WP-Safety

After order discounts for woocommerce Security & Risk Analysis

wordpress.org/plugins/after-order-discounts-for-woocommerce

This WooCommerce Coupon Plugin helps you to Create Discount Coupon Code for your Regular Customer. This plugin provides two ways to create coupon code …

10 active installs v1.0.4 PHP 5.4+ WP 4.0+ Updated Jun 23, 2019
couponsorder-discountprize-wheelwoocommerce-coupon-pluginwoocommerce-dynamic-coupons
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is After order discounts for woocommerce Safe to Use in 2026?

Generally Safe

Score 85/100

After order discounts for woocommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago
Risk Assessment

This plugin, 'after-order-discounts-for-woocommerce' version 1.0.4, presents a significant security risk primarily due to its large attack surface without adequate authentication. All nine identified AJAX handlers lack authentication checks, meaning any user, including unauthenticated ones, can trigger these functions. This is a critical concern, as it opens the door to potential unauthorized actions or information disclosure depending on what these AJAX handlers do.

The taint analysis further amplifies these concerns, revealing 7 high-severity flows with unsanitized paths. While no critical or high severity CVEs are recorded for this plugin historically, the current static analysis strongly suggests the presence of vulnerabilities that could be exploited. The lack of capability checks and the limited use of nonces on entry points are also contributing factors to the overall weak security posture. The high percentage of unsafely escaped output (92%) also indicates a risk of Cross-Site Scripting (XSS) vulnerabilities.

Despite the positive signs like the absence of dangerous functions, file operations, and external HTTP requests, and a good percentage of SQL queries using prepared statements, the overwhelming number of unprotected AJAX handlers and high-severity unsanitized flows are major red flags. The plugin's history of no recorded vulnerabilities might be due to its limited adoption or a lack of thorough auditing in the past. However, based on the current analysis, it requires immediate attention to secure its entry points and sanitize all data flows.

Key Concerns

  • 9 AJAX handlers without authentication
  • 7 high severity unsanitized flows
  • 0 capability checks on AJAX handlers
  • Low output escaping (8%)
  • Only 1 nonce check found
Vulnerabilities
None known

After order discounts for woocommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

After order discounts for woocommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
3
14 prepared
Unescaped Output
226
20 escaped
Nonce Checks
1
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
1

Bundled Libraries

Select2

SQL Query Safety

82% prepared17 total queries

Output Escaping

8% escaped246 total outputs
Data Flows
7 unsanitized

Data Flow Analysis

7 flows7 with unsanitized paths
saveRule (App\Controllers\Admin\Manage.php:98)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
9 unprotected

After order discounts for woocommerce Attack Surface

Entry Points9
Unprotected9

AJAX Handlers 9

authwp_ajax_create_lucky_prizesApp\Controllers\Rules\OrderSpin.php:111
authwp_ajax_get_rule_conditionsApp\Router.php:74
authwp_ajax_get_conditionApp\Router.php:75
authwp_ajax_save_the_ruleApp\Router.php:76
authwp_ajax_save_settingsApp\Router.php:77
authwp_ajax_update_rule_statusApp\Router.php:78
authwp_ajax_remove_ruleApp\Router.php:79
authwp_ajax_select2_searchApp\Router.php:80
authwp_ajax_aodfw_order_the_rulesApp\Router.php:81
WordPress Hooks 19
actionwoocommerce_order_status_changedApp\Controllers\Rules\OrderCoupon.php:66
actionwoocommerce_checkout_update_order_metaApp\Controllers\Rules\OrderCoupon.php:67
actionwoocommerce_initApp\Controllers\Rules\OrderCoupon.php:68
actionwoocommerce_removed_couponApp\Controllers\Rules\OrderCoupon.php:69
actionwoocommerce_get_shop_coupon_dataApp\Controllers\Rules\OrderCoupon.php:70
actionwoocommerce_cart_loaded_from_sessionApp\Controllers\Rules\OrderCoupon.php:71
actionwp_footerApp\Controllers\Rules\OrderSpin.php:108
actionwoocommerce_order_status_changedApp\Controllers\Rules\OrderSpin.php:109
actionwoocommerce_checkout_update_order_metaApp\Controllers\Rules\OrderSpin.php:110
actioninitApp\Controllers\Rules\OrderSpin.php:112
filterquery_varsApp\Controllers\Rules\OrderSpin.php:113
actionwp_loadedApp\Controllers\Rules\OrderSpin.php:114
filterwoocommerce_account_menu_itemsApp\Controllers\Rules\OrderSpin.php:115
actionwoocommerce_account_lucky-gifts_endpointApp\Controllers\Rules\OrderSpin.php:116
actionwp_enqueue_scriptsApp\Router.php:57
actionadmin_menuApp\Router.php:65
filteradmin_footer_textApp\Router.php:68
filterupdate_footerApp\Router.php:70
filteradmin_enqueue_scriptsApp\Router.php:72
Maintenance & Trust

After order discounts for woocommerce Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24
Last updatedJun 23, 2019
PHP min version5.4
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

After order discounts for woocommerce Alternatives

Discount Rules for WooCommerce

Discount Rules for WooCommerce

woo-discount-rules

A
97

The discount plugin for WooCommerce helps you create bulk discount, quantity discount, storewide sale, dynamic pricing discount offers easily.

100K 4 CVEs
Smart Coupons For WooCommerce Coupons

Smart Coupons For WooCommerce Coupons

wt-smart-coupons-for-woocommerce

A
99

Best WooCommerce coupons plugin to create advanced coupons and discount codes with auto-apply, BOGO, free shipping, giveaways, and discount rules.

30K 1 CVE
Advanced Coupons for WooCommerce Coupons & Store Credit

Advanced Coupons for WooCommerce Coupons & Store Credit

advanced-coupons-for-woocommerce-free

A
96

Enhance WooCommerce coupons with new coupon types, BOGO coupons, store credit, discount rules, url coupons, gift cards, loyalty program + more!

20K 2 CVEs
Advanced Dynamic Pricing and Discount Rules for WooCommerce

Advanced Dynamic Pricing and Discount Rules for WooCommerce

advanced-dynamic-pricing-for-woocommerce

A
90

The discount plugin for WooCommerce supports any dynamic pricing discount: bulk discount, role discount, storewide, bogo, gifts, cart discount

20K 7 CVEs
Coupon Generator for WooCommerce

Coupon Generator for WooCommerce

coupon-generator-for-woocommerce

A
100

Generate WooCommerce coupons easily and fast.

10K No CVEs
Developer Profile

After order discounts for woocommerce Developer Profile

premiumwoo

1 plugin · 10 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect After order discounts for woocommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/after-order-discounts-for-woocommerce/assets/css/admin-style.css/wp-content/plugins/after-order-discounts-for-woocommerce/assets/css/select2.min.css/wp-content/plugins/after-order-discounts-for-woocommerce/assets/js/admin.js/wp-content/plugins/after-order-discounts-for-woocommerce/assets/js/select2.full.min.js/wp-content/plugins/after-order-discounts-for-woocommerce/assets/js/sweetalert.min.js/wp-content/plugins/after-order-discounts-for-woocommerce/assets/js/tinymce/tinymce.min.js
Script Paths
/wp-content/plugins/after-order-discounts-for-woocommerce/assets/js/admin.js/wp-content/plugins/after-order-discounts-for-woocommerce/assets/js/select2.full.min.js/wp-content/plugins/after-order-discounts-for-woocommerce/assets/js/sweetalert.min.js/wp-content/plugins/after-order-discounts-for-woocommerce/assets/js/tinymce/tinymce.min.js
Version Parameters
after-order-discounts-for-woocommerce/assets/css/admin-style.css?ver=after-order-discounts-for-woocommerce/assets/css/select2.min.css?ver=after-order-discounts-for-woocommerce/assets/js/admin.js?ver=after-order-discounts-for-woocommerce/assets/js/select2.full.min.js?ver=after-order-discounts-for-woocommerce/assets/js/sweetalert.min.js?ver=after-order-discounts-for-woocommerce/assets/js/tinymce/tinymce.min.js?ver=

HTML / DOM Fingerprints

CSS Classes
waod-wrapwaod-main-contentwaod-headingwaod-add-new-rulewaod-table-wrapwaod-action-buttonswaod-save-settingswaod-rule-details+5 more
Data Attributes
data-rule-id
JS Globals
waod_languagewaod_data
FAQ

Frequently Asked Questions about After order discounts for woocommerce