Does Conditional Discounts for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Conditional Discounts for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Conditional Discounts for WooCommerce compatible with WordPress 6.7.5?

According to WordPress.org data, Conditional Discounts for WooCommerce 1.0.0 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Conditional Discounts for WooCommerce compatible with PHP 7.0+?

Conditional Discounts for WooCommerce requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Conditional Discounts for WooCommerce updated?

Conditional Discounts for WooCommerce was last updated on Mar 21, 2025. Frequent updates are generally a positive security signal.

What is Conditional Discounts for WooCommerce's security score?

Conditional Discounts for WooCommerce has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Conditional Discounts for WooCommerce Security & Risk Analysis

wordpress.org/plugins/conditional-discounts-for-woocommerce

Boost sales with rule-based WooCommerce discounts. Offer targeted deals based on cart totals, products, and user roles.

10 active installs v1.0.0 PHP 7.0+ WP 5.0+ Updated Mar 21, 2025

conditional-discountscoupondiscountsdynamic-pricingwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Conditional Discounts for WooCommerce Safe to Use in 2026?

Generally Safe

Score 92/100

Conditional Discounts for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The plugin "conditional-discounts-for-woocommerce" v1.0.0 exhibits a mixed security posture. On the positive side, the code analysis reveals a strong adherence to secure coding practices in several areas. Notably, there are no direct SQL queries that do not use prepared statements, all file operations are absent, and external HTTP requests are not made. The overwhelming majority of output is properly escaped, and the plugin utilizes WordPress's nonce and capability checks for many of its entry points. The absence of any recorded vulnerabilities in its history is also a significant strength, suggesting a developer who is either diligent in their security practices or has not yet encountered exploitable flaws.

However, a critical concern arises from the attack surface analysis. The plugin exposes two AJAX handlers, and alarmingly, both of these lack authentication checks. This means any user, regardless of their logged-in status or role, could potentially trigger these AJAX actions, opening a significant door for attackers. While taint analysis did not reveal any immediate issues, the presence of unprotected AJAX endpoints is a serious risk, as it bypasses crucial authorization and validation mechanisms. The use of a bundled library (Select2) could also be a minor concern if it is outdated, though this is not explicitly stated in the provided data. The overall risk is elevated due to these unprotected entry points, despite the plugin's otherwise good practices.

Key Concerns

AJAX handlers without authentication checks
AJAX handlers without authentication checks
Bundled library (Select2) potentially outdated

Vulnerabilities

None known

Conditional Discounts for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Conditional Discounts for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

72 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2

Output Escaping

97% escaped74 total outputs

Attack Surface

2 unprotected

Conditional Discounts for WooCommerce Attack Surface

Entry Points2

Unprotected2

AJAX Handlers 2

authwp_ajax_cdwc_search_productsincludes\Admin\AdminInterface.php:12

authwp_ajax_cdwc_search_taxonomyincludes\Admin\AdminInterface.php:13

WordPress Hooks 11

actionbefore_woocommerce_initconditional-discounts-for-woocommerce.php:23

actionwoocommerce_loadedconditional-discounts-for-woocommerce.php:29

actionadd_meta_boxesincludes\Admin\AdminInterface.php:10

actioninitincludes\Admin\AdminInterface.php:11

actionsave_post_shop_discountincludes\Admin\AdminInterface.php:14

actionwoocommerce_cart_calculate_feesincludes\DiscountApplier.php:8

actionwoocommerce_order_status_completedincludes\DiscountApplier.php:9

actionwoocommerce_order_status_processingincludes\DiscountApplier.php:10

actionwoocommerce_order_refundedincludes\DiscountApplier.php:12

actionwoocommerce_order_partially_refundedincludes\DiscountApplier.php:13

filterpost_updated_messagesincludes\PluginActions.php:9

Maintenance & Trust

Conditional Discounts for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedMar 21, 2025

PHP min version7.0

Downloads344

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Conditional Discounts for WooCommerce Alternatives

Discount Rules for WooCommerce

woo-discount-rules

The discount plugin for WooCommerce helps you create bulk discount, quantity discount, storewide sale, dynamic pricing discount offers easily.

100K 4 CVEs

Advanced Dynamic Pricing and Discount Rules for WooCommerce

advanced-dynamic-pricing-for-woocommerce

The discount plugin for WooCommerce supports any dynamic pricing discount: bulk discount, role discount, storewide, bogo, gifts, cart discount

20K 7 CVEs

Coupon Rules for WooCommerce – Create WooCommerce Coupons & Discounts, BOGO Coupons

coupon-rules

100

The plugin allows to give discounted product using coupon code.

0 No CVEs

SwiftRules – Conditional Discounts for WooCommerce

swiftrules-conditional-discounts-for-woocommerce

100

Create conditional discounts, fees, and cart rules for WooCommerce using a flexible rule engine.

0 No CVEs

Smart Coupons For WooCommerce Coupons

wt-smart-coupons-for-woocommerce

Best WooCommerce coupons plugin to create advanced coupons and discount codes with auto-apply, BOGO, free shipping, giveaways, and discount rules.

30K 1 CVE

Developer Profile

Conditional Discounts for WooCommerce Developer Profile

Amir Candido

2 plugins · 30 total installs

trust score

Avg Security Score

96/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Conditional Discounts for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/conditional-discounts-for-woocommerce/assets/select2.full.min.js/wp-content/plugins/conditional-discounts-for-woocommerce/assets/select2.min.css/wp-content/plugins/conditional-discounts-for-woocommerce/assets/cdwc-admin.css/wp-content/plugins/conditional-discounts-for-woocommerce/assets/cdwc-admin.min.css/wp-content/plugins/conditional-discounts-for-woocommerce/assets/cdwc-admin.js/wp-content/plugins/conditional-discounts-for-woocommerce/assets/cdwc-admin.min.js

Script Paths

Version Parameters

conditional-discounts-for-woocommerce/assets/cdwc-admin.css?ver=conditional-discounts-for-woocommerce/assets/cdwc-admin.min.css?ver=

HTML / DOM Fingerprints

CSS Classes

cdwc-rule-fieldcdwc-discount-rules-formcdwc-product-search-wrappercdwc-taxonomy-search-wrappercdwc-discount-type-fieldcdwc-value-type-field

Data Attributes

data-post-iddata-noncedata-ajax-url

JS Globals

cdwc_ajax_object

REST Endpoints

/wp-json/cdwc/v1/search/products/wp-json/cdwc/v1/search/categories/wp-json/cdwc/v1/search/brands

FAQ