WP-Safety

Putler – Simple WooCommerce Analytics for your Store Security & Risk Analysis

wordpress.org/plugins/woocommerce-putler-connector

A simple WooCommerce analytics plugin that provides detailed reports, insights, exports, segments, subscriptions & GA4 integration all in one place.

300 active installs v2.17.0 PHP 7.0+ WP 5.0+ Updated Jan 6, 2026
ecommerce-analyticsga4-analyticsgoogle-analytics-alternativewoocommerce-analyticswoocommerce-reporting
99
A · Safe
CVEs total2
Unpatched0
Last CVEAug 15, 2023
Plugin page Download
Safety Verdict

Is Putler – Simple WooCommerce Analytics for your Store Safe to Use in 2026?

Generally Safe

Score 99/100

Putler – Simple WooCommerce Analytics for your Store has a strong security track record. Known vulnerabilities have been patched promptly.

2 known CVEsLast CVE: Aug 15, 2023Updated 2mo ago
Risk Assessment

The "woocommerce-putler-connector" plugin v2.17.0 presents a mixed security posture. On the positive side, it demonstrates good practices with a high percentage of properly escaped outputs and a substantial portion of SQL queries using prepared statements. The absence of critical or high-severity vulnerabilities in its history and the fact that all previously known CVEs are patched are also encouraging signs. However, significant concerns are raised by the static analysis. A single AJAX handler is present and critically, it lacks any authentication checks. This creates a direct and unprotected entry point for attackers. Furthermore, the taint analysis, while limited in scope (2 flows analyzed), revealed two flows with unsanitized paths, indicating potential risks for data manipulation or injection if these flows are reachable and exploitable. The vulnerability history, despite having no currently unpatched issues, shows a pattern of "Missing Authorization" in two medium-severity CVEs, suggesting a recurring weakness in how the plugin handles user privileges. While the plugin's output escaping and SQL practices are strong, the unprotected AJAX endpoint and past authorization issues represent a tangible security risk that needs immediate attention.

Key Concerns

  • Unprotected AJAX handler
  • Taint flows with unsanitized paths
  • Missing nonce checks (implied by unprotected AJAX)
  • Previous medium CVEs (x2)
Vulnerabilities
2

Putler – Simple WooCommerce Analytics for your Store Security Vulnerabilities

CVEs by Year

2 CVEs in 2023
2023
Patched Has unpatched

Severity Breakdown

Medium
2

2 total CVEs

CVE-2023-40327medium · 5.3Missing Authorization

Putler Connector for WooCommerce <= 2.12.0 - Missing Authorization via 'putler_connector_sync_complete'

Aug 15, 2023 Patched in 2.13.0 (161d)
CVE-2023-40326medium · 4.3Missing Authorization

Putler Connector for WooCommerce <= 2.12.0 - Missing Authorization via 'send_resync_request'

Aug 15, 2023 Patched in 2.13.0 (161d)
Code Analysis
Analyzed Mar 16, 2026

Putler – Simple WooCommerce Analytics for your Store Code Analysis

Dangerous Functions
0
Raw SQL Queries
27
26 prepared
Unescaped Output
1
63 escaped
Nonce Checks
0
Capability Checks
1
File Operations
1
External Requests
1
Bundled Libraries
0

SQL Query Safety

49% prepared53 total queries

Output Escaping

98% escaped64 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
get_temp_token (classes\class-putler-connector.php:524)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

Putler – Simple WooCommerce Analytics for your Store Attack Surface

Entry Points1
Unprotected1

AJAX Handlers 1

authwp_ajax_putler_connector_connection_heartbeatclasses\class-putler-connector.php:123
WordPress Hooks 12
actionadmin_noticesclasses\class-putler-connector.php:117
actionadmin_menuclasses\class-putler-connector.php:122
actioninitclasses\class-putler-connector.php:126
actionrest_api_initclasses\class-putler-connector.php:127
filterputler_connector_get_order_countclasses\class-woocommerce-putler-connector.php:64
filterputler_connector_get_ordersclasses\class-woocommerce-putler-connector.php:65
filterputler_connector_sub_updatedclasses\class-woocommerce-putler-connector.php:66
actionbefore_delete_postclasses\class-woocommerce-putler-connector.php:76
actionbefore_woocommerce_initclasses\class-woocommerce-putler-connector.php:80
actionplugins_loadedwoocommerce-putler-connector.php:33
actionadmin_noticeswoocommerce-putler-connector.php:59
actionadmin_initwoocommerce-putler-connector.php:82
Maintenance & Trust

Putler – Simple WooCommerce Analytics for your Store Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedJan 6, 2026
PHP min version7.0
Downloads17K

Community Trust

Rating100/100
Number of ratings15
Active installs300
Alternatives

Putler – Simple WooCommerce Analytics for your Store Alternatives

Smart Reporter For WooCommerce and WP eCommerce

Smart Reporter For WooCommerce and WP eCommerce

smart-reporter-for-wp-e-commerce

A
85

A phenomenal plugin that solves all your business related issues, from business analysis to reporting on your WooCommerce and WordPress eCommerce site &hellip;

300 No CVEs
REPORTiT – Advanced Reporting for WooCommerce

REPORTiT – Advanced Reporting for WooCommerce

ithemelandco-woo-report

A
98

Stop guessing. Grow your sales with powerful, easy-to-understand reports and analytics for WooCommerce.

800 2 CVEs
Brikpanel — WooCommerce Dashboard, Reports & Analytics

Brikpanel — WooCommerce Dashboard, Reports & Analytics

brikpanel-admin-panel-dashboard-for-woocommerce

A
100

Modern WooCommerce dashboard with sales reports, real-time analytics, conversion tracking, and advanced reporting — all free.

60 No CVEs
YooAnalytics – Privacy-Friendly Analytics for WordPress & WooCommerce (Google Analytics Alternative)

YooAnalytics – Privacy-Friendly Analytics for WordPress & WooCommerce (Google Analytics Alternative)

yooanalytics

A
100

Lightweight, self-hosted, privacy-friendly analytics for WordPress & WooCommerce. Track visitors, page views, real-time users, WooCommerce purchas &hellip;

40 No CVEs
Alpha Insights – Profit Intelligence & Analytics for WooCommerce

Alpha Insights – Profit Intelligence & Analytics for WooCommerce

alpha-insights-sales-report-builder-analytics-for-woocommerce

A
100

WooCommerce reporting plugin for profit & loss, cost of goods (COGS), ad spend, ROI and custom sales reports.

0 No CVEs
Developer Profile

Putler – Simple WooCommerce Analytics for your Store Developer Profile

putler

1 plugin · 300 total installs

78
trust score
Avg Security Score
99/100
Avg Patch Time
161 days
View full developer profile
Detection Fingerprints

How We Detect Putler – Simple WooCommerce Analytics for your Store

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/woocommerce-putler-connector/assets/css/main.css/wp-content/plugins/woocommerce-putler-connector/assets/js/main.js
Script Paths
/wp-content/plugins/woocommerce-putler-connector/assets/js/main.js
Version Parameters
woocommerce-putler-connector/assets/css/main.css?ver=woocommerce-putler-connector/assets/js/main.js?ver=

HTML / DOM Fingerprints

CSS Classes
putler-connector-pageputler-connector-dashboard-wrapputler-connector-sync-buttonsputler-connector-status-message
HTML Comments
<!-- Putler Connector for WooCommerce --><!-- The Putler Connector menu item -->
Data Attributes
data-putler-sync-urldata-putler-reset-url
JS Globals
putlerConnectorSyncputlerConnectorResetputlerConnector
REST Endpoints
/wp-json/putler-connector/v1/settings/wp-json/putler-connector/v1/sync/wp-json/putler-connector/v1/reset
FAQ

Frequently Asked Questions about Putler – Simple WooCommerce Analytics for your Store