Addonify Floating Cart For WooCommerce Security & Risk Analysis
wordpress.org/plugins/addonify-floating-cartAddonify Floating Cart is a free WooCommerce addon that adds a sticky, interactive cart, letting visitors manage items without visiting the cart page.
Is Addonify Floating Cart For WooCommerce Safe to Use in 2026?
Mostly Safe
Score 78/100Addonify Floating Cart For WooCommerce is generally safe to use. 1 past CVE were resolved.
The addonify-floating-cart plugin v1.2.17 presents a mixed security posture. On the positive side, it demonstrates good practices by exclusively using prepared statements for SQL queries and having a high percentage of properly escaped outputs. The absence of dangerous functions and file operations is also encouraging. However, significant concerns arise from its attack surface, particularly the presence of two AJAX handlers that lack authentication checks. This creates a direct path for unauthorized actions if these handlers are exploitable.
The vulnerability history is a critical indicator of potential weaknesses. A single known CVE, although medium severity, being currently unpatched suggests an immediate risk. The pattern of past vulnerabilities, specifically "Missing Authorization," strongly correlates with the observed unprotected AJAX handlers, highlighting a recurring security oversight in the plugin. While the taint analysis shows no critical or high severity flows, the combination of unprotected entry points and a history of authorization issues warrants careful consideration.
In conclusion, addonify-floating-cart v1.2.17 has strengths in its handling of SQL and output escaping. Nevertheless, the identified unprotected AJAX endpoints, coupled with a history of missing authorization vulnerabilities and an unpatched CVE, represent significant security weaknesses that need to be addressed to improve the overall security posture of the plugin.
Key Concerns
- Unprotected AJAX handlers
- Currently unpatched CVE (medium severity)
- History of missing authorization vulnerabilities
Addonify Floating Cart For WooCommerce Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
Addonify Floating Cart For WooCommerce <= 1.2.17 - Missing Authorization
Addonify Floating Cart For WooCommerce Release Timeline
Addonify Floating Cart For WooCommerce Code Analysis
Bundled Libraries
Output Escaping
Data Flow Analysis
Addonify Floating Cart For WooCommerce Attack Surface
AJAX Handlers 18
Shortcodes 1
WordPress Hooks 62
Scheduled Events 3
Maintenance & Trust
Addonify Floating Cart For WooCommerce Maintenance & Trust
Maintenance Signals
Community Trust
Addonify Floating Cart For WooCommerce Alternatives
Sliding Cart for WooCommerce by FunnelKit – Skip Cart & Reach WooCommerce Checkout Faster
cart-for-woocommerce
FunnelKit Cart adds a beautiful sliding cart to your WooCommerce store. Let the buyers add items, edit quantity and add upsells on the side cart.
XT Floating Cart for WooCommerce
woo-floating-cart-lite
A modern Floating Cart / Side Cart for WooCommerce that will improve customer buying experience and increase conversions.
Floating Cart Product For Woocommerce
floating-cart-product-for-woocommerce
Add a floating side cart to your WooCommerce store. Show a real-time slide-out cart with product management, coupons, free shipping bar, and full cust …
side cart plus for woocommerce
side-cart-plus-for-woocommerce
Side cart for Woocommerce is an interactive Side Cart for your WooCommerce store.
Quick Cart Shopping – Floating Cart & Instant Checkout for WooCommerce
quick-cart-shopping
Transform your WooCommerce store with a beautiful floating cart. Let customers shop faster with side cart, drag & drop, and instant checkout.
Addonify Floating Cart For WooCommerce Developer Profile
5 plugins · 4K total installs
How We Detect Addonify Floating Cart For WooCommerce
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/addonify-floating-cart/admin/assets/css/admin.css/wp-content/plugins/addonify-floating-cart/admin/assets/js/manifest.js/wp-content/plugins/addonify-floating-cart/admin/assets/js/vendor.js/wp-content/plugins/addonify-floating-cart/admin/assets/js/main.js/wp-content/plugins/addonify-floating-cart/public/css/style.css/wp-content/plugins/addonify-floating-cart/public/js/frontend.js/wp-content/plugins/addonify-floating-cart/public/js/frontend-app.js/wp-content/plugins/addonify-floating-cart/admin/assets/js/manifest.js/wp-content/plugins/addonify-floating-cart/admin/assets/js/vendor.js/wp-content/plugins/addonify-floating-cart/admin/assets/js/main.js/wp-content/plugins/addonify-floating-cart/public/js/frontend.js/wp-content/plugins/addonify-floating-cart/public/js/frontend-app.jsaddonify-floating-cart/admin/assets/css/admin.css?ver=addonify-floating-cart/admin/assets/js/manifest.js?ver=addonify-floating-cart/admin/assets/js/vendor.js?ver=addonify-floating-cart/admin/assets/js/main.js?ver=addonify-floating-cart/public/css/style.css?ver=addonify-floating-cart/public/js/frontend.js?ver=addonify-floating-cart/public/js/frontend-app.js?ver=HTML / DOM Fingerprints
addonify-woo-fcaddonify-woo-fc-header-btnaddonify-woo-fc-empty-cart<!-- Addonify Floating Cart --><!-- Floating Cart Main Wrapper --><!-- Floating Cart Header --><!-- Floating Cart Body -->+2 moredata-addfy-slugdata-addfy-cart-wrapperdata-addfy-item-qtydata-addfy-priceADDONIFY_WOOFC_LOCOLIZERAddonifyFloatingCartApp/wp-json/addonify_floating_cart_options_api/v1/get_settings/wp-json/addonify_floating_cart_options_api/v1/save_settings[addonify_floating_cart_button]