Does WC MyParcel Belgium have any unpatched vulnerabilities?

No. All known vulnerabilities in WC MyParcel Belgium have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WC MyParcel Belgium compatible with WordPress 6.8.5?

According to WordPress.org data, WC MyParcel Belgium 4.5.10 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is WC MyParcel Belgium compatible with PHP 7.1+?

WC MyParcel Belgium requires PHP 7.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WC MyParcel Belgium updated?

WC MyParcel Belgium was last updated on Jul 31, 2025. Frequent updates are generally a positive security signal.

What is WC MyParcel Belgium's security score?

WC MyParcel Belgium has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WC MyParcel Belgium Security & Risk Analysis

wordpress.org/plugins/wc-myparcel-belgium

Export your WooCommerce orders to MyParcel Belgium (https://sendmyparcel.be/) and print labels directly from the WooCommerce admin.

600 active installs v4.5.10 PHP 7.1+ WP 5.2+ Updated Jul 31, 2025

exportmyparcel-belgiumwoocommerce

A · Safe

CVEs total1

Unpatched0

Last CVEJun 3, 2025

Plugin page Download

Safety Verdict

Is WC MyParcel Belgium Safe to Use in 2026?

Generally Safe

Score 99/100

WC MyParcel Belgium has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Jun 3, 2025Updated 8mo ago

Risk Assessment

The "wc-myparcel-belgium" plugin v4.5.10 exhibits a mixed security posture. While it demonstrates good practices in SQL query handling and output escaping, significant concerns arise from its attack surface and vulnerability history. The plugin exposes five unprotected AJAX handlers, presenting a substantial opportunity for unauthorized actions if exploited. The presence of the `unserialize` function is a known risky operation, especially when dealing with untrusted input, though no specific taint flows indicating immediate exploitation were found in this analysis.

The vulnerability history reveals one known medium severity CVE, indicating past security weaknesses. The fact that this CVE is currently patched is positive, but the pattern of past vulnerabilities, particularly the mention of Cross-site Scripting, suggests a need for ongoing vigilance and thorough code auditing. Overall, the plugin has strengths in its internal code hygiene for SQL and output, but its external-facing attack surface and past issues warrant caution.

Key Concerns

Unprotected AJAX handlers
Dangerous function: unserialize
Medium severity CVE in history

Vulnerabilities

WC MyParcel Belgium Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-48279medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

WC MyParcel Belgium <= 4.5.5-beta - Reflected Cross-Site Scripting

Jun 3, 2025 Patched in 4.5.6 (9d)

Code Analysis

Analyzed Mar 16, 2026

WC MyParcel Belgium Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

147 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$value = @unserialize(trim($value));includes\compatibility\abstract-wc-data-compatibility.php:234

Output Escaping

94% escaped157 total outputs

Attack Surface

5 unprotected

WC MyParcel Belgium Attack Surface

Entry Points7

Unprotected5

AJAX Handlers 6

authwp_ajax_wcmpbe_save_shipment_optionsincludes\admin\class-wcmypabe-admin.php:93

authwp_ajax_wcmpbe_get_shipment_summary_statusincludes\admin\class-wcmypabe-admin.php:94

authwp_ajax_wcmpbe_get_shipment_optionsincludes\admin\class-wcmypabe-admin.php:95

authwp_ajax_wcmpbe_get_delivery_options_configincludes\frontend\class-wcmpbe-checkout.php:47

authwp_ajax_get_highest_shipping_classincludes\frontend\class-wcmpbe-frontend.php:42

noprivwp_ajax_get_highest_shipping_classincludes\frontend\class-wcmpbe-frontend.php:43

Shortcodes 1

[fee] includes\admin\class-wcmpbe-export.php:1240

WordPress Hooks 77

actionadmin_noticesincludes\admin\class-wcmpbe-export.php:68

actionbulk_actions-edit-shop_orderincludes\admin\class-wcmypabe-admin.php:68

actionadmin_footerincludes\admin\class-wcmypabe-admin.php:70

actionadmin_footerincludes\admin\class-wcmypabe-admin.php:73

actionadmin_footerincludes\admin\class-wcmypabe-admin.php:74

actionwoocommerce_admin_order_actions_endincludes\admin\class-wcmypabe-admin.php:84

actionwoocommerce_admin_order_actions_endincludes\admin\class-wcmypabe-admin.php:85

actionadd_meta_boxes_shop_orderincludes\admin\class-wcmypabe-admin.php:90

actionwoocommerce_admin_order_data_after_shipping_addressincludes\admin\class-wcmypabe-admin.php:91

filtermanage_edit-shop_order_columnsincludes\admin\class-wcmypabe-admin.php:98

actionmanage_shop_order_posts_custom_columnincludes\admin\class-wcmypabe-admin.php:99

actionwoocommerce_payment_completeincludes\admin\class-wcmypabe-admin.php:101

actionwoocommerce_order_status_changedincludes\admin\class-wcmypabe-admin.php:102

actioninitincludes\admin\class-wcmypabe-admin.php:104

filterwc_order_statusesincludes\admin\class-wcmypabe-admin.php:105

actionwoocommerce_product_after_variable_attributesincludes\admin\class-wcmypabe-admin.php:107

actionwoocommerce_save_product_variationincludes\admin\class-wcmypabe-admin.php:108

filterwoocommerce_available_variationincludes\admin\class-wcmypabe-admin.php:109

actionwoocommerce_product_options_shippingincludes\admin\class-wcmypabe-admin.php:111

actionwoocommerce_process_product_metaincludes\admin\class-wcmypabe-admin.php:112

actionadmin_initincludes\admin\settings\class-wcmpbe-settings-data.php:50

actionadmin_menuincludes\admin\settings\class-wcmpbe-settings.php:133

filterwoocommerce_screen_idsincludes\admin\settings\class-wcmpbe-settings.php:145

actionwoocommerce_myparcelbe_before_settings_pageincludes\admin\settings\class-wcmpbe-settings.php:158

actionadmin_enqueue_scriptsincludes\class-wcmpbe-assets.php:15

actionwp_enqueue_scriptsincludes\class-wcmpbe-postcode-fields.php:34

actionadmin_enqueue_scriptsincludes\class-wcmpbe-postcode-fields.php:37

actionwp_loadedincludes\class-wcmpbe-postcode-fields.php:39

filterwoocommerce_billing_fieldsincludes\class-wcmpbe-postcode-fields.php:48

filterwoocommerce_shipping_fieldsincludes\class-wcmpbe-postcode-fields.php:54

filterwoocommerce_billing_fieldsincludes\class-wcmpbe-postcode-fields.php:62

filterwoocommerce_shipping_fieldsincludes\class-wcmpbe-postcode-fields.php:63

filterwoocommerce_country_locale_field_selectorsincludes\class-wcmpbe-postcode-fields.php:67

filterwoocommerce_default_address_fieldsincludes\class-wcmpbe-postcode-fields.php:68

filterwoocommerce_get_country_localeincludes\class-wcmpbe-postcode-fields.php:69

filterwoocommerce_load_order_dataincludes\class-wcmpbe-postcode-fields.php:72

filterwoocommerce_admin_billing_fieldsincludes\class-wcmpbe-postcode-fields.php:75

filterwoocommerce_admin_shipping_fieldsincludes\class-wcmpbe-postcode-fields.php:76

filterwoocommerce_found_customer_detailsincludes\class-wcmpbe-postcode-fields.php:77

actionsave_postincludes\class-wcmpbe-postcode-fields.php:78

filterwoocommerce_customer_meta_fieldsincludes\class-wcmpbe-postcode-fields.php:81

actionwoocommerce_checkout_update_order_metaincludes\class-wcmpbe-postcode-fields.php:83

filterwoocommerce_process_checkout_field_billing_postcodeincludes\class-wcmpbe-postcode-fields.php:89

filterwoocommerce_process_checkout_field_shipping_postcodeincludes\class-wcmpbe-postcode-fields.php:93

actionwoocommerce_checkout_update_order_metaincludes\class-wcmpbe-postcode-fields.php:100

actionwoocommerce_after_checkout_validationincludes\class-wcmpbe-postcode-fields.php:105

filterwoocommerce_validate_postcodeincludes\class-wcmpbe-postcode-fields.php:109

filterbe_checkout_fields_priorityincludes\class-wcmpbe-postcode-fields.php:117

filterwoocommerce_countries_allowed_country_statesincludes\class-wcmpbe-postcode-fields.php:122

filterwoocommerce_localisation_address_formatsincludes\class-wcmpbe-postcode-fields.php:130

filterwoocommerce_formatted_address_replacementsincludes\class-wcmpbe-postcode-fields.php:131

filterwoocommerce_order_formatted_billing_addressincludes\class-wcmpbe-postcode-fields.php:137

filterwoocommerce_order_formatted_shipping_addressincludes\class-wcmpbe-postcode-fields.php:143

filterwoocommerce_user_column_billing_addressincludes\class-wcmpbe-postcode-fields.php:149

filterwoocommerce_user_column_shipping_addressincludes\class-wcmpbe-postcode-fields.php:155

filterwoocommerce_my_account_my_address_formatted_addressincludes\class-wcmpbe-postcode-fields.php:161

filterwpo_wcpdf_templates_replace_myparcel_tracktraceincludes\compatibility\class-wcpdf-compatibility.php:19

filterwpo_wcpdf_templates_replace_myparcel_track_traceincludes\compatibility\class-wcpdf-compatibility.php:20

filterwpo_wcpdf_templates_replace_myparcel_tracktrace_linkincludes\compatibility\class-wcpdf-compatibility.php:22

filterwpo_wcpdf_templates_replace_myparcel_track_trace_linkincludes\compatibility\class-wcpdf-compatibility.php:23

actionwoocommerce_cart_calculate_feesincludes\frontend\class-wcmpbe-cart-fees.php:32

actionwpincludes\frontend\class-wcmpbe-checkout.php:42

actionwoocommerce_checkout_update_order_metaincludes\frontend\class-wcmpbe-checkout.php:45

actionwoocommerce_email_before_order_tableincludes\frontend\class-wcmpbe-frontend-track-trace.php:22

filterwoocommerce_my_account_my_orders_actionsincludes\frontend\class-wcmpbe-frontend-track-trace.php:25

actionwoocommerce_email_customer_detailsincludes\frontend\class-wcmpbe-frontend.php:25

actionwoocommerce_view_orderincludes\frontend\class-wcmpbe-frontend.php:28

actionwoocommerce_thankyouincludes\frontend\class-wcmpbe-frontend.php:31

filterwpo_wcpdf_templates_replace_myparcel_delivery_optionsincludes\frontend\class-wcmpbe-frontend.php:32

actionwoocommerce_checkout_before_order_reviewincludes\frontend\class-wcmpbe-frontend.php:38

actionwoocommerce_update_order_review_fragmentsincludes\frontend\class-wcmpbe-frontend.php:39

actionplugins_loadedwoocommerce-myparcel.php:79

actioninitwoocommerce-myparcel.php:80

actioninitwoocommerce-myparcel.php:84

actionadmin_noticeswoocommerce-myparcel.php:175

actionadmin_noticeswoocommerce-myparcel.php:181

actionadmin_noticeswoocommerce-myparcel.php:187

Maintenance & Trust

WC MyParcel Belgium Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJul 31, 2025

PHP min version7.1

Downloads20K

Community Trust

Rating40/100

Number of ratings3

Active installs600

Alternatives

WC MyParcel Belgium Alternatives

Advanced Order Export For WooCommerce

woo-order-export-lite

Export WooCommerce orders to Excel, CSV, XML, JSON, PDF and HTML. Best free order export plugin for WooCommerce.

100K 8 CVEs

WP All Export – Drag & Drop Export to Any Custom CSV, XML & Excel

wp-all-export

Easily export data from any post type, custom field, or taxonomy to a CSV, XML, or Excel file of any custom format. Supports WooCommerce products, ord …

100K 7 CVEs

Product Import Export for WooCommerce – Import Export Product CSV Suite

product-import-export-for-woo

Easily import/export WooCommerce products (simple, grouped, external/affiliate) via CSV. Transfer product data, including images, reviews, categories, …

90K 7 CVEs

Order Export & Order Import for WooCommerce

order-import-export-for-woocommerce

The best order export import plugin for WooCommerce. Easily import and export WooCommerce orders and WooCommerce coupons using CSV.

60K 7 CVEs

افزونه رسمی ترب

products-extractor-for-woocommerce

100

این پلاگین جهت دریافت تمامی محصولات فروشگاه های وردپرسی که از پلاگین ووکامرس استفاده می کنند، توسعه یافته است.

20K No CVEs

Developer Profile

WC MyParcel Belgium Developer Profile

Richard Perdaan

2 plugins · 10K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

5 days

View full developer profile

Detection Fingerprints

How We Detect WC MyParcel Belgium

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wc-myparcel-belgium/assets/css/wc-myparcelbe-admin.css/wp-content/plugins/wc-myparcel-belgium/assets/css/wc-myparcelbe-frontend.css/wp-content/plugins/wc-myparcel-belgium/assets/js/wc-myparcelbe-admin.js/wp-content/plugins/wc-myparcel-belgium/assets/js/wc-myparcelbe-frontend.js

Script Paths

/wp-content/plugins/wc-myparcel-belgium/assets/js/wc-myparcelbe-admin.js/wp-content/plugins/wc-myparcel-belgium/assets/js/wc-myparcelbe-frontend.js

Version Parameters

/wp-content/plugins/wc-myparcel-belgium/assets/css/wc-myparcelbe-admin.css?ver=/wp-content/plugins/wc-myparcel-belgium/assets/css/wc-myparcelbe-frontend.css?ver=/wp-content/plugins/wc-myparcel-belgium/assets/js/wc-myparcelbe-admin.js?ver=/wp-content/plugins/wc-myparcel-belgium/assets/js/wc-myparcelbe-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

wc-myparcelbe-shipping-methodwc-myparcelbe-address-field

HTML Comments

Data Attributes

data-plugin-name="wc-myparcel-belgium"data-version="4.5.10"

JS Globals

window.wc_myparcelbe_admin_paramswindow.wc_myparcelbe_frontend_params

REST Endpoints

/wp-json/wc-myparcelbe/v1/settings/wp-json/wc-myparcelbe/v1/shipping-methods

FAQ