WP-Safety

Shopp Category Shipping Filters Security & Risk Analysis

wordpress.org/plugins/shopp-category-shipping-filters

Allows users of Shopp 1.3.x to filter the shipping options available to customers by the category cart items belong to.

10 active installs v2.0.1 PHP + WP 3.4+ Updated Sep 11, 2017
filtersshippingshopp
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Shopp Category Shipping Filters Safe to Use in 2026?

Generally Safe

Score 85/100

Shopp Category Shipping Filters has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago
Risk Assessment

The plugin "shopp-category-shipping-filters" v2.0.1 exhibits a mixed security posture. On the positive side, the static analysis reveals no known CVEs, a history of no recorded vulnerabilities, and a complete absence of dangerous functions, direct SQL queries, file operations, external HTTP requests, and cron events. This suggests a diligent approach to avoiding common plugin security pitfalls. However, a significant concern arises from the complete lack of output escaping, meaning all 12 identified output points are potentially vulnerable to cross-site scripting (XSS) attacks. Furthermore, the taint analysis indicates two flows with unsanitized paths, which, while not classified as critical or high severity in this report, represent potential vectors for malicious input processing. The absence of nonce and capability checks across all identified entry points (though the attack surface is zero) is also a weakness if any hidden or future entry points are discovered. The presence of Select2 as a bundled library warrants attention for potential outdated versions, though no specific vulnerability is indicated here.

Key Concerns

  • Unescaped output detected
  • Unsanitized paths in taint flows
  • Missing nonce checks
  • Missing capability checks
Vulnerabilities
None known

Shopp Category Shipping Filters Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Shopp Category Shipping Filters Release Timeline

v2.0.1Current
v2.0.0
v1.0
Code Analysis
Analyzed Mar 16, 2026

Shopp Category Shipping Filters Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
12
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
1

Bundled Libraries

Select2

Output Escaping

0% escaped12 total outputs
Data Flows · Security
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
admin_page (app\admin\class-main.php:48)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Shopp Category Shipping Filters Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 5
actionadmin_menuapp\admin\class-main.php:24
actionadmin_enqueue_scriptsapp\admin\class-main.php:25
actionshopp_calculate_shippingapp\class-main.php:18
actionplugins_loadedshopp-category-shipping-filters.php:44
actionshopp_initshopp-category-shipping-filters.php:50
Maintenance & Trust

Shopp Category Shipping Filters Maintenance & Trust

Maintenance Signals

WordPress version tested4.8.0
Last updatedSep 11, 2017
PHP min version
Downloads2K

Community Trust

Rating100/100
Number of ratings1
Active installs10
Alternatives

Shopp Category Shipping Filters Alternatives

Freightview for WooCommerce

Freightview for WooCommerce

freightview-for-woocommerce

A
100

Give your customers real freight quotes from your WooCommerce store with Freightview.

10 No CVEs
Extended Settings for WooCommerce

Extended Settings for WooCommerce

woo-extended-settings

A
85

Sleek plugin designed to add versatility to WooCommerce. Supports One Page Shopping, redirect if cart is empty, remove additional product information, …

10 No CVEs
WooCommerce

WooCommerce

woocommerce

A
87

Everything you need to launch an online store in days and keep it growing for years. From your first sale to millions in revenue, Woo is with you.

7.0M 43 CVEs
Weight Based Shipping Table Rate for WooCommerce – Flexible Shipping

Weight Based Shipping Table Rate for WooCommerce – Flexible Shipping

flexible-shipping

A
99

Weight based shipping methods for WooCommerce. Flexible shipping with table rate rules by cart weight and order value. Accurate rates at checkout.

100K 2 CVEs
ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution

ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution

shopengine

A
96

WooCommerce builder for Elementor and Gutenberg. It offers product templates, product sliders, shopping cart, quick view, Woo wishlist, product filter …

100K 4 CVEs
Developer Profile

Shopp Category Shipping Filters Developer Profile

Clifton Griffin

6 plugins · 3K total installs

90
trust score
Avg Security Score
85/100
Avg Patch Time
1 days
View full developer profile
Detection Fingerprints

How We Detect Shopp Category Shipping Filters

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/shopp-category-shipping-filters/assets/js/select2/dist/js/select2.min.js/wp-content/plugins/shopp-category-shipping-filters/assets/js/select2/dist/css/select2.min.css/wp-content/plugins/shopp-category-shipping-filters/assets/js/shopp-category-shipping-filters.js
Script Paths
/wp-content/plugins/shopp-category-shipping-filters/assets/js/select2/dist/js/select2.min.js/wp-content/plugins/shopp-category-shipping-filters/assets/js/shopp-category-shipping-filters.js
Version Parameters
shopp-category-shipping-filters/assets/js/select2/dist/js/select2.min.js?ver=4.0.3shopp-category-shipping-filters/assets/js/select2/dist/css/select2.min.css?ver=4.0.3shopp-category-shipping-filters/assets/js/shopp-category-shipping-filters.js?ver=1.0.0

HTML / DOM Fingerprints

CSS Classes
scsf-select2
Data Attributes
name="catshow"name="cathide"
FAQ

Frequently Asked Questions about Shopp Category Shipping Filters