Does Byrst 3D for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Byrst 3D for WooCommerce compatible with WordPress 6.5.8?

According to WordPress.org data, Byrst 3D for WooCommerce 1.0.1 has been tested up to WordPress 6.5.8. Check the plugin's changelog for the latest compatibility information.

Is Byrst 3D for WooCommerce compatible with PHP 7.4+?

Byrst 3D for WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Byrst 3D for WooCommerce updated?

Byrst 3D for WooCommerce was last updated on May 22, 2024. Frequent updates are generally a positive security signal.

What is Byrst 3D for WooCommerce's security score?

Byrst 3D for WooCommerce has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Byrst 3D for WooCommerce Security & Risk Analysis

wordpress.org/plugins/byrst-3d-for-woocommerce

Byrst 3D for WooCommerce: Create and Display 3D Models of Your Products in 3D & AR

0 active installs v1.0.1 PHP 7.4+ WP 5.9+ Updated May 22, 2024

3daraugmented-realitymodelswoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Byrst 3D for WooCommerce Safe to Use in 2026?

Generally Safe

Score 92/100

Byrst 3D for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The "byrst-3d-for-woocommerce" plugin version 1.0.1 exhibits a concerning security posture due to a significant number of unprotected AJAX handlers, representing its entire attack surface. While the plugin demonstrates good practices in utilizing prepared statements for SQL queries and a high rate of output escaping, the lack of authentication checks on 14 AJAX entry points is a critical weakness. This means any unauthenticated user could potentially trigger these functionalities, leading to unintended consequences or even exploit vulnerabilities if other weaknesses exist.

The static analysis did not reveal any direct indicators of dangerous functions or file operations. However, the taint analysis found three flows with unsanitized paths, which, while not classified as critical or high severity in this report, warrant careful investigation. The absence of any recorded vulnerabilities in the plugin's history is a positive sign, suggesting either diligent security development or a lack of targeted attacks. Nonetheless, the presence of unsanitized paths combined with unprotected AJAX handlers creates a potential avenue for exploitation.

In conclusion, while the plugin demonstrates strengths in its handling of SQL queries and output escaping, the prevalent lack of authentication on its AJAX endpoints is a major security concern. The taint analysis findings, although not severe in classification here, further highlight areas that require developer attention. The plugin's clean vulnerability history is encouraging but does not negate the immediate risks posed by the exposed AJAX functionality.

Key Concerns

Unprotected AJAX handlers
Taint flows with unsanitized paths

Vulnerabilities

None known

Byrst 3D for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Byrst 3D for WooCommerce Release Timeline

v1.0.1Current

v1.0.0

Code Analysis

Analyzed Mar 17, 2026

Byrst 3D for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

130 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

98% escaped132 total outputs

Data Flows · Security

3 unsanitized

Data Flow Analysis

5 flows3 with unsanitized paths

byrst_woocommerce_plugin_get_data_models (admin\class-byrst-woocommerce-plugin-admin-product.php:74)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

14 unprotected

Byrst 3D for WooCommerce Attack Surface

Entry Points14

Unprotected14

AJAX Handlers 14

authwp_ajax_byrst_woocommerce_plugin_get_data_modelsincludes\class-byrst-woocommerce-plugin.php:248

noprivwp_ajax_byrst_woocommerce_plugin_get_data_modelsincludes\class-byrst-woocommerce-plugin.php:249

authwp_ajax_byrst_woocommerce_plugin_get_data_modelincludes\class-byrst-woocommerce-plugin.php:251

noprivwp_ajax_byrst_woocommerce_plugin_get_data_modelincludes\class-byrst-woocommerce-plugin.php:252

authwp_ajax_byrst_woocommerce_save_models_in_custom_fieldsincludes\class-byrst-woocommerce-plugin.php:254

authwp_ajax_norpriv_byrst_woocommerce_save_models_in_custom_fieldsincludes\class-byrst-woocommerce-plugin.php:255

authwp_ajax_byrst_woocommerce_remove_models_in_custom_fieldsincludes\class-byrst-woocommerce-plugin.php:257

noprivwp_ajax_byrst_woocommerce_remove_models_in_custom_fieldsincludes\class-byrst-woocommerce-plugin.php:258

authwp_ajax_byrst_settings_save_claim_id_and_tokenincludes\class-byrst-woocommerce-plugin.php:260

noprivwp_ajax_byrst_settings_save_claim_id_and_tokenincludes\class-byrst-woocommerce-plugin.php:261

authwp_ajax_byrst_settings_remove_claim_id_and_tokenincludes\class-byrst-woocommerce-plugin.php:263

noprivwp_ajax_byrst_settings_remove_claim_id_and_tokenincludes\class-byrst-woocommerce-plugin.php:264

authwp_ajax_byrst_woocommerce_plugin_get_data_viewincludes\class-byrst-woocommerce-plugin.php:266

noprivwp_ajax_byrst_woocommerce_plugin_get_data_viewincludes\class-byrst-woocommerce-plugin.php:267

WordPress Hooks 18

actionplugins_loadedincludes\class-byrst-woocommerce-plugin.php:179

actionadmin_noticesincludes\class-byrst-woocommerce-plugin.php:205

actionadmin_enqueue_scriptsincludes\class-byrst-woocommerce-plugin.php:211

actionadmin_enqueue_scriptsincludes\class-byrst-woocommerce-plugin.php:216

filterwp_check_filetype_and_extincludes\class-byrst-woocommerce-plugin.php:221

filterupload_mimesincludes\class-byrst-woocommerce-plugin.php:226

actioncmb2_admin_initincludes\class-byrst-woocommerce-plugin.php:231

filterblocksy:woocommerce:product-view:use-defaultincludes\class-byrst-woocommerce-plugin.php:245

actionwp_enqueue_scriptsincludes\class-byrst-woocommerce-plugin.php:283

actionwp_enqueue_scriptsincludes\class-byrst-woocommerce-plugin.php:285

filterscript_loader_tagincludes\class-byrst-woocommerce-plugin.php:287

actionwoocommerce_before_single_product_summaryincludes\class-byrst-woocommerce-plugin.php:295

actionwoocommerce_after_single_product_summaryincludes\class-byrst-woocommerce-plugin.php:298

actionwoocommerce_before_single_productincludes\class-byrst-woocommerce-plugin.php:301

actionwoocommerce_after_single_productincludes\class-byrst-woocommerce-plugin.php:304

actionwoocommerce_after_add_to_cart_formincludes\class-byrst-woocommerce-plugin.php:307

actionwoocommerce_before_add_to_cart_formincludes\class-byrst-woocommerce-plugin.php:310

filterwoocommerce_product_tabsincludes\class-byrst-woocommerce-plugin.php:317

Maintenance & Trust

Byrst 3D for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8

Last updatedMay 22, 2024

PHP min version7.4

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Byrst 3D for WooCommerce Alternatives

AR for WooCommerce

ar-for-woocommerce

Augmented Reality for WooCommerce plugin lets you display 3D models and AR products directly in your store with no app required.

90 1 CVE

3D Viewer – 3D Model Viewer – Augmented Reality

ar-vr-3d-model-try-on

100

Display 3D models on WordPress & WooCommerce with built-in AR for iOS & Android. Unlimited uploads, no app needed. Gutenberg block included.

20 No CVEs

AR Model Viewer for WooCommerce

ar-model-viewer-for-woocommerce

100

The AR Model Viewer for WooCommerce plugin shows 3D models on your website and in augmented reality. Supports .glb and .gltf files.

10 No CVEs

TouchTry Eye Fit

touchtry-eye-fit

100

Bring immersive Augmented Reality (AR) try-on experiences for eyewear products directly to your WooCommerce store.

10 No CVEs

AR/3D Product Viewer & Try-On

aryel-ar-3d-product-viewer-try-on

100

Connect your online store to Aryel and allow your customers to access realistic and true-to-size product previews and virtual try-ons in just 1 click.

0 No CVEs

Developer Profile

Byrst 3D for WooCommerce Developer Profile

Scott Pakula

1 plugin · 0 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Byrst 3D for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/byrst-3d-for-woocommerce/includes/css/byrst-woocommerce-plugin-admin-settings.css/wp-content/plugins/byrst-3d-for-woocommerce/includes/css/byrst-woocommerce-plugin-admin-product.css/wp-content/plugins/byrst-3d-for-woocommerce/includes/js/byrst-woocommerce-plugin-admin-settings-dist.js

Script Paths

/wp-content/plugins/byrst-3d-for-woocommerce/includes/js/byrst-woocommerce-plugin-admin-settings-dist.js

Version Parameters

byrst-woocommerce-plugin-admin-settings.css?ver=byrst-woocommerce-plugin-admin-product.css?ver=byrst-woocommerce-plugin-admin-settings-dist.js?ver=

HTML / DOM Fingerprints

JS Globals

ajax_object_settings

FAQ