
Allergens System for Woocommerce Security & Risk Analysis
wordpress.org/plugins/allergens-for-woocommerceAllergens System for Woocommerce
Is Allergens System for Woocommerce Safe to Use in 2026?
Generally Safe
Score 100/100Allergens System for Woocommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "allergens-for-woocommerce" v1.6.2 plugin exhibits a generally strong security posture based on the static analysis. The absence of known CVEs and a clean vulnerability history indicates a good track record. Furthermore, the plugin utilizes prepared statements for all SQL queries, avoids file operations and external HTTP requests, and has a limited attack surface, with only one AJAX handler identified and no unauthenticated entry points. This demonstrates a commitment to secure coding practices in these critical areas.
However, there are areas for improvement. The output escaping is only 56% proper, which is a significant concern. While the taint analysis shows no critical or high severity flows, it did identify two flows with unsanitized paths. This, coupled with the lack of capability checks on the AJAX handler and only two nonce checks across the entire plugin, suggests potential weaknesses that could be exploited if an attacker can manipulate inputs to these handlers.
In conclusion, "allergens-for-woocommerce" v1.6.2 has several strengths, particularly in its handling of database queries and avoidance of external interactions. Nevertheless, the moderate rate of unescaped output and the potential for unsanitized input to the AJAX handler, without robust authentication or capability checks, represent the primary security risks. Addressing these issues would significantly enhance the plugin's overall security.
Key Concerns
- Low output escaping rate (56%)
- Unsanitized paths in taint flows (2)
- No capability checks on AJAX handler
- Limited nonce checks on AJAX handler
Allergens System for Woocommerce Security Vulnerabilities
Allergens System for Woocommerce Release Timeline
Allergens System for Woocommerce Code Analysis
Output Escaping
Data Flow Analysis
Allergens System for Woocommerce Attack Surface
AJAX Handlers 1
WordPress Hooks 17
Maintenance & Trust
Allergens System for Woocommerce Maintenance & Trust
Maintenance Signals
Community Trust
Allergens System for Woocommerce Alternatives
Allergen Exclusion Filter for WooCommerce
allergen-exclusion-filter
Filter WooCommerce products by excluding ingredients and allergens.
Essential Addons for Elementor – Popular Elementor Templates & Widgets
essential-addons-for-elementor-lite
Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.
Limit Login Attempts Reloaded – Login Security, 2FA, Brute Force Protection & Firewall
limit-login-attempts-reloaded
Stop password guessing attacks, secure WooCommerce, block bad IPs, block by countries (Pro), and add email 2FA. Lightweight with better performance.
Google for WooCommerce
google-listings-and-ads
Native integration with Google that allows merchants to easily display their products across Google’s network.
WooPayments: Integrated WooCommerce Payments
woocommerce-payments
Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.
Allergens System for Woocommerce Developer Profile
3 plugins · 100 total installs
How We Detect Allergens System for Woocommerce
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/allergens-for-woocommerce/css/style.css/wp-content/plugins/allergens-for-woocommerce/js/variations.js/wp-content/plugins/allergens-for-woocommerce/css/admin.css/wp-content/plugins/allergens-for-woocommerce/js/variations.jsHTML / DOM Fingerprints
treceafw-settings-wraptreceafw-theme-selectortreceafw-preview-sectiontreceafw-icons-previewdata-icon-themetreceafwData