WP-Safety

Bulk Product Editor plugin allows you to create and edit your WooCommerce products and categories with Google Sheets. Security & Risk Analysis

wordpress.org/plugins/sync-wc-google

Managing products like creating, updating inventory and prices, or updating images, short descriptions, or titles for SEO across multiple products is …

500 active installs v9.6 PHP + WP + Updated Oct 23, 2025
97
A · Safe
CVEs total2
Unpatched0
Last CVEApr 8, 2025
Plugin page Download
Safety Verdict

Is Bulk Product Editor plugin allows you to create and edit your WooCommerce products and categories with Google Sheets. Safe to Use in 2026?

Generally Safe

Score 97/100

Bulk Product Editor plugin allows you to create and edit your WooCommerce products and categories with Google Sheets. has a strong security track record. Known vulnerabilities have been patched promptly.

2 known CVEsLast CVE: Apr 8, 2025Updated 5mo ago
Risk Assessment

The static analysis of the "sync-wc-google" plugin v9.6 reveals a generally positive security posture with commendable practices in place. The complete absence of unprotected entry points like unauthenticated AJAX handlers or REST API routes, coupled with the consistent use of prepared statements for all SQL queries, significantly reduces the attack surface and mitigates common web vulnerabilities. The high percentage of properly escaped output further strengthens this position. However, a notable concern is the complete lack of nonce checks and capability checks throughout the codebase. While the static analysis did not identify any specific taint flows indicating immediate unsanitized input, the absence of these fundamental security mechanisms leaves the plugin vulnerable to potential exploitation if any new entry points are introduced or if existing ones are not sufficiently protected by other means. The vulnerability history, with two known CVEs including a high-severity SQL injection and a medium-severity CSRF, despite being currently unpatched, strongly suggests past weaknesses in input sanitization and protection against unauthorized actions. While the current version shows no *unpatched* vulnerabilities, these historical patterns highlight areas where the plugin has previously struggled and require continued vigilance.

Key Concerns

  • No nonce checks found
  • No capability checks found
  • Historical high-severity SQL injection
  • Historical medium-severity CSRF
  • Minor output escaping issues (4% unescaped)
Vulnerabilities
2

Bulk Product Editor plugin allows you to create and edit your WooCommerce products and categories with Google Sheets. Security Vulnerabilities

CVEs by Year

2 CVEs in 2025
2025
Patched Has unpatched

Severity Breakdown

High
1
Medium
1

2 total CVEs

CVE-2025-31599high · 7.5Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Bulk Product Sync <= 8.6 - Unauthenticated SQL Injection

Apr 8, 2025 Patched in 9.0 (16d)
CVE-2025-31852medium · 4.3Cross-Site Request Forgery (CSRF)

Bulk Product Sync <= 8.6 - Cross-Site Request Forgery

Apr 1, 2025 Patched in 9.0 (23d)
Code Analysis
Analyzed Mar 16, 2026

Bulk Product Editor plugin allows you to create and edit your WooCommerce products and categories with Google Sheets. Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
26 prepared
Unescaped Output
3
75 escaped
Nonce Checks
0
Capability Checks
0
File Operations
1
External Requests
3
Bundled Libraries
0

SQL Query Safety

100% prepared26 total queries

Output Escaping

96% escaped78 total outputs
Attack Surface

Bulk Product Editor plugin allows you to create and edit your WooCommerce products and categories with Google Sheets. Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 31
actionadmin_menuincludes\admin.class.php:12
filtermanage_edit-product_cat_columnsincludes\admin.class.php:16
filtermanage_product_cat_custom_columnincludes\admin.class.php:17
filtermanage_product_posts_columnsincludes\admin.class.php:20
filtermanage_product_posts_custom_columnincludes\admin.class.php:21
filterwcgs_sync_data_products_before_processingincludes\formats.class.php:19
filterwcgs_products_data_attributesincludes\formats.class.php:20
filterwcgs_products_data_categoriesincludes\formats.class.php:21
filterwcgs_products_data_brandsincludes\formats.class.php:22
filterwcgs_products_data_tagsincludes\formats.class.php:23
filterwcgs_products_data_imageincludes\formats.class.php:24
filterwcgs_products_data_imagesincludes\formats.class.php:25
filterwcgs_products_data_dimensionsincludes\formats.class.php:26
filterwcgs_products_data_downloadsincludes\formats.class.php:27
filterwbps_products_synbackincludes\formats.class.php:34
filterwbps_products_list_before_syncbackincludes\formats.class.php:35
filterwcgs_sync_data_categories_before_processingincludes\formats.class.php:38
filterwcgs_categories_data_imageincludes\formats.class.php:39
filterwbps_fields_format_requiredincludes\formats.class.php:76
filterwbps_products_list_before_syncbackincludes\hooks.class.php:22
filterwbps_products_list_before_syncbackincludes\hooks.class.php:23
actionwcgs_after_categories_syncedincludes\hooks.class.php:25
actionwbps_after_categories_syncedincludes\hooks.class.php:27
actionwoocommerce_update_productincludes\hooks.class.php:33
actionsave_post_productincludes\hooks.class.php:50
actiontransition_post_statusincludes\hooks.class.php:73
filterwoocommerce_product_data_store_cpt_get_products_queryincludes\wc-api.class.php:13
filterwoocommerce_rest_check_permissionsincludes\wprest.class.php:19
actionrest_api_initincludes\wprest.class.php:21
actionrest_api_initincludes\wprest.class.php:30
actionwoocommerce_initsync-wc-google.php:47
Maintenance & Trust

Bulk Product Editor plugin allows you to create and edit your WooCommerce products and categories with Google Sheets. Maintenance & Trust

Maintenance Signals

WordPress version tested
Last updatedOct 23, 2025
PHP min version
Downloads40K

Community Trust

Rating84/100
Number of ratings27
Active installs500
Alternatives

Bulk Product Editor plugin allows you to create and edit your WooCommerce products and categories with Google Sheets. Alternatives

No alternatives data available yet.

Developer Profile

Bulk Product Editor plugin allows you to create and edit your WooCommerce products and categories with Google Sheets. Developer Profile

N-Media

23 plugins · 5K total installs

69
trust score
Avg Security Score
85/100
Avg Patch Time
588 days
View full developer profile
Detection Fingerprints

How We Detect Bulk Product Editor plugin allows you to create and edit your WooCommerce products and categories with Google Sheets.

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/sync-wc-google/assets/wbps.css/wp-content/plugins/sync-wc-google/assets/wbps.js/wp-content/plugins/sync-wc-google/includes/functions.php/wp-content/plugins/sync-wc-google/includes/meta.json.php/wp-content/plugins/sync-wc-google/includes/admin.class.php/wp-content/plugins/sync-wc-google/includes/formats.class.php/wp-content/plugins/sync-wc-google/includes/wc-api.class.php/wp-content/plugins/sync-wc-google/includes/products.class.php+3 more
Script Paths
//apis.google.com/js/platform.js
Version Parameters
sync-wc-google/assets/wbps.js?ver=sync-wc-google/assets/wbps.css?ver=

HTML / DOM Fingerprints

Data Attributes
data-wbps-row-id
JS Globals
wbps_categories_tag_dataWBPS_VERSIONWBPS_SHORTNAMEwbps_load_file
REST Endpoints
/wbps/v1/
FAQ

Frequently Asked Questions about Bulk Product Editor plugin allows you to create and edit your WooCommerce products and categories with Google Sheets.