WP-Safety

Product Materials for WooCommerce – MadeOf Security & Risk Analysis

wordpress.org/plugins/materials-for-woocommerce

Display product materials and compositions beautifully in WooCommerce. Show what your products are made of!

100 active installs v1.0.5 PHP 5.6+ WP 4.4+ Updated Dec 7, 2025
brandsextra-product-optionsmaterialsproduct-fieldsproduct-page
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Product Materials for WooCommerce – MadeOf Safe to Use in 2026?

Generally Safe

Score 100/100

Product Materials for WooCommerce – MadeOf has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago
Risk Assessment

The "materials-for-woocommerce" plugin version 1.0.5 demonstrates a generally strong security posture with several good practices in place. The static analysis reveals no dangerous functions, all SQL queries utilize prepared statements, and there are no indications of insecure file operations or external HTTP requests. The presence of nonce checks and capability checks on entry points further contributes to its security. The taint analysis shows no flows with unsanitized paths, which is a positive sign against common injection vulnerabilities.

However, there are areas for improvement. While the overall output escaping is at 76%, this still leaves a significant portion of outputs potentially vulnerable to cross-site scripting (XSS) attacks. The plugin also has a moderate attack surface with 4 entry points, and while all are currently protected by checks, any future changes or additions that bypass these could introduce risks.

The plugin's vulnerability history is exceptionally clean, with no recorded CVEs, which suggests a history of secure development or thorough auditing. This lack of past vulnerabilities is a significant strength. Despite the minor concern with output escaping, the plugin appears to be relatively secure. The primary area to monitor would be the proper escaping of all outputs to mitigate potential XSS vulnerabilities.

Key Concerns

  • Output escaping is not fully implemented
Vulnerabilities
None known

Product Materials for WooCommerce – MadeOf Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Product Materials for WooCommerce – MadeOf Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
29
91 escaped
Nonce Checks
4
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

76% escaped120 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
matw_activate_template (includes\Settings.php:534)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Product Materials for WooCommerce – MadeOf Attack Surface

Entry Points4
Unprotected0

AJAX Handlers 1

authwp_ajax_matw_activate_templateincludes\Settings.php:81

Shortcodes 3

[matw_alphabetical_materials] includes\Frontend.php:92
[matw_materials_list_view] includes\Frontend.php:93
[matw_matarial_names_by_product] includes\Frontend.php:94
WordPress Hooks 37
actionmatw-material_add_form_fieldsincludes\Admin.php:77
actionmatw-material_edit_form_fieldsincludes\Admin.php:78
actioncreated_matw-materialincludes\Admin.php:80
actionedited_matw-materialincludes\Admin.php:81
actionadmin_enqueue_scriptsincludes\Admin.php:84
actionmatw-material_add_form_fieldsincludes\Admin.php:86
actionmatw-material_edit_form_fieldsincludes\Admin.php:87
actioncreated_matw-materialincludes\Admin.php:89
actionedited_matw-materialincludes\Admin.php:90
filtermanage_edit-matw-material_columnsincludes\Admin.php:96
filtermanage_matw-material_custom_columnincludes\Admin.php:97
filtermanage_edit-matw-material_columnsincludes\Admin.php:99
filtermanage_matw-material_custom_columnincludes\Admin.php:100
actionadmin_print_footer_scriptsincludes\Admin.php:122
actionadmin_enqueue_scriptsincludes\Assets.php:91
actionwp_enqueue_scriptsincludes\Assets.php:93
actionwp_enqueue_scriptsincludes\Assets.php:94
filterwoocommerce_structured_data_productincludes\Frontend.php:96
filterwoocommerce_product_tabsincludes\Frontend.php:106
actioninitincludes\functions.php:34
actionadd_meta_boxesincludes\functions.php:53
filterwp_terms_checklist_argsincludes\functions.php:61
actionadmin_initincludes\functions.php:69
actionsave_post_productincludes\functions.php:84
actionadmin_headincludes\functions.php:115
actionadmin_menuincludes\Settings.php:79
actionadmin_initincludes\Settings.php:80
actionmatw_materials_positionincludes\Settings.php:637
actionproduct_by_materialsincludes\Settings.php:652
actionmaterials_gridincludes\Settings.php:653
actionmaterials_iconsincludes\Settings.php:654
actionmaterials_dougirdincludes\Settings.php:655
actionmaterials_galleryincludes\Settings.php:656
actionmaterials_filterincludes\Settings.php:658
actionbefore_woocommerce_initmaterials-for-woocommerce.php:82
actionplugins_loadedmaterials-for-woocommerce.php:135
actioninitmaterials-for-woocommerce.php:147
Maintenance & Trust

Product Materials for WooCommerce – MadeOf Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 7, 2025
PHP min version5.6
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs100
Alternatives

Product Materials for WooCommerce – MadeOf Alternatives

Extra Product Options For WooCommerce | Custom Product Addons and Fields

Extra Product Options For WooCommerce | Custom Product Addons and Fields

woo-extra-product-options

A
100

WooCommerce Extra Product Options plugin lets you add product addons (custom products field) of 20 different field types to your product page.

30K No CVEs
Product Addons and Product Options With Custom Fields – WowAddons

Product Addons and Product Options With Custom Fields – WowAddons

product-addons

B
78

Product addons for WooCommerce is the ultimate plugin that lets you add extra product options, product fields, and WooCommerce product fields.

3K 1 unpatched
YayExtra – WooCommerce Extra Product Options

YayExtra – WooCommerce Extra Product Options

yayextra

A
93

YayExtra – Product Options for WooCommerce lets you add customizable options and extra fields to your products.

1K 3 CVEs
Advanced Product Fields (Product Addons) for WooCommerce

Advanced Product Fields (Product Addons) for WooCommerce

advanced-product-fields-for-woocommerce

A
99

Add options (addons) to your WooCommerce products so your customers can personalize their products. Product forms for everyone!

50K 1 CVE
Perfect Brands for WooCommerce

Perfect Brands for WooCommerce

perfect-woocommerce-brands

A
95

Perfect Brands for WooCommerce allows you to show product brands in your WooCommerce based store

50K 4 CVEs
Developer Profile

Product Materials for WooCommerce – MadeOf Developer Profile

HappyDevs

4 plugins · 1K total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
18 days
View full developer profile
Detection Fingerprints

How We Detect Product Materials for WooCommerce – MadeOf

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/materials-for-woocommerce/build/backend.js/wp-content/plugins/materials-for-woocommerce/build/frontend.js/wp-content/plugins/materials-for-woocommerce/css/frontend.css/wp-content/plugins/materials-for-woocommerce/css/admin.css
Script Paths
/wp-content/plugins/materials-for-woocommerce/build/backend.js/wp-content/plugins/materials-for-woocommerce/build/frontend.js
Version Parameters
materials-for-woocommerce/build/backend.js?ver=materials-for-woocommerce/build/frontend.js?ver=materials-for-woocommerce/css/frontend.css?ver=materials-for-woocommerce/css/admin.css?ver=

HTML / DOM Fingerprints

CSS Classes
matw-admin-page
Data Attributes
data-matw-admin-page
JS Globals
matw_material_wc
FAQ

Frequently Asked Questions about Product Materials for WooCommerce – MadeOf