Does streetshirts for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is streetshirts for WooCommerce compatible with WordPress 4.9.29?

According to WordPress.org data, streetshirts for WooCommerce 1.0.4 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

How often is streetshirts for WooCommerce updated?

streetshirts for WooCommerce was last updated on Sep 22, 2018. Frequent updates are generally a positive security signal.

What is streetshirts for WooCommerce's security score?

streetshirts for WooCommerce has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

streetshirts for WooCommerce Security & Risk Analysis

wordpress.org/plugins/woo-streetshirts

Connect streetshirts to your WooCommerce store

50 active installs v1.0.4 PHP + WP 4.0+ Updated Sep 22, 2018

street-shirtsstreetshirtst-shirtswoowoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is streetshirts for WooCommerce Safe to Use in 2026?

Generally Safe

Score 85/100

streetshirts for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The "woo-streetshirts" plugin v1.0.4 exhibits a concerning security posture despite having no recorded vulnerabilities or a large attack surface. The static analysis reveals critical weaknesses in its handling of sensitive code patterns. Specifically, the plugin uses SQL queries without prepared statements and performs output operations without proper escaping, indicating potential for SQL injection and cross-site scripting (XSS) vulnerabilities. Furthermore, the taint analysis shows all three analyzed flows with unsanitized paths, which is a significant red flag for potential security flaws even if no critical or high severity issues were automatically detected by the tool. The absence of vulnerability history is positive, but it does not negate the immediate risks identified in the code itself, suggesting that the plugin may be largely untested or its current code has introduced new, undocumented risks.

Key Concerns

SQL queries without prepared statements
Unescaped output
All analyzed taint flows have unsanitized paths
No capability checks for entry points
No nonce checks for entry points

Vulnerabilities

None known

streetshirts for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

streetshirts for WooCommerce Release Timeline

v1.0.3

v1.0.2

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

streetshirts for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared1 total queries

Output Escaping

0% escaped2 total outputs

Data Flows · Security

3 unsanitized

Data Flow Analysis

3 flows3 with unsanitized paths

streetshirts_home_page_callback (woo-streetshirts.php:64)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

streetshirts for WooCommerce Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionadmin_menuwoo-streetshirts.php:75

actionwoocommerce_order_actionswoo-streetshirts.php:92

actionwoocommerce_order_action_ns_streetshirts_connectwoo-streetshirts.php:159

actionadmin_enqueue_scriptswoo-streetshirts.php:165

Maintenance & Trust

streetshirts for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedSep 22, 2018

PHP min version

Downloads6K

Community Trust

Rating20/100

Number of ratings1

Active installs50

Alternatives

streetshirts for WooCommerce Alternatives

Inkseekers Integration for WooCommerce

inkseekers-for-woocommerce

Grow your store with the inkseekers apps connecting to woocommerce plugin

10 No CVEs

Catkissfish Integration for WooCommerce

catkissfish-integration-for-woocommerce

100

Automatically sync WooCommerce orders and products with the Catkissfish print-on-demand platform.

0 No CVEs

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 59 CVEs

Limit Login Attempts Reloaded – Login Security, 2FA, Brute Force Protection & Firewall

limit-login-attempts-reloaded

Stop password guessing attacks, secure WooCommerce, block bad IPs, block by countries (Pro), and add email 2FA. Lightweight with better performance.

2.0M 4 CVEs

Google for WooCommerce

google-listings-and-ads

Native integration with Google that allows merchants to easily display their products across Google’s network.

900K 1 CVE

Developer Profile

streetshirts for WooCommerce Developer Profile

stevewinn

1 plugin · 50 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect streetshirts for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/woo-streetshirts/assets/js/jquery-iframe-resizer.min.js

Script Paths