WP-Safety

Pizza builder for WooCommerce Security & Risk Analysis

wordpress.org/plugins/pizza-builder-for-woocommerce

A WordPress plugin for creating restaurant/pizza components.

40 active installs v2.5 PHP 7.4+ WP 5.5+ Updated Apr 20, 2024
foodpizzapizza-woocommercerestaurantwoocommerce-components
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Pizza builder for WooCommerce Safe to Use in 2026?

Generally Safe

Score 92/100

Pizza builder for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The "pizza-builder-for-woocommerce" plugin v2.5 exhibits a generally strong security posture, with several positive indicators. Notably, all SQL queries utilize prepared statements, output escaping is largely implemented (89%), and there are no recorded vulnerabilities or critical taint flows. The absence of file operations, external HTTP requests, and bundled libraries further reduces the potential attack surface.

However, there are notable areas of concern that prevent a fully secure assessment. The plugin exposes 14 AJAX handlers, of which 2 lack authentication checks. This is a significant risk, as these entry points could potentially be exploited by unauthenticated users to perform unintended actions. Furthermore, while nonce checks are present (9), the absence of capability checks on any entry points means that even if a user were authenticated, their privileges might not be properly verified, potentially allowing users with lower privileges to access or manipulate data they shouldn't.

Given the lack of historical vulnerabilities and the generally good coding practices observed in SQL and output handling, the plugin's development seems to prioritize security. However, the unprotected AJAX handlers and the complete absence of capability checks represent critical gaps. Addressing these specific issues would significantly improve the plugin's overall security.

Key Concerns

  • Unprotected AJAX handlers
  • Missing capability checks on entry points
Vulnerabilities
None known

Pizza builder for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Pizza builder for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
4 prepared
Unescaped Output
38
303 escaped
Nonce Checks
9
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared4 total queries

Output Escaping

89% escaped341 total outputs
Data Flows
All sanitized

Data Flow Analysis

8 flows
get_products (includes\pizza-ajax.php:29)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Pizza builder for WooCommerce Attack Surface

Entry Points15
Unprotected2

AJAX Handlers 14

authwp_ajax_ev_pizza_productsincludes\pizza-ajax.php:6
noprivwp_ajax_ev_pizza_productsincludes\pizza-ajax.php:7
authwp_ajax_ev_pizza_get_layersincludes\pizza-ajax.php:9
noprivwp_ajax_ev_pizza_get_layersincludes\pizza-ajax.php:10
authwp_ajax_ev_pizza_save_shortcodesincludes\pizza-ajax.php:12
authwp_ajax_ev_pizza_save_settingsincludes\pizza-ajax.php:13
authwp_ajax_ev_pizza_save_componentsincludes\pizza-ajax.php:14
authwp_ajax_ev_pizza_save_shopincludes\pizza-ajax.php:15
authwp_ajax_ev_builder_productincludes\pizza-ajax.php:18
noprivwp_ajax_ev_builder_productincludes\pizza-ajax.php:19
authwp_ajax_ev_pizza_show_fancyincludes\pizza-ajax.php:21
noprivwp_ajax_ev_pizza_show_fancyincludes\pizza-ajax.php:22
authwp_ajax_ev_pizza_add_productincludes\pizza-ajax.php:24
noprivwp_ajax_ev_pizza_add_productincludes\pizza-ajax.php:25

Shortcodes 1

[pbw-builder] includes\pizza-shortcode.php:8
WordPress Hooks 43
filterplugin_row_metaev-pizza.php:49
actioninitev-pizza.php:52
actionadmin_noticesev-pizza.php:136
actionplugins_loadedev-pizza.php:168
actionbefore_woocommerce_initev-pizza.php:177
filterwoocommerce_add_cart_item_dataincludes\pizza-cart.php:5
filterwoocommerce_get_cart_item_from_sessionincludes\pizza-cart.php:6
filterwoocommerce_get_item_dataincludes\pizza-cart.php:8
actionwoocommerce_before_calculate_totalsincludes\pizza-cart.php:10
actionwoocommerce_after_cart_item_nameincludes\pizza-cart.php:11
actionwoocommerce_checkout_create_order_line_itemincludes\pizza-checkout.php:5
filterwoocommerce_order_item_display_meta_valueincludes\pizza-checkout.php:6
filterwoocommerce_order_item_display_meta_keyincludes\pizza-checkout.php:7
actionwoocommerce_order_item_meta_endincludes\pizza-checkout.php:8
actionwoocommerce_order_item_meta_endincludes\pizza-checkout.php:9
actionwoocommerce_after_order_itemmetaincludes\pizza-checkout.php:10
actionwoocommerce_after_order_itemmetaincludes\pizza-checkout.php:11
filterwoocommerce_checkout_cart_item_quantityincludes\pizza-checkout.php:12
filterwoocommerce_order_item_nameincludes\pizza-checkout.php:13
actionwoocommerce_after_order_itemmetaincludes\pizza-checkout.php:14
actionwoocommerce_order_item_meta_endincludes\pizza-checkout.php:15
filterwoocommerce_get_price_htmlincludes\pizza-display.php:6
filterwoocommerce_available_variationincludes\pizza-display.php:7
filterwoocommerce_cart_item_priceincludes\pizza-display.php:8
filterwoocommerce_cart_item_nameincludes\pizza-display.php:9
filterwoocommerce_loop_add_to_cart_linkincludes\pizza-display.php:12
filterwoocommerce_dropdown_variation_attribute_options_htmlincludes\pizza-display.php:15
actioninitincludes\pizza-shortcode.php:4
filterproduct_type_optionsincludes\pizza.php:8
filterwoocommerce_settings_tabs_arrayincludes\pizza.php:9
actionwoocommerce_settings_ev_pizzaincludes\pizza.php:10
actionwoocommerce_update_options_ev_pizzaincludes\pizza.php:11
actionadmin_enqueue_scriptsincludes\pizza.php:12
actionwp_enqueue_scriptsincludes\pizza.php:14
actionadmin_enqueue_scriptsincludes\pizza.php:15
actionadmin_headincludes\pizza.php:16
filterwoocommerce_product_data_tabsincludes\pizza.php:18
actionwoocommerce_product_data_panelsincludes\pizza.php:19
actionwoocommerce_process_product_metaincludes\pizza.php:20
actionwoocommerce_before_add_to_cart_buttonincludes\pizza.php:22
filterproduct_type_selectorincludes\pizza.php:24
filterwoocommerce_product_classincludes\pizza.php:25
actionwp_footerincludes\pizza.php:27
Maintenance & Trust

Pizza builder for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8
Last updatedApr 20, 2024
PHP min version7.4
Downloads4K

Community Trust

Rating80/100
Number of ratings2
Active installs40
Alternatives

Pizza builder for WooCommerce Alternatives

Restaurant Menu – Food Ordering System – Table Reservation

Restaurant Menu – Food Ordering System – Table Reservation

menu-ordering-reservations

A
96

Create a restaurant menu and start taking food orders online, with no commissions or costs. Table reservations are also available for free.

8K 7 CVEs
Orderable – WordPress Restaurant Online Ordering System and Food Ordering Plugin

Orderable – WordPress Restaurant Online Ordering System and Food Ordering Plugin

orderable

B
75

Take your restaurant/food business online with the online ordering system plugin for WordPress, Orderable.

6K 1 unpatched
WPCafe – Restaurant Menu, Online Food Ordering and Reservation Booking Solution

WPCafe – Restaurant Menu, Online Food Ordering and Reservation Booking Solution

wp-cafe

C
60

Complete restaurant solution for restaurant menus, online food ordering, delivery, reservations and booking

6K 1 unpatched
Food Menu – Restaurant Menu & Online Ordering for WooCommerce

Food Menu – Restaurant Menu & Online Ordering for WooCommerce

tlp-food-menu

A
99

A Simple Food & Restaurant Menu Display Plugin for Restaurant, Cafes, Fast Food, Coffee House with WooCommerce Online Ordering.

3K 1 CVE
Restaurant Menu and Food Ordering

Restaurant Menu and Food Ordering

mp-restaurant-menu

A
93

Create and maintain modern online menus for almost any kind of restaurant. Sell food and beverages online. All in one plugin.

2K 4 CVEs
Developer Profile

Pizza builder for WooCommerce Developer Profile

EvelynWaugh

3 plugins · 60 total installs

88
trust score
Avg Security Score
92/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Pizza builder for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/pizza-builder-for-woocommerce/assets/css/fancybox.css/wp-content/plugins/pizza-builder-for-woocommerce/assets/css/swiper.css/wp-content/plugins/pizza-builder-for-woocommerce/assets/css/pizza-builder.css/wp-content/plugins/pizza-builder-for-woocommerce/assets/js/fancybox.min.js/wp-content/plugins/pizza-builder-for-woocommerce/assets/js/swiper.min.js/wp-content/plugins/pizza-builder-for-woocommerce/assets/js/pizza-builder.js
Script Paths
pizza-popperpizza-tippspizza-fancyboxpizza-swiperpizza-builder
Version Parameters
pizza-builder-for-woocommerce/assets/css/fancybox.css?ver=pizza-builder-for-woocommerce/assets/css/swiper.css?ver=pizza-builder-for-woocommerce/assets/css/pizza-builder.css?ver=pizza-builder-for-woocommerce/assets/js/fancybox.min.js?ver=pizza-builder-for-woocommerce/assets/js/swiper.min.js?ver=pizza-builder-for-woocommerce/assets/js/pizza-builder.js?ver=

HTML / DOM Fingerprints

CSS Classes
pbw-builder-step__componentpbw-builder-step__innerpbw-builder-step__namepbw-builder-step__imagepbw-builder-step__price
Data Attributes
data-choosen
JS Globals
EV_FRONT_BUILDERpbw_builder_
Shortcode Output
<div>No data for given shortcode</div><div>Choose PBW Product</div>
FAQ

Frequently Asked Questions about Pizza builder for WooCommerce