WP-Safety

ilGhera Reviso Exporter for WooCommerce Security & Risk Analysis

wordpress.org/plugins/wc-exporter-for-reviso

Export suppliers, products, customers and orders from your Woocommerce store to Reviso. Export new orders and create invoices in real time.

10 active installs v1.2.3 PHP + WP 5.0+ Updated Feb 19, 2026
contabilita-in-clouddanea-easyfattfatturazionerevisoteam-system
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is ilGhera Reviso Exporter for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

ilGhera Reviso Exporter for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The plugin "wc-exporter-for-reviso" v1.2.3 presents a mixed security posture. On the positive side, its SQL queries are secured with prepared statements, output escaping is generally robust (95% properly escaped), and there is no history of known vulnerabilities (CVEs). This suggests a developer who is aware of some common security best practices. However, a significant concern arises from the considerable attack surface exposed by its AJAX handlers. Out of 12 AJAX handlers, 7 lack proper authentication checks, representing a substantial entry point for potential unauthorized actions. Furthermore, the presence of "ini_set" is a potential flag, as its misuse can lead to security issues, although its specific context within the code isn't detailed here. Taint analysis shows some flows with unsanitized paths, but importantly, these were not classified as critical or high severity.

Key Concerns

  • AJAX handlers without authentication checks
  • Use of dangerous function (ini_set)
  • Flows with unsanitized paths (non-critical)
Vulnerabilities
None known

ilGhera Reviso Exporter for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

ilGhera Reviso Exporter for WooCommerce Release Timeline

v1.2.3Current
v1.2.2
v1.2.1
v1.2.0
v1.1.0
v1.0.0
v0.9.6
v0.9.5
v0.9.4
v0.9.3
v0.9.2
v0.9.1
v0.9.0
Code Analysis
Analyzed Apr 16, 2026

ilGhera Reviso Exporter for WooCommerce Code Analysis

Dangerous Functions
1
Raw SQL Queries
0
1 prepared
Unescaped Output
13
247 escaped
Nonce Checks
7
Capability Checks
2
File Operations
0
External Requests
1
Bundled Libraries
1

Dangerous Functions Found

ini_setini_set( 'serialize_precision', -1 );includes/class-wcefr-call.php:65

Bundled Libraries

jQuery

SQL Query Safety

100% prepared1 total queries

Output Escaping

95% escaped260 total outputs
Data Flows · Security
4 unsanitized

Data Flow Analysis

11 flows4 with unsanitized paths
<class-wcefr-users> (includes/class-wcefr-users.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
7 unprotected

ilGhera Reviso Exporter for WooCommerce Attack Surface

Entry Points12
Unprotected7

AJAX Handlers 12

authwp_ajax_wcefr-export-ordersincludes/class-wcefr-orders.php:90
authwp_ajax_wcefr-delete-remote-ordersincludes/class-wcefr-orders.php:91
authwp_ajax_wcefr-export-productsincludes/class-wcefr-products.php:35
authwp_ajax_wcefr-delete-remote-productsincludes/class-wcefr-products.php:36
authwp_ajax_wcefr-check-connectionincludes/class-wcefr-settings.php:35
authwp_ajax_wcefr-disconnectincludes/class-wcefr-settings.php:36
authwp_ajax_wcefr-clear-cacheincludes/class-wcefr-settings.php:37
authwp_ajax_wcefr-update-users-roleincludes/class-wcefr-users.php:52
authwp_ajax_wcefr-export-usersincludes/class-wcefr-users.php:53
authwp_ajax_wcefr-delete-remote-usersincludes/class-wcefr-users.php:54
authwp_ajax_wcefr-get-customers-groupsincludes/class-wcefr-users.php:55
authwp_ajax_wcefr-get-suppliers-groupsincludes/class-wcefr-users.php:56
WordPress Hooks 36
actionadmin_menuadmin/class-wcefr-admin.php:25
actionadmin_enqueue_scriptsadmin/class-wcefr-admin.php:26
actionadmin_initadmin/ilghera-notice/class-ilghera-notice.php:41
actionadmin_enqueue_scriptsadmin/ilghera-notice/class-ilghera-notice.php:42
actionadmin_noticesadmin/ilghera-notice/class-ilghera-notice.php:193
actionadmin_noticesadmin/ilghera-notice/class-ilghera-notice.php:197
actionadmin_noticesadmin/ilghera-notice/class-ilghera-notice.php:201
actionplugins_loadedadmin/ilghera-notice/extension.php:46
actionwcefr_export_single_order_eventincludes/class-wcefr-orders.php:92
actionwcefr_delete_remote_single_order_eventincludes/class-wcefr-orders.php:93
actionadmin_enqueue_scriptsincludes/class-wcefr-orders.php:94
filtermanage_woocommerce_page_wc-orders_columnsincludes/class-wcefr-orders.php:114
actionmanage_woocommerce_page_wc-orders_custom_columnincludes/class-wcefr-orders.php:115
filtermanage_edit-shop_order_columnsincludes/class-wcefr-orders.php:120
actionmanage_shop_order_posts_custom_columnincludes/class-wcefr-orders.php:121
actionwcefr_export_single_product_eventincludes/class-wcefr-products.php:37
actionwcefr_delete_remote_single_product_eventincludes/class-wcefr-products.php:38
actionadmin_enqueue_scriptsincludes/class-wcefr-settings.php:34
actionadmin_footerincludes/class-wcefr-settings.php:38
actionadd_meta_boxesincludes/class-wcefr-single-product.php:30
actionwcefr_export_single_user_eventincludes/class-wcefr-users.php:57
actionwcefr_delete_remote_single_user_eventincludes/class-wcefr-users.php:58
actionwp_enqueue_scriptsincludes/wc-checkout-fields/class-wcefr-checkout-fields.php:70
filterwoocommerce_checkout_fieldsincludes/wc-checkout-fields/class-wcefr-checkout-fields.php:71
actionwoocommerce_checkout_create_orderincludes/wc-checkout-fields/class-wcefr-checkout-fields.php:72
actionwoocommerce_thankyouincludes/wc-checkout-fields/class-wcefr-checkout-fields.php:73
actionwoocommerce_view_orderincludes/wc-checkout-fields/class-wcefr-checkout-fields.php:74
actionwoocommerce_admin_order_data_after_billing_addressincludes/wc-checkout-fields/class-wcefr-checkout-fields.php:75
filterwoocommerce_email_customer_detailsincludes/wc-checkout-fields/class-wcefr-checkout-fields.php:76
actionwoocommerce_checkout_processincludes/wc-checkout-fields/class-wcefr-checkout-fields.php:77
actionshow_user_profileincludes/wc-checkout-fields/class-wcefr-checkout-fields.php:78
actionedit_user_profileincludes/wc-checkout-fields/class-wcefr-checkout-fields.php:79
actionpersonal_options_updateincludes/wc-checkout-fields/class-wcefr-checkout-fields.php:80
actionedit_user_profile_updateincludes/wc-checkout-fields/class-wcefr-checkout-fields.php:81
actionafter_setup_themewc-exporter-for-reviso.php:56
actionbefore_woocommerce_initwc-exporter-for-reviso.php:61
Maintenance & Trust

ilGhera Reviso Exporter for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 19, 2026
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

ilGhera Reviso Exporter for WooCommerce Alternatives

ilGhera WooCommerce Importer for Reviso

ilGhera WooCommerce Importer for Reviso

wc-importer-for-reviso

A
100

Import suppliers, customers and products from Reviso to your Woocommerce store.

0 No CVEs
WFatture for WooCommerce Fattureincloud

WFatture for WooCommerce Fattureincloud

woo-fattureincloud

A
99

WooCommerce Fattureincloud by Woofatture trasforma gli ordini in fatture su fattureincloud.it WFatture for WooCommerce Fattureincloud

700 1 CVE
Fattura24

Fattura24

fattura24

A
100

The official Fattura24 plugin allows the creation of electronic invoices, orders, traditional invoices and receipts via Fattura24

500 1 CVE
Easy Fattura Elettronica FREE

Easy Fattura Elettronica FREE

easy-fattura-elettronica-free

A
100

Compatibile con la versione 1.7.1 delle specifiche tecniche dell'Agenzia delle Entrate in vigore dal 1° ottobre 2022.

100 No CVEs
ilGhera Danea Exporter for WooCommerce

ilGhera Danea Exporter for WooCommerce

wc-exporter-for-danea

A
100

Export suppliers, products, customers and orders from your WooCommerce store to Danea.

100 No CVEs
Developer Profile

ilGhera Reviso Exporter for WooCommerce Developer Profile

ilGhera

16 plugins · 2K total installs

78
trust score
Avg Security Score
98/100
Avg Patch Time
113 days
View full developer profile
Detection Fingerprints

How We Detect ilGhera Reviso Exporter for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wc-exporter-for-reviso/css/bootstrap-iso.css/wp-content/plugins/wc-exporter-for-reviso/css/wc-exporter-for-reviso.css/wp-content/plugins/wc-exporter-for-reviso/js/wcefr.js/wp-content/plugins/wc-exporter-for-reviso/js/wcefr-shop-orders.js
Script Paths
/wp-content/plugins/wc-exporter-for-reviso/js/wcefr.js/wp-content/plugins/wc-exporter-for-reviso/js/wcefr-shop-orders.js
Version Parameters
wc-exporter-for-reviso/css/bootstrap-iso.css?ver=wc-exporter-for-reviso/css/wc-exporter-for-reviso.css?ver=wc-exporter-for-reviso/js/wcefr.js?ver=wc-exporter-for-reviso/js/wcefr-shop-orders.js?ver=

HTML / DOM Fingerprints

CSS Classes
wcefr-adminwcefr-admin-menuwcefr-messagewcefr-main
Data Attributes
data-link
FAQ

Frequently Asked Questions about ilGhera Reviso Exporter for WooCommerce