WP-Safety

Sucursales de Correo Argentino para WooCommerce Security & Risk Analysis

wordpress.org/plugins/sucursales-correo-argentino-para-woocommerce

Sucursales Correo Argentino te permite obtener desde la API de Correo Argentino, un listado de sucursales y mostrarlas en el checkout, basándose en la …

400 active installs v0.1.0 PHP + WP 5.0+ Updated May 9, 2025
correo-argentinoenvioswoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Sucursales de Correo Argentino para WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Sucursales de Correo Argentino para WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10mo ago
Risk Assessment

The 'sucursales-correo-argentino-para-woocommerce' plugin, version 0.1.0, exhibits a concerning security posture due to a significant number of unprotected entry points. All four identified AJAX handlers lack authentication checks, creating a direct pathway for unauthorized actions. While the plugin demonstrates good practices in handling SQL queries with prepared statements and avoiding dangerous functions, the lack of authorization on its AJAX endpoints is a critical flaw. The absence of nonce checks further exacerbates this risk, making it easier for attackers to forge requests. Furthermore, the low percentage of properly escaped output suggests a potential for cross-site scripting (XSS) vulnerabilities, although this is not explicitly confirmed by taint analysis. The plugin's vulnerability history is clean, which is a positive indicator, but it does not negate the immediate risks identified in the static analysis. The strengths lie in SQL query handling, but they are overshadowed by the severe lack of access control on its primary interaction points.

Key Concerns

  • Unprotected AJAX handlers
  • Missing nonce checks on AJAX
  • Low output escaping percentage
Vulnerabilities
None known

Sucursales de Correo Argentino para WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Sucursales de Correo Argentino para WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
6
1 escaped
Nonce Checks
0
Capability Checks
0
File Operations
1
External Requests
1
Bundled Libraries
0

Output Escaping

14% escaped7 total outputs
Attack Surface
4 unprotected

Sucursales de Correo Argentino para WooCommerce Attack Surface

Entry Points4
Unprotected4

AJAX Handlers 4

authwp_ajax_get_sucursales_ca_freeincludes\functions.php:4
noprivwp_ajax_get_sucursales_ca_freeincludes\functions.php:5
authwp_ajax_get_localidades_ca_freeincludes\functions.php:7
noprivwp_ajax_get_localidades_ca_freeincludes\functions.php:8
WordPress Hooks 10
actionwp_footerincludes\functions.php:112
actionwoocommerce_after_order_notesincludes\functions.php:342
actionwoocommerce_checkout_processincludes\functions.php:361
actionwoocommerce_admin_order_data_after_shipping_addressincludes\functions.php:374
actionwoocommerce_thankyouincludes\functions.php:382
actionwoocommerce_checkout_update_order_metaincludes\functions.php:394
actioninitwanderlust-ca-shipping.php:24
actionwoocommerce_shipping_initwanderlust-ca-shipping.php:57
filterwoocommerce_shipping_methodswanderlust-ca-shipping.php:71
actionadmin_enqueue_scriptswanderlust-ca-shipping.php:80
Maintenance & Trust

Sucursales de Correo Argentino para WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedMay 9, 2025
PHP min version
Downloads18K

Community Trust

Rating74/100
Number of ratings6
Active installs400
Alternatives

Sucursales de Correo Argentino para WooCommerce Alternatives

Regiones de Chile para WooCommerce

Regiones de Chile para WooCommerce

regiones-de-chile-para-woocommerce

A
85

Agrega las regiones de Chile al proceso de pago de WooCommerce

500 No CVEs
DrEnvio for WooCommerce

DrEnvio for WooCommerce

drenvio-for-woocommerce

A
92

Permite que tus clientes coticen por más de 10 paqueterías desde el checkout de tu tienda y con esto aumenta tu conversión.

100 No CVEs
OCA para WooCommerce

OCA para WooCommerce

oca-for-woocommerce

A
100

Conectá tu tienda con OCA y cotizá tus pedidos en tiempo real, procesá pedidos, imprimí etiquetas y mucho mas!

100 No CVEs
Envíos por Correo Argentino, OCA e-Pak y Andreani para WooCommerce en Argentina

Envíos por Correo Argentino, OCA e-Pak y Andreani para WooCommerce en Argentina

carriers-of-argentina-for-woocommerce

A
100

Agregue Correo Argentino / Andreani / Oca ePack al complemento WooCommerce

50 No CVEs
PKT1 Centro de envios

PKT1 Centro de envios

pkt1-centro-de-envios

A
99

Calcule tarifas de envio en tiempo real con los principales agentes de paqueteria regionales y mundiales

40 1 CVE
Developer Profile

Sucursales de Correo Argentino para WooCommerce Developer Profile

Wanderlust Codes

6 plugins · 2K total installs

77
trust score
Avg Security Score
97/100
Avg Patch Time
200 days
View full developer profile
Detection Fingerprints

How We Detect Sucursales de Correo Argentino para WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/sucursales-correo-argentino-para-woocommerce/assets/localidades.csv

HTML / DOM Fingerprints

CSS Classes
woocommerce-checkout-review-order-table
JS Globals
wc_checkout_params
REST Endpoints
/wp-json/wp/v2/users
FAQ

Frequently Asked Questions about Sucursales de Correo Argentino para WooCommerce