Does Stock Tracking & Reporting for Woocommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Stock Tracking & Reporting for Woocommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Stock Tracking & Reporting for Woocommerce compatible with WordPress 5.7.15?

According to WordPress.org data, Stock Tracking & Reporting for Woocommerce 1.1.3 has been tested up to WordPress 5.7.15. Check the plugin's changelog for the latest compatibility information.

Is Stock Tracking & Reporting for Woocommerce compatible with PHP 5.4+?

Stock Tracking & Reporting for Woocommerce requires PHP 5.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Stock Tracking & Reporting for Woocommerce updated?

Stock Tracking & Reporting for Woocommerce was last updated on Mar 12, 2021. Frequent updates are generally a positive security signal.

What is Stock Tracking & Reporting for Woocommerce's security score?

Stock Tracking & Reporting for Woocommerce has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Stock Tracking & Reporting for Woocommerce Security & Risk Analysis

wordpress.org/plugins/stock-tracking-reporting-for-woocommerce

Track all the stock changes in your Woocommerce store!

0 active installs v1.1.3 PHP 5.4+ WP 5.2+ Updated Mar 12, 2021

inventorystocktracktrackingwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Stock Tracking & Reporting for Woocommerce Safe to Use in 2026?

Generally Safe

Score 85/100

Stock Tracking & Reporting for Woocommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The stock-tracking-reporting-for-woocommerce plugin version 1.1.3 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of any known CVEs, critical or high severity vulnerabilities in its history, and the lack of exposed attack surface points like AJAX handlers, REST API routes, or shortcodes without proper checks are significant strengths. Furthermore, the code utilizes prepared statements for all SQL queries and avoids dangerous functions, file operations, and external HTTP requests, all of which are excellent security practices.

However, the analysis does highlight a couple of areas for concern. The most notable is the output escaping, where only 69% of outputs are properly escaped. This indicates a potential for cross-site scripting (XSS) vulnerabilities if user-supplied data is not consistently sanitized before being displayed to users. Additionally, while there is one capability check present, the complete lack of nonce checks across any entry points is a significant weakness, especially if any of the discovered SQL queries could be triggered by user input without further validation.

In conclusion, this plugin has a solid foundation with robust data handling and a clean vulnerability history. The primary risks lie in potential XSS due to incomplete output escaping and the absence of nonce checks, which could be exploited if sensitive operations are inadvertently exposed. Addressing these specific areas would further enhance its security.

Key Concerns

Output escaping is not consistently applied
Missing nonce checks on potential entry points

Vulnerabilities

None known

Stock Tracking & Reporting for Woocommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Stock Tracking & Reporting for Woocommerce Code Analysis

Dangerous Functions

Raw SQL Queries

15 prepared

Unescaped Output

49 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared15 total queries

Output Escaping

69% escaped71 total outputs

Attack Surface

Stock Tracking & Reporting for Woocommerce Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 20

actionadmin_noticesbootstrap.php:116

actionwoocommerce_reduce_order_stocksrc\monitor.php:59

actionwoocommerce_order_status_cancelledsrc\monitor.php:65

actionwoocommerce_product_set_stocksrc\monitor.php:80

filtersubmenu_filesrc\reporter.php:72

actioninitsrc\reporter.php:77

actionadmin_menusrc\reporter.php:83

actionadmin_enqueue_scriptssrc\reporter.php:88

actionrest_api_initsrc\reporter.php:94

actionrest_api_initsrc\reporter.php:110

actionrest_api_initsrc\reporter.php:126

actionrest_api_initsrc\reporter.php:142

actionrest_api_initsrc\reporter.php:158

actionrest_api_initsrc\reporter.php:174

actionrest_api_initsrc\reporter.php:190

actionrest_api_initsrc\reporter.php:206

actionrest_api_initsrc\reporter.php:222

actionrest_api_initsrc\reporter.php:238

filterplugin_row_metasrc\stock_records.php:240

actionplugins_loadedstock-tracking-reporting-for-woocommerce.php:45

Maintenance & Trust

Stock Tracking & Reporting for Woocommerce Maintenance & Trust

Maintenance Signals

WordPress version tested5.7.15

Last updatedMar 12, 2021

PHP min version5.4

Downloads960

Community Trust

Rating20/100

Number of ratings1

Active installs0

Alternatives

Stock Tracking & Reporting for Woocommerce Alternatives

Aramex eCommCore

aramex-ecommcore

100

Seamlessly connect WooCommerce with Aramex Unified Portal for automated orders, shipment creation, tracking, and inventory sync.

10 No CVEs

Advanced Shipment Tracking for WooCommerce

woo-advanced-shipment-tracking

Add shipment tracking info to WooCommerce orders, send tracking numbers to customers via email, and let them track deliveries from My Account.

60K 2 CVEs

Pixel Manager for WooCommerce – Conversion Tracking, Google Ads, GA4, TikTok, Dynamic Remarketing

woocommerce-google-adwords-conversion-tracking-tag

Conversion tracking for WooCommerce. Google Ads, GA4, Meta/Facebook Pixel, TikTok & more. Recover 30% more conversions with server-side tracking!

50K 4 CVEs

Conversion Tracking for WooCommerce

woocommerce-conversion-tracking

Adds various conversion tracking codes to cart, checkout, registration success and product page on WooCommerce

20K 4 CVEs

Stock Manager for WooCommerce

woocommerce-stock-manager

WooCommerce stock management plugin to manage and edit product stock and their variables from a single dashboard. Stock log, import/export, filters!

20K 4 CVEs

Developer Profile

Stock Tracking & Reporting for Woocommerce Developer Profile

Andrew Stewart

2 plugins · 50 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Stock Tracking & Reporting for Woocommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/stock-tracking-reporting-for-woocommerce/views/admin/js/transaction.js/wp-content/plugins/stock-tracking-reporting-for-woocommerce/views/admin/js/http-rest.js/wp-content/plugins/stock-tracking-reporting-for-woocommerce/views/admin/js/http-url.js/wp-content/plugins/stock-tracking-reporting-for-woocommerce/views/admin/js/html.js/wp-content/plugins/stock-tracking-reporting-for-woocommerce/views/admin/js/html-table.js/wp-content/plugins/stock-tracking-reporting-for-woocommerce/views/admin/js/html-settings-mapper.js/wp-content/plugins/stock-tracking-reporting-for-woocommerce/views/admin/css/admin.css

HTML / DOM Fingerprints

HTML Comments

<!-- Note, the above try block only catches errors during the plugin
    initialisation. Any subsequent hooks (like REST API paths) aren't
    caught here. -->

Data Attributes

data-icwcsr-plugin-code

JS Globals

window.ICWCSR

REST Endpoints

/wp-json/icwcsr/v1

FAQ