WP-Safety

PiWeb Min/Max Quantity & Minimum Order Limits for WooCommerce Security & Risk Analysis

wordpress.org/plugins/pisol-mmq

Set Product Quantity, Minimum Maximum Quantity, Minimum Order Amount, Minimum order size for WooCommerce

800 active installs v2.2.31 PHP + WP 3.0.1+ Updated Apr 15, 2026
maximum-order-amountminimum-maximum-quantityminimum-orderminimum-order-amountwoocommerce-minimum-order
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is PiWeb Min/Max Quantity & Minimum Order Limits for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

PiWeb Min/Max Quantity & Minimum Order Limits for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The "pisol-mmq" plugin v2.2.31 presents a mixed security posture. On the positive side, it demonstrates good practices by using prepared statements for all SQL queries, properly escaping nearly all output, and having no recorded vulnerabilities or known CVEs. This suggests a generally well-developed and maintained plugin.

However, significant concerns arise from its attack surface. The plugin exposes three AJAX handlers, with two of them lacking any authentication checks. This creates a clear pathway for unauthenticated attackers to interact with potentially sensitive plugin functionality. While the taint analysis did not reveal critical or high severity issues, the presence of a flow with unsanitized paths indicates a potential for privilege escalation or information disclosure if an attacker can manipulate the input to this flow. The single external HTTP request is also a potential area for concern, though its specific purpose and security context are not detailed.

The absence of any past vulnerabilities and the clean record in the vulnerability history are strong indicators of a plugin that has historically been secure. However, this does not negate the immediate risks identified in the static analysis. The current version's security is paramount, and the two unprotected AJAX endpoints represent a tangible, actionable risk that requires immediate attention.

Key Concerns

  • Unprotected AJAX handlers
  • Flow with unsanitized paths
  • External HTTP request
Vulnerabilities
None known

PiWeb Min/Max Quantity & Minimum Order Limits for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

PiWeb Min/Max Quantity & Minimum Order Limits for WooCommerce Release Timeline

v2.2.31Current
v2.2.30
v2.2.29
v2.2.27
v2.2.26
v2.2.24
v2.2.23
v2.2.22
v2.2.21
v2.2.20
v2.2.19
v2.2.17
v2.2.16
v2.2.14
v2.2.13
v2.2.12
v2.2.11
v2.2.10
v2.2.9
v2.2.7
Code Analysis
Analyzed Apr 16, 2026

PiWeb Min/Max Quantity & Minimum Order Limits for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
3
356 escaped
Nonce Checks
2
Capability Checks
1
File Operations
0
External Requests
1
Bundled Libraries
0

Output Escaping

99% escaped359 total outputs
Data Flows · Security
1 unsanitized

Data Flow Analysis

18 flows1 with unsanitized paths
handle_tracker_action (admin/class-analytics.php:75)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

PiWeb Min/Max Quantity & Minimum Order Limits for WooCommerce Attack Surface

Entry Points3
Unprotected2

AJAX Handlers 3

authwp_ajax_pi_search_productadmin/class-admin-ajax.php:9
authwp_ajax_get_cart_mmqpublic/class-pisol-mmq-cart-amount.php:15
noprivwp_ajax_get_cart_mmqpublic/class-pisol-mmq-cart-amount.php:16
WordPress Hooks 43
actionadmin_enqueue_scriptsadmin/class-analytics.php:34
actionadmin_footer-plugins.phpadmin/class-analytics.php:35
actionadmin_noticesadmin/class-analytics.php:38
actionadmin_initadmin/class-pisol-mmq-admin.php:32
actioninitadmin/class-pisol-mmq-control.php:26
actionwoocommerce_initadmin/class-pisol-mmq-design.php:30
actionadmin_menuadmin/class-pisol-mmq-menu.php:16
actionadmin_enqueue_scriptsadmin/class-pisol-mmq-menu.php:18
actioninitadmin/class-pisol-mmq-message.php:27
actionwoocommerce_product_data_tabsadmin/class-pisol-mmq-metabox.php:10
actionwoocommerce_product_data_panelsadmin/class-pisol-mmq-metabox.php:11
actionwoocommerce_process_product_metaadmin/class-pisol-mmq-metabox.php:12
actioninitadmin/class-pisol-mmq-min-amount.php:29
actioninitadmin/class-pisol-mmq-option.php:27
actionwoocommerce_initadmin/class-pisol-mmq-qty-per-order-options.php:24
actionafter_plugin_row_pisol-mmq-pro/pisol-mmq.phpincludes/Pro_Warning.php:17
actionpisol_custom_field_mmq_textareaincludes/class-customfield.php:22
actionplugins_loadedincludes/class-pisol-mmq.php:147
actionadmin_enqueue_scriptsincludes/class-pisol-mmq.php:162
actionadmin_enqueue_scriptsincludes/class-pisol-mmq.php:163
actionwp_enqueue_scriptsincludes/class-pisol-mmq.php:178
actionwp_enqueue_scriptsincludes/class-pisol-mmq.php:179
actionadmin_footerincludes/pisol.class.form.php:444
filterallowed_redirect_hostsincludes/review.php:34
actionadmin_noticesincludes/review.php:39
actionadmin_noticespisol-mmq.php:40
actionadmin_noticespisol-mmq.php:51
actionbefore_woocommerce_initpisol-mmq.php:66
actionwoocommerce_check_cart_itemspublic/class-min-max-qty-per-order.php:19
actionwoocommerce_check_cart_itemspublic/class-pisol-mmq-cart-amount.php:13
actionwp_footerpublic/class-pisol-mmq-cart-amount.php:17
actionwp_enqueue_scriptspublic/class-pisol-mmq-cart-amount.php:18
actionwp_enqueue_scriptspublic/class-pisol-mmq-cart-amount.php:19
filterwoocommerce_add_to_cart_validationpublic/class-pisol-mmq-cart.php:11
filterwoocommerce_update_cart_validationpublic/class-pisol-mmq-cart.php:13
actionwoocommerce_check_cart_itemspublic/class-pisol-mmq-cart.php:15
actionwppublic/class-pisol-mmq-message.php:11
actionwoocommerce_after_cart_item_namepublic/class-pisol-mmq-message.php:16
filterwoocommerce_checkout_cart_item_quantitypublic/class-pisol-mmq-message.php:17
filterwoocommerce_quantity_input_argspublic/class-pisol-mmq-product.php:23
filterwoocommerce_is_purchasablepublic/class-pisol-mmq-product.php:26
filterpisol_mmq_min_qty_of_productpublic/class-pisol-mmq-product.php:31
filterpisol_mmq_max_qty_of_productpublic/class-pisol-mmq-product.php:32
Maintenance & Trust

PiWeb Min/Max Quantity & Minimum Order Limits for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedApr 15, 2026
PHP min version
Downloads88K

Community Trust

Rating86/100
Number of ratings11
Active installs800
Alternatives

PiWeb Min/Max Quantity & Minimum Order Limits for WooCommerce Alternatives

Minimum Purchase Amount For Woo Cart – For WooCommerce

Minimum Purchase Amount For Woo Cart – For WooCommerce

minimum-purchase-amount-for-woo-cart

A
100

Want to increase your WooCommerce average order value? This plugin allows you to set minimum order value for your entire store, specific user roles, and for the free shipping. Start optimizing your sales today!

4K No CVEs
Minimum Order Amount for Woocommerce

Minimum Order Amount for Woocommerce

minimum-order-amount-for-woocommerce

A
85

Minimum Order Amount for Woocommerce allows you to set easily and fast a minimum amount for the woocommerce orders.

2K No CVEs
ELEX Minimum Order Amount for WooCommerce

ELEX Minimum Order Amount for WooCommerce

elex-minimum-order-amount-for-woocommerce

A
100

ELEX WooCommerce Minimum Order Amount plugin helps you to configure minimum and maximum order amount based on WordPress user roles.

300 No CVEs
WC Minimum Order Amount

WC Minimum Order Amount

wc-minimum-order-amount

A
85

Add the option for a WooCommerce minimum order amount, as well as the options to change the notification texts for the cart.

3K No CVEs
Pedido Mínimo para WooCommerce

Pedido Mínimo para WooCommerce

wc-pedido-minimo

A
100

Plugin para configurar valor mínimo ou quantidade mínima de items para finalização de pedidos no WooCommerce. O plugin também permite selecionar funçã …

1K No CVEs
Developer Profile

PiWeb Min/Max Quantity & Minimum Order Limits for WooCommerce Developer Profile

PI Web Solution

33 plugins · 93K total installs

78
trust score
Avg Security Score
99/100
Avg Patch Time
235 days
View full developer profile
Detection Fingerprints

How We Detect PiWeb Min/Max Quantity & Minimum Order Limits for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/pisol-mmq/admin/css/pisol-mmq-admin.css/wp-content/plugins/pisol-mmq/admin/js/pisol-quick-save.js/wp-content/plugins/pisol-mmq/admin/css/bootstrap.css/wp-content/plugins/pisol-mmq/admin/js/pisol-mmq.js
Script Paths
/wp-content/plugins/pisol-mmq/admin/js/pisol-quick-save.js/wp-content/plugins/pisol-mmq/admin/js/pisol-mmq.js
Version Parameters
pisol-mmq/admin/css/pisol-mmq-admin.css?ver=pisol-mmq/admin/js/pisol-quick-save.js?ver=pisol-mmq/admin/css/bootstrap.css?ver=pisol-mmq/admin/js/pisol-mmq.js?ver=

HTML / DOM Fingerprints

HTML Comments
<!-- Piwebsolution -->
Data Attributes
data-pi-mmq-option-id
JS Globals
pisol_mmq_data
FAQ

Frequently Asked Questions about PiWeb Min/Max Quantity & Minimum Order Limits for WooCommerce