WP-Safety

Foolosi Subscription for WooCommerce Security & Risk Analysis

wordpress.org/plugins/foloosi-subscription

It allows you to manage recurring payments for product subscription that grant you constant periodical income

10 active installs v1.0.4 PHP + WP 4.2+ Updated Feb 18, 2021
cardcheckout-pagerecurring-billingsubscription-billinguae
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Foolosi Subscription for WooCommerce Safe to Use in 2026?

Generally Safe

Score 85/100

Foolosi Subscription for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago
Risk Assessment

The foloosi-subscription v1.0.4 plugin exhibits a mixed security posture. On the positive side, it demonstrates strong adherence to secure coding practices with 100% of its SQL queries using prepared statements and a high percentage (92%) of properly escaped output. The absence of any recorded vulnerabilities, including CVEs, is a significant strength, indicating a generally stable and well-maintained codebase historically. However, there are notable areas of concern. The presence of two AJAX handlers, one of which lacks proper authentication checks, presents a direct attack vector. While the taint analysis did not reveal critical or high severity unsanitized paths, the two flows with unsanitized paths, even if not critically exploitable, represent potential weaknesses that could be leveraged in conjunction with other factors. The plugin also makes external HTTP requests, which, while not inherently problematic, can introduce risks if not handled securely.

Overall, the plugin's strong foundation in secure coding for database operations and output is commendable. The primary risk stems from the unprotected AJAX endpoint, which is a common entry point for malicious activity and requires immediate attention. The taint analysis findings, though not critical, suggest that ongoing vigilance and thorough code reviews are necessary. The lack of vulnerability history is positive, but it should not lead to complacency, especially given the identified unprotected entry point.

Key Concerns

  • Unprotected AJAX handler
  • Flows with unsanitized paths (2 instances)
  • External HTTP requests (6 instances)
Vulnerabilities
None known

Foolosi Subscription for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Foolosi Subscription for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
11 prepared
Unescaped Output
86
936 escaped
Nonce Checks
9
Capability Checks
7
File Operations
0
External Requests
6
Bundled Libraries
1

Bundled Libraries

Select2

SQL Query Safety

100% prepared11 total queries

Output Escaping

92% escaped1022 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

8 flows2 with unsanitized paths
<foloosi-subscription-details> (includes\admin\foloosi-subscription-details.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

Foolosi Subscription for WooCommerce Attack Surface

Entry Points2
Unprotected1

AJAX Handlers 2

authwp_ajax_foloosi_plugin_fw_save_toggle_element_metaboxplugin-fw\includes\class-foloosi-metabox.php:85
authwp_ajax_foloosi_plugin_fw_save_toggle_elementplugin-fw\includes\class-foloosi-plugin-panel.php:120
WordPress Hooks 93
actionadmin_noticesfoloosi-subscription-for-woocommerce.php:97
actionadmin_noticesfoloosi-subscription-for-woocommerce.php:99
actionplugins_loadedfoloosi-subscription-for-woocommerce.php:105
actionadmin_noticesfoloosi-subscription-for-woocommerce.php:121
actionfwsbs_renew_ordersfoloosi-subscription-for-woocommerce.php:146
actionfoloosi_fwsbs_initfoloosi-subscription-for-woocommerce.php:149
actionadmin_headfoloosi-subscription-for-woocommerce.php:150
filterfoloosi_show_plugin_row_metaincludes\class.foloosi-wc-subscription-admin.php:70
actionadmin_enqueue_scriptsincludes\class.foloosi-wc-subscription-admin.php:73
filterproduct_type_optionsincludes\class.foloosi-wc-subscription-admin.php:76
actionwoocommerce_variation_optionsincludes\class.foloosi-wc-subscription-admin.php:77
actionwoocommerce_product_options_general_product_dataincludes\class.foloosi-wc-subscription-admin.php:80
actionwoocommerce_process_product_metaincludes\class.foloosi-wc-subscription-admin.php:81
actionwoocommerce_save_product_variationincludes\class.foloosi-wc-subscription-admin.php:82
actionwoocommerce_variation_options_pricingincludes\class.foloosi-wc-subscription-admin.php:83
filterwoocommerce_admin_settings_sanitize_optionincludes\class.foloosi-wc-subscription-admin.php:85
actionadmin_menuincludes\class.foloosi-wc-subscription-admin.php:354
actionadmin_menuincludes\class.foloosi-wc-subscription-admin.php:355
actionfoloosi_fwsbs_subscriptions_tabincludes\class.foloosi-wc-subscription-admin.php:356
filterwoocommerce_cart_item_priceincludes\class.foloosi-wc-subscription-cart.php:56
filterwoocommerce_cart_item_subtotalincludes\class.foloosi-wc-subscription-cart.php:57
actionwp_loadedincludes\class.foloosi-wc-subscription-cron.php:49
actionwoocommerce_new_order_itemincludes\class.foloosi-wc-subscription-order.php:63
actionwoocommerce_checkout_order_processedincludes\class.foloosi-wc-subscription-order.php:64
actionwoocommerce_add_order_item_metaincludes\class.foloosi-wc-subscription-order.php:66
actionwoocommerce_checkout_order_processedincludes\class.foloosi-wc-subscription-order.php:67
actionwoocommerce_checkout_order_processedincludes\class.foloosi-wc-subscription-order.php:72
actionwoocommerce_payment_completeincludes\class.foloosi-wc-subscription-order.php:78
actionwoocommerce_order_status_completedincludes\class.foloosi-wc-subscription-order.php:79
actionwoocommerce_order_status_processingincludes\class.foloosi-wc-subscription-order.php:80
filterfwsbs_price_checkincludes\class.foloosi-wc-subscription-order.php:142
filterwoocommerce_shipping_chosen_methodincludes\class.foloosi-wc-subscription-order.php:216
filterwoocommerce_shipping_chosen_methodincludes\class.foloosi-wc-subscription-order.php:457
actionwoocommerce_find_ratesincludes\class.foloosi-wc-subscription-order.php:982
actionplugins_loadedincludes\class.foloosi-wc-subscription.php:54
filterwoocommerce_locate_core_templateincludes\class.foloosi-wc-subscription.php:61
filterwoocommerce_locate_templateincludes\class.foloosi-wc-subscription.php:62
filterwoocommerce_get_price_htmlincludes\class.foloosi-wc-subscription.php:73
filterwoocommerce_variable_price_htmlincludes\class.foloosi-wc-subscription.php:74
filterwoocommerce_order_formatted_line_subtotalincludes\class.foloosi-wc-subscription.php:76
filterwoocommerce_add_to_cart_validationincludes\class.foloosi-wc-subscription.php:79
actioninitincludes\class.fwsbs-susbscription-helper.php:59
actionadmin_initincludes\class.fwsbs-susbscription-helper.php:60
actionadd_meta_boxesincludes\class.fwsbs-susbscription-helper.php:61
actioninitincludes\class.fwsbs-susbscription.php:128
filterwoocommerce_foloosi_argsincludes\gateways\foloosi\class.foloosi-wc-subscription-foloosi.php:61
filterextra_theme_headersplugin-fw\foloosi-functions.php:198
filterfoloosi_title_special_charactersplugin-fw\foloosi-functions.php:272
actionshutdownplugin-fw\foloosi-woocommerce-compatibility.php:762
actionadmin_enqueue_scriptsplugin-fw\includes\class-foloosi-assets.php:45
actionadd_meta_boxesplugin-fw\includes\class-foloosi-metabox.php:79
actionsave_postplugin-fw\includes\class-foloosi-metabox.php:80
actionadmin_enqueue_scriptsplugin-fw\includes\class-foloosi-metabox.php:81
filterfoloosi_icons_screen_idsplugin-fw\includes\class-foloosi-metabox.php:83
actionadmin_initplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:84
actionadmin_menuplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:85
actionadmin_bar_menuplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:86
actionadmin_enqueue_scriptsplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:87
actionadmin_initplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:88
filterwoocommerce_screen_idsplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:89
filterwoocommerce_admin_settings_sanitize_optionplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:91
actionfoloosi_plugin_fw_get_field_afterplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:93
actionfoloosi_plugin_fw_before_woocommerce_panelplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:94
actionadmin_action_foloosi_plugin_fw_save_toggle_elementplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:95
filterwoocommerce_admin_settings_sanitize_optionplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:96
actionadmin_enqueue_scriptsplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:98
actionadmin_initplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:99
actionwoocommerce_admin_field_boxinfoplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:113
actionwoocommerce_admin_field_foloosi-fieldplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:114
filteradmin_body_classplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:115
filterwoocommerce_admin_settings_sanitize_optionplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:117
actionadmin_menuplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:120
filteradd_menu_classesplugin-fw\includes\class-foloosi-plugin-panel-woocommerce.php:122
actionadmin_initplugin-fw\includes\class-foloosi-plugin-panel.php:105
actionadmin_menuplugin-fw\includes\class-foloosi-plugin-panel.php:106
actionadmin_bar_menuplugin-fw\includes\class-foloosi-plugin-panel.php:107
actionadmin_initplugin-fw\includes\class-foloosi-plugin-panel.php:108
actionadmin_enqueue_scriptsplugin-fw\includes\class-foloosi-plugin-panel.php:110
actionadmin_initplugin-fw\includes\class-foloosi-plugin-panel.php:111
actionadmin_enqueue_scriptsplugin-fw\includes\class-foloosi-plugin-panel.php:117
actionfoloosi_plugin_fw_before_foloosi_panelplugin-fw\includes\class-foloosi-plugin-panel.php:119
actionall_admin_noticesplugin-fw\includes\class-foloosi-plugin-panel.php:189
actionadmin_footerplugin-fw\includes\class-foloosi-plugin-panel.php:190
filterparent_fileplugin-fw\includes\class-foloosi-plugin-panel.php:192
filtersubmenu_fileplugin-fw\includes\class-foloosi-plugin-panel.php:193
filteradmin_body_classplugin-fw\includes\class-foloosi-plugin-panel.php:205
actionadmin_menuplugin-fw\includes\class-foloosi-plugin-panel.php:208
filteradd_menu_classesplugin-fw\includes\class-foloosi-plugin-panel.php:209
actionadmin_initplugin-fw\includes\class-foloosi-plugin-subpanel.php:44
actionadmin_menuplugin-fw\includes\class-foloosi-plugin-subpanel.php:45
actionadmin_bar_menuplugin-fw\includes\class-foloosi-plugin-subpanel.php:46
actionadmin_initplugin-fw\includes\class-foloosi-plugin-subpanel.php:47
actionadmin_enqueue_scriptsplugin-fw\includes\class-foloosi-plugin-subpanel.php:48

Scheduled Events 1

fwsbs_renew_orders
Maintenance & Trust

Foolosi Subscription for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested5.6.17
Last updatedFeb 18, 2021
PHP min version
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Foolosi Subscription for WooCommerce Alternatives

YITH WooCommerce Subscription

YITH WooCommerce Subscription

yith-woocommerce-subscription

A
99

It allows you to manage recurring payments for product subscription that grant you constant periodical income

7K 1 CVE
Foloosi Payments

Foloosi Payments

foloosi-for-woocommerce

A
85

Foloosi Payments plugin to accept credit card and debit payments.

100 No CVEs
Tubapay

Tubapay

tubapay-v2

A
100

Podzielenie płatności za zakupy Klientów oraz obsługa płatności abonamentowych / subskrypcji w WooCommerce. Wszyj w swoją ofertę pobieranie cyklicznyc &hellip;

100 No CVEs
WP Payment

WP Payment

wp-payment

A
92

Get recurring and onetime payments with PayPal, Authorize.NET and Stripe.

20 No CVEs
ProAbono – Subscription billing

ProAbono – Subscription billing

proabono

A
100

ProAbono is made by WordPress experts to go further with WP sites, and help you grow your business by easily selling your services by paying subscript &hellip;

0 No CVEs
Developer Profile

Foolosi Subscription for WooCommerce Developer Profile

foloosi

2 plugins · 110 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Foolosi Subscription for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/foloosi-subscription/plugin-fw/assets/css/foloosi-plugin-fw.css/wp-content/plugins/foloosi-subscription/plugin-fw/assets/js/foloosi-plugin-fw.js/wp-content/plugins/foloosi-subscription/includes/assets/css/admin.css/wp-content/plugins/foloosi-subscription/includes/assets/js/admin.js/wp-content/plugins/foloosi-subscription/includes/assets/js/cart.js
Script Paths
/wp-content/plugins/foloosi-subscription/plugin-fw/assets/js/foloosi-plugin-fw.js/wp-content/plugins/foloosi-subscription/includes/assets/js/admin.js/wp-content/plugins/foloosi-subscription/includes/assets/js/cart.js
Version Parameters
foloosi-subscription/plugin-fw/assets/css/foloosi-plugin-fw.css?ver=foloosi-subscription/plugin-fw/assets/js/foloosi-plugin-fw.js?ver=foloosi-subscription/includes/assets/css/admin.css?ver=foloosi-subscription/includes/assets/js/admin.js?ver=foloosi-subscription/includes/assets/js/cart.js?ver=

HTML / DOM Fingerprints

CSS Classes
foloosi-woocommerce-subscription
HTML Comments
<!-- Registration hook ________________________________________ --><!-- Define constants ________________________________________ --><!-- Woocommerce installation check _________________________ --><!-- Implements admin features of Foloosi Subscription for WooCommerce -->+8 more
Data Attributes
data-page="foloosi_woocommerce_subscription"
JS Globals
window.foloosi_fwsbs_obj
FAQ

Frequently Asked Questions about Foolosi Subscription for WooCommerce