Does Karahman Sticky Cart have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Karahman Sticky Cart compatible with WordPress 6.8.5?

According to WordPress.org data, Karahman Sticky Cart 1.0.0 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Karahman Sticky Cart compatible with PHP 7.2+?

Karahman Sticky Cart requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Karahman Sticky Cart updated?

Karahman Sticky Cart was last updated on May 9, 2025. Frequent updates are generally a positive security signal.

What is Karahman Sticky Cart's security score?

Karahman Sticky Cart has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Karahman Sticky Cart Security & Risk Analysis

wordpress.org/plugins/karahman-sticky-cart

Adds a sticky Add to Cart button to WooCommerce product pages. Lightweight, responsive, and customizable

0 active installs v1.0.0 PHP 7.2+ WP 5.8+ Updated May 9, 2025

ecommercefloating-buttonsticky-add-to-cartsticky-cartwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Karahman Sticky Cart Safe to Use in 2026?

Generally Safe

Score 92/100

Karahman Sticky Cart has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The "karahman-sticky-cart" plugin v1.0.0 exhibits a strong security posture based on the provided static analysis. There are no identified AJAX handlers, REST API routes, shortcodes, or cron events, resulting in a zero attack surface. The code signals also indicate a positive security profile with no dangerous functions, file operations, or external HTTP requests. SQL queries are all properly prepared, and output escaping is almost universally applied. The absence of any recorded vulnerabilities in its history further reinforces this positive assessment.

While the lack of identified vulnerabilities and a minimal attack surface are significant strengths, the analysis reveals a complete absence of capability checks and nonce checks. This, combined with the lack of taint analysis data (suggesting the static analysis tool might not have fully processed the code or found nothing to report), presents a theoretical concern. If any user-facing functionalities were present, the lack of these crucial security mechanisms could leave the plugin open to privilege escalation or cross-site request forgery attacks. However, given the zero attack surface, these risks are currently hypothetical and do not represent immediate threats.

Key Concerns

No capability checks found
No nonce checks found

Vulnerabilities

None known

Karahman Sticky Cart Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Karahman Sticky Cart Release Timeline

v1.0.0Current

Code Analysis

Analyzed Apr 16, 2026

Karahman Sticky Cart Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

30 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

97% escaped31 total outputs

Attack Surface

Karahman Sticky Cart Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 6

actionadmin_menuincludes/class-karastca-settings.php:6

actionadmin_initincludes/class-karastca-settings.php:7

filteradmin_footer_textincludes/class-karastca-settings.php:147

filterupdate_footerincludes/class-karastca-settings.php:148

actionwp_enqueue_scriptskarahman-sticky-cart.php:38

actionwp_footerkarahman-sticky-cart.php:42

Maintenance & Trust

Karahman Sticky Cart Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedMay 9, 2025

PHP min version7.2

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Karahman Sticky Cart Alternatives

WooCommerce PayPal Payments

woocommerce-paypal-payments

100

PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.

800K 1 CVE

Mollie Payments for WooCommerce

mollie-payments-for-woocommerce

Accept all major payment methods in WooCommerce today. Credit cards, iDEAL and more! Fast, safe and intuitive.

100K 4 CVEs

TI WooCommerce Wishlist

ti-woocommerce-wishlist

Boost your sales with a free WooCommerce Wishlist feature. Let your customers save and share their favorite products!

100K 9 CVEs

Mercado Pago payments for WooCommerce

woocommerce-mercadopago

Offer to your clients the best experience in e-Commerce by using Mercado Pago as your payment method.

100K 4 CVEs

WPML Multilingual & Multicurrency for WooCommerce

woocommerce-multilingual

Make your store multilingual and enable multiple currencies.

100K 5 CVEs

Developer Profile

Karahman Sticky Cart Developer Profile

Karahman

1 plugin · 0 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Karahman Sticky Cart

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/karahman-sticky-cart/css/sticky-cart-button.css/wp-content/plugins/karahman-sticky-cart/js/sticky-cart-button.js

Script Paths

/wp-content/plugins/karahman-sticky-cart/js/sticky-cart-button.js

Version Parameters

karahman-sticky-cart/css/sticky-cart-button.css?ver=karahman-sticky-cart/js/sticky-cart-button.js?ver=

HTML / DOM Fingerprints

CSS Classes

karastca-pricekarastca-quantitykarastca-button

JS Globals

karastcaSettings

FAQ