WP-Safety

Product Delivery Date Security & Risk Analysis

wordpress.org/plugins/product-delivery-date

Product Delivery Date is a plugin that allows you to customize the delivery date of a product. With this plugin, you can add a delivery date field to …

200 active installs v1.2.4 PHP 7.4+ WP 5.2+ Updated Feb 1, 2025
datesdeliveryorder-deliveryproduct-deliverytimeslots
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Product Delivery Date Safe to Use in 2026?

Generally Safe

Score 92/100

Product Delivery Date has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The product-delivery-date plugin v1.2.4 exhibits a mixed security posture. On the positive side, it utilizes prepared statements for all SQL queries and has a relatively high percentage of properly escaped output, indicating good development practices in these areas. The absence of known CVEs and a clean vulnerability history is also a strong positive indicator. However, the plugin presents a significant concern due to an unprotected AJAX handler, which represents a direct entry point for potential attackers. Furthermore, the taint analysis reveals two flows with unsanitized paths, both flagged as high severity. This suggests that user-supplied data might be processed in a way that could lead to vulnerabilities if not handled with extreme care within these specific code paths, despite the lack of recorded CVEs.

Key Concerns

  • Unprotected AJAX handler
  • High severity unsanitized taint flow (x2)
  • Bundled outdated library (jQuery v1.12.4)
Vulnerabilities
None known

Product Delivery Date Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Product Delivery Date Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
9 prepared
Unescaped Output
19
90 escaped
Nonce Checks
2
Capability Checks
1
File Operations
3
External Requests
0
Bundled Libraries
4

Bundled Libraries

Select2Freemius1.0jQuery1.12.4DataTables

SQL Query Safety

100% prepared9 total queries

Output Escaping

83% escaped109 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

3 flows2 with unsanitized paths
<dateorders-woo> (dateorders-woo.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

Product Delivery Date Attack Surface

Entry Points3
Unprotected1

AJAX Handlers 1

authwp_ajax_update_delivery_dateorderscalendar.php:5

Shortcodes 2

[wooproddel_calendar] orderscalendar.php:2
[wooproddel_calendar_button] orderscalendar.php:3
WordPress Hooks 18
actionwoocommerce_checkout_processdateorders-woo.php:118
actionwoocommerce_after_checkout_billing_formdateorders-woo.php:138
actionwoocommerce_checkout_update_order_metadateorders-woo.php:207
actionwoocommerce_admin_order_data_after_billing_addressdateorders-woo.php:216
actionadmin_menudateorders-woo.php:227
actionadmin_initdateorders-woo.php:295
filterwoocommerce_email_order_meta_fieldsdateorders-woo.php:406
actionwoocommerce_after_checkout_billing_formdateorders-woo.php:432
actionmanage_shop_order_posts_custom_columndateorderscolumn.php:4
filtermanage_edit-shop_order_columnsdateorderscolumn.php:44
actionwp_enqueue_scriptshelper\extraadminoptions.php:24
actionadmin_post_wooproddel_export_to_excelhelper\tableexport.php:2
actionadmin_enqueue_scriptsorderscalendar.php:32
actionwp_enqueue_scriptstimeslots.php:10
actionwoocommerce_after_checkout_billing_formtimeslots.php:14
actionwoocommerce_checkout_processtimeslots.php:43
actionwoocommerce_checkout_update_order_metatimeslots.php:50
actionwoocommerce_admin_order_data_after_billing_addresstimeslots.php:57
Maintenance & Trust

Product Delivery Date Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedFeb 1, 2025
PHP min version7.4
Downloads4K

Community Trust

Rating100/100
Number of ratings1
Active installs200
Alternatives

Product Delivery Date Alternatives

Product Delivery Date for WooCommerce – Lite

Product Delivery Date for WooCommerce – Lite

product-delivery-date-for-woocommerce-lite

A
95

Choose delivery/pickup dates & times on product page. Simplify delivery management by setting minimum delivery time, max deliveries per day & more.

1K 5 CVEs
Order Delivery Date And Time

Order Delivery Date And Time

order-delivery-date-and-time

A
100

Order Delivery Date And Time plugin lets customers select delivery/pickup dates and times at checkout page.

1K No CVEs
Pargo Smart Logistics Solutions

Pargo Smart Logistics Solutions

pargo

A
100

Pargo now offers Home Delivery and Click & Collect through our latest plugin update, giving your customers even more freedom when choosing their p &hellip;

300 No CVEs
Delivery Countdown Timer

Delivery Countdown Timer

delivery-countdown-timer

A
85

Show the nextday delivery timer with text based on cut off time.

200 No CVEs
Delivery Date for WooCommerce

Delivery Date for WooCommerce

delivery-date-for-woocommerce

A
100

This plugin adds a delivery date field to the checkout page.

100 No CVEs
Developer Profile

Product Delivery Date Developer Profile

ITCS

2 plugins · 210 total installs

91
trust score
Avg Security Score
96/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Product Delivery Date

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/product-delivery-date/css/jquery-ui.css
Script Paths
jquery-ui-datepicker

HTML / DOM Fingerprints

HTML Comments
<!-- DO NOT REMOVE THIS IF, IT IS ESSENTIAL FOR THE `function_exists` CALL ABOVE TO PROPERLY WORK. -->
Data Attributes
name="wooproddel_activation"name="wooproddel_notification"name="wooproddel_date_required"name="wooproddel_checkoutdates"name="wooproddel_delivery_date"
Shortcode Output
<div id="wooproddel_delivery_date_field">
FAQ

Frequently Asked Questions about Product Delivery Date