Does StoreNest for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is StoreNest for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, StoreNest for WooCommerce 1.0.9 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is StoreNest for WooCommerce compatible with PHP 7.4+?

StoreNest for WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is StoreNest for WooCommerce updated?

StoreNest for WooCommerce was last updated on Apr 12, 2026. Frequent updates are generally a positive security signal.

What is StoreNest for WooCommerce's security score?

StoreNest for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

StoreNest for WooCommerce Security & Risk Analysis

wordpress.org/plugins/storenest-for-woocommerce

The staff portal WooCommerce never built — a clean, modern order and product management interface your team will actually enjoy using.

0 active installs v1.0.9 PHP 7.4+ WP 6.0+ Updated Apr 12, 2026

order-managementproduct-managementstaff-portalwoocommercewoocommerce-admin

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is StoreNest for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

StoreNest for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The static analysis of storenest-for-woocommerce v1.0.9 indicates a generally good security posture with a strong emphasis on secure coding practices. The plugin demonstrates a commitment to using prepared statements for all SQL queries and a very high percentage of properly escaped output, significantly mitigating common web vulnerabilities like SQL injection and XSS. The absence of dangerous functions, file operations, and known CVEs further strengthens its security profile. However, the presence of four taint flows with unsanitized paths, despite not being classified as critical or high severity, warrants attention as it suggests potential vectors for data manipulation or leakage if exploited under specific conditions. Additionally, while the attack surface is small and all entry points have authentication checks, the existence of unprotected AJAX handlers (though reported as 0 in the summary) would be a critical concern if it were not for the explicit 'Unprotected: 0' statement. The lack of historical vulnerabilities is positive but doesn't guarantee future security. The plugin's strengths lie in its adherence to fundamental security principles, but the identified unsanitized taint flows represent a minor area of concern that could be further investigated.

Key Concerns

Flows with unsanitized paths

Vulnerabilities

None known

StoreNest for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

StoreNest for WooCommerce Release Timeline

v1.0.9Current

v1.0.8

v1.0.7

v1.0.6

v1.0.5

Code Analysis

Analyzed Apr 16, 2026

StoreNest for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

18 prepared

Unescaped Output

224 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared18 total queries

Output Escaping

99% escaped226 total outputs

Data Flows · Security

4 unsanitized

Data Flow Analysis

8 flows4 with unsanitized paths

handle_form (includes/class-license.php:63)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

StoreNest for WooCommerce Attack Surface

Entry Points2

Unprotected0

AJAX Handlers 2

authwp_ajax_storenest_subscribeincludes/class-storenest.php:84

authwp_ajax_storenest_subscribetrunk/includes/class-storenest.php:84

WordPress Hooks 42

actionadmin_menuincludes/class-admin-portal.php:29

actionadmin_initincludes/class-admin-portal.php:30

actionlogin_redirectincludes/class-admin-portal.php:31

filtershow_admin_barincludes/class-admin-portal.php:32

actionadmin_enqueue_scriptsincludes/class-assets.php:29

actionadmin_print_stylesincludes/class-assets.php:72

actionbefore_woocommerce_initincludes/class-hpos-compat.php:24

actionadmin_menuincludes/class-license.php:36

actionadmin_initincludes/class-license.php:37

actionstorenest_daily_license_checkincludes/class-license.php:38

actionrest_api_initincludes/class-rest-api.php:33

actionadmin_noticesincludes/class-storenest.php:78

actionadmin_initincludes/class-storenest.php:79

actionadmin_noticesincludes/class-storenest.php:82

actionadmin_enqueue_scriptsincludes/class-storenest.php:83

actionadmin_initincludes/class-storenest.php:85

actionadmin_noticesstorenest-for-woocommerce.php:27

actionadmin_noticesstorenest-for-woocommerce.php:47

actionadmin_noticesstorenest-for-woocommerce.php:56

actionplugins_loadedstorenest-for-woocommerce.php:174

actionplugins_loadedstorenest-for-woocommerce.php:188

actionadmin_menutrunk/includes/class-admin-portal.php:29

actionadmin_inittrunk/includes/class-admin-portal.php:30

actionlogin_redirecttrunk/includes/class-admin-portal.php:31

filtershow_admin_bartrunk/includes/class-admin-portal.php:32

actionadmin_enqueue_scriptstrunk/includes/class-assets.php:29

actionadmin_print_stylestrunk/includes/class-assets.php:72

actionbefore_woocommerce_inittrunk/includes/class-hpos-compat.php:24

actionadmin_menutrunk/includes/class-license.php:36

actionadmin_inittrunk/includes/class-license.php:37

actionstorenest_daily_license_checktrunk/includes/class-license.php:38

actionrest_api_inittrunk/includes/class-rest-api.php:33

actionadmin_noticestrunk/includes/class-storenest.php:78

actionadmin_inittrunk/includes/class-storenest.php:79

actionadmin_noticestrunk/includes/class-storenest.php:82

actionadmin_enqueue_scriptstrunk/includes/class-storenest.php:83

actionadmin_inittrunk/includes/class-storenest.php:85

actionadmin_noticestrunk/storenest-for-woocommerce.php:27

actionadmin_noticestrunk/storenest-for-woocommerce.php:47

actionadmin_noticestrunk/storenest-for-woocommerce.php:56

actionplugins_loadedtrunk/storenest-for-woocommerce.php:174

actionplugins_loadedtrunk/storenest-for-woocommerce.php:188

Scheduled Events 2

storenest_daily_license_check

Maintenance & Trust

StoreNest for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 12, 2026

PHP min version7.4

Downloads129

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

StoreNest for WooCommerce Alternatives

Smart Manager – Advanced WooCommerce Bulk Edit & Inventory Management

smart-manager-for-wp-e-commerce

WooCommerce Advanced Bulk Edit products, orders, & posts in an Excel-like sheet editor. Get advanced WooCommerce stock, pricing, & order management.

10K 4 CVEs

Delete All Products for WooCommerce

delete-all-products

100

Easily delete all WooCommerce products permanently or move them to the trash in just a few clicks.

4K No CVEs

Management App for WooCommerce – Order notifications, Order management, Lead management, Uptime Monitoring

wemanage-app-worker

Woocommerce Mobile App - manage your woocommerce products, get order notifications, and manage orders and leads from your mobile phone.

1K 1 CVE

Veeqo for WooCommerce

veeqo-for-woocommerce

Veeqo integrates with your WooCommerce stock with other online marketplaces and allows you to print shipping labels in one click.

700 No CVEs

Billbee – Auftragsabwicklung, Warenwirtschaft, Automatisierung

billbee-auftragsabwicklung-warenwirtschaft-automatisierung

Requires at least: 3.0.1 Tested up to: 5.9 Stable tag: 1.3 License: GPLv2 or later License URI: http://www.gnu.org/licenses/gpl-2.0.

500 No CVEs

Developer Profile

StoreNest for WooCommerce Developer Profile

PluginNests

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect StoreNest for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/storenest-for-woocommerce/assets/css/admin.css/wp-content/plugins/storenest-for-woocommerce/assets/css/frontend.css/wp-content/plugins/storenest-for-woocommerce/assets/js/admin.js/wp-content/plugins/storenest-for-woocommerce/assets/js/frontend.js

Version Parameters

storenest-for-woocommerce/assets/css/admin.css?ver=storenest-for-woocommerce/assets/css/frontend.css?ver=storenest-for-woocommerce/assets/js/admin.js?ver=storenest-for-woocommerce/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

storenest-order-detailsstorenest-product-editstorenest-order-liststorenest-product-list

HTML Comments

+1 more

Data Attributes

data-storenest-order-iddata-storenest-product-iddata-storenest-viewdata-storenest-action

JS Globals

window.storenest_admin_ajax_urlwindow.storenest_noncewindow.storenest_params

REST Endpoints

/wp-json/storenest/v1/orders/wp-json/storenest/v1/products/wp-json/storenest/v1/settings

Shortcode Output

[storenest_orders][storenest_products][storenest_dashboard]

FAQ