Does Discussions Tab for WooCommerce Products have any unpatched vulnerabilities?

No. All known vulnerabilities in Discussions Tab for WooCommerce Products have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Discussions Tab for WooCommerce Products compatible with WordPress 6.8.5?

According to WordPress.org data, Discussions Tab for WooCommerce Products 1.5.9 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

How often is Discussions Tab for WooCommerce Products updated?

Discussions Tab for WooCommerce Products was last updated on Nov 24, 2025. Frequent updates are generally a positive security signal.

What is Discussions Tab for WooCommerce Products's security score?

Discussions Tab for WooCommerce Products has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Discussions Tab for WooCommerce Products Security & Risk Analysis

wordpress.org/plugins/discussions-tab-for-woocommerce-products

Creates a discussions tab for WooCommerce products.

50 active installs v1.5.9 PHP + WP 4.4+ Updated Nov 24, 2025

commentswoocommercewoocommerce-commentswoocommerce-product-discussionswoocommerce-reviews

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Discussions Tab for WooCommerce Products Safe to Use in 2026?

Generally Safe

Score 100/100

Discussions Tab for WooCommerce Products has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago

Risk Assessment

The "discussions-tab-for-woocommerce-products" plugin v1.5.9 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of any known CVEs and a clean vulnerability history are significant strengths, suggesting a well-maintained and secure codebase over time. Furthermore, the code analysis reveals no dangerous functions, file operations, or external HTTP requests, which are common sources of vulnerabilities.

However, there are areas that warrant attention. The output escaping is only 73% properly escaped, indicating a potential for cross-site scripting (XSS) vulnerabilities if user-supplied data is not handled carefully in the remaining 27% of outputs. While no critical or high severity taint flows were detected, the presence of any unsanitized paths, even if not flagged as critical, could represent a risk. The plugin also utilizes 100% prepared statements for SQL queries, which is excellent practice and mitigates SQL injection risks effectively.

In conclusion, this plugin appears to be robust with no major exploitable flaws identified. The primary concern lies in the unescaped output, which, while not critical, represents a potential weakness that could be exploited with specific user inputs. The lack of a substantial attack surface and the absence of historical vulnerabilities are positive indicators. Future development should focus on ensuring 100% output escaping to achieve a fully secure status.

Key Concerns

27% of outputs are not properly escaped

Vulnerabilities

None known

Discussions Tab for WooCommerce Products Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Discussions Tab for WooCommerce Products Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

52 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared2 total queries

Output Escaping

73% escaped71 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

get_reps_textarea (src\php\class-support.php:340)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Discussions Tab for WooCommerce Products Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 117

actioninitdiscussions-tab-for-woocommerce-products.php:158

actionbefore_woocommerce_initdiscussions-tab-for-woocommerce-products.php:161

filterwoocommerce_get_settings_pagesdiscussions-tab-for-woocommerce-products.php:220

actionadmin_initdiscussions-tab-for-woocommerce-products.php:231

actionplugins_loadeddiscussions-tab-for-woocommerce-products.php:377

actionadd_meta_boxessrc\php\class-admin-comment-editor.php:27

filterwoocommerce_screen_idssrc\php\class-admin-comment-editor.php:28

filterwp_update_comment_datasrc\php\class-admin-comment-editor.php:30

filterwp_update_comment_datasrc\php\class-admin-comment-editor.php:32

actionedit_commentsrc\php\class-admin-comment-editor.php:33

actionadmin_noticessrc\php\class-admin-comment-editor.php:34

filterwp_update_comment_datasrc\php\class-admin-comment-editor.php:36

actionadmin_enqueue_scriptssrc\php\class-admin.php:27

actionadd_meta_boxessrc\php\class-admin.php:33

filtermanage_edit-comments_columnssrc\php\class-admin.php:36

filtermanage_comments_custom_columnsrc\php\class-admin.php:37

filteradmin_comment_types_dropdownsrc\php\class-admin.php:40

filterget_comment_typesrc\php\class-compatibility.php:25

filteralg_dtwp_wp_list_comments_argssrc\php\class-compatibility.php:26

filtercomment_row_actionssrc\php\class-conversions.php:37

actioninitsrc\php\class-conversions.php:38

actionadmin_noticessrc\php\class-conversions.php:44

filterwoocommerce_locate_templatesrc\php\class-core.php:76

filterwoocommerce_locate_core_templatesrc\php\class-core.php:77

actionwp_enqueue_scriptssrc\php\class-core.php:80

filterwoocommerce_product_tabssrc\php\class-core.php:83

actioncomment_form_topsrc\php\class-core.php:86

filterpreprocess_commentsrc\php\class-core.php:87

actionpre_get_commentssrc\php\class-core.php:90

filtercomments_template_query_argssrc\php\class-core.php:93

filtercomments_templatesrc\php\class-core.php:96

actioncomment_form_beforesrc\php\class-core.php:99

actioncomment_form_aftersrc\php\class-core.php:100

filtercomment_reply_link_argssrc\php\class-core.php:103

filterget_comments_numbersrc\php\class-core.php:106

filterwoocommerce_product_get_review_countsrc\php\class-core.php:107

filterget_avatar_comment_typessrc\php\class-core.php:110

filterwp_list_comments_argssrc\php\class-core.php:113

filteralg_dtwp_wp_list_comments_wrapper_classsrc\php\class-core.php:116

filtercomment_classsrc\php\class-core.php:119

filterget_comment_linksrc\php\class-core.php:122

filtercomment_textsrc\php\class-core.php:125

filtercomments_opensrc\php\class-core.php:128

actionalg_dtwp_comments_endsrc\php\class-core.php:131

actionalg_dtwp_comments_startsrc\php\class-core.php:132

actionupgrader_process_completesrc\php\class-core.php:135

filterpre_comment_contentsrc\php\class-core.php:147

filtercomment_edit_redirectsrc\php\class-core.php:150

filteredit_comment_linksrc\php\class-core.php:153

filterget_comments_pagenum_linksrc\php\class-core.php:156

actionpre_get_commentssrc\php\class-core.php:159

actionpre_comment_on_postsrc\php\class-core.php:162

actionalg_dtwp_pre_discussion_comment_on_postsrc\php\class-core.php:165

filteralg_dtwp_pre_discussion_comment_on_post_errorssrc\php\class-core.php:166

filteralg_wc_products_discussions_tab_settingssrc\php\class-core.php:183

actionalg_wc_products_discussions_tab_core_loadedsrc\php\class-core.php:184

filteralg_dtwp_comments_template_output_validationsrc\php\class-core.php:186

filteralg_dtwp_js_modules_to_loadsrc\php\class-core.php:187

filteralg_dtwp_opt_comment_form_positionsrc\php\class-core.php:191

filteralg_dtwp_js_modules_to_loadsrc\php\class-core.php:193

filtercomment_textsrc\php\class-core.php:195

filtercomment_textsrc\php\class-core.php:197

filteralg_dtwp_pre_discussion_comment_on_post_errorssrc\php\class-core.php:382

filtercomment_classsrc\php\class-labels.php:52

actionalg_wc_pdt_load_scriptssrc\php\class-labels.php:53

actionalg_wc_pdt_load_scriptssrc\php\class-labels.php:54

actionalg_wc_pdt_load_scriptssrc\php\class-labels.php:55

filtercomment_textsrc\php\class-labels.php:56

filterget_comment_authorsrc\php\class-labels.php:57

filteralg_dtwp_comment_tagssrc\php\class-labels.php:59

filteralg_dtwp_labelssrc\php\class-labels.php:60

filteralg_dtwp_possible_comment_tagssrc\php\class-labels.php:62

filteralg_dtwp_comment_tagssrc\php\class-labels.php:64

filteralg_dtwp_labelssrc\php\class-labels.php:65

filteralg_dtwp_possible_comment_tagssrc\php\class-labels.php:67

actioninitsrc\php\class-my-account.php:29

filterquery_varssrc\php\class-my-account.php:30

actionafter_switch_themesrc\php\class-my-account.php:31

filterwoocommerce_account_menu_itemssrc\php\class-my-account.php:32

filterthe_titlesrc\php\class-my-account.php:34

actionalg_wc_products_discussions_tab_plugin_updatesrc\php\class-my-account.php:37

actionadd_meta_boxessrc\php\class-new-comment-email-pro.php:28

filtercomment_notification_recipientssrc\php\class-new-comment-email-pro.php:30

filtercomment_notification_textsrc\php\class-new-comment-email-pro.php:32

filteralg_dtwp_js_modules_to_loadsrc\php\class-new-comment-email-pro.php:36

filteralg_dtwp_localize_scriptsrc\php\class-new-comment-email-pro.php:37

filtercomment_notification_recipientssrc\php\class-new-comment-email-pro.php:38

filtercomment_edit_redirectsrc\php\class-new-comment-email.php:28

actionadmin_noticessrc\php\class-new-comment-email.php:29

filtercomment_notification_textsrc\php\class-new-comment-email.php:31

filtercomment_notification_textsrc\php\class-new-comment-email.php:33

actionwp_footersrc\php\class-social.php:35

actioncomment_form_after_fieldssrc\php\class-social.php:37

actionalg_wc_pdt_load_scriptssrc\php\class-social.php:38

actioncomment_form_topsrc\php\class-social.php:39

filterpreprocess_commentsrc\php\class-social.php:40

filterget_avatar_urlsrc\php\class-social.php:41

actionadd_meta_boxessrc\php\class-support.php:30

actionsave_postsrc\php\class-support.php:31

filteralg_dtwp_comment_tagssrc\php\class-support.php:32

filteralg_dtwp_possible_comment_tagssrc\php\class-support.php:33

actionalg_dtwp_my_account_tab_contentsrc\php\class-support.php:36

actioninitsrc\php\class-support.php:37

filteralg_dtwp_my_account_tab_validationsrc\php\class-support.php:38

filteralg_dtwp_labelssrc\php\class-support.php:39

filteradmin_comment_types_dropdownsrc\php\class-wc-compatibility.php:45

filtercomments_list_table_query_argssrc\php\class-wc-compatibility.php:46

actionbefore_woocommerce_initsrc\php\class-wc-compatibility.php:47

filtergettextsrc\php\class-wc-compatibility.php:48

filtergettextsrc\php\class-wc-compatibility.php:49

filterparent_filesrc\php\class-wc-compatibility.php:50

actionpre_get_commentssrc\php\class-wc-compatibility.php:51

filterwp_count_commentssrc\php\class-wc-compatibility.php:52

filterwoocommerce_get_sections_alg_wc_products_discussions_tabsrc\php\settings\class-settings-section.php:43

filterwoocommerce_admin_settings_sanitize_optionsrc\php\settings\class-settings.php:28

actionadmin_initsrc\php\settings\class-settings.php:30

actionadmin_noticessrc\php\settings\class-settings.php:113

Maintenance & Trust

Discussions Tab for WooCommerce Products Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedNov 24, 2025

PHP min version

Downloads6K

Community Trust

Rating100/100

Number of ratings2

Active installs50

Alternatives

Discussions Tab for WooCommerce Products Alternatives

Photo Reviews for WooCommerce

woo-photo-reviews

100

Let customers attach photos to reviews, enhanced with filterable grids and overall ratings. Auto-send review reminders and coupon emails

10K No CVEs

ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & Schema

reviewx

Drive woocommerce business growth with social proof: gather product reviews with multicriteria ratings, auto-reminder emails, discounts, and more.

9K 13 CVEs

Faview – Virtual Reviews for WooCommerce

woo-virtual-reviews

100

Faview - Virtual Reviews for WooCommerce generates and displays canned reviews to boost your customer engagement.

9K No CVEs

Customer Reviews Collector for WooCommerce

customer-reviews-collector-for-woocommerce

Collect reviews on Google, Facebook, Yelp, Trustindex and other platforms automatically, with the help of our system.

5K 1 CVE

Ryviu – Product Reviews for WooCommerce

ryviu

Install Ryviu quickly and easily into your WordPress site. Boost eco-friendly eCommerce with trusted reviews and increased sales growth.

2K 1 unpatched

Developer Profile

Discussions Tab for WooCommerce Products Developer Profile

Algoritmika

14 plugins · 510 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Discussions Tab for WooCommerce Products

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/discussions-tab-for-woocommerce-products/assets/css/style.css/wp-content/plugins/discussions-tab-for-woocommerce-products/assets/js/script.js

Script Paths

/wp-content/plugins/discussions-tab-for-woocommerce-products/vendor/wp-factory/wp-autoloader/src/php/WPFactory/WPFactory_Autoloader/WPFactory_Autoloader.php

Version Parameters

/wp-content/plugins/discussions-tab-for-woocommerce-products/assets/css/style.css?ver=/wp-content/plugins/discussions-tab-for-woocommerce-products/assets/js/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

alg-wc-products-discussions-tab

Data Attributes

data-alg-wc-products-discussions-tab-product-id

JS Globals

alg_wc_products_discussions_tab_params

FAQ