WP-Safety

Uber Direct Integration Security & Risk Analysis

wordpress.org/plugins/uber-direct-delivery-integration

Offer instant or scheduled delivery from your WooCommerce store with real-time quotes and Uber Direct integration

60 active installs v1.8 PHP 7.4+ WP 5.0+ Updated Nov 9, 2025
courierdeliveryshippinguber-directwoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Uber Direct Integration Safe to Use in 2026?

Generally Safe

Score 100/100

Uber Direct Integration has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago
Risk Assessment

The "uber-direct-delivery-integration" plugin v1.8 exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices by largely utilizing prepared statements for its SQL queries and properly escaping most of its output. The absence of known CVEs and the lack of critical or high-severity taint flows are also encouraging indicators of a generally secure codebase. However, significant concerns arise from the attack surface analysis. The presence of 10 AJAX handlers, with a notable 4 lacking authentication checks, presents a substantial risk. These unprotected entry points could be exploited by unauthenticated users to trigger unintended actions within the plugin. Additionally, the plugin's vulnerability history shows no recorded past issues, which could indicate either a well-maintained plugin or a lack of past security scrutiny. While the code signals suggest a reasonable level of internal security, the unprotected AJAX handlers are a critical weakness that needs immediate attention to mitigate potential exploits.

Key Concerns

  • AJAX handlers without auth checks
  • No capability checks found
Vulnerabilities
None known

Uber Direct Integration Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Uber Direct Integration Code Analysis

Dangerous Functions
0
Raw SQL Queries
3
14 prepared
Unescaped Output
25
168 escaped
Nonce Checks
10
Capability Checks
0
File Operations
1
External Requests
6
Bundled Libraries
0

SQL Query Safety

82% prepared17 total queries

Output Escaping

87% escaped193 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

8 flows2 with unsanitized paths
add_uber_direct_info_to_email (includes\frontend.php:725)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
4 unprotected

Uber Direct Integration Attack Surface

Entry Points11
Unprotected4

AJAX Handlers 10

authwp_ajax_fetch_uber_statusincludes\frontend.php:356
noprivwp_ajax_fetch_uber_statusincludes\frontend.php:357
authwp_ajax_uber_direct_fetch_nearby_storesincludes\frontend.php:393
noprivwp_ajax_uber_direct_fetch_nearby_storesincludes\frontend.php:394
authwp_ajax_generate_quote_for_selected_storeincludes\frontend.php:464
noprivwp_ajax_generate_quote_for_selected_storeincludes\frontend.php:465
authwp_ajax_set_uber_delivery_typeincludes\frontend.php:746
noprivwp_ajax_set_uber_delivery_typeincludes\frontend.php:747
authwp_ajax_clear_uber_quote_sessionuber-direct.php:1176
noprivwp_ajax_clear_uber_quote_sessionuber-direct.php:1177

REST API Routes 1

POST/wp-json/uber-direct/v1/webhookincludes\api.php:415
WordPress Hooks 34
actionrest_api_initincludes\api.php:412
actionwoocommerce_after_checkout_billing_formincludes\frontend.php:8
actionwoocommerce_checkout_before_order_reviewincludes\frontend.php:94
actionwp_footerincludes\frontend.php:99
actionwoocommerce_checkout_update_order_metaincludes\frontend.php:106
actionwoocommerce_thankyouincludes\frontend.php:181
actionwoocommerce_order_details_after_order_tableincludes\frontend.php:275
actionwoocommerce_order_details_after_order_tableincludes\frontend.php:285
actionwoocommerce_order_details_after_order_tableincludes\frontend.php:302
actionwoocommerce_checkout_processincludes\frontend.php:520
filtergettextincludes\frontend.php:567
filterwoocommerce_cart_needs_shippingincludes\frontend.php:576
filterwoocommerce_checkout_show_shippingincludes\frontend.php:587
filterwoocommerce_cart_needs_shipping_addressincludes\frontend.php:590
actionwoocommerce_checkout_update_order_reviewincludes\frontend.php:602
filterwoocommerce_checkout_fieldsincludes\frontend.php:640
actionwoocommerce_checkout_processincludes\frontend.php:663
filterwoocommerce_available_payment_gatewaysincludes\frontend.php:682
actionwoocommerce_email_after_order_tableincludes\frontend.php:694
actionwoocommerce_email_order_metaincludes\frontend.php:724
actionwoocommerce_before_checkout_formincludes\frontend.php:772
actionadmin_enqueue_scriptsuber-direct.php:67
actionwp_enqueue_scriptsuber-direct.php:167
actionadmin_menuuber-direct.php:180
actionadmin_inituber-direct.php:252
actionadmin_inituber-direct.php:310
actionadmin_inituber-direct.php:516
actionadmin_inituber-direct.php:973
actionadmin_noticesuber-direct.php:989
filterwoocommerce_package_ratesuber-direct.php:1000
actionwoocommerce_before_checkout_formuber-direct.php:1030
filterwoocommerce_shipping_methodsuber-direct.php:1096
filterwoocommerce_shipping_chosen_methoduber-direct.php:1123
filterwoocommerce_cart_shipping_method_full_labeluber-direct.php:1135
Maintenance & Trust

Uber Direct Integration Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedNov 9, 2025
PHP min version7.4
Downloads1K

Community Trust

Rating100/100
Number of ratings1
Active installs60
Alternatives

Uber Direct Integration Alternatives

Local Delivery Drivers for WooCommerce

Local Delivery Drivers for WooCommerce

local-delivery-drivers-for-woocommerce

A
99

Improve the way you deliver, manage drivers, assign drivers to orders, send WhatsApp, SMS, and email notifications, route planning, navigation & more!

1K 1 CVE
Woot

Woot

woot-ro

A
100

Unified shipping solution for WooCommerce. Integrates all popular couriers in Romania with real-time pricing and pickup point selection.

100 No CVEs
UDW Delivery – Uber Direct for WooCommerce

UDW Delivery – Uber Direct for WooCommerce

udwdelivery

A
92

Delivery service for WooCommerce integrating with Uber Direct API.

40 No CVEs
Gobuddy – The smart delivery solution

Gobuddy – The smart delivery solution

gobuddy-the-smart-delivery-solution

A
100

The official Gobuddy plugin for WooCommerce

10 No CVEs
CityCourier – Local Courier Booking & Tracking System

CityCourier – Local Courier Booking & Tracking System

citycourier-local-courier-booking-tracking-system

A
100

Courier booking form with Google Maps integration, distance-based pricing, delivery zones, map picker, and order tracking. Built for WooCommerce.

0 No CVEs
Developer Profile

Uber Direct Integration Developer Profile

Vimalnath Ravichandran

1 plugin · 60 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Uber Direct Integration

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/uber-direct-delivery-integration/assets/css/flatpickr.min.css/wp-content/plugins/uber-direct-delivery-integration/assets/js/flatpickr.min.js/wp-content/plugins/uber-direct-delivery-integration/assets/css/admin-style.css/wp-content/plugins/uber-direct-delivery-integration/assets/js/admin-tabs.js/wp-content/plugins/uber-direct-delivery-integration/assets/css/uber-direct.css/wp-content/plugins/uber-direct-delivery-integration/assets/js/uber-direct.js
Version Parameters
uber-direct-delivery-integration/assets/js/admin-tabs.js?ver=uber-direct-delivery-integration/assets/css/admin-style.css?ver=uber-direct-delivery-integration/assets/css/uber-direct.css?ver=uber-direct-delivery-integration/assets/js/uber-direct.js?ver=

HTML / DOM Fingerprints

CSS Classes
uber-direct-delivery-integration
Data Attributes
uber_direct_create_org_nonceuber_direct_create_store_nonce
JS Globals
uberDirectData
REST Endpoints
/wp-json/uber-direct-integration/v1/webhook
FAQ

Frequently Asked Questions about Uber Direct Integration