Does Product Sale Timer for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Product Sale Timer for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Product Sale Timer for WooCommerce compatible with WordPress 6.8.5?

According to WordPress.org data, Product Sale Timer for WooCommerce 0.1.0 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Product Sale Timer for WooCommerce compatible with PHP 7.4+?

Product Sale Timer for WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Product Sale Timer for WooCommerce updated?

Product Sale Timer for WooCommerce was last updated on Jul 28, 2025. Frequent updates are generally a positive security signal.

What is Product Sale Timer for WooCommerce's security score?

Product Sale Timer for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Product Sale Timer for WooCommerce Security & Risk Analysis

wordpress.org/plugins/product-sale-timer-for-woocommerce

Show a countdown timer on Website for upcoming or ongoing sales. Simple, fast, and easy to use.

0 active installs v0.1.0 PHP 7.4+ WP 6.0+ Updated Jul 28, 2025

product-sale-countdownproduct-sale-countdown-timerproduct-sale-timerwoocommercewoocommerce-sale-countdown

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Product Sale Timer for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Product Sale Timer for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8mo ago

Risk Assessment

The plugin "product-sale-timer-for-woocommerce" version 0.1.0 exhibits a generally good security posture with several positive indicators. Notably, all identified output operations are properly escaped, and there are no recorded vulnerabilities or dangerous function calls, suggesting a developer mindful of common security pitfalls. The presence of nonces on a majority of entry points also contributes to a more secure foundation.

However, a significant concern arises from the presence of one unprotected AJAX handler. This creates a direct entry point for potential unauthorized actions or information disclosure if not properly secured. While the static analysis did not reveal any critical taint flows or raw SQL queries that are not prepared, the unprotected AJAX handler remains a primary area of risk that could be exploited by an attacker. The lack of past vulnerabilities, while positive, should not lead to complacency, especially given the identified unprotected entry point.

In conclusion, the plugin demonstrates a commitment to secure coding practices in many areas, but the unprotected AJAX handler presents a clear and present risk that requires immediate attention. Addressing this single vulnerability would significantly strengthen the plugin's overall security.

Key Concerns

Unprotected AJAX handler

Vulnerabilities

None known

Product Sale Timer for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Product Sale Timer for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

15 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

50% prepared4 total queries

Output Escaping

100% escaped15 total outputs

Attack Surface

1 unprotected

Product Sale Timer for WooCommerce Attack Surface

Entry Points5

Unprotected1

AJAX Handlers 4

authwp_ajax_save_new_timerincludes\classes\class-pst-data.php:52

authwp_ajax_get_timer_dataincludes\classes\class-pst-data.php:53

authwp_ajax_update_timerincludes\classes\class-pst-data.php:54

authwp_ajax_delete_timerincludes\classes\class-pst-data.php:55

Shortcodes 1

[wcc_pst_sale_timer] includes\frontend\frontend.php:26

WordPress Hooks 11

actionplugins_loadedincludes\classes\class-db-tables.php:24

actionwoocommerce_product_options_pricingincludes\classes\class-pst-product-fields.php:52

actionwoocommerce_process_product_metaincludes\classes\class-pst-product-fields.php:53

actionadmin_menuincludes\classes\settings.php:27

actionadmin_enqueue_scriptsincludes\classes\settings.php:29

actioninitincludes\frontend\frontend.php:27

filterwoocommerce_product_get_priceincludes\frontend\frontend.php:28

filterwoocommerce_product_get_sale_priceincludes\frontend\frontend.php:29

filterwoocommerce_product_is_on_saleincludes\frontend\frontend.php:30

actionwp_enqueue_scriptsincludes\frontend\frontend.php:183

actionplugins_loadedpst-sales-timer.php:31

Maintenance & Trust

Product Sale Timer for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJul 28, 2025

PHP min version7.4

Downloads222

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Product Sale Timer for WooCommerce Alternatives

Sale Countdown WooCommerce

flash-sale-countdown-for-woocommerce

Display flash sale with countdown timer, display sale-flash in percentage

20 No CVEs

Sales Countdown for WooCommerce

sales-countdown-for-woocommerce

WordPress plugin to show countdown on sale product

10 No CVEs

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs

Google for WooCommerce

google-listings-and-ads

Native integration with Google that allows merchants to easily display their products across Google’s network.

900K 1 CVE

WooPayments: Integrated WooCommerce Payments

woocommerce-payments

Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.

900K 7 CVEs

Developer Profile

Product Sale Timer for WooCommerce Developer Profile

Satish Prajapati

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Product Sale Timer for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/product-sale-timer-for-woocommerce/build/index.css/wp-content/plugins/product-sale-timer-for-woocommerce/build/index.js

Script Paths

/wp-content/plugins/product-sale-timer-for-woocommerce/build/index.js

Version Parameters

product-sale-timer-for-woocommerce/build/index.css?ver=product-sale-timer-for-woocommerce/build/index.js?ver=

HTML / DOM Fingerprints

CSS Classes

wcc-pst-wrappersale-timer-containerpst-stack

Data Attributes

id="wcc-pst-settings"

JS Globals

wccPstSettings

Shortcode Output

<div>no data found</div><div>Product not found</div><div>No Data Found</div>

FAQ