Does ووسلام – همگام سازی ووکامرس و باسلام have any unpatched vulnerabilities?

No. All known vulnerabilities in ووسلام – همگام سازی ووکامرس و باسلام have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is ووسلام – همگام سازی ووکامرس و باسلام compatible with WordPress 6.8.5?

According to WordPress.org data, ووسلام – همگام سازی ووکامرس و باسلام 1.8.0 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is ووسلام – همگام سازی ووکامرس و باسلام compatible with PHP 7.4+?

ووسلام – همگام سازی ووکامرس و باسلام requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is ووسلام – همگام سازی ووکامرس و باسلام updated?

ووسلام – همگام سازی ووکامرس و باسلام was last updated on Mar 5, 2026. Frequent updates are generally a positive security signal.

What is ووسلام – همگام سازی ووکامرس و باسلام's security score?

ووسلام – همگام سازی ووکامرس و باسلام has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

ووسلام – همگام سازی ووکامرس و باسلام Security & Risk Analysis

wordpress.org/plugins/sync-basalam

اتصال و همگام سازی ووکامرس و باسلام و اضافه کردن و بروزرسانی محصولات از ووکامرس به باسلام و همگام سازی اتوماتیک آن و مدیریت سفارشات باسلام در ووکامرس

3K active installs v1.8.0 PHP 7.4+ WP 6.0+ Updated Mar 5, 2026

basalamintegrationwoocommercewoosalam

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is ووسلام – همگام سازی ووکامرس و باسلام Safe to Use in 2026?

Generally Safe

Score 100/100

ووسلام – همگام سازی ووکامرس و باسلام has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 29d ago

Risk Assessment

The sync-basalam plugin v1.8.0 exhibits a mixed security posture. While it demonstrates good practices in SQL query preparation (81%) and output escaping (90%), a significant concern arises from its attack surface. A total of 5 entry points are identified, with 4 AJAX handlers lacking authentication checks. This presents a substantial risk, as these handlers could potentially be exploited by unauthenticated users. Taint analysis revealed 2 flows with unsanitized paths, although they were not classified as critical or high severity. The plugin's vulnerability history is clean, with no recorded CVEs. This lack of historical vulnerabilities could indicate diligent security practices or simply a lack of past scrutiny. However, the presence of unsanitized paths and a large number of unprotected AJAX endpoints are notable weaknesses that warrant attention. The plugin's strengths lie in its responsible use of prepared statements and output escaping, but these are overshadowed by the immediate risks posed by its exposed AJAX endpoints.

Key Concerns

4 unprotected AJAX handlers
2 flows with unsanitized paths

Vulnerabilities

None known

ووسلام – همگام سازی ووکامرس و باسلام Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

ووسلام – همگام سازی ووکامرس و باسلام Code Analysis

Dangerous Functions

Raw SQL Queries

108 prepared

Unescaped Output

727 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

81% prepared133 total queries

Output Escaping

90% escaped809 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

5 flows2 with unsanitized paths

triggerAsyncRequest (AsyncBackgroundProcess.php:88)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

ووسلام – همگام سازی ووکامرس و باسلام Attack Surface

Entry Points5

Unprotected4

AJAX Handlers 4

authwp_ajax_sync_basalam_connect_productincludes\Registrar\AdminRegistrar.php:104

authwp_ajax_basalam_search_productsincludes\Registrar\AdminRegistrar.php:105

authwp_ajax_sync_basalam_mark_pointer_onboarding_completedincludes\Registrar\AdminRegistrar.php:106

authwp_ajax_basalam_calculate_tasks_per_minuteincludes\Registrar\AdminRegistrar.php:111

REST API Routes 1

POST/wp-json/sync-basalam/v1/order-managerincludes\OrderEndpoint.php:16

WordPress Hooks 8

filtercron_schedulesAsyncBackgroundProcess.php:28

actionwoocommerce_initincludes\Migrations\Versions\Migration_1_7_4.php:15

actionadmin_noticesincludes\Plugin.php:54

actionadmin_noticesincludes\Plugin.php:61

actioninitJobsRunner.php:22

actionbefore_woocommerce_initsync-basalam.php:31

actionadmin_noticessync-basalam.php:38

actioninitsync-basalam.php:45

Maintenance & Trust

ووسلام – همگام سازی ووکامرس و باسلام Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedMar 5, 2026

PHP min version7.4

Downloads41K

Community Trust

Rating94/100

Number of ratings3

Active installs3K

Alternatives

ووسلام – همگام سازی ووکامرس و باسلام Alternatives

Autocomplete WooCommerce Orders

autocomplete-woocommerce-orders

100

Enhance your WooCommerce store with Autocomplete Orders. Automatically complete orders after payment, perfect for virtual goods and subscriptions.

40K No CVEs

Bit integrations – Easy Automator with no-code automation, integrate Webhook and automate 300+ Platform

bit-integrations

Perfect Automation and integration plugin: Connect 300+ platforms and automate CRM, Email marketing tools, Google Sheets, Contact forms, LMS and more

20K 1 CVE

Shiprocket

shiprocket

Auto Sync your Woocommerce store orders & ship them at lowest shipping rates. Automate your shipping, save time & money.

10K 1 unpatched

افزونه پیامک حرفه ای فراز اس ام اس

farazsms

شما می توانید با استفاده از افزونه فراز اس ام اس، سایت خود را با ابزاری خودکار برای ارسال پیامک و ذخیره شماره در دفترچه تلفن، تقویت کنید.

2K 1 unpatched

Cool Integration for LearnPress & WooCommerce

manca-lp-wc-integration

Lite plugin to get LearnPress Courses & WooCommerce Product on Sync. User Auto Enrollment on Payment Complete.

1K No CVEs

Developer Profile

ووسلام – همگام سازی ووکامرس و باسلام Developer Profile

hamsalam

1 plugin · 3K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect ووسلام – همگام سازی ووکامرس و باسلام

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/sync-basalam/assets/css/sync-basalam.css/wp-content/plugins/sync-basalam/assets/js/sync-basalam.js/wp-content/plugins/sync-basalam/assets/js/components/ProductPicker.js/wp-content/plugins/sync-basalam/assets/js/components/SyncStatusBadge.js/wp-content/plugins/sync-basalam/assets/js/sync-basalam-admin.js

Script Paths

/wp-content/plugins/sync-basalam/assets/js/sync-basalam.js/wp-content/plugins/sync-basalam/assets/js/components/ProductPicker.js/wp-content/plugins/sync-basalam/assets/js/components/SyncStatusBadge.js/wp-content/plugins/sync-basalam/assets/js/sync-basalam-admin.js

Version Parameters

sync-basalam/assets/css/sync-basalam.css?ver=sync-basalam/assets/js/sync-basalam.js?ver=sync-basalam/assets/js/components/ProductPicker.js?ver=sync-basalam/assets/js/components/SyncStatusBadge.js?ver=sync-basalam/assets/js/sync-basalam-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

sync-basalam-noticesync-basalam-sync-status-badgesync-basalam-product-pickersync-basalam-pointer-tour

HTML Comments

Data Attributes

data-sync-basalam-product-iddata-sync-basalam-product-sync-status

JS Globals

syncBasalamsyncBasalamAdminProductPickerSyncStatusBadgeAnnouncementCenter

REST Endpoints

/wp-json/sync-basalam/v1/connect-product/wp-json/sync-basalam/v1/search-products/wp-json/sync-basalam/v1/mark-pointer-onboarding-completed/wp-json/sync-basalam/v1/announcement-center/mark-seen/wp-json/sync-basalam/v1/announcement-center/fetch-page

FAQ