WP-Safety

ModeFilter Pro Security & Risk Analysis

wordpress.org/plugins/modefilter-pro

Modern WooCommerce product filters with a chip-based UI, AJAX-powered product grid, and a flexible Shop ⇄ Catalog Mode toggle.

0 active installs v1.0.5 PHP 7.4+ WP 6.2+ Updated Mar 13, 2026
ajax-filterscatalog-modeelementorproduct-filterswoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is ModeFilter Pro Safe to Use in 2026?

Generally Safe

Score 100/100

ModeFilter Pro has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 22d ago
Risk Assessment

The plugin 'modefilter-pro' v1.0.5 exhibits a strong security posture based on the provided static analysis and vulnerability history. It demonstrates excellent practices by utilizing prepared statements for all SQL queries and ensuring a high percentage of output is properly escaped. The absence of dangerous functions, file operations, and external HTTP requests further contributes to its safety. Crucially, all identified entry points, including AJAX handlers and shortcodes, appear to have proper authentication and capability checks in place, and there are no recorded vulnerabilities or CVEs, indicating a history of secure development or diligent patching.

However, a minor concern arises from the taint analysis, which identified one flow with an unsanitized path. While this flow did not reach a critical or high severity in the analysis, it represents a potential area for exploitation if not properly handled. The presence of this single unsanitized flow, despite the overall strong security measures, warrants careful review.

In conclusion, 'modefilter-pro' v1.0.5 is generally well-secured, with robust implementation of core security practices. The primary area for improvement is the investigation and sanitization of the single identified unsanitized path flow. The lack of historical vulnerabilities is a positive indicator, but vigilance against even minor code-level risks remains important.

Key Concerns

  • Flow with unsanitized path
Vulnerabilities
None known

ModeFilter Pro Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

ModeFilter Pro Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
11 prepared
Unescaped Output
22
266 escaped
Nonce Checks
6
Capability Checks
6
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared11 total queries

Output Escaping

92% escaped288 total outputs
Data Flows
1 unsanitized

Data Flow Analysis

4 flows1 with unsanitized paths
add_dropdown_filter (includes\class-catalog-ext.php:451)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

ModeFilter Pro Attack Surface

Entry Points7
Unprotected0

AJAX Handlers 5

authwp_ajax_modep_get_productsincludes\class-ajax.php:32
noprivwp_ajax_modep_get_productsincludes\class-ajax.php:33
authwp_ajax_modep_toggle_modeincludes\class-catalog-ext.php:69
authwp_ajax_modep_subscribe_stockincludes\class-stock.php:17
noprivwp_ajax_modep_subscribe_stockincludes\class-stock.php:18

Shortcodes 2

[modep_filters] includes\class-shortcode.php:21
[modep_catalog] includes\class-shortcode.php:22
WordPress Hooks 37
actionadmin_menuincludes\admin\class-admin.php:53
actionadmin_initincludes\admin\class-admin.php:54
actionadmin_initincludes\admin\class-admin.php:55
actionadmin_initincludes\admin\class-admin.php:58
actionadmin_enqueue_scriptsincludes\admin\class-admin.php:62
actionwp_enqueue_scriptsincludes\class-assets.php:18
actionelementor/frontend/after_register_scriptsincludes\class-assets.php:21
actionelementor/editor/after_enqueue_scriptsincludes\class-assets.php:22
actionwoocommerce_product_queryincludes\class-catalog-ext.php:53
filtermanage_edit-product_columnsincludes\class-catalog-ext.php:57
actionmanage_product_posts_custom_columnincludes\class-catalog-ext.php:58
actionquick_edit_custom_boxincludes\class-catalog-ext.php:60
actionbulk_edit_custom_boxincludes\class-catalog-ext.php:61
actionsave_post_productincludes\class-catalog-ext.php:62
filterviews_edit-productincludes\class-catalog-ext.php:64
actionrestrict_manage_postsincludes\class-catalog-ext.php:65
actionpre_get_postsincludes\class-catalog-ext.php:66
actionadmin_enqueue_scriptsincludes\class-catalog-ext.php:68
filterposts_resultsincludes\class-catalog-ext.php:255
filterposts_resultsincludes\class-catalog-ext.php:274
filterwoocommerce_is_purchasableincludes\class-catalog-mode.php:23
filterwoocommerce_get_price_htmlincludes\class-catalog-mode.php:24
filterwoocommerce_loop_add_to_cart_linkincludes\class-catalog-mode.php:25
actionadd_meta_boxesincludes\class-catalog-mode.php:28
actionsave_post_productincludes\class-catalog-mode.php:29
actionadmin_initincludes\class-enquiry-settings.php:25
actionwp_enqueue_scriptsincludes\class-enquiry-settings.php:29
actionwp_footerincludes\class-enquiry-settings.php:30
actionelementor/elements/categories_registeredincludes\class-plugin.php:64
actionelementor/widgets/registerincludes\class-plugin.php:65
actiontransition_post_statusincludes\class-stock.php:19
actionwoocommerce_product_set_stock_statusincludes\class-stock.php:20
filtermodep_show_paypal_promoincludes\functions-payments.php:28
filtermodep_paypal_min_amountincludes\functions-payments.php:65
actionplugins_loadedmodefilter-pro.php:95
actionadmin_initmodefilter-pro.php:124
actionbefore_woocommerce_initmodefilter-pro.php:135
Maintenance & Trust

ModeFilter Pro Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 13, 2026
PHP min version7.4
Downloads36

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

ModeFilter Pro Alternatives

Essential Addons for Elementor – Popular Elementor Templates & Widgets

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

B
76

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs
ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution

ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution

shopengine

A
96

WooCommerce builder for Elementor and Gutenberg. It offers product templates, product sliders, shopping cart, quick view, Woo wishlist, product filter …

90K 4 CVEs
ShopLentor – All-in-One WooCommerce Growth & Store Enhancement Plugin

ShopLentor – All-in-One WooCommerce Growth & Store Enhancement Plugin

woolentor-addons

B
77

ShopLentor – More than a WooCommerce builder. A complete growth plugin to boost conversions, UX, and sales for your store.

90K 24 CVEs
Exclusive Addons for Elementor

Exclusive Addons for Elementor

exclusive-addons-for-elementor

A
96

Exclusive Addons is one of the Best Elementor Addons With 90+ Elementor Free & Pro Widgets with all the customizations options you ever imagined.

60K 24 CVEs
YITH WooCommerce Catalog Mode

YITH WooCommerce Catalog Mode

yith-woocommerce-catalog-mode

A
99

YITH WooCommerce Catalog Mode, a plugin for disabling sales in your e-commerce and turn it into an e-commerce into an online catalogue.

60K 1 CVE
Developer Profile

ModeFilter Pro Developer Profile

Syed Zeeshan Ali

1 plugin · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect ModeFilter Pro

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/modefilter-pro/admin/admin-dashboard.css/wp-content/plugins/modefilter-pro/admin/admin.js
Script Paths
/wp-content/plugins/modefilter-pro/admin/admin.js
Version Parameters
modefilter-pro/admin/admin-dashboard.css?ver=modefilter-pro/admin/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
modep-admin-wrap
Data Attributes
data-modep-grid-optionsdata-modep-ajax-loaded
JS Globals
MODEP_ADMIN
Shortcode Output
[mode_products[mode_filters
FAQ

Frequently Asked Questions about ModeFilter Pro