Does Fastdee! have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Fastdee! compatible with WordPress 4.9.29?

According to WordPress.org data, Fastdee! 2.7.9 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

How often is Fastdee! updated?

Fastdee! was last updated on Nov 22, 2019. Frequent updates are generally a positive security signal.

What is Fastdee!'s security score?

Fastdee! has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Fastdee! Security & Risk Analysis

wordpress.org/plugins/fastdee

Fastdee! automatiza a inserção de ofertas nos produtos do Woocomerce. Com o Fastdee! você afiliado poderá disponibilizar milhares de novos produtos r …

30 active installs v2.7.9 PHP + WP 4.4+ Updated Nov 22, 2019

afiliadosfastdeelomadeeofertaswoocomerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Fastdee! Safe to Use in 2026?

Generally Safe

Score 85/100

Fastdee! has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The fastdee v2.7.9 plugin demonstrates several positive security practices, including a complete absence of known CVEs and the consistent use of prepared statements for all SQL queries. The plugin also incorporates nonce and capability checks on most of its entry points, which are crucial for preventing common WordPress attacks. The output escaping rate, while not perfect, is reasonably high, and there are no critical or high-severity taint flows identified. This suggests a generally responsible approach to security development.

However, there are notable concerns. The plugin exposes one AJAX handler without any authentication checks, creating a significant attack vector. While the total number of entry points is small, this single unprotected handler represents a potential gateway for attackers. Additionally, the presence of two taint flows with unsanitized paths, even if not classified as critical, indicates a potential for vulnerabilities if data from these flows is not handled with extreme care. The use of bundled libraries like Select2 also warrants attention, as outdated versions of such libraries can introduce vulnerabilities if not kept up-to-date.

Overall, fastdee v2.7.9 has a decent security posture due to its lack of historical vulnerabilities and good SQL handling. However, the unprotected AJAX endpoint and the presence of unsanitized taint flows are serious weaknesses that require immediate attention. The plugin's strengths lie in its proactive security measures like prepared statements and a clean vulnerability history. The main weakness is the lack of robust access control on all its entry points, specifically the unauthenticated AJAX handler, and the presence of potentially problematic taint flows.

Key Concerns

Unprotected AJAX handler
Taint flows with unsanitized paths
Bundled library (Select2)

Vulnerabilities

None known

Fastdee! Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Fastdee! Release Timeline

v2.7.7

Code Analysis

Analyzed Mar 16, 2026

Fastdee! Code Analysis

Dangerous Functions

Raw SQL Queries

4 prepared

Unescaped Output

105 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2

SQL Query Safety

100% prepared4 total queries

Output Escaping

74% escaped141 total outputs

Data Flows · Security

2 unsanitized

Data Flow Analysis

5 flows2 with unsanitized paths

add_custom_filter_stores_wc_products (includes\core\class-fd-util.php:223)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Fastdee! Attack Surface

Entry Points6

Unprotected1

AJAX Handlers 6

authwp_ajax_fd_get_couponsincludes\core\class-fd-coupons.php:19

authwp_ajax_fd_import_couponsincludes\core\class-fd-coupons.php:20

authwp_ajax_fd_get_offersincludes\core\class-fd-ofertas.php:23

authwp_ajax_fd_import_offersincludes\core\class-fd-ofertas.php:24

authwp_ajax_fd_do_updateincludes\core\class-fd-update.php:11

authwp_ajax_fd_get_emailincludes\core\class-fd-util.php:27

WordPress Hooks 26

actioninitfastdee.php:123

actionadmin_noticesfastdee.php:148

actionadmin_noticesfastdee.php:149

actionin_admin_footerincludes\core\class-fd-pages.php:12

actionadmin_enqueue_scriptsincludes\core\class-fd-util.php:12

actionwp_enqueue_scriptsincludes\core\class-fd-util.php:13

filterwoocommerce_product_single_add_to_cart_textincludes\core\class-fd-util.php:15

filterwoocommerce_product_add_to_cart_textincludes\core\class-fd-util.php:16

actionwoocommerce_single_product_summaryincludes\core\class-fd-util.php:24

actionrestrict_manage_postsincludes\core\class-fd-util.php:224

filterparse_queryincludes\core\class-fd-util.php:249

actioninitincludes\core\class-fd-wc-taxonomy-store.php:11

actionadmin_menuincludes\pages\class-fd-coupons-page.php:13

actionadmin_enqueue_scriptsincludes\pages\class-fd-coupons-page.php:14

actionadmin_menuincludes\pages\class-fd-import-page.php:14

actionadmin_enqueue_scriptsincludes\pages\class-fd-import-page.php:15

actionadmin_menuincludes\pages\class-fd-learn-page.php:14

actionadmin_enqueue_scriptsincludes\pages\class-fd-learn-page.php:17

actioninitincludes\pages\class-fd-options-page.php:22

actionadmin_menuincludes\pages\class-fd-options-page.php:23

actionadmin_initincludes\pages\class-fd-options-page.php:24

actionadmin_enqueue_scriptsincludes\pages\class-fd-options-page.php:25

actionadmin_menuincludes\pages\class-fd-plugin-main-page.php:13

actionadmin_enqueue_scriptsincludes\pages\class-fd-plugin-main-page.php:15

actionadmin_menuincludes\pages\class-fd-update-page.php:16

actionadmin_enqueue_scriptsincludes\pages\class-fd-update-page.php:17

Maintenance & Trust

Fastdee! Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedNov 22, 2019

PHP min version

Downloads12K

Community Trust

Rating80/100

Number of ratings5

Active installs30

Alternatives

Fastdee! Alternatives

Lomadee WP – Ofertas Relacionadas

lomadee-wp-ofertas-relacionadas

Exiba ofertas relacionadas aos seus posts e aumente o faturamento com publicidade.

10 No CVEs

E-Commerce Autocomplete Search Bar

woo-autocomplete-search-bar

100

E-Commerce Autocomplete Search Bar: An autocomplete searchbar for E-Commerce products, categories, tags, or taxonomy

200 No CVEs

Round Up Woocommerce Catalog Prices

woo-round-up-prices

Woocommerce Round Up Prices plugin allows you to round the prices in the Woocommerce product catalog in order to force the visualy appealing values in …

100 No CVEs

Yandex pay

yandex-pay

Официальный модуль Yandex Pay

100 No CVEs

Automater

automater-pl

100

Reliable system for sales automation and shipping digital goods purchased on eBay and online stores.

60 No CVEs

Developer Profile

Fastdee! Developer Profile

devLucasMendes

1 plugin · 30 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Fastdee!

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/fastdee/assets/js/dev/src/util.js/wp-content/plugins/fastdee/assets/js/dev/src/coupons-page.js/wp-content/plugins/fastdee/assets/js/dev/src/import-page.js/wp-content/plugins/fastdee/assets/js/open-new-tab-buy-button.js

Version Parameters

fastdee/assets/js/dev/src/util.js?v=fastdee/assets/js/dev/src/coupons-page.js?v=fastdee/assets/js/dev/src/import-page.js?v=fastdee/assets/js/open-new-tab-buy-button.js

HTML / DOM Fingerprints

CSS Classes

fd-wc-product-entregue-porfd-textofd-imagem

Data Attributes

data-fd-product-id

JS Globals

FastdeeFD

FAQ