Does ProfitGuard have any unpatched vulnerabilities?

No. All known vulnerabilities in ProfitGuard have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is ProfitGuard compatible with WordPress 6.9.4?

According to WordPress.org data, ProfitGuard 1.0.3 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is ProfitGuard compatible with PHP 7.4+?

ProfitGuard requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is ProfitGuard updated?

ProfitGuard was last updated on Mar 11, 2026. Frequent updates are generally a positive security signal.

What is ProfitGuard's security score?

ProfitGuard has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

ProfitGuard Security & Risk Analysis

wordpress.org/plugins/profitguard

ProfitGuard helps WooCommerce store owners track real product profit, break-even ROAS, and cost assumptions from a single admin dashboard.

0 active installs v1.0.3 PHP 7.4+ WP 6.0+ Updated Mar 11, 2026

ecommercepricingprofitroaswoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is ProfitGuard Safe to Use in 2026?

Generally Safe

Score 100/100

ProfitGuard has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 23d ago

Risk Assessment

The "profitguard" plugin v1.0.3 exhibits a generally good security posture, with no identified critical or high-severity vulnerabilities in its history or static analysis. The plugin demonstrates strong adherence to security best practices, evidenced by the absence of dangerous functions, file operations, and external HTTP requests. Crucially, all SQL queries are prepared, and it includes nonce and capability checks on its single AJAX entry point, indicating an effort to protect against common WordPress exploits. The lack of any identified CVEs further reinforces this positive security outlook.

However, a notable concern arises from the output escaping, with less than half of the outputs being properly escaped. This leaves the plugin vulnerable to Cross-Site Scripting (XSS) attacks if user-supplied data is rendered without adequate sanitization. While the attack surface is small and protected, the unescaped output represents a significant potential weakness. The bundled Freemius library, although at a specific version, should also be monitored for potential vulnerabilities in future updates.

In conclusion, "profitguard" v1.0.3 is a relatively secure plugin, particularly regarding its handling of SQL, nonces, and capabilities. The primary area requiring immediate attention is the inadequate output escaping, which presents a tangible XSS risk. Addressing this would significantly bolster the plugin's overall security.

Key Concerns

Low percentage of properly escaped output
Bundled Freemius v1.0 library

Vulnerabilities

None known

ProfitGuard Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

ProfitGuard Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

39 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Freemius1.0

Output Escaping

48% escaped82 total outputs

Attack Surface

ProfitGuard Attack Surface

Entry Points1

Unprotected0

AJAX Handlers 1

authwp_ajax_profitguard_save_costincludes\admin\class-bulk-editor.php:10

WordPress Hooks 14

actionadmin_menuincludes\admin\class-dashboard.php:10

actionadmin_enqueue_scriptsincludes\admin\class-dashboard.php:11

actionsave_post_productincludes\admin\class-dashboard.php:12

actionwoocommerce_product_options_pricingincludes\core\class-cost-field.php:10

actionwoocommerce_process_product_metaincludes\core\class-cost-field.php:11

filtermanage_edit-product_sortable_columnsincludes\core\class-profit-calculator.php:10

actionpre_get_postsincludes\core\class-profit-calculator.php:11

actionadmin_enqueue_scriptsincludes\core\class-profit-calculator.php:12

filtermanage_edit-product_columnsincludes\core\class-profit-calculator.php:14

actionmanage_product_posts_custom_columnincludes\core\class-profit-calculator.php:15

actionadmin_initincludes\core\class-profit-calculator.php:17

actionadmin_enqueue_scriptsprofitguard.php:86

actionadmin_noticesprofitguard.php:116

actionplugins_loadedprofitguard.php:123

Maintenance & Trust

ProfitGuard Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 11, 2026

PHP min version7.4

Downloads155

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

ProfitGuard Alternatives

Price & Cart Hider – WooCommerce Catalog Mode, Wholesale & B2B

price-cart-hider-for-woocommerce

100

Turn WooCommerce into Catalog Mode. Hide prices & Add to Cart. Perfect for Wholesale, B2B, and Members-only stores. No coding needed.

100 No CVEs

Profit Margin Calculator for WooCommerce

profit-margin-calculator

100

A lightweight, easy-to-use WooCommerce extension that calculates product profit and profit margins automatically.

10 No CVEs

Product Price Display for Woocommerce

woo-price-display

100

Built for woocommerce Edit the front-end display of the pricing for products. Compatable with your Woocommerce ecommerce store.

10 No CVEs

DL Inclusive & Exclusive Tax Prices

dl-inclusive-exclusive-tax-prices

100

Display both inclusive and exclusive tax prices on WooCommerce product pages using clean, fully stylable markup.

0 No CVEs

WooCommerce PayPal Payments

woocommerce-paypal-payments

100

PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.

800K 1 CVE

Developer Profile

ProfitGuard Developer Profile

Matches LLC

2 plugins · 70 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect ProfitGuard

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/profitguard/assets/css/admin.css/wp-content/plugins/profitguard/assets/bulk.js

Script Paths

/wp-content/plugins/profitguard/assets/bulk.js

Version Parameters

profitguard/assets/css/admin.css?ver=profitguard/assets/bulk.js?ver=

HTML / DOM Fingerprints

CSS Classes

pg-heropg-hero-actions

Data Attributes

data-nonce="profitguard_bulk_edit_nonce"data-saved-text="Saved"data-error-text="Something went wrong."data-markup-invalid="Enter a valid markup percentage."

JS Globals

profitguardAjax

FAQ