Does ClearSale Total have any unpatched vulnerabilities?

No. All known vulnerabilities in ClearSale Total have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is ClearSale Total compatible with WordPress 6.9.4?

According to WordPress.org data, ClearSale Total 3.3.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is ClearSale Total compatible with PHP 5.6+?

ClearSale Total requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is ClearSale Total updated?

ClearSale Total was last updated on Mar 3, 2026. Frequent updates are generally a positive security signal.

What is ClearSale Total's security score?

ClearSale Total has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

ClearSale Total Security & Risk Analysis

wordpress.org/plugins/clearsale-total

Integração do WooCommerce com a ClearSale. testado: wordpress 6.9 woocommerce 10.5 Requisitos: php 5.6 ou maior

100 active installs v3.3.2 PHP 5.6+ WP 5.0+ Updated Mar 3, 2026

e-commercefraudfraud-protectionprevent-fake-orderswoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is ClearSale Total Safe to Use in 2026?

Generally Safe

Score 100/100

ClearSale Total has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The clearsale-total plugin v3.3.2 presents a mixed security posture. While the plugin demonstrates good practices in output escaping (96% proper) and does not contain any known critical vulnerabilities or concerning taint flows, significant risks exist due to its unprotected attack surface. Four AJAX handlers lack authentication checks, creating a direct entry point for potential attackers to exploit. Furthermore, the presence of the `unserialize` function, a known dangerous function, within the code, especially without evident sanitization measures highlighted in the taint analysis, warrants caution. The absence of any recorded vulnerabilities in its history is a positive indicator, suggesting the developers may be diligent about security, but this does not negate the immediate risks identified in the static analysis.

Key Concerns

AJAX handlers without authentication
Use of 'unserialize' function
SQL queries not using prepared statements
Missing capability checks

Vulnerabilities

None known

ClearSale Total Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

ClearSale Total Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

78 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$cartao = unserialize($mydata['dados']);includes\class-clearsale-total-checkout.php:381

SQL Query Safety

29% prepared7 total queries

Output Escaping

96% escaped81 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

clearsale_total_push (includes\class-clearsale-total-ajax.php:163)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

ClearSale Total Attack Surface

Entry Points4

Unprotected4

AJAX Handlers 4

noprivwp_ajax_cs_total_mbox_ajax_actionincludes\class-clearsale-total.php:304

authwp_ajax_cs_total_mbox_ajax_actionincludes\class-clearsale-total.php:305

noprivwp_ajax_clearsale_total_pushincludes\class-clearsale-total.php:326

authwp_ajax_clearsale_total_pushincludes\class-clearsale-total.php:327

WordPress Hooks 33

filtercomments_clausesadmin\class-clearsale-total-admin.php:244

actionbefore_woocommerce_initclearsale-total.php:115

actionadmin_noticesincludes\class-clearsale-total-requirements.php:296

actionadmin_initincludes\class-clearsale-total-requirements.php:297

filtercomments_clausesincludes\class-clearsale-total-status.php:221

filtercomments_clausesincludes\class-clearsale-total-status.php:260

actioninitincludes\class-clearsale-total.php:118

filterwc_order_statusesincludes\class-clearsale-total.php:119

actionplugins_loadedincludes\class-clearsale-total.php:251

actionadmin_enqueue_scriptsincludes\class-clearsale-total.php:266

actionadmin_enqueue_scriptsincludes\class-clearsale-total.php:267

actionadmin_initincludes\class-clearsale-total.php:270

actionadmin_menuincludes\class-clearsale-total.php:273

filtermanage_edit-shop_order_columnsincludes\class-clearsale-total.php:281

filtermanage_shop_order_posts_custom_columnincludes\class-clearsale-total.php:283

actionadd_meta_boxesincludes\class-clearsale-total.php:286

actionwp_footerincludes\class-clearsale-total.php:290

actionwoocommerce_order_status_changedincludes\class-clearsale-total.php:298

actionadmin_enqueue_scriptsincludes\class-clearsale-total.php:302

actionadmin_enqueue_scriptsincludes\class-clearsale-total.php:303

actionwp_enqueue_scriptsincludes\class-clearsale-total.php:319

actionwp_enqueue_scriptsincludes\class-clearsale-total.php:320

actionwp_enqueue_scriptsincludes\class-clearsale-total.php:324

actiontemplate_redirectincludes\class-clearsale-total.php:325

actionwoocommerce_before_checkout_formincludes\class-clearsale-total.php:331

actionwoocommerce_pay_order_before_paymentincludes\class-clearsale-total.php:333

actionwoocommerce_checkout_order_processedincludes\class-clearsale-total.php:336

actionwoocommerce_thankyouincludes\class-clearsale-total.php:337

actionwoocommerce_before_thankyouincludes\class-clearsale-total.php:341

actionwoocommerce_payment_completeincludes\class-clearsale-total.php:342

actionwoocommerce_after_order_notesincludes\class-clearsale-total.php:351

actionwoocommerce_checkout_processincludes\class-clearsale-total.php:353

actionwoocommerce_checkout_update_order_metaincludes\class-clearsale-total.php:357

Scheduled Events 1

Cs_total_resend_order

Maintenance & Trust

ClearSale Total Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 3, 2026

PHP min version5.6

Downloads9K

Community Trust

Rating0/100

Number of ratings0

Active installs100

Alternatives

ClearSale Total Alternatives

Fraud Prevention For WooCommerce and EDD

woo-blocker-lite-prevent-fake-orders-and-blacklist-fraud-customers

It will Prevent fake orders and Blacklist fraud customers of your store.

5K 2 CVEs

Blacklist Manager – WooCommerce Anti-Fraud & Checkout Verification & Spam Prevention

wc-blacklist-manager

100

Anti-fraud, checkout verification and spam prevention plugin for WooCommerce and WordPress forms.

2K No CVEs

Zonos Checkout for WooCommerce

zonos-checkout-for-woocommerce

100

Sell more, stress less with a global ecommerce checkout

70 No CVEs

Autentify anti fraud for WooCommerce

autentify-anti-fraud-for-woocommerce

AUTENTIFY é uma plataforma de prevenção a fraude em tempo real que ajuda comerciantes de todos os tamanhos na tomada de decisão.

10 No CVEs

Techie PAN Card Integration for e-Shops

techie-pan-card-integration-for-e-shops

100

Integrates PAN card verification for e-commerce orders with customizable settings in WooCommerce.

0 No CVEs

Developer Profile

ClearSale Total Developer Profile

Clear Sale

1 plugin · 100 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect ClearSale Total

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/clearsale-total/admin/css/clearsale-total-admin.css/wp-content/plugins/clearsale-total/admin/js/clearsale-total-admin.js

Script Paths

/wp-content/plugins/clearsale-total/admin/js/clearsale-total-admin.js

Version Parameters

clearsale-total/admin/css/clearsale-total-admin.css?ver=clearsale-total/admin/js/clearsale-total-admin.js?ver=

HTML / DOM Fingerprints

FAQ