WP-Safety

Product Layouts for WooCommerce Security & Risk Analysis

wordpress.org/plugins/product-layouts

Create impressive, lightweight, responsive WooCommerce product layouts. Compatible with popular themes & page builders.

1K active installs v1.4.1 PHP 7.4+ WP 6.2+ Updated Mar 13, 2026
product-galleryproduct-gridproduct-listproduct-showcaseproduct-table
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Product Layouts for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Product Layouts for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 22d ago
Risk Assessment

The "product-layouts" v1.4.1 plugin demonstrates a generally good security posture with several strong practices in place. The absence of known CVEs and a near-complete utilization of prepared statements for SQL queries are significant positives, indicating proactive security awareness in its development history. Furthermore, a high percentage of properly escaped output and robust use of nonce and capability checks on its entry points (AJAX handlers and shortcodes) further reinforce this. The plugin also effectively avoids external HTTP requests, minimizing a common attack vector.

However, there are areas of concern that warrant attention. The taint analysis reveals 13 flows with unsanitized paths, with 11 categorized as high severity. While no critical issues were flagged, these high-severity taint flows represent a significant risk of potential vulnerabilities if they lead to exploitable conditions, particularly concerning file operations and how user-supplied data might be processed. The presence of 5 file operations also increases the potential attack surface, especially when combined with unsanitized paths.

Overall, the plugin benefits from a clean vulnerability history and strong baseline security implementations. The primary weakness lies in the identified high-severity taint flows, which require thorough investigation and remediation. Addressing these specific code flows is crucial to solidifying the plugin's security and preventing potential future exploits, even in the absence of historical vulnerabilities.

Key Concerns

  • High severity taint flows with unsanitized paths
  • Unsanitized paths in taint flows
  • File operations present
  • Bundled Freemius v1.0 library
Vulnerabilities
None known

Product Layouts for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Product Layouts for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
40 prepared
Unescaped Output
127
1301 escaped
Nonce Checks
16
Capability Checks
14
File Operations
5
External Requests
0
Bundled Libraries
2

Bundled Libraries

Select2Freemius1.0

SQL Query Safety

98% prepared41 total queries

Output Escaping

91% escaped1428 total outputs
Data Flows
13 unsanitized

Data Flow Analysis

23 flows13 with unsanitized paths
extra_tablenav (Includes\Admin\Pages\Layout_list\Layouts_List.php:159)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Product Layouts for WooCommerce Attack Surface

Entry Points27
Unprotected0

AJAX Handlers 25

authwp_ajax_wpte_create_new_layoutIncludes\Admin\Ajax.php:19
authwp_ajax_wpte_editor_update_formIncludes\Admin\Ajax.php:20
authwp_ajax_wpte_get_productcIncludes\Admin\Ajax.php:21
authwp_ajax_wpte_delete_shortcodeIncludes\Admin\Ajax.php:22
authwp_ajax_wpte_shortcode_update_nameIncludes\Admin\Ajax.php:23
authwp_ajax_wpte_shortcode_import_layoutIncludes\Admin\Ajax.php:24
authwp_ajax_wpte_clone_layoutIncludes\Admin\Ajax.php:25
authwp_ajax_wpte_settings_formIncludes\Admin\Ajax.php:26
authwp_ajax_wpte_preview_frameIncludes\Admin\Ajax.php:27
authwp_ajax_wpte_quick_view_popupIncludes\Frontend\Ajax.php:24
noprivwp_ajax_wpte_quick_view_popupIncludes\Frontend\Ajax.php:25
authwp_ajax_wpte_quick_view_add_to_cartIncludes\Frontend\Ajax.php:26
noprivwp_ajax_wpte_quick_view_add_to_cartIncludes\Frontend\Ajax.php:27
authwp_ajax_wpte_product_compare_popupIncludes\Frontend\Ajax.php:29
noprivwp_ajax_wpte_product_compare_popupIncludes\Frontend\Ajax.php:30
authwp_ajax_wpte_compare_product_removeIncludes\Frontend\Ajax.php:31
noprivwp_ajax_wpte_compare_product_removeIncludes\Frontend\Ajax.php:32
authwp_ajax_wpte_load_filter_productIncludes\Frontend\Ajax.php:35
noprivwp_ajax_wpte_load_filter_productIncludes\Frontend\Ajax.php:36
authwp_ajax_wpte_load_product_based_on_categoryIncludes\Frontend\Ajax.php:39
noprivwp_ajax_wpte_load_product_based_on_categoryIncludes\Frontend\Ajax.php:40
authwp_ajax_wpte_product_paginationIncludes\Frontend\Ajax.php:43
noprivwp_ajax_wpte_product_paginationIncludes\Frontend\Ajax.php:44
authwp_ajax_wpte_product_load_moreIncludes\Frontend\Ajax.php:47
noprivwp_ajax_wpte_product_load_moreIncludes\Frontend\Ajax.php:48

Shortcodes 2

[wpte_product_layout_for_category_page] Includes\ArchivePage.php:24
[wpte_product_layout] Includes\Frontend\Shortcode.php:18
WordPress Hooks 25
actionadmin_menuIncludes\Admin\Menu.php:20
filterwpte_product_layout_admin_menuIncludes\Admin\Menu.php:30
actionadmin_noticesIncludes\Admin\Notice.php:33
actionadmin_noticesIncludes\Admin\Notice.php:39
actionadmin_noticesIncludes\Admin\Notice.php:45
actionadmin_noticesIncludes\Admin\Notice.php:50
actionwp_enqueue_scriptsIncludes\Admin\Pages\PreviewFrame.php:52
actionwp_print_stylesIncludes\Admin\Pages\PreviewFrame.php:53
actionadmin_footerIncludes\Admin\Pages\ProductLayout.php:24
actiontemplate_includeIncludes\ArchivePage.php:22
filterwoocommerce_locate_templateIncludes\ArchivePage.php:23
actionadmin_enqueue_scriptsIncludes\Assets.php:21
actionwp_enqueue_scriptsIncludes\Assets.php:22
actionwp_footerIncludes\Frontend\Shortcode.php:94
actionadmin_enqueue_scriptsIncludes\functions.php:264
actionadmin_print_scriptsIncludes\functions.php:265
actionadmin_print_footer_scriptsIncludes\functions.php:266
actionplugins_loadedproduct-layouts.php:108
actionadmin_print_footer_scriptsproduct-layouts.php:109
actionwpte_woo_single_product_imageTemplates\QuickView.php:19
actionwpte_woo_single_product_titleTemplates\QuickView.php:20
actionwpte_woo_single_product_priceTemplates\QuickView.php:21
actionwpte_woo_single_product_excerptTemplates\QuickView.php:22
actionwpte_woo_single_product_cartTemplates\QuickView.php:23
actionwpte_woo_single_product_metaTemplates\QuickView.php:24
Maintenance & Trust

Product Layouts for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 13, 2026
PHP min version7.4
Downloads32K

Community Trust

Rating100/100
Number of ratings14
Active installs1K
Alternatives

Product Layouts for WooCommerce Alternatives

Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider

Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider

woo-product-slider

A
99

Display your WooCommerce products in a responsive Product Slider, Product Carousel, or Product Grid Gallery with easy customization.

20K 2 CVEs
Product List, Product Showcase, and Product Flip Layout for WooCommerce – Product Display

Product List, Product Showcase, and Product Flip Layout for WooCommerce – Product Display

product-display

A
100

Create beautiful WooCommerce product grids, sliders, tables, carousels, and galleries with AJAX filtering, Elementor support, and responsive layouts.

10 No CVEs
Hexa Grid – Product Showcase and Category Display for WooCommerce

Hexa Grid – Product Showcase and Category Display for WooCommerce

hexa-grid-product-showcase

A
100

Build a Beautiful WooCommerce Product Showcase and WooCommerce Category Display using responsive grid, slider, list and table layouts.

0 No CVEs
Product Showcase For WooCommerce

Product Showcase For WooCommerce

ts-product-showcase

A
100

The Super Flexible, Elegant, and Highly Customizable Product Showcase Plugin for WordPress 🚀

0 No CVEs
Ultimate Product Table for WooCommerce

Ultimate Product Table for WooCommerce

ultimate-product-table-for-woocommerce

A
100

Manage and display WooCommerce products in powerful, flexible, and responsive product tables with a visual drag-and-drop builder. No coding required.

0 No CVEs
Developer Profile

Product Layouts for WooCommerce Developer Profile

Oxilab

1 plugin · 1K total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Product Layouts for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/product-layouts/assets/css/frontend.css/wp-content/plugins/product-layouts/assets/js/frontend.js/wp-content/plugins/product-layouts/assets/css/admin.css/wp-content/plugins/product-layouts/assets/js/admin.js
Script Paths
/wp-content/plugins/product-layouts/assets/js/frontend.js/wp-content/plugins/product-layouts/assets/js/admin.js
Version Parameters
product-layouts/assets/css/frontend.css?ver=product-layouts/assets/js/frontend.js?ver=product-layouts/assets/css/admin.css?ver=product-layouts/assets/js/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
product-layout-wrap
Data Attributes
data-product-layout-id
JS Globals
wpte_product_layout_params
Shortcode Output
[product_layout]
FAQ

Frequently Asked Questions about Product Layouts for WooCommerce