WP-Safety

Sync Sage 100 Security & Risk Analysis

wordpress.org/plugins/sync-sage-100

A user friendly plugin to synchronize Sage 100 data into WordPress with API endpoints and manual import.

0 active installs v1.0.2 PHP 7.0+ WP 4.4+ Updated Unknown
merge-userssage-100user-merger
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Sync Sage 100 Safe to Use in 2026?

Generally Safe

Score 100/100

Sync Sage 100 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs
Risk Assessment

The 'sync-sage-100' plugin version 1.0.2 demonstrates a generally strong security posture based on the provided static analysis. It has a very limited attack surface, with only one AJAX handler, and crucially, this handler appears to be protected by both nonce and capability checks. The absence of SQL injection vulnerabilities due to the use of prepared statements, proper output escaping for the vast majority of outputs, and no detected dangerous functions or file operations further contribute to its security. Taint analysis also shows no concerning flows, reinforcing the impression of secure coding practices. The plugin's vulnerability history is also completely clean, with no recorded CVEs, indicating a track record of security awareness or simply a lack of exploitable vulnerabilities discovered to date.

Vulnerabilities
None known

Sync Sage 100 Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Sync Sage 100 Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
5
39 escaped
Nonce Checks
1
Capability Checks
2
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

89% escaped44 total outputs
Data Flows
All sanitized

Data Flow Analysis

1 flows
<wpss_settings> (inc\wpss_settings.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Sync Sage 100 Attack Surface

Entry Points1
Unprotected0

AJAX Handlers 1

authwp_ajax_wpss_update_settingsinc\functions.php:186
WordPress Hooks 2
actionadmin_enqueue_scriptsinc\functions.php:73
actionadmin_menuindex.php:57
Maintenance & Trust

Sync Sage 100 Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedUnknown
PHP min version7.0
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Sync Sage 100 Alternatives

WP User Merger

WP User Merger

wp-user-merger

A
98

WP User Merger is a WordPress plugin that allows you to merge two different users with seletable user fields.

300 3 CVEs
Developer Profile

Sync Sage 100 Developer Profile

Fahad Mahmood

40 plugins · 33K total installs

76
trust score
Avg Security Score
96/100
Avg Patch Time
237 days
View full developer profile
Detection Fingerprints

How We Detect Sync Sage 100

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/sync-sage-100/css/fontawesome.min.css/wp-content/plugins/sync-sage-100/css/slimselect.min.css/wp-content/plugins/sync-sage-100/js/slimselect.min.js/wp-content/plugins/sync-sage-100/js/admin-scripts.js/wp-content/plugins/sync-sage-100/js/jquery.blockUI.js/wp-content/plugins/sync-sage-100/js/bootstrap.min.js/wp-content/plugins/sync-sage-100/css/bootstrap.min.css/wp-content/plugins/sync-sage-100/css/dashboard-style.css+1 more
Script Paths
/wp-content/plugins/sync-sage-100/js/admin-scripts.js/wp-content/plugins/sync-sage-100/js/jquery.blockUI.js/wp-content/plugins/sync-sage-100/js/slimselect.min.js/wp-content/plugins/sync-sage-100/js/bootstrap.min.js

HTML / DOM Fingerprints

CSS Classes
wpss-settings-page
Data Attributes
data-nonce
JS Globals
wpss_objwpss_all_pluginswpss_active_pluginswpss_datawpss_prowpss_activated+4 more
FAQ

Frequently Asked Questions about Sync Sage 100