Does Product Like and Hide have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Product Like and Hide compatible with WordPress 6.4.8?

According to WordPress.org data, Product Like and Hide 1.0.1 has been tested up to WordPress 6.4.8. Check the plugin's changelog for the latest compatibility information.

Is Product Like and Hide compatible with PHP 7.4+?

Product Like and Hide requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Product Like and Hide updated?

Product Like and Hide was last updated on Dec 10, 2023. Frequent updates are generally a positive security signal.

What is Product Like and Hide's security score?

Product Like and Hide has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Product Like and Hide Security & Risk Analysis

wordpress.org/plugins/product-like-and-hide

Allow customers to like and hide products in your WooCommerce store.

0 active installs v1.0.1 PHP 7.4+ WP 5.4+ Updated Dec 10, 2023

hidelikeproductwishlistwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Product Like and Hide Safe to Use in 2026?

Generally Safe

Score 85/100

Product Like and Hide has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The "product-like-and-hide" plugin v1.0.1 exhibits a generally good security posture, with a strong emphasis on using prepared statements for its SQL queries and a high percentage of properly escaped outputs. The plugin also incorporates nonce and capability checks, which are crucial for preventing common web vulnerabilities. Its attack surface is well-managed, with all identified entry points having authentication checks, and the absence of file operations and external HTTP requests further reduces potential risks. Furthermore, the plugin has no known historical vulnerabilities, indicating a potentially mature and well-maintained codebase.

However, a critical area of concern arises from the taint analysis. The presence of one flow with an unsanitized path, even if not classified as a critical or high severity in the static analysis, represents a significant risk. Such unsanitized paths can be exploited to inject malicious code or data, leading to various security breaches. While the static analysis has not flagged this as critical, the very existence of an unsanitized path warrants careful investigation and mitigation. The plugin's vulnerability history being clean is a positive sign, but it does not negate the identified risk within the current codebase.

Key Concerns

Flow with unsanitized path
Output escaping not fully utilized (25% unescaped)

Vulnerabilities

None known

Product Like and Hide Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Product Like and Hide Release Timeline

v1.0.1Current

v1.0.0

Code Analysis

Analyzed Mar 17, 2026

Product Like and Hide Code Analysis

Dangerous Functions

Raw SQL Queries

22 prepared

Unescaped Output

74 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

92% prepared24 total queries

Output Escaping

75% escaped99 total outputs

Data Flows · Security

1 unsanitized

Data Flow Analysis

3 flows1 with unsanitized paths

ajax_like_product (app\main\class-plah-product-like.php:97)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Product Like and Hide Attack Surface

Entry Points5

Unprotected0

AJAX Handlers 4

authwp_ajax_plah_hide_productapp\main\class-plah-product-hide.php:40

noprivwp_ajax_plah_hide_productapp\main\class-plah-product-hide.php:43

authwp_ajax_plah_like_productapp\main\class-plah-product-like.php:41

noprivwp_ajax_plah_like_productapp\main\class-plah-product-like.php:44

Shortcodes 1

[plah_user_likes_page] app\main\class-plah-product-like.php:48

WordPress Hooks 13

actionadmin_menuapp\main\class-plah-admin-settings.php:41

actionadmin_initapp\main\class-plah-admin-settings.php:43

actionadd_meta_boxesapp\main\class-plah-admin.php:36

actionadmin_enqueue_scriptsapp\main\class-plah-admin.php:40

actionwp_enqueue_scriptsapp\main\class-plah-main.php:38

actionwoocommerce_after_add_to_cart_buttonapp\main\class-plah-main.php:40

actionwp_footerapp\main\class-plah-main.php:43

actionplah_show_single_product_hide_buttonapp\main\class-plah-product-hide.php:37

filterpre_get_postsapp\main\class-plah-product-hide.php:46

actionwoocommerce_after_shop_loop_itemapp\main\class-plah-product-hide.php:48

actionplah_show_single_product_like_buttonapp\main\class-plah-product-like.php:38

actionplugins_loadedproduct-like-and-hide.php:114

actioninitproduct-like-and-hide.php:126

Maintenance & Trust

Product Like and Hide Maintenance & Trust

Maintenance Signals

WordPress version tested6.4.8

Last updatedDec 10, 2023

PHP min version7.4

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Product Like and Hide Alternatives

WCBoost – Wishlist

wcboost-wishlist

100

WCBoost - Wishlist lets shoppers create wishlists for later purchases, reminding them of desired items, driving repeat visits and boost sales.

40K No CVEs

Hide Categories and Products for Woocommerce

hide-categories-products-woocommerce

Hide Categories and Products for Woocommerce. This plugins requires WooCommerce to be installed and activated

10K No CVEs

QODE Wishlist for WooCommerce

qode-wishlist-for-woocommerce

Qode Wishlist for WooCommerce plugin is the ideal toolkit for letting your visitors save & share comprehensive lists with their products of interest.

10K 1 CVE

YITH Essential Kit for WooCommerce #1

yith-essential-kit-for-woocommerce-1

The YITH Essential Kit for WooCommerce #1 plugin enhance your WordPress site with this group of impressive features for WooCommerce.

5K 2 CVEs

Product Enquiry for WooCommerce

gm-woocommerce-quote-popup

Allow customers to request quotes, send product enquiries, and run WooCommerce in catalog mode by hiding prices and replacing the Add to Cart button.

3K 5 CVEs

Developer Profile

Product Like and Hide Developer Profile

Giannis Kipouros

5 plugins · 880 total installs

trust score

Avg Security Score

95/100

Avg Patch Time

7 days

View full developer profile

Detection Fingerprints

How We Detect Product Like and Hide

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/product-like-and-hide/assets/css/product-like-and-hide-admin.css/wp-content/plugins/product-like-and-hide/assets/js/product-like-and-hide-admin.js/wp-content/plugins/product-like-and-hide/assets/css/product-like-and-hide.css/wp-content/plugins/product-like-and-hide/assets/js/product-like-and-hide.js

Script Paths

/wp-content/plugins/product-like-and-hide/assets/js/product-like-and-hide-admin.js/wp-content/plugins/product-like-and-hide/assets/js/product-like-and-hide.js

Version Parameters

product-like-and-hide/assets/css/product-like-and-hide-admin.css?ver=product-like-and-hide/assets/js/product-like-and-hide-admin.js?ver=product-like-and-hide/assets/css/product-like-and-hide.css?ver=product-like-and-hide/assets/js/product-like-and-hide.js?ver=

HTML / DOM Fingerprints

CSS Classes

plah-like-buttonplah-hide-buttonplah-like-countplah-hide-countplah-action-buttonplah-likedplah-hiddenplah-like-message+2 more

HTML Comments

+2 more

Data Attributes

data-product-iddata-actiondata-nonce

JS Globals

plah_ajax_object

REST Endpoints

/wp-json/plah/v1/like/wp-json/plah/v1/hide

Shortcode Output

[plah_user_likes_page]

FAQ