Woocommerce Product Wise Orders Report Security & Risk Analysis
wordpress.org/plugins/woocommerce-product-wise-orders-reportThis plugin adds a functionality in woocommerce to see orders specific to a particular product.
Is Woocommerce Product Wise Orders Report Safe to Use in 2026?
Generally Safe
Score 85/100Woocommerce Product Wise Orders Report has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The WooCommerce Product-Wise Orders Report plugin, version 1.0, presents a significant security risk primarily due to its poor output escaping and unsanitized taint flows. While the plugin has a clean vulnerability history and a seemingly small attack surface in terms of entry points like AJAX handlers, shortcodes, and REST API routes, the underlying code quality is concerning. The presence of the `unserialize` function, combined with raw SQL queries and a complete lack of output escaping, strongly suggests a high likelihood of severe vulnerabilities such as Cross-Site Scripting (XSS) and potentially Remote Code Execution (RCE) if user-controlled input is involved in these unsanitized flows.
Key Concerns
- Unsanitized taint flows detected
- Dangerous function unserialize detected
- SQL queries not using prepared statements
- Output escaping is completely missing
- No nonce checks implemented
- No capability checks implemented
Woocommerce Product Wise Orders Report Security Vulnerabilities
Woocommerce Product Wise Orders Report Release Timeline
Woocommerce Product Wise Orders Report Code Analysis
Dangerous Functions Found
SQL Query Safety
Output Escaping
Data Flow Analysis
Woocommerce Product Wise Orders Report Attack Surface
WordPress Hooks 1
Maintenance & Trust
Woocommerce Product Wise Orders Report Maintenance & Trust
Maintenance Signals
Community Trust
Woocommerce Product Wise Orders Report Alternatives
Essential Addons for Elementor – Popular Elementor Templates & Widgets
essential-addons-for-elementor-lite
Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.
Limit Login Attempts Reloaded – Login Security, 2FA, Brute Force Protection & Firewall
limit-login-attempts-reloaded
Stop password guessing attacks, secure WooCommerce, block bad IPs, block by countries (Pro), and add email 2FA. Lightweight with better performance.
Google for WooCommerce
google-listings-and-ads
Native integration with Google that allows merchants to easily display their products across Google’s network.
WooPayments: Integrated WooCommerce Payments
woocommerce-payments
Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.
WooCommerce PayPal Payments
woocommerce-paypal-payments
PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.
Woocommerce Product Wise Orders Report Developer Profile
1 plugin · 10 total installs
How We Detect Woocommerce Product Wise Orders Report
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/woocommerce-product-wise-orders-report/admin.css/wp-content/plugins/woocommerce-product-wise-orders-report/admin.js/wp-content/plugins/woocommerce-product-wise-orders-report/admin.jswoocommerce-product-wise-orders-report/admin.css?ver=woocommerce-product-wise-orders-report/admin.js?ver=HTML / DOM Fingerprints
ajax_chosen_select_productsdata-placeholderwoocommerce_admin_meta_boxes<h1>Orders Report</h1><form name="product_status_frm" method="post" action=""><b>Select Deal:</b><select name="deal_id" class="ajax_chosen_select_products" multiple="multiple" data-placeholder="<?php _e( 'Search for a product…', 'woocommerce' ); ?>" style="width: 400px"></select>