WP-Safety

Extra Product Data for WooCommerce Security & Risk Analysis

wordpress.org/plugins/extra-product-data-for-woocommerce

A WooCommerce plugin that collects additional user data for products and displays it in the order summary.

0 active installs v2.0.2 PHP 8.0+ WP 6.0+ Updated Mar 4, 2026
woocommerce-custom-fieldswoocommerce-product-addonswoocommerce-product-fieldswoocommerce-product-options
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Extra Product Data for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Extra Product Data for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The plugin "extra-product-data-for-woocommerce" v2.0.2 exhibits a generally strong security posture based on the provided static analysis. All identified entry points (4 AJAX handlers) appear to have authentication checks, which is a significant positive. Furthermore, the plugin uses prepared statements for all its SQL queries and has a substantial number of output escaping implementations, with a good percentage being properly escaped. The absence of any recorded vulnerabilities in its history, including critical or high severity ones, further reinforces this positive assessment.

However, there are some areas for attention. While the attack surface is small and protected, the presence of file operations without explicit mention of sanitization or permission checks could pose a theoretical risk if not handled carefully. The fact that 24% of output is not properly escaped, while not leading to critical taint flows in this analysis, represents a potential cross-site scripting (XSS) vector if user-supplied data is involved in those unescaped outputs. The lack of taint analysis data also means that while no direct critical flows were found, the absence of this analysis might mask subtle issues.

In conclusion, the plugin demonstrates good security practices, particularly in its handling of AJAX requests and SQL queries. The vulnerability history is a clear strength. The primary areas of concern are the potential risks associated with unescaped output and file operations, although these are not currently flagged as critical vulnerabilities in the provided data. Overall, the plugin appears to be well-secured, with minor areas that could benefit from further scrutiny or improvement.

Key Concerns

  • Unescaped output detected
  • File operation detected without explicit sanitization check
Vulnerabilities
None known

Extra Product Data for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Extra Product Data for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
90
285 escaped
Nonce Checks
5
Capability Checks
3
File Operations
1
External Requests
0
Bundled Libraries
0

Output Escaping

76% escaped375 total outputs
Attack Surface

Extra Product Data for WooCommerce Attack Surface

Entry Points4
Unprotected0

AJAX Handlers 4

authwp_ajax_exprdawc_import_custom_fieldssrc\classes\class-exprdawc-product-page-backend.php:64
authwp_ajax_woocommerce_configure_exprdawc_order_itemsrc\classes\order\admin\class-exprdawc-admin-order.php:74
authwp_ajax_woocommerce_edit_exprdawc_order_itemsrc\classes\order\admin\class-exprdawc-admin-order.php:77
authwp_ajax_exprdawc_save_order_item_metasrc\classes\order\customer\class-exprdawc-user-order.php:54
WordPress Hooks 27
actionbefore_woocommerce_initextra-product-data-for-woocommerce.php:40
actioninitsrc\classes\class-exprdawc-main.php:106
actionadmin_enqueue_scriptssrc\classes\class-exprdawc-main.php:109
filterwoocommerce_product_data_tabssrc\classes\class-exprdawc-product-page-backend.php:54
actionwoocommerce_product_data_panelssrc\classes\class-exprdawc-product-page-backend.php:55
actionwoocommerce_process_product_metasrc\classes\class-exprdawc-product-page-backend.php:58
actionadmin_enqueue_scriptssrc\classes\class-exprdawc-product-page-backend.php:61
filterwoocommerce_product_supportssrc\classes\class-exprdawc-product-page-frontend.php:64
actionwoocommerce_before_add_to_cart_buttonsrc\classes\class-exprdawc-product-page-frontend.php:65
filterwoocommerce_add_to_cart_validationsrc\classes\class-exprdawc-product-page-frontend.php:66
filterwoocommerce_product_has_optionssrc\classes\class-exprdawc-product-page-frontend.php:69
filterwoocommerce_product_add_to_cart_textsrc\classes\class-exprdawc-product-page-frontend.php:70
filterwoocommerce_product_add_to_cart_urlsrc\classes\class-exprdawc-product-page-frontend.php:71
filterwoocommerce_is_purchasablesrc\classes\class-exprdawc-product-page-frontend.php:74
filterwoocommerce_add_cart_item_datasrc\classes\class-exprdawc-product-page-frontend.php:77
filterwoocommerce_get_item_datasrc\classes\class-exprdawc-product-page-frontend.php:78
actionwoocommerce_before_calculate_totalssrc\classes\class-exprdawc-product-page-frontend.php:79
actionwoocommerce_checkout_create_order_line_itemsrc\classes\class-exprdawc-product-page-frontend.php:80
actionwp_enqueue_scriptssrc\classes\class-exprdawc-product-page-frontend.php:83
filterwoocommerce_get_sections_productssrc\classes\class-exprdawc-settings.php:47
filterwoocommerce_get_settings_productssrc\classes\class-exprdawc-settings.php:48
actionwoocommerce_admin_order_item_headerssrc\classes\order\admin\class-exprdawc-admin-order.php:62
actionwoocommerce_after_order_itemmetasrc\classes\order\admin\class-exprdawc-admin-order.php:65
actionadmin_enqueue_scriptssrc\classes\order\admin\class-exprdawc-admin-order.php:68
actionadmin_footersrc\classes\order\admin\class-exprdawc-admin-order.php:71
actionwoocommerce_order_item_meta_endsrc\classes\order\customer\class-exprdawc-user-order.php:52
actionwp_enqueue_scriptssrc\classes\order\customer\class-exprdawc-user-order.php:53
Maintenance & Trust

Extra Product Data for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedMar 4, 2026
PHP min version8.0
Downloads1K

Community Trust

Rating100/100
Number of ratings2
Active installs0
Alternatives

Extra Product Data for WooCommerce Alternatives

Product Addons for Woocommerce – Product Options with Custom Fields

Product Addons for Woocommerce – Product Options with Custom Fields

woo-custom-product-addons

A
97

WooCommerce Product Addons Add custom fields to your WooCommerce product page. With an easy-to-use Custom Form Builder.

30K 1 CVE
YITH WooCommerce Product Add-Ons

YITH WooCommerce Product Add-Ons

yith-woocommerce-product-add-ons

A
96

Increase average order value by letting your customers purchase additional options on your products.

20K 7 CVEs
Custom Product Type for WooCommerce – Add-Ons, Data, Options, Layouts, Booking & Appointments

Custom Product Type for WooCommerce – Add-Ons, Data, Options, Layouts, Booking & Appointments

custom-product-type-for-woocommerce

A
100

Create WooCommerce Add-Ons, Data, Options, Booking, Layouts, and Appointments as custom product types. Revolutionize store's possibilities!

70 No CVEs
PPOM – Product Addons & Custom Fields for WooCommerce

PPOM – Product Addons & Custom Fields for WooCommerce

woocommerce-product-addon

B
80

Easily add a range of custom fields to WooCommerce products, from text boxes to date selectors, allowing customers to personalize their orders.

20K 11 CVEs
Flexible Product Fields (WooCommerce Product Addons) – WooCommerce Product Page Editor

Flexible Product Fields (WooCommerce Product Addons) – WooCommerce Product Page Editor

flexible-product-fields

A
100

Add extra product options on your WooCommerce product page. Product addons for all product variations. 20 free product addons.

10K No CVEs
Developer Profile

Extra Product Data for WooCommerce Developer Profile

Triopsi

7 plugins · 60 total installs

90
trust score
Avg Security Score
94/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Extra Product Data for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/extra-product-data-for-woocommerce/assets/css/admin-backend.css/wp-content/plugins/extra-product-data-for-woocommerce/assets/css/forms.css
Version Parameters
extra-product-data-for-woocommerce/assets/css/admin-backend.css?ver=extra-product-data-for-woocommerce/assets/css/forms.css?ver=

HTML / DOM Fingerprints

Data Attributes
page=wc-settings&tab=products&section=extra_product_data
FAQ

Frequently Asked Questions about Extra Product Data for WooCommerce