Wooplatnica Security & Risk Analysis
wordpress.org/plugins/wooplatnicaWooCommerce payment gateway za generisanje opštih uplatnica i NBS IPS QR kôdova za uplate iz Srbije. 🇷🇸
Is Wooplatnica Safe to Use in 2026?
Generally Safe
Score 100/100Wooplatnica has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
Based on the provided static analysis and vulnerability history, the "wooplatnica" plugin v1.2 exhibits a generally positive security posture, with no recorded vulnerabilities or critical code signals. The plugin has a small attack surface, consisting solely of shortcodes, and importantly, no unprotected entry points were identified. The presence of Guzzle and TCPDF as bundled libraries is noted, and their versions should be kept up-to-date to mitigate potential risks from outdated components.
However, there are notable areas for improvement. The plugin's sole SQL query is not using prepared statements, posing a risk of SQL injection if user-controlled data is involved in constructing this query. Furthermore, the lack of nonce checks and capability checks, while not immediately exploitable given the limited attack surface, represents a potential weakness. If the plugin were to be extended with new AJAX or REST API endpoints in the future, these checks would be crucial for preventing unauthorized actions. The 60% proper output escaping, while not critically low, indicates that a significant portion of output could be vulnerable to cross-site scripting (XSS) attacks if user input is not sufficiently sanitized before display.
In conclusion, "wooplatnica" v1.2 is relatively secure due to its limited attack surface and lack of historical vulnerabilities. The primary concerns are the unescaped SQL query and the absence of nonce and capability checks, which are fundamental security practices. Addressing these would significantly strengthen the plugin's overall security.
Key Concerns
- Raw SQL query without prepared statements
- No nonce checks implemented
- No capability checks implemented
- 40% of output not properly escaped
- Bundled library Guzzle
- Bundled library TCPDF
Wooplatnica Security Vulnerabilities
Wooplatnica Code Analysis
Bundled Libraries
SQL Query Safety
Output Escaping
Wooplatnica Attack Surface
Shortcodes 2
WordPress Hooks 7
Maintenance & Trust
Wooplatnica Maintenance & Trust
Maintenance Signals
Community Trust
Wooplatnica Alternatives
PDF Invoices & Packing Slips for WooCommerce
woocommerce-pdf-invoices-packing-slips
Create, print & automatically email PDF or XML Invoices & PDF Packing Slips for WooCommerce orders.
WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes & Shipping Labels
print-invoices-packing-slip-labels-for-woocommerce
Auto-generate and attach WooCommerce PDF invoices and packing slips to order emails with customizable templates & bulk print options.
Print Invoice & Delivery Notes for WooCommerce
woocommerce-delivery-notes
Create and print PDF invoices, delivery notes and receipts for your WooCommerce orders. Choose your document format from multiple templates.
Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools
woocommerce-jetpack
Supercharge WooCommerce with FREE Abandoned Cart Recovery, Product Variation Swatches, PDF Invoices & 100+ tools. Boost sales & save time.
Kaya QR Code Generator
kaya-qr-code-generator
Generate QR Code through Widgets and Shortcodes, without any dependencies.
Wooplatnica Developer Profile
6 plugins · 410 total installs
How We Detect Wooplatnica
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/wooplatnica/languages/wooplatnica.potHTML / DOM Fingerprints
<!-- Uplatnice generiše s ♥ <a href="https://wordpress.org/plugins/wooplatnica/" target="_blank">Wooplatnica</a> plugin. -->[uplatnica][ipsqr]