WP-Safety

Appalify – Woocommerce all in one Security & Risk Analysis

wordpress.org/plugins/appalify-for-woocommerce

All in one Woocommerce solution.

0 active installs v1.0 PHP + WP 4.0+ Updated May 12, 2025
ecommerce-pluginwoocommercewoocommerce-customizationwoocommerce-integrationwoocommerce-product-addon
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Appalify – Woocommerce all in one Safe to Use in 2026?

Generally Safe

Score 100/100

Appalify – Woocommerce all in one has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10mo ago
Risk Assessment

The appalify-for-woocommerce plugin v1.0 exhibits a mixed security posture. On the positive side, it demonstrates good practices regarding SQL queries, exclusively using prepared statements, and has a very high rate of properly escaped output. The absence of any recorded vulnerabilities (CVEs) and taint flows with unsanitized paths is also a strong indicator of secure development. However, a significant concern arises from the plugin's attack surface, with two AJAX handlers identified, both of which lack authentication checks. This creates a direct vulnerability for attackers to interact with these handlers without proper authorization.

The static analysis reveals that the plugin's vulnerability history is clean, which is a positive sign. This suggests that the developers have either been diligent in addressing security issues or the plugin has not yet been extensively targeted or scrutinized. The limited external HTTP requests and lack of file operations further reduce potential attack vectors. Despite the strengths in output escaping and SQL handling, the unprotected AJAX endpoints represent a clear and present risk that needs immediate attention. A more robust implementation of capability checks on these AJAX handlers would significantly improve the plugin's security.

Key Concerns

  • AJAX handlers without auth checks
Vulnerabilities
None known

Appalify – Woocommerce all in one Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Appalify – Woocommerce all in one Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
2
104 escaped
Nonce Checks
4
Capability Checks
0
File Operations
0
External Requests
1
Bundled Libraries
0

Output Escaping

98% escaped106 total outputs
Data Flows
All sanitized

Data Flow Analysis

8 flows
appalify_display_optimization_settings (includes\admin\class-admin-appalify-manage-extensions.php:16)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Appalify – Woocommerce all in one Attack Surface

Entry Points2
Unprotected2

AJAX Handlers 2

noprivwp_ajax_load_quick_view_contentincludes\class-appalify-settings.php:102
authwp_ajax_load_quick_view_contentincludes\class-appalify-settings.php:103
WordPress Hooks 21
actionplugins_loadedappalify.php:36
actionbefore_woocommerce_initappalify.php:39
actionadmin_noticesappalify.php:49
actionwp_enqueue_scriptsincludes\class-appalify-settings.php:77
actionappalify_include_files_late_actionincludes\class-appalify-settings.php:94
actionwp_enqueue_scriptsincludes\class-appalify-settings.php:104
actioninitincludes\class-appalify-settings.php:266
actionadmin_initincludes\class-appalify-settings.php:269
actionadmin_menuincludes\class-appalify-settings.php:272
actionwp_enqueue_scriptsincludes\class-appalify.php:126
actionwp_enqueue_scriptsincludes\class-appalify.php:127
actionadmin_enqueue_scriptsincludes\class-appalify.php:130
actionadmin_enqueue_scriptsincludes\class-appalify.php:131
actioninitincludes\class-appalify.php:140
filterwoocommerce_product_data_tabsincludes\integration\class-appalify-functions-hooks-integration-woocommerce.php:7
actionwoocommerce_product_data_panelsincludes\integration\class-appalify-functions-hooks-integration-woocommerce.php:12
actionwoocommerce_process_product_metaincludes\integration\class-appalify-functions-hooks-integration-woocommerce.php:13
actionwoocommerce_before_add_to_cart_buttonincludes\integration\class-appalify-functions-hooks-integration-woocommerce.php:14
filterwoocommerce_product_single_add_to_cart_textincludes\integration\class-appalify-functions-hooks-integration-woocommerce.php:15
filterwoocommerce_get_item_dataincludes\integration\class-appalify-functions-hooks-integration-woocommerce.php:16
actionwoocommerce_after_shop_loop_itemincludes\integration\class-appalify-qv-functions-hooks-integration-woocommerce.php:7
Maintenance & Trust

Appalify – Woocommerce all in one Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedMay 12, 2025
PHP min version
Downloads399

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Appalify – Woocommerce all in one Alternatives

Advanced Product Fields (Product Addons) for WooCommerce

Advanced Product Fields (Product Addons) for WooCommerce

advanced-product-fields-for-woocommerce

A
99

Add options (addons) to your WooCommerce products so your customers can personalize their products. Product forms for everyone!

50K 1 CVE
Product Addons for Woocommerce – Product Options with Custom Fields

Product Addons for Woocommerce – Product Options with Custom Fields

woo-custom-product-addons

A
97

WooCommerce Product Addons Add custom fields to your WooCommerce product page. With an easy-to-use Custom Form Builder.

30K 1 CVE
Extra Product Options For WooCommerce | Custom Product Addons and Fields

Extra Product Options For WooCommerce | Custom Product Addons and Fields

woo-extra-product-options

A
100

WooCommerce Extra Product Options plugin lets you add product addons (custom products field) of 20 different field types to your product page.

30K No CVEs
Bit integrations – Easy Automator with no-code automation, integrate Webhook and automate 300+ Platform

Bit integrations – Easy Automator with no-code automation, integrate Webhook and automate 300+ Platform

bit-integrations

A
98

Perfect Automation and integration plugin: Connect 300+ platforms and automate CRM, Email marketing tools, Google Sheets, Contact forms, LMS and more

20K 1 CVE
PPOM – Product Addons & Custom Fields for WooCommerce

PPOM – Product Addons & Custom Fields for WooCommerce

woocommerce-product-addon

B
80

Easily add a range of custom fields to WooCommerce products, from text boxes to date selectors, allowing customers to personalize their orders.

20K 11 CVEs
Developer Profile

Appalify – Woocommerce all in one Developer Profile

Appalify

5 plugins · 70 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Appalify – Woocommerce all in one

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/appalify-for-woocommerce/assets/css/quick-view-modal.css

HTML / DOM Fingerprints

CSS Classes
quick-view-buttonqv_add_to_cart_buttonquick-view-modalquick-view-imagequick-view-overlayquick-view-contentquick-view-short-descriptionquick-view-price+1 more
Data Attributes
data-product_id
JS Globals
quick_view_button_dynamic_cssappalify_include_files_lateload_quick_view_contentenqueue_quick_view_scripts
FAQ

Frequently Asked Questions about Appalify – Woocommerce all in one