Does Checkout Field Visibility for eCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Checkout Field Visibility for eCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Checkout Field Visibility for eCommerce compatible with WordPress 6.8.5?

According to WordPress.org data, Checkout Field Visibility for eCommerce 1.5.0 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Checkout Field Visibility for eCommerce compatible with PHP 7.0+?

Checkout Field Visibility for eCommerce requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Checkout Field Visibility for eCommerce updated?

Checkout Field Visibility for eCommerce was last updated on Dec 20, 2025. Frequent updates are generally a positive security signal.

What is Checkout Field Visibility for eCommerce's security score?

Checkout Field Visibility for eCommerce has a WP-Safety security score of 95/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Checkout Field Visibility for eCommerce Security & Risk Analysis

wordpress.org/plugins/checkout-field-visibility-for-woocommerce

Allows for the hiding of billing and shipping fields, based on the relevant conditional rule set(s) defined.

70 active installs v1.5.0 PHP 7.0+ WP 5.0.0+ Updated Dec 20, 2025

billingcheckout-fieldecommerceshippingzamartz

A · Safe

CVEs total1

Unpatched0

Last CVEApr 21, 2025

Plugin page Download

Safety Verdict

Is Checkout Field Visibility for eCommerce Safe to Use in 2026?

Generally Safe

Score 95/100

Checkout Field Visibility for eCommerce has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Apr 21, 2025Updated 3mo ago

Risk Assessment

The plugin 'checkout-field-visibility-for-woocommerce' v1.5.0 presents a mixed security posture. While the static analysis indicates a lack of critical taint flows and dangerous functions, significant concerns arise from its unprotected attack surface and poor output escaping. The presence of 7 unprotected AJAX handlers opens the door to potential unauthorized actions or information disclosure. Furthermore, a mere 4% of outputs being properly escaped is a substantial weakness, increasing the risk of cross-site scripting (XSS) vulnerabilities. The vulnerability history, with one critical 'PHP Remote File Inclusion' CVE, is a stark warning, especially given its recent discovery. While it is currently unpatched, this indicates a recurring pattern of severe vulnerabilities in the past, suggesting a need for rigorous and consistent security practices. The plugin's strengths lie in its absence of bundled libraries and limited file operations, but these are overshadowed by the critical risks identified in its entry points and output handling.

Key Concerns

Unprotected AJAX handlers
Low percentage of properly escaped output
1 critical CVE, recently discovered
SQL queries without prepared statements
Missing capability checks

Vulnerabilities

Checkout Field Visibility for eCommerce Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Critical

1 total CVE

CVE-2025-39391critical · 9.8Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

Checkout Field Visibility for WooCommerce <= 1.3.0 - Unauthenticated Local File Inclusion

Apr 21, 2025 Patched in 1.4.0 (186d)

Code Analysis

Analyzed Mar 16, 2026

Checkout Field Visibility for eCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared1 total queries

Output Escaping

4% escaped90 total outputs

Attack Surface

7 unprotected

Checkout Field Visibility for eCommerce Attack Surface

Entry Points10

Unprotected7

AJAX Handlers 10

authwp_ajax_get_form_operator_dropdown_ajaxadmin\class-wp-checkout-vis-fields-woo-settings.php:110

authwp_ajax_woo_checkout_vis_field_form_data_ajaxadmin\class-wp-checkout-vis-fields-woo-settings.php:111

authwp_ajax_woo_checkout_get_form_section_ajaxadmin\class-wp-checkout-vis-fields-woo-settings.php:112

authwp_ajax_woo_checkout_product_variationadmin\class-wp-checkout-vis-fields-woo-settings.php:113

authwp_ajax_woo_checkout_coupon_is_appliedadmin\class-wp-checkout-vis-fields-woo-settings.php:114

authwp_ajax_woo_checkout_get_network_api_status_ajaxadmin\class-zamartz-network-admin-addons.php:79

authwp_ajax_woo_checkout_network_addon_form_data_ajaxadmin\class-zamartz-network-admin-addons.php:82

authwp_ajax_zamartz_review_now_ajaxadmin\class-zamartz-network-admin-addons.php:85

authwp_ajax_wp_zamartz_admin_event_tracker_ajaxadmin\zamartz\class-wp-woo-main-zamartz-admin.php:103

authwp_ajax_wp_zamartz_admin_general_form_data_ajaxadmin\zamartz\class-wp-woo-main-zamartz-admin.php:106

WordPress Hooks 51

actionadmin_footeradmin\class-wp-checkout-vis-fields-woo-settings.php:85

filterposts_whereadmin\class-wp-checkout-vis-fields-woo-settings.php:91

filterwoocommerce_get_sections_shippingadmin\class-wp-checkout-vis-fields-woo-settings.php:97

filterwoocommerce_get_settings_shippingadmin\class-wp-checkout-vis-fields-woo-settings.php:98

filterwoocommerce_settings_tabs_arrayadmin\class-wp-checkout-vis-fields-woo-settings.php:105

actionwoocommerce_settings_tabs_billing_field_visibilityadmin\class-wp-checkout-vis-fields-woo-settings.php:106

filterzamartz_dashboard_accordion_informationadmin\class-zamartz-admin-addons.php:74

filterzamartz_dashboard_accordion_settingsadmin\class-zamartz-admin-addons.php:77

filterzamartz_settings_subnavadmin\class-zamartz-admin-addons.php:80

actionzamartz_admin_addon_informationadmin\class-zamartz-admin-addons.php:83

actionzamartz_admin_addon_settingsadmin\class-zamartz-admin-addons.php:86

filtercron_schedulesadmin\class-zamartz-admin-addons.php:101

actionzamartz_api_cron_schedule_twice_monthlyadmin\class-zamartz-admin-addons.php:104

filtercron_schedulesadmin\class-zamartz-admin-addons.php:107

actionzamartz_api_cron_schedule_admin_noticeadmin\class-zamartz-admin-addons.php:110

actionadmin_noticesadmin\class-zamartz-admin-addons.php:113

filterzamartz_plugin_statusadmin\class-zamartz-admin-status.php:44

filterzamartz_network_dashboard_accordion_informationadmin\class-zamartz-network-admin-addons.php:64

filterzamartz_network_dashboard_accordion_settingsadmin\class-zamartz-network-admin-addons.php:67

filterzamartz_network_dashboard_active_addons_site_listadmin\class-zamartz-network-admin-addons.php:70

actionzamartz_network_addon_settingsadmin\class-zamartz-network-admin-addons.php:73

actionzamartz_network_addon_informationadmin\class-zamartz-network-admin-addons.php:76

filterzamartz_network_is_remove_adsadmin\class-zamartz-network-admin-addons.php:88

actionadmin_enqueue_scriptsadmin\zamartz\class-wp-woo-main-zamartz-admin.php:59

actionadmin_enqueue_scriptsadmin\zamartz\class-wp-woo-main-zamartz-admin.php:60

actionadmin_menuadmin\zamartz\class-wp-woo-main-zamartz-admin.php:89

actionnetwork_admin_menuadmin\zamartz\class-wp-woo-main-zamartz-admin.php:92

actionadmin_noticesadmin\zamartz\class-wp-woo-main-zamartz-admin.php:99

filterzamartz_is_remove_adsadmin\zamartz\helper\trait-zamartz-general.php:227

filterwp_feed_cache_transient_lifetimeadmin\zamartz\helper\trait-zamartz-rss-methods.php:107

filterplugins_loadedincludes\class-wp-checkout-vis-fields-woo.php:142

filterplugins_loadedincludes\class-wp-checkout-vis-fields-woo.php:143

actionnetwork_admin_noticesincludes\class-wp-checkout-vis-fields-woo.php:147

actionadmin_noticesincludes\class-wp-checkout-vis-fields-woo.php:149

actionplugins_loadedincludes\class-wp-checkout-vis-fields-woo.php:267

actionadmin_enqueue_scriptsincludes\class-wp-checkout-vis-fields-woo.php:282

actionadmin_enqueue_scriptsincludes\class-wp-checkout-vis-fields-woo.php:283

actionwp_enqueue_scriptsincludes\class-wp-checkout-vis-fields-woo.php:298

actionwp_enqueue_scriptsincludes\class-wp-checkout-vis-fields-woo.php:299

actionadmin_initincludes\class-wp-checkout-vis-fields-woo.php:401

filterwoocommerce_billing_fieldspublic\class-woo-checkout-vis-fields-front.php:91

filterwoocommerce_shipping_fieldspublic\class-woo-checkout-vis-fields-front.php:96

actionwp_footerpublic\class-woo-checkout-vis-fields-front.php:99

filterwoocommerce_shipping_fieldspublic\class-woo-checkout-vis-fields-front.php:102

filterwoocommerce_checkout_show_termspublic\class-woo-checkout-vis-fields-front.php:106

actionwoocommerce_after_checkout_validationpublic\class-woo-checkout-vis-fields-front.php:109

filterwoocommerce_checkout_registration_enabledpublic\class-woo-checkout-vis-fields-front.php:630

filterwoocommerce_checkout_registration_enabledpublic\class-woo-checkout-vis-fields-front.php:633

filterwoocommerce_checkout_registration_requiredpublic\class-woo-checkout-vis-fields-front.php:634

filterwoocommerce_create_account_default_checkedpublic\class-woo-checkout-vis-fields-front.php:635

actionwoocommerce_after_checkout_validationpublic\class-woo-checkout-vis-fields-front.php:640

Maintenance & Trust

Checkout Field Visibility for eCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedDec 20, 2025

PHP min version7.0

Downloads4K

Community Trust

Rating0/100

Number of ratings0

Active installs70

Alternatives

Checkout Field Visibility for eCommerce Alternatives

Remove Checkout Fields for Woocommerce

remove-default-checkout-fields-for-woocommerce

Remove Fields from woocommerce Checkout page

1K No CVEs

DHL Shipping Germany for WooCommerce

dhl-for-woocommerce

100

Automate e-commerce orders with Official DHL for WooCommerce. Covers DHL Paket and Deutsche Post International.

4K No CVEs

The Courier Guy Shipping for WooCommerce

the-courier-guy

100

This is the official WooCommerce extension to ship products using The Courier Guy.

3K No CVEs

AppScenic – Smart AI Dropshipping

appscenic

Expand your store catalogue with no upfront inventory cost. Source high-quality products from verified domestic suppliers and use AI in the process.

2K No CVEs

CDEKDelivery

cdekdelivery

100

Integration with CDEK delivery for your WooCommerce store.

2K No CVEs

Developer Profile

Checkout Field Visibility for eCommerce Developer Profile

zamartz

3 plugins · 80 total installs

trust score

Avg Security Score

98/100

Avg Patch Time

186 days

View full developer profile

Detection Fingerprints

How We Detect Checkout Field Visibility for eCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/checkout-field-visibility-for-woocommerce/css/wp-checkout-vis-fields-woo-admin.css/wp-content/plugins/checkout-field-visibility-for-woocommerce/js/wp-checkout-vis-fields-woo-admin.js

Script Paths

admin/js/wp-checkout-vis-fields-woo-admin.js

Version Parameters

checkout-field-visibility-for-woocommerce/css/wp-checkout-vis-fields-woo-admin.css?ver=checkout-field-visibility-for-woocommerce/js/wp-checkout-vis-fields-woo-admin.js?ver=

HTML / DOM Fingerprints

JS Globals

woo_checkout_localized_object

FAQ