WP-Safety

Page Restrict for WooCommerce Security & Risk Analysis

wordpress.org/plugins/page-restrict-for-woocommerce

Restrict access to your WordPress pages using WooCommerce products.

700 active installs v1.7.3 PHP 7.0.25+ WP 4.8.12+ Updated Feb 15, 2026
pagespayproductrestrictwoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Page Restrict for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Page Restrict for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The "page-restrict-for-woocommerce" plugin v1.7.3 presents a mixed security posture. While it has a clean vulnerability history with no known CVEs and no critical findings from taint analysis, several code signals raise concerns. The presence of one instance of `unserialize` without a clear context for its use is a significant potential risk, as unsanitized serialized data can lead to code execution vulnerabilities. Furthermore, a substantial portion of SQL queries (70%) are not using prepared statements, increasing the risk of SQL injection. The plugin also exhibits a moderately large attack surface with 4 unprotected AJAX handlers out of a total of 7 entry points, and only 16% of output is properly escaped, suggesting potential for Cross-Site Scripting (XSS) vulnerabilities.

Key Concerns

  • Unsanitized unserialize function
  • High percentage of SQL queries not using prepared statements
  • Significant number of unprotected AJAX handlers
  • Low percentage of properly escaped output
  • Only one nonce check for 4 unprotected AJAX handlers
Vulnerabilities
None known

Page Restrict for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Page Restrict for WooCommerce Code Analysis

Dangerous Functions
1
Raw SQL Queries
7
3 prepared
Unescaped Output
174
34 escaped
Nonce Checks
1
Capability Checks
14
File Operations
0
External Requests
0
Bundled Libraries
0

Dangerous Functions Found

unserialize$merge_view_data = array_merge(unserialize($meta->meta_value), [includes\common\class-user-restrict-data.php:302

SQL Query Safety

30% prepared10 total queries

Output Escaping

16% escaped208 total outputs
Attack Surface
4 unprotected

Page Restrict for WooCommerce Attack Surface

Entry Points7
Unprotected4

AJAX Handlers 4

authwp_ajax_prwc_pages_optionsadmin\class-admin.php:609
noprivwp_ajax_prwc_pages_optionsadmin\class-admin.php:610
authwp_ajax_prwc_plugin_optionsadmin\class-admin.php:612
noprivwp_ajax_prwc_plugin_optionsadmin\class-admin.php:613

Shortcodes 3

[prwc_is_purchased] admin\class-admin.php:271
[prwc_restricted_pages_list] admin\class-admin.php:272
[prwc_restricted_pages_products] admin\class-admin.php:273
WordPress Hooks 27
actionadd_meta_boxesadmin\class-admin.php:578
actionsave_postadmin\class-admin.php:579
actionthe_postadmin\class-admin.php:622
filterwoocommerce_account_menu_itemsfront\class-front.php:190
actionwoocommerce_account_restrict-pages-overview_endpointfront\class-front.php:191
actionplugins_loadedincludes\class-page-restrict-wc.php:214
actionadmin_enqueue_scriptsincludes\class-page-restrict-wc.php:228
actionadmin_enqueue_scriptsincludes\class-page-restrict-wc.php:229
actionenqueue_block_editor_assetsincludes\class-page-restrict-wc.php:230
actionadmin_menuincludes\class-page-restrict-wc.php:231
actioninitincludes\class-page-restrict-wc.php:232
actioninitincludes\class-page-restrict-wc.php:233
actioninitincludes\class-page-restrict-wc.php:234
actioninitincludes\class-page-restrict-wc.php:235
actioninitincludes\class-page-restrict-wc.php:236
actionbefore_woocommerce_initincludes\class-page-restrict-wc.php:237
filterplugin_action_linksincludes\class-page-restrict-wc.php:238
actionwp_enqueue_scriptsincludes\class-page-restrict-wc.php:253
actionwp_enqueue_scriptsincludes\class-page-restrict-wc.php:254
filterthe_contentincludes\class-page-restrict-wc.php:256
filtertemplate_redirectincludes\class-page-restrict-wc.php:257
actionwpincludes\class-page-restrict-wc.php:258
actioninitincludes\class-page-restrict-wc.php:259
actionshutdownincludes\class-page-restrict-wc.php:260
actioninitincludes\front\class-wc-my-account.php:35
actionadmin_noticesincludes\functions.php:54
actionadmin_noticesincludes\functions.php:81
Maintenance & Trust

Page Restrict for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedFeb 15, 2026
PHP min version7.0.25
Downloads16K

Community Trust

Rating94/100
Number of ratings22
Active installs700
Alternatives

Page Restrict for WooCommerce Alternatives

Autocomplete WooCommerce Orders

Autocomplete WooCommerce Orders

autocomplete-woocommerce-orders

A
100

Enhance your WooCommerce store with Autocomplete Orders. Automatically complete orders after payment, perfect for virtual goods and subscriptions.

40K No CVEs
Payment Methods by Product & Country for WooCommerce

Payment Methods by Product & Country for WooCommerce

payment-gateways-per-product-categories-for-woocommerce

A
100

Use products and countries conditional rules to show/hide gateways, increase profit margins & optimize operations for your products by restricting …

5K No CVEs
Country Based Restrictions for WooCommerce

Country Based Restrictions for WooCommerce

woo-product-country-base-restrictions

A
100

Restrict WooCommerce products by country — hide or block purchases using geolocation so only customers in allowed countries can buy.

5K No CVEs
WooCommerce Product Dependencies

WooCommerce Product Dependencies

woocommerce-product-dependencies

A
92

Restrict access to any WooCommerce product, depending on the ownership and/or purchase of other required products.

3K No CVEs
Maximum Products per User for WooCommerce

Maximum Products per User for WooCommerce

maximum-products-per-user-for-woocommerce

A
98

Limit number of items your WooCommerce customers can buy (lifetime or in selected date range).

1K 2 CVEs
Developer Profile

Page Restrict for WooCommerce Developer Profile

Vlado Grcic

1 plugin · 700 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Page Restrict for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/page-restrict-for-woocommerce/admin/assets/build/jquery-ui.css/wp-content/plugins/page-restrict-for-woocommerce/admin/assets/build/jquery-ui.theme.css/wp-content/plugins/page-restrict-for-woocommerce/admin/assets/build/slimselect.css/wp-content/plugins/page-restrict-for-woocommerce/admin/assets/build/zoomify.css/wp-content/plugins/page-restrict-for-woocommerce/admin/assets/font/oxanium/oxanium-load.css/wp-content/plugins/page-restrict-for-woocommerce/admin/assets/build/admin-style.css/wp-content/plugins/page-restrict-for-woocommerce/admin/assets/build/jquery.zoom.js/wp-content/plugins/page-restrict-for-woocommerce/admin/assets/build/slimselect.js+1 more
Script Paths
/wp-content/plugins/page-restrict-for-woocommerce/admin/assets/build/jquery.zoom.js/wp-content/plugins/page-restrict-for-woocommerce/admin/assets/build/slimselect.js/wp-content/plugins/page-restrict-for-woocommerce/admin/assets/build/admin-script.js
Version Parameters
page-restrict-for-woocommerce/assets/build/admin-style.css?ver=page-restrict-for-woocommerce/assets/build/jquery.zoom.js?ver=page-restrict-for-woocommerce/assets/build/slimselect.js?ver=page-restrict-for-woocommerce/assets/build/admin-script.js?ver=

HTML / DOM Fingerprints

CSS Classes
prwc-plugin-menu
JS Globals
page_restrict_wc
FAQ

Frequently Asked Questions about Page Restrict for WooCommerce