Does Craftwork Utilities for Woocommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Craftwork Utilities for Woocommerce compatible with WordPress 5.8.13?

According to WordPress.org data, Craftwork Utilities for Woocommerce 1.3.3 has been tested up to WordPress 5.8.13. Check the plugin's changelog for the latest compatibility information.

Is Craftwork Utilities for Woocommerce compatible with PHP 7.2+?

Craftwork Utilities for Woocommerce requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Craftwork Utilities for Woocommerce updated?

Craftwork Utilities for Woocommerce was last updated on Oct 11, 2021. Frequent updates are generally a positive security signal.

What is Craftwork Utilities for Woocommerce's security score?

Craftwork Utilities for Woocommerce has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Craftwork Utilities for Woocommerce Security & Risk Analysis

wordpress.org/plugins/craftwork-utilities-for-woocommerce

Craftwork Utilities is a plugin to enhance woocommerce shop flow for example replace add to cart button with view details, checkout and login flow.

0 active installs v1.3.3 PHP 7.2+ WP 5.8+ Updated Oct 11, 2021

enhancementwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Craftwork Utilities for Woocommerce Safe to Use in 2026?

Generally Safe

Score 85/100

Craftwork Utilities for Woocommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The "craftwork-utilities-for-woocommerce" v1.3.3 plugin exhibits a very strong security posture based on the provided static analysis and vulnerability history. The complete absence of entry points (AJAX handlers, REST API routes, shortcodes, cron events) is a significant strength, drastically limiting the potential attack surface. Furthermore, the code demonstrates good practices by not using dangerous functions, handling all SQL queries with prepared statements, and having no file operations or external HTTP requests. The high percentage of properly escaped output is also commendable.

The lack of any identified taint flows, including those with unsanitized paths, is excellent. The vulnerability history is also clean, with zero known CVEs, indicating a likely robust development and patching process or that the plugin has historically not been a target or susceptible to common vulnerabilities. The complete absence of nonce checks and capability checks is notable but less of a concern given the lack of exploitable entry points.

In conclusion, this plugin appears to be very secure. The primary weakness, if it can be called that, is the absence of any observable security checks like nonces or capability checks, but this is mitigated by the lack of exposed functionality that would necessitate them. The plugin's design effectively minimizes risks by not providing direct attack vectors.

Key Concerns

Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Craftwork Utilities for Woocommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Craftwork Utilities for Woocommerce Release Timeline

v1.3.3Current

v1.3.2

v1.3.1

v1.3.0

v1.2.1

v1.2.0

v1.1.1

v1.1.0

v1.0.0

v0.0.9

Code Analysis

Analyzed Mar 17, 2026

Craftwork Utilities for Woocommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

11 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

85% escaped13 total outputs

Attack Surface

Craftwork Utilities for Woocommerce Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 23

actioninitincludes\class-cwut-core.php:40

actioninitincludes\class-cwut-core.php:45

actioninitincludes\class-cwut-core.php:50

actionwp_enqueue_scriptsincludes\class-cwut-core.php:55

filterwoocommerce_get_settings_pagesincludes\class-cwut-core.php:60

filterwoocommerce_loop_add_to_cart_linkincludes\class-cwut-core.php:65

filterwoocommerce_blocks_product_grid_item_htmlincludes\class-cwut-core.php:70

filterwoocommerce_product_single_add_to_cart_textincludes\class-cwut-core.php:75

filterwoocommerce_currency_symbolincludes\class-cwut-core.php:80

filterwoocommerce_login_redirectincludes\class-cwut-core.php:85

filterwoocommerce_add_to_cart_redirectincludes\class-cwut-core.php:91

filterwoocommerce_add_to_cart_validationincludes\class-cwut-core.php:96

actionwoocommerce_review_order_before_paymentincludes\class-cwut-core.php:101

filterwoocommerce_return_to_shop_redirectincludes\class-cwut-core.php:106

filterwoocommerce_continue_shopping_redirectincludes\class-cwut-core.php:107

actionwoocommerce_product_options_general_product_dataincludes\class-cwut-product-custom-fields.php:16

actionwoocommerce_process_product_metaincludes\class-cwut-product-custom-fields.php:18

filterwoocommerce_get_price_htmlincludes\class-cwut-product-custom-fields.php:21

actionwoocommerce_variation_options_pricingincludes\class-cwut-variation.php:32

actionwoocommerce_save_product_variationincludes\class-cwut-variation.php:33

filterwoocommerce_available_variationincludes\class-cwut-variation.php:34

actionwp_enqueue_scriptsincludes\class-cwut-variation.php:35

actionadmin_enqueue_scriptsincludes\class-cwut-variation.php:36

Maintenance & Trust

Craftwork Utilities for Woocommerce Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13

Last updatedOct 11, 2021

PHP min version7.2

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Craftwork Utilities for Woocommerce Alternatives

Total Price in Words for WooCommerce

total-price-in-words-for-woocommerce

Enhance WooCommerce by displaying total prices in words, improving clarity and accessibility for customers.

10 No CVEs

Sold Unit Display for Woocommerce

wc-sold-unit-display

Sold Unit Display for Woocommerce is the plugin to show total product sold number and unit (for purchased products) on your Woocommerce shop page and …

10 No CVEs

BuildIn3D for Woocommerce

buildin3d-for-woocommerce

Show 3D Animated Models as a product image in your woocommerce product in just 30 seconds.

0 No CVEs

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 59 CVEs

Limit Login Attempts Reloaded – Login Security, 2FA, Brute Force Protection & Firewall

limit-login-attempts-reloaded

Stop password guessing attacks, secure WooCommerce, block bad IPs, block by countries (Pro), and add email 2FA. Lightweight with better performance.

2.0M 4 CVEs

Developer Profile

Craftwork Utilities for Woocommerce Developer Profile

palagorn.p

3 plugins · 20 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Craftwork Utilities for Woocommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/craftwork-utilities-for-woocommerce/assets/css/craftwork-wc-front.css

Version Parameters

craftwork-utilities-for-woocommerce/assets/css/craftwork-wc-front.css?ver=

HTML / DOM Fingerprints

Data Attributes

cwut_product_enable_replace_add_to_cartcwut_product_view_details_textcwut_product_enable_replace_single_add_to_cart_textcwut_product_replace_single_add_to_cart_textcwut_product_enable_replace_currency_symbolcwut_product_currency_symbol_text+10 more

FAQ