WP-Safety

Product page shipping calculator for WooCommerce Security & Risk Analysis

wordpress.org/plugins/product-page-shipping-calculator-for-woocommerce

This plugin allows you to show the shipping methods available on the product page for WooCommerce, so customers can see if shipping is available to th …

1K active installs v1.3.49.70 PHP + WP 3.0.1+ Updated Feb 25, 2026
check-woocommerce-pincodecheck-woocommerce-shippingshipping-calculatorshipping-costshipping-estimate
99
A · Safe
CVEs total2
Unpatched0
Last CVEMay 12, 2023
Plugin page Download
Safety Verdict

Is Product page shipping calculator for WooCommerce Safe to Use in 2026?

Generally Safe

Score 99/100

Product page shipping calculator for WooCommerce has a strong security track record. Known vulnerabilities have been patched promptly.

2 known CVEsLast CVE: May 12, 2023Updated 1mo ago
Risk Assessment

The 'product-page-shipping-calculator-for-woocommerce' plugin v1.3.49.70 exhibits a mixed security posture. While it demonstrates good practices in areas like SQL query sanitization and output escaping, significant concerns arise from its attack surface and lack of proper authorization checks. The presence of six unprotected AJAX handlers is a major red flag, potentially exposing functionalities to unauthorized access and manipulation. The taint analysis did not reveal critical or high-severity vulnerabilities, but the single flow with unsanitized paths warrants attention, even if its severity is not explicitly classified as high in this report. The vulnerability history, while showing no currently unpatched CVEs, indicates a past pattern of medium-severity Cross-Site Scripting (XSS) vulnerabilities, suggesting that input sanitization might not always be consistently robust. The plugin's strengths lie in its secure SQL handling and mostly proper output escaping, but the unprotected entry points and past XSS issues necessitate careful consideration.

Key Concerns

  • 6 unprotected AJAX handlers
  • 1 unsanitized path flow
  • Past medium severity XSS vulnerabilities
Vulnerabilities
2

Product page shipping calculator for WooCommerce Security Vulnerabilities

CVEs by Year

2 CVEs in 2023
2023
Patched Has unpatched

Severity Breakdown

Medium
2

2 total CVEs

CVE-2023-32575medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Product page shipping calculator for WooCommerce <= 1.3.25 - Authenticated (Administrator+) Stored Cross-Site Scripting via admin settings

May 12, 2023 Patched in 1.3.26 (256d)
CVE-2023-29094medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Product page shipping calculator for WooCommerce <= 1.3.20 - Authenticated (Administrator+) Stored Cross-Site Scripting

Apr 3, 2023 Patched in 1.3.21 (295d)
Code Analysis
Analyzed Mar 16, 2026

Product page shipping calculator for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
9
332 escaped
Nonce Checks
2
Capability Checks
0
File Operations
0
External Requests
1
Bundled Libraries
0

Output Escaping

97% escaped341 total outputs
Data Flows
1 unsanitized

Data Flow Analysis

18 flows1 with unsanitized paths
tab (admin\basic.php:103)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
6 unprotected

Product page shipping calculator for WooCommerce Attack Surface

Entry Points8
Unprotected6

AJAX Handlers 6

authwp_ajax_pisol_save_address_formpublic\class-address-form.php:9
noprivwp_ajax_pisol_save_address_formpublic\class-address-form.php:10
authwp_ajax_pisol_ppscw_popuppublic\class-address-popup.php:22
noprivwp_ajax_pisol_ppscw_popuppublic\class-address-popup.php:23
authwp_ajax_pisol_cal_shippingpublic\class-product-page.php:22
noprivwp_ajax_pisol_cal_shippingpublic\class-product-page.php:23

Shortcodes 2

[pi_address_form] public\class-address-form-shortcode.php:8
[pi_shipping_calculator] public\class-product-page.php:19
WordPress Hooks 36
actioninitadmin\class-adv-shipping-promotion.php:85
actionadmin_enqueue_scriptsadmin\class-analytics.php:34
actionadmin_footer-plugins.phpadmin\class-analytics.php:35
actionadmin_noticesadmin\class-analytics.php:38
actionpisol_custom_field_ppscw_radio_selectadmin\class-customfields.php:44
actionwp_loadedadmin\class-pisol-product-page-shipping-calculator-woocommerce-admin.php:19
actionadmin_noticesadmin\class-warning.php:9
actionadmin_menuadmin\menu.php:15
filterinstall_plugins_nonmenu_tabsadmin\plugins.php:40
actionwoocommerce_product_data_tabsadmin\product.php:8
actionwoocommerce_product_data_panelsadmin\product.php:10
actionwoocommerce_process_product_metaadmin\product.php:11
actionplugins_loadedincludes\class-pisol-product-page-shipping-calculator-woocommerce.php:146
actionadmin_enqueue_scriptsincludes\class-pisol-product-page-shipping-calculator-woocommerce.php:161
actionadmin_enqueue_scriptsincludes\class-pisol-product-page-shipping-calculator-woocommerce.php:162
actionwp_enqueue_scriptsincludes\class-pisol-product-page-shipping-calculator-woocommerce.php:177
actionwp_enqueue_scriptsincludes\class-pisol-product-page-shipping-calculator-woocommerce.php:178
actionadmin_enqueue_scriptsincludes\conflict-fixer.php:9
actionadmin_footerincludes\pisol.class.form.php:416
actionadmin_noticesincludes\review.php:109
actionadmin_noticespisol-product-page-shipping-calculator-woocommerce.php:37
actionbefore_woocommerce_initpisol-product-page-shipping-calculator-woocommerce.php:58
actionwc_ajax_pisol_save_address_formpublic\class-address-form.php:11
actionwoocommerce_initpublic\class-address-form.php:16
actionwp_footerpublic\class-address-popup.php:19
actionwc_ajax_pisol_ppscw_popuppublic\class-address-popup.php:24
filterwoocommerce_quantity_input_argspublic\class-change-quantity-id.php:10
actionwc_ajax_pisol_cal_shippingpublic\class-product-page.php:24
actionwc_ajax_pi_load_location_by_ajaxpublic\class-product-page.php:26
filterwoocommerce_notice_typespublic\class-product-page.php:29
filterpi_ppscw_hide_calculator_on_single_product_pagepublic\class-product-page.php:31
filteroption_woocommerce_shipping_cost_requires_addresspublic\class-product-page.php:40
filterwoocommerce_checkout_get_valuepublic\class-rset-logedin-customer-address.php:8
filterpisol_ppscw_shipping_method_namepublic\class-shipping-method-estimate-new.php:18
filterpisol_ppscw_shipping_method_namepublic\class-shipping-method-estimate.php:16
actionwp_enqueue_scriptspublic\design.php:14
Maintenance & Trust

Product page shipping calculator for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 25, 2026
PHP min version
Downloads136K

Community Trust

Rating98/100
Number of ratings76
Active installs1K
Alternatives

Product page shipping calculator for WooCommerce Alternatives

Shipping Cost on Product Page Calculator for WooCommerce

Shipping Cost on Product Page Calculator for WooCommerce

octolize-shipping-cost-on-product-page

A
100

Display shipping costs on product pages. Allow customers to calculate shipping based on their address before checkout. Improve UX and boost sales!

400 No CVEs
Cost Calculator Builder

Cost Calculator Builder

cost-calculator-builder

B
82

WP Cost Calculator is a simple and powerful tool that lets you create price estimation forms. Easily give your clients information about your services &hellip;

30K 14 CVEs
Easyship WooCommerce Shipping Rates

Easyship WooCommerce Shipping Rates

easyship-woocommerce-shipping-rates

A
100

Easyship for WooCommerce saves you time and money with live courier rates, seamless checkout, automated taxes & duties, and shipping label creation.

2K 1 CVE
WooReer

WooReer

wcsdm

A
100

WooReer calculates shipping rates based on distance via Google Maps, Mapbox, DistanceMatrix.ai, Geoapify, or HERE.

2K No CVEs
Distance Based Shipping Calculator

Distance Based Shipping Calculator

distance-based-shipping-calculator

A
97

This plugin retrieves the distance between your shipping origins and your customer and applies a rate per unit of distance (mile or kilometer) to calc &hellip;

100 4 CVEs
Developer Profile

Product page shipping calculator for WooCommerce Developer Profile

PI Web Solution

30 plugins · 93K total installs

78
trust score
Avg Security Score
99/100
Avg Patch Time
235 days
View full developer profile
Detection Fingerprints

How We Detect Product page shipping calculator for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/product-page-shipping-calculator-for-woocommerce/admin/css/pisol-product-page-shipping-calculator-woocommerce-admin.css/wp-content/plugins/product-page-shipping-calculator-for-woocommerce/admin/js/pisol-product-page-shipping-calculator-woocommerce-admin.js/wp-content/plugins/product-page-shipping-calculator-for-woocommerce/admin/css/bootstrap.css/wp-content/plugins/product-page-shipping-calculator-for-woocommerce/admin/js/pisol-quick-save.js
Version Parameters
pisol-product-page-shipping-calculator-woocommerce-admin.css?ver=pisol-product-page-shipping-calculator-woocommerce-admin.js?ver=bootstrap.css?ver=pisol-quick-save.js?ver=

HTML / DOM Fingerprints

CSS Classes
pisol-top-menu
JS Globals
Pisol_Product_Page_Shipping_Calculator_Woocommerce
FAQ

Frequently Asked Questions about Product page shipping calculator for WooCommerce