WP-Safety

ACF Woocommerce Account Fields Security & Risk Analysis

wordpress.org/plugins/acf-woocommerce-account-fields

Add Advanced Custom Fields to the Woocommerce registration form and edit profile form.

300 active installs v1.0.0 PHP 5.2.4+ WP 5.2.1+ Updated Jul 3, 2019
acfcustom-fieldsformsregistrationwoocommerce
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is ACF Woocommerce Account Fields Safe to Use in 2026?

Generally Safe

Score 85/100

ACF Woocommerce Account Fields has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago
Risk Assessment

The static analysis of the "acf-woocommerce-account-fields" plugin v1.0.0 reveals a strong adherence to security best practices in several key areas. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the plugin's attack surface. Furthermore, the complete absence of dangerous functions and the exclusive use of prepared statements for SQL queries are excellent indicators of robust coding standards. The plugin also shows no history of known vulnerabilities, suggesting a well-maintained and secure codebase over time.

However, a critical concern arises from the output escaping. With 100% of outputs not properly escaped, this presents a significant risk of Cross-Site Scripting (XSS) vulnerabilities. Any dynamic data displayed by the plugin that is not properly sanitized or escaped before rendering in the browser can be exploited by attackers. This lack of output escaping, despite a minimal attack surface and clean SQL practices, is the most prominent security weakness identified in the provided data and should be addressed immediately.

Key Concerns

  • Output escaping is not implemented
Vulnerabilities
None known

ACF Woocommerce Account Fields Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

ACF Woocommerce Account Fields Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
1
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

0% escaped1 total outputs
Attack Surface

ACF Woocommerce Account Fields Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 16
actioninitacf-wc-account-fields.php:22
actionacf/initacf-wc-account-fields.php:28
filteracf/location/rule_typesacf-wc-account-fields.php:29
filteracf/location/rule_values/wc_account_fieldsacf-wc-account-fields.php:30
filteracf/location/rule_operatorsacf-wc-account-fields.php:31
actionwoocommerce_register_form_startacf-wc-account-fields.php:32
actionwoocommerce_register_formacf-wc-account-fields.php:33
actionwoocommerce_edit_account_formacf-wc-account-fields.php:34
actionwoocommerce_save_account_detailsacf-wc-account-fields.php:35
filterwoocommerce_get_settings_accountacf-wc-account-fields.php:37
filteracf/load_fieldacf-wc-account-fields.php:38
filteracf/prepare_fieldacf-wc-account-fields.php:39
filterwoocommerce_registration_errorsacf-wc-account-fields.php:40
actionwoocommerce_save_account_details_errorsacf-wc-account-fields.php:41
actionwoocommerce_created_customeracf-wc-account-fields.php:42
actionwp_enqueue_scriptsacf-wc-account-fields.php:43
Maintenance & Trust

ACF Woocommerce Account Fields Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24
Last updatedJul 3, 2019
PHP min version5.2.4
Downloads7K

Community Trust

Rating80/100
Number of ratings4
Active installs300
Alternatives

ACF Woocommerce Account Fields Alternatives

Custom Registration Fields for WooCommerce

Custom Registration Fields for WooCommerce

custom-registration-fields-for-woocommerce

A
92

Add custom registration fields to WooCommerce and WordPress user registration forms, capturing additional information from users with ease.

60 No CVEs
Advanced Custom Fields: Gravity Forms Add-on

Advanced Custom Fields: Gravity Forms Add-on

acf-gravityforms-add-on

A
100

Provides an Advanced Custom Field which allows a WordPress user to select a Gravity Form as part of a field group configuration.

30K No CVEs
ACF Feeds for Gravity Forms

ACF Feeds for Gravity Forms

acf-feeds-for-gravity-forms

A
85

Write Gravity Forms submission fields into ACF fields. Accumulate values over time.

100 No CVEs
Advanced Custom Fields YITH WooCommerce Compare support

Advanced Custom Fields YITH WooCommerce Compare support

acf-yith-woocommerce-compare-support

A
85

Advanced Custom Fields YITH WooCommerce Compare support

100 No CVEs
Advanced Members for ACF

Advanced Members for ACF

advanced-members

A
100

A Lightweight & Powerful Membership Plugin for ACF Users. Seamlessly Use ACF Field Groups as Membership Forms

40 No CVEs
Developer Profile

ACF Woocommerce Account Fields Developer Profile

kenkeydev

5 plugins · 450 total installs

86
trust score
Avg Security Score
88/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect ACF Woocommerce Account Fields

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/acf-woocommerce-account-fields/css/admin-style.css

HTML / DOM Fingerprints

CSS Classes
woocommerce-form-row--wideform-row-widewoocommerce-Inputwoocommerce-Input--text
FAQ

Frequently Asked Questions about ACF Woocommerce Account Fields