Disable Cart Fragments by Optimocha Security & Risk Analysis
wordpress.org/plugins/disable-cart-fragmentsA better way to disable WooCommerce's cart fragments script, and re-enqueue it when the cart is updated. Works with all caching plugins.
Is Disable Cart Fragments by Optimocha Safe to Use in 2026?
Generally Safe
Score 100/100Disable Cart Fragments by Optimocha has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "disable-cart-fragments" plugin version 2.4.1 demonstrates a generally strong security posture based on the provided static analysis. The absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests are positive indicators. Its limited attack surface, consisting of two AJAX handlers, is also a strength, especially with no identified unprotected entry points.
However, a significant concern arises from the output escaping. With one total output analyzed and 0% properly escaped, this presents a notable risk. While taint analysis shows no unsanitized paths and the vulnerability history is clean, the lack of output escaping could potentially lead to Cross-Site Scripting (XSS) vulnerabilities if user-controlled data is directly outputted without sanitization. The absence of nonce checks on AJAX handlers is also a weakness, though the presence of capability checks mitigates this to some extent by controlling access to these handlers.
In conclusion, the plugin has a solid foundation with few critical vulnerabilities indicated in its code. Its clean vulnerability history is encouraging, suggesting a history of secure development. Nevertheless, the unescaped output is a clear area for improvement and represents the primary security concern that could expose users to risks.
Key Concerns
- Unescaped output
- Missing nonce checks on AJAX handlers
Disable Cart Fragments by Optimocha Security Vulnerabilities
Disable Cart Fragments by Optimocha Code Analysis
Output Escaping
Data Flow Analysis
Disable Cart Fragments by Optimocha Attack Surface
AJAX Handlers 2
WordPress Hooks 6
Maintenance & Trust
Disable Cart Fragments by Optimocha Maintenance & Trust
Maintenance Signals
Community Trust
Disable Cart Fragments by Optimocha Alternatives
Essential Addons for Elementor – Popular Elementor Templates & Widgets
essential-addons-for-elementor-lite
Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.
Google for WooCommerce
google-listings-and-ads
Native integration with Google that allows merchants to easily display their products across Google’s network.
WooPayments: Integrated WooCommerce Payments
woocommerce-payments
Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.
WooCommerce PayPal Payments
woocommerce-paypal-payments
PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.
Click to Chat – HoliThemes
click-to-chat-for-whatsapp
WhatsApp Chat🔥. Let's make your Web page visitors contact you through 'WhatsApp', 'WhatsApp Business'. Add matching Widget✅
Disable Cart Fragments by Optimocha Developer Profile
3 plugins · 20K total installs
How We Detect Disable Cart Fragments by Optimocha
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/disable-cart-fragments/js/dcf-notice-manager.js/wp-content/plugins/disable-cart-fragments/js/dcf-notice-manager.jsdisable-cart-fragments/style.css?ver=disable-cart-fragments/js/dcf-notice-manager.js?ver=HTML / DOM Fingerprints
dcf-noticenotice-errordata-notice-actiondata-notice-idoptimocha_getCookieoptimocha_check_wc_cart_script