Does StoreMan have any unpatched vulnerabilities?

No. All known vulnerabilities in StoreMan have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is StoreMan compatible with WordPress 6.8.5?

According to WordPress.org data, StoreMan 2.3.3 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

How often is StoreMan updated?

StoreMan was last updated on Nov 12, 2025. Frequent updates are generally a positive security signal.

What is StoreMan's security score?

StoreMan has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

StoreMan Security & Risk Analysis

wordpress.org/plugins/storeman

This is a plug and play plugin that adds full support to StoreMan with your Woocommerce wordpress site

40 active installs v2.3.3 PHP + WP + Updated Nov 12, 2025

export-productimport-productstock-managerstoremanwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is StoreMan Safe to Use in 2026?

Generally Safe

Score 100/100

StoreMan has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago

Risk Assessment

The storeman plugin, version 2.3.3, exhibits a generally strong security posture based on the provided static analysis. The absence of dangerous functions, proper SQL prepared statement usage, and 100% output escaping are significant strengths. Furthermore, all identified entry points (REST API routes and cron events) appear to have proper capability checks, indicating a good understanding of WordPress security best practices. The lack of any recorded historical vulnerabilities, including unpatched CVEs, further bolsters this positive assessment.

Key Concerns

Zero nonce checks
No taint analysis results available

Vulnerabilities

None known

StoreMan Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

StoreMan Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared2 total queries

Output Escaping

100% escaped4 total outputs

Attack Surface

StoreMan Attack Surface

Entry Points2

Unprotected0

REST API Routes 2

POST/wp-json/wc/v3/stockadmin\class-storeman-admin.php:481

POST/wp-json/wc/v3/upsertadmin\class-storeman-admin.php:506

WordPress Hooks 25

actionplugins_loadedincludes\class-storeman.php:144

actionwoocommerce_webhook_topic_hooksincludes\class-storeman.php:159

actionwoocommerce_valid_webhook_eventsincludes\class-storeman.php:160

actionwoocommerce_webhook_topicsincludes\class-storeman.php:161

actionelementor_pro/forms/actions/registerincludes\class-storeman.php:163

actionwoocommerce_update_product_variationincludes\class-storeman.php:165

filterwoocommerce_max_webhook_delivery_failuresincludes\class-storeman.php:167

actionadmin_enqueue_scriptsincludes\class-storeman.php:170

actionadmin_enqueue_scriptsincludes\class-storeman.php:171

actionwoocommerce_rest_pre_insert_product_variation_objectincludes\class-storeman.php:172

filterwoocommerce_rest_batch_items_limitincludes\class-storeman.php:175

filterwoocommerce_webhook_should_deliverincludes\class-storeman.php:176

actionsave_post_productincludes\class-storeman.php:178

actionwoocommerce_rest_pre_insert_shop_order_objectincludes\class-storeman.php:182

filterrest_product_variation_collection_paramsincludes\class-storeman.php:184

actionwoocommerce_rest_pre_insert_product_objectincludes\class-storeman.php:190

actionwoocommerce_rest_insert_product_objectincludes\class-storeman.php:191

filterwoocommerce_stock_amountincludes\class-storeman.php:193

filterwoocommerce_rest_shop_order_schemaincludes\class-storeman.php:197

actionwoocommerce_rest_pre_insert_product_variation_objectincludes\class-storeman.php:199

actionwoocommerce_rest_insert_product_variation_objectincludes\class-storeman.php:200

actionrest_api_initincludes\class-storeman.php:202

actionload_stock_from_fileincludes\class-storeman.php:203

actionwp_enqueue_scriptsincludes\class-storeman.php:217

actionwp_enqueue_scriptsincludes\class-storeman.php:218

Scheduled Events 1

load_stock_from_file

Maintenance & Trust

StoreMan Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedNov 12, 2025

PHP min version

Downloads5K

Community Trust

Rating0/100

Number of ratings0

Active installs40

Alternatives

StoreMan Alternatives

Custom Product Taxonomy To woo Exporter/importer

add-custom-taxonomy-to-woo-exporter-importer

Add Custom Product Taxonomy to woocommerce CSV exporter importer

30 No CVEs

Stock Manager for WooCommerce

woocommerce-stock-manager

WooCommerce stock management plugin to manage and edit product stock and their variables from a single dashboard. Stock log, import/export, filters!

20K 4 CVEs

WP All Import – Product Import for WooCommerce

woocommerce-xml-csv-product-import

100

Drag & drop to import products from any CSV, XML, Excel, or Google Sheets file. Supports variations, images, attributes, brands, and more with pow …

20K No CVEs

WP All Export – Product Export Add-On for WooCommerce

product-export-for-woocommerce

100

Drag & drop to export products to CSV, Excel, or XML files of any format. Supports variations, images, attributes, brands, and more with powerful …

10K No CVEs

Store Exporter – Export WooCommerce Products, Orders, Subscriptions, Customers

woocommerce-exporter

Export WooCommerce products, orders, customers, categories, tags, subscriptions & more into formatted files like CSV, XML, Excel 2007, XLS, XLSX.

7K 9 CVEs

Developer Profile

StoreMan Developer Profile

avitrop

3 plugins · 240 total installs

trust score

Avg Security Score

90/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect StoreMan

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/storeman/admin/css/storeman-admin.css/wp-content/plugins/storeman/admin/js/storeman-admin.js/wp-content/plugins/storeman/assets/css/storeman.css/wp-content/plugins/storeman/assets/js/storeman.js

Script Paths

/wp-content/plugins/storeman/admin/js/storeman-admin.js

Version Parameters

storeman-admin-css?ver=storeman-admin-js?ver=storeman-css?ver=storeman-js?ver=

HTML / DOM Fingerprints

CSS Classes

storeman-widgetstoreman-cart-widgetstoreman-minicart-widgetstoreman-minicart-countstoreman-minicart-removestoreman-minicart-itemsstoreman-minicart-itemstoreman-minicart-item-image+5 more

Data Attributes

data-storeman-widget-iddata-storeman-cart-iddata-storeman-product-id

JS Globals

storeman_ajax_object

REST Endpoints

/wp-json/storeman/v1/cart/wp-json/storeman/v1/products/wp-json/storeman/v1/orders

Shortcode Output

[storeman_cart][storeman_checkout][storeman_products][storeman_product_search]

FAQ