Does Invoice Manager for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Invoice Manager for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, Invoice Manager for WooCommerce 1.2.5 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Invoice Manager for WooCommerce compatible with PHP 5.6+?

Invoice Manager for WooCommerce requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Invoice Manager for WooCommerce updated?

Invoice Manager for WooCommerce was last updated on Apr 10, 2026. Frequent updates are generally a positive security signal.

What is Invoice Manager for WooCommerce's security score?

Invoice Manager for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Invoice Manager for WooCommerce Security & Risk Analysis

wordpress.org/plugins/wc-invoice-manager

Manage WooCommerce invoices with the first Gutenberg-based editor; it's user-friendly, and ensures professional, accurate billing.

30 active installs v1.2.5 PHP 5.6+ WP 4.7+ Updated Apr 10, 2026

woocommerce-invoiceswoocommerce-orders-invoicewoocommerce-pdfwoocommerce-pdf-invoice

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Invoice Manager for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Invoice Manager for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The plugin 'wc-invoice-manager' v1.2.3 demonstrates a generally strong security posture with no recorded vulnerabilities or critical security findings in static and taint analysis. The absence of known CVEs and a history of zero vulnerabilities is a significant positive indicator. The plugin also shows good practices regarding output escaping, with 93% of outputs properly handled, and it implements nonce and capability checks, contributing to a secure interaction model. However, there are areas for concern. The plugin utilizes two SQL queries that are not prepared, which poses a risk of SQL injection if the input is not meticulously sanitized elsewhere. Additionally, the presence of a single external HTTP request without clear context on its security implications warrants attention. The use of bundled libraries like 'dompdf' and 'Guzzle' could also introduce risks if they are outdated or contain their own vulnerabilities, though this is not directly indicated by the provided data. Overall, while the plugin appears robust due to its clean vulnerability history and good sanitization practices, the unescaped SQL queries and the external HTTP request are potential weak points that should be addressed to ensure comprehensive security.

Key Concerns

Raw SQL queries without prepared statements
External HTTP request without clear security context
Bundled libraries (dompdf, Guzzle) without version checks

Vulnerabilities

None known

Invoice Manager for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Invoice Manager for WooCommerce Release Timeline

v1.2.5Current

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.1.9

v1.1.8

v1.1.7

v1.1.6

v1.1.5

v1.1.4

v1.1.2

v1.1.1

v1.1.0

v1.0.9

v1.0.8

v1.0.7

v1.0.6

v1.0.5

v1.0.4

Code Analysis

Analyzed Mar 16, 2026

Invoice Manager for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

355 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

dompdfGuzzle

SQL Query Safety

0% prepared2 total queries

Output Escaping

93% escaped383 total outputs

Attack Surface

Invoice Manager for WooCommerce Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 20

actionwp_default_scriptsjetpack_vendor\automattic\jetpack-assets\actions.php:11

actionplugins_loadedjetpack_vendor\automattic\jetpack-assets\actions.php:12

filterwp_resource_hintsjetpack_vendor\automattic\jetpack-assets\src\class-assets.php:182

actionwp_loadedjetpack_vendor\automattic\jetpack-assets\src\class-script-data.php:38

actionenqueue_block_editor_assetsjetpack_vendor\automattic\jetpack-assets\src\class-script-data.php:52

actionshutdownjetpack_vendor\automattic\jetpack-status\src\class-errors.php:38

actionwp_network_dashboard_setupjetpack_vendor\quadlayers\wp-dashboard-widget-news\src\Load.php:36

actionwp_dashboard_setupjetpack_vendor\quadlayers\wp-dashboard-widget-news\src\Load.php:37

actionadmin_noticesjetpack_vendor\quadlayers\wp-notice-plugin-promote\src\Load.php:95

actionadmin_noticesjetpack_vendor\quadlayers\wp-notice-plugin-promote\src\Load.php:104

actionadmin_noticesjetpack_vendor\quadlayers\wp-notice-plugin-required\src\Load.php:40

actionplugins_loadedjetpack_vendor\quadlayers\wp-plugin-suggestions\src\Page.php:47

actionadmin_menujetpack_vendor\quadlayers\wp-plugin-suggestions\src\Page.php:50

actionadmin_initjetpack_vendor\quadlayers\wp-plugin-suggestions\src\Page.php:55

filternetwork_admin_urljetpack_vendor\quadlayers\wp-plugin-suggestions\src\Page.php:56

filterself_admin_urljetpack_vendor\quadlayers\wp-plugin-suggestions\src\Table.php:52

filternetwork_admin_urljetpack_vendor\quadlayers\wp-plugin-suggestions\src\Table.php:53

filterplugin_row_metajetpack_vendor\quadlayers\wp-plugin-table-links\src\Load.php:36

actioninitvendor_packages\wp-plugin-table-links.php:4

actionbefore_woocommerce_initwc-invoice-manager.php:74

Maintenance & Trust

Invoice Manager for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 10, 2026

PHP min version5.6

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs30

Alternatives

Invoice Manager for WooCommerce Alternatives

Flexible PDF Invoices for WooCommerce & WordPress

flexible-invoices

WooCommerce PDF invoices made simple. EU VAT validation, reverse charge invoice, proforma invoices, MOSS / OSS support, invoices in bulk and more.

7K 1 CVE

WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes & Shipping Labels

print-invoices-packing-slip-labels-for-woocommerce

Auto-generate and attach WooCommerce PDF invoices and packing slips to order emails with customizable templates & bulk print options.

60K 6 CVEs

Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools

woocommerce-jetpack

Supercharge WooCommerce with FREE Abandoned Cart Recovery, Product Variation Swatches, PDF Invoices & 100+ tools. Boost sales & save time.

30K 32 CVEs

PDF Invoices & Packing Slips for WooCommerce – Challan

webappick-pdf-invoice-for-woocommerce

WooCommerce PDF invoice generator with automatic email attachment. Create packing slips, shipping labels, credit notes, multilingual.

3K 2 CVEs

PDF Builder for WooCommerce. Create invoices,packing slips and more

woo-pdf-invoice-builder

Create WooCommerce pdf invoices, packing slips, certificates and more, customized them as you want them with the best drag-drop builder.

2K 10 CVEs

Developer Profile

Invoice Manager for WooCommerce Developer Profile

quadlayers

17 plugins · 634K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

501 days

View full developer profile

Detection Fingerprints

How We Detect Invoice Manager for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wc-invoice-manager/assets/css/wcim-editor.css/wp-content/plugins/wc-invoice-manager/assets/css/wcim-frontend.css/wp-content/plugins/wc-invoice-manager/assets/css/wcim-admin.css/wp-content/plugins/wc-invoice-manager/assets/js/wcim-editor.js/wp-content/plugins/wc-invoice-manager/assets/js/wcim-frontend.js/wp-content/plugins/wc-invoice-manager/assets/js/wcim-admin.js

Script Paths

/wp-content/plugins/wc-invoice-manager/assets/js/wcim-editor.js/wp-content/plugins/wc-invoice-manager/assets/js/wcim-frontend.js/wp-content/plugins/wc-invoice-manager/assets/js/wcim-admin.js

Version Parameters

wc-invoice-manager/assets/css/wcim-editor.css?ver=wc-invoice-manager/assets/css/wcim-frontend.css?ver=wc-invoice-manager/assets/css/wcim-admin.css?ver=wc-invoice-manager/assets/js/wcim-editor.js?ver=wc-invoice-manager/assets/js/wcim-frontend.js?ver=wc-invoice-manager/assets/js/wcim-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

wcim-editor-wrapperwcim-frontend-container

HTML Comments

WCIM_EDITOR_RENDERWCIM_FRONTEND_RENDER

Data Attributes

data-wcim-editor-iddata-wcim-frontend-id

JS Globals

wcim_editor_datawcim_frontend_data

REST Endpoints

/wp-json/wcim/v1/editor/wp-json/wcim/v1/frontend

Shortcode Output

[wcim_editor][wcim_frontend]

FAQ