Does Additional Custom Order Status for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Additional Custom Order Status for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Additional Custom Order Status for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, Additional Custom Order Status for WooCommerce 1.9.3 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

What is Additional Custom Order Status for WooCommerce's security score?

Additional Custom Order Status for WooCommerce has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Additional Custom Order Status for WooCommerce Security & Risk Analysis

wordpress.org/plugins/order-status-for-woocommerce

Manage order statuses in WooCommerce. Beautifully.

800 active installs v1.9.3 PHP + WP 4.7+ Updated Dec 26, 2025

custom-order-statusecommerceorder-statusstatuswoocommerce

A · Safe

CVEs total1

Unpatched0

Last CVEDec 3, 2024

Plugin page Download

Safety Verdict

Is Additional Custom Order Status for WooCommerce Safe to Use in 2026?

Generally Safe

Score 99/100

Additional Custom Order Status for WooCommerce has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Dec 3, 2024Updated 3mo ago

Risk Assessment

The 'order-status-for-woocommerce' plugin v1.9.3 exhibits a generally good security posture, demonstrating strong adherence to secure coding practices. The absence of any unprotected entry points, use of prepared statements for all SQL queries, and a high percentage of properly escaped output are significant strengths. The presence of nonce and capability checks further bolsters its defense against common attack vectors.

Key Concerns

Flow with unsanitized path found
Medium severity CVE historically

Vulnerabilities

Additional Custom Order Status for WooCommerce Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2024-11814medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Additional Custom Order Status for WooCommerce <= 1.6.0 - Reflected Cross-Site Scripting

Dec 3, 2024 Patched in 1.6.1 (1d)

Code Analysis

Analyzed Mar 16, 2026

Additional Custom Order Status for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

20 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

83% escaped24 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

delete_status_notices (includes\admin\class-wfwp-wc-order-status-admin.php:186)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Additional Custom Order Status for WooCommerce Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[alg_wc_os_order_meta] includes\class-wfwp-wc-order-status-core.php:95

WordPress Hooks 41

actionadmin_menuincludes\admin\class-wfwp-wc-order-status-admin.php:40

actionadmin_headincludes\admin\class-wfwp-wc-order-status-admin.php:42

actionadd_meta_boxesincludes\admin\class-wfwp-wc-order-status-admin.php:44

actionsave_post_wfwp_wc_order_statusincludes\admin\class-wfwp-wc-order-status-admin.php:45

filterwp_insert_post_dataincludes\admin\class-wfwp-wc-order-status-admin.php:47

filteradmin_initincludes\admin\class-wfwp-wc-order-status-admin.php:49

filteradmin_noticesincludes\admin\class-wfwp-wc-order-status-admin.php:50

actionadmin_enqueue_scriptsincludes\admin\class-wfwp-wc-order-status-admin.php:52

actioninitincludes\class-wfwp-wc-order-status-core.php:58

actioninitincludes\class-wfwp-wc-order-status-core.php:59

filterwc_order_statusesincludes\class-wfwp-wc-order-status-core.php:62

filterwc_order_statusesincludes\class-wfwp-wc-order-status-core.php:63

actionadmin_headincludes\class-wfwp-wc-order-status-core.php:66

filterbulk_actions-edit-shop_orderincludes\class-wfwp-wc-order-status-core.php:69

filterbulk_actions-woocommerce_page_wc-ordersincludes\class-wfwp-wc-order-status-core.php:70

filterbulk_actions-edit-shop_orderincludes\class-wfwp-wc-order-status-core.php:71

filterbulk_actions-woocommerce_page_wc-ordersincludes\class-wfwp-wc-order-status-core.php:72

filterwoocommerce_reports_order_statusesincludes\class-wfwp-wc-order-status-core.php:73

filterwoocommerce_admin_order_actionsincludes\class-wfwp-wc-order-status-core.php:76

filterwoocommerce_admin_order_actionsincludes\class-wfwp-wc-order-status-core.php:77

actionadmin_headincludes\class-wfwp-wc-order-status-core.php:78

filterwoocommerce_admin_order_preview_actionsincludes\class-wfwp-wc-order-status-core.php:79

filterwoocommerce_admin_order_preview_actionsincludes\class-wfwp-wc-order-status-core.php:80

filterwoocommerce_admin_order_actionsincludes\class-wfwp-wc-order-status-core.php:83

filterwoocommerce_admin_order_actionsincludes\class-wfwp-wc-order-status-core.php:84

filterwc_order_is_editableincludes\class-wfwp-wc-order-status-core.php:87

filterwoocommerce_order_is_paid_statusesincludes\class-wfwp-wc-order-status-core.php:88

filterwoocommerce_valid_order_statuses_for_paymentincludes\class-wfwp-wc-order-status-core.php:89

actioninitincludes\class-wfwp-wc-order-status-core.php:90

actioninitincludes\class-wfwp-wc-order-status-core.php:91

actionwoocommerce_order_is_download_permittedincludes\class-wfwp-wc-order-status-core.php:92

actioninitincludes\class-wfwp-wc-order-status.php:84

actionbefore_woocommerce_initincludes\class-wfwp-wc-order-status.php:87

actioninitincludes\class-wfwp-wc-order-status.php:177

actioninitincludes\class-wfwp-wc-order-status.php:180

filterwoocommerce_get_settings_pagesincludes\class-wfwp-wc-order-status.php:183

actionadmin_initincludes\class-wfwp-wc-order-status.php:190

filterwoocommerce_get_sections_wfwp_wc_order_statusincludes\settings\class-wfwp-wc-order-status-settings-section.php:40

filterwc_order_statusesincludes\settings\class-wfwp-wc-order-status-settings-sorting.php:42

actionadmin_noticesincludes\settings\class-wfwp-wc-order-status-settings.php:83

actionplugins_loadedorder-status-for-woocommerce.php:58

Maintenance & Trust

Additional Custom Order Status for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 26, 2025

PHP min version

Downloads13K

Community Trust

Rating100/100

Number of ratings3

Active installs800

Alternatives

Additional Custom Order Status for WooCommerce Alternatives

Scheduled & Automatic Order Status Controller for WooCommerce

order-status-rules-for-woocommerce

Automate WooCommerce order statuses. Beautifully.

2K 1 CVE

Advanced Custom Order Status for WooCommerce

advanced-custom-order-status-for-woocommerce

100

Easily create, edit, and delete custom order status in WooCommerce. Add icon, color and action to enhance the visual representation of order statuses.

500 No CVEs

Advanced Order Status For WooCommerce – Custom Status Management & Workflow Automation

advanced-order-status-for-woocommerce

100

Create and manage custom WooCommerce order statuses with icons, colors, and bulk actions. Streamline your fulfillment workflow.

10 No CVEs

SDP Custom Order Status for WooCommerce

sdp-custom-order-status-for-woocommerce

100

Create unlimited WooCommerce custom order statuses, send automated email notifications to customers and admins, and manage your order workflow easily

10 No CVEs

WPPDEV WooCommerce Order Status

wppdev-woocommerce-order-status

Manage core and custom WooCommerce Order Status to fit your order fulfillment process and workflow.

10 No CVEs

Developer Profile

Additional Custom Order Status for WooCommerce Developer Profile

WPFactory

63 plugins · 136K total installs

trust score

Avg Security Score

97/100

Avg Patch Time

98 days

View full developer profile

Detection Fingerprints

How We Detect Additional Custom Order Status for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/order-status-for-woocommerce/includes/js/wfwp-wcos-admin.min.js/wp-content/plugins/order-status-for-woocommerce/includes/js/wfwp-wcos-admin.js

Version Parameters

order-status-for-woocommerce/includes/js/wfwp-wcos-admin

HTML / DOM Fingerprints

CSS Classes

wfwp-wc-order-status

Data Attributes

data-meta_box_id

JS Globals

wfwp_wcos_admin_object

FAQ

Additional Custom Order Status for WooCommerce Security & Risk Analysis

Is Additional Custom Order Status for WooCommerce Safe to Use in 2026?

Generally Safe

Key Concerns

Additional Custom Order Status for WooCommerce Security Vulnerabilities

CVEs by Year

Severity Breakdown

Additional Custom Order Status for WooCommerce Code Analysis

Output Escaping

Data Flow Analysis

Additional Custom Order Status for WooCommerce Attack Surface

Shortcodes 1

Additional Custom Order Status for WooCommerce Maintenance & Trust

Maintenance Signals

Community Trust

Additional Custom Order Status for WooCommerce Alternatives

Scheduled & Automatic Order Status Controller for WooCommerce

Advanced Custom Order Status for WooCommerce

Advanced Order Status For WooCommerce – Custom Status Management & Workflow Automation

SDP Custom Order Status for WooCommerce

WPPDEV WooCommerce Order Status

Additional Custom Order Status for WooCommerce Developer Profile

How We Detect Additional Custom Order Status for WooCommerce

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Additional Custom Order Status for WooCommerce