WP-Safety

Discount for Envato Customers with EDD Products Security & Risk Analysis

wordpress.org/plugins/edd-discount-for-enavto-customers

Discount for Envato Customers for EDD Products plugin creates discount/coupon code for Easy Digital Download products for the old customers of Envato …

10 active installs v1.0.6 PHP 5.6.0+ WP 4.7.0+ Updated Jun 27, 2022
coupondiscounteasy-digital-downloadsproduct-saleproduct-sales
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Discount for Envato Customers with EDD Products Safe to Use in 2026?

Generally Safe

Score 85/100

Discount for Envato Customers with EDD Products has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago
Risk Assessment

The "edd-discount-for-enavto-customers" v1.0.6 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and avoiding dangerous functions and file operations. The absence of known vulnerabilities in its history is also a strong indicator of a generally well-maintained codebase.

However, significant security concerns arise from the attack surface analysis. The plugin exposes two AJAX handlers without any authentication or capability checks, creating direct entry points for unauthenticated users. This is further exacerbated by a lack of nonce checks on these handlers. While the taint analysis did not reveal any critical or high-severity unsanitized paths, the unprotected AJAX endpoints could still be exploited if they perform sensitive actions or expose information without proper authorization.

In conclusion, while the plugin is strong in areas like database interaction and the absence of historical vulnerabilities, the presence of two unprotected AJAX handlers without nonce checks represents a substantial security weakness that could lead to unauthorized access or actions. The lack of capability checks on these entry points is a critical oversight.

Key Concerns

  • AJAX handlers without auth checks
  • No nonce checks on AJAX handlers
  • Low percentage of properly escaped output
Vulnerabilities
None known

Discount for Envato Customers with EDD Products Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Discount for Envato Customers with EDD Products Release Timeline

v1.0.7
v1.0.6Current
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
Code Analysis
Analyzed Mar 16, 2026

Discount for Envato Customers with EDD Products Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
7 prepared
Unescaped Output
4
9 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
1
Bundled Libraries
0

SQL Query Safety

100% prepared7 total queries

Output Escaping

69% escaped13 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

2 flows
edddfe_coupon_generate_func (public\class-edd-discount-for-envato-customers-public.php:153)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Discount for Envato Customers with EDD Products Attack Surface

Entry Points3
Unprotected2

AJAX Handlers 2

authwp_ajax_edddfe_coupon_generateincludes\class-edd-discount-for-envato-customers.php:159
noprivwp_ajax_edddfe_coupon_generateincludes\class-edd-discount-for-envato-customers.php:160

Shortcodes 1

[edddfe_purchase_code_shortcode] includes\class-edd-discount-for-envato-customers.php:157
WordPress Hooks 13
actionplugins_loadedincludes\class-edd-discount-for-envato-customers.php:116
actionadmin_enqueue_scriptsincludes\class-edd-discount-for-envato-customers.php:131
filteredddfe_plan_pro_fieldsincludes\class-edd-discount-for-envato-customers.php:133
filteredd_settings_sections_extensionsincludes\class-edd-discount-for-envato-customers.php:135
filteredd_settings_extensionsincludes\class-edd-discount-for-envato-customers.php:136
filteradd_meta_boxes_downloadincludes\class-edd-discount-for-envato-customers.php:138
actionsave_post_downloadincludes\class-edd-discount-for-envato-customers.php:139
actionwp_enqueue_scriptsincludes\class-edd-discount-for-envato-customers.php:154
actionwp_enqueue_scriptsincludes\class-edd-discount-for-envato-customers.php:155
actionedddfe_create_discountincludes\class-edd-discount-for-envato-customers.php:162
actionedddfe_after_create_discountincludes\class-edd-discount-for-envato-customers.php:163
actionedddfe_edit_discountincludes\class-edd-discount-for-envato-customers.php:165
actionedddfe_after_edit_discountincludes\class-edd-discount-for-envato-customers.php:166
Maintenance & Trust

Discount for Envato Customers with EDD Products Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13
Last updatedJun 27, 2022
PHP min version5.6.0
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Discount for Envato Customers with EDD Products Alternatives

EDD First Time Buyer's Gift

EDD First Time Buyer's Gift

edd-first-time-buyers-gift

A
85

Increase customer satisfaction and repeat business by generating and assigning discounts for buyers after their first purchase.

10 No CVEs
Discount Rules for WooCommerce

Discount Rules for WooCommerce

woo-discount-rules

A
97

The discount plugin for WooCommerce helps you create bulk discount, quantity discount, storewide sale, dynamic pricing discount offers easily.

100K 4 CVEs
Smart Coupons For WooCommerce Coupons

Smart Coupons For WooCommerce Coupons

wt-smart-coupons-for-woocommerce

A
99

Best WooCommerce coupons plugin to create advanced coupons and discount codes with auto-apply, BOGO, free shipping, giveaways, and discount rules.

30K 1 CVE
Advanced Dynamic Pricing and Discount Rules for WooCommerce

Advanced Dynamic Pricing and Discount Rules for WooCommerce

advanced-dynamic-pricing-for-woocommerce

A
93

The discount plugin for WooCommerce supports any dynamic pricing discount: bulk discount, role discount, storewide, bogo, gifts, cart discount

20K 7 CVEs
Discount Rules and Dynamic Pricing for WooCommerce

Discount Rules and Dynamic Pricing for WooCommerce

easy-woocommerce-discounts

A
100

WooCommerce discount plugin, pricing and discounts, category discount, smart coupon, quantity discount, bulk discount, shipping method, storewide.

10K No CVEs
Developer Profile

Discount for Envato Customers with EDD Products Developer Profile

SmartDataSoft

2 plugins · 510 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Discount for Envato Customers with EDD Products

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/edd-discount-for-enavto-customers/css/edd-discount-for-envato-customers-admin.css/wp-content/plugins/edd-discount-for-enavto-customers/js/edd-discount-for-envato-customers-admin.js
Version Parameters
edd-discount-for-envato-customers-admin.css?ver=edd-discount-for-envato-customers-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
edddfe-settings-section
HTML Comments
<!-- Discount for Enavto Customers with EDD Products --><!-- Your Envato personal Key. See the doc to know where to find your key. --><!-- Enter the discount percentage. 10 = 10% --><!-- Get Pro to get notified everytime an envato customer generates a coupon code via email. -->+1 more
Data Attributes
data-envato_product_idsdata-edd_discount_on_productdata-envato_product_idsdata-edd_discount_on_product
JS Globals
EDD
FAQ

Frequently Asked Questions about Discount for Envato Customers with EDD Products