Does Shop Manager for Woocommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Shop Manager for Woocommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Shop Manager for Woocommerce compatible with WordPress 6.8.5?

According to WordPress.org data, Shop Manager for Woocommerce 1.0.5 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Shop Manager for Woocommerce compatible with PHP 7.4+?

Shop Manager for Woocommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Shop Manager for Woocommerce updated?

Shop Manager for Woocommerce was last updated on Jul 4, 2025. Frequent updates are generally a positive security signal.

What is Shop Manager for Woocommerce's security score?

Shop Manager for Woocommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Shop Manager for Woocommerce Security & Risk Analysis

wordpress.org/plugins/shop-manager

🚀 Transform your WooCommerce order management with a powerful, modern React dashboard. Boost efficiency and save time!

10 active installs v1.0.5 PHP 7.4+ WP 5.0+ Updated Jul 4, 2025

e-commerceorder-managementordersstore-managementwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Shop Manager for Woocommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Shop Manager for Woocommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9mo ago

Risk Assessment

The 'shop-manager' plugin v1.0.5 demonstrates a generally strong security posture based on the provided static analysis. The absence of critical or high-severity issues in taint analysis and a clean vulnerability history are particularly positive signs. The plugin also exhibits good practices regarding output escaping, with 99% of outputs properly escaped, and a high percentage of SQL queries utilizing prepared statements. Furthermore, the lack of unprotected entry points across AJAX handlers, REST API routes, shortcodes, and cron events is commendable, suggesting a robust approach to access control.

Key Concerns

Bundled Freemius v1.0 library
Low number of nonce checks
Limited capability checks

Vulnerabilities

None known

Shop Manager for Woocommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Shop Manager for Woocommerce Code Analysis

Dangerous Functions

Raw SQL Queries

68 prepared

Unescaped Output

224 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Freemius1.0

SQL Query Safety

87% prepared78 total queries

Output Escaping

99% escaped227 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<wpkin-sm-dashboard> (includes\templates\wpkin-sm-dashboard.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Shop Manager for Woocommerce Attack Surface

Entry Points41

Unprotected0

REST API Routes 41

GET/wp-json/shop-manager/v1/order-statusesincludes\API\AdminApi\Routers.php:26

POST/wp-json/shop-manager/v1/save-admin-settingsincludes\API\AdminApi\Routers.php:34

GET/wp-json/shop-manager/v1/get-admin-settingsincludes\API\AdminApi\Routers.php:42

GET/wp-json/shop-manager/v1/get-order-listincludes\API\AdminApi\Routers.php:50

GET/wp-json/shop-manager/v1/get-order-countsincludes\API\AdminApi\Routers.php:58

POST/wp-json/shop-manager/v1/trash-orderincludes\API\AdminApi\Routers.php:69

POST/wp-json/shop-manager/v1/permanently-delete-orderincludes\API\AdminApi\Routers.php:79

POST/wp-json/shop-manager/v1/restore-orderincludes\API\AdminApi\Routers.php:89

POST/wp-json/shop-manager/v1/bulk-trash-ordersincludes\API\AdminApi\Routers.php:100

POST/wp-json/shop-manager/v1/bulk-delete-ordersincludes\API\AdminApi\Routers.php:110

POST/wp-json/shop-manager/v1/bulk-restore-ordersincludes\API\AdminApi\Routers.php:120

POST/wp-json/shop-manager/v1/bulk-update-order-statusincludes\API\AdminApi\Routers.php:130

GET/wp-json/shop-manager/v1/order-filter-referencesincludes\API\AdminApi\Routers.php:140

POST/wp-json/shop-manager/v1/update-order-statusincludes\API\AdminApi\Routers.php:151

GET/wp-json/shop-manager/v1/customer-orders/(?P<id>\d+)includes\API\AdminApi\Routers.php:162

GET/wp-json/shop-manager/v1/export-ordersincludes\API\AdminApi\Routers.php:173

GET/wp-json/shop-manager/v1/get-productsincludes\API\AdminApi\Routers.php:183

POST/wp-json/shop-manager/v1/create-orderincludes\API\AdminApi\Routers.php:193

GET/wp-json/shop-manager/v1/get-countriesincludes\API\AdminApi\Routers.php:203

GET/wp-json/shop-manager/v1/get-statesincludes\API\AdminApi\Routers.php:213

GET/wp-json/shop-manager/v1/orders/(?P<id>\d+)includes\API\AdminApi\Routers.php:223

PUT/wp-json/shop-manager/v1/orders/(?P<id>\d+)includes\API\AdminApi\Routers.php:231

DELETE/wp-json/shop-manager/v1/delete-order/(?P<id>\d+)includes\API\AdminApi\Routers.php:239

GET/wp-json/shop-manager/v1/dashboard-statsincludes\API\AdminApi\Routers.php:259

GET/wp-json/shop-manager/v1/searchincludes\API\AdminApi\Routers.php:283

POST/wp-json/shop-manager/v1/products/add-new-productincludes\API\AdminApi\Routers.php:310

PUT/wp-json/shop-manager/v1/products/update-productincludes\API\AdminApi\Routers.php:320

GET/wp-json/shop-manager/v1/productsincludes\API\AdminApi\Routers.php:330

POST/wp-json/shop-manager/v1/products/deleteincludes\API\AdminApi\Routers.php:353

GET/wp-json/shop-manager/v1/product-attributes/(?P<id>\d+)/termsincludes\API\AdminApi\Routers.php:363

GET/wp-json/shop-manager/v1/custom-fieldsincludes\API\AdminApi\Routers.php:373

POST/wp-json/shop-manager/v1/custom-fieldsincludes\API\AdminApi\Routers.php:383

POST/wp-json/shop-manager/v1/products/delete-taxonomiesincludes\API\AdminApi\Routers.php:394

GET/wp-json/shop-manager/v1/product/get-taxonomiesincludes\API\AdminApi\Routers.php:404

POST/wp-json/shop-manager/v1/product/add-taxonomyincludes\API\AdminApi\Routers.php:414

POST/wp-json/shop-manager/v1/product/set-default-categoryincludes\API\AdminApi\Routers.php:424

POST/wp-json/shop-manager/v1/product/update-taxonomy-orderincludes\API\AdminApi\Routers.php:434

GET/wp-json/shop-manager/v1/product/get-reviewsincludes\API\AdminApi\Routers.php:445

GET/wp-json/shop-manager/v1/product/get-review-countsincludes\API\AdminApi\Routers.php:456

POST/wp-json/shop-manager/v1/product/update-review-statusincludes\API\AdminApi\Routers.php:467

POST/wp-json/shop-manager/v1/product/reply-to-reviewincludes\API\AdminApi\Routers.php:478

WordPress Hooks 27

actionadmin_menuincludes\Admin\Menu.php:22

actionadmin_noticesincludes\Admin\Notice.php:39

actionadmin_noticesincludes\Admin\Notice.php:45

actionadmin_noticesincludes\Admin\Notice.php:51

actionrest_api_initincludes\API\AdminApi\Routers.php:22

actionwp_enqueue_scriptsincludes\Assets.php:22

actionadmin_enqueue_scriptsincludes\Assets.php:23

actiontemplate_redirectincludes\Cleanup\Scripts.php:22

actionwp_print_stylesincludes\Cleanup\Scripts.php:45

actionwp_headincludes\Cleanup\Scripts.php:46

actioninitincludes\Modules\CustomStatus.php:18

filterwc_order_statusesincludes\Modules\CustomStatus.php:19

filterwoocommerce_reports_order_statusesincludes\Modules\CustomStatus.php:20

filterwoocommerce_admin_order_actionsincludes\Modules\CustomStatus.php:21

actionadmin_headincludes\Modules\CustomStatus.php:22

actioninitincludes\Page_Template.php:84

filterquery_varsincludes\Page_Template.php:85

filterdisplay_post_statesincludes\Page_Template.php:86

filtertheme_page_templatesincludes\Page_Template.php:87

filterwp_insert_post_dataincludes\Page_Template.php:88

filtertemplate_includeincludes\Page_Template.php:89

actionbefore_delete_postincludes\Page_Template.php:90

actionwp_trash_postincludes\Page_Template.php:91

actiontemplate_redirectincludes\Page_Template.php:92

actionplugins_loadedshop-manager.php:108

actioninitshop-manager.php:109

actionadmin_initshop-manager.php:110

Maintenance & Trust

Shop Manager for Woocommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJul 4, 2025

PHP min version7.4

Downloads560

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Shop Manager for Woocommerce Alternatives

Up2pay e-Transactions WooCommerce Payment Gateway

e-transactions-wc

100

This plugin is a Up2pay e-Transactions payment gateway for WooCommerce 4.x

4K No CVEs

Paybox WooCommerce Payment Gateway

paybox-woocommerce-gateway

100

This plugin is a Paybox payment gateway for WooCommerce 4.x

500 No CVEs

FlexOrder – Manage & Sync Orders with Google Sheets for WooCommerce

order-sync-with-google-sheets-for-woocommerce

100

Create, edit, manage, and sync WooCommerce orders with Google Sheets for easy order handling and updates.

300 No CVEs

ClearSale Total

clearsale-total

100

Integração do WooCommerce com a ClearSale. testado: wordpress 6.9 woocommerce 10.5 Requisitos: php 5.6 ou maior

100 No CVEs

Sofinco 3XCB

wc-sofinco-3xcb

100

This plugin is a Sofinco 3x CB payment gateway for WooCommerce

100 No CVEs

Developer Profile

Shop Manager for Woocommerce Developer Profile

WPKIN

5 plugins · 30K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

613 days

View full developer profile

Detection Fingerprints

How We Detect Shop Manager for Woocommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/shop-manager/build/public.bundle.css/wp-content/plugins/shop-manager/build/public.bundle.js

Script Paths

/wp-content/plugins/shop-manager/build/public.bundle.js

Version Parameters

shop-manager/build/public.bundle.css?ver=shop-manager/build/public.bundle.js?ver=

HTML / DOM Fingerprints

CSS Classes

wpkin-sm-public-style

JS Globals

wpkin_shop_manager

FAQ