WP-Safety

Pricing Table Security & Risk Analysis

wordpress.org/plugins/pricing-table-free

This pack of CSS3 Pricing Tables is a complete solution for building awesome Responsive pricing tables in a minutes.

10 active installs v1.0 PHP + WP 3.8+ Updated Nov 19, 2017
free-pricing-tableprice-tablepricing-tablepricing-table-pluginpricing-tables
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Pricing Table Safe to Use in 2026?

Generally Safe

Score 85/100

Pricing Table has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago
Risk Assessment

The "pricing-table-free" plugin v1.0 exhibits a generally good security posture, with no known vulnerabilities in its history. The static analysis reveals a relatively small attack surface with no unprotected entry points, indicating a commitment to basic security practices like nonce and capability checks. The absence of dangerous functions, file operations, and external HTTP requests further strengthens its security profile. SQL queries are also securely handled using prepared statements, and a significant portion of output is properly escaped, mitigating common cross-site scripting (XSS) risks.

However, a critical concern arises from the taint analysis, which identified one flow with unsanitized paths. This specific flow, while not classified as critical or high in severity according to the report, represents a potential pathway for attackers to inject malicious data if not handled with extreme care. The bundling of Select2 v3.4.5, an older version, also presents a potential risk as older library versions are more likely to contain known or undiscovered vulnerabilities that could be exploited. While the plugin has no recorded CVEs, this doesn't guarantee future invulnerability, especially given the identified taint flow and outdated library.

In conclusion, "pricing-table-free" v1.0 has implemented several strong security measures. The main areas requiring attention are the single identified taint flow with unsanitized paths, which needs thorough investigation and remediation, and the outdated bundled Select2 library, which should be updated. Proactive security efforts, including rigorous code review for the identified taint flow and library updates, would significantly enhance the plugin's overall security.

Key Concerns

  • Flow with unsanitized paths (taint analysis)
  • Bundled outdated library (Select2 v3.4.5)
  • Less than 100% of output properly escaped
Vulnerabilities
None known

Pricing Table Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Pricing Table Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
37
120 escaped
Nonce Checks
4
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
1

Bundled Libraries

Select23.4.5

Output Escaping

76% escaped157 total outputs
Data Flows
1 unsanitized

Data Flow Analysis

3 flows1 with unsanitized paths
request_image_ajax_callback (metabox\classes.fields.php:561)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Pricing Table Attack Surface

Entry Points3
Unprotected0

AJAX Handlers 2

authwp_ajax_cmb_request_imagemetabox\classes.fields.php:581
authwp_ajax_cmb_post_selectmetabox\classes.fields.php:1261

Shortcodes 1

[ptwcode] pricing-table-wordpress.php:226
WordPress Hooks 22
actiondbx_post_advancedmetabox\class.cmb-meta-box.php:27
actioncmb_init_fieldsmetabox\class.cmb-meta-box.php:28
actionadmin_headmetabox\class.cmb-meta-box.php:33
actionadmin_menumetabox\class.cmb-meta-box.php:35
actionsave_postmetabox\class.cmb-meta-box.php:36
actioncmb_save_fieldsmetabox\class.cmb-meta-box.php:37
actionadmin_enqueue_scriptsmetabox\class.cmb-meta-box.php:39
actionadmin_enqueue_scriptsmetabox\class.cmb-meta-box.php:40
filtercmb_show_onmetabox\class.cmb-meta-box.php:42
filtercmb_show_onmetabox\class.cmb-meta-box.php:43
actioninitmetabox\custom-meta-boxes.php:81
filterquerymetabox\custom-meta-boxes.php:172
filtercmb_meta_boxesmetabox\example-functions.php:104
actioninitpricing-table-wordpress.php:31
filterenter_title_herepricing-table-wordpress.php:33
actionwp_enqueue_scriptspricing-table-wordpress.php:39
actionplugins_loadedpricing-table-wordpress.php:41
actionadmin_enqueue_scriptspricing-table-wordpress.php:43
actionadd_meta_boxespricing-table-wordpress.php:45
actionsave_postpricing-table-wordpress.php:47
filtercmb_meta_boxespricing-table-wordpress.php:49
actionafter_setup_themepricing-table-wordpress.php:51
Maintenance & Trust

Pricing Table Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29
Last updatedNov 19, 2017
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Pricing Table Alternatives

Pricing Tables Free

Pricing Tables Free

kento-pricing-table-free

A
85

WordPress Pricing Tables is pure CSS3 and HTML pricing table packs.

100 No CVEs
PickPlugins Pricing Table

PickPlugins Pricing Table

pricingtable

B
79

PricingTable to display pricing grid on your WordPress site.

1K 1 unpatched
Pricing Table Extended

Pricing Table Extended

pricing-table-extended

A
100

Pricing Table Extended is WP Plugin to create pricing table easily. 4 themes available and you can create your theme too.

10 No CVEs
Responsive Pricing Table

Responsive Pricing Table

dk-pricr-responsive-pricing-table

A
95

A responsive and elegant way to present your offer to your visitors. Create a new pricing table now and copy-paste the shortcode anywhere.

10K 5 CVEs
Pricing Table WordPress Plugin – Easy Pricing Tables

Pricing Table WordPress Plugin – Easy Pricing Tables

easy-pricing-tables

A
97

Pricing Table Plugin - Easy Pricing Tables Lets You Create A Beautiful, Responsive Pricing Table In 2 Minutes. No Coding Required.

10K 6 CVEs
Developer Profile

Pricing Table Developer Profile

Themepoints

19 plugins · 10K total installs

84
trust score
Avg Security Score
94/100
Avg Patch Time
66 days
View full developer profile
Detection Fingerprints

How We Detect Pricing Table

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/pricing-table-free/css/pricing-table-wordpress.css/wp-content/plugins/pricing-table-free/css/font-awesome.css/wp-content/plugins/pricing-table-free/admin/css/pricing-table-admin.css/wp-content/plugins/pricing-table-free/admin/js/pricing-table-admin.js/wp-content/plugins/pricing-table-free/admin/js/color-picker.js
Script Paths
/wp-content/plugins/pricing-table-free/admin/js/pricing-table-admin.js/wp-content/plugins/pricing-table-free/admin/js/color-picker.js
Version Parameters
pricing-table-free/css/pricing-table-wordpress.css?ver=pricing-table-free/css/font-awesome.css?ver=pricing-table-free/admin/css/pricing-table-admin.css?ver=pricing-table-free/admin/js/pricing-table-admin.js?ver=pricing-table-free/admin/js/color-picker.js?ver=

HTML / DOM Fingerprints

CSS Classes
pricing-table-wordpress-features-columnpricing_table_wordpress_titlepricing_wordpress_sub_titlepricing_wordpress_header_bg_colorpricing_wordpress_header_font_colorpricing_table_wordpress_package_currencypricing_table_wordpress_package_pricepricing_table_wordpress_pricing_per+2 more
Data Attributes
pricing_table_wp_featurepricing_table_wp_columnspricing_table_wordpress_titlepricing_wordpress_sub_titlepricing_wordpress_header_bg_colorpricing_wordpress_header_font_color+6 more
JS Globals
pricing_table_color_pickerpricing-table-admin-js
FAQ

Frequently Asked Questions about Pricing Table