Does Order Approval with Attachment have any unpatched vulnerabilities?

No. All known vulnerabilities in Order Approval with Attachment have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Order Approval with Attachment compatible with WordPress 5.7.15?

According to WordPress.org data, Order Approval with Attachment 1.0.0 has been tested up to WordPress 5.7.15. Check the plugin's changelog for the latest compatibility information.

Is Order Approval with Attachment compatible with PHP 5.4+?

Order Approval with Attachment requires PHP 5.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Order Approval with Attachment updated?

Order Approval with Attachment was last updated on May 26, 2021. Frequent updates are generally a positive security signal.

What is Order Approval with Attachment's security score?

Order Approval with Attachment has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Order Approval with Attachment Security & Risk Analysis

wordpress.org/plugins/order-approval-with-attachment

This plugin will help customers to upload an attachment during the woocommerce checkout. Later shop owners can approve/ reject the order based on atta …

10 active installs v1.0.0 PHP 5.4+ WP 3.0+ Updated May 26, 2021

orderorder-with-attachment

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Order Approval with Attachment Safe to Use in 2026?

Generally Safe

Score 85/100

Order Approval with Attachment has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The "order-approval-with-attachment" plugin version 1.0.0 presents a significant security risk due to its unprotected AJAX endpoints. While the plugin demonstrates good practices in other areas, such as using prepared statements for all SQL queries and having no known vulnerabilities, the lack of authentication checks on two AJAX handlers creates a substantial attack surface. This means any unauthenticated user could potentially trigger actions handled by these endpoints, leading to unintended consequences. The absence of taint analysis results and a clean vulnerability history are positive indicators, suggesting the developers might be attentive to security. However, the readily exploitable AJAX endpoints overshadow these strengths, demanding immediate attention. The plugin's overall security posture is compromised by these critical omissions.

Key Concerns

Unprotected AJAX handlers
Low percentage of properly escaped output
No capability checks on entry points

Vulnerabilities

None known

Order Approval with Attachment Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Order Approval with Attachment Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

19 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

jQuery

Output Escaping

38% escaped50 total outputs

Attack Surface

2 unprotected

Order Approval with Attachment Attack Surface

Entry Points2

Unprotected2

AJAX Handlers 2

authwp_ajax_sg_attachment_uploadincludes\class-sg-woocommerce-order-approval-with-attachment.php:192

noprivwp_ajax_sg_attachment_uploadincludes\class-sg-woocommerce-order-approval-with-attachment.php:193

WordPress Hooks 33

filterupload_diradmin\class-sg-woocommerce-order-approval-with-attachment-admin.php:415

filterupload_diradmin\class-sg-woocommerce-order-approval-with-attachment-admin.php:496

actionwoocommerce_email_before_order_tableincludes\class-sg-order-approval-woocommerce-pro-payment-gateway.php:52

filterwoocommerce_email_classesincludes\class-sg-order-approval-woocommerce-pro-wc_email.php:12

actionplugins_loadedincludes\class-sg-woocommerce-order-approval-with-attachment.php:146

actionadmin_enqueue_scriptsincludes\class-sg-woocommerce-order-approval-with-attachment.php:161

actionadmin_enqueue_scriptsincludes\class-sg-woocommerce-order-approval-with-attachment.php:162

actioninitincludes\class-sg-woocommerce-order-approval-with-attachment.php:164

filterwc_order_statusesincludes\class-sg-woocommerce-order-approval-with-attachment.php:165

filterwoocommerce_admin_order_actionsincludes\class-sg-woocommerce-order-approval-with-attachment.php:166

actionadmin_headincludes\class-sg-woocommerce-order-approval-with-attachment.php:168

filterwoocommerce_payment_gatewaysincludes\class-sg-woocommerce-order-approval-with-attachment.php:169

actionplugins_loadedincludes\class-sg-woocommerce-order-approval-with-attachment.php:173

actionwoocommerce_order_status_waitingincludes\class-sg-woocommerce-order-approval-with-attachment.php:174

actionwoocommerce_order_status_waiting_to_pendingincludes\class-sg-woocommerce-order-approval-with-attachment.php:175

actionwoocommerce_order_status_waiting_to_cancelledincludes\class-sg-woocommerce-order-approval-with-attachment.php:176

filterwoocommerce_get_sections_advancedincludes\class-sg-woocommerce-order-approval-with-attachment.php:179

filterwoocommerce_get_settings_advancedincludes\class-sg-woocommerce-order-approval-with-attachment.php:180

actionwoocommerce_product_options_advancedincludes\class-sg-woocommerce-order-approval-with-attachment.php:185

actionwoocommerce_process_product_metaincludes\class-sg-woocommerce-order-approval-with-attachment.php:186

filterwc_order_is_editableincludes\class-sg-woocommerce-order-approval-with-attachment.php:190

actionwoocommerce_checkout_order_processedincludes\class-sg-woocommerce-order-approval-with-attachment.php:195

actionadd_meta_boxesincludes\class-sg-woocommerce-order-approval-with-attachment.php:197

actionwp_trash_postincludes\class-sg-woocommerce-order-approval-with-attachment.php:199

actionwoocommerce_after_checkout_validationincludes\class-sg-woocommerce-order-approval-with-attachment.php:201

actionwp_enqueue_scriptsincludes\class-sg-woocommerce-order-approval-with-attachment.php:216

actionwp_enqueue_scriptsincludes\class-sg-woocommerce-order-approval-with-attachment.php:217

filterwoocommerce_available_payment_gatewaysincludes\class-sg-woocommerce-order-approval-with-attachment.php:221

filterwoocommerce_available_payment_gatewaysincludes\class-sg-woocommerce-order-approval-with-attachment.php:222

filterwoocommerce_after_order_notesincludes\class-sg-woocommerce-order-approval-with-attachment.php:224

actioninitincludes\class-sg-woocommerce-order-approval-with-attachment.php:225

actionwoocommerce_thankyouincludes\class-sg-woocommerce-order-approval-with-attachment.php:229

actionwoocommerce_view_orderincludes\class-sg-woocommerce-order-approval-with-attachment.php:230

Maintenance & Trust

Order Approval with Attachment Maintenance & Trust

Maintenance Signals

WordPress version tested5.7.15

Last updatedMay 26, 2021

PHP min version5.4

Downloads905

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Order Approval with Attachment Alternatives

Post Types Order

post-types-order

100

Sort posts and custom post type objects using a drag-and-drop, sortable JavaScript AJAX interface, or through the default WordPress dashboard

600K No CVEs

Category Order and Taxonomy Terms Order

taxonomy-terms-order

Drag-and-drop ordering for Categories & any taxonomy (hierarchically) using a Drag and Drop Sortable JavaScript capability.

500K 2 CVEs

Intuitive Custom Post Order

intuitive-custom-post-order

Intuitively reorder Posts, Pages, Custom Post Types, Taxonomies, and Sites with a simple drag-and-drop interface.

400K 4 CVEs

Simple Custom Post Order

simple-custom-post-order

Easily reorder posts, pages, custom post types, and taxonomies with intuitive drag-and-drop sorting in the WordPress admin.

300K 1 CVE

CartFlows – Funnel Builder & Checkout Plugin for WooCommerce

cartflows

1 WordPress funnel builder & WooCommerce checkout plugin. Boost AOV with one-click upsells, order bumps & high-converting checkout pages.

200K 6 CVEs

Developer Profile

Order Approval with Attachment Developer Profile

Sarankumar

12 plugins · 3K total installs

trust score

Avg Security Score

91/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Order Approval with Attachment

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/order-approval-with-attachment/includes/class-sg-woocommerce-order-approval-with-attachment.php/wp-content/plugins/order-approval-with-attachment/admin/css/chosen.min.css/wp-content/plugins/order-approval-with-attachment/admin/js/sg-woocommerce-order-approval-with-attachment-admin.js/wp-content/plugins/order-approval-with-attachment/admin/js/chosen.jquery.min.js

Script Paths

/wp-content/plugins/order-approval-with-attachment/admin/js/chosen.jquery.min.js

Version Parameters

order-approval-with-attachment/admin/css/chosen.min.css?ver=order-approval-with-attachment/admin/js/sg-woocommerce-order-approval-with-attachment-admin.js?ver=order-approval-with-attachment/admin/js/chosen.jquery.min.js?ver=

HTML / DOM Fingerprints

CSS Classes

wc-action-button-wc_approvedwc-action-button-wc_reject

FAQ