Does Additional Order Costs for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Additional Order Costs for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Additional Order Costs for WooCommerce compatible with WordPress 6.5.8?

According to WordPress.org data, Additional Order Costs for WooCommerce 1.0.5 has been tested up to WordPress 6.5.8. Check the plugin's changelog for the latest compatibility information.

Is Additional Order Costs for WooCommerce compatible with PHP 5.6+?

Additional Order Costs for WooCommerce requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Additional Order Costs for WooCommerce updated?

Additional Order Costs for WooCommerce was last updated on May 29, 2024. Frequent updates are generally a positive security signal.

What is Additional Order Costs for WooCommerce's security score?

Additional Order Costs for WooCommerce has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Additional Order Costs for WooCommerce Security & Risk Analysis

wordpress.org/plugins/additional-order-costs-for-woocommerce

Whether it's an extra invoice, or a credit from a merchant related to an order. Dynamically add as many costs to your order as you would like!

0 active installs v1.0.5 PHP 5.6+ WP 4.0+ Updated May 29, 2024

additional-costsorder-costsreportingwoocommerce-costs

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Additional Order Costs for WooCommerce Safe to Use in 2026?

Generally Safe

Score 92/100

Additional Order Costs for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The "additional-order-costs-for-woocommerce" plugin v1.0.5 demonstrates a generally positive security posture based on the provided static analysis. The absence of dangerous functions, file operations, and external HTTP requests is a strong indicator of good coding practices. All SQL queries are properly prepared, and the plugin correctly utilizes nonce and capability checks for its entry points, which are all protected. The lack of any recorded historical vulnerabilities further contributes to this favorable assessment. The only area for concern is the output escaping, where 76% of outputs are properly escaped, leaving 24% potentially unescaped. While not a critical issue on its own, this represents a weakness that could be exploited in conjunction with other potential vulnerabilities if they were present.

Key Concerns

Unescaped output detected

Vulnerabilities

None known

Additional Order Costs for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Additional Order Costs for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

156 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

76% escaped204 total outputs

Attack Surface

Additional Order Costs for WooCommerce Attack Surface

Entry Points3

Unprotected0

AJAX Handlers 3

authwp_ajax_cmb2_oembed_handlercmb2\includes\CMB2_Ajax.php:51

noprivwp_ajax_cmb2_oembed_handlercmb2\includes\CMB2_Ajax.php:52

authwp_ajax_aoc_wc_set_costsincludes\class-aoc-wc-ajax.php:40

WordPress Hooks 55

actionbefore_woocommerce_initadditional-order-costs-for-woocommerce.php:54

actioncmb2_admin_initcmb2\example-functions.php:105

actioncmb2_admin_initcmb2\example-functions.php:470

actioncmb2_admin_initcmb2\example-functions.php:500

actioncmb2_admin_initcmb2\example-functions.php:564

actioncmb2_admin_initcmb2\example-functions.php:633

actioncmb2_admin_initcmb2\example-functions.php:674

actioncmb2_initcmb2\example-functions.php:776

filterwp_prepare_attachment_for_jscmb2\includes\CMB2.php:1549

actionadmin_enqueue_scriptscmb2\includes\CMB2.php:1567

actioncmb2_save_options-page_fieldscmb2\includes\CMB2_Ajax.php:54

filterget_post_metadatacmb2\includes\CMB2_Ajax.php:147

filterupdate_post_metadatacmb2\includes\CMB2_Ajax.php:150

filtercmb2_show_oncmb2\includes\CMB2_Hookup.php:79

actionedit_form_topcmb2\includes\CMB2_Hookup.php:115

actionedit_form_before_permalinkcmb2\includes\CMB2_Hookup.php:119

actionedit_form_after_titlecmb2\includes\CMB2_Hookup.php:123

actionedit_form_after_editorcmb2\includes\CMB2_Hookup.php:127

actionadd_meta_boxescmb2\includes\CMB2_Hookup.php:131

actionadd_meta_boxescmb2\includes\CMB2_Hookup.php:134

actionadd_attachmentcmb2\includes\CMB2_Hookup.php:135

actionedit_attachmentcmb2\includes\CMB2_Hookup.php:136

actionsave_postcmb2\includes\CMB2_Hookup.php:137

actionpre_get_postscmb2\includes\CMB2_Hookup.php:144

actionadd_meta_boxes_commentcmb2\includes\CMB2_Hookup.php:152

actionedit_commentcmb2\includes\CMB2_Hookup.php:153

filtermanage_edit-comments_columnscmb2\includes\CMB2_Hookup.php:156

actionmanage_comments_custom_columncmb2\includes\CMB2_Hookup.php:157

filtermanage_edit-comments_sortable_columnscmb2\includes\CMB2_Hookup.php:158

actionpre_get_postscmb2\includes\CMB2_Hookup.php:159

actionshow_user_profilecmb2\includes\CMB2_Hookup.php:168

actionedit_user_profilecmb2\includes\CMB2_Hookup.php:169

actionuser_new_formcmb2\includes\CMB2_Hookup.php:170

actionpersonal_options_updatecmb2\includes\CMB2_Hookup.php:172

actionedit_user_profile_updatecmb2\includes\CMB2_Hookup.php:173

actionuser_registercmb2\includes\CMB2_Hookup.php:174

filtermanage_users_columnscmb2\includes\CMB2_Hookup.php:177

filtermanage_users_custom_columncmb2\includes\CMB2_Hookup.php:178

filtermanage_users_sortable_columnscmb2\includes\CMB2_Hookup.php:179

actionpre_get_postscmb2\includes\CMB2_Hookup.php:180

actionpre_get_postscmb2\includes\CMB2_Hookup.php:226

actioncreated_termcmb2\includes\CMB2_Hookup.php:230

actionedited_termscmb2\includes\CMB2_Hookup.php:231

actiondelete_termcmb2\includes\CMB2_Hookup.php:232

actioncmb2_do_oembedcmb2\includes\helper-functions.php:131

filteris_protected_metacmb2\includes\rest-api\CMB2_REST.php:144

actioninitcmb2\init.php:85

actionadmin_noticesincludes\class-aoc-wc-activator.php:28

actionwoocommerce_admin_order_totals_after_totalincludes\class-aoc-wc-admin.php:104

actioninitincludes\class-aoc-wc-ajax.php:19

actioncmb2_admin_initincludes\class-aoc-wc-settings.php:72

filtertrs_wc_np_order_cost_extensionincludes\class-aoc-wc.php:80

actionplugins_loadedincludes\class-aoc-wc.php:131

actionadmin_enqueue_scriptsincludes\class-aoc-wc.php:145

actionadmin_enqueue_scriptsincludes\class-aoc-wc.php:146

Maintenance & Trust

Additional Order Costs for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8

Last updatedMay 29, 2024

PHP min version5.6

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Additional Order Costs for WooCommerce Alternatives

Error Log Monitor

error-log-monitor

Adds a Dashboard widget that displays the latest messages from your PHP error log. It can also send logged errors to email.

20K 1 CVE

Fatal Error Notify

fatal-error-notify

Receive email notifications when errors occur on your WordPress site.

6K 2 CVEs

Ninjalytics (formerly Product Sales Report)

product-sales-report-for-woocommerce

100

Quickly create sales reports and charts for your WooCommerce store with advanced filtering by date range, id, category, tag, status, and more.

6K No CVEs

Debug

debug

Debug can help you to find errors in your wordpress website via editing wp-config.php file and email notification.

2K 1 CVE

DecaLog

decalog

Capture and log events, metrics and traces on your site. Make WordPress observable - finally!

1K 2 CVEs

Developer Profile

Additional Order Costs for WooCommerce Developer Profile

The Rite Sites

5 plugins · 900 total installs

trust score

Avg Security Score

91/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Additional Order Costs for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/additional-order-costs-for-woocommerce/assets/css/aoc-wc-admin.css/wp-content/plugins/additional-order-costs-for-woocommerce/assets/js/aoc-wc-admin.js

Version Parameters

additional-order-costs-for-woocommerce/assets/css/aoc-wc-admin.css?ver=additional-order-costs-for-woocommerce/assets/js/aoc-wc-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

aoc-wc-rowaoc-wc-headeraoc-wc-footer

HTML Comments

Data Attributes

data-aoc-wc-iddata-aoc-wc-name

JS Globals

window.aoc_wc_admin_ajax_url

Shortcode Output

[additional_order_cost]

FAQ