Does Checkout Custom Fields Builder for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Checkout Custom Fields Builder for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Checkout Custom Fields Builder for WooCommerce compatible with WordPress 6.8.5?

According to WordPress.org data, Checkout Custom Fields Builder for WooCommerce 1.1.4 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Checkout Custom Fields Builder for WooCommerce compatible with PHP 7.4+?

Checkout Custom Fields Builder for WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is Checkout Custom Fields Builder for WooCommerce's security score?

Checkout Custom Fields Builder for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Checkout Custom Fields Builder for WooCommerce Security & Risk Analysis

wordpress.org/plugins/checkout-custom-fields-builder-for-woocommerce

Customize the WooCommerce checkout: add, remove, or edit fields to create a simple, personalized experience for your store. -----

40 active installs v1.1.4 PHP 7.4+ WP + Updated Jul 18, 2025

checkout-field-editorcheckout-managerwoocommercewoocommerce-checkoutwoocommerce-checkout-field-editor

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Checkout Custom Fields Builder for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Checkout Custom Fields Builder for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8mo ago

Risk Assessment

The plugin "checkout-custom-fields-builder-for-woocommerce" v1.1.4 exhibits a generally strong security posture based on the provided static analysis. The absence of critical or high-severity taint flows, along with the proper use of prepared statements for all SQL queries and a high percentage of output escaping, are significant strengths. The plugin also demonstrates good practice by including nonce checks for its AJAX handlers and has no recorded historical vulnerabilities, suggesting a mature and well-maintained codebase.

However, there are a couple of areas that warrant attention. The presence of an external HTTP request, while not explicitly flagged as dangerous, introduces a potential dependency on external services and could be a vector for supply chain attacks or denial-of-service if the external service is compromised or unavailable. Additionally, while there are no explicit capability checks noted on the entry points (AJAX handlers), the fact that there are no unprotected entry points is a positive sign. Nonetheless, explicitly implementing capability checks would further harden these handlers against unauthorized access.

Overall, this plugin appears to be secure, with its current version addressing common vulnerabilities effectively. The limited attack surface and good coding practices are commendable. The main considerations are the external HTTP request and the potential for enhanced authorization checks on existing protected entry points.

Key Concerns

External HTTP requests present
Missing capability checks on entry points

Vulnerabilities

None known

Checkout Custom Fields Builder for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Checkout Custom Fields Builder for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

272 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

93% escaped293 total outputs

Data Flows

All sanitized

Data Flow Analysis

3 flows

select_editor (includes\Admin\Options.php:37)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Checkout Custom Fields Builder for WooCommerce Attack Surface

Entry Points3

Unprotected0

AJAX Handlers 3

authwp_ajax_ccfbw_save_settingsincludes\Admin\Options.php:18

authwp_ajax_ccfbw_selecting_editorincludes\Admin\Options.php:20

authwp_ajax_ccfbw_install_baseincludes\Load.php:47

WordPress Hooks 56

actionadmin_menuincludes\Admin\Admin_Menu.php:10

filterccfbw_field_setincludes\Admin\Fields.php:13

actionccfbw_settings_content_afterincludes\Admin\Fields.php:27

actionadmin_enqueue_scriptsincludes\Admin\Load.php:10

actionadmin_initincludes\Admin\Load.php:12

actionccfbw_settings_screen_afterincludes\Admin\Load.php:14

actionadmin_initincludes\Admin\Load.php:16

actionplugins_loadedincludes\Admin\Mailchimp.php:24

filterccfbw_get_settingsincludes\Admin\Options.php:22

filterccfbw_get_sectionsincludes\Admin\Options.php:24

filterccfbw_get_sectionincludes\Admin\Options.php:26

filterccfbw_get_fieldsincludes\Admin\Options.php:28

filterccfbw_current_editorincludes\Admin\Options.php:30

actionccfbw_checkout_sectionsincludes\Admin\Sections.php:13

actionelementor/widgets/registerincludes\Frontend\Elementor.php:17

actionelementor/widget/before_render_contentincludes\Frontend\Elementor.php:19

actionwp_enqueue_scriptsincludes\Frontend\Elementor.php:21

actionelementor/editor/before_enqueue_scriptsincludes\Frontend\Elementor.php:23

actionelementor/elements/categories_registeredincludes\Frontend\Elementor.php:25

actioninitincludes\Frontend\Elementor.php:30

filterwoocommerce_checkout_redirect_empty_cartincludes\Frontend\Elementor.php:39

actionwoocommerce_blocks_loadedincludes\Frontend\Gutenberg.php:11

actionwoocommerce_store_api_checkout_update_order_from_requestincludes\Frontend\Gutenberg.php:13

actionwoocommerce_initincludes\Frontend\Gutenberg.php:15

actionwoocommerce_order_details_after_order_tableincludes\Frontend\Gutenberg.php:18

actionwoocommerce_email_after_order_tableincludes\Frontend\Gutenberg.php:19

actionwoocommerce_order_details_after_order_tableincludes\Frontend\Gutenberg.php:22

actionwoocommerce_email_after_order_tableincludes\Frontend\Gutenberg.php:23

actionwoocommerce_admin_order_data_after_order_detailsincludes\Frontend\Gutenberg.php:26

actionwoocommerce_blocks_checkout_block_registrationincludes\Frontend\Gutenberg.php:203

actionwoocommerce_checkout_before_customer_detailsincludes\Frontend\Widgets\CCFBW_Elementor_Widget.php:2825

actionwoocommerce_checkout_after_customer_detailsincludes\Frontend\Widgets\CCFBW_Elementor_Widget.php:2826

actionwoocommerce_checkout_before_order_review_headingincludes\Frontend\Widgets\CCFBW_Elementor_Widget.php:2828

actionwoocommerce_checkout_after_order_reviewincludes\Frontend\Widgets\CCFBW_Elementor_Widget.php:2829

actionccfbw_checkout_billingincludes\Frontend\Widgets\CCFBW_Elementor_Widget.php:2831

actionccfbw_checkout_shippingincludes\Frontend\Widgets\CCFBW_Elementor_Widget.php:2832

actionccfbw_checkout_account_detailsincludes\Frontend\Widgets\CCFBW_Elementor_Widget.php:2834

actionccfbw_checkout_order_detailsincludes\Frontend\Widgets\CCFBW_Elementor_Widget.php:2836

actionccfbw_checkout_order_reviewincludes\Frontend\Widgets\CCFBW_Elementor_Widget.php:2838

actionccfbw_checkout_order_reviewincludes\Frontend\Widgets\CCFBW_Elementor_Widget.php:2840

actionccfbw_checkout_coupon_formincludes\Frontend\Widgets\CCFBW_Elementor_Widget.php:2843

filterwoocommerce_form_field_argsincludes\Frontend\Widgets\CCFBW_Elementor_Widget.php:2845

actionbefore_woocommerce_initincludes\Frontend\Woocommerce.php:13

actionwoocommerce_checkout_initincludes\Frontend\Woocommerce.php:15

actionwc_ajax_ccfbw_apply_couponincludes\Frontend\Woocommerce.php:17

actionwc_ajax_ccfbw_update_order_reviewincludes\Frontend\Woocommerce.php:19

actionwoocommerce_cart_totals_coupon_labelincludes\Frontend\Woocommerce.php:21

actionccfbw_review_order_paymentincludes\Frontend\Woocommerce.php:23

filterwc_get_templateincludes\Frontend\Woocommerce.php:25

actionwoocommerce_checkout_update_order_reviewincludes\Frontend\Woocommerce.php:28

actionwoocommerce_before_calculate_totalsincludes\Frontend\Woocommerce.php:29

filterwoocommerce_form_fieldincludes\Frontend\Woocommerce.php:32

actionwoocommerce_checkout_update_order_metaincludes\Frontend\Woocommerce.php:34

actionplugins_loadedincludes\Load.php:41

actionadmin_initincludes\Load.php:43

actionadmin_enqueue_scriptsincludes\Load.php:45

Maintenance & Trust

Checkout Custom Fields Builder for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJul 18, 2025

PHP min version7.4

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs40

Alternatives

Checkout Custom Fields Builder for WooCommerce Alternatives

Checkout Field Editor for WooCommerce – Checkout Page Manager

woo-checkout-regsiter-field-editor

Checkout Field Editor for WooCommerce is the leading plugin for customizing, editing, removing, and managing your WooCommerce checkout fields.

2K 1 CVE

FEWC – Extra Checkout Fields For WooCommerce

fewc-extra-checkout-fields-for-woocommerce

100

Easily customize your checkout page: add custom fields, enable/disable fields, rearrange their positions, and preview changes in the WP Customizer

600 No CVEs

Checkout Field Editor and Manager for WooCommerce

extra-checkout-fields-for-woocommerce

A simple WooCommerce Checkout Field Editor and Manager plugin to edit WooCommerce checkout fields, add custom checkout fields and more.

200 No CVEs

Checkout Manager for Woocommerce

checkout-manager

Checkout Manager - The most advanced and powerful customization for your checkout page.

10 No CVEs

Checkout Field Builder (Checkout Field Editor & Manager) for WooCommerce

checkout-field-builder-checkout-manager-for-woocommerce

100

Checkout Field Builder - The best WooCommerce checkout filed editor & manager plugin to customize checkout fields on your WooCommerce checkout page.

0 No CVEs

Developer Profile

Checkout Custom Fields Builder for WooCommerce Developer Profile

Stylemix

8 plugins · 58K total installs

trust score

Avg Security Score

80/100

Avg Patch Time

297 days

View full developer profile

Detection Fingerprints

How We Detect Checkout Custom Fields Builder for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/checkout-custom-fields-builder-for-woocommerce/assets/dist/css/admin.css/wp-content/plugins/checkout-custom-fields-builder-for-woocommerce/assets/dist/css/dashboard.css/wp-content/plugins/checkout-custom-fields-builder-for-woocommerce/assets/dist/js/admin.js/wp-content/plugins/checkout-custom-fields-builder-for-woocommerce/assets/images/menu-icon.png/wp-content/plugins/checkout-custom-fields-builder-for-woocommerce/assets/dist/css/upgrade_gopro.css/wp-content/plugins/checkout-custom-fields-builder-for-woocommerce/assets/blocks/build/style-index.css/wp-content/plugins/checkout-custom-fields-builder-for-woocommerce/assets/blocks/build/index.js

Script Paths

/wp-content/plugins/checkout-custom-fields-builder-for-woocommerce/assets/dist/js/admin.js/wp-content/plugins/checkout-custom-fields-builder-for-woocommerce/assets/blocks/build/index.js

Version Parameters

checkout-custom-fields-builder-for-woocommerce/assets/dist/css/admin.css?ver=checkout-custom-fields-builder-for-woocommerce/assets/dist/css/dashboard.css?ver=checkout-custom-fields-builder-for-woocommerce/assets/dist/js/admin.js?ver=checkout-custom-fields-builder-for-woocommerce/assets/dist/css/upgrade_gopro.css?ver=checkout-custom-fields-builder-for-woocommerce/assets/blocks/build/style-index.css?ver=checkout-custom-fields-builder-for-woocommerce/assets/blocks/build/index.js?ver=

HTML / DOM Fingerprints

CSS Classes

ccfbw-unlock-pro-btnccfbw-unlock-wrap-span

JS Globals

ccfbw_settingsccfbw_additional_settingsccfbw_new_fields

FAQ