Does Social Commerce by CedCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Social Commerce by CedCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Social Commerce by CedCommerce compatible with WordPress 5.8.13?

According to WordPress.org data, Social Commerce by CedCommerce 1.0.2 has been tested up to WordPress 5.8.13. Check the plugin's changelog for the latest compatibility information.

Is Social Commerce by CedCommerce compatible with PHP 5.6+?

Social Commerce by CedCommerce requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Social Commerce by CedCommerce updated?

Social Commerce by CedCommerce was last updated on Oct 7, 2021. Frequent updates are generally a positive security signal.

What is Social Commerce by CedCommerce's security score?

Social Commerce by CedCommerce has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Social Commerce by CedCommerce Security & Risk Analysis

wordpress.org/plugins/social-commerce-by-cedcommerce

Social Commerce by CedCommerce connects the woocommerce store with the Facebook and Instagram marketplace by synchronizing the inventory, price, and o …

10 active installs v1.0.2 PHP 5.6+ WP 4.7+ Updated Oct 7, 2021

facebookinstagrammarketplacestorewoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Social Commerce by CedCommerce Safe to Use in 2026?

Generally Safe

Score 85/100

Social Commerce by CedCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The "social-commerce-by-cedcommerce" v1.0.2 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by exclusively using prepared statements for its SQL queries and properly escaping a high percentage of its outputs. The absence of known CVEs and recorded vulnerability history suggests a generally stable past, which is a positive indicator. However, a significant concern arises from the substantial attack surface presented by its AJAX handlers. With 13 AJAX handlers identified, a striking 11 of them lack any authentication checks, making them highly susceptible to unauthorized access and potential exploitation. While there are no directly identified critical taint flows from the static analysis, the presence of 2 high-severity taint flows, even if not critically severe, warrants attention as they could potentially lead to vulnerabilities if exploited in conjunction with other weaknesses.

In conclusion, while the plugin has strengths in its SQL handling and output escaping, and a clean vulnerability history, the unprotected AJAX endpoints represent a substantial and immediate security risk. The high number of insecure entry points creates a broad surface for attackers to probe. The high-severity taint flows, though not classified as critical, should be thoroughly investigated to ensure they don't pose a latent threat. The plugin's security could be significantly improved by implementing proper authentication and authorization checks on all AJAX handlers.

Key Concerns

Unprotected AJAX handlers
High severity taint flows

Vulnerabilities

None known

Social Commerce by CedCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Social Commerce by CedCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

22 prepared

Unescaped Output

307 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared22 total queries

Output Escaping

94% escaped328 total outputs

Data Flows

6 unsanitized

Data Flow Analysis

11 flows6 with unsanitized paths

renderHTML (admin\partials\order-view.php:230)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

11 unprotected

Social Commerce by CedCommerce Attack Surface

Entry Points13

Unprotected11

AJAX Handlers 13

authwp_ajax_ced_fb_write_error_logadmin\class-facebook-marketplace-connector-for-woocommerce-admin.php:68

authwp_ajax_ced_fb_write_uploaded_logadmin\class-facebook-marketplace-connector-for-woocommerce-admin.php:69

authwp_ajax_ced_get_errors_for_productadmin\class-facebook-marketplace-connector-for-woocommerce-admin.php:70

authwp_ajax_ced_fmcw_save_active_pagesadmin\class-facebook-marketplace-connector-for-woocommerce-admin.php:78

authwp_ajax_ced_fmcw_authenticate_cms_pageincludes\class-facebook-marketplace-connector-for-woocommerce.php:163

authwp_ajax_ced_fmcw_fetch_next_level_categoryincludes\class-facebook-marketplace-connector-for-woocommerce.php:171

authwp_ajax_ced_fmcw_map_categories_to_storeincludes\class-facebook-marketplace-connector-for-woocommerce.php:172

authwp_ajax_ced_fmcw_setup_completedincludes\class-facebook-marketplace-connector-for-woocommerce.php:175

authwp_ajax_ced_facebook_get_ordersincludes\class-facebook-marketplace-connector-for-woocommerce.php:176

authwp_ajax_ced_fmcw_complete_dispatch_orderincludes\class-facebook-marketplace-connector-for-woocommerce.php:177

authwp_ajax_ced_facebook_cancel_orderincludes\class-facebook-marketplace-connector-for-woocommerce.php:178

authwp_ajax_ced_facebook_refund_orderincludes\class-facebook-marketplace-connector-for-woocommerce.php:179

authwp_ajax_ced_fmcw_register_to_cedcommerceincludes\class-facebook-marketplace-connector-for-woocommerce.php:180

WordPress Hooks 27

filtercron_schedulesadmin\class-facebook-marketplace-connector-for-woocommerce-admin.php:64

actionadmin_initadmin\class-facebook-marketplace-connector-for-woocommerce-admin.php:66

actionced_fmcw_feed_processadmin\class-facebook-marketplace-connector-for-woocommerce-admin.php:67

actionced_fmcw_order_sync_scheduler_jobadmin\class-facebook-marketplace-connector-for-woocommerce-admin.php:71

actionced_fmcw_product_sync_scheduler_jobadmin\class-facebook-marketplace-connector-for-woocommerce-admin.php:72

actionadmin_footeradmin\class-facebook-marketplace-connector-for-woocommerce-admin.php:73

actionadmin_noticesadmin\class-facebook-marketplace-connector-for-woocommerce-admin.php:76

actionplugins_loadedincludes\class-facebook-marketplace-connector-for-woocommerce.php:144

actionadmin_enqueue_scriptsincludes\class-facebook-marketplace-connector-for-woocommerce.php:157

actionadmin_enqueue_scriptsincludes\class-facebook-marketplace-connector-for-woocommerce.php:158

actionadmin_menuincludes\class-facebook-marketplace-connector-for-woocommerce.php:159

filterced_add_marketplace_menus_arrayincludes\class-facebook-marketplace-connector-for-woocommerce.php:160

actionadmin_initincludes\class-facebook-marketplace-connector-for-woocommerce.php:162

filterbulk_actions-edit-productincludes\class-facebook-marketplace-connector-for-woocommerce.php:165

filterhandle_bulk_actions-edit-productincludes\class-facebook-marketplace-connector-for-woocommerce.php:166

filtermanage_edit-product_columnsincludes\class-facebook-marketplace-connector-for-woocommerce.php:168

filtermanage_product_posts_custom_columnincludes\class-facebook-marketplace-connector-for-woocommerce.php:169

actionadd_meta_boxesincludes\class-facebook-marketplace-connector-for-woocommerce.php:173

actionwoocommerce_product_data_tabsincludes\class-facebook-marketplace-connector-for-woocommerce.php:181

actionwoocommerce_product_data_panelsincludes\class-facebook-marketplace-connector-for-woocommerce.php:182

actionwoocommerce_product_after_variable_attributesincludes\class-facebook-marketplace-connector-for-woocommerce.php:184

actionwoocommerce_save_product_variationincludes\class-facebook-marketplace-connector-for-woocommerce.php:185

actionsave_postincludes\class-facebook-marketplace-connector-for-woocommerce.php:186

actionwp_enqueue_scriptsincludes\class-facebook-marketplace-connector-for-woocommerce.php:199

actionwp_enqueue_scriptsincludes\class-facebook-marketplace-connector-for-woocommerce.php:200

actionadmin_initsocial-commerce-by-cedcommerce.php:99

actionadmin_noticessocial-commerce-by-cedcommerce.php:104

Scheduled Events 3

ced_fmcw_feed_process

ced_fmcw_product_sync_scheduler_job

ced_fmcw_order_sync_scheduler_job

Maintenance & Trust

Social Commerce by CedCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13

Last updatedOct 7, 2021

PHP min version5.6

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Social Commerce by CedCommerce Alternatives

Kliken: Ads + Pixel for Meta

kliken-ads-pixel-for-meta

100

Drive Sales on Facebook and Instagram in 5 minutes—upload your catalog, implement the Meta Pixel & Conversions API, and grow via Meta Advantage+ now.

50K No CVEs

WebToffee WooCommerce Product Feeds – Google Shopping, Pinterest, TikTok Ads, & More

webtoffee-product-feed

Create WooCommerce product feeds containing unlimited number of products. Supports Google Product feed, Facebook catalog feed, Instagram, Bing & m …

2K 3 CVEs

WPSSO Commerce Manager Catalog Feed XML

wpsso-commerce-manager-catalog-feed

100

Meta (Facebook and Instagram) Commerce Manager Catalog Feed XMLs for WooCommerce and custom product pages.

100 No CVEs

Shop UX Toolkit

shop-ux-toolkit

100

Free WooCommerce plugin transforms a stock Storefront shop into an eCommerce site with premium features like Facebook/Instagram integration and more.

0 No CVEs

Product Feed PRO for WooCommerce by AdTribes – Product Feeds for WooCommerce

woo-product-feed-pro

Most popular WooCommerce product feed plugin supporting Google shopping feed, meta/facebook feed, bing product feed & more.

80K 6 CVEs

Developer Profile

Social Commerce by CedCommerce Developer Profile

cedcommerce

21 plugins · 5K total installs

trust score

Avg Security Score

83/100

Avg Patch Time

204 days

View full developer profile

Detection Fingerprints

How We Detect Social Commerce by CedCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/social-commerce-by-cedcommerce/admin/assets/css/ced_fmcw_admin.css/wp-content/plugins/social-commerce-by-cedcommerce/admin/assets/js/ced_fmcw_admin.js/wp-content/plugins/social-commerce-by-cedcommerce/public/assets/css/ced_fmcw_public.css/wp-content/plugins/social-commerce-by-cedcommerce/public/assets/js/ced_fmcw_public.js/wp-content/plugins/social-commerce-by-cedcommerce/public/assets/js/jquery.mCustomScrollbar.concat.min.js/wp-content/plugins/social-commerce-by-cedcommerce/public/assets/js/jquery.mCustomScrollbar.min.js/wp-content/plugins/social-commerce-by-cedcommerce/public/assets/css/jquery.mCustomScrollbar.css/wp-content/plugins/social-commerce-by-cedcommerce/admin/assets/css/intlTelInput.css+2 more

Script Paths

/wp-content/plugins/social-commerce-by-cedcommerce/admin/assets/js/ced_fmcw_admin.js/wp-content/plugins/social-commerce-by-cedcommerce/public/assets/js/ced_fmcw_public.js/wp-content/plugins/social-commerce-by-cedcommerce/public/assets/js/jquery.mCustomScrollbar.concat.min.js/wp-content/plugins/social-commerce-by-cedcommerce/public/assets/js/jquery.mCustomScrollbar.min.js/wp-content/plugins/social-commerce-by-cedcommerce/admin/assets/js/intlTelInput.min.js/wp-content/plugins/social-commerce-by-cedcommerce/admin/assets/js/utils.js

Version Parameters

social-commerce-by-cedcommerce/admin/assets/css/ced_fmcw_admin.css?ver=social-commerce-by-cedcommerce/admin/assets/js/ced_fmcw_admin.js?ver=social-commerce-by-cedcommerce/public/assets/css/ced_fmcw_public.css?ver=social-commerce-by-cedcommerce/public/assets/js/ced_fmcw_public.js?ver=social-commerce-by-cedcommerce/public/assets/js/jquery.mCustomScrollbar.concat.min.js?ver=social-commerce-by-cedcommerce/public/assets/js/jquery.mCustomScrollbar.min.js?ver=social-commerce-by-cedcommerce/public/assets/css/jquery.mCustomScrollbar.css?ver=social-commerce-by-cedcommerce/admin/assets/css/intlTelInput.css?ver=social-commerce-by-cedcommerce/admin/assets/js/intlTelInput.min.js?ver=social-commerce-by-cedcommerce/admin/assets/js/utils.js?ver=

HTML / DOM Fingerprints

CSS Classes

ced_fmcw_tabced_fmcw_tab_contentced_fmcw_wrapced_fmcw_section_titleced_fmcw_content_wrapper

HTML Comments

Data Attributes

data-plugin-name="facebook-marketplace-connector-for-woocommerce"data-plugin-version="1.0.0"data-ced-fmcw-action

JS Globals

ced_fmcw_admin_obj

FAQ