Does Shipping Simulator for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Shipping Simulator for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Shipping Simulator for WooCommerce compatible with WordPress 6.8.5?

According to WordPress.org data, Shipping Simulator for WooCommerce 2.4.4 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Shipping Simulator for WooCommerce compatible with PHP 7.4+?

Shipping Simulator for WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Shipping Simulator for WooCommerce updated?

Shipping Simulator for WooCommerce was last updated on Mar 12, 2026. Frequent updates are generally a positive security signal.

What is Shipping Simulator for WooCommerce's security score?

Shipping Simulator for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Shipping Simulator for WooCommerce Security & Risk Analysis

wordpress.org/plugins/shipping-simulator-for-woocommerce

Allows customers to calculate the shipping rates on the product page in your WooCommerce store.

6K active installs v2.4.4 PHP 7.4+ WP 4.9+ Updated Mar 12, 2026

calculadora-de-freteproduct-pageshipping-simulatorsimulador-de-fretewoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Shipping Simulator for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Shipping Simulator for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 22d ago

Risk Assessment

The plugin 'shipping-simulator-for-woocommerce' v2.4.4 demonstrates a generally strong security posture based on the provided static analysis. It adheres to good practices by utilizing prepared statements for all SQL queries and employing capability checks for access control. The absence of any recorded vulnerabilities, critical or otherwise, further contributes to a positive security impression. This suggests active maintenance and a proactive approach to security by the developers.

However, the analysis does reveal some areas for concern. The presence of one flow with an unsanitized path, identified as high severity in the taint analysis, represents a potential attack vector that warrants attention. Although the attack surface appears minimal with no direct entry points like AJAX handlers or REST API routes without authentication, and no shortcodes or cron events, this single unsanitized flow could still be exploited under specific conditions. The lack of nonce checks is also a notable weakness, especially if any of the functionality, though not explicitly listed as AJAX, could be triggered programmatically or through user interaction that might not be inherently secured.

In conclusion, while the plugin has a clean vulnerability history and follows several security best practices, the identified high-severity taint flow and the absence of nonce checks introduce risks that cannot be ignored. The low attack surface is a significant mitigating factor, but the specific code-level concerns require remediation to ensure a robust security profile. Addressing the unsanitized flow and implementing nonce checks would significantly enhance the plugin's overall security.

Key Concerns

High severity taint flow with unsanitized path
Lack of nonce checks
Moderate output escaping (73% proper)

Vulnerabilities

None known

Shipping Simulator for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Shipping Simulator for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

3 prepared

Unescaped Output

40 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared3 total queries

Output Escaping

73% escaped55 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

<Request> (classes\Request.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Shipping Simulator for WooCommerce Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 39

actionadmin_noticesclasses\Admin\Notices.php:11

filterplugin_row_metaclasses\Admin\Plugin_Meta.php:9

filterwoocommerce_get_sections_shippingclasses\Admin\Settings.php:12

filterwoocommerce_get_settings_shippingclasses\Admin\Settings.php:13

filterwc_shipping_simulator_integration_autofill_br_addresses_enabledclasses\Admin\Settings.php:19

actionwc_shipping_simulator_wrapper_endclasses\Debug_Box.php:11

actionwc_shipping_simulator_load_integrationsclasses\Integration\Autofill_Brazilian_Addresses.php:25

filterwc_shipping_simulator_package_dataclasses\Integration\Autofill_Brazilian_Addresses.php:37

filterwc_shipping_simulator_results_title_addressclasses\Integration\Autofill_Brazilian_Addresses.php:38

actionwc_shipping_simulator_load_integrationsclasses\Integration\Brazil.php:19

filterwc_shipping_simulator_form_input_maskclasses\Integration\Brazil.php:31

actionwc_shipping_simulator_form_endclasses\Integration\Brazil.php:33

filterwc_shipping_simulator_prepare_request_dataclasses\Integration\Brazil.php:35

actionwc_shipping_simulator_validate_request_dataclasses\Integration\Brazil.php:37

filterwc_shipping_simulator_request_update_packageclasses\Integration\Brazil.php:39

filterwc_shipping_simulator_wrapper_css_classclasses\Integration\Brazil.php:41

filterwc_shipping_simulator_form_input_typeclasses\Integration\Brazil.php:43

filterwc_shipping_simulator_results_title_addressclasses\Integration\Brazil.php:45

actionwc_shipping_simulator_load_integrationsclasses\Integration\Estimating_Delivery.php:19

actionwc_shipping_simulator_load_integrationsclasses\Integration\Free_Shipping.php:19

filterwc_shipping_simulator_package_ratesclasses\Integration\Free_Shipping.php:31

filterwoocommerce_shipping_free_shipping_is_availableclasses\Integration\Free_Shipping.php:32

actionwc_shipping_simulator_load_integrationsclasses\Integration\Melhor_Envio.php:16

filterpre_option_melhor_envio_option_where_show_calculatorclasses\Integration\Melhor_Envio.php:28

actioninitclasses\Integrations.php:7

actionwc_shipping_simulator_shortcode_includedclasses\Request.php:26

actionwc_shipping_simulator_results_wrapperclasses\Request.php:27

filternocache_headersclasses\Request.php:77

filteroption_woocommerce_shipping_cost_requires_addressclasses\Shipping_Package.php:123

actionwp_enqueue_scriptsclasses\Shortcode.php:16

actionwc_shipping_simulator_form_afterclasses\Shortcode.php:17

filterscript_loader_tagclasses\Shortcode.php:18

actionwoocommerce_single_product_summaryclasses\Tweaks.php:18

actionwc_shipping_simulator_form_startclasses\Tweaks.php:19

actionwc_shipping_simulator_results_beforeclasses\Tweaks.php:20

actionwc_shipping_simulator_results_afterclasses\Tweaks.php:21

filterwc_shipping_simulator_package_ratesclasses\Tweaks.php:22

actioninitcore\Main.php:20

actionadmin_noticesmain.php:40

Maintenance & Trust

Shipping Simulator for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedMar 12, 2026

PHP min version7.4

Downloads58K

Community Trust

Rating98/100

Number of ratings38

Active installs6K

Alternatives

Shipping Simulator for WooCommerce Alternatives

Products Per Page for WooCommerce

woocommerce-products-per-page

100

Products Per Page for WooCommerce is a easy-to-setup plugin that integrates a 'products per page' dropdown on your WooCommerce pages.

10K No CVEs

Ibtana – Ecommerce Product Addons

ibtana-ecommerce-product-addons

Ibtana - Ecommerce Product Addons, you get to explore so many options for editing the product page by simple drag and drop functionality.

7K 1 unpatched

Magical Shop Builder – WooCommerce Template Builder for Elementor | Shop, Cart, Checkout & Product Page Builder

magical-products-display

The complete WooCommerce Shop Builder for Elementor. Build custom single product pages, cart, checkout, my account & shop archives with 60+ widgets.

3K 1 CVE

Video Gallery for WooCommerce

video-wc-gallery

Video Gallery for WooCommerce: Add WordPress library videos to product pages with customization. Requires WooCommerce activation.

3K 1 CVE

Calculadora de Frete e Campos Checkout para o Brasil

woo-better-shipping-calculator-for-brazil

100

Shipping calculator for Brazilian WooCommerce stores with automatic Postal Code address pre-filling and Brazilian Market on WooCommerce.

3K No CVEs

Developer Profile

Shipping Simulator for WooCommerce Developer Profile

Luiz Bills

4 plugins · 13K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Shipping Simulator for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/shipping-simulator-for-woocommerce/assets/js/form.js/wp-content/plugins/shipping-simulator-for-woocommerce/assets/css/form.css/wp-content/plugins/shipping-simulator-for-woocommerce/assets/js/form.min.js/wp-content/plugins/shipping-simulator-for-woocommerce/assets/css/form.min.css

Script Paths

/wp-content/plugins/shipping-simulator-for-woocommerce/assets/js/form.js/wp-content/plugins/shipping-simulator-for-woocommerce/assets/js/form.min.js

Version Parameters

shipping-simulator-for-woocommerce/assets/js/form.js?ver=shipping-simulator-for-woocommerce/assets/css/form.css?ver=

HTML / DOM Fingerprints

CSS Classes

wc-shipping-simulator-wrappershipping-simulator-form-wrappershipping-simulator-results-wrapper

Data Attributes

data-cfasync="false"

JS Globals

window.wc_shipping_simulator

Shortcode Output

[wc_shipping_simulator]

FAQ