WP-Safety

Quick quotes – WPSHARE247 Security & Risk Analysis

wordpress.org/plugins/quick-quotes-wpshare247

DEMO Create a quick quote request for any trade. Easy management with separate drag and drop steps for each quote. Manage multiple quotes at the same …

10 active installs v1.0.0 PHP 5.6+ WP 4.9+ Updated Jul 30, 2021
email-quoteenquiryqqfsquoterequest-quote
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Quick quotes – WPSHARE247 Safe to Use in 2026?

Generally Safe

Score 85/100

Quick quotes – WPSHARE247 has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago
Risk Assessment

The "quick-quotes-wpshare247" v1.0.0 plugin exhibits a mixed security posture. While the absence of dangerous functions, file operations, and external HTTP requests is a positive sign, significant concerns arise from its attack surface. A substantial 14 out of 15 entry points, primarily AJAX handlers, lack authentication checks, creating a broad avenue for unauthorized access and potential manipulation of plugin functionality. The taint analysis, though limited in scope, revealed flows with unsanitized paths, which could lead to vulnerabilities if these paths are exposed to user input. The plugin's vulnerability history is clean, with no recorded CVEs, suggesting a potential lack of targeted exploitation or that past vulnerabilities may have been addressed. However, this clean history should not overshadow the inherent risks presented by the unauthenticated entry points and potential taint issues. The plugin demonstrates strengths in avoiding common pitfalls like bundled libraries and external requests, but its core weakness lies in insufficient access control for its AJAX endpoints.

Key Concerns

  • Unprotected AJAX handlers
  • Flows with unsanitized paths
  • Missing nonce checks on AJAX
  • Missing capability checks
Vulnerabilities
None known

Quick quotes – WPSHARE247 Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Quick quotes – WPSHARE247 Release Timeline

No version history available.
Code Analysis
Analyzed Apr 16, 2026

Quick quotes – WPSHARE247 Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
2 prepared
Unescaped Output
25
248 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

50% prepared4 total queries

Output Escaping

91% escaped273 total outputs
Data Flows · Security
4 unsanitized

Data Flow Analysis

6 flows4 with unsanitized paths
ws247_quote_qqfs_checkbox_req (inc/class.helper.php:133)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
14 unprotected

Quick quotes – WPSHARE247 Attack Surface

Entry Points15
Unprotected14

AJAX Handlers 14

authwp_ajax_ws247_quote_qqfs_add_optioninc/class.helper.php:9
noprivwp_ajax_ws247_quote_qqfs_add_optioninc/class.helper.php:10
authwp_ajax_ws247_quote_qqfs_del_optioninc/class.helper.php:12
noprivwp_ajax_ws247_quote_qqfs_del_optioninc/class.helper.php:13
authwp_ajax_ws247_create_quote_qqfs_sortableinc/class.helper.php:15
noprivwp_ajax_ws247_create_quote_qqfs_sortableinc/class.helper.php:16
authwp_ajax_ws247_quote_qqfs_startinc/class.helper.php:18
noprivwp_ajax_ws247_quote_qqfs_startinc/class.helper.php:19
authwp_ajax_ws247_quote_qqfs_checkbox_reqinc/class.helper.php:21
noprivwp_ajax_ws247_quote_qqfs_checkbox_reqinc/class.helper.php:22
authwp_ajax_ws247_quote_qqfs_checkbox_sortcontainerinc/class.helper.php:24
noprivwp_ajax_ws247_quote_qqfs_checkbox_sortcontainerinc/class.helper.php:25
authwp_ajax_ws247_quote_qqfs_btn_save_forminc/class.helper.php:27
noprivwp_ajax_ws247_quote_qqfs_btn_save_forminc/class.helper.php:28

Shortcodes 1

[quote_qqfs_new] inc/shortcode/shortcode_index.php:9
WordPress Hooks 15
actionadmin_menuinc/class.setting.page.php:13
actionadmin_initinc/class.setting.page.php:14
actionadmin_enqueue_scriptsinc/class.setting.page.php:15
actionadmin_headinc/class.setting.page.php:16
filterplugin_action_linksinc/class.setting.page.php:18
actionplugins_loadedinc/class.setting.page.php:20
actioninitinc/class.setting.page.php:22
actionadd_meta_boxesinc/metabox/metabox_index.php:9
actionsave_post_quote_qqfs_ptinc/metabox/metabox_index.php:324
actionsave_post_req_quote_qqfs_ptinc/metabox/metabox_index.php:325
actionadmin_initinc/posttype/posttype_index.php:11
actioninitinc/posttype/posttype_index.php:12
actionadmin_menuinc/posttype/posttype_index.php:13
actionwp_enqueue_scriptsinc/theme_functions.php:12
actionwp_headinc/theme_functions.php:13
Maintenance & Trust

Quick quotes – WPSHARE247 Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13
Last updatedJul 30, 2021
PHP min version5.6
Downloads958

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Quick quotes – WPSHARE247 Alternatives

ASPL Product Quotation

ASPL Product Quotation

aspl-product-quotation

A
85

This plugin establishes a common communication for customers and suppliers where suppliers can share prices and details of a single product.

0 No CVEs
Product Enquiry for WooCommerce

Product Enquiry for WooCommerce

product-enquiry-for-woocommerce

A
99

Product Enquiry allows prospective customers to "Make an Enquiry" about a product, or "Request a Quote" right from within the product page.

10K 1 CVE
CatalogX – Catalog Mode, Enquiry & Quotes for WooCommerce

CatalogX – Catalog Mode, Enquiry & Quotes for WooCommerce

woocommerce-catalog-enquiry

A
96

WooCommerce Catalog Mode, product enquiry, and request a quote plugin. Hide prices, disable cart, and collect enquiries easily.

6K 5 CVEs
Quotes for WooCommerce

Quotes for WooCommerce

quotes-for-woocommerce

A
99

This plugin allows the site admin the ability to accept quote requests for products. Prices can be hidden. No payments will be taken at Checkout.

4K 2 CVEs
Product Enquiry for WooCommerce

Product Enquiry for WooCommerce

gm-woocommerce-quote-popup

A
98

Allow customers to request quotes, send product enquiries, and run WooCommerce in catalog mode by hiding prices and replacing the Add to Cart button.

3K 5 CVEs
Developer Profile

Quick quotes – WPSHARE247 Developer Profile

Website366.com

8 plugins · 5K total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Quick quotes – WPSHARE247

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/quick-quotes-wpshare247/assets/ws247_quote_qqfs_admin.css/wp-content/plugins/quick-quotes-wpshare247/assets/js/ws247_quote_qqfs_admin.js/wp-content/plugins/quick-quotes-wpshare247/assets/ws247_quote_qqfs.css/wp-content/plugins/quick-quotes-wpshare247/assets/js/ws247_quote_qqfs.js
Script Paths
/wp-content/plugins/quick-quotes-wpshare247/assets/js/ws247_quote_qqfs_admin.js/wp-content/plugins/quick-quotes-wpshare247/assets/js/ws247_quote_qqfs.js
Version Parameters
quick-quotes-wpshare247/assets/ws247_quote_qqfs_admin.css?ver=1.0quick-quotes-wpshare247/assets/js/ws247_quote_qqfs_admin.js?ver=1.0quick-quotes-wpshare247/assets/ws247_quote_qqfs.css?ver=1.0quick-quotes-wpshare247/assets/js/ws247_quote_qqfs.js?ver=1.0

HTML / DOM Fingerprints

JS Globals
qqfs_admin_urlqqfs_confirm_delqqfs_copiedws247_quote_qqfs_ajax_urlws247_quote_qqfs_currencyws247_quote_qqfs_symbol+2 more
FAQ

Frequently Asked Questions about Quick quotes – WPSHARE247