Does eCheckpoint have any unpatched vulnerabilities?

No. All known vulnerabilities in eCheckpoint have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is eCheckpoint compatible with WordPress 6.9.4?

According to WordPress.org data, eCheckpoint 3.1.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is eCheckpoint compatible with PHP 8.1+?

eCheckpoint requires PHP 8.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is eCheckpoint updated?

eCheckpoint was last updated on Mar 25, 2026. Frequent updates are generally a positive security signal.

What is eCheckpoint's security score?

eCheckpoint has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

eCheckpoint Security & Risk Analysis

wordpress.org/plugins/echeckpoint

Robust compliance checks for firearms eCommerce. Verifies whether your customers can purchase products based on federal, state, and local sales laws.

0 active installs v3.1.2 PHP 8.1+ WP 6.6+ Updated Mar 25, 2026

age-verificationcompliancefflfirearmswoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is eCheckpoint Safe to Use in 2026?

Generally Safe

Score 100/100

eCheckpoint has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11d ago

Risk Assessment

The echeckpoint plugin v3.1.1 exhibits a generally good security posture with several positive indicators. The complete absence of known CVEs, SQL injection vulnerabilities, file operations, and critical taint flows suggests that the developers have a strong understanding of secure coding practices. The vast majority of output is properly escaped, and the use of prepared statements for all SQL queries is commendable. However, a significant concern arises from the presence of two AJAX handlers that lack authentication checks. This represents a direct entry point for attackers that could potentially be exploited without proper user authorization, exposing the site to various risks depending on the functionality of these handlers.

Key Concerns

AJAX handlers without auth checks

Vulnerabilities

None known

eCheckpoint Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

eCheckpoint Release Timeline

v3.1.2Current

v3.1.1

v3.1.0

v3.0.0

v2.1.1

v2.1.0

v2.0.1

v2.0.0

v1.5.1

v1.5.0

Code Analysis

Analyzed Mar 17, 2026

eCheckpoint Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

230 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

97% escaped238 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

init (echeckpoint_pre-order-check.php:124)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

eCheckpoint Attack Surface

Entry Points10

Unprotected2

AJAX Handlers 10

authwp_ajax_get_custom_noticeecheckpoint_pre-order-check.php:187

noprivwp_ajax_get_custom_noticeecheckpoint_pre-order-check.php:188

authwp_ajax_get_ffl_responseecheckpoint_pre-order-check.php:259

noprivwp_ajax_get_ffl_responseecheckpoint_pre-order-check.php:260

authwp_ajax_update_customer_typeecheckpoint_pre-order-check.php:365

noprivwp_ajax_update_customer_typeecheckpoint_pre-order-check.php:366

authwp_ajax_echeckpoint_recheck_complianceecheckpoint_pre-order-check.php:369

noprivwp_ajax_echeckpoint_recheck_complianceecheckpoint_pre-order-check.php:370

authwp_ajax_echeckpoint_get_fresh_nonceecheckpoint_pre-order-check.php:373

noprivwp_ajax_echeckpoint_get_fresh_nonceecheckpoint_pre-order-check.php:374

WordPress Hooks 41

actionwoocommerce_blocks_loadedecheckpoint.php:30

actionwoocommerce_blocks_cart_block_registrationecheckpoint.php:32

actionwoocommerce_blocks_checkout_block_registrationecheckpoint.php:38

actioninitecheckpoint.php:45

actionbefore_woocommerce_initecheckpoint.php:48

actionadmin_menuecheckpoint.php:62

actionadmin_enqueue_scriptsecheckpoint.php:63

filterplugin_row_metaecheckpoint.php:65

actionadmin_initecheckpoint.php:66

actionwoocommerce_thankyouecheckpoint.php:67

actionwoocommerce_checkout_processecheckpoint.php:68

actioninitecheckpoint_pre-order-check.php:132

actionwoocommerce_checkout_processecheckpoint_pre-order-check.php:163

actionwp_enqueue_scriptsecheckpoint_pre-order-check.php:166

actionwoocommerce_checkout_update_order_reviewecheckpoint_pre-order-check.php:169

actionwoocommerce_thankyouecheckpoint_pre-order-check.php:172

actionwoocommerce_store_api_checkout_order_processedecheckpoint_pre-order-check.php:175

filterwoocommerce_get_default_value_for_namespace/select-tradetypeecheckpoint_pre-order-check.php:182

filterwoocommerce_checkout_fieldsecheckpoint_pre-order-check.php:191

filterwoocommerce_checkout_fieldsecheckpoint_pre-order-check.php:212

actionwoocommerce_checkout_update_order_reviewecheckpoint_pre-order-check.php:225

actionwoocommerce_checkout_update_order_metaecheckpoint_pre-order-check.php:234

actionwoocommerce_admin_order_data_after_shipping_addressecheckpoint_pre-order-check.php:250

actionwoocommerce_before_checkout_shipping_formecheckpoint_pre-order-check.php:257

actionwoocommerce_store_api_cart_update_customer_from_requestecheckpoint_pre-order-check.php:265

actionwoocommerce_store_api_cart_update_customer_from_requestecheckpoint_pre-order-check.php:268

actionwoocommerce_blocks_enqueue_checkout_block_scripts_beforeecheckpoint_pre-order-check.php:271

actionwoocommerce_store_api_cart_update_order_from_requestecheckpoint_pre-order-check.php:277

actionwoocommerce_store_api_checkout_update_order_from_requestecheckpoint_pre-order-check.php:280

actionwoocommerce_store_api_cart_update_customer_from_requestecheckpoint_pre-order-check.php:281

filterwoocommerce_session_get_customerecheckpoint_pre-order-check.php:285

actionwoocommerce_store_api_cart_select_shipping_rateecheckpoint_pre-order-check.php:296

actionwoocommerce_store_api_cart_apply_couponecheckpoint_pre-order-check.php:297

actionwoocommerce_store_api_cart_remove_couponecheckpoint_pre-order-check.php:298

actionwoocommerce_store_api_cart_extensionsecheckpoint_pre-order-check.php:299

filterrest_pre_echo_responseecheckpoint_pre-order-check.php:302

actionwoocommerce_initecheckpoint_pre-order-check.php:314

actionwoocommerce_initecheckpoint_pre-order-check.php:350

actionwp_headecheckpoint_pre-order-check.php:377

actionwoocommerce_cart_calculate_feesecheckpoint_pre-order-check.php:1579

actionadmin_initecheckpoint_settings.php:17

Maintenance & Trust

eCheckpoint Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 25, 2026

PHP min version8.1

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

eCheckpoint Alternatives

g-FFL Cockpit

g-ffl-cockpit

Built by a FFL, for FFL's. Automate inventory synchronization and order fulfillment with multiple distributors.

500 2 CVEs

One Stop Shop for WooCommerce

one-stop-shop-woocommerce

100

The One Stop Shop compliance helper allows you to easily monitor your One Stop Shop delivery threshold within WooCommerce and generate detailed tax re …

10K No CVEs

EU VAT Assistant for WooCommerce

woocommerce-eu-vat-assistant

100

Extends the standard WooCommerce sale process and assists in achieving compliance with the new EU VAT regime starting on the 1st of January 2015.

5K No CVEs

European VAT Compliance Assistant for WooCommerce

woocommerce-eu-vat-compliance

100

Assists with EU/UK/Norway/Switzerland VAT compliance for WooCommerce, for the VAT regimes that began in 2015 and were extended in 2021), including the …

3K No CVEs

Advance Bank Payment Transfer Gateway

advance-bank-payment-transfer-gateway

100

Short Description: This plugin clones the Direct Bank Transfer gateway to create another offline payment method. License: GPLv2 or later

1K No CVEs

Developer Profile

eCheckpoint Developer Profile

eCheckpoint

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect eCheckpoint

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/echeckpoint/src/css/echeckpoint-admin-styles.css/wp-content/plugins/echeckpoint/build/index.js/wp-content/plugins/echeckpoint/src/css/echeckpoint-checkout.css

Script Paths

/wp-content/plugins/echeckpoint/build/index.js

Version Parameters

echeckpoint-admin-styles?ver=echeckpoint-blocks-integration?ver=

HTML / DOM Fingerprints

CSS Classes

echeckpoint-admin-stylesecheckpoint-checkout-styles

Data Attributes

data-echeckpoint-active

JS Globals

eCheckpointParams

REST Endpoints

/wp-json/echeckpoint/v1/settings

FAQ