Does PM Plus Minus AJAX Cart have any unpatched vulnerabilities?

No. All known vulnerabilities in PM Plus Minus AJAX Cart have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is PM Plus Minus AJAX Cart compatible with WordPress 6.7.5?

According to WordPress.org data, PM Plus Minus AJAX Cart 1.1.6 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is PM Plus Minus AJAX Cart compatible with PHP 7.2+?

PM Plus Minus AJAX Cart requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is PM Plus Minus AJAX Cart updated?

PM Plus Minus AJAX Cart was last updated on Nov 27, 2024. Frequent updates are generally a positive security signal.

What is PM Plus Minus AJAX Cart's security score?

PM Plus Minus AJAX Cart has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

PM Plus Minus AJAX Cart Security & Risk Analysis

wordpress.org/plugins/pm-plus-minus-ajax-cart

PM Plus Minus AJAX Cart enables AJAX-powered WooCommerce Plus(+) & Minus(-) Add to Cart buttons with quantity controls for both global settings an …

20 active installs v1.1.6 PHP 7.2+ WP 5.0+ Updated Nov 27, 2024

add-to-cartajaxplus-minusquantity-controlwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is PM Plus Minus AJAX Cart Safe to Use in 2026?

Generally Safe

Score 92/100

PM Plus Minus AJAX Cart has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The plugin "pm-plus-minus-ajax-cart" v1.1.6 exhibits a generally strong security posture, with no critical vulnerabilities identified in the static analysis or its historical record. The code demonstrates good practices by exclusively using prepared statements for SQL queries and maintaining a high percentage of properly escaped output, minimizing the risk of injection attacks and cross-site scripting (XSS). The absence of dangerous functions, file operations, and external HTTP requests further contributes to its secure design. However, a notable concern is the presence of two AJAX handlers without explicit authentication checks. While the total number of entry points is low, and no taint flows were detected, these unprotected AJAX handlers represent a potential attack vector that could be exploited if they process user-supplied data in a sensitive manner. The lack of recorded vulnerabilities in its history is a positive sign, suggesting a mature and relatively secure development process. In conclusion, the plugin is well-developed with robust defenses against common web vulnerabilities, but the unprotected AJAX handlers require attention to ensure complete security.

Key Concerns

AJAX handlers without auth checks

Vulnerabilities

None known

PM Plus Minus AJAX Cart Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

PM Plus Minus AJAX Cart Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

49 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

94% escaped52 total outputs

Attack Surface

PM Plus Minus AJAX Cart Attack Surface

Entry Points5

Unprotected0

AJAX Handlers 4

authwp_ajax_add_to_cartpm-plus-minus-ajax-cart.php:125

noprivwp_ajax_add_to_cartpm-plus-minus-ajax-cart.php:126

authwp_ajax_get_cart_quantitypm-plus-minus-ajax-cart.php:145

noprivwp_ajax_get_cart_quantitypm-plus-minus-ajax-cart.php:146

Shortcodes 1

[pmatc_ajax_cart_button] pm-plus-minus-ajax-cart.php:227

WordPress Hooks 26

filterwoocommerce_settings_tabs_arrayinc\pm-ajax-cart-settings.php:6

actionwoocommerce_settings_pmatc_ajax_cartinc\pm-ajax-cart-settings.php:14

actionwoocommerce_update_options_pmatc_ajax_cartinc\pm-ajax-cart-settings.php:21

filterwoocommerce_admin_settings_sanitize_optioninc\pm-ajax-cart-settings.php:170

actionwp_headinc\pm-ajax-cart-settings.php:216

actionwoocommerce_single_product_summaryinc\pm-ajax-cart-settings.php:231

actionwoocommerce_single_product_summaryinc\pm-ajax-cart-settings.php:234

actionwoocommerce_after_shop_loop_iteminc\pm-ajax-cart-settings.php:239

actionwoocommerce_cart_collateralsinc\pm-ajax-cart-settings.php:243

actionwoocommerce_after_shop_loop_iteminc\pm-ajax-cart-settings.php:247

actionwoocommerce_single_product_summaryinc\pm-ajax-cart-settings.php:255

actionwoocommerce_single_product_summaryinc\pm-ajax-cart-settings.php:258

actionwoocommerce_after_shop_loop_iteminc\pm-ajax-cart-settings.php:262

actionwoocommerce_after_shop_loop_iteminc\pm-ajax-cart-settings.php:265

actionwoocommerce_single_product_summaryinc\pm-ajax-cart-settings.php:268

actionwoocommerce_single_product_summaryinc\pm-ajax-cart-settings.php:277

actionwoocommerce_after_shop_loop_iteminc\pm-ajax-cart-settings.php:281

actionwoocommerce_after_shop_loop_iteminc\pm-ajax-cart-settings.php:284

actionwoocommerce_single_product_summaryinc\pm-ajax-cart-settings.php:287

actionwoocommerce_after_shop_loop_iteminc\pm-ajax-cart-settings.php:300

actionadmin_footerinc\pm-ajax-cart-settings.php:351

actionadmin_initpm-plus-minus-ajax-cart.php:24

actionadmin_noticespm-plus-minus-ajax-cart.php:28

actioninitpm-plus-minus-ajax-cart.php:67

actionwp_enqueue_scriptspm-plus-minus-ajax-cart.php:84

actionadmin_noticespm-plus-minus-ajax-cart.php:245

Maintenance & Trust

PM Plus Minus AJAX Cart Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedNov 27, 2024

PHP min version7.2

Downloads2K

Community Trust

Rating100/100

Number of ratings3

Active installs20

Alternatives

PM Plus Minus AJAX Cart Alternatives

Ajax add to cart for WooCommerce

woo-ajax-add-to-cart

100

Ajax add to cart for WooCommerce products

10K No CVEs

WPC AJAX Add to Cart for WooCommerce

wpc-ajax-add-to-cart

100

It is a highly effective plugin for helping online stores cut down the site’s loading time, improve the user experience, and increase sales.

10K No CVEs

Cart Popup for WooCommerce

added-to-cart-popup-woocommerce

100

Cart Popup for WooCommerce enables Ajax add-to-cart and displays an instant popup showing the added product.

9K No CVEs

XT Floating Cart for WooCommerce

woo-floating-cart-lite

A modern Floating Cart / Side Cart for WooCommerce that will improve customer buying experience and increase conversions.

5K 1 CVE

Modal Fly Cart & AJAX Add to Cart for WooCommerce

woocomm-popup-cart-ajax

100

Popup Cart Lite for WooCommerce for WooCommerce plugin that displays popup cart for add to cart action.

2K No CVEs

Developer Profile

PM Plus Minus AJAX Cart Developer Profile

Jillur Rahman (DeveloperJillur)

1 plugin · 20 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect PM Plus Minus AJAX Cart

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/pm-plus-minus-ajax-cart/public/js/woo-pm-cart.js/wp-content/plugins/pm-plus-minus-ajax-cart/public/css/woo-pm-cart.css

Script Paths

/wp-content/plugins/pm-plus-minus-ajax-cart/public/js/woo-pm-cart.js

Version Parameters

pm-plus-minus-ajax-cart/public/js/woo-pm-cart.js?ver=pm-plus-minus-ajax-cart/public/css/woo-pm-cart.css?ver=

HTML / DOM Fingerprints

CSS Classes

product-cart-controlspm-plus-minus-cart-wrappm-cart-quantity-inputpm-cart-minus-buttonpm-cart-plus-button

Data Attributes

data-product_iddata-quantity

JS Globals

ajax_cart_params

REST Endpoints

/wp-json/pm-plus-minus-ajax-cart/v1/settings

Shortcode Output

<div class="product-cart-controls"><input type="number" class="pm-cart-quantity-input" value="<button class="pm-cart-minus-button"<button class="pm-cart-plus-button"

FAQ