WP-Safety

QODE Product Bundles for WooCommerce Security & Risk Analysis

wordpress.org/plugins/qode-product-bundles-for-woocommerce

Boost conversion rates, create extra value deals and run cross-selling campaigns by combining two or more products in practical product bundles.

10 active installs v1.0 PHP 7.4+ WP 6.3+ Updated Dec 23, 2025
bundlecross-sellingproduct-bundlewoocommerce-bundlewoocommerce-product-bundle
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is QODE Product Bundles for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

QODE Product Bundles for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago
Risk Assessment

The plugin "qode-product-bundles-for-woocommerce" v1.0 exhibits a generally good security posture with a strong emphasis on secure coding practices. The plugin demonstrates a high rate of proper output escaping and exclusively uses prepared statements for SQL queries, significantly mitigating common web vulnerabilities like XSS and SQL injection. The presence of numerous nonce and capability checks indicates an effort to protect against CSRF and unauthorized actions.

However, the analysis does reveal a significant concern related to its attack surface. One of the two identified AJAX handlers lacks authentication checks, presenting an unprotected entry point that could be exploited by unauthenticated users. Furthermore, the taint analysis identified one flow with an unsanitized path of critical severity, suggesting a potential pathway for malicious input to be processed without adequate sanitization, which could lead to unintended consequences or security bypasses. The absence of any known CVEs or past vulnerabilities is a positive indicator of its development history.

In conclusion, while the plugin has strong fundamentals in secure coding, the unprotected AJAX handler and the critical taint flow represent substantial weaknesses that require immediate attention. The plugin's clean vulnerability history is a positive sign, but these newly identified issues highlight the need for thorough code review and remediation to maintain a secure environment.

Key Concerns

  • Unprotected AJAX handler
  • Taint flow with unsanitized path (critical)
Vulnerabilities
None known

QODE Product Bundles for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

QODE Product Bundles for WooCommerce Release Timeline

v1.0Current
Code Analysis
Analyzed Mar 17, 2026

QODE Product Bundles for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
22
682 escaped
Nonce Checks
8
Capability Checks
8
File Operations
1
External Requests
2
Bundled Libraries
0

Output Escaping

97% escaped704 total outputs
Data Flows · Security
1 unsanitized

Data Flow Analysis

3 flows1 with unsanitized paths
save_attribute_fields (inc\admin\inc\common\modules\attribute\core\class-qode-product-bundles-for-woocommerce-framework-options-attribute.php:42)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

QODE Product Bundles for WooCommerce Attack Surface

Entry Points2
Unprotected1

AJAX Handlers 2

authwp_ajax_qode_product_bundles_for_woocommerce_deactivationinc\admin\inc\admin-notice\class-qode-product-bundles-for-woocommerce-admin-notice.php:24
authwp_ajax_woocommerce_add_order_iteminc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:51
WordPress Hooks 116
actionplugins_loadedclass-qode-product-bundles-for-woocommerce.php:40
filterbody_classclass-qode-product-bundles-for-woocommerce.php:43
actionwp_enqueue_scriptsclass-qode-product-bundles-for-woocommerce.php:46
actionplugins_loadedclass-qode-product-bundles-for-woocommerce.php:110
actionadmin_noticesclass-qode-product-bundles-for-woocommerce.php:143
actionplugins_loadedclass-qode-product-bundles-for-woocommerce.php:147
filterqode_product_bundles_for_woocommerce_filter_framework_register_admin_optionsinc\admin\class-qode-product-bundles-for-woocommerce-framework.php:43
actionqode_product_bundles_for_woocommerce_action_framework_populate_meta_boxinc\admin\class-qode-product-bundles-for-woocommerce-framework.php:47
filterwp_kses_allowed_htmlinc\admin\helpers\helper.php:583
actionadmin_enqueue_scriptsinc\admin\inc\admin-notice\class-qode-product-bundles-for-woocommerce-admin-notice.php:18
actioncurrent_screeninc\admin\inc\admin-notice\class-qode-product-bundles-for-woocommerce-admin-notice.php:21
actionadmin_enqueue_scriptsinc\admin\inc\admin-notice\class-qode-product-bundles-for-woocommerce-admin-notice.php:52
actionadmin_footerinc\admin\inc\admin-notice\class-qode-product-bundles-for-woocommerce-admin-notice.php:56
filterplugin_row_metainc\admin\inc\admin-pages\class-qode-product-bundles-for-woocommerce-admin-general-page.php:20
actioninitinc\admin\inc\admin-pages\class-qode-product-bundles-for-woocommerce-admin-general-page.php:24
actionadmin_menuinc\admin\inc\admin-pages\class-qode-product-bundles-for-woocommerce-admin-general-page.php:25
filteradmin_body_classinc\admin\inc\admin-pages\class-qode-product-bundles-for-woocommerce-admin-general-page.php:26
actionadmin_enqueue_scriptsinc\admin\inc\admin-pages\class-qode-product-bundles-for-woocommerce-admin-general-page.php:160
actionadmin_enqueue_scriptsinc\admin\inc\admin-pages\class-qode-product-bundles-for-woocommerce-admin-general-page.php:161
actioninitinc\admin\inc\admin-pages\class-qode-product-bundles-for-woocommerce-admin-options-custom-page-handler.php:15
filterqode_product_bundles_for_woocommerce_filter_framework_custom_navinc\admin\inc\admin-pages\class-qode-product-bundles-for-woocommerce-admin-options-custom-page-handler.php:39
actionadmin_enqueue_scriptsinc\admin\inc\admin-pages\class-qode-product-bundles-for-woocommerce-admin-options-custom-page-handler.php:41
actionadmin_enqueue_scriptsinc\admin\inc\admin-pages\class-qode-product-bundles-for-woocommerce-admin-options-custom-page-handler.php:42
actioninitinc\admin\inc\admin-pages\options-custom-pages\help\dashboard.php:25
actionqode_product_bundles_for_woocommerce_action_additional_scripts_on_options_page_helpinc\admin\inc\admin-pages\options-custom-pages\help\helper.php:16
actionqode_product_bundles_for_woocommerce_action_framework_before_custom_navinc\admin\inc\admin-pages\options-custom-pages\helper.php:15
actioninitinc\admin\inc\admin-pages\options-custom-pages\qode-products\dashboard.php:25
actionafter_setup_themeinc\admin\inc\class-qode-product-bundles-for-woocommerce-framework-root.php:21
actionafter_setup_themeinc\admin\inc\class-qode-product-bundles-for-woocommerce-framework-root.php:22
actionafter_setup_themeinc\admin\inc\class-qode-product-bundles-for-woocommerce-framework-root.php:23
actionafter_setup_themeinc\admin\inc\class-qode-product-bundles-for-woocommerce-framework-root.php:24
actionafter_setup_themeinc\admin\inc\class-qode-product-bundles-for-woocommerce-framework-root.php:25
actionafter_setup_themeinc\admin\inc\class-qode-product-bundles-for-woocommerce-framework-root.php:26
actioninitinc\admin\inc\common\modules\admin\core\class-qode-product-bundles-for-woocommerce-framework-options-admin.php:22
actionadmin_menuinc\admin\inc\common\modules\admin\core\class-qode-product-bundles-for-woocommerce-framework-options-admin.php:24
actionadmin_bar_menuinc\admin\inc\common\modules\admin\core\class-qode-product-bundles-for-woocommerce-framework-options-admin.php:27
actionadmin_enqueue_scriptsinc\admin\inc\common\modules\admin\core\class-qode-product-bundles-for-woocommerce-framework-options-admin.php:34
filteradmin_body_classinc\admin\inc\common\modules\admin\core\class-qode-product-bundles-for-woocommerce-framework-options-admin.php:36
actionall_admin_noticesinc\admin\inc\common\modules\admin\core\class-qode-product-bundles-for-woocommerce-framework-options-admin.php:38
filterpost_row_actionsinc\admin\inc\common\modules\admin\core\class-qode-product-bundles-for-woocommerce-framework-options-admin.php:39
actioninitinc\admin\inc\common\modules\attachment\core\class-qode-product-bundles-for-woocommerce-framework-options-attachment.php:12
actionattachment_fields_to_editinc\admin\inc\common\modules\attachment\core\class-qode-product-bundles-for-woocommerce-framework-options-attachment.php:13
filterattachment_fields_to_saveinc\admin\inc\common\modules\attachment\core\class-qode-product-bundles-for-woocommerce-framework-options-attachment.php:14
actionadmin_initinc\admin\inc\common\modules\attribute\core\class-qode-product-bundles-for-woocommerce-framework-options-attribute.php:12
actionwoocommerce_after_add_attribute_fieldsinc\admin\inc\common\modules\attribute\core\class-qode-product-bundles-for-woocommerce-framework-options-attribute.php:13
actionwoocommerce_after_edit_attribute_fieldsinc\admin\inc\common\modules\attribute\core\class-qode-product-bundles-for-woocommerce-framework-options-attribute.php:14
actionwoocommerce_attribute_addedinc\admin\inc\common\modules\attribute\core\class-qode-product-bundles-for-woocommerce-framework-options-attribute.php:15
actionwoocommerce_attribute_updatedinc\admin\inc\common\modules\attribute\core\class-qode-product-bundles-for-woocommerce-framework-options-attribute.php:16
actionadmin_enqueue_scriptsinc\admin\inc\common\modules\attribute\core\class-qode-product-bundles-for-woocommerce-framework-options-attribute.php:19
actionwp_loadedinc\admin\inc\common\modules\meta-boxes\core\class-qode-product-bundles-for-woocommerce-framework-options-meta.php:16
actionadd_meta_boxesinc\admin\inc\common\modules\meta-boxes\core\class-qode-product-bundles-for-woocommerce-framework-options-meta.php:17
actiondo_meta_boxesinc\admin\inc\common\modules\meta-boxes\core\class-qode-product-bundles-for-woocommerce-framework-options-meta.php:18
actionsave_postinc\admin\inc\common\modules\meta-boxes\core\class-qode-product-bundles-for-woocommerce-framework-options-meta.php:19
filtersanitize_post_meta_qode_product_bundles_for_woocommerce_meta_optioninc\admin\inc\common\modules\meta-boxes\core\class-qode-product-bundles-for-woocommerce-framework-options-meta.php:20
actionadmin_headinc\admin\inc\common\modules\meta-boxes\core\class-qode-product-bundles-for-woocommerce-framework-options-meta.php:22
filteradmin_body_classinc\admin\inc\common\modules\meta-boxes\core\class-qode-product-bundles-for-woocommerce-framework-options-meta.php:24
actioninitinc\admin\inc\common\modules\taxonomy\core\class-qode-product-bundles-for-woocommerce-framework-options-taxonomy.php:11
actioninitinc\admin\inc\common\modules\taxonomy\core\class-qode-product-bundles-for-woocommerce-framework-options-taxonomy.php:12
actioninitinc\admin\inc\common\modules\taxonomy\core\class-qode-product-bundles-for-woocommerce-framework-options-taxonomy.php:13
actioncreated_terminc\admin\inc\common\modules\taxonomy\core\class-qode-product-bundles-for-woocommerce-framework-options-taxonomy.php:15
actionedited_terminc\admin\inc\common\modules\taxonomy\core\class-qode-product-bundles-for-woocommerce-framework-options-taxonomy.php:16
filtersanitize_term_meta_qode_product_bundles_for_woocommerce_term_optioninc\admin\inc\common\modules\taxonomy\core\class-qode-product-bundles-for-woocommerce-framework-options-taxonomy.php:17
actionadmin_enqueue_scriptsinc\admin\inc\common\modules\taxonomy\core\class-qode-product-bundles-for-woocommerce-framework-options-taxonomy.php:20
actionadmin_initinc\admin\inc\post-types\class-qode-product-bundles-for-woocommerce-framework-custom-post-type-taxonomy.php:50
filterarchive_templateinc\admin\inc\post-types\class-qode-product-bundles-for-woocommerce-framework-custom-post-type-taxonomy.php:51
actionadmin_initinc\admin\inc\post-types\class-qode-product-bundles-for-woocommerce-framework-custom-post-type.php:29
filtersingle_templateinc\admin\inc\post-types\class-qode-product-bundles-for-woocommerce-framework-custom-post-type.php:30
actioninitinc\admin\inc\post-types\class-qode-product-bundles-for-woocommerce-framework-custom-post-types.php:15
actionadmin_initinc\admin\inc\post-types\class-qode-product-bundles-for-woocommerce-framework-custom-post-types.php:17
actionelementor/widgets/registerinc\admin\inc\shortcodes\class-qode-product-bundles-for-woocommerce-framework-shortcodes.php:15
actionelementor/widgets/widgets_registeredinc\admin\inc\shortcodes\class-qode-product-bundles-for-woocommerce-framework-shortcodes.php:18
actioninitinc\admin\inc\shortcodes\class-qode-product-bundles-for-woocommerce-framework-shortcodes.php:22
actionelementor/elements/categories_registeredinc\admin\inc\shortcodes\translators\elementor\class-qode-product-bundles-for-woocommerce-framework-elementor-translator.php:11
actionelementor/editor/before_enqueue_scriptsinc\admin\inc\shortcodes\translators\elementor\class-qode-product-bundles-for-woocommerce-framework-elementor-translator.php:12
actionelementor/editor/before_enqueue_scriptsinc\admin\inc\shortcodes\translators\elementor\class-qode-product-bundles-for-woocommerce-framework-elementor-translator.php:13
actioninitinc\admin\inc\shortcodes\translators\elementor\class-qode-product-bundles-for-woocommerce-framework-elementor-translator.php:719
filterqode_product_bundles_for_woocommerce_filter_framework_shortcode_content_htmlinc\admin\inc\shortcodes\translators\wpbakery\class-qode-product-bundles-for-woocommerce-framework-wpbakery-translator.php:12
actionadmin_enqueue_scriptsinc\admin\inc\shortcodes\translators\wpbakery\class-qode-product-bundles-for-woocommerce-framework-wpbakery-translator.php:16
actionenqueue_block_editor_assetsinc\admin\inc\shortcodes\translators\wpbakery\class-qode-product-bundles-for-woocommerce-framework-wpbakery-translator.php:17
actionadmin_enqueue_scriptsinc\admin\inc\shortcodes\translators\wpbakery\class-qode-product-bundles-for-woocommerce-framework-wpbakery-translator.php:20
filterqode_product_bundles_for_woocommerce_filter_framework_add_shortcode_containerinc\admin\inc\shortcodes\translators\wpbakery\class-qode-product-bundles-for-woocommerce-framework-wpbakery-translator.php:73
actioninitinc\admin\inc\shortcodes\translators\wpbakery\class-qode-product-bundles-for-woocommerce-framework-wpbakery-translator.php:302
actionwidgets_initinc\admin\inc\widgets\class-qode-product-bundles-for-woocommerce-framework-widgets.php:13
actionadmin_enqueue_scriptsinc\admin\inc\widgets\class-qode-product-bundles-for-woocommerce-framework-widgets.php:16
filterproduct_type_selectorinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:15
filterwoocommerce_product_data_tabsinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:18
actionwoocommerce_admin_process_product_objectinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:19
actionwoocommerce_qode_bundle_product_add_to_cartinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:22
filterwoocommerce_add_to_cart_validationinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:23
filterwoocommerce_add_cart_item_datainc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:24
actionwoocommerce_add_to_cartinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:25
filterwoocommerce_add_cart_iteminc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:26
filterwoocommerce_get_cart_item_from_sessioninc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:27
filterwoocommerce_cart_item_remove_linkinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:29
filterwoocommerce_cart_item_quantityinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:30
actionwoocommerce_after_cart_item_quantity_updateinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:31
actionwoocommerce_before_cart_item_quantity_zeroinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:32
filterwoocommerce_cart_item_priceinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:34
actionwoocommerce_cart_item_removedinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:35
actionwoocommerce_cart_item_restoredinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:36
filterwoocommerce_cart_contents_countinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:37
filterwoocommerce_cart_item_classinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:38
filterwoocommerce_order_formatted_line_subtotalinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:41
filterwoocommerce_checkout_create_order_line_iteminc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:42
filterwoocommerce_hidden_order_itemmetainc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:43
filterwoocommerce_order_item_classinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:44
filterwoocommerce_order_item_needs_processinginc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:46
filterwoocommerce_order_again_cart_item_datainc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:47
actionwoocommerce_ordered_againinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:48
filterqode_product_bundles_for_woocommerce_filter_has_meta_box_optionsinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:54
actionadmin_enqueue_scriptsinc\bundle-product\class-qode-product-bundles-for-woocommerce-bundle-product.php:57
actionqode_product_bundles_for_woocommerce_action_default_options_initinc\bundle-product\dashboard\admin\general-options.php:55
actionqode_product_bundles_for_woocommerce_action_default_meta_boxes_initinc\bundle-product\dashboard\meta-box\bundle-product-meta-box.php:128
filterqode_product_bundles_for_woocommerce_filter_framework_meta_box_saveinc\bundle-product\helper.php:22
filterqode_product_bundles_for_woocommerce_filter_framework_meta_box_removeinc\bundle-product\helper.php:23
actionplugins_loadedinc\bundle-product\include.php:24
Maintenance & Trust

QODE Product Bundles for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 23, 2025
PHP min version7.4
Downloads805

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

QODE Product Bundles for WooCommerce Alternatives

Product Bundle Builder for WooCommerce

Product Bundle Builder for WooCommerce

easy-product-bundles-for-woocommerce

A
100

WooCommerce Product Bundle help to creates Product Bundles, Composite Products, Mix and Match, BOGO deals, Offer gift products, and Assembled Products …

6K No CVEs
Bopo – WooCommerce Product Bundle Builder

Bopo – WooCommerce Product Bundle Builder

bopo-woo-product-bundle-builder

A
100

Create irresistible bundle products for WooCommerce, offering flexible pricing and great deals for your customers

1K No CVEs
Products Wizard Lite for WooCommerce

Products Wizard Lite for WooCommerce

products-wizard-lite-for-woocommerce

A
100

This plugin helps you sell your products by the step-by-step wizard. Use the [woocommerce-products-wizard] shortcode to init.

20 No CVEs
WC Product Bundles

WC Product Bundles

wc-product-bundles

A
85

Bundle two or more woocommerce products together and sell them at a discounted rate.

100 No CVEs
Frequently Bought Together Product For Woocommerce

Frequently Bought Together Product For Woocommerce

frequently-bought-together-product-for-woocommerce

A
100

Boost WooCommerce sales with a Frequently Bought Together widget — display product bundles with per-product discounts on any product page.

60 No CVEs
Developer Profile

QODE Product Bundles for WooCommerce Developer Profile

Qode

12 plugins · 321K total installs

87
trust score
Avg Security Score
98/100
Avg Patch Time
47 days
View full developer profile
Detection Fingerprints

How We Detect QODE Product Bundles for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/qode-product-bundles-for-woocommerce/assets/css/main.css/wp-content/plugins/qode-product-bundles-for-woocommerce/inc/admin/inc/admin-notice/assets/js/admin-notice.min.js/wp-content/plugins/qode-product-bundles-for-woocommerce/inc/admin/inc/admin-notice/assets/css/admin-notice.min.css
Script Paths
/wp-content/plugins/qode-product-bundles-for-woocommerce/inc/admin/inc/admin-notice/assets/js/admin-notice.min.js
Version Parameters
qode-product-bundles-for-woocommerce/assets/css/main.css?ver=qode-product-bundles-for-woocommerce/inc/admin/inc/admin-notice/assets/js/admin-notice.min.js?ver=qode-product-bundles-for-woocommerce/inc/admin/inc/admin-notice/assets/css/admin-notice.min.css?ver=

HTML / DOM Fingerprints

CSS Classes
qode-product-bundles-for-woocommerce-qpbfw--touchqpbfw--no-touch
Data Attributes
data-plugin-slug="qode_product_bundles_for_woocommerce"
JS Globals
QODE_PRODUCT_BUNDLES_FOR_WOOCOMMERCE_VERSIONQODE_PRODUCT_BUNDLES_FOR_WOOCOMMERCE_REL_PATHQODE_PRODUCT_BUNDLES_FOR_WOOCOMMERCE_ASSETS_URL_PATHQODE_PRODUCT_BUNDLES_FOR_WOOCOMMERCE_ABS_PATHQODE_PRODUCT_BUNDLES_FOR_WOOCOMMERCE_ADMIN_PATHQODE_PRODUCT_BUNDLES_FOR_WOOCOMMERCE_ADMIN_URL_PATH
FAQ

Frequently Asked Questions about QODE Product Bundles for WooCommerce