WP-Safety

Woocommerce Doo Products and Variations Exporter Security & Risk Analysis

wordpress.org/plugins/woocommerce-products-exporter

Woocommerce Doo Products Exporter is a quick easy and essential WooCommerce product to Export & Import your store products.

10 active installs v1.0 PHP + WP 3.0.1+ Updated Jun 19, 2015
csvexcelexport-productsexporterwoocommerce
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Woocommerce Doo Products and Variations Exporter Safe to Use in 2026?

Generally Safe

Score 85/100

Woocommerce Doo Products and Variations Exporter has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10yr ago
Risk Assessment

The "woocommerce-products-exporter" v1.0 plugin exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices by utilizing prepared statements for all SQL queries and implementing a reasonable number of capability checks. The absence of known CVEs and a clean vulnerability history is also a strong indicator of diligent security efforts in the past. However, significant concerns arise from the static analysis. The presence of an unprotected AJAX handler represents a substantial attack surface, especially when combined with the use of the `unserialize` function. This combination could allow an attacker to inject malicious data through the AJAX endpoint, which is then unserialized without proper sanitization or authentication, potentially leading to code execution or other severe vulnerabilities. The taint analysis further highlights this risk with a high-severity flow involving unsanitized paths, directly correlating with the unprotected AJAX handler and the `unserialize` function.

Key Concerns

  • Unprotected AJAX handler
  • Use of unserialize function
  • High severity taint flow with unsanitized paths
  • Bundled outdated libraries (dompdf, TCPDF)
  • Low percentage of properly escaped output
Vulnerabilities
None known

Woocommerce Doo Products and Variations Exporter Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Woocommerce Doo Products and Variations Exporter Release Timeline

No version history available.
Code Analysis
Analyzed Mar 16, 2026

Woocommerce Doo Products and Variations Exporter Code Analysis

Dangerous Functions
11
Raw SQL Queries
0
35 prepared
Unescaped Output
265
526 escaped
Nonce Checks
3
Capability Checks
6
File Operations
195
External Requests
0
Bundled Libraries
2

Dangerous Functions Found

unserialize$this->_currentObject = unserialize($obj);classes\PHPExcel\CachedObjectStorage\APC.php:156
unserialize$this->_currentObject = unserialize(fread($this->_fileHandle,$this->_cellCache[$pCoord]['sz']));classes\PHPExcel\CachedObjectStorage\DiscISAM.php:126
unserialize$this->_currentObject = unserialize($obj);classes\PHPExcel\CachedObjectStorage\Memcache.php:160
unserialize$this->_currentObject = unserialize(gzinflate($this->_cellCache[$pCoord]));classes\PHPExcel\CachedObjectStorage\MemoryGZip.php:98
unserialize$this->_currentObject = unserialize($this->_cellCache[$pCoord]);classes\PHPExcel\CachedObjectStorage\MemorySerialized.php:98
unserialize$this->_currentObject = unserialize(fread($this->_fileHandle,$this->_cellCache[$pCoord]['sz']));classes\PHPExcel\CachedObjectStorage\PHPTemp.php:118
unserialize$this->_currentObject = unserialize($cellResult);classes\PHPExcel\CachedObjectStorage\SQLite.php:118
unserialize$this->_currentObject = unserialize($cellData['value']);classes\PHPExcel\CachedObjectStorage\SQLite3.php:150
unserialize$this->_currentObject = unserialize($obj);classes\PHPExcel\CachedObjectStorage\Wincache.php:160
unserialize$this->{$key} = unserialize(serialize($val));classes\PHPExcel\Worksheet.php:2839
unserialize$this->{$key} = unserialize(serialize($val));classes\PHPExcel.php:866

Bundled Libraries

dompdfTCPDF

SQL Query Safety

100% prepared35 total queries

Output Escaping

66% escaped791 total outputs
Data Flows · Security
11 unsanitized

Data Flow Analysis

12 flows11 with unsanitized paths
my_action_callback (includes\admin.php:626)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

Woocommerce Doo Products and Variations Exporter Attack Surface

Entry Points1
Unprotected1

AJAX Handlers 1

authwp_ajax_woo_ce_export_orderdoo-products-exporter.php:106
WordPress Hooks 141
actioninitdoo-products-exporter.php:37
actionwp_dashboard_setupdoo-products-exporter.php:97
filtermanage_edit-shop_order_columnsdoo-products-exporter.php:99
actionmanage_shop_order_posts_custom_columndoo-products-exporter.php:100
filterwoocommerce_admin_order_actionsdoo-products-exporter.php:105
actionadmin_footerdoo-products-exporter.php:108
actionload-edit.phpdoo-products-exporter.php:109
actionwoocommerce_order_actionsdoo-products-exporter.php:111
actionwoocommerce_order_action_woo_ce_export_order_csvdoo-products-exporter.php:112
actionwoocommerce_order_action_woo_ce_export_order_xmldoo-products-exporter.php:113
actionwoocommerce_order_action_woo_ce_export_order_xlsdoo-products-exporter.php:114
actionwoocommerce_order_action_woo_ce_export_order_xlsxdoo-products-exporter.php:115
actionshutdowndoo-products-exporter.php:714
actionadmin_initdoo-products-exporter.php:1069
actioninitdoo-products-exporter.php:1316
filtercron_schedulesdoo-products-exporter.php:1333
actionwoocommerce_checkout_update_order_metadoo-products-exporter.php:1343
actionwoo_ce_auto_export_scheduledoo-products-exporter.php:1348
actioninitdoo-products-exporter.php:1351
actionadmin_menuincludes\admin.php:4
filterwoo_ce_template_headerincludes\admin.php:37
filterwoocommerce_screen_idsincludes\admin.php:337
actioncurrent_screenincludes\admin.php:345
actionadmin_menuincludes\admin.php:348
filterset-screen-optionincludes\admin.php:646
actionwoo_ce_export_optionsincludes\admin.php:703
actionwoo_ce_export_product_options_before_tableincludes\admin.php:707
actionwoo_ce_export_product_options_before_tableincludes\admin.php:708
actionwoo_ce_export_product_options_before_tableincludes\admin.php:709
actionwoo_ce_export_product_options_before_tableincludes\admin.php:710
actionwoo_ce_export_product_options_before_tableincludes\admin.php:711
actionwoo_ce_export_product_options_before_tableincludes\admin.php:712
actionwoo_ce_export_product_options_before_tableincludes\admin.php:713
actionwoo_ce_export_product_options_before_tableincludes\admin.php:714
actionwoo_ce_export_product_options_after_tableincludes\admin.php:715
actionwoo_ce_export_optionsincludes\admin.php:716
actionwoo_ce_export_optionsincludes\admin.php:717
actionwoo_ce_export_optionsincludes\admin.php:718
actionwoo_ce_export_optionsincludes\admin.php:719
actionwoo_ce_export_optionsincludes\admin.php:720
actionwoo_ce_export_after_formincludes\admin.php:721
actionwoo_ce_export_category_options_before_tableincludes\admin.php:726
actionwoo_ce_export_category_options_after_tableincludes\admin.php:727
actionwoo_ce_export_tag_options_before_tableincludes\admin.php:732
actionwoo_ce_export_tag_options_after_tableincludes\admin.php:733
actionwoo_ce_export_brand_options_before_tableincludes\admin.php:738
actionwoo_ce_export_quicklinksincludes\admin.php:746
actionwoo_ce_export_order_options_before_tableincludes\admin.php:747
actionwoo_ce_export_order_options_before_tableincludes\admin.php:748
actionwoo_ce_export_order_options_before_tableincludes\admin.php:749
actionwoo_ce_export_order_options_before_tableincludes\admin.php:750
actionwoo_ce_export_order_options_before_tableincludes\admin.php:751
actionwoo_ce_export_order_options_before_tableincludes\admin.php:752
actionwoo_ce_export_order_options_before_tableincludes\admin.php:753
actionwoo_ce_export_order_options_before_tableincludes\admin.php:754
actionwoo_ce_export_order_options_before_tableincludes\admin.php:755
actionwoo_ce_export_order_options_before_tableincludes\admin.php:756
actionwoo_ce_export_order_options_before_tableincludes\admin.php:757
actionwoo_ce_export_order_options_before_tableincludes\admin.php:758
actionwoo_ce_export_order_options_before_tableincludes\admin.php:759
actionwoo_ce_export_order_options_before_tableincludes\admin.php:760
actionwoo_ce_export_order_options_before_tableincludes\admin.php:761
actionwoo_ce_export_order_options_after_tableincludes\admin.php:762
actionwoo_ce_export_optionsincludes\admin.php:763
actionwoo_ce_export_optionsincludes\admin.php:764
actionwoo_ce_export_optionsincludes\admin.php:765
actionwoo_ce_export_after_formincludes\admin.php:766
actionwoo_ce_export_customer_options_before_tableincludes\admin.php:771
actionwoo_ce_export_customer_options_before_tableincludes\admin.php:772
actionwoo_ce_export_after_formincludes\admin.php:773
actionwoo_ce_export_user_options_after_tableincludes\admin.php:778
actionwoo_ce_export_after_formincludes\admin.php:779
actionwoo_ce_export_coupon_options_before_tableincludes\admin.php:784
actionwoo_ce_export_coupon_options_before_tableincludes\admin.php:785
actionwoo_ce_export_subscription_options_before_tableincludes\admin.php:790
actionwoo_ce_export_subscription_options_before_tableincludes\admin.php:791
actionwoo_ce_export_commission_options_before_tableincludes\admin.php:800
actionwoo_ce_export_commission_options_before_tableincludes\admin.php:801
actionwoo_ce_export_commission_options_before_tableincludes\admin.php:802
actionwoo_ce_export_commission_options_before_tableincludes\admin.php:803
actionwoo_ce_export_shipping_class_options_after_tableincludes\admin.php:808
actionwoo_ce_export_settings_topincludes\admin.php:874
actionwoo_ce_export_settings_afterincludes\admin.php:875
actionwoo_ce_export_settings_afterincludes\admin.php:876
actioninitincludes\admin.php:1414
filtersanitize_keyincludes\brand.php:73
filterwoo_ce_brand_fieldsincludes\brand.php:134
filtersanitize_keyincludes\category.php:122
filterwoo_ce_category_fieldsincludes\category.php:183
filtersanitize_keyincludes\commission.php:261
filterwoo_ce_commission_fieldsincludes\commission.php:322
filtersanitize_keyincludes\coupon.php:154
filterwoo_ce_coupon_fieldsincludes\coupon.php:215
filtersanitize_keyincludes\customer.php:247
filterwoo_ce_customer_fieldsincludes\customer.php:308
filterwoo_ce_customer_fieldsincludes\customer.php:391
filterwc_priceincludes\formatting.php:341
filterformatted_woocommerce_priceincludes\formatting.php:342
filterwoocommerce_currency_symbolincludes\formatting.php:343
actionedit_form_after_editorincludes\functions.php:411
actionshutdownincludes\functions.php:551
filtersanitize_keyincludes\functions.php:554
filterwoo_ce_order_fieldsincludes\functions.php:764
filterupload_mimesincludes\functions.php:1472
filterpost_mime_typesincludes\functions.php:1511
filterthe_titleincludes\order.php:458
filtersanitize_keyincludes\order.php:1081
filterwoo_ce_order_fieldsincludes\order.php:1156
filterwoo_ce_order_fieldsincludes\order.php:1671
filterposts_whereincludes\order.php:1810
filterwoo_ce_orderincludes\order.php:3230
filterwoo_ce_order_item_custom_metaincludes\order.php:3307
filterwoo_ce_order_itemincludes\order.php:3404
filterwoo_ce_add_unique_order_item_fields_exclusionincludes\order.php:3550
filterwoo_ce_order_items_combinedincludes\order.php:3799
filterwoo_ce_order_items_uniqueincludes\order.php:3920
filterwoo_ce_order_items_individualincludes\order.php:4114
filterwoo_ce_add_unique_order_item_fields_onincludes\order.php:4336
filterwoo_ce_unique_order_item_columnsincludes\order.php:4538
filterposts_whereincludes\product.php:512
filterposts_whereincludes\product.php:639
filtersanitize_keyincludes\product.php:1625
filterwoo_ce_product_fieldsincludes\product.php:1686
filterwoo_ce_product_fieldsincludes\product.php:2044
filterwoo_ce_product_itemincludes\product.php:2421
filtersanitize_keyincludes\product.php:2471
filtersanitize_keyincludes\product_vendor.php:52
filterwoo_ce_product_vendor_fieldsincludes\product_vendor.php:113
filterthe_titleincludes\settings.php:460
filtersanitize_keyincludes\shipping_class.php:92
filterwoo_ce_shipping_class_fieldsincludes\shipping_class.php:153
filtersanitize_keyincludes\subscription.php:166
filterwoo_ce_subscription_fieldsincludes\subscription.php:227
filterwoo_ce_subscription_fieldsincludes\subscription.php:308
filterwoo_ce_subscriptionincludes\subscription.php:482
filtersanitize_keyincludes\tag.php:94
filterwoo_ce_tag_fieldsincludes\tag.php:155
filtersanitize_keyincludes\user.php:160
filterwoo_ce_user_fieldsincludes\user.php:221
filterwoo_ce_user_fieldsincludes\user.php:298
filterwoo_ce_userincludes\user.php:410
Maintenance & Trust

Woocommerce Doo Products and Variations Exporter Maintenance & Trust

Maintenance Signals

WordPress version tested4.2.39
Last updatedJun 19, 2015
PHP min version
Downloads7K

Community Trust

Rating60/100
Number of ratings4
Active installs10
Alternatives

Woocommerce Doo Products and Variations Exporter Alternatives

Store Exporter – Export WooCommerce Products, Orders, Subscriptions, Customers

Store Exporter – Export WooCommerce Products, Orders, Subscriptions, Customers

woocommerce-exporter

A
89

Export WooCommerce products, orders, customers, categories, tags, subscriptions & more into formatted files like CSV, XML, Excel 2007, XLS, XLSX.

7K 9 CVEs
WP All Export – Product Export Add-On for WooCommerce

WP All Export – Product Export Add-On for WooCommerce

product-export-for-woocommerce

A
100

Drag & drop to export products to CSV, Excel, or XML files of any format. Supports variations, images, attributes, brands, and more with powerful …

10K No CVEs
Ni WooCommerce Order Export

Ni WooCommerce Order Export

ni-woocommerce-order-export

D
41

Ni WooCommerce Order Export plugin provides the functionality to export the sales order information into CSV or excel format.

20 2 unpatched
WP Exporter Plus

WP Exporter Plus

wp-exporter-plus

A
92

This plugin provides functionality to export orders, posts, users, products, top 10 selling products data in CSV.

10 No CVEs
Shop Order Quick Export

Shop Order Quick Export

shop-order-quick-export

A
100

Quickly export WooCommerce orders to CSV or Excel (XLSX) format. Select your date range and order status, then download with one click!

0 No CVEs
Developer Profile

Woocommerce Doo Products and Variations Exporter Developer Profile

diego.benna

2 plugins · 410 total installs

76
trust score
Avg Security Score
74/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Woocommerce Doo Products and Variations Exporter

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/woocommerce-products-exporter/templates/admin/export.css
Version Parameters
woocommerce-products-exporter/templates/admin/export.css?ver=

HTML / DOM Fingerprints

FAQ

Frequently Asked Questions about Woocommerce Doo Products and Variations Exporter