Does jav's – WooCommerce and Trello integration WooTrello have any unpatched vulnerabilities?

No. All known vulnerabilities in jav's – WooCommerce and Trello integration WooTrello have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is jav's – WooCommerce and Trello integration WooTrello compatible with WordPress 6.9.4?

According to WordPress.org data, jav's – WooCommerce and Trello integration WooTrello 3.3.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

What is jav's – WooCommerce and Trello integration WooTrello's security score?

jav's – WooCommerce and Trello integration WooTrello has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

jav's – WooCommerce and Trello integration WooTrello Security & Risk Analysis

wordpress.org/plugins/wootrello

Woocommerce + Trello = WooTrello. It will connect woocommerce with trello.

200 active installs v3.3.1 PHP + WP 6.3.0+ Updated Feb 14, 2026

automationtrellowoocommercewoocommerce-and-trellowoocommerce-integration-with-trello

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is jav's – WooCommerce and Trello integration WooTrello Safe to Use in 2026?

Generally Safe

Score 100/100

jav's – WooCommerce and Trello integration WooTrello has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The Wootrello v3.3.1 plugin presents a mixed security posture. While it boasts no recorded vulnerabilities (CVEs) and a low count of direct SQL injection risks due to a reasonable percentage of prepared statements, several concerning aspects in the static analysis require attention. The most significant issue is the presence of three AJAX handlers that lack authentication checks, creating a substantial attack surface that could be exploited by unauthenticated users. Furthermore, a concerningly low percentage of output is properly escaped (19%), indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities across various output points. Taint analysis revealed two flows with unsanitized paths, which, although not classified as critical or high severity, still represent potential vectors for data manipulation or code execution if further exploited. The vulnerability history being empty is a positive sign, suggesting good development practices or at least a lack of discovered issues. However, the static analysis findings, particularly the unprotected AJAX endpoints and poor output escaping, detract from an otherwise clean record and necessitate immediate remediation to mitigate potential risks.

Key Concerns

3 unprotected AJAX handlers
19% of outputs properly escaped
2 flows with unsanitized paths
Bundled Freemius v1.0 library

Vulnerabilities

None known

jav's – WooCommerce and Trello integration WooTrello Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

jav's – WooCommerce and Trello integration WooTrello Code Analysis

Dangerous Functions

Raw SQL Queries

6 prepared

Unescaped Output

113

26 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Freemius1.0

SQL Query Safety

55% prepared11 total queries

Output Escaping

19% escaped139 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

5 flows2 with unsanitized paths

wootrello_ajax_response (admin\class-wootrello-settings.php:324)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

3 unprotected

jav's – WooCommerce and Trello integration WooTrello Attack Surface

Entry Points3

Unprotected3

AJAX Handlers 3

authwp_ajax_wootrello_ajax_responseincludes\class-wootrello.php:141

authwp_ajax_wootrello_ajax_delete_historyincludes\class-wootrello.php:143

authwp_ajax_wootrello_ajax_single_orderincludes\class-wootrello.php:183

WordPress Hooks 15

actionplugins_loadedincludes\class-wootrello.php:119

actioninitincludes\class-wootrello.php:132

actionadmin_enqueue_scriptsincludes\class-wootrello.php:134

actionadmin_enqueue_scriptsincludes\class-wootrello.php:136

actionadmin_menuincludes\class-wootrello.php:138

actionadmin_noticesincludes\class-wootrello.php:139

actionmanage_edit-shop_order_columnsincludes\class-wootrello.php:145

actionmanage_shop_order_posts_custom_columnincludes\class-wootrello.php:147

actionmanage_woocommerce_page_wc-orders_columnsincludes\class-wootrello.php:155

actionmanage_woocommerce_page_wc-orders_custom_columnincludes\class-wootrello.php:156

actionadd_meta_boxesincludes\class-wootrello.php:164

actionwoocommerce_thankyouincludes\class-wootrello.php:174

actionadmin_noticesincludes\class-wootrello.php:181

actionwp_enqueue_scriptsincludes\class-wootrello.php:194

actionwp_enqueue_scriptsincludes\class-wootrello.php:196

Maintenance & Trust

jav's – WooCommerce and Trello integration WooTrello Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 14, 2026

PHP min version

Downloads9K

Community Trust

Rating100/100

Number of ratings13

Active installs200

Alternatives

jav's – WooCommerce and Trello integration WooTrello Alternatives

Powers Triggers for Woocommerce and Trello

wc-trello-powers

100

Woo & Trello Powers

0 No CVEs

MailPoet – Newsletters, Email Marketing, and Automation

mailpoet

Send beautiful newsletters from WordPress. Collect subscribers with signup forms, automate your emails for WooCommerce, blog post notifications & more

500K 3 CVEs

MailerLite – WooCommerce integration

woo-mailerlite

Powerful e-commerce email marketing tools that are easy to use. Grow your store with automated emails, pop-ups, product blocks, sales tracking + more.

30K 4 CVEs

Brevo for WooCommerce

woocommerce-sendinblue-newsletter-subscription

All-in-one WooCommerce email marketing, automation, SMS, and CRM by Brevo. Grow your store with powerful marketing tools.

30K 3 CVEs

Jetpack CRM – Clients, Leads, Invoices, Billing, Email Marketing, & Automation

zero-bs-crm

The CRM for small businesses. Manage leads, invoicing, billing, email marketing, clients, contacts, quotes, automation. Works with WooCommerce too.

30K 8 CVEs

Developer Profile

jav's – WooCommerce and Trello integration WooTrello Developer Profile

javmah

2 plugins · 2K total installs

trust score

Avg Security Score

95/100

Avg Patch Time

307 days

View full developer profile

Detection Fingerprints

How We Detect jav's – WooCommerce and Trello integration WooTrello

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wootrello/admin/css/wootrello-admin.css/wp-content/plugins/wootrello/admin/css/multiselect.css/wp-content/plugins/wootrello/admin/js/wootrello-admin.js/wp-content/plugins/wootrello/admin/js/multiselect.js

Script Paths

/wp-content/plugins/wootrello/admin/js/wootrello-admin.js/wp-content/plugins/wootrello/admin/js/multiselect.js

Version Parameters

wootrello-admin.css?ver=multiselect.css?ver=wootrello-admin.js?ver=multiselect.js?ver=

HTML / DOM Fingerprints

CSS Classes

wootrello-order-sectionwootrello-order-datawootrello-settings-contentwootrello-section-title

HTML Comments

Data Attributes

data-trello-board-iddata-trello-list-iddata-trello-api-keydata-trello-api-token

JS Globals

window.wootrello_ajax_objectwindow.wootrello_localize_data

REST Endpoints

/wp-json/wootrello/v1/get_boards/wp-json/wootrello/v1/get_lists/wp-json/wootrello/v1/send_order

Shortcode Output

[wootrello_settings][wootrello_order_meta]

FAQ