Does WC Shipping Rates Importer have any unpatched vulnerabilities?

No. All known vulnerabilities in WC Shipping Rates Importer have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WC Shipping Rates Importer compatible with WordPress 4.7.32?

According to WordPress.org data, WC Shipping Rates Importer 1.1.0 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

How often is WC Shipping Rates Importer updated?

WC Shipping Rates Importer was last updated on Mar 12, 2017. Frequent updates are generally a positive security signal.

What is WC Shipping Rates Importer's security score?

WC Shipping Rates Importer has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WC Shipping Rates Importer Security & Risk Analysis

wordpress.org/plugins/wc-shipping-rates-importer

Import / Export WooCoomerce Shipping Zone data & Shipping Table Rates (if installed)

100 active installs v1.1.0 PHP + WP 3.9.3+ Updated Mar 12, 2017

exportimportshipping-table-rateswoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WC Shipping Rates Importer Safe to Use in 2026?

Generally Safe

Score 85/100

WC Shipping Rates Importer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The static analysis of wc-shipping-rates-importer v1.1.0 reveals several concerning security practices, despite a seemingly clean vulnerability history. The most significant red flags are the complete lack of output escaping for all identified outputs and the use of raw SQL queries without prepared statements. This combination presents a high risk of cross-site scripting (XSS) and SQL injection vulnerabilities. The presence of unsanitized paths in the taint analysis further amplifies these risks. While the plugin has no recorded CVEs and a small attack surface with no apparent direct entry points for unauthenticated users, the internal coding practices are a serious weakness. The absence of capability checks and nonce checks, coupled with file operations, suggests potential for privilege escalation or unauthorized file manipulation if an attacker can find a way to trigger these functions, which the current analysis indicates is not directly exposed but could be an indirect vector.

Key Concerns

No output escaping
Raw SQL queries without prepared statements
Unsanitized taint flows
No capability checks
No nonce checks

Vulnerabilities

None known

WC Shipping Rates Importer Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

WC Shipping Rates Importer Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared7 total queries

Output Escaping

0% escaped5 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

3 flows3 with unsanitized paths

main (wc-shipping-rates-importer.php:101)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

WC Shipping Rates Importer Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

actionplugins_loadedwc-shipping-rates-importer.php:77

actionadmin_menuwc-shipping-rates-importer.php:78

Maintenance & Trust

WC Shipping Rates Importer Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedMar 12, 2017

PHP min version

Downloads7K

Community Trust

Rating100/100

Number of ratings1

Active installs100

Alternatives

WC Shipping Rates Importer Alternatives

Product Import Export for WooCommerce – Import Export Product CSV Suite

product-import-export-for-woo

Easily import/export WooCommerce products (simple, grouped, external/affiliate) via CSV. Transfer product data, including images, reviews, categories, …

90K 7 CVEs

Order Export & Order Import for WooCommerce

order-import-export-for-woocommerce

The best order export import plugin for WooCommerce. Easily import and export WooCommerce orders and WooCommerce coupons using CSV.

60K 7 CVEs

WP Ultimate CSV Importer – Import CSV, XML & Excel into WordPress

wp-ultimate-csv-importer

Effortlessly import, export, and migrate your WordPress data with WP Ultimate CSV Importer. This all-in-one solution supports CSV, XML, and Excel file …

20K 26 CVEs

Import WooCommerce Suite

import-woocommerce

100

Use the WooCommerce Import Suite to import Products, Orders, Coupons, Customers, and Reviews with ease. Requires the WP Ultimate CSV Importer Free plu …

4K 1 CVE

Import Shopify To WP

import-shopify-to-wp

Easily transfer your Shopify Store to WooCommerce

800 No CVEs

Developer Profile

WC Shipping Rates Importer Developer Profile

joesat

3 plugins · 210 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WC Shipping Rates Importer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wc-shipping-rates-importer/css/style.css/wp-content/plugins/wc-shipping-rates-importer/js/shipping.js

Script Paths

/wp-content/plugins/wc-shipping-rates-importer/js/shipping.js

Version Parameters

wc-shipping-rates-importer/css/style.css?ver=wc-shipping-rates-importer/js/shipping.js?ver=

HTML / DOM Fingerprints

JS Globals

wcsri_shipping_params

FAQ