WP-Safety

Qty Increment Buttons for WooCommerce Security & Risk Analysis

wordpress.org/plugins/qty-increment-buttons-for-woocommerce

Adds professionally looking "-" and "+" quantity increment buttons around product quantity field on WooCommerce pages.

10K active installs v2.7.5 PHP 5.4+ WP 4.6+ Updated Aug 21, 2020
buttonsincrementqtyquantitywoocommerce
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Qty Increment Buttons for WooCommerce Safe to Use in 2026?

Generally Safe

Score 85/100

Qty Increment Buttons for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago
Risk Assessment

The "qty-increment-buttons-for-woocommerce" plugin version 2.7.5 exhibits a generally good security posture with some notable exceptions. The plugin demonstrates a strong commitment to secure coding practices by utilizing prepared statements for all its SQL queries and ensuring a high percentage of its output is properly escaped, which significantly reduces the risk of common vulnerabilities like SQL injection and Cross-Site Scripting.

The primary concern identified in the static analysis is the presence of one AJAX handler that lacks proper authentication checks. While the total attack surface is small, this unprotected entry point represents a potential avenue for unauthorized actions if it can be triggered by an unauthenticated user. The absence of nonce checks on this AJAX handler further exacerbates this risk, as it allows for potential Cross-Site Request Forgery (CSRF) attacks. Fortunately, the taint analysis showed no critical or high severity flows, and the plugin has no recorded vulnerability history, suggesting that past development has been secure.

In conclusion, the plugin benefits from a clean vulnerability history and good practices in SQL and output handling. However, the unprotected AJAX handler without a nonce check is a specific and actionable security risk that needs immediate attention. Addressing this single unprotected entry point would significantly strengthen the plugin's overall security.

Key Concerns

  • Unprotected AJAX handler without auth check
  • Missing nonce check on AJAX handler
Vulnerabilities
None known

Qty Increment Buttons for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Qty Increment Buttons for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
4
37 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

90% escaped41 total outputs
Attack Surface
1 unprotected

Qty Increment Buttons for WooCommerce Attack Surface

Entry Points1
Unprotected1

AJAX Handlers 1

authwp_ajax_qib_notice_dismissincludes\qib-feedback-notice.php:17
WordPress Hooks 21
actionadmin_noticesincludes\qib-feedback-notice.php:15
actionadmin_headincludes\qib-feedback-notice.php:19
actionadmin_initqty-increment-buttons-for-woocommerce.php:41
actionadmin_menuqty-increment-buttons-for-woocommerce.php:43
actionadmin_enqueue_scriptsqty-increment-buttons-for-woocommerce.php:47
actionadmin_head-settings_page_qty-increment-buttonsqty-increment-buttons-for-woocommerce.php:323
filterwoocommerce_locate_templateqty-increment-buttons-for-woocommerce.php:403
actiontemplate_redirectqty-increment-buttons-for-woocommerce.php:405
actionwp_headqty-increment-buttons-for-woocommerce.php:414
actiontemplate_redirectqty-increment-buttons-for-woocommerce.php:416
actionastra_woo_shop_add_to_cart_beforeqty-increment-buttons-for-woocommerce.php:432
actionocean_before_archive_product_add_to_cart_innerqty-increment-buttons-for-woocommerce.php:434
actionwoovina_before_archive_product_add_to_cart_innerqty-increment-buttons-for-woocommerce.php:436
actionwoocommerce_after_shop_loop_itemqty-increment-buttons-for-woocommerce.php:438
actionastra_woo_shop_add_to_cart_afterqty-increment-buttons-for-woocommerce.php:442
actionocean_after_archive_product_add_to_cart_innerqty-increment-buttons-for-woocommerce.php:444
actionwoovina_after_archive_product_add_to_cart_innerqty-increment-buttons-for-woocommerce.php:446
actionwoocommerce_after_shop_loop_itemqty-increment-buttons-for-woocommerce.php:448
filterastra_add_to_cart_quantity_btn_enabledqty-increment-buttons-for-woocommerce.php:454
actiontemplate_redirectqty-increment-buttons-for-woocommerce.php:460
filterqib_quantity_template_pathqty-increment-buttons-for-woocommerce.php:493
Maintenance & Trust

Qty Increment Buttons for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested5.5.18
Last updatedAug 21, 2020
PHP min version5.4
Downloads100K

Community Trust

Rating100/100
Number of ratings319
Active installs10K
Alternatives

Qty Increment Buttons for WooCommerce Alternatives

SMNTCS Quantity Increment Buttons for WooCommerce

SMNTCS Quantity Increment Buttons for WooCommerce

smntcs-woocommerce-quantity-buttons

A
92

Display the quantity increment buttons on the WooCommerce product page and the WooCommerce cart page.

3K No CVEs
TG Product Quantity Plus Minus Button

TG Product Quantity Plus Minus Button

product-quantity-updater

A
92

This plugin will add quantity increment and decrement buttons with the product quantity input control.

200 No CVEs
Quantity Plus Minus Button for WooCommerce

Quantity Plus Minus Button for WooCommerce

wc-quantity-plus-minus-button

A
100

Easily add plus, minus button for WooCommerce Quantity Input box in everywhere. Such: Single Page, In Loop Quantity input, Cart page , everywhere.

10K 1 CVE
WPC Product Quantity for WooCommerce

WPC Product Quantity for WooCommerce

wpc-product-quantity

A
100

WPC Product Quantity for WooCommerce is a handy plugin for fully controlling the quantity number of products in your online store.

2K No CVEs
Quantity Buttons for WooCommerce

Quantity Buttons for WooCommerce

woo-quantity-buttons

A
92

Add plus and minus quantity buttons to the WooCommerce Legacy Cart (does not support cart blocks).

200 No CVEs
Developer Profile

Qty Increment Buttons for WooCommerce Developer Profile

taisho

3 plugins · 19K total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Qty Increment Buttons for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/qty-increment-buttons-for-woocommerce/admin/js/qib-admin-settings.js/wp-content/plugins/qty-increment-buttons-for-woocommerce/admin/css/qib-admin-settings.css/wp-content/plugins/qty-increment-buttons-for-woocommerce/includes/css/qib-styles.css/wp-content/plugins/qty-increment-buttons-for-woocommerce/includes/js/qib-frontend-scripts.js
Version Parameters
/wp-content/plugins/qty-increment-buttons-for-woocommerce/admin/js/qib-admin-settings.js?ver=/wp-content/plugins/qty-increment-buttons-for-woocommerce/admin/css/qib-admin-settings.css?ver=/wp-content/plugins/qty-increment-buttons-for-woocommerce/includes/css/qib-styles.css?ver=/wp-content/plugins/qty-increment-buttons-for-woocommerce/includes/js/qib-frontend-scripts.js?ver=

HTML / DOM Fingerprints

CSS Classes
qib_sizesqib_qty_settingsqib_feedback_noticeqib_feedback_notice_contentqib_feedback_notice_messageqib_feedback_notice_dismiss
HTML Comments
<!-- Qty Increment Buttons for WooCommerce Settings --><!-- Feedback Notice -->
Data Attributes
data-qib-settings
JS Globals
qib_settings_obj
FAQ

Frequently Asked Questions about Qty Increment Buttons for WooCommerce