[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fV4Lk2AW2Aa6LZ_WzYSzCBYWzNfviUlQPnc5AVtD-pW0":3,"$fX6E12zVe4u0XTavThQa6s8xapyj5JUn_f4TqJkbydP8":173,"$fCjT-SlOTV2geYCickmh-_0WORIlx0UZKHXbu-khV54k":178},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":39,"analysis":59,"fingerprints":153},"extra-amount-on-checkout","Extra Amount Option For WooCommerce Checkout (BASIC)","1.1.9","WPSuperiors Developer","https:\u002F\u002Fprofiles.wordpress.org\u002Famitwpdeveloper\u002F","\u003Cp>This plugin will auto-apply an extra amount on woocommerce checkout based on Payment Gateway,Shipping,Category,Type,Products.\u003C\u002Fp>\n\u003Cp>✤ Customizable  Options For Admin ✤\u003C\u002Fp>\n\u003Cp>❶ To Add\u002FEdit\u002FDelete more than one, unlimited extra amount options for checkout.\u003Cbr \u002F>\n❷ To change the label for extra fees or amounts.\u003Cbr \u002F>\n❸ To change the amount to be applied at checkout.\u003Cbr \u002F>\n❹ To choose the amount will be applied as either a PERCENTAGE of cart value or a FIXED amount.\u003Cbr \u002F>\n❺ To choose the conditions (Individual Product, Product Category, Product Type, Shipping Location, Payment Gateway) for applying the amount.\u003Cbr \u002F>\n❻ To customize the admin order notification email separately.\u003C\u002Fp>\n\u003Ch4>DEMO\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ftrydemo.wpsuperiors.com\u002Feaoc\u002Fcheckout-2\u002F?add-to-cart=319\" rel=\"nofollow ugc\">Frontend Checkout Page\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Ftrydemo.wpsuperiors.com\u002Feaoc\u002Fwp-admin\u002F\" rel=\"nofollow ugc\">Backend Settings Page\u003C\u002Fa>\u003C\u002Fp>\n","Auto apply extra amount on woocommerce checkout based on payment gateway, shipping, product category, product type, and individual product.",10,2139,20,1,"2025-12-22T10:24:00.000Z","6.9.4","6.3","",[20,21,22],"woocomerce-extra-fees","woocommerce-extra-amount-for-woocommerce-checkout","woocommerce-extra-fees","https:\u002F\u002Fwww.wpsuperiors.com\u002Fextra-amount-on-checkout-premium\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fextra-amount-on-checkout.1.1.9.zip",100,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"amitwpdeveloper",6,260,97,54,86,"2026-05-20T02:56:05.498Z",[40],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":13,"downloaded":48,"rating":26,"num_ratings":26,"last_updated":49,"tested_up_to":16,"requires_at_least":50,"requires_php":51,"tags":52,"homepage":57,"download_link":58,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"product-fees-toolkit-for-woocommerce","Product Fees Toolkit for WooCommerce","1.1.0","Riaan K.","https:\u002F\u002Fprofiles.wordpress.org\u002Friaanknoetze\u002F","\u003Cp>\u003Cstrong>Product Fees Toolkit for WooCommerce\u003C\u002Fstrong> lets you add clear, automatic fees directly to products and variations — without hacks, custom code, or confusing cart rules.\u003C\u002Fp>\n\u003Cp>Perfect for \u003Cstrong>service fees, deposits, eco fees, bottle returns, gift wrapping, or compliance charges\u003C\u002Fstrong>, this plugin integrates seamlessly with WooCommerce’s pricing and tax systems so fees are applied consistently and transparently.\u003C\u002Fp>\n\u003Ch3>Why use Product Fees Toolkit?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Add \u003Cstrong>product-specific fees\u003C\u002Fstrong> instead of global cart fees\u003C\u002Fli>\n\u003Cli>Charge \u003Cstrong>fixed fees, percentage fees, or both together\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Multiply fees by quantity for per-item charges\u003C\u002Fli>\n\u003Cli>Fully compatible with \u003Cstrong>WooCommerce taxes\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Optional \u003Cstrong>Product Fees tab\u003C\u002Fstrong> on the product page for upfront pricing clarity\u003C\u002Fli>\n\u003Cli>Automatically \u003Cstrong>remove fees with coupons\u003C\u002Fstrong> during promotions\u003C\u002Fli>\n\u003Cli>Supports \u003Cstrong>simple and variable products\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Works with \u003Cstrong>WooCommerce product Import \u002F Export\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Lightweight, fast, and built to feel native\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>No bloated settings. No checkout surprises. Just predictable fees your customers understand.\u003C\u002Fp>\n\u003Ch3>Common use cases\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Environmental or recycling fees  \u003C\u002Fli>\n\u003Cli>Bottle or container deposits  \u003C\u002Fli>\n\u003Cli>Gift wrapping or handling fees  \u003C\u002Fli>\n\u003Cli>Age-verification or compliance charges  \u003C\u002Fli>\n\u003Cli>Per-item service or packaging fees  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>How it works (2-minute setup)\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Edit any product in WooCommerce  \u003C\u002Fli>\n\u003Cli>Open \u003Cstrong>Product Data \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Product Fees\u003C\u002Fstrong>  \u003C\u002Fli>\n\u003Cli>Add a fee name and amount (fixed, percent, or both)  \u003C\u002Fli>\n\u003Cli>Choose whether it multiplies by quantity and applies tax  \u003C\u002Fli>\n\u003Cli>Save — fees appear automatically at checkout  \u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Where fees can be managed\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Product level:\u003C\u002Fstrong> Products \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Edit product \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Product Data \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Product Fees  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Variation level:\u003C\u002Fstrong> Products \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Edit variable product \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Variations \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Product Fees  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Global options:\u003C\u002Fstrong> WooCommerce \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Products \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Product Fees  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Global options let you:\u003Cbr \u002F>\n* Control tax behavior for fees\u003Cbr \u002F>\n* Decide whether fees with the same name combine or stay separate\u003Cbr \u002F>\n* Show or hide the Product Fees tab on product pages\u003C\u002Fp>\n\u003Ch3>Built for store owners (and developers)\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Clean admin UI using WooCommerce standards\u003C\u002Fli>\n\u003Cli>No performance impact on the frontend\u003C\u002Fli>\n\u003Cli>Secure, nonce-protected admin saves\u003C\u002Fli>\n\u003Cli>Translation-ready and localization-friendly\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Custom Coding & Extensibility\u003C\u002Fh3>\n\u003Ch4>Can developers modify fees programmatically?\u003C\u002Fh4>\n\u003Cp>Yes. Filters are available to adjust fee labels, amounts, tax classes, and aggregation behavior before fees are added to the cart.\u003C\u002Fp>\n\u003Ch4>Can I add fees dynamically based on product context?\u003C\u002Fh4>\n\u003Cp>Yes. Fee data can be filtered per cart item, including quantity, price, product ID, or variation ID.\u003C\u002Fp>\n\u003Ch4>Can I extend the admin UI?\u003C\u002Fh4>\n\u003Cp>Yes. Action hooks allow adding custom controls.\u003C\u002Fp>\n","Add product-level fees in WooCommerce. Fixed or percentage per product or variation, with tax, quantity and coupon support.",257,"2026-03-24T23:20:00.000Z","6.0","7.4",[53,22,54,55,56],"woocommerce-deposits","woocommerce-product-fees","woocommerce-service-fee","woocommerce-surcharge","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fproduct-fees-toolkit-for-woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fproduct-fees-toolkit-for-woocommerce.1.1.0.zip",{"attackSurface":60,"codeSignals":132,"taintFlows":144,"riskAssessment":145,"analyzedAt":152},{"hooks":61,"ajaxHandlers":112,"restRoutes":128,"shortcodes":129,"cronEvents":130,"entryPointCount":131,"unprotectedCount":131},[62,67,71,75,79,83,85,89,93,97,102,105,108],{"type":63,"name":64,"callback":65,"file":66,"line":33},"action","admin_menu","menu_adding","classes\\wps-eawc-admin.php",{"type":63,"name":68,"callback":69,"file":66,"line":70},"admin_enqueue_scripts","include_admin_css_js",7,{"type":63,"name":72,"callback":73,"file":66,"line":74},"admin_notices","show_premium_buy_notice",12,{"type":63,"name":76,"callback":77,"file":66,"line":78},"admin_init","show_premium_buy_notice_dismissed",13,{"type":63,"name":76,"callback":80,"file":81,"line":82},"wps_eawc_register_settings","classes\\wps-eawc-general-settings.php",5,{"type":63,"name":64,"callback":84,"file":81,"line":33},"add_the_submenu",{"type":63,"name":86,"callback":87,"file":88,"line":33},"woocommerce_cart_calculate_fees","change_extra_amount_on_page_load","classes\\wps-eawc-processing.php",{"type":90,"name":91,"callback":92,"file":88,"line":70},"filter","woocommerce_update_order_review_fragments","change_extra_amount_on_fragments",{"type":63,"name":94,"callback":95,"file":88,"line":96},"wp_footer","add_script_at_checkout",8,{"type":63,"name":98,"callback":99,"priority":14,"file":100,"line":101},"init","wps_eawc_basic_check_woo_basic","wps-eawc-basic.php",22,{"type":63,"name":72,"callback":103,"file":100,"line":104},"wps_eawc_basic_active_failed_notice",27,{"type":63,"name":72,"callback":106,"file":100,"line":107},"wps_eawc_basic_active_failed_notice2",36,{"type":63,"name":109,"callback":110,"file":100,"line":111},"admin_head","wps_eawc_basic_remove_page_cache",88,[113,117,121,124],{"action":114,"nopriv":115,"callback":116,"hasNonce":115,"hasCapCheck":115,"file":66,"line":96},"new_eawc_submission",false,"new_eawc_submission_callback",{"action":118,"nopriv":115,"callback":119,"hasNonce":115,"hasCapCheck":115,"file":66,"line":120},"delete_eawc_submission","delete_eawc_submission_callback",9,{"action":122,"nopriv":115,"callback":123,"hasNonce":115,"hasCapCheck":115,"file":66,"line":11},"edit_eawc_submission","edit_eawc_submission_callback",{"action":125,"nopriv":115,"callback":126,"hasNonce":115,"hasCapCheck":115,"file":66,"line":127},"eawc_generate_state_list","eawc_generate_state_list_callback",11,[],[],[],4,{"dangerousFunctions":133,"sqlUsage":134,"outputEscaping":136,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":139,"bundledLibraries":140},[],{"prepared":26,"raw":26,"locations":135},[],{"escaped":137,"rawEcho":26,"locations":138},215,[],2,[141],{"name":142,"version":27,"knownCves":143},"Select2",[],[],{"summary":146,"deductions":147},"The \"extra-amount-on-checkout\" plugin v1.1.9 exhibits a concerning security posture primarily due to its unprotected AJAX handlers. While the code shows good practices in other areas, such as using prepared statements for all SQL queries and properly escaping all output, the presence of four AJAX handlers lacking any form of authentication or capability checks creates a significant attack surface. This means any user, regardless of their logged-in status or role, could potentially trigger these functions, leading to unintended actions within WordPress.\n\nThe static analysis did not reveal any dangerous functions, file operations, or external HTTP requests, and the taint analysis found no vulnerabilities. Furthermore, the plugin has no recorded vulnerability history, which suggests a generally stable past. However, the absence of nonce checks on these unprotected AJAX handlers is a critical oversight, as it leaves them vulnerable to Cross-Site Request Forgery (CSRF) attacks. The plugin does have two capability checks, but their effectiveness is undermined by the lack of authentication on the majority of its entry points.\n\nIn conclusion, while the plugin demonstrates strengths in data handling and output sanitization, the unprotected AJAX endpoints represent a major security weakness. The lack of authentication and nonce checks on these critical entry points significantly increases the risk of exploitation. Until these handlers are properly secured, the plugin should be considered a security risk.",[148,150],{"reason":149,"points":11},"Unprotected AJAX handlers",{"reason":151,"points":96},"Missing nonce checks on AJAX","2026-03-17T00:55:14.409Z",{"wat":154,"direct":163},{"assetPaths":155,"generatorPatterns":160,"scriptPaths":161,"versionParams":162},[156,157,158,159],"\u002Fwp-content\u002Fplugins\u002Fextra-amount-on-checkout\u002Fassets\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fextra-amount-on-checkout\u002Fassets\u002Fcss\u002Fselect2.min.css","\u002Fwp-content\u002Fplugins\u002Fextra-amount-on-checkout\u002Fassets\u002Fjs\u002Fselect2.min.js","\u002Fwp-content\u002Fplugins\u002Fextra-amount-on-checkout\u002Fassets\u002Fjs\u002Fadmin.js",[],[158,159],[],{"cssClasses":164,"htmlComments":166,"htmlAttributes":167,"restEndpoints":169,"jsGlobals":170,"shortcodeOutput":172},[165],"sds-error",[],[168],"data-url",[],[171],"ajax_var",[],{"error":174,"url":175,"statusCode":176,"statusMessage":177,"message":177},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fextra-amount-on-checkout\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":14,"versions":179},[180],{"version":6,"download_url":24,"svn_tag_url":181,"released_at":27,"has_diff":115,"diff_files_changed":182,"diff_lines":27,"trac_diff_url":27,"vulnerabilities":183,"is_current":174},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fextra-amount-on-checkout\u002Ftags\u002F1.1.9\u002F",[],[]]