WP-Safety

Enhanced AJAX Add to Cart for WooCommerce Security & Risk Analysis

wordpress.org/plugins/enhanced-ajax-add-to-cart-for-woocommerce

Add variable & other products to cart using a lightweight, smart, and flexible Add to Cart button inline with any content, on any page you desire.

900 active installs v2.4.0 PHP 5.6+ WP 4.8.1+ Updated May 28, 2024
add-to-cartajax-add-to-cartblockshortcodewoocommerce
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Enhanced AJAX Add to Cart for WooCommerce Safe to Use in 2026?

Generally Safe

Score 92/100

Enhanced AJAX Add to Cart for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The plugin "enhanced-ajax-add-to-cart-for-woocommerce" v2.4.0 exhibits a mixed security posture. On the positive side, it demonstrates good practices by exclusively using prepared statements for all SQL queries, which significantly mitigates SQL injection risks. The absence of file operations and external HTTP requests further reduces the attack surface. Furthermore, the plugin has no recorded vulnerability history, suggesting a history of secure development or diligent patching by users. However, a significant concern arises from the presence of six AJAX handlers that lack authentication checks. This creates a substantial unprotected attack surface, making these endpoints potentially vulnerable to unauthorized access and execution of plugin functionalities by unauthenticated users.

The static analysis reveals a concerning number of unprotected AJAX endpoints, which are direct entry points for attackers. While the plugin has a decent output escaping rate and no recorded CVEs, the lack of authorization on such a critical part of its functionality presents a tangible risk. The taint analysis showing zero unsanitized flows is a positive sign, but it does not negate the risks introduced by unprotected AJAX calls. The plugin's strengths lie in its database interaction security and lack of historical vulnerabilities, but its weaknesses are concentrated in inadequate authorization for its AJAX handlers.

Key Concerns

  • Unprotected AJAX handlers
  • Missing nonce checks on AJAX
  • Low number of capability checks
Vulnerabilities
None known

Enhanced AJAX Add to Cart for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Enhanced AJAX Add to Cart for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
7
47 escaped
Nonce Checks
0
Capability Checks
4
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

87% escaped54 total outputs
Attack Surface
6 unprotected

Enhanced AJAX Add to Cart for WooCommerce Attack Surface

Entry Points9
Unprotected6

AJAX Handlers 6

authwp_ajax_eaa2c_add_to_cartincludes\class-eaa2c-ajax.php:48
noprivwp_ajax_eaa2c_add_to_cartincludes\class-eaa2c-ajax.php:49
authwp_ajax_simple_add_to_cartincludes\class-eaa2c-ajax.php:54
noprivwp_ajax_simple_add_to_cartincludes\class-eaa2c-ajax.php:55
authwp_ajax_variable_add_to_cartincludes\class-eaa2c-ajax.php:57
noprivwp_ajax_variable_add_to_cartincludes\class-eaa2c-ajax.php:58

Shortcodes 3

[enh_ajax_add_to_cart_button] includes\class-eaa2c-admin.php:49
[ajax_add_to_cart] includes\class-eaa2c-admin.php:50
[a2c_button] includes\class-eaa2c-admin.php:51
WordPress Hooks 10
actionbefore_woocommerce_initenhanced-ajax-add-to-cart-wc.php:65
actioninitincludes\class-eaa2c-ajax.php:21
actionplugins_loadedincludes\class-enhanced-ajax-add-to-cart-wc.php:282
actionadmin_menuincludes\class-enhanced-ajax-add-to-cart-wc.php:295
actionadmin_initincludes\class-enhanced-ajax-add-to-cart-wc.php:296
actioninitincludes\class-enhanced-ajax-add-to-cart-wc.php:311
actionadmin_enqueue_scriptsincludes\class-enhanced-ajax-add-to-cart-wc.php:312
actionrest_api_initincludes\class-enhanced-ajax-add-to-cart-wc.php:315
actionwp_enqueue_scriptsincludes\class-enhanced-ajax-add-to-cart-wc.php:330
actionwp_enqueue_scriptsincludes\class-enhanced-ajax-add-to-cart-wc.php:331
Maintenance & Trust

Enhanced AJAX Add to Cart for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8
Last updatedMay 28, 2024
PHP min version5.6
Downloads28K

Community Trust

Rating100/100
Number of ratings11
Active installs900
Alternatives

Enhanced AJAX Add to Cart for WooCommerce Alternatives

Ultimate FAQ Accordion Plugin

Ultimate FAQ Accordion Plugin

ultimate-faqs

A
89

Full-featured FAQ and accordion plugin with advanced search, simple UI and easy-to-use FAQ blocks and shortcodes.

30K 6 CVEs
Cart Popup for WooCommerce

Cart Popup for WooCommerce

added-to-cart-popup-woocommerce

A
100

Cart Popup for WooCommerce enables Ajax add-to-cart and displays an instant popup showing the added product.

9K No CVEs
XT Floating Cart for WooCommerce

XT Floating Cart for WooCommerce

woo-floating-cart-lite

A
99

A modern Floating Cart / Side Cart for WooCommerce that will improve customer buying experience and increase conversions.

5K 1 CVE
Modal Fly Cart & AJAX Add to Cart for WooCommerce

Modal Fly Cart & AJAX Add to Cart for WooCommerce

woocomm-popup-cart-ajax

A
100

Popup Cart Lite for WooCommerce for WooCommerce plugin that displays popup cart for add to cart action.

2K No CVEs
Unyson WooComerce Shortcodes

Unyson WooComerce Shortcodes

uws-unyson-woocommerce-shortcodes

A
85

A simple and easy way to use WooCommerce Shortcodes in Unyson Visual Builder

1K No CVEs
Developer Profile

Enhanced AJAX Add to Cart for WooCommerce Developer Profile

The Rite Sites

5 plugins · 900 total installs

88
trust score
Avg Security Score
91/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Enhanced AJAX Add to Cart for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/enhanced-ajax-add-to-cart-for-woocommerce/assets/css/backend-style.css/wp-content/plugins/enhanced-ajax-add-to-cart-for-woocommerce/assets/css/frontend-style.css/wp-content/plugins/enhanced-ajax-add-to-cart-for-woocommerce/assets/js/frontend-script.js/wp-content/plugins/enhanced-ajax-add-to-cart-for-woocommerce/assets/js/jquery.validate.min.js/wp-content/plugins/enhanced-ajax-add-to-cart-for-woocommerce/assets/js/woo-functions.js
Script Paths
/wp-content/plugins/enhanced-ajax-add-to-cart-for-woocommerce/assets/js/frontend-script.js
Version Parameters
enhanced-ajax-add-to-cart-for-woocommerce/assets/css/backend-style.css?ver=enhanced-ajax-add-to-cart-for-woocommerce/assets/css/frontend-style.css?ver=enhanced-ajax-add-to-cart-for-woocommerce/assets/js/frontend-script.js?ver=enhanced-ajax-add-to-cart-for-woocommerce/assets/js/jquery.validate.min.js?ver=enhanced-ajax-add-to-cart-for-woocommerce/assets/js/woo-functions.js?ver=

HTML / DOM Fingerprints

CSS Classes
eaa2c-add-to-cart-buttoneaa2c-product-titleeaa2c-product-priceeaa2c-quantity-wrappereaa2c-quantity-inputeaa2c-add-to-cart-formeaa2c-ajax-add-to-cart-notice
HTML Comments
<!-- Enhanced AJAX Add to Cart for WooCommerce --><!-- Start EAA2C Button --><!-- End EAA2C Button --><!-- EAA2C Product Title+3 more
Data Attributes
data-product-iddata-variation-iddata-quantitydata-button-textdata-min-quantitydata-max-quantity+2 more
JS Globals
EAA2C_DATAeaa2c_data
FAQ

Frequently Asked Questions about Enhanced AJAX Add to Cart for WooCommerce