WP-Safety

POFW Option CSS Security & Risk Analysis

wordpress.org/plugins/pofw-option-css

Adds custom CSS classes to product options of the "Product Options for WooCommerce" plugin.

10 active installs v1.0.0 PHP + WP 4.7+ Updated Unknown
custom-designproduct-options
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is POFW Option CSS Safe to Use in 2026?

Generally Safe

Score 100/100

POFW Option CSS has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs
Risk Assessment

The "pofw-option-css" v1.0.0 plugin exhibits a generally good security posture with a very limited attack surface and no recorded vulnerabilities or critical taint flows. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly reduces the potential for external exploitation. Furthermore, the plugin performs file operations and makes external HTTP requests, which are positive security indicators.

However, there are notable areas for improvement. The plugin uses SQL queries, with a significant portion not utilizing prepared statements (only 33% prepared), which presents a risk of SQL injection vulnerabilities. Additionally, the output escaping is quite low (12% properly escaped), indicating a potential for cross-site scripting (XSS) vulnerabilities. The complete absence of nonce checks and a single capability check, while the total entry points are zero, means any future expansion of entry points would need careful authorization considerations. The vulnerability history being clear is a strength, but the lack of previous issues doesn't guarantee future security.

In conclusion, while the plugin currently has a small attack surface and a clean vulnerability history, the static analysis reveals significant concerns regarding the secure handling of SQL queries and output data. Addressing these issues would substantially strengthen the plugin's overall security.

Key Concerns

  • SQL queries not using prepared statements
  • Low percentage of properly escaped output
  • No nonce checks
Vulnerabilities
None known

POFW Option CSS Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

POFW Option CSS Code Analysis

Dangerous Functions
0
Raw SQL Queries
8
4 prepared
Unescaped Output
15
2 escaped
Nonce Checks
0
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

33% prepared12 total queries

Output Escaping

12% escaped17 total outputs
Attack Surface

POFW Option CSS Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 10
actionadmin_enqueue_scriptsController\Adminhtml\Product.php:9
filterwoocommerce_product_data_tabsController\Adminhtml\Product.php:11
actionwoocommerce_product_data_panelsController\Adminhtml\Product.php:12
actionwp_enqueue_scriptsController\Product.php:8
actionwoocommerce_before_add_to_cart_buttonController\Product.php:9
actionwoocommerce_process_product_metaModel\Observer.php:20
filterpofw_csv_export_data_option_rowsModel\Observer.php:21
filterpofw_csv_export_data_option_value_rowsModel\Observer.php:22
actionpofw_csv_import_product_options_savedModel\Observer.php:23
actiondelete_postModel\Observer.php:24
Maintenance & Trust

POFW Option CSS Maintenance & Trust

Maintenance Signals

WordPress version tested6.4.8
Last updatedUnknown
PHP min version
Downloads934

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

POFW Option CSS Alternatives

Advanced Product Fields (Product Addons) for WooCommerce

Advanced Product Fields (Product Addons) for WooCommerce

advanced-product-fields-for-woocommerce

A
98

Add options (addons) to your WooCommerce products so your customers can personalize their products. Product forms for everyone!

50K 2 CVEs
Product Addons for Woocommerce – Product Options with Custom Fields

Product Addons for Woocommerce – Product Options with Custom Fields

woo-custom-product-addons

A
97

WooCommerce Product Addons Add custom fields to your WooCommerce product page. With an easy-to-use Custom Form Builder.

30K 1 CVE
Extra Product Options For WooCommerce | Custom Product Addons and Fields

Extra Product Options For WooCommerce | Custom Product Addons and Fields

woo-extra-product-options

A
100

WooCommerce Extra Product Options plugin lets you add product addons (custom products field) of 20 different field types to your product page.

30K No CVEs
PPOM – Product Addons & Custom Fields for WooCommerce

PPOM – Product Addons & Custom Fields for WooCommerce

woocommerce-product-addon

B
80

Easily add a range of custom fields to WooCommerce products, from text boxes to date selectors, allowing customers to personalize their orders.

20K 11 CVEs
YITH WooCommerce Product Add-Ons

YITH WooCommerce Product Add-Ons

yith-woocommerce-product-add-ons

A
96

Increase average order value by letting your customers purchase additional options on your products.

20K 7 CVEs
Developer Profile

POFW Option CSS Developer Profile

Pektsekye

14 plugins · 6K total installs

93
trust score
Avg Security Score
98/100
Avg Patch Time
8 days
View full developer profile
Detection Fingerprints

How We Detect POFW Option CSS

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/pofw-option-css/view/adminhtml/web/product/edit/main.js/wp-content/plugins/pofw-option-css/view/adminhtml/web/product/edit/main.css/wp-content/plugins/pofw-option-css/view/frontend/web/main.js/wp-content/plugins/pofw-option-css/view/frontend/web/main.css
Script Paths
/wp-content/plugins/pofw-option-css/view/adminhtml/web/product/edit/main.js/wp-content/plugins/pofw-option-css/view/frontend/web/main.js
Version Parameters
pofw-option-css/view/adminhtml/web/product/edit/main.js?ver=pofw-option-css/view/adminhtml/web/product/edit/main.css?ver=pofw-option-css/view/frontend/web/main.js?ver=pofw-option-css/view/frontend/web/main.css?ver=

HTML / DOM Fingerprints

CSS Classes
pofw_ocss_product_data
Data Attributes
pofw_ocss_changedpofw_ocss_optionsocss_value_idcss_class
FAQ

Frequently Asked Questions about POFW Option CSS