WP-Safety

Addonify – Quick View For WooCommerce Security & Risk Analysis

wordpress.org/plugins/addonify-quick-view

Addonify WooCommerce Quick View plugin adds functionality to have a quick preview of WooCommerce product on a popup modal.

1K active installs v2.0.5 PHP 7.4+ WP 6.4+ Updated Feb 15, 2026
products-quick-viewquick-viewquickviewwoocommercewoocommerce-quick-view
98
A · Safe
CVEs total2
Unpatched0
Last CVEDec 22, 2025
Plugin page Download
Safety Verdict

Is Addonify – Quick View For WooCommerce Safe to Use in 2026?

Generally Safe

Score 98/100

Addonify – Quick View For WooCommerce has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

2 known CVEsLast CVE: Dec 22, 2025Updated 3mo ago
Risk Assessment

The addonify-quick-view plugin v2.0.5 exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries, properly escaping a high percentage of output, and implementing nonce and capability checks on its entry points. The absence of critical or high severity taint flows suggests that user-supplied data is generally handled with care, preventing common injection vulnerabilities. However, the presence of two medium severity historical vulnerabilities, specifically Missing Authorization and Exposure of Sensitive Information, warrants attention, even though they are currently patched. The plugin also utilizes the `unserialize` function, which can be a significant risk if not handled with extreme caution, as it can lead to remote code execution if an attacker can control the serialized data. While the current version shows no *unpatched* vulnerabilities and a secure handling of its direct entry points, the historical trend and the use of `unserialize` introduce a lingering concern that requires ongoing vigilance.

Key Concerns

  • Use of 'unserialize' function
  • Two historical medium severity CVEs
Vulnerabilities
2 published

Addonify – Quick View For WooCommerce Security Vulnerabilities

CVEs by Year

1 CVE in 2024
2024
1 CVE in 2025
2025
Patched Has unpatched

Severity Breakdown

Medium
2

2 total CVEs

CVE-2025-68578medium · 5.3Missing Authorization

Addonify <= 2.0.4 - Missing Authorization

Dec 22, 2025 Patched in 2.0.5 (57d)
CVE-2024-6560medium · 5.3Exposure of Sensitive Information to an Unauthorized Actor

Addonify – Quick View For WooCommerce <= 1.2.16 - Unauthenticated Full Path Dislcosure

Jul 19, 2024 Patched in 1.2.17 (1d)
Version History

Addonify – Quick View For WooCommerce Release Timeline

v2.0.5Current
v2.0.41 CVE
CVE-2025-68578
v2.0.31 CVE
CVE-2025-68578
v2.0.21 CVE
CVE-2025-68578
v2.0.11 CVE
CVE-2025-68578
v2.0.01 CVE
CVE-2025-68578
v1.2.171 CVE
CVE-2025-68578
v1.2.162 CVEs
CVE-2025-68578 CVE-2024-6560
v1.2.152 CVEs
CVE-2025-68578 CVE-2024-6560
v1.2.142 CVEs
CVE-2025-68578 CVE-2024-6560
v1.2.132 CVEs
CVE-2025-68578 CVE-2024-6560
v1.2.122 CVEs
CVE-2025-68578 CVE-2024-6560
v1.2.112 CVEs
CVE-2025-68578 CVE-2024-6560
v1.2.102 CVEs
CVE-2025-68578 CVE-2024-6560
v1.2.92 CVEs
CVE-2025-68578 CVE-2024-6560
v1.2.82 CVEs
CVE-2025-68578 CVE-2024-6560
v1.2.72 CVEs
CVE-2025-68578 CVE-2024-6560
v1.2.62 CVEs
CVE-2025-68578 CVE-2024-6560
v1.2.52 CVEs
CVE-2025-68578 CVE-2024-6560
v1.2.42 CVEs
CVE-2025-68578 CVE-2024-6560
Code Analysis
Analyzed Mar 16, 2026

Addonify – Quick View For WooCommerce Code Analysis

Dangerous Functions
4
Raw SQL Queries
0
2 prepared
Unescaped Output
5
39 escaped
Nonce Checks
6
Capability Checks
2
File Operations
2
External Requests
1
Bundled Libraries
0

Dangerous Functions Found

unserialize$modal_box_content = unserialize( addonify_quick_view_get_option( 'modal_box_content' ) ); // phpcs:includes\addonify-quick-view-template-functions.php:189
unserialize$value = unserialize( $setting_value->option_value ); // phpcs:ignoreincludes\class-addonify-quick-view-rest-api.php:338
unserialize$settings_values[ $id ] = addonify_quick_view_get_option( $id ) ? unserialize( addonify_quick_view_gincludes\functions\settings-v2.php:138
unserialize$modal_box_content = unserialize( addonify_quick_view_get_option( 'modal_box_content' ) ); // phpcs:public\templates\addonify-quick-view-content.php:23

SQL Query Safety

100% prepared2 total queries

Output Escaping

89% escaped44 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

2 flows
process_user_tracking_choice (includes\udp\class-udp-agent.php:174)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Addonify – Quick View For WooCommerce Attack Surface

Entry Points3
Unprotected0

AJAX Handlers 2

authwp_ajax_get_quick_view_contentspublic\class-addonify-quick-view-public.php:170
noprivwp_ajax_get_quick_view_contentspublic\class-addonify-quick-view-public.php:171

Shortcodes 1

[addonify_quick_view_button] public\class-addonify-quick-view-public.php:167
WordPress Hooks 47
actionadmin_noticesaddonify-quick-view.php:97
actionplugins_loadedaddonify-quick-view.php:110
actionadmin_enqueue_scriptsadmin\app.php:20
actionaddonify_quick_view_product_imageincludes\addonify-quick-view-template-functions.php:207
actionaddonify_quick_view_product_imageincludes\addonify-quick-view-template-functions.php:208
actionaddonify_quick_view_product_summaryincludes\addonify-quick-view-template-functions.php:213
actionaddonify_quick_view_product_summaryincludes\addonify-quick-view-template-functions.php:218
actionaddonify_quick_view_product_summaryincludes\addonify-quick-view-template-functions.php:223
actionaddonify_quick_view_product_summaryincludes\addonify-quick-view-template-functions.php:228
actionaddonify_quick_view_product_summaryincludes\addonify-quick-view-template-functions.php:233
actionaddonify_quick_view_product_summaryincludes\addonify-quick-view-template-functions.php:238
actionaddonify_quick_view_buttonincludes\addonify-quick-view-template-hooks.php:9
actionaddonify_quick_view_contentincludes\addonify-quick-view-template-hooks.php:11
actionaddonify_quick_view_after_product_summary_contentincludes\addonify-quick-view-template-hooks.php:13
actionrest_api_initincludes\class-addonify-quick-view-rest-api.php:41
actioninitincludes\class-addonify-quick-view.php:158
actionadmin_menuincludes\class-addonify-quick-view.php:173
filterplugin_row_metaincludes\class-addonify-quick-view.php:178
actioninitincludes\class-addonify-quick-view.php:205
actionwp_enqueue_scriptsincludes\class-addonify-quick-view.php:206
actionwp_enqueue_scriptsincludes\class-addonify-quick-view.php:207
filteraddonify_quick_view_button_sectionsincludes\functions\fields\button-v2.php:32
filteraddonify_quick_view_style_sectionsincludes\functions\fields\custom-css.php:33
filteraddonify_quick_view_settings_fieldsincludes\functions\fields\custom-css.php:62
filteraddonify_quick_view_general_sectionsincludes\functions\fields\general-v2.php:32
filteraddonify_quick_view_modal_sectionsincludes\functions\fields\modal-v2.php:44
filteraddonify_quick_view_product_sectionsincludes\functions\fields\product-v2.php:36
filteraddonify_quick_view_settings_fieldsincludes\functions\settings-v2.php:199
filteraddonify_quick_view_setting_tabsincludes\functions\settings-v2.php:342
actioninitincludes\udp\class-udp-agent.php:76
actionadmin_initincludes\udp\class-udp-agent.php:77
actioninitincludes\udp\class-udp-agent.php:80
actionadmin_initincludes\udp\init.php:53
actionload-index.phpincludes\udp\init.php:113
actionadmin_noticesincludes\udp\init.php:116
actioncc_udp_agent_send_dataincludes\udp\init.php:179
actionafter_switch_themeincludes\udp\init.php:184
actionactivate_pluginincludes\udp\init.php:213
actiondeactivate_pluginincludes\udp\init.php:223
actionswitch_themeincludes\udp\init.php:254
filterbody_classpublic\class-addonify-quick-view-public.php:118
actionwoocommerce_after_shop_loop_itempublic\class-addonify-quick-view-public.php:141
actionwoocommerce_after_shop_loop_itempublic\class-addonify-quick-view-public.php:146
actionbody_classpublic\class-addonify-quick-view-public.php:151
actionwoocommerce_before_shop_loop_item_titlepublic\class-addonify-quick-view-public.php:161
actionwp_footerpublic\class-addonify-quick-view-public.php:165
actionwp_footerpublic\class-addonify-quick-view-public.php:285

Scheduled Events 3

cc_udp_agent_send_data
cc_udp_agent_send_data
cc_udp_agent_send_data
Maintenance & Trust

Addonify – Quick View For WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 15, 2026
PHP min version7.4
Downloads54K

Community Trust

Rating100/100
Number of ratings3
Active installs1K
Alternatives

Addonify – Quick View For WooCommerce Alternatives

WPB Quick View Popup for WooCommerce – Instant Product View in Popup

WPB Quick View Popup for WooCommerce – Instant Product View in Popup

woocommerce-lightbox

A
99

Add a quick view popup to WooCommerce products so customers can preview product details without leaving the shop page.

1K 1 CVE
Quick View for WooCommerce

Quick View for WooCommerce

wc-easy-quick-view

A
92

Quick View for WooCommerce is a plugin that allows shoppers to view product information without having to navigate to the product page.

200 No CVEs
Quick View For Woocommerce

Quick View For Woocommerce

quick-view-for-woocommerce

A
100

The Product Quick View plugin enables your customers to get an overview of the WooCommerce products without being directed to the detail page.

100 No CVEs
YITH WooCommerce Quick View

YITH WooCommerce Quick View

yith-woocommerce-quick-view

A
96

This plugin adds the possibility to have a quick preview of the products right from product list

100K 2 CVEs
XT Quick View for WooCommerce

XT Quick View for WooCommerce

xt-woo-quick-view-lite

A
100

An interactive product quick view modal for WooCommerce that provides the user a quick access to main product information with smooth animation.

400 No CVEs
Developer Profile

Addonify – Quick View For WooCommerce Developer Profile

Addonify

5 plugins · 4K total installs

89
trust score
Avg Security Score
93/100
Avg Patch Time
23 days
View full developer profile
Detection Fingerprints

How We Detect Addonify – Quick View For WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/addonify-quick-view/public/css/main.css/wp-content/plugins/addonify-quick-view/public/js/vendors.js/wp-content/plugins/addonify-quick-view/public/js/main.js/wp-content/plugins/addonify-quick-view/public/vendors/magnific-popup/magnific-popup.css/wp-content/plugins/addonify-quick-view/public/vendors/magnific-popup/jquery.magnific-popup.min.js/wp-content/plugins/addonify-quick-view/public/vendors/slick/slick.css/wp-content/plugins/addonify-quick-view/public/vendors/slick/slick.min.js
Script Paths
/wp-content/plugins/addonify-quick-view/public/js/vendors.js/wp-content/plugins/addonify-quick-view/public/js/main.js/wp-content/plugins/addonify-quick-view/public/vendors/magnific-popup/jquery.magnific-popup.min.js/wp-content/plugins/addonify-quick-view/public/vendors/slick/slick.min.js
Version Parameters
addonify-quick-view/public/css/main.css?ver=addonify-quick-view/public/js/vendors.js?ver=addonify-quick-view/public/js/main.js?ver=addonify-quick-view/public/vendors/magnific-popup/magnific-popup.css?ver=addonify-quick-view/public/vendors/magnific-popup/jquery.magnific-popup.min.js?ver=addonify-quick-view/public/vendors/slick/slick.css?ver=addonify-quick-view/public/vendors/slick/slick.min.js?ver=

HTML / DOM Fingerprints

CSS Classes
addonify-qv-wrapaddonify-quick-view-popupaddonify-quick-view-openaddonify-quick-view-close
HTML Comments
<!-- Addonify Quick View Modal --><!-- Addonify Quick View Product Image Gallery --><!-- Addonify Quick View Product Details --><!-- Addonify Quick View Add to Cart Form -->
Data Attributes
data-quick-view-urldata-product-iddata-product-slug
JS Globals
addonify_quick_view_params
REST Endpoints
/wp-json/addonify-quick-view/v1/product
FAQ

Frequently Asked Questions about Addonify – Quick View For WooCommerce