvista-shipping-settings.css/wp-content/plugins/shipvista-live-shipping-rates/assets/js/shipvista-shipping-calc.js

Script Paths

/wp-content/plugins/shipvista-live-shipping-rates/assets/js/shipvista-shipping-settings.js/wp-content/plugins/shipvista-live-shipping-rates/assets/js/shipvista-shipping-calc.js

Version Parameters

shipvista-live-shipping-rates/assets/js/shipvista-shipping-settings.js?ver=shipvista-live-shipping-rates/assets/css/shipvista-shipping-settings.css?ver=shipvista-live-shipping-rates/assets/js/shipvista-shipping-calc.js?ver=

HTML / DOM Fingerprints

CSS Classes

shipvista-settings-pageshipvista-form-fields

HTML Comments

Data Attributes

data-shipvista-api-urldata-shipvista-plugin-version

JS Globals

window.ShipvistaSettingsvar shipvista_ajax_urlvar shipvista_nonce

FAQ