[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fHygpEvJiMekz3qeGz9NnCys2Z-IIf3hnc--zAlVrStY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":127,"fingerprints":444},"woo-billomat","WooBillomat","2.4.8","billomatcom","https:\u002F\u002Fprofiles.wordpress.org\u002Fbillomatcom\u002F","\u003Cp>Connect WooCommerce to your exiting Billomat account with ease and save time and money.\u003Cbr \u002F>\nClients and articles will be automatically created and updated and invoices are generated when a WooCommerce order completes.\u003C\u002Fp>\n\u003Ch3>Billomat webhooks\u003C\u002Fh3>\n\u003Cp>This plugin uses Billomat webhooks to synchronize data from Billomat to WooCommerce.\u003Cbr \u002F>\nPlease register the following 3 webhooks in Billomat under “Settings > Webhooks” with the secret key shown under the Billomat tab in WoCommerce -> Settings.\u003C\u002Fp>\n\u003Cp>Event: Customer \u002F change\u003Cbr \u002F>\nURL: https:\u002F\u002Fyourdomain.com\u002Fwp-admin\u002Fadmin-post.php?action=wcb_update_customer&secret_key=YOUR_SECRET_KEY\u003C\u002Fp>\n\u003Cp>Event: Customer \u002F delete\u003Cbr \u002F>\nURL: https:\u002F\u002Fyourdomain.com\u002Fwp-admin\u002Fadmin-post.php?action=wcb_delete_customer&secret_key=YOUR_SECRET_KEY\u003C\u002Fp>\n\u003Cp>Event: Articles \u002F change\u003Cbr \u002F>\nURL: https:\u002F\u002Fyourdomain.com\u002Fwp-admin\u002Fadmin-post.php?action=wcb_update_product&secret_key=YOUR_SECRET_KEY\u003C\u002Fp>\n\u003Cp>Event: Articles \u002F delete\u003Cbr \u002F>\nURL: https:\u002F\u002Fyourdomain.com\u002Fwp-admin\u002Fadmin-post.php?action=wcb_delete_product&secret_key=YOUR_SECRET_KEY\u003C\u002Fp>\n\u003Cp>Event: Delivery note \u002F Change of status\u003Cbr \u002F>\nURL: https:\u002F\u002Fyourdomain.com\u002Fwp-admin\u002Fadmin-post.php?action=wcb_add_delivery_note&secret_key=YOUR_SECRET_KEY\u003C\u002Fp>\n\u003Cp>Event: Delivery note \u002F delete\u003Cbr \u002F>\nURL: https:\u002F\u002Fyourdomain.com\u002Fwp-admin\u002Fadmin-post.php?action=wcb_delete_delivery_note&secret_key=YOUR_SECRET_KEY\u003C\u002Fp>\n\u003Cp>Event: Invoice \u002F Change of status (since 1.1.0 – 2017-11-02)\u003Cbr \u002F>\nURL: https:\u002F\u002Fyourdomain.com\u002Fwp-admin\u002Fadmin-post.php?action=wcb_change_invoice_status&secret_key=YOUR_SECRET_KEY\u003C\u002Fp>\n\u003Cp>Event: Invoice \u002F delete (since 1.1.0 – 2017-11-02)\u003Cbr \u002F>\nURL: https:\u002F\u002Fyourdomain.com\u002Fwp-admin\u002Fadmin-post.php?action=wcb_delete_invoice&secret_key=YOUR_SECRET_KEY\u003C\u002Fp>\n","Connect WooCommerce to Billomat and generate clients, articles and invoices automatically.",100,80205,60,2,"2022-09-26T12:11:00.000Z","6.0.11","4.8","",[20,21,22,23],"billomat","invoice","invoicing","woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-billomat.V2.4.8.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},1,30,84,"2026-04-05T17:46:50.959Z",[36,54,73,89,106],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":11,"downloaded":44,"rating":26,"num_ratings":26,"last_updated":45,"tested_up_to":46,"requires_at_least":47,"requires_php":48,"tags":49,"homepage":52,"download_link":53,"security_score":11,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"toconline-for-woocommerce","TOConline for WooCommerce","1.0.17","TOConline","https:\u002F\u002Fprofiles.wordpress.org\u002Ftoconline\u002F","\u003Cp>The \u003Cstrong>TOConline for WooCommerce\u003C\u002Fstrong> plugin is designed to seamlessly integrate your WooCommerce store with the \u003Ca href=\"https:\u002F\u002Ftoconline.pt\u002F\" rel=\"nofollow ugc\">TOConline\u003C\u002Fa> system, simplifying invoicing, tax management, and data synchronization. This plugin automates critical administrative and fiscal processes, ensuring your store operates efficiently while maintaining compliance with local tax regulations.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Automated Invoicing:\u003C\u002Fstrong> Generate invoices, credit notes, and receipts directly within TOConline for WooCommerce orders.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customer Data Sync:\u003C\u002Fstrong> Keep customer details, such as addresses and tax numbers, synchronized between WooCommerce and TOConline.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Product Synchronization:\u003C\u002Fstrong> Automatically export product details from WooCommerce to TOConline, including prices, SKUs, and tax information.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Refund Management:\u003C\u002Fstrong> Create credit notes for refunds processed in WooCommerce, with seamless synchronization.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Tax Calculation:\u003C\u002Fstrong> Automatically apply the correct tax rates.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Email Notifications:\u003C\u002Fstrong> Automatically send invoices and credit notes to customers, with customizable templates to align with your brand.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Error Logs and Notifications:\u003C\u002Fstrong> Identify and resolve integration issues quickly with detailed logs and admin alerts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Benefits\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Full Automation:\u003C\u002Fstrong> Eliminate manual invoicing and tax calculations, reducing errors and saving time.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Tax Compliance:\u003C\u002Fstrong> Ensure all fiscal documents meet the portuguese legal.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enhanced Customer Experience:\u003C\u002Fstrong> Send professional, automated invoices and receipts, boosting trust and confidence.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Operational Efficiency:\u003C\u002Fstrong> Focus on growing your business while the plugin handles repetitive tasks.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Why Choose TOConline for WooCommerce?\u003C\u002Fh4>\n\u003Cp>With tax rule support, an intuitive interface and robust automation features, the TOConline plugin empowers your WooCommerce store to stay ahead. Whether you run a small business or manage a high-volume store, this plugin is scalable and reliable, making compliance and efficiency effortless.\u003C\u002Fp>\n\u003Ch4>Help & Support\u003C\u002Fh4>\n\u003Cp>Need support? Visit the \u003Ca href=\"https:\u002F\u002Fmanual.toconline.pt\u002Fpt-PT\u002Fsupport\u002Fsolutions\u002Ffolders\u002F3000023117\" rel=\"nofollow ugc\">plugin help pages\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin connects to the TOConline API to send and obtain commercial sales information, as well as data pertaining to WooCommerce products and user accounts. This is required to create and link to the commercial sales documents generated by the plugin, including (but not limited to) invoices and credit notes. All communication is sent to and received from the API as defined by the plugin options related to your company. These requests are made to a sub-domain at toconline.pt, which will vary depending on your company and must be manually added by you.\u003C\u002Fp>\n\u003Cp>Every time a WooCommerce order is completed successfully (i.e., an order is successfully paid), a request is made to the TOConline API. This request can additionally be sent manually through the order page in the WooCommerce administration. The TOConline API will receive most of the information related to the order, as well as the products it contains and the customer data required to generate the invoice, as provided through WooCommerce (name, shipping and billing addresses, contact information, and tax registration number). In case of refund, all of the aforementioned order, product, and customer data will be sent to the same API, to generate a credit note and a notice of settlement.\u003C\u002Fp>\n\u003Cp>Upon generating a commercial sales document, its data and a link to it will be saved in your WordPress website for future reference and emailed to the customer associated with the respective order.\u003C\u002Fp>\n\u003Cp>This service is provided by Ordem dos Contabilistas Certificados: \u003Ca href=\"https:\u002F\u002Ftoconline.pt\u002Ftermos-condicoes\u002F\" rel=\"nofollow ugc\">terms of use\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Ftoconline.pt\u002Fpolitica-privacidade\u002F\" rel=\"nofollow ugc\">privacy policy\u003C\u002Fa>.\u003C\u002Fp>\n","TOConline for WooCommerce is a WordPress plugin that automates invoicing with TOConline.",2506,"2025-10-28T16:23:00.000Z","6.8.5","6.1","8.1",[50,21,22,51,23],"billing","toconline","https:\u002F\u002Ftoconline.pt\u002Fplugin-wordpress-toconline-for-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftoconline-for-woocommerce.zip",{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":11,"num_ratings":64,"last_updated":65,"tested_up_to":46,"requires_at_least":66,"requires_php":48,"tags":67,"homepage":71,"download_link":72,"security_score":11,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"einvoicing-for-woocommerce","E-Invoicing For WooCommerce","0.4.3","instareza","https:\u002F\u002Fprofiles.wordpress.org\u002Finstareza\u002F","\u003Cp>Easily Customize WooCommerce PDF invoices and comply with Factur-X, UBL, and other e-invoicing standards.\u003C\u002Fp>\n\u003Ch3>WooCommerce E-Invoicing Customizer\u003C\u002Fh3>\n\u003Cp>Customize your WooCommerce PDF invoices and enable FacturX, UBL, ZUGFeRD, and XRechnung formats to comply with electronic invoicing regulations while customizing your invoices to reflect your brand.\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F0SWRxHRXnEM?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>PDF Invoice Customization:\u003C\u002Fstrong> Elevate your PDF invoices to match your brand identity with our native Invoice Designer, using the official WordPress customizer – no code editing required.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Factur-X, UBL, ZUGFeRD and Xrechnung Formats:\u003C\u002Fstrong> Enable compliance with the latest e-invoicing regulations, including Malaysian UBL support.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Sequential Invoice Numbering:\u003C\u002Fstrong> Control when invoice numbers are generated (pending, processing, or completed orders) with customizable formats and automatic yearly reset options.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Invoice Filename Customization:\u003C\u002Fstrong> Personalize invoice filenames using placeholders like {ORDER_ID}, {INVOICE_NUMBER}, {DATE}, and {CLIENT}.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Automatically attach invoice\u003C\u002Fstrong> PDF or Factur-X to WooCommerce emails of your choice.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Bulk Invoice Downloads:\u003C\u002Fstrong> Download multiple invoices at once in a convenient ZIP package from the WooCommerce orders list.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Effortless Integration:\u003C\u002Fstrong> Integrates with your existing WooCommerce setup.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Simple Invoicing:\u003C\u002Fstrong> Simplify invoicing processes for a more efficient store management.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress 5.0 or higher.\u003C\u002Fli>\n\u003Cli>PHP 8.1 or higher.\u003C\u002Fli>\n\u003Cli>PHP Extensions: GD, mbstring, dom, and iconv enabled. ZipArchive to allow zip creation.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Go to \u003Cstrong>WooCommerce > Settings > E-Invoicing settings\u003C\u002Fstrong> to access the plugin settings.\u003C\u002Fli>\n\u003Cli>Customize your PDF invoices according to your preferences.\u003C\u002Fli>\n\u003Cli>Enable Factur-X, UBL, ZUGFeRD or Xrechnung einvoice formats for compliance with your e-invoicing regulations.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Support and Compatibility\u003C\u002Fh3>\n\u003Cp>E-Invoicing for WooCommerce Invoice Designer leverages the native WordPress Customizer, ensuring a user-friendly and familiar experience. We strive for extensive compatibility across installations, but understand that occasional issues may arise. Should you encounter any incompatibilities with your setup, please reach out without hesitation. Our team is committed to promptly addressing and resolving any concerns to enhance your overall experience.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Big Thanks to :\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fpackagist.org\u002Fpackages\u002Fyouniwemi\u002Fdigital-invoice\" rel=\"nofollow ugc\">Youniwemi\u003C\u002Fa> for Digital Invoice – Easy wrapper around easybill\u002Fzugferd-php, atgp\u002Ffactur-x and josemmo\u002Feinvoicing  that will allow you generate Factur-x and UBL in a very easy way.\u003C\u002Fp>\n","Easily Customize WooCommerce PDF invoices and comply with Factur-X, UBL, and other e-invoicing standards.",90,4641,4,"2025-11-20T23:46:00.000Z","5.0",[68,69,21,70,23],"e-invoicing","factur-x","ubl","https:\u002F\u002Fwww.einvoicing-pro.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feinvoicing-for-woocommerce.0.4.3.zip",{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":26,"num_ratings":26,"last_updated":83,"tested_up_to":46,"requires_at_least":84,"requires_php":18,"tags":85,"homepage":87,"download_link":88,"security_score":11,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"invoicesonline","Invoices Online Integration","5.1","InvoicesOnline","https:\u002F\u002Fprofiles.wordpress.org\u002Finvoicesonline\u002F","\u003Cp>Provides integration between https:\u002F\u002Fwww.invoicesonline.co.za and the woocommerce wordpress plugin. This plugin allows invoices, pro-forma invoices and clients to be created on invoicesonline inside of wordpress. It provides full integration of the invoicesonline system for use with woocommerce.\u003C\u002Fp>\n\u003Cp>Woocommerce products can by synced from inventory in Invoices Online.  Can sync manually or automated via cronjob.\u003C\u002Fp>\n","Provides integration between https:\u002F\u002Fwww.invoicesonline.co.za and the woocommerce wordpress plugin.",10,1964,"2025-10-21T07:27:00.000Z","3.0.1",[86,74,22,23],"invoices-online","https:\u002F\u002Fwww.invoicesonline.co.za","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finvoicesonline.zip",{"slug":90,"name":91,"version":92,"author":93,"author_profile":94,"description":95,"short_description":96,"active_installs":81,"downloaded":97,"rating":26,"num_ratings":26,"last_updated":98,"tested_up_to":99,"requires_at_least":100,"requires_php":101,"tags":102,"homepage":104,"download_link":105,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"sequential-invoice-numbers","Sequential Invoice numbers","1.0.2","Joseph Parry","https:\u002F\u002Fprofiles.wordpress.org\u002Fjo90\u002F","\u003Ch4>Sequential Invoice Numbers\u003C\u002Fh4>\n\u003Cp>The main purpose of our sequential invoice numbers plugin is to add sequential invoice numbers to your Woocommerce orders. These will uniquely identify each transaction that your business makes and (being sequential) help keep your records organized. Our developers know this is something that is not only important to you, but also any accountants that may need to view your sale history.\u003C\u002Fp>\n\u003Cp>The plugin will also create a table within your WordPress database to store information about your transactions. You can use this as your list of invoices, interrogate it or simply use it as a backup if needed.\u003C\u002Fp>\n\u003Cp>In addition to appearing on each edit order page, the invoice numbers will appear in the Woocommerce orders page as a sortable column. This will streamline your experience of the WordPress admin as you can view each order by when the transaction occurred.\u003C\u002Fp>\n\u003Ch4>Customisability\u003C\u002Fh4>\n\u003Cp>Our developers understand that everyone uses their WordPress site differently. For example, you may use a plugin to operate your store using different order statuses. If this is the case, you can change when we create the invoice number by visiting the Woocommerce settings under invoices.\u003C\u002Fp>\n\u003Cp>You may decide to begin your invoice numbers at a value other than 1, or skip to a number and create a distinction between sets of transactions. To do this, visit the same settings page and change the value of the next invoice number.\u003C\u002Fp>\n\u003Cp>we also provide the option to add these invoice numbers to the emails sent by Woocommerce. This makes communication with your clients easier as you can quickly identify the relevant invoice for a customer if needed.\u003C\u002Fp>\n\u003Ch4>Future of Sequential Invoice Numbers Plugin\u003C\u002Fh4>\n\u003Cp>Our developers are currently working on plugins to extend our sequential invoice numbers plugin. We aim to add more invoicing features that will make your life easier. These will show up on the AOD suite page which comes with the plugin.\u003C\u002Fp>\n","Adds sequential invoice numbers to woocommerce orders.",946,"2021-05-04T16:48:00.000Z","5.5.18","5.5","7.0",[103,22,90,23],"accounts","https:\u002F\u002Fwww.artofdata.com\u002Fwp-plugins\u002Fwoocommerce\u002Fsequential-invoice-numbers-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsequential-invoice-numbers.zip",{"slug":107,"name":108,"version":109,"author":110,"author_profile":111,"description":112,"short_description":113,"active_installs":26,"downloaded":114,"rating":26,"num_ratings":26,"last_updated":115,"tested_up_to":116,"requires_at_least":117,"requires_php":118,"tags":119,"homepage":125,"download_link":126,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"gestix-api","GESTIX ERP\u002FCRM API","0.1.0","sergioflor","https:\u002F\u002Fprofiles.wordpress.org\u002Fsergioflor\u002F","\u003Cp>General purpose ERP CRM application programming interface.\u003Cbr \u002F>\nSupports Woocommerce and other e-commerce plugins.\u003Cbr \u002F>\nFinal plugin implementation depends on customer requirements.\u003C\u002Fp>\n\u003Ch3>Tags\u003C\u002Fh3>\n\u003Cp>Webshop Invoicing, Woocommerce invoice, online order processing, open cart software, online store, stock management, billing, factura, carrinho compras, loja online\u003C\u002Fp>\n","Gestix API",1279,"2018-09-06T17:52:00.000Z","4.3.34","4.0.1","5.6",[120,121,122,123,124],"online-order-processing","online-store","open-cart-software","webshop-invoicing","woocommerce-invoice","http:\u002F\u002Fwww.gestix.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgestix-api.zip",{"attackSurface":128,"codeSignals":295,"taintFlows":370,"riskAssessment":430,"analyzedAt":443},{"hooks":129,"ajaxHandlers":269,"restRoutes":292,"shortcodes":293,"cronEvents":294,"entryPointCount":140,"unprotectedCount":140},[130,136,141,145,150,153,155,158,160,162,163,168,171,174,179,183,186,190,194,198,200,203,205,209,213,217,221,224,228,232,236,238,241,245,249,253,256,259,263,265],{"type":131,"name":132,"callback":133,"file":134,"line":135},"action","woocommerce_admin_order_actions_end","anonymous","includes\\admin\\admin-order-actions.php",18,{"type":131,"name":137,"callback":138,"file":139,"line":140},"add_meta_boxes","add","includes\\admin\\class-wcb-article-meta-box.php",8,{"type":131,"name":142,"callback":143,"priority":81,"file":139,"line":144},"save_post","save",9,{"type":131,"name":146,"callback":147,"file":148,"line":149},"admin_notices","show_admin_notices","includes\\admin\\class-wcb-notices-controller.php",26,{"type":131,"name":151,"callback":138,"file":152,"line":140},"edit_user_profile","includes\\admin\\class-wcb-user-fields.php",{"type":131,"name":154,"callback":143,"priority":81,"file":152,"line":144},"edit_user_profile_update",{"type":131,"name":156,"callback":138,"priority":81,"file":157,"line":140},"woocommerce_product_after_variable_attributes","includes\\admin\\class-wcb-variation-fields.php",{"type":131,"name":159,"callback":143,"priority":81,"file":157,"line":144},"woocommerce_save_product_variation",{"type":131,"name":137,"callback":138,"file":161,"line":144},"includes\\admin\\order-meta-box.php",{"type":131,"name":142,"callback":143,"priority":81,"file":161,"line":81},{"type":164,"name":165,"callback":133,"priority":166,"file":167,"line":135},"filter","woocommerce_settings_tabs_array",50,"includes\\admin\\settings.php",{"type":131,"name":169,"callback":133,"file":167,"line":170},"woocommerce_settings_tabs_billomat",19,{"type":131,"name":172,"callback":133,"file":167,"line":173},"woocommerce_update_options_billomat",20,{"type":131,"name":175,"callback":176,"priority":26,"file":177,"line":178},"woocommerce_created_customer","export_create_client","includes\\class-wcb-customer-updater.php",27,{"type":131,"name":180,"callback":181,"priority":26,"file":177,"line":182},"woocommerce_update_customer","export_update_client",28,{"type":131,"name":184,"callback":181,"priority":26,"file":177,"line":185},"profile_update",29,{"type":131,"name":187,"callback":188,"file":177,"line":189},"admin_post_nopriv_wcb_update_customer","import_update_customer",32,{"type":131,"name":191,"callback":192,"file":177,"line":193},"admin_post_nopriv_wcb_delete_customer","import_delete_customer",33,{"type":131,"name":195,"callback":196,"priority":81,"file":197,"line":185},"woocommerce_order_status_pending","export_create_or_send_invoice","includes\\class-wcb-order-updater.php",{"type":131,"name":199,"callback":196,"priority":81,"file":197,"line":32},"woocommerce_order_status_on-hold",{"type":131,"name":201,"callback":196,"priority":81,"file":197,"line":202},"woocommerce_order_status_processing",31,{"type":131,"name":204,"callback":196,"priority":81,"file":197,"line":189},"woocommerce_order_status_completed",{"type":131,"name":206,"callback":207,"priority":81,"file":197,"line":208},"woocommerce_order_status_cancelled","export_cancel_invoice",34,{"type":164,"name":210,"callback":211,"priority":81,"file":197,"line":212},"woocommerce_email_attachments","email_attachments",35,{"type":131,"name":214,"callback":215,"file":197,"line":216},"admin_post_nopriv_wcb_delete_invoice","import_delete_invoice",38,{"type":131,"name":218,"callback":219,"file":197,"line":220},"admin_post_nopriv_wcb_change_invoice_status","import_remove_billomat_draft_meta",39,{"type":131,"name":218,"callback":222,"file":197,"line":223},"import_update_order_status",40,{"type":131,"name":225,"callback":226,"file":197,"line":227},"admin_post_nopriv_wcb_add_delivery_note","import_add_delivery_note",41,{"type":131,"name":229,"callback":230,"file":197,"line":231},"admin_post_nopriv_wcb_delete_delivery_note","import_delete_delivery_note",42,{"type":131,"name":142,"callback":233,"priority":81,"file":234,"line":235},"export_update_article","includes\\class-wcb-product-updater.php",58,{"type":131,"name":159,"callback":233,"priority":81,"file":234,"line":237},59,{"type":131,"name":239,"callback":240,"priority":26,"file":234,"line":13},"before_delete_post","export_delete_article",{"type":131,"name":242,"callback":243,"priority":26,"file":234,"line":244},"woocommerce_product_duplicate","remove_billomat_id",61,{"type":131,"name":246,"callback":247,"file":234,"line":248},"admin_post_nopriv_wcb_update_product","import_update_product",64,{"type":131,"name":250,"callback":251,"file":234,"line":252},"admin_post_nopriv_wcb_delete_product","import_delete_product",65,{"type":131,"name":254,"callback":133,"priority":81,"file":255,"line":170},"woocommerce_my_account_my_orders_actions","includes\\frontend\\frontend-order-actions.php",{"type":131,"name":257,"callback":133,"priority":81,"file":255,"line":258},"woocommerce_order_details_after_order_table",23,{"type":131,"name":260,"callback":261,"file":262,"line":33},"plugins_loaded","check_update","woocommerce-billomat.php",{"type":131,"name":264,"callback":264,"priority":26,"file":262,"line":25},"init",{"type":131,"name":266,"callback":267,"priority":26,"file":262,"line":268},"admin_enqueue_scripts","admin_assets",86,[270,273,275,278,281,283,286,289],{"action":271,"nopriv":272,"callback":133,"hasNonce":272,"hasCapCheck":272,"file":134,"line":170},"wcb_complete_invoice",false,{"action":274,"nopriv":272,"callback":133,"hasNonce":272,"hasCapCheck":272,"file":134,"line":173},"wcb_download_invoice",{"action":274,"nopriv":276,"callback":133,"hasNonce":272,"hasCapCheck":272,"file":134,"line":277},true,21,{"action":279,"nopriv":272,"callback":133,"hasNonce":272,"hasCapCheck":272,"file":134,"line":280},"wcb_send_invoice",22,{"action":282,"nopriv":272,"callback":133,"hasNonce":272,"hasCapCheck":272,"file":134,"line":258},"wcb_download_delivery_note",{"action":284,"nopriv":272,"callback":133,"hasNonce":272,"hasCapCheck":272,"file":134,"line":285},"wcb_create_delivery_note",24,{"action":287,"nopriv":272,"callback":133,"hasNonce":272,"hasCapCheck":272,"file":134,"line":288},"wcb_send_delivery_note",25,{"action":290,"nopriv":272,"callback":291,"hasNonce":272,"hasCapCheck":272,"file":148,"line":178},"wcb_remove_admin_notice","ajax_remove_admin_notice",[],[],[],{"dangerousFunctions":296,"sqlUsage":297,"outputEscaping":330,"fileOperations":365,"externalRequests":26,"nonceChecks":64,"capabilityChecks":81,"bundledLibraries":366},[],{"prepared":26,"raw":298,"locations":299},13,[300,303,305,308,310,312,314,316,318,320,322,324,327],{"file":167,"line":301,"context":302},87,"$wpdb->query() with variable interpolation",{"file":167,"line":304,"context":302},94,{"file":177,"line":306,"context":307},106,"$wpdb->get_var() with variable interpolation",{"file":177,"line":309,"context":307},143,{"file":197,"line":311,"context":307},207,{"file":197,"line":313,"context":307},229,{"file":197,"line":315,"context":307},252,{"file":197,"line":317,"context":307},329,{"file":197,"line":319,"context":307},351,{"file":234,"line":321,"context":307},192,{"file":234,"line":323,"context":307},247,{"file":234,"line":325,"context":326},348,"$wpdb->get_col() with variable interpolation",{"file":328,"line":329,"context":307},"includes\\class-wcb-updater.php",72,{"escaped":64,"rawEcho":135,"locations":331},[332,334,336,338,340,342,344,345,347,349,351,353,355,357,358,360,362,363],{"file":134,"line":208,"context":333},"raw output",{"file":134,"line":335,"context":333},43,{"file":134,"line":337,"context":333},51,{"file":134,"line":339,"context":333},122,{"file":134,"line":341,"context":333},206,{"file":139,"line":343,"context":333},53,{"file":161,"line":301,"context":333},{"file":161,"line":346,"context":333},88,{"file":161,"line":348,"context":333},92,{"file":161,"line":350,"context":333},93,{"file":161,"line":352,"context":333},98,{"file":161,"line":354,"context":333},101,{"file":161,"line":356,"context":333},112,{"file":161,"line":356,"context":333},{"file":161,"line":359,"context":333},114,{"file":161,"line":361,"context":333},119,{"file":161,"line":339,"context":333},{"file":255,"line":364,"context":333},54,12,[367],{"name":368,"version":27,"knownCves":369},"Guzzle",[],[371,388,397,406],{"entryPoint":372,"graph":373,"unsanitizedCount":31,"severity":387},"send_invoice (includes\\admin\\admin-order-actions.php:125)",{"nodes":374,"edges":385},[375,380],{"id":376,"type":377,"label":378,"file":134,"line":379},"n0","source","$_SERVER['HTTP_REFERER']",134,{"id":381,"type":382,"label":383,"file":134,"line":379,"wp_function":384},"n1","sink","header() [Header Injection]","header",[386],{"from":376,"to":381,"sanitized":272},"medium",{"entryPoint":389,"graph":390,"unsanitizedCount":31,"severity":387},"send_delivery_note (includes\\admin\\admin-order-actions.php:138)",{"nodes":391,"edges":395},[392,394],{"id":376,"type":377,"label":378,"file":134,"line":393},147,{"id":381,"type":382,"label":383,"file":134,"line":393,"wp_function":384},[396],{"from":376,"to":381,"sanitized":272},{"entryPoint":398,"graph":399,"unsanitizedCount":26,"severity":405},"complete_invoice (includes\\admin\\admin-order-actions.php:59)",{"nodes":400,"edges":403},[401,402],{"id":376,"type":377,"label":378,"file":134,"line":350},{"id":381,"type":382,"label":383,"file":134,"line":350,"wp_function":384},[404],{"from":376,"to":381,"sanitized":276},"low",{"entryPoint":407,"graph":408,"unsanitizedCount":26,"severity":405},"\u003Cadmin-order-actions> (includes\\admin\\admin-order-actions.php:0)",{"nodes":409,"edges":426},[410,412,413,417,420,422],{"id":376,"type":377,"label":411,"file":134,"line":350},"$_SERVER['HTTP_REFERER'] (x3)",{"id":381,"type":382,"label":383,"file":134,"line":350,"wp_function":384},{"id":414,"type":377,"label":415,"file":134,"line":416},"n2","$_GET",126,{"id":418,"type":382,"label":383,"file":134,"line":419,"wp_function":384},"n3",205,{"id":421,"type":377,"label":415,"file":134,"line":416},"n4",{"id":423,"type":382,"label":424,"file":134,"line":341,"wp_function":425},"n5","echo() [XSS]","echo",[427,428,429],{"from":376,"to":381,"sanitized":276},{"from":414,"to":418,"sanitized":276},{"from":421,"to":423,"sanitized":276},{"summary":431,"deductions":432},"The \"woo-billomat\" plugin v2.4.8 exhibits several concerning security practices, primarily related to its handling of AJAX requests. A significant portion of the attack surface, specifically all 8 AJAX handlers, lacks authentication checks. This presents a substantial risk, as any unauthenticated user could potentially trigger these handlers, leading to unintended actions or information disclosure if these handlers interact with sensitive data or functionality. Furthermore, the code's reliance on raw SQL queries without prepared statements is a critical weakness, increasing the susceptibility to SQL injection vulnerabilities. While the plugin has no recorded vulnerability history or critical taint flows, the identified code-level issues cannot be ignored. The plugin demonstrates some strengths, such as the absence of dangerous functions and external HTTP requests, and a reasonable number of capability checks and nonce checks are present, albeit not universally applied to AJAX handlers. However, the high proportion of unprotected entry points and the lack of prepared statements in SQL queries significantly detract from its overall security posture.",[433,435,437,440],{"reason":434,"points":81},"8 AJAX handlers without authentication checks",{"reason":436,"points":140},"13 SQL queries, 0% using prepared statements",{"reason":438,"points":439},"18% of output properly escaped",5,{"reason":441,"points":442},"2 flows with unsanitized paths (taint analysis)",3,"2026-03-16T21:13:55.413Z",{"wat":445,"direct":454},{"assetPaths":446,"generatorPatterns":449,"scriptPaths":450,"versionParams":451},[447,448],"\u002Fwp-content\u002Fplugins\u002Fwoo-billomat\u002Fadmin-v2.css","\u002Fwp-content\u002Fplugins\u002Fwoo-billomat\u002Fadmin-v2.js",[],[448],[452,453],"woo-billomat\u002Fadmin-v2.css?ver=","woo-billomat\u002Fadmin-v2.js?ver=",{"cssClasses":455,"htmlComments":457,"htmlAttributes":458,"restEndpoints":460,"jsGlobals":461,"shortcodeOutput":463},[456,21],"view",[],[459],"data-tip",[],[462],"wcb",[]]