WP-Safety

Min and Max Quantity for WooCommerce Security & Risk Analysis

wordpress.org/plugins/minmax-quantity-for-woocommerce

Min and Max Quantity for WooCommerce - set limits for cost of products in orders and in groups and limits for quantity of products, product variations …

20K active installs v1.3.8.3 PHP 7.0+ WP 5.0+ Updated Oct 27, 2025
limit-costlimit-quantitymin-and-max-to-purchaserange-to-buywoocommerce-limits
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Min and Max Quantity for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Min and Max Quantity for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago
Risk Assessment

The "minmax-quantity-for-woocommerce" plugin version 1.3.8.4 exhibits a generally good security posture, with no known vulnerabilities or critical taint flows identified. The use of prepared statements for all SQL queries and a significant number of capability checks indicate a conscious effort towards secure coding practices. However, there are areas for improvement that present potential risks.

The primary concern stems from the attack surface. With 13 AJAX handlers, one of which lacks authentication checks, an attacker could potentially exploit this entry point to perform unauthorized actions. Additionally, while the plugin uses `unserialize`, a dangerous function, there are no specific details provided about its usage, making it difficult to fully assess the risk. The output escaping is also a moderate concern, with only 52% of outputs properly escaped, leaving room for cross-site scripting vulnerabilities.

The absence of any recorded vulnerabilities in its history is a positive sign, suggesting a well-maintained and secure codebase. However, the presence of an unauthenticated AJAX handler and a significant percentage of unescaped output are weaknesses that should be addressed to further strengthen the plugin's security. Overall, while the plugin is likely safe to use in its current state, these identified areas of concern warrant attention and remediation.

Key Concerns

  • Unauthenticated AJAX handler
  • Moderate unescaped output percentage
  • Use of unserialize function
Vulnerabilities
None known

Min and Max Quantity for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Min and Max Quantity for WooCommerce Code Analysis

Dangerous Functions
1
Raw SQL Queries
0
0 prepared
Unescaped Output
114
125 escaped
Nonce Checks
16
Capability Checks
23
File Operations
4
External Requests
5
Bundled Libraries
0

Dangerous Functions Found

unserialize$error_log = unserialize(preg_replace('/R:\d+/', 's:18:"RECURSION DETECTED"', serialize(self::$errorberocket\includes\updater.php:128

Output Escaping

52% escaped239 total outputs
Data Flows
All sanitized

Data Flow Analysis

8 flows
<framework> (berocket\framework.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

Min and Max Quantity for WooCommerce Attack Surface

Entry Points13
Unprotected1

AJAX Handlers 13

authwp_ajax_brfr_get_export_settingsberocket\includes\admin\import_export.php:5
authwp_ajax_brfr_set_import_settingsberocket\includes\admin\import_export.php:6
authwp_ajax_brfr_get_import_backupsberocket\includes\admin\import_export.php:7
authwp_ajax_brfr_restore_import_backupsberocket\includes\admin\import_export.php:8
authwp_ajax_berocket_admin_close_noticeberocket\includes\admin_notices.php:1199
authwp_ajax_berocket_subscribe_emailberocket\includes\admin_notices.php:1200
authwp_ajax_berocket_rate_stars_closeberocket\includes\admin_notices.php:1208
authwp_ajax_berocket_feature_request_sendberocket\includes\admin_notices.php:1209
authwp_ajax_berocket_error_notices_getberocket\includes\error_notices.php:5
authwp_ajax_berocket_information_close_noticeberocket\includes\information_notices.php:198
authwp_ajax_br_test_keyberocket\includes\updater.php:46
authwp_ajax_br_test_keysberocket\includes\updater.php:47
authwp_ajax_mm_quantity_ajaxmain.php:110
WordPress Hooks 143
filterplugins_listberocket\framework.php:84
filterBeRocket_updater_add_pluginberocket\framework.php:105
filterberocket_admin_notices_rate_stars_pluginsberocket\framework.php:106
actioninitberocket\framework.php:107
actioninitberocket\framework.php:110
actionwp_headberocket\framework.php:111
actionwp_footerberocket\framework.php:112
actionadmin_initberocket\framework.php:113
actionadmin_menuberocket\framework.php:114
actionadmin_enqueue_scriptsberocket\framework.php:115
actionberocket_enqueue_mediaberocket\framework.php:116
filterplugin_row_metaberocket\framework.php:122
filteris_berocket_settings_pageberocket\framework.php:123
actionplugins_loadedberocket\framework.php:128
actionsanitize_comment_cookiesberocket\framework.php:129
actioninstall_plugins_pre_plugin-informationberocket\framework.php:130
filterberocket_admin_notices_subscribe_pluginsberocket\framework.php:132
filterBeRocket_admin_init_user_capabilitiesberocket\framework.php:135
filterberocket_sanitize_array_predefineberocket\framework.php:136
filterberocket_sanitize_array_ksesberocket\framework.php:137
filterberocket_sanitize_array_ksesberocket\framework.php:140
actionbefore_woocommerce_initberocket\framework.php:150
filterloop_shop_per_pageberocket\framework.php:391
actionupgrader_process_completeberocket\framework.php:499
actionadmin_footerberocket\framework.php:1158
actionwp_footerberocket\framework.php:1159
actionadmin_initberocket\framework.php:1273
actionadmin_bar_menuberocket\includes\admin\admin_bar.php:8
actionwp_footerberocket\includes\admin\admin_bar.php:9
filterberocket_admin_bar_plugins_databerocket\includes\admin\admin_bar.php:149
actionBeRocket_framework_updater_account_form_afterberocket\includes\admin\import_export.php:4
filterberocket_admin_notice_is_display_noticeberocket\includes\admin_notices.php:75
filterberocket_admin_notice_is_display_notice_priorityberocket\includes\admin_notices.php:76
actionadmin_noticesberocket\includes\admin_notices.php:1198
actionadmin_noticesberocket\includes\admin_notices.php:1207
actionberocket_rate_plugin_windowberocket\includes\admin_notices.php:1210
actionberocket_related_plugins_windowberocket\includes\admin_notices.php:1211
actionberocket_above_admin_settingsberocket\includes\admin_notices.php:1212
actionberocket_feature_request_windowberocket\includes\admin_notices.php:1213
actionadmin_footerberocket\includes\admin_notices.php:1285
actionadmin_footerberocket\includes\admin_notices.php:1493
actionadmin_footerberocket\includes\admin_notices.php:1922
actionadmin_footerberocket\includes\admin_notices.php:2079
actioninitberocket\includes\custom_post\enable_disable.php:9
actionadmin_initberocket\includes\custom_post\enable_disable.php:10
actionpost_action_enableberocket\includes\custom_post\enable_disable.php:13
actionpost_action_disableberocket\includes\custom_post\enable_disable.php:14
filterpost_classberocket\includes\custom_post\enable_disable.php:16
filterpre_get_postsberocket\includes\custom_post\enable_disable.php:18
actionpre_get_postsberocket\includes\custom_post\sortable.php:22
actionin_admin_footerberocket\includes\custom_post\sortable.php:117
actioninitberocket\includes\custom_post.php:58
filterinitberocket\includes\custom_post.php:59
filteradmin_initberocket\includes\custom_post.php:60
filterwp_insert_post_databerocket\includes\custom_post.php:61
filterBeRocket_admin_init_user_capabilitiesberocket\includes\custom_post.php:71
actionadd_meta_boxesberocket\includes\custom_post.php:128
actionsave_postberocket\includes\custom_post.php:129
filterpost_row_actionsberocket\includes\custom_post.php:130
filterlist_table_primary_columnberocket\includes\custom_post.php:131
actionadmin_enqueue_scriptsberocket\includes\custom_post.php:133
filteris_berocket_settings_pageberocket\includes\custom_post.php:135
actionadmin_footerberocket\includes\custom_post.php:162
actionadmin_noticesberocket\includes\information_notices.php:197
actionadmin_initberocket\includes\updater.php:18
filterwoocommerce_addons_sectionsberocket\includes\updater.php:27
filteris_berocket_settings_pageberocket\includes\updater.php:28
actionadmin_footerberocket\includes\updater.php:30
actionadmin_headberocket\includes\updater.php:39
actionadmin_menuberocket\includes\updater.php:40
actionadmin_menuberocket\includes\updater.php:41
actionnetwork_admin_menuberocket\includes\updater.php:42
actionadmin_initberocket\includes\updater.php:43
filterpre_set_site_transient_update_pluginsberocket\includes\updater.php:44
filterplugins_api_resultberocket\includes\updater.php:45
filterhttp_request_host_is_externalberocket\includes\updater.php:48
actionadmin_footerberocket\includes\updater.php:51
actionwp_footerberocket\includes\updater.php:52
filterberocket_display_additional_noticesberocket\includes\updater.php:92
filtercustom_menu_orderberocket\includes\updater.php:98
filterberocket_admin_notice_is_display_noticeberocket\includes\updater.php:102
filterberocket_admin_notice_is_display_notice_priorityberocket\includes\updater.php:103
filterplugins_api_resultberocket\includes\updater.php:109
actioninitberocket\includes\updater.php:1413
actionadmin_enqueue_scriptsberocket\sale\sale.php:4
actioninitincludes\addons\attribute_limitation.php:26
filterbrfr_berocket_minmax_custom_post_postmetaincludes\addons\attribute_limitation.php:27
filterbrfr_berocket_minmax_custom_post_attribute_postmeta_descincludes\addons\attribute_limitation.php:28
filterbrfr_data_berocket_minmax_custom_postincludes\addons\attribute_limitation.php:29
filterbrfr_tabs_info_berocket_minmax_custom_postincludes\addons\attribute_limitation.php:30
filterberocket_minmax_group_limitation_settings_textincludes\addons\attribute_limitation.php:33
filterberocket_minmax_check_product_errorincludes\addons\attribute_limitation.php:34
filterberocket_minmax_add_correct_errorincludes\addons\attribute_limitation.php:35
filterwoocommerce_available_variationincludes\addons\set_input_limitation.php:9
filterberocket_minmax_check_product_variationincludes\addons\set_input_limitation.php:10
filterberocket_minmax_check_product_inputincludes\addons\set_input_limitation.php:11
actionwp_footerincludes\addons\set_input_limitation.php:12
filterwoocommerce_quantity_input_argsincludes\addons\set_input_limitation.php:13
actionwoocommerce_before_add_to_cart_formincludes\addons\set_input_limitation.php:14
filterbrfr_MM_Quantity_input_limitationincludes\addons\set_input_limitation.php:18
filterberocket_check_product_for_each_product_varincludes\addons\set_input_limitation.php:21
filterberocket_check_product_for_each_productincludes\addons\set_input_limitation.php:22
filterwoocommerce_add_to_cart_quantityincludes\addons\set_input_limitation.php:24
filterwoocommerce_store_api_product_quantity_minimumincludes\addons\set_input_limitation.php:27
filterwoocommerce_store_api_product_quantity_maximumincludes\addons\set_input_limitation.php:28
filterwoocommerce_store_api_product_quantity_multiple_ofincludes\addons\set_input_limitation.php:29
filterwoocommerce_available_variationincludes\addons\set_input_limitation.php:58
filterbrfr_berocket_minmax_custom_post_limitationsincludes\custom_post.php:265
filterbrfr_berocket_minmax_custom_post_text_explanationincludes\custom_post.php:266
filterwoocommerce_product_export_column_namesincludes\import_export.php:7
filterwoocommerce_product_export_product_default_columnsincludes\import_export.php:8
filterwoocommerce_product_export_product_column_min_quantityincludes\import_export.php:9
filterwoocommerce_product_export_product_column_max_quantityincludes\import_export.php:10
filterwoocommerce_csv_product_import_mapping_optionsincludes\import_export.php:12
filterwoocommerce_csv_product_import_mapping_default_columnsincludes\import_export.php:13
filterwoocommerce_product_import_pre_insert_product_objectincludes\import_export.php:14
actioninitmain.php:105
actionwp_headmain.php:106
actionadmin_initmain.php:107
actionadmin_enqueue_scriptsmain.php:108
actionwp_enqueue_scriptsmain.php:109
actionwoocommerce_product_options_inventory_product_datamain.php:112
actionsave_postmain.php:113
actionwoocommerce_product_after_variable_attributesmain.php:114
actionwoocommerce_save_product_variationmain.php:115
actionberocket_minmax_product_text_error_singlemain.php:116
actionwoocommerce_after_calculate_totalsmain.php:119
actionwp_headmain.php:121
filterwoocommerce_add_to_cart_validationmain.php:123
actionwoocommerce_after_cart_item_quantity_updatemain.php:124
actionwoocommerce_cart_item_restoredmain.php:125
actionwoocommerce_before_shop_loopmain.php:127
filterwoocommerce_add_to_cart_fragmentsmain.php:128
filterBeRocket_updater_menu_order_custom_postmain.php:129
filterberocket_update_qunatity_limitation_result_arraymain.php:130
filterberocket_minmax_group_limitations_on_product_checkmain.php:421
filterberocket_minmax_group_limitations_before_error_checkmain.php:422
filterberocket_minmax_group_limitations_filtermain.php:423
filterberocket_minmax_check_product_errormain.php:424
filterberocket_minmax_group_limitation_settings_textmain.php:425
actionwoocommerce_after_cart_tablemain.php:1214
actionwoocommerce_after_mini_cartmain.php:1215
actionwoocommerce_after_calculate_totalsmain.php:1250
Maintenance & Trust

Min and Max Quantity for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedOct 27, 2025
PHP min version7.0
Downloads519K

Community Trust

Rating96/100
Number of ratings217
Active installs20K
Alternatives

Min and Max Quantity for WooCommerce Alternatives

Min Max Quantities – Set Minimum/Maximum Quantity & Price Limits with Step Control for WooCommerce

Min Max Quantities – Set Minimum/Maximum Quantity & Price Limits with Step Control for WooCommerce

wc-min-max-quantities

A
100

Set minimum and maximum order quantities or amounts for individual products, categories, or globally, with quantity-step control for WooCommerce store &hellip;

10K No CVEs
Order Monitor – Order Minimum/Maximum, Order Limit, Min and Max Quantity for WooCommerce

Order Monitor – Order Minimum/Maximum, Order Limit, Min and Max Quantity for WooCommerce

order-monitor

A
100

Restrict users from placing orders or adding items to the cart within a custom time period and limit the total number of orders.

0 No CVEs
Min Max Control – Min Max Quantity & Step Control for WooCommerce

Min Max Control – Min Max Quantity & Step Control for WooCommerce

woo-min-max-quantity-step-control-single

A
100

Min Max Control plugin offers to set product's minimum, maximum quantity and step of each product individually.

10K 1 CVE
Min and Max for WooCommerce

Min and Max for WooCommerce

min-and-max-for-woocommerce

A
85

Effortlessly handle minimum and maximum quantity limits with ease using the powerful features of the WooCommerce Default Quantity plugin.

0 No CVEs
Developer Profile

Min and Max Quantity for WooCommerce Developer Profile

BeRocket

22 plugins · 139K total installs

78
trust score
Avg Security Score
99/100
Avg Patch Time
381 days
View full developer profile
Detection Fingerprints

How We Detect Min and Max Quantity for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/minmax-quantity-for-woocommerce/css/style.css/wp-content/plugins/minmax-quantity-for-woocommerce/js/frontend.js/wp-content/plugins/minmax-quantity-for-woocommerce/js/script.js
Script Paths
/wp-content/plugins/minmax-quantity-for-woocommerce/js/frontend.js/wp-content/plugins/minmax-quantity-for-woocommerce/js/script.js
Version Parameters
minmax-quantity-for-woocommerce/css/style.css?ver=minmax-quantity-for-woocommerce/js/frontend.js?ver=minmax-quantity-for-woocommerce/js/script.js?ver=

HTML / DOM Fingerprints

CSS Classes
berocket_min_max_quantity_inputberocket_min_max_quantity_button
Data Attributes
data-product_iddata-max_quantitydata-min_quantity
JS Globals
berocket_frontend_js
FAQ

Frequently Asked Questions about Min and Max Quantity for WooCommerce