Kitgenix Plugin Score

users-customers-import-export-for-wp-woocommerce

Slug: users-customers-import-export-for-wp-woocommerce · · 0+

Not updated in last 3 months

Overall Score

Scan this plugin to generate a full score report

--
Not Yet Scanned

What this score means

Scores are calculated on a 100-point scale by analysing six weighted categories: Security, WP.org Readiness, Performance, Code Quality, Accessibility, and Vulnerabilities. Open vulnerabilities are weighted by severity, CVSS, and patch availability, and incomplete source data can reduce confidence slightly.

  • Excellent The plugin follows best practices across every measured category. It is well-maintained, low-risk, and recommended for production use.
  • Good Strong overall quality with minor areas for improvement. Generally safe to use on most sites.
  • Needs Review Some areas of concern detected. Review the full issues report and weigh the risks before installing on production.
  • High Risk Significant quality or security problems found. Exercise caution — check the details carefully before using this plugin.
No scan has been completed yet. Vulnerability and issue data will appear after the first scan.
  • Wordfence: June 10, 2026 7:46 am (39 minutes ago)

Actions

View on WordPress.org Download Plugin
After the first scan, this plugin will be automatically re-scanned every 30 days.
Export report: CSV JSON

Score Breakdown

Shield
Security
--
Pending Scan
W
WP.org Readiness
--
Pending Scan
Speed
Performance
--
Pending Scan
Code
Code Quality
--
Pending Scan
A11y
Accessibility
--
Pending Scan
Bug
Vulnerability Status
--
Pending Scan

Plugin Details

Scan Summary

  • Errors: 0
  • Warnings: 0
  • Notices: 0
  • Last Scanned: N/A
No scan results yet. Start the first scan to populate this summary.

Detected Issues

No issues to display yet. Run the first scan to generate findings.

Score History

No history available yet. · All-Time High: N/A

All Past Vulnerabilities

Showing all known historical vulnerabilities for this plugin, including open and closed records.

Vulnerability CVE Severity Status Affected Versions Patched Version Updated Source
Import Export WordPress Users <= 2.5.2 - Authenticated (Shop Manager+) Path Traversal N/A LOW Closed *-2.5.2 2.5.3 2024-03-28 00:00:00 Wordfence
Export and Import Users and Customers <= 2.6.2 - Authenticated (Administrator+) Server-Side Request Forgery via validate_file Function N/A LOW Closed *-2.6.2 2.6.3 2025-03-21 23:15:51 Wordfence
Import Export WordPress Users and WooCommerce Customers <= 1.3.1 - CSV Injection N/A LOW Closed [*, 1.3.2) 1.3.2 2018-08-22 00:00:00 Wordfence
Export and Import Users and Customers <= 2.4.8 - Authenticated (Shop Manager+) Arbitrary File Upload N/A LOW Closed *-2.4.8 2.4.9 2023-12-12 00:00:00 Wordfence
Export and Import Users and Customers <= 2.6.2 - Authenticated (Admin+) PHP Object Injection via form_data Parameter N/A LOW Closed *-2.6.2 2.6.3 2025-03-21 23:17:34 Wordfence
Export and Import Users and Customers <= 2.4.1 - Missing Authorization to Authenticated (Shop Manager) Arbitrary User Password Change N/A LOW Closed *-2.4.1 2.4.2 2023-07-14 00:00:00 Wordfence
Export and Import Users and Customers <= 2.5.3 - Authenticated (Admin+) PHP Object Injection N/A LOW Closed *-2.5.3 2.5.4 2024-04-22 00:00:00 Wordfence
Export and Import Users and Customers <= 2.6.2 - Directory Traversal to Authenticated (Administrator+) Limited Arbitrary File Deletion via admin_log_page Function N/A LOW Closed *-2.6.2 2.6.3 2025-03-21 23:18:32 Wordfence
WebToffee Plugins <= (Various Versions) - Arbitrary User Creation N/A LOW Closed [*, 1.3.9) 1.3.9 2020-03-11 00:00:00 Wordfence
Export and Import Users and Customers <= 2.6.2 - Directory Traversal to Authenticated (Administrator+) Limited Arbitrary File Read via download_file Function N/A LOW Closed *-2.6.2 2.6.3 2025-03-21 23:19:01 Wordfence