WP-Safety

Per Product Shipping for WooCommerce Security & Risk Analysis

wordpress.org/plugins/per-product-shipping-for-wc

The easiest way to add shipping costs for each product.

100 active installs v1.0.2 PHP 7.1+ WP 4.0.0+ Updated Nov 28, 2024
adminshippingshipping-methodwoocommercewoocommerce-extension
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Per Product Shipping for WooCommerce Safe to Use in 2026?

Generally Safe

Score 92/100

Per Product Shipping for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The "per-product-shipping-for-wc" plugin v1.0.2 demonstrates a generally strong security posture based on the provided static analysis. The absence of any known CVEs, critical taint flows, direct SQL queries, or a significant attack surface without authentication are positive indicators. The plugin also includes a nonce check and utilizes prepared statements for its SQL queries.

However, there are areas for improvement. The plugin has a 50% rate of properly escaped output, which means half of its output operations are not adequately secured. This could lead to Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is displayed without proper sanitization. Additionally, the presence of file operations, while only one, warrants attention as it can sometimes be an entry point for malicious activity if not handled with extreme care.

Overall, the plugin appears to be developed with security in mind, evidenced by its clean vulnerability history and avoidance of common pitfalls. The lack of critical issues in static analysis is reassuring. Nonetheless, the unescaped output presents a tangible risk that should be addressed to ensure a more robust security profile.

Key Concerns

  • 50% of output is not properly escaped
  • Presence of file operations
Vulnerabilities
None known

Per Product Shipping for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Per Product Shipping for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
8
8 escaped
Nonce Checks
1
Capability Checks
0
File Operations
1
External Requests
0
Bundled Libraries
0

Output Escaping

50% escaped16 total outputs
Attack Surface

Per Product Shipping for WooCommerce Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 6
actionadmin_enqueue_scriptsapp\class-wprpp-app-settings-page.php:31
filterwoocommerce_get_sections_shippingapp\class-wprpp-app-settings-page.php:32
filterwoocommerce_get_settings_shippingapp\class-wprpp-app-settings-page.php:33
filterwoocommerce_shipping_methodscore\class-wprpp-bootstrap.php:33
actionwoocommerce_shipping_initcore\class-wprpp-bootstrap.php:34
actionbefore_woocommerce_initper-product-shipping-for-wc.php:30
Maintenance & Trust

Per Product Shipping for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedNov 28, 2024
PHP min version7.1
Downloads2K

Community Trust

Rating46/100
Number of ratings3
Active installs100
Alternatives

Per Product Shipping for WooCommerce Alternatives

HCGroup Shipping for Woocommerce

HCGroup Shipping for Woocommerce

hcgroup-shipping-for-woocommerce

A
85

HCGroup Shipping for Woocommerce is a Wordpress Plugin that integrate the hcgroup service, it will calculate the shipping cost.

10 No CVEs
Australia Post WooCommerce Extension

Australia Post WooCommerce Extension

australian-post-woocommerce-extension

A
100

Australia Post WooCommerce Extension integrates Australia Post with WooCommerce, calculating shipping costs and delivery times for customers.

3K No CVEs
Free Shipping Per Product for WooCommerce

Free Shipping Per Product for WooCommerce

woo-free-shipping-per-product

A
100

A simple way to set free shipping for certain products.

3K No CVEs
bpost shipping

bpost shipping

bpost-shipping

A
92

This plugin allows customers to choose their preferred Belgian bpost delivery method when ordering in your Woocommerce webshop.

800 No CVEs
WC Hide Shipping Methods

WC Hide Shipping Methods

wc-hide-shipping-methods

A
100

This plugin automatically hides all other shipping methods when "Free Shipping" is available, while allowing you to retain "Local Picku …

20K No CVEs
Developer Profile

Per Product Shipping for WooCommerce Developer Profile

Waseem Senjer

10 plugins · 27K total installs

77
trust score
Avg Security Score
97/100
Avg Patch Time
784 days
View full developer profile
Detection Fingerprints

How We Detect Per Product Shipping for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/per-product-shipping-for-wc/app/frontend/dist/app.js/wp-content/plugins/per-product-shipping-for-wc/app/frontend/dist/css/app.css
Script Paths
app/frontend/dist/app.js
Version Parameters
per-product-shipping-for-wc/app/frontend/dist/app.js?ver=1.0per-product-shipping-for-wc/app/frontend/dist/css/app.css?ver=1.0

HTML / DOM Fingerprints

JS Globals
PER_PRODUCT_URL
FAQ

Frequently Asked Questions about Per Product Shipping for WooCommerce