Does Magic URL Coupon for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Magic URL Coupon for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Magic URL Coupon for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, Magic URL Coupon for WooCommerce 2.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Magic URL Coupon for WooCommerce compatible with PHP 7.2+?

Magic URL Coupon for WooCommerce requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Magic URL Coupon for WooCommerce updated?

Magic URL Coupon for WooCommerce was last updated on Jun 14, 2025. Frequent updates are generally a positive security signal.

What is Magic URL Coupon for WooCommerce's security score?

Magic URL Coupon for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Magic URL Coupon for WooCommerce Security & Risk Analysis

wordpress.org/plugins/magic-coupon

Pass a WooCommerce coupon code via URL and display the product prices as if the coupon has been applied to them. Coupon is automatically added to the …

90 active installs v2.1 PHP 7.2+ WP 5.8+ Updated Jun 14, 2025

couponsmarketingpromotionswoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Magic URL Coupon for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Magic URL Coupon for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9mo ago

Risk Assessment

The magic-coupon plugin v2.1 exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of dangerous functions, reliance on prepared statements for SQL, and proper output escaping are excellent security practices. Furthermore, the lack of any recorded vulnerabilities, including critical or high-severity ones, suggests a mature and well-maintained codebase.

However, the static analysis does highlight a significant area of concern: the complete absence of nonce checks and capability checks. While there are no unprotected entry points identified, this lack of explicit authorization checks on the three shortcodes is a critical oversight. In the event of a future security vulnerability or misconfiguration in the WordPress core or other plugins, these shortcodes could potentially be exploited by unauthenticated or low-privileged users.

In conclusion, the plugin has commendable technical security measures in place, demonstrating good coding hygiene. The vulnerability history is a strong positive indicator. Nevertheless, the missing nonce and capability checks represent a notable weakness that could be exploited, leading to potential privilege escalation or unauthorized actions if combined with other weaknesses or future exploits.

Key Concerns

Missing nonce checks on shortcodes
Missing capability checks on shortcodes

Vulnerabilities

None known

Magic URL Coupon for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Magic URL Coupon for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

21 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped21 total outputs

Attack Surface

Magic URL Coupon for WooCommerce Attack Surface

Entry Points3

Unprotected0

Shortcodes 3

[magic_coupon_html_message] includes\class-magic-coupon.php:673

[magic_coupon_html_message] includes\class-magic-coupon.php:675

[magic_coupon_html_message] includes\class-magic-coupon.php:683

WordPress Hooks 15

actionplugins_loadedincludes\class-magic-coupon.php:52

actioninitincludes\class-magic-coupon.php:53

actioninitincludes\class-magic-coupon.php:54

actionwoocommerce_add_to_cartincludes\class-magic-coupon.php:55

actionwoocommerce_after_cart_item_quantity_updateincludes\class-magic-coupon.php:56

filterwoocommerce_coupon_data_tabsincludes\class-magic-coupon.php:57

actionwoocommerce_coupon_data_panelsincludes\class-magic-coupon.php:58

actionwoocommerce_coupon_options_saveincludes\class-magic-coupon.php:59

actionwpincludes\class-magic-coupon.php:60

filterwoocommerce_product_get_priceincludes\class-magic-coupon.php:156

filterwoocommerce_product_variation_get_priceincludes\class-magic-coupon.php:157

filterwoocommerce_variation_pricesincludes\class-magic-coupon.php:159

filtertier_pricing_table/price/product_price_rulesincludes\class-magic-coupon.php:161

filterwoocommerce_product_is_on_saleincludes\class-magic-coupon.php:174

actionbefore_woocommerce_initmagic-coupon.php:25

Maintenance & Trust

Magic URL Coupon for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJun 14, 2025

PHP min version7.2

Downloads4K

Community Trust

Rating100/100

Number of ratings2

Active installs90

Alternatives

Magic URL Coupon for WooCommerce Alternatives

Deals and Coupons Lite

deals-and-coupons-lite

100

Deals and Coupons is an affiliate marketing coupon plugin designed to increase conversions by displaying coupons and deals on your WordPress site.

70 No CVEs

Birthday Bash

birthday-bash

100

Make WooCommerce customers happy by automatically sending birthday coupons. It’s an easy way to boost loyalty and bring them back to shop again.

10 No CVEs

Coupon Prompt – Smart WooCommerce Coupon Notices

coupon-prompt

100

Smart WooCommerce coupon suggestions for cart and checkout—no auto-apply, just helpful, secure prompts.

0 No CVEs

couponmaster

100

Create, manage and display coupon codes with WooCommerce integration. ALL FEATURES ARE FREE - no premium restrictions!

0 No CVEs

CrossSell Mailer – Post-Purchase Coupon Rules (Lite)

crosssell-mailer-post-purchase-coupon-rules-lite

100

Automatically send personalized coupon emails after purchase to boost repeat sales and cross-selling performance.

0 No CVEs

Developer Profile

Magic URL Coupon for WooCommerce Developer Profile

Marco Almeida | Webdados

21 plugins · 27K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

143 days

View full developer profile

Detection Fingerprints

How We Detect Magic URL Coupon for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/magic-coupon/assets/css/magic-coupon-frontend.css/wp-content/plugins/magic-coupon/assets/js/magic-coupon-frontend.js

Script Paths

/wp-content/plugins/magic-coupon/assets/js/magic-coupon-frontend.js

Version Parameters

magic-coupon/assets/css/magic-coupon-frontend.css?ver=magic-coupon/assets/js/magic-coupon-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

magic-coupon-message-container

HTML Comments

Data Attributes

data-mcoupon-url-parameter

JS Globals

magic_coupon_frontend_params

FAQ

Magic URL Coupon for WooCommerce Security & Risk Analysis

Is Magic URL Coupon for WooCommerce Safe to Use in 2026?

Generally Safe

Key Concerns

Magic URL Coupon for WooCommerce Security Vulnerabilities

Magic URL Coupon for WooCommerce Code Analysis

Output Escaping

Magic URL Coupon for WooCommerce Attack Surface

Shortcodes 3

Magic URL Coupon for WooCommerce Maintenance & Trust

Maintenance Signals

Community Trust

Magic URL Coupon for WooCommerce Alternatives

Deals and Coupons Lite

Birthday Bash

Coupon Prompt – Smart WooCommerce Coupon Notices

couponmaster

CrossSell Mailer – Post-Purchase Coupon Rules (Lite)

Magic URL Coupon for WooCommerce Developer Profile

How We Detect Magic URL Coupon for WooCommerce

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Magic URL Coupon for WooCommerce