Skip to main content
WP HealthKit

Is WooCommerce Legacy REST API Secure?

B

Grade BGood

Moderate Risk

WooCommerce Legacy REST API receives a solid Grade B from WP HealthKit's 49-layer security audit, with 533 findings — mostly low-to-medium severity.

Grade

B

Findings

533

Critical

0

Standards

100/100

Active Installs

400K+

Last Audited

Today

What We Found

PHP Version Mismatch: Declared vs RequiredHIGH
Direct wp_posts query for ordersHIGH
Direct wp_posts query for ordersHIGH
Direct wp_posts query for ordersHIGH
N+1 query: get_post_meta() inside foreach loopHIGH

+ 528 more findings in the full report.

How It Compares

D

WooCommerce

7.0M+ installs

C

Popup Builder & Popup Maker for WordPress – OptinMonster Email Marketing and Lead Generation

1.0M+ installs

A

Limit Login Attempts Reloaded – Login Security, Brute Force Protection, Firewall

1.0M+ installs

View Full Report Audit Your Own Plugin

Frequently Asked Questions

Is WooCommerce Legacy REST API safe to use?

WooCommerce Legacy REST API receives a solid Grade B from WP HealthKit's 49-layer security audit, with 533 findings — mostly low-to-medium severity.

How many vulnerabilities does WooCommerce Legacy REST API have?

WP HealthKit's audit found 533 findings for WooCommerce Legacy REST API: 0 critical, 477 high, and 33 medium severity issues.

What is WooCommerce Legacy REST API's security grade?

WooCommerce Legacy REST API has an overall security grade of B (Good) based on WP HealthKit's 49-layer security audit.