Does Extended Order Details for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Extended Order Details for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Extended Order Details for WooCommerce compatible with WordPress 6.6.5?

According to WordPress.org data, Extended Order Details for WooCommerce 2.0.1 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

Is Extended Order Details for WooCommerce compatible with PHP 7.0+?

Extended Order Details for WooCommerce requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Extended Order Details for WooCommerce updated?

Extended Order Details for WooCommerce was last updated on Nov 3, 2024. Frequent updates are generally a positive security signal.

What is Extended Order Details for WooCommerce's security score?

Extended Order Details for WooCommerce has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Extended Order Details for WooCommerce Security & Risk Analysis

wordpress.org/plugins/wc-order-details

A user friendly plugin to view order details.

30 active installs v2.0.1 PHP 7.0+ WP 4.4+ Updated Nov 3, 2024

export-ordersextended-order-detailsorder-exportorder-items

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Extended Order Details for WooCommerce Safe to Use in 2026?

Generally Safe

Score 92/100

Extended Order Details for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The 'wc-order-details' v2.0.1 plugin exhibits a generally strong security posture, with a clean vulnerability history and no known CVEs. The static analysis also reveals a relatively small attack surface, consisting primarily of a single shortcode, with no unprotected entry points detected. The presence of nonce checks and capability checks further contributes to its defensibility.

However, there are notable areas for improvement. The output escaping is significantly lacking, with only 4% of outputs properly escaped, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities. Furthermore, a significant portion of SQL queries are not using prepared statements, posing a risk of SQL injection. The single taint flow with an unsanitized path, while not flagged as critical or high severity, warrants attention as it represents a potential blind spot.

Overall, the plugin benefits from a lack of historical vulnerabilities and a good number of security checks. Nevertheless, the identified weaknesses in output escaping and SQL query preparation present tangible risks that should be addressed to achieve a more robust security profile.

Key Concerns

Low output escaping rate
High percentage of SQL queries not using prepared statements
Flow with unsanitized path detected

Vulnerabilities

None known

Extended Order Details for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Extended Order Details for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

40% prepared5 total queries

Output Escaping

4% escaped98 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

3 flows1 with unsanitized paths

wcod_display_order_details (inc\functions.php:204)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Extended Order Details for WooCommerce Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[WC-ORDER-DETAILS] inc\functions.php:201

WordPress Hooks 5

actionwp_enqueue_scriptsinc\functions.php:127

actionadmin_enqueue_scriptsinc\functions.php:128

actionwp_print_stylesinc\functions.php:1083

actionwcod-after-product-nameinc\functions.php:1109

actionadmin_menuindex.php:68

Maintenance & Trust

Extended Order Details for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedNov 3, 2024

PHP min version7.0

Downloads3K

Community Trust

Rating100/100

Number of ratings2

Active installs30

Alternatives

Extended Order Details for WooCommerce Alternatives

Advanced Order Export For WooCommerce

woo-order-export-lite

Export WooCommerce orders to Excel, CSV, XML, JSON, PDF and HTML. Best free order export plugin for WooCommerce.

100K 8 CVEs

Order Export & Order Import for WooCommerce

order-import-export-for-woocommerce

The best order export import plugin for WooCommerce. Easily import and export WooCommerce orders and WooCommerce coupons using CSV.

60K 7 CVEs

Export All Posts, Products, Orders, Refunds & Users

wp-ultimate-exporter

Export any WordPress website including WooCommerce data seamlessly with our powerful export plugin. Save records as CSV, XML, or Excel file for secure …

9K 9 CVEs

Store Exporter – Export WooCommerce Products, Orders, Subscriptions, Customers

woocommerce-exporter

Export WooCommerce products, orders, customers, categories, tags, subscriptions & more into formatted files like CSV, XML, Excel 2007, XLS, XLSX.

7K 9 CVEs

Order Export for WooCommerce

order-export-and-more-for-woocommerce

Export WooCommerce orders & export products with advanced filtering. Supports CSV & all Excel formats.

2K 2 CVEs

Developer Profile

Extended Order Details for WooCommerce Developer Profile

Fahad Mahmood

40 plugins · 33K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

237 days

View full developer profile

Detection Fingerprints

How We Detect Extended Order Details for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wc-order-details/css/admin-style.css/wp-content/plugins/wc-order-details/css/bootstrap.min.css/wp-content/plugins/wc-order-details/css/fontawesome.min.css/wp-content/plugins/wc-order-details/js/admin-scripts.js/wp-content/plugins/wc-order-details/js/bootstrap.min.js/wp-content/plugins/wc-order-details/js/fontawesome.min.js

Script Paths

/wp-content/plugins/wc-order-details/js/bootstrap.min.js/wp-content/plugins/wc-order-details/js/fontawesome.min.js/wp-content/plugins/wc-order-details/js/admin-scripts.js

Version Parameters

wc-order-details/js/bootstrap.min.js?ver=wc-order-details/css/bootstrap.min.css?ver=wc-order-details/js/fontawesome.min.js?ver=wc-order-details/css/fontawesome.min.css?ver=wc-order-details/js/admin-scripts.js?ver=wc-order-details/css/admin-style.css?ver=

HTML / DOM Fingerprints

CSS Classes

wcod_btnwcod_btn_done

Data Attributes

wcod_tabthis_u

JS Globals

wcod_obj

FAQ