WP-Safety

Sync Sage 100 Security & Risk Analysis

wordpress.org/plugins/sync-sage-100

A user friendly plugin to synchronize Sage 100 data into WordPress with API endpoints and manual import.

0 active installs v1.0.2 PHP 7.0+ WP 4.4+ Updated Nov 4, 2024
merge-userssage-100user-merger
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Sync Sage 100 Safe to Use in 2026?

Generally Safe

Score 92/100

Sync Sage 100 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The 'sync-sage-100' plugin version 1.0.2 demonstrates a generally strong security posture based on the provided static analysis. It has a very limited attack surface, with only one AJAX handler, and crucially, this handler appears to be protected by both nonce and capability checks. The absence of SQL injection vulnerabilities due to the use of prepared statements, proper output escaping for the vast majority of outputs, and no detected dangerous functions or file operations further contribute to its security. Taint analysis also shows no concerning flows, reinforcing the impression of secure coding practices. The plugin's vulnerability history is also completely clean, with no recorded CVEs, indicating a track record of security awareness or simply a lack of exploitable vulnerabilities discovered to date.

Vulnerabilities
None known

Sync Sage 100 Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Sync Sage 100 Release Timeline

v1.0.2Current
v1.0.1
v1.0.0
Code Analysis
Analyzed Mar 17, 2026

Sync Sage 100 Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
5
39 escaped
Nonce Checks
1
Capability Checks
2
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

89% escaped44 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

1 flows
<wpss_settings> (inc\wpss_settings.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Sync Sage 100 Attack Surface

Entry Points1
Unprotected0

AJAX Handlers 1

authwp_ajax_wpss_update_settingsinc\functions.php:186
WordPress Hooks 2
actionadmin_enqueue_scriptsinc\functions.php:73
actionadmin_menuindex.php:57
Maintenance & Trust

Sync Sage 100 Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedNov 4, 2024
PHP min version7.0
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Sync Sage 100 Alternatives

WP User Merger

WP User Merger

wp-user-merger

A
98

WP User Merger is a WordPress plugin that allows you to merge two different users with seletable user fields.

300 3 CVEs
Developer Profile

Sync Sage 100 Developer Profile

Fahad Mahmood

44 plugins · 33K total installs

76
trust score
Avg Security Score
95/100
Avg Patch Time
228 days
View full developer profile
Detection Fingerprints

How We Detect Sync Sage 100

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/sync-sage-100/css/fontawesome.min.css/wp-content/plugins/sync-sage-100/css/slimselect.min.css/wp-content/plugins/sync-sage-100/js/slimselect.min.js/wp-content/plugins/sync-sage-100/js/admin-scripts.js/wp-content/plugins/sync-sage-100/js/jquery.blockUI.js/wp-content/plugins/sync-sage-100/js/bootstrap.min.js/wp-content/plugins/sync-sage-100/css/bootstrap.min.css/wp-content/plugins/sync-sage-100/css/dashboard-style.css+1 more
Script Paths
/wp-content/plugins/sync-sage-100/js/admin-scripts.js/wp-content/plugins/sync-sage-100/js/jquery.blockUI.js/wp-content/plugins/sync-sage-100/js/slimselect.min.js/wp-content/plugins/sync-sage-100/js/bootstrap.min.js

HTML / DOM Fingerprints

CSS Classes
wpss-settings-page
Data Attributes
data-nonce
JS Globals
wpss_objwpss_all_pluginswpss_active_pluginswpss_datawpss_prowpss_activated+4 more
FAQ

Frequently Asked Questions about Sync Sage 100