Does Easy Store Customizer have any unpatched vulnerabilities?

No. All known vulnerabilities in Easy Store Customizer have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Easy Store Customizer compatible with WordPress 6.7.5?

According to WordPress.org data, Easy Store Customizer 1.2.0 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Easy Store Customizer compatible with PHP 8.0+?

Easy Store Customizer requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Easy Store Customizer updated?

Easy Store Customizer was last updated on Apr 14, 2025. Frequent updates are generally a positive security signal.

What is Easy Store Customizer's security score?

Easy Store Customizer has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Easy Store Customizer Security & Risk Analysis

wordpress.org/plugins/easy-store-customizer

Easily customize your WooCommerce store with features like "Add to Cart" button labels, product display settings, and quantity.

0 active installs v1.2.0 PHP 8.0+ WP 6.0+ Updated Apr 14, 2025

product-pagequantity-buttonsshop-customizerstore-customizerwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Easy Store Customizer Safe to Use in 2026?

Generally Safe

Score 100/100

Easy Store Customizer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11mo ago

Risk Assessment

The "easy-store-customizer" v1.2.0 plugin exhibits a mixed security posture. On the positive side, the code demonstrates good practices by utilizing prepared statements for all SQL queries, ensuring proper output escaping for all detected outputs, and avoiding file operations and external HTTP requests. The presence of nonce and capability checks is also a strong indicator of security awareness in development.

However, a significant concern arises from the plugin's attack surface. It exposes one AJAX handler, and critically, this handler lacks any authentication checks. This means any unauthenticated user can trigger this AJAX endpoint, which could potentially lead to unintended actions or information disclosure depending on the handler's functionality, even though no critical taint flows were identified in the static analysis. The absence of known vulnerabilities in its history is a positive sign, suggesting a generally stable and secure development history.

In conclusion, while the plugin adheres to many security best practices, the unprotected AJAX endpoint represents a notable weakness that could be exploited. The lack of recorded vulnerabilities is encouraging, but the identified unprotected entry point requires immediate attention to fully secure the plugin.

Key Concerns

Unprotected AJAX handler present

Vulnerabilities

None known

Easy Store Customizer Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Easy Store Customizer Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

36 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped36 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

save_esc_settings (admin\class-easy-store-customizer-admin.php:153)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Easy Store Customizer Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_save_esc_settingsincludes\class-easy-store-customizer.php:203

WordPress Hooks 17

filterwoocommerce_is_purchasableincludes\class-easy-store-customizer-features.php:114

filterwoocommerce_loop_add_to_cart_linkincludes\class-easy-store-customizer-features.php:115

actionplugins_loadedincludes\class-easy-store-customizer.php:176

actionadmin_enqueue_scriptsincludes\class-easy-store-customizer.php:191

actionadmin_enqueue_scriptsincludes\class-easy-store-customizer.php:192

actionadmin_menuincludes\class-easy-store-customizer.php:195

actionwp_enqueue_scriptsincludes\class-easy-store-customizer.php:221

filterwoocommerce_product_add_to_cart_textincludes\class-easy-store-customizer.php:226

filterwoocommerce_product_single_add_to_cart_textincludes\class-easy-store-customizer.php:227

filterloop_shop_per_pageincludes\class-easy-store-customizer.php:230

filterwoocommerce_get_price_htmlincludes\class-easy-store-customizer.php:233

actionwoocommerce_after_shop_loop_itemincludes\class-easy-store-customizer.php:236

actionwoocommerce_after_shop_loop_itemincludes\class-easy-store-customizer.php:239

actionwoocommerce_before_quantity_input_fieldincludes\class-easy-store-customizer.php:244

actionwoocommerce_after_quantity_input_fieldincludes\class-easy-store-customizer.php:245

actionwoocommerce_before_single_productincludes\class-easy-store-customizer.php:246

actionwp_enqueue_scriptsincludes\class-easy-store-customizer.php:249

Maintenance & Trust

Easy Store Customizer Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedApr 14, 2025

PHP min version8.0

Downloads913

Community Trust

Rating90/100

Number of ratings2

Active installs0

Alternatives

Easy Store Customizer Alternatives

Products Per Page for WooCommerce

woocommerce-products-per-page

100

Products Per Page for WooCommerce is a easy-to-setup plugin that integrates a 'products per page' dropdown on your WooCommerce pages.

10K No CVEs

Ibtana – Ecommerce Product Addons

ibtana-ecommerce-product-addons

Ibtana - Ecommerce Product Addons, you get to explore so many options for editing the product page by simple drag and drop functionality.

7K 1 unpatched

Shipping Simulator for WooCommerce

shipping-simulator-for-woocommerce

100

Allows customers to calculate the shipping rates on the product page in your WooCommerce store.

6K No CVEs

Magical Shop Builder – WooCommerce Template Builder for Elementor | Shop, Cart, Checkout & Product Page Builder

magical-products-display

The complete WooCommerce Shop Builder for Elementor. Build custom single product pages, cart, checkout, my account & shop archives with 60+ widgets.

3K 1 CVE

SMNTCS Quantity Increment Buttons for WooCommerce

smntcs-woocommerce-quantity-buttons

Display the quantity increment buttons on the WooCommerce product page and the WooCommerce cart page.

3K No CVEs

Developer Profile

Easy Store Customizer Developer Profile

Bheru Lal Gameti

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Easy Store Customizer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/easy-store-customizer/css/easy-store-customizer-admin.css/wp-content/plugins/easy-store-customizer/js/easy-store-customizer-admin.js

Script Paths

/wp-content/plugins/easy-store-customizer/js/easy-store-customizer-admin.js

Version Parameters

easy-store-customizer/css/easy-store-customizer-admin.css?ver=easy-store-customizer/js/easy-store-customizer-admin.js?ver=

HTML / DOM Fingerprints

JS Globals

escAjax

FAQ