Does SysBasics Customize My Account for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in SysBasics Customize My Account for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is SysBasics Customize My Account for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, SysBasics Customize My Account for WooCommerce 3.8.7 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is SysBasics Customize My Account for WooCommerce compatible with PHP 5.2+?

SysBasics Customize My Account for WooCommerce requires PHP 5.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is SysBasics Customize My Account for WooCommerce's security score?

SysBasics Customize My Account for WooCommerce has a WP-Safety security score of 98/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SysBasics Customize My Account for WooCommerce Security & Risk Analysis

wordpress.org/plugins/customize-my-account-for-woocommerce

Optimize your WooCommerce My account page also add new endpoints and manage existing endpoints with ease.

9K active installs v3.8.7 PHP 5.2+ WP 3.3+ Updated Mar 10, 2026

customizeendpointsmy-accountuser-avatarwoocommerce

A · Safe

CVEs total3

Unpatched0

Last CVEDec 21, 2024

Plugin page Download

Safety Verdict

Is SysBasics Customize My Account for WooCommerce Safe to Use in 2026?

Generally Safe

Score 98/100

SysBasics Customize My Account for WooCommerce has a strong security track record. Known vulnerabilities have been patched promptly.

3 known CVEsLast CVE: Dec 21, 2024Updated 24d ago

Risk Assessment

The "customize-my-account-for-woocommerce" plugin v3.8.7 exhibits a mixed security posture. While it demonstrates strong practices such as 100% prepared SQL statements and a comprehensive 12 nonce checks, significant concerns arise from its attack surface. A substantial 8 out of 13 total entry points, specifically AJAX handlers, lack authentication checks, presenting a high risk of unauthorized actions or information disclosure. The static analysis also reveals a worrying 34% of output escaping, which indicates a potential for Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not properly handled.

The plugin's vulnerability history, with 3 known medium severity CVEs historically related to XSS and CSRF, reinforces the concern about input sanitization and output escaping. Although there are currently no unpatched vulnerabilities, the pattern suggests a recurring need for developers to address these specific security weaknesses. The inclusion of bundled libraries like Select2 and jQuery v3.4.1, while common, also warrants attention for potential outdated vulnerabilities if not regularly updated. Overall, the plugin has foundational security measures in place but requires immediate attention to its unprotected entry points and output sanitization practices to mitigate significant risks.

Key Concerns

8 unprotected AJAX handlers
34% of outputs properly escaped
3 past medium CVEs (XSS/CSRF)
Bundled outdated jQuery v3.4.1

Vulnerabilities

SysBasics Customize My Account for WooCommerce Security Vulnerabilities

CVEs by Year

1 CVE in 2023

2023

2 CVEs in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

3 total CVEs

CVE-2025-24592medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

SysBasics Customize My Account for WooCommerce <= 2.8.22 - Reflected Cross-Site Scripting

Dec 21, 2024 Patched in 2.9.0 (67d)

CVE-2024-10837medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

SysBasics Customize My Account for WooCommerce <= 2.7.29 - Reflected Cross-Site Scripting via tab Parameter

Nov 9, 2024 Patched in 2.7.30 (1d)

CVE-2023-51369medium · 4.3Cross-Site Request Forgery (CSRF)

Customize My Account for WooCommerce <= 1.8.3 - Cross-Site Request Forgery via restore_my_account_tabs

Dec 26, 2023 Patched in 1.8.4 (28d)

Code Analysis

Analyzed Mar 17, 2026

SysBasics Customize My Account for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

7 prepared

Unescaped Output

579

295 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2jQuery3.4.1

SQL Query Safety

100% prepared7 total queries

Output Escaping

34% escaped874 total outputs

Attack Surface

8 unprotected

SysBasics Customize My Account for WooCommerce Attack Surface

Entry Points13

Unprotected8

AJAX Handlers 11

authwp_ajax_restore_my_account_tabsinclude\admin\admin_settings.php:26

authwp_ajax_restore_my_account_orderinclude\admin\admin_settings.php:27

authwp_ajax_wcmamtxadmin_add_new_templateinclude\admin\admin_settings.php:28

authwp_ajax_get_elementor_templatesinclude\admin\admin_settings.php:29

authwp_ajax_wcmamtxadmin_get_users_ajaxinclude\admin\admin_settings.php:33

authwp_ajax_wcmamtx_dismiss_renew_noticeinclude\admin\admin_settings.php:34

authwp_ajax_wcmamtx_dismiss_dashboard_text_noticeinclude\admin\admin_settings.php:36

noprivwp_ajax_wcmamtx_dismiss_dashboard_text_noticeinclude\admin\admin_settings.php:38

authwp_ajax_wcmamtx_dismiss_dashboard_text_notice2include\admin\admin_settings.php:40

noprivwp_ajax_wcmamtx_dismiss_dashboard_text_notice2include\admin\admin_settings.php:42

authwp_ajax_restore_customizer_settingsinclude\wcmamtx_frontend_customizer.php:18

Shortcodes 2

[sysbasics_dashboard_menu] include\frontend\frontend_functions.php:40

[sysBasics-user-avatar] include\sysbasics-avatar-upload.php:32

WordPress Hooks 51

actionswitch_themeAppsero\src\Insights.php:140

actionswitch_themeAppsero\src\Insights.php:141

actionadmin_footerAppsero\src\Insights.php:158

actionadmin_noticesAppsero\src\Insights.php:175

actionadmin_initAppsero\src\Insights.php:178

filtercron_schedulesAppsero\src\Insights.php:184

actionadmin_menuAppsero\src\License.php:219

actionafter_switch_themeAppsero\src\License.php:781

actionswitch_themeAppsero\src\License.php:782

actionbefore_woocommerce_initcustomize-my-account-for-woocommerce.php:49

actioninitcustomize-my-account-for-woocommerce.php:56

actionadmin_initcustomize-my-account-for-woocommerce.php:152

filterplugin_row_metacustomize-my-account-for-woocommerce.php:318

actionelementor/widgets/registerelementor-addon\elementor-addon.php:154

actionelementor/initelementor-addon\helper.php:17

actionadmin_initinclude\admin\admin_settings.php:22

actionadmin_menuinclude\admin\admin_settings.php:23

actionadmin_enqueue_scriptsinclude\admin\admin_settings.php:24

actionadmin_enqueue_scriptsinclude\admin\admin_settings.php:25

actionadmin_post_nds_form_response_endpointinclude\admin\admin_settings.php:30

actionadmin_post_nds_form_response_columninclude\admin\admin_settings.php:31

actionadmin_post_nds_form_response_actioninclude\admin\admin_settings.php:32

actionwp_enqueue_scriptsinclude\frontend\frontend_functions.php:17

actionwoocommerce_account_menu_itemsinclude\frontend\frontend_functions.php:18

actionwoocommerce_locate_templateinclude\frontend\frontend_functions.php:19

filterwpml_sl_blacklist_requestsinclude\frontend\frontend_functions.php:22

actioninitinclude\frontend\frontend_functions.php:23

filterwoocommerce_get_endpoint_urlinclude\frontend\frontend_functions.php:27

actionwoocommerce_account_dashboardinclude\frontend\frontend_functions.php:28

actionthe_contentinclude\frontend\frontend_functions.php:32

filterwoodmart_override_heading_my_account_menuinclude\frontend\frontend_functions.php:36

actionwp_nav_menu_itemsinclude\frontend\frontend_functions.php:38

actionadmin_bar_menuinclude\frontend\frontend_functions.php:42

actionwp_loadedinclude\frontend\frontend_functions.php:784

actionwoocommerce_after_edit_account_address_forminclude\frontend\frontend_functions.php:1098

actionwoocommerce_before_edit_account_address_forminclude\frontend\frontend_functions.php:1105

actionwoocommerce_after_account_downloadsinclude\frontend\frontend_functions.php:1116

actionwoocommerce_before_account_downloadsinclude\frontend\frontend_functions.php:1123

actionwoocommerce_after_edit_account_forminclude\frontend\frontend_functions.php:1134

actionwoocommerce_before_edit_account_forminclude\frontend\frontend_functions.php:1141

filterquery_varsinclude\frontend\frontend_functions.php:1174

filterget_avatar_datainclude\sysbasics-avatar-upload.php:26

filterget_avatarinclude\sysbasics-avatar-upload.php:27

filteravatar_defaultsinclude\sysbasics-avatar-upload.php:28

actionpersonal_options_updateinclude\sysbasics-avatar-upload.php:29

actionedit_user_profile_updateinclude\sysbasics-avatar-upload.php:30

actionuser_profile_update_errorsinclude\sysbasics-avatar-upload.php:175

actionuser_profile_update_errorsinclude\sysbasics-avatar-upload.php:180

actionwcmamtx_before_account_navigationinclude\wcmamtx_extra_functions.php:1789

actioncustomize_registerinclude\wcmamtx_frontend_customizer.php:11

actioncustomize_preview_initinclude\wcmamtx_frontend_customizer.php:15

Maintenance & Trust

SysBasics Customize My Account for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 10, 2026

PHP min version5.2

Downloads535K

Community Trust

Rating80/100

Number of ratings29

Active installs9K

Alternatives

SysBasics Customize My Account for WooCommerce Alternatives

Customize My Account Page For WooCommerce

customize-my-account-page

100

Customize the default WooCommerce My Account Page. Add unlimited menu tabs, manage endpoints & display personalized content in the customer dashboard.

1K No CVEs

CITS My Account Customize for WooCommerce

my-account-customize-for-wp

Customize your WooCommerce 'My Account' page with ease! Adjust menus, pick designs, and enhance user experience effortlessly.

500 No CVEs

My Account Page Lite for Divi

my-account-page-lite-for-divi

100

Easily style the WooCommerce My Account Page using Divi Builder. Add icons, rename tabs, and create a branded customer experience.

30 No CVEs

My Account Menu Builder for WooCommerce

my-account-menu-builder-for-woocommerce

100

The easiest way to customize the WooCommerce My Account page menu — drag & drop, custom pages, icons, badges, role-based visibility, and more.

10 No CVEs

SDP My Account Tabs for WooCommerce

sdp-my-account-tabs-for-woocommerce

100

Customize WooCommerce My Account with custom tabs and dynamic user data — including any WordPress user meta key.

0 No CVEs

Developer Profile

SysBasics Customize My Account for WooCommerce Developer Profile

SysBasics

3 plugins · 9K total installs

trust score

Avg Security Score

89/100

Avg Patch Time

32 days

View full developer profile

Detection Fingerprints

How We Detect SysBasics Customize My Account for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/customize-my-account-for-woocommerce/assets/images/placeholder.png/wp-content/plugins/customize-my-account-for-woocommerce/assets/js/wcmamtx-admin-script.js/wp-content/plugins/customize-my-account-for-woocommerce/assets/css/wcmamtx-admin-style.css/wp-content/plugins/customize-my-account-for-woocommerce/assets/css/wcmamtx-frontend.css

Version Parameters

customize-my-account-for-woocommerce/assets/js/wcmamtx-admin-script.js?ver=customize-my-account-for-woocommerce/assets/css/wcmamtx-admin-style.css?ver=customize-my-account-for-woocommerce/assets/css/wcmamtx-frontend.css?ver=

HTML / DOM Fingerprints

CSS Classes

wcmamtx-menu-item

Data Attributes

data-wcmamtx-section

JS Globals

wcmamtx_object

FAQ