Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools

woocommerce-jetpack · by pluggabl · wordpress.org ↗ · SVN ↗

Acquired by Pluggabl / Varktech (Booster for WooCommerce). New committers from that team's naming convention are expected and will not fire takeover events. source ↗

Active installs: 30k+
Current version: 8.0.0
Added: 2014-06-12
Last updated: 2026-04-15 (1mo ago)
First seen by beacon: 1mo ago
Total downloads: 4,244,067

Alerts (0)

No open alerts.

Show 4 resolved alerts

Medium code_scan_match Resolved · code_scan_fp_class_genre_encoding 2026-05-05 12:09:22 (17d ago)

Slug woocommerce-jetpack

Finding count 13

Findings

Pattern	Kind	File	Line	Snippet	Confidence
`base64_decode`	`builtin`	`includes/class-wcj-cart-abandonment.php`	284	parse_str( base64_decode( urldecode( $token ) ), $token ); //phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode	`medium`
`gzinflate`	`builtin`	`includes/lib/FPDI/src/PdfParser/Filter/Flate.php`	48	`$data = @(\gzinflate(\substr($oData, $tries)));`	`medium`
`base64_decode`	`builtin`	`includes/lib/tcpdf/tcpdf.php`	7,700	`$signature = base64_decode(trim($signature));`	`medium`
`base64_decode`	`builtin`	`includes/lib/tcpdf/tcpdf.php`	10,941	`$signature = base64_decode($signature);`	`medium`
`base64_decode`	`builtin`	`includes/lib/tcpdf/tcpdf.php`	19,015	`$imgsrc = '@'.base64_decode(substr($imgsrc, 1));`	`medium`
`base64_decode`	`builtin`	`includes/lib/tcpdf/tcpdf.php`	19,018	`$imgsrc = '@'.base64_decode($reg[2]);`	`medium`
`base64_decode`	`builtin`	`includes/lib/tcpdf/tcpdf.php`	24,427	`$img = '@'.base64_decode(substr($img, strlen($m[0])));`	`medium`
`hex_string_long`	`builtin`	`includes/lib/tcpdf/tcpdf.php`	3,051	$msg = "\x50\x6f\x77\x65\x72\x65\x64\x20\x62\x79\x20\x54\x43\x50\x44\x46\x20\x28\x77\x77\x77\x2e\x74\x63\x70\x64\x66\x2e\x6f\x72\x67\x29";	`medium`
`hex_string_long`	`builtin`	`includes/lib/tcpdf/tcpdf.php`	3,052	$lnk = "\x68\x74\x74\x70\x3a\x2f\x2f\x77\x77\x77\x2e\x74\x63\x70\x64\x66\x2e\x6f\x72\x67";	`medium`
`hex_string_long`	`builtin`	`includes/lib/tcpdf/include/tcpdf_static.php`	94	public static $enc_padding = "\x28\xBF\x4E\x5E\x4E\x75\x8A\x41\x64\x00\x4E\x56\xFF\xFA\x01\x08\x2E\x2E\x00\xB6\xD0\x68\x3E\x80\x2F\x0C\xA9\xFE\x64\x53\x69\x7A";	`medium`
`hex_string_long`	`builtin`	`includes/lib/tcpdf/include/tcpdf_static.php`	128	return "\x54\x43\x50\x44\x46\x20".self::getTCPDFVersion()."\x20\x28\x68\x74\x74\x70\x3a\x2f\x2f\x77\x77\x77\x2e\x74\x63\x70\x64\x66\x2e\x6f\x72\x67\x29";	`medium`
`base64_decode`	`builtin`	`includes/class-wcj-emails-verification.php`	287	$data = json_decode( base64_decode( sanitize_text_field( wp_unslash( $_GET['wcj_verified_email'] ) ) ), true ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode	`medium`
`base64_decode`	`builtin`	`includes/class-wcj-emails-verification.php`	300	$data = json_decode( base64_decode( sanitize_text_field( wp_unslash( $_GET['wcj_verify_email'] ) ) ), true ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode	`medium`

Resolved sha 4fe8309844e974fd105a168aa6b268760022f801

View raw JSON

{
    "slug": "woocommerce-jetpack",
    "finding_count": 13,
    "findings": [
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "includes/class-wcj-cart-abandonment.php",
            "line": 284,
            "snippet": "parse_str( base64_decode( urldecode( $token ) ), $token ); //phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode",
            "confidence": "medium"
        },
        {
            "pattern": "gzinflate",
            "kind": "builtin",
            "file": "includes/lib/FPDI/src/PdfParser/Filter/Flate.php",
            "line": 48,
            "snippet": "$data = @(\\gzinflate(\\substr($oData, $tries)));",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "includes/lib/tcpdf/tcpdf.php",
            "line": 7700,
            "snippet": "$signature = base64_decode(trim($signature));",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "includes/lib/tcpdf/tcpdf.php",
            "line": 10941,
            "snippet": "$signature = base64_decode($signature);",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "includes/lib/tcpdf/tcpdf.php",
            "line": 19015,
            "snippet": "$imgsrc = '@'.base64_decode(substr($imgsrc, 1));",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "includes/lib/tcpdf/tcpdf.php",
            "line": 19018,
            "snippet": "$imgsrc = '@'.base64_decode($reg[2]);",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "includes/lib/tcpdf/tcpdf.php",
            "line": 24427,
            "snippet": "$img = '@'.base64_decode(substr($img, strlen($m[0])));",
            "confidence": "medium"
        },
        {
            "pattern": "hex_string_long",
            "kind": "builtin",
            "file": "includes/lib/tcpdf/tcpdf.php",
            "line": 3051,
            "snippet": "$msg = \"\\x50\\x6f\\x77\\x65\\x72\\x65\\x64\\x20\\x62\\x79\\x20\\x54\\x43\\x50\\x44\\x46\\x20\\x28\\x77\\x77\\x77\\x2e\\x74\\x63\\x70\\x64\\x66\\x2e\\x6f\\x72\\x67\\x29\";",
            "confidence": "medium"
        },
        {
            "pattern": "hex_string_long",
            "kind": "builtin",
            "file": "includes/lib/tcpdf/tcpdf.php",
            "line": 3052,
            "snippet": "$lnk = \"\\x68\\x74\\x74\\x70\\x3a\\x2f\\x2f\\x77\\x77\\x77\\x2e\\x74\\x63\\x70\\x64\\x66\\x2e\\x6f\\x72\\x67\";",
            "confidence": "medium"
        },
        {
            "pattern": "hex_string_long",
            "kind": "builtin",
            "file": "includes/lib/tcpdf/include/tcpdf_static.php",
            "line": 94,
            "snippet": "public static $enc_padding = \"\\x28\\xBF\\x4E\\x5E\\x4E\\x75\\x8A\\x41\\x64\\x00\\x4E\\x56\\xFF\\xFA\\x01\\x08\\x2E\\x2E\\x00\\xB6\\xD0\\x68\\x3E\\x80\\x2F\\x0C\\xA9\\xFE\\x64\\x53\\x69\\x7A\";",
            "confidence": "medium"
        },
        {
            "pattern": "hex_string_long",
            "kind": "builtin",
            "file": "includes/lib/tcpdf/include/tcpdf_static.php",
            "line": 128,
            "snippet": "return \"\\x54\\x43\\x50\\x44\\x46\\x20\".self::getTCPDFVersion().\"\\x20\\x28\\x68\\x74\\x74\\x70\\x3a\\x2f\\x2f\\x77\\x77\\x77\\x2e\\x74\\x63\\x70\\x64\\x66\\x2e\\x6f\\x72\\x67\\x29\";",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "includes/class-wcj-emails-verification.php",
            "line": 287,
            "snippet": "$data = json_decode( base64_decode( sanitize_text_field( wp_unslash( $_GET['wcj_verified_email'] ) ) ), true ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode",
            "confidence": "medium"
        },
        {
            "pattern": "base64_decode",
            "kind": "builtin",
            "file": "includes/class-wcj-emails-verification.php",
            "line": 300,
            "snippet": "$data = json_decode( base64_decode( sanitize_text_field( wp_unslash( $_GET['wcj_verify_email'] ) ) ), true ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.obfuscation_base64_decode",
            "confidence": "medium"
        }
    ],
    "resolved_sha": "4fe8309844e974fd105a168aa6b268760022f801"
}

Critical forum_complaint_cluster Resolved · out_of_scope_vuln_class_cve 2026-05-01 01:14:00 (21d ago)

Slug woocommerce-jetpack

Active installs 30,000

Critical matches 1

High matches 0

Lookback days 90

Sample threads

Title	Date	Url	Starter	Keyword
`Hacked website`	2026-02-10 12:12:26	https://wordpress.org/support/topic/hacked-website-14/	`c-tomoe`	`hacked`

Explanation Cluster of support-forum threads in the last 90 days containing user-reported attack vocabulary. Critical when any thread mentions explicit compromise terms (hacked / backdoor / admin user added); high when two or more mention symptom-class terms (redirect to spam / vendor alerts).

View raw JSON

{
    "slug": "woocommerce-jetpack",
    "active_installs": 30000,
    "critical_matches": 1,
    "high_matches": 0,
    "lookback_days": 90,
    "sample_threads": [
        {
            "title": "Hacked website",
            "date": "2026-02-10 12:12:26",
            "url": "https://wordpress.org/support/topic/hacked-website-14/",
            "starter": "c-tomoe",
            "keyword": "hacked"
        }
    ],
    "explanation": "Cluster of support-forum threads in the last 90 days containing user-reported attack vocabulary. Critical when any thread mentions explicit compromise terms (hacked / backdoor / admin user added); high when two or more mention symptom-class terms (redirect to spam / vendor alerts)."
}

Medium committer_younger_than_plugin Resolved · benign_company_employee 2026-04-27 10:32:31 (25d ago)

Slug	woocommerce-jetpack
Committer slug	`ronyp`
Committer display name	`ronyp`
Committer employer	—
Committer member since	2020-06-02
Committer first commit	2021-01-29 07:23:22
Committer commit count	200
Plugin listed author	`pluggabl`
Earliest plugin commit	2015-07-04 12:38:21
Plugin age at join days	2,035
Committer age at join days	241
Active installs	30,000

View raw JSON

{
    "slug": "woocommerce-jetpack",
    "committer_slug": "ronyp",
    "committer_display_name": "ronyp",
    "committer_employer": null,
    "committer_member_since": "2020-06-02",
    "committer_first_commit": "2021-01-29 07:23:22",
    "committer_commit_count": 200,
    "plugin_listed_author": "pluggabl",
    "earliest_plugin_commit": "2015-07-04 12:38:21",
    "plugin_age_at_join_days": 2035,
    "committer_age_at_join_days": 241,
    "active_installs": 30000
}

Medium domain_younger_than_plugin Resolved · no_longer_matches 2026-04-24 04:03:19 (28d ago)

Slug	woocommerce-jetpack
Domain	`varktech.com`
Domain source	`c2_http_call`
Domain registered at	2025-06-13
Plugin earliest commit	2015-07-04 12:38:21
Plugin latest release	2026-04-15 05:58:03
Gap days	3,631
Domain age at release	306
Active installs	30,000

View raw JSON

{
    "slug": "woocommerce-jetpack",
    "domain": "varktech.com",
    "domain_source": "c2_http_call",
    "domain_registered_at": "2025-06-13",
    "plugin_earliest_commit": "2015-07-04 12:38:21",
    "plugin_latest_release": "2026-04-15 05:58:03",
    "gap_days": 3631,
    "domain_age_at_release": 306,
    "active_installs": 30000
}

SVN committers (3)

Accounts with actual commit access to woocommerce-jetpack on plugins.svn.wordpress.org, reconstructed from svn log. This is the list that matters for ownership changes — not the readme contributors.

Committer	Member since	Commits	First commit	Latest commit
algoritmika	2013-01-27	212	2015-07-04 · r1192397	2020-05-19 · r2308224
ronyp	2020-06-02	200	2021-01-29 · r2464713	2026-04-15 · r3506642
Pluggabl Young account	2020-05-26	30	2020-05-31 · r2315483	2021-03-17 · r2498032

Readme contributors (3)

Names the plugin's readme declares as contributors. A soft signal — anyone can be listed. The SVN access column is the ground-truth cross-reference: does this contributor actually commit code?

Contributor	Member since	SVN access	Status
ronyp	2020-06-02	200 commits	Active
Pluggabl	2020-05-26	30 commits	Active
David G	2020-09-24	—	Active

Versions (100 most recent)

Version	Released	Download
8.0.0	2026-04-15 · 1mo ago	zip
7.11.5	2026-04-01 · 1mo ago	zip
7.11.4	2026-03-18 · 2mo ago	zip
7.11.3	2026-03-11 · 2mo ago	zip
7.11.2	2026-02-27 · 2mo ago	zip
7.11.1	2026-01-28 · 3mo ago	zip
7.11.0	2026-01-28 · 3mo ago	zip
7.10.0	2025-12-24 · 4mo ago	zip
7.9.0	2025-12-11 · 5mo ago	zip
7.8.0	2025-12-03 · 5mo ago	zip
7.7.0	2025-11-26 · 5mo ago	zip
7.6.0	2025-11-17 · 6mo ago	zip
7.5.0	2025-11-05 · 6mo ago	zip
7.4.0	2025-10-30 · 6mo ago	zip
7.3.2	2025-10-25 · 6mo ago	zip
7.3.1	2025-09-25 · 7mo ago	zip
7.3.0	2025-08-27 · 8mo ago	zip
7.2.9	2025-07-30 · 9mo ago	zip
7.2.8	2025-07-17 · 10mo ago	zip
7.2.7	2025-06-19 · 11mo ago	zip
7.2.6	2025-06-02 · 11mo ago	zip
7.2.5	2025-03-27 · 1y ago	zip
7.2.4	2024-11-13 · 1y ago	zip
7.2.3	2024-09-11 · 1y ago	zip
7.2.2	2024-08-12 · 1y ago	zip
7.2.1	2024-07-10 · 1y ago	zip
7.2.0	2024-06-05 · 1y ago	zip
7.1.9	2024-04-24 · 2y ago	zip
7.1.8	2024-03-06 · 2y ago	zip
7.1.7	2024-02-12 · 2y ago	zip
7.1.6	2024-02-07 · 2y ago	zip
7.1.5	2023-12-20 · 2y ago	zip
7.1.4	2023-12-13 · 2y ago	zip
7.1.3	2023-10-18 · 2y ago	zip
7.1.2	2023-10-04 · 2y ago	zip
7.1.1	2023-09-13 · 2y ago	zip
7.1.0	2023-08-09 · 2y ago	zip
7.0.0	2023-07-26 · 2y ago	zip
6.0.6	2023-05-24 · 2y ago	zip
6.0.5	2023-03-29 · 3y ago	zip
6.0.4	2023-03-02 · 3y ago	zip
6.0.3	2023-02-22 · 3y ago	zip
6.0.2	2023-01-24 · 3y ago	zip
6.0.1	2022-12-21 · 3y ago	zip
6.0.0	2022-11-30 · 3y ago	zip
5.6.8	2022-11-17 · 3y ago	zip
5.6.7	2022-10-27 · 3y ago	zip
5.6.6	2022-09-28 · 3y ago	zip
5.6.5	2022-09-12 · 3y ago	zip
5.6.4	2022-09-05 · 3y ago	zip
5.6.3	2022-08-31 · 3y ago	zip
5.6.2	2022-07-27 · 3y ago	zip
5.6.1	2022-07-01 · 3y ago	zip
5.6.0	2022-06-29 · 3y ago	zip
5.5.9	2022-05-31 · 3y ago	zip
5.5.8	2022-05-25 · 3y ago	zip
5.5.7	2022-04-27 · 4y ago	zip
5.5.6	2022-03-30 · 4y ago	zip
5.5.4	2022-02-28 · 4y ago	zip
5.5.1	2022-01-31 · 4y ago	zip
5.5.0	2021-12-29 · 4y ago	zip
5.4.9	2021-11-30 · 4y ago	zip
5.4.8	2021-10-27 · 4y ago	zip
5.4.7	2021-09-29 · 4y ago	zip
5.4.6	2021-08-27 · 4y ago	zip
5.4.5	2021-08-25 · 4y ago	zip
5.4.4	2021-08-11 · 4y ago	zip
5.4.3	2021-07-29 · 4y ago	zip
5.4.2	2021-06-24 · 4y ago	zip
5.4.1	2021-05-27 · 4y ago	zip
5.4.0	2021-04-30 · 5y ago	zip
5.3.9	2021-03-17 · 5y ago	zip
5.3.8	2021-02-24 · 5y ago	zip
5.3.7	2021-01-29 · 5y ago	zip
5.3.6	2020-12-30 · 5y ago	zip
5.3.5	2020-10-09 · 5y ago	zip
5.3.4	2020-10-06 · 5y ago	zip
5.3.2	2020-10-06 · 5y ago	zip
5.3.3	2020-10-06 · 5y ago	zip
5.3.0	2020-09-10 · 5y ago	zip
5.2.1	2020-08-18 · 5y ago	zip
5.2.0	2020-08-18 · 5y ago	zip
5.1.0	2020-07-21 · 5y ago	zip
5.1.1	2020-07-21 · 5y ago	zip
5.0.0	2020-06-03 · 5y ago	zip
4.9.0	2020-05-31 · 5y ago	zip
4.8.0	2020-04-06 · 6y ago	zip
4.7.1	2020-02-10 · 6y ago	zip
4.7.0	2019-12-30 · 6y ago	zip
4.6.1	2019-11-17 · 6y ago	zip
4.6.0	2019-10-29 · 6y ago	zip
4.5.1	2019-09-19 · 6y ago	zip
4.5.0	2019-09-05 · 6y ago	zip
4.4.1	2019-06-26 · 6y ago	zip
4.4.0	2019-06-25 · 6y ago	zip
4.3.1	2019-04-24 · 7y ago	zip
4.3.0	2019-04-16 · 7y ago	zip
4.2.0	2019-02-06 · 7y ago	zip
4.1.0	2018-12-12 · 7y ago	zip
4.0.1	2018-10-12 · 7y ago	zip