WP-Safety

Checkout Field Editor for WooCommerce – Checkout Manager Security & Risk Analysis

wordpress.org/plugins/checkout-field-editor-and-manager-for-woocommerce

WooCommerce checkout field editor and manager helps to manage checkout fields in WooCommerce

20K active installs v3.0.2 PHP + WP 4.0+ Updated Feb 10, 2026
checkout-field-customizercheckout-form-designercheckout-form-editorwoocommerce-checkout-field-managerwoocommerce-custom-checkout-fields
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Checkout Field Editor for WooCommerce – Checkout Manager Safe to Use in 2026?

Generally Safe

Score 100/100

Checkout Field Editor for WooCommerce – Checkout Manager has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago
Risk Assessment

The plugin exhibits a generally strong security posture with several positive indicators. The absence of known vulnerabilities and a clean slate in terms of taint analysis are significant strengths. Furthermore, the plugin demonstrates good practices by exclusively using prepared statements for SQL queries and having a high percentage of properly escaped output, mitigating common risks like SQL injection and XSS. The adherence to capability checks also suggests a structured approach to access control.

However, a notable concern arises from the presence of two AJAX handlers that lack authentication checks. This creates a direct attack surface for potentially unauthorized actions. While the static analysis did not reveal dangerous functions, raw SQL, or file operations, the lack of authentication on these entry points is a primary risk. The vulnerability history being clean is encouraging but should be viewed in conjunction with the identified attack surface, as even simple vulnerabilities could be leveraged if they existed. Overall, the plugin is well-developed with good internal security practices, but the unprotected AJAX endpoints require immediate attention to harden its security profile.

Key Concerns

  • AJAX handlers without auth checks
  • No nonce checks on AJAX
Vulnerabilities
None known

Checkout Field Editor for WooCommerce – Checkout Manager Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Checkout Field Editor for WooCommerce – Checkout Manager Release Timeline

v3.0.2Current
v3.0.1
v3.0.0
v2.3.3
v2.3.2
v2.3.1
v2.3.0
v2.2.26
v2.2.25
v2.2.24
v2.2.23
v2.2.22
v2.2.21
v2.2.20
v2.2.19
v2.2.18
v2.2.17
v2.2.16
v2.2.15
v2.2.14
Code Analysis
Analyzed Mar 16, 2026

Checkout Field Editor for WooCommerce – Checkout Manager Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
10
40 escaped
Nonce Checks
0
Capability Checks
8
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

80% escaped50 total outputs
Attack Surface
2 unprotected

Checkout Field Editor for WooCommerce – Checkout Manager Attack Surface

Entry Points14
Unprotected2

AJAX Handlers 2

noprivwp_ajax_awcfe_ratingincludes\class-awcfe-backend.php:112
authwp_ajax_awcfe_ratingincludes\class-awcfe-backend.php:113

REST API Routes 12

GET/wp-json/aco-wc-checkout/v1/settingsincludes\class-aco-wc-checkout-store-api.php:49
POST/wp-json/aco-wc-checkout/v1/settingsincludes\class-aco-wc-checkout-store-api.php:57
GET/wp-json/aco-wc-checkout/v1/default-fieldsincludes\class-aco-wc-checkout-store-api.php:81
POST/wp-json/aco-wc-checkout/v1/default-fieldsincludes\class-aco-wc-checkout-store-api.php:89
POST/wp-json/aco-wc-checkout/v1/reset_custom-fieldsincludes\class-aco-wc-checkout-store-api.php:98
POST/wp-json/aco-wc-checkout/v1/reset_default-fieldsincludes\class-aco-wc-checkout-store-api.php:107
GET/wp-json/awcfe/v1/fields/includes\class-awcfe-api.php:28
POST/wp-json/awcfe/v1/save/includes\class-awcfe-api.php:34
POST/wp-json/awcfe/v1/awcfe_reset_all/includes\class-awcfe-api.php:40
POST/wp-json/awcfe/v1/awcfe_adv_settings/includes\class-awcfe-api.php:46
GET/wp-json/awcfe/v1/awcfe_adv_settings/(?P<id>\d+)includes\class-awcfe-api.php:51
GET/wp-json/awcfe/v1/awcfe_settings_load/includes\class-awcfe-api.php:57
WordPress Hooks 70
actionadmin_menuincludes\class-aco-wc-checkout-admin.php:8
actionadmin_enqueue_scriptsincludes\class-aco-wc-checkout-admin.php:9
actionadmin_headincludes\class-aco-wc-checkout-admin.php:24
actionwoocommerce_blocks_loadedincludes\class-aco-wc-checkout-block.php:11
actionwoocommerce_admin_order_data_after_order_detailsincludes\class-aco-wc-checkout-block.php:12
actioninitincludes\class-aco-wc-checkout-block.php:13
actionwoocommerce_store_api_checkout_update_order_from_requestincludes\class-aco-wc-checkout-block.php:18
actionwoocommerce_blocks_checkout_block_registrationincludes\class-aco-wc-checkout-block.php:19
actionwoocommerce_blocks_checkout_block_registrationincludes\class-aco-wc-checkout-block.php:31
filterwoocommerce_blocks_register_checkout_fieldincludes\class-aco-wc-checkout-integration.php:26
actionrest_api_initincludes\class-aco-wc-checkout-store-api.php:14
actionrest_api_initincludes\class-aco-wc-checkout-store-api.php:48
filterapifw_invoice_custom_billing_fieldsincludes\class-awcfe-aco-pdf-invoice.php:31
filterapifw_invoice_custom_shipping_fieldsincludes\class-awcfe-aco-pdf-invoice.php:32
filterapifw_ps_custom_billing_fieldsincludes\class-awcfe-aco-pdf-invoice.php:34
filterapifw_ps_custom_shipping_fieldsincludes\class-awcfe-aco-pdf-invoice.php:35
filterapifw_dn_custom_billing_fieldsincludes\class-awcfe-aco-pdf-invoice.php:37
filterapifw_dn_custom_shipping_fieldsincludes\class-awcfe-aco-pdf-invoice.php:38
filterapifw_dl_custom_billing_fieldsincludes\class-awcfe-aco-pdf-invoice.php:40
filterapifw_dl_custom_shipping_fieldsincludes\class-awcfe-aco-pdf-invoice.php:41
filterapifw_cn_custom_billing_fieldsincludes\class-awcfe-aco-pdf-invoice.php:43
filterapifw_cn_custom_shipping_fieldsincludes\class-awcfe-aco-pdf-invoice.php:44
filterapifw_sl_custom_shipping_fieldsincludes\class-awcfe-aco-pdf-invoice.php:46
actionrest_api_initincludes\class-awcfe-api.php:27
actionadmin_menuincludes\class-awcfe-backend.php:95
actionadmin_enqueue_scriptsincludes\class-awcfe-backend.php:96
actionadmin_enqueue_scriptsincludes\class-awcfe-backend.php:97
action‌woocommerce_before_order_object_saveincludes\class-awcfe-backend.php:102
actioninitincludes\class-awcfe-backend.php:109
actionadmin_noticesincludes\class-awcfe-backend.php:110
actionadmin_headincludes\class-awcfe-backend.php:111
actionadmin_footerincludes\class-awcfe-backend.php:116
actionplugins_loadedincludes\class-awcfe-backend.php:118
actionadmin_enqueue_scriptsincludes\class-awcfe-backend.php:119
filterwoocommerce_checkout_fieldsincludes\class-awcfe-front-end.php:55
filterwoocommerce_get_country_locale_defaultincludes\class-awcfe-front-end.php:57
filterwoocommerce_get_country_locale_baseincludes\class-awcfe-front-end.php:58
filterwoocommerce_get_country_localeincludes\class-awcfe-front-end.php:59
actionwoocommerce_checkout_update_order_metaincludes\class-awcfe-front-end.php:61
actionwoocommerce_form_fieldincludes\class-awcfe-front-end.php:62
actionwoocommerce_order_details_after_order_tableincludes\class-awcfe-front-end.php:63
actionwoocommerce_email_after_order_tableincludes\class-awcfe-front-end.php:64
actionwoocommerce_admin_order_data_after_billing_addressincludes\class-awcfe-front-end.php:68
filterwoocommerce_form_field_checkboxincludes\class-awcfe-front-end.php:70
actionwoocommerce_admin_order_data_after_shipping_addressincludes\class-awcfe-front-end.php:72
actionupdated_post_metaincludes\class-awcfe-front-end.php:73
actionsave_postincludes\class-awcfe-front-end.php:76
actionwoocommerce_process_shop_order_metaincludes\class-awcfe-front-end.php:78
actionwoocommerce_after_checkout_validationincludes\class-awcfe-front-end.php:83
actionwoocommerce_after_checkout_validationincludes\class-awcfe-front-end.php:85
actionwp_enqueue_scriptsincludes\class-awcfe-front-end.php:90
filterwoocommerce_is_rest_api_requestincludes\class-awcfe-front-end.php:91
actionwoocommerce_before_checkout_formincludes\class-awcfe-front-end.php:94
filterwoocommerce_ship_to_different_address_checkedincludes\class-awcfe-front-end.php:95
filterwoocommerce_cart_needs_shipping_addressincludes\class-awcfe-front-end.php:96
filterwoocommerce_order_needs_shipping_addressincludes\class-awcfe-front-end.php:97
filtergettextincludes\class-awcfe-front-end.php:98
actionwp_headincludes\class-awcfe-front-end.php:99
filterwoocommerce_create_account_default_checkedincludes\class-awcfe-front-end.php:100
actioninitincludes\class-awcfe-front-end.php:101
actioninitincludes\class-awcfe-front-end.php:102
filteroption_woocommerce_ship_to_destinationincludes\class-awcfe-front-end.php:103
actioninitincludes\class-awcfe-front-end.php:104
actionwoocommerce_get_terms_and_conditions_checkbox_textincludes\class-awcfe-front-end.php:1152
actionplugins_loadedstart.php:58
actionbefore_woocommerce_initstart.php:68
actionbefore_woocommerce_initstart.php:75
actioninitstart.php:99
actionbefore_woocommerce_initstart.php:118
actionplugins_loadedstart.php:130
Maintenance & Trust

Checkout Field Editor for WooCommerce – Checkout Manager Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 10, 2026
PHP min version
Downloads628K

Community Trust

Rating98/100
Number of ratings161
Active installs20K
Alternatives

Checkout Field Editor for WooCommerce – Checkout Manager Alternatives

Checkout Field Builder (Checkout Field Editor & Manager) for WooCommerce

Checkout Field Builder (Checkout Field Editor & Manager) for WooCommerce

checkout-field-builder-checkout-manager-for-woocommerce

A
92

Checkout Field Builder - The best WooCommerce checkout filed editor & manager plugin to customize checkout fields on your WooCommerce checkout page.

0 No CVEs
Checkout Field Manager (Checkout Manager) for WooCommerce

Checkout Field Manager (Checkout Manager) for WooCommerce

woocommerce-checkout-manager

A
92

Checkout Field Manager (Checkout Manager) for WooCommerce is the most advanced plugin to customize checkout fields on your WooCommerce checkout page.

90K 5 CVEs
Flexible Checkout Fields for WooCommerce – WooCommerce Checkout Manager

Flexible Checkout Fields for WooCommerce – WooCommerce Checkout Manager

flexible-checkout-fields

A
99

The best WooCommerce checkout manager. Edit, remove or add checkout fields. Customize WooCommerce checkout with this checkout field customizer.

80K 2 CVEs
FEWC – Extra Checkout Fields For WooCommerce

FEWC – Extra Checkout Fields For WooCommerce

fewc-extra-checkout-fields-for-woocommerce

A
100

Easily customize your checkout page: add custom fields, enable/disable fields, rearrange their positions, and preview changes in the WP Customizer

700 No CVEs
Checkout Field Editor and Manager for WooCommerce

Checkout Field Editor and Manager for WooCommerce

extra-checkout-fields-for-woocommerce

A
92

A simple WooCommerce Checkout Field Editor and Manager plugin to edit WooCommerce checkout fields, add custom checkout fields and more.

200 No CVEs
Developer Profile

Checkout Field Editor for WooCommerce – Checkout Manager Developer Profile

acowebs

14 plugins · 74K total installs

86
trust score
Avg Security Score
97/100
Avg Patch Time
77 days
View full developer profile
Detection Fingerprints

How We Detect Checkout Field Editor for WooCommerce – Checkout Manager

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/checkout-field-editor-and-manager-for-woocommerce/block-assets/admin/admin-index.js/wp-content/plugins/checkout-field-editor-and-manager-for-woocommerce/block-assets/admin/admin-index.css
Script Paths
/wp-content/plugins/checkout-field-editor-and-manager-for-woocommerce/block-assets/admin/admin-index.js
Version Parameters
checkout-field-editor-and-manager-for-woocommerce/block-assets/admin/admin-index.js?ver=checkout-field-editor-and-manager-for-woocommerce/block-assets/admin/admin-index.css?ver=

HTML / DOM Fingerprints

CSS Classes
aco-wc-checkout-admin-root
JS Globals
acoWcCheckoutSettings
REST Endpoints
/wp-json/aco-wc-checkout/v1/settings
FAQ

Frequently Asked Questions about Checkout Field Editor for WooCommerce – Checkout Manager