Linked Variations for WooCommerce – Link Separate Products by Attribute with Swatches, Quick View & Shortcodes Security & Risk Analysis
wordpress.org/plugins/linked-variationThe Linked Variations lets you create product variations from separate products.
Is Linked Variations for WooCommerce – Link Separate Products by Attribute with Swatches, Quick View & Shortcodes Safe to Use in 2026?
Generally Safe
Score 99/100Linked Variations for WooCommerce – Link Separate Products by Attribute with Swatches, Quick View & Shortcodes has a strong security track record. Known vulnerabilities have been patched promptly.
The "linked-variation" plugin v1.0.4 presents a mixed security posture. On the positive side, it demonstrates good practices by exclusively using prepared statements for SQL queries, having a high percentage of properly escaped output, and performing file operations or external HTTP requests. The presence of nonce and capability checks, while limited, is also a positive indicator. However, significant concerns arise from its attack surface. Two out of three entry points, specifically AJAX handlers, lack authentication checks. This means unauthorized users could potentially trigger actions within these handlers, leading to unintended consequences.
The vulnerability history, while currently showing no unpatched vulnerabilities, reveals a past medium-severity vulnerability attributed to "Missing Authorization." This pattern of authorization issues, coupled with the current lack of authorization checks on AJAX handlers, suggests a recurring weakness that attackers could exploit. The static analysis did not reveal any critical or high-severity issues in taint analysis, and there were no dangerous function calls or raw SQL queries, which are strong points. Nevertheless, the unprotected AJAX endpoints remain a primary concern, especially given the historical context of authorization flaws.
Key Concerns
- Unprotected AJAX handlers
- Past medium severity authorization vulnerability
Linked Variations for WooCommerce – Link Separate Products by Attribute with Swatches, Quick View & Shortcodes Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
Advanced Linked Variations for Woocommerce <= 1.0.3 - Missing Authorization
Linked Variations for WooCommerce – Link Separate Products by Attribute with Swatches, Quick View & Shortcodes Code Analysis
Bundled Libraries
Output Escaping
Linked Variations for WooCommerce – Link Separate Products by Attribute with Swatches, Quick View & Shortcodes Attack Surface
AJAX Handlers 2
Shortcodes 1
WordPress Hooks 23
Maintenance & Trust
Linked Variations for WooCommerce – Link Separate Products by Attribute with Swatches, Quick View & Shortcodes Maintenance & Trust
Maintenance Signals
Community Trust
Linked Variations for WooCommerce – Link Separate Products by Attribute with Swatches, Quick View & Shortcodes Alternatives
CRT Chained Product for Woo
crt-chained-product-for-woo
Automatically add included products to cart, manage stock, pricing, quantity sync, and flexible display positions.
Force Sells for Variations
force-sells-for-variations
Adds products to specific variations and synchronizes quantities. Removes quantity change and remove buttons for these added products.
Premmerce Permalink Manager for WooCommerce
woo-permalink-manager
Premmerce Permalink Manager for WooCommerce allows you to change WooCommerce permalink and remove product and product_category slugs from the URL.
Stock Manager for WooCommerce
woocommerce-stock-manager
WooCommerce stock management plugin to manage and edit product stock and their variables from a single dashboard. Stock log, import/export, filters!
YITH Color and Label Variations for WooCommerce
yith-color-and-label-variations-for-woocommerce
YITH WooCommerce Color and Label Variations replaces the dropdown select of your variable products with Colors and Labels
Linked Variations for WooCommerce – Link Separate Products by Attribute with Swatches, Quick View & Shortcodes Developer Profile
37 plugins · 95K total installs
How We Detect Linked Variations for WooCommerce – Link Separate Products by Attribute with Swatches, Quick View & Shortcodes
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/linked-variation/admin/css/select2.min.css/wp-content/plugins/linked-variation/admin/css/jquery-ui.min.css/wp-content/plugins/linked-variation/admin/js/select2.min.js/wp-content/plugins/linked-variation/admin/js/jquery-ui.min.js/wp-content/plugins/linked-variation/admin/js/product-variations.js/wp-content/plugins/linked-variation/public/css/linked-variation-public.css/wp-content/plugins/linked-variation/public/js/linked-variation-public.js/wp-content/plugins/linked-variation/admin/js/select2.min.js/wp-content/plugins/linked-variation/admin/js/jquery-ui.min.js/wp-content/plugins/linked-variation/admin/js/product-variations.js/wp-content/plugins/linked-variation/public/js/linked-variation-public.jslinked-variation/admin/css/select2.min.css?ver=linked-variation/admin/css/jquery-ui.min.css?ver=linked-variation/admin/js/select2.min.js?ver=linked-variation/admin/js/jquery-ui.min.js?ver=linked-variation/admin/js/product-variations.js?ver=linked-variation/public/css/linked-variation-public.css?ver=linked-variation/public/js/linked-variation-public.js?ver=HTML / DOM Fingerprints
dsalv_variation_selectlinked-variation-wrapper<!-- Begin Advanced Linked Variations --><!-- End Advanced Linked Variations -->data-product_iddata-linked_product_idDSALV_Datadsalv_variation_select_init/wp-json/linked-variation/v1/get_variations<div class="linked-variation-wrapper"><select class="dsalv_variation_select">