WP-Safety

Shopready – Elementor addons for WooCommerce Page Builder Security & Risk Analysis

wordpress.org/plugins/shopready-elementor-addon

ShopReady - WooCommerce Builder Elementor Addon. Available functions/features are WooCommerce Template Builder (Basic), WooCommerce Product Grid, WooC …

100 active installs v3.6 PHP + WP 5.5+ Updated Feb 6, 2025
elementor-addonwoocommercewoocommerce-addonwoocommerce-builderwoocommerce-plugin
69
C · Use Caution
CVEs total1
Unpatched1
Last CVENov 20, 2024
Plugin page Download
Safety Verdict

Is Shopready – Elementor addons for WooCommerce Page Builder Safe to Use in 2026?

Use With Caution

Score 69/100

Shopready – Elementor addons for WooCommerce Page Builder has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: Nov 20, 2024Updated 1yr ago
Risk Assessment

The "shopready-elementor-addon" plugin exhibits a mixed security posture. While it demonstrates good practices like using prepared statements for all SQL queries and a high percentage of properly escaped output, significant concerns arise from its attack surface and vulnerability history. A substantial number of AJAX handlers (12 out of 13) lack authentication checks, creating a wide entry point for potential unauthorized actions. The plugin also has a known high-severity vulnerability related to improper control of filename for include/require statements, which is currently unpatched. This history, coupled with the large number of unprotected AJAX endpoints, suggests a pattern of potential security oversights that require immediate attention. The presence of external HTTP requests, while not inherently a vulnerability, adds to the potential for attack vectors if not handled securely. Overall, the plugin has strengths in secure coding for database interactions but weaknesses in access control for its numerous AJAX endpoints and a critical unpatched vulnerability that elevates its risk.

Key Concerns

  • Unpatched High Severity CVE
  • Large attack surface without auth (AJAX)
  • Flows with unsanitized paths
  • External HTTP requests
Vulnerabilities
1

Shopready – Elementor addons for WooCommerce Page Builder Security Vulnerabilities

CVEs by Year

1 CVE in 2024 · unpatched
2024
Patched Has unpatched

Severity Breakdown

High
1

1 total CVE

CVE-2024-52497high · 8.8Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

Shopready <= 3.5 - Authenticated (Contributor+) Local File Inclusion

Nov 20, 2024Unpatched
Code Analysis
Analyzed Mar 16, 2026

Shopready – Elementor addons for WooCommerce Page Builder Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
8 prepared
Unescaped Output
107
3149 escaped
Nonce Checks
6
Capability Checks
7
File Operations
0
External Requests
3
Bundled Libraries
0

SQL Query Safety

100% prepared8 total queries

Output Escaping

97% escaped3256 total outputs
Data Flows
1 unsanitized

Data Flow Analysis

19 flows1 with unsanitized paths
variation_color_price (src\extension\elegrid\hooks\product\Grid_Flip_Center_Structure.php:157)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
12 unprotected

Shopready – Elementor addons for WooCommerce Page Builder Attack Surface

Entry Points15
Unprotected12

AJAX Handlers 13

authwp_ajax_shopready_get_library_datasrc\extension\elelibrary\base\Templates_Lib.php:55
authwp_ajax_shopready_get_library_data_singlesrc\extension\elelibrary\base\Templates_Lib.php:56
authwp_ajax_shop_ready_options_updatesrc\extension\elewidgets\deps\Ajax.php:17
authwp_ajax_shop_ready_update_mini_cart_itemsrc\extension\elewidgets\deps\checkout\Mini_Cart.php:20
noprivwp_ajax_shop_ready_update_mini_cart_itemsrc\extension\elewidgets\deps\checkout\Mini_Cart.php:21
authwp_ajax_remove_item_from_cartsrc\extension\elewidgets\deps\checkout\Order_Review.php:21
noprivwp_ajax_remove_item_from_cartsrc\extension\elewidgets\deps\checkout\Order_Review.php:22
noprivwp_ajax_wr_woocommerce_shippingsrc\extension\elewidgets\deps\checkout\Order_Review.php:28
authwp_ajax_shop_ready_shop_product_refresh_contentsrc\extension\shopajax\Grid\Filter.php:23
noprivwp_ajax_shop_ready_shop_product_refresh_contentsrc\extension\shopajax\Grid\Filter.php:24
authwp_ajax_shopready_template_option_deletesrc\system\base\dashboard\controls\Templates.php:22
authwp_ajax_shop_ready_dash_template_contentsrc\system\base\dashboard\Template.php:20
authwp_ajax_shop_ready_dash_template_edit_contentsrc\system\base\dashboard\Template.php:23

Shortcodes 2

[shop-ready-reusable-block] src\extension\blocks\Reusable_Block.php:13
[shop-ready-reusable-template] src\extension\blocks\Reusable_Template.php:11
WordPress Hooks 175
actionplugins_loadedshopready-elementor-addon.php:60
actionadmin_noticessrc\base\elementor\Boot.php:78
actionadmin_noticessrc\base\elementor\Boot.php:87
actionshop_ready_section_data_exclude_tabsrc\base\elementor\query\Controls\Data_Exclude_Controls.php:12
actionshop_ready_section_date_filter_tabsrc\base\elementor\query\Controls\Date_Filter_Controls.php:14
actionshop_ready_section_general_tabsrc\base\elementor\query\Controls\Generel_Controls.php:11
actionshop_ready_section_product_minimum_general_tabsrc\base\elementor\query\Controls\Generel_Controls.php:12
actionshop_ready_product_taxonomy_filter_tabsrc\base\elementor\query\Controls\Product_Taxonomy.php:14
actionshop_ready_section_slider_tabsrc\base\elementor\query\Controls\Slider_Controls.php:13
actionshop_ready_section_sort_tabsrc\base\elementor\query\Controls\Sort_Controls.php:14
actionshop_ready_section_taxonomy_filter_tabsrc\base\elementor\query\Controls\Taxonomy_Filter_Controls.php:14
actionparse_requestsrc\base\Routes.php:21
filterquery_varssrc\base\Routes.php:22
filterrewrite_rules_arraysrc\base\Routes.php:23
actionwp_loadedsrc\base\Routes.php:24
actionadmin_menusrc\extension\blocks\Reusable_Block.php:8
filteruse_block_editor_for_post_typesrc\extension\blocks\Reusable_Block.php:9
filtermanage_wp_block_posts_columnssrc\extension\blocks\Reusable_Block.php:11
actionmanage_wp_block_posts_custom_columnsrc\extension\blocks\Reusable_Block.php:12
filtermanage_elementor_library_posts_columnssrc\extension\blocks\Reusable_Template.php:9
actionmanage_elementor_library_posts_custom_columnsrc\extension\blocks\Reusable_Template.php:10
actionelementor/finder/registersrc\extension\elefinder\category\Dashboard.php:15
actionshop_ready_loop_product_thumb_innersrc\extension\elegrid\hooks\product\Grid_Flip_Center_Structure.php:29
actionshop_ready_grid_thumbnailsrc\extension\elegrid\hooks\product\Grid_Flip_Center_Structure.php:30
actionshop_ready_grid_loop_ontentsrc\extension\elegrid\hooks\product\Grid_Flip_Center_Structure.php:31
actionwoocommerce_before_shop_loop_itemsrc\extension\elegrid\hooks\product\Grid_Structure.php:27
actionwoocommerce_after_shop_loop_itemsrc\extension\elegrid\hooks\product\Grid_Structure.php:31
actionwoocommerce_after_shop_loop_itemsrc\extension\elegrid\hooks\product\Grid_Structure.php:32
actionwoocommerce_before_shop_loop_item_titlesrc\extension\elegrid\hooks\product\Grid_Structure.php:36
actionwoocommerce_shop_loop_item_titlesrc\extension\elegrid\hooks\product\Grid_Structure.php:39
actionwoocommerce_shop_loop_item_titlesrc\extension\elegrid\hooks\product\Grid_Structure.php:40
actionwoocommerce_after_shop_loop_item_titlesrc\extension\elegrid\hooks\product\Grid_Structure.php:44
actionwoocommerce_after_shop_loop_item_titlesrc\extension\elegrid\hooks\product\Grid_Structure.php:45
actionelementor/initsrc\extension\elelibrary\base\Templates_Lib.php:51
actionelementor/editor/after_enqueue_scriptssrc\extension\elelibrary\base\Templates_Lib.php:52
actionelementor/ajax/register_actionssrc\extension\elelibrary\base\Templates_Lib.php:53
actionelementor/editor/footersrc\extension\elelibrary\base\Templates_Lib.php:54
filtershop_ready_system_widgets_configsrc\extension\elewidgets\base\Widgets_Settings.php:15
filtershop_ready_widgets_dashboard_optionssrc\extension\elewidgets\base\Widgets_Settings.php:16
filterwp_kses_allowed_htmlsrc\extension\elewidgets\base\Widgets_Settings.php:17
filterwoocommerce_add_to_cart_fragmentssrc\extension\elewidgets\deps\checkout\Order_Review.php:23
actionwoocommerce_before_checkout_formsrc\extension\elewidgets\deps\checkout\Order_Review.php:27
filterwoocommerce_update_order_review_fragmentssrc\extension\elewidgets\deps\checkout\Order_Review.php:30
filterwoocommerce_update_order_review_fragmentssrc\extension\elewidgets\deps\checkout\Order_Review.php:31
actionwoocommerce_checkout_before_order_reviewsrc\extension\elewidgets\deps\checkout\Order_Review.php:33
actionelementor/widgets/registersrc\extension\elewidgets\deps\Editor_Widget.php:17
filterwoocommerce_shortcode_products_querysrc\extension\elewidgets\deps\filter\Grid.php:20
filterwoocommerce_shortcode_products_querysrc\extension\elewidgets\deps\filter\Grid.php:21
filterwoocommerce_shortcode_products_querysrc\extension\elewidgets\deps\filter\Grid.php:22
filterwoocommerce_shortcode_products_querysrc\extension\elewidgets\deps\filter\Grid.php:23
filterwoocommerce_shortcode_products_querysrc\extension\elewidgets\deps\filter\Grid.php:24
filterwoocommerce_shortcode_products_querysrc\extension\elewidgets\deps\filter\Grid.php:25
filterwoocommerce_shortcode_products_querysrc\extension\elewidgets\deps\filter\Grid.php:26
filterwoocommerce_shortcode_products_querysrc\extension\elewidgets\deps\filter\Grid.php:27
filterbody_classsrc\extension\elewidgets\deps\Preloader.php:12
actionwp_body_opensrc\extension\elewidgets\deps\Preloader.php:13
actionwp_enqueue_scriptssrc\extension\elewidgets\deps\Preloader.php:14
filterwoocommerce_add_to_cart_fragmentssrc\extension\elewidgets\deps\product\Ajax_Service.php:18
filterwoocommerce_add_to_cart_fragmentssrc\extension\elewidgets\deps\product\Ajax_Service.php:19
filterwoocommerce_add_to_cart_fragmentssrc\extension\elewidgets\deps\product\Ajax_Service.php:20
filterwoocommerce_product_options_advancedsrc\extension\elewidgets\deps\product\Comming_Soon.php:29
filterwoocommerce_process_product_metasrc\extension\elewidgets\deps\product\Comming_Soon.php:30
filterwoocommerce_product_options_advancedsrc\extension\elewidgets\deps\product\Product_Vendor.php:28
filterwoocommerce_process_product_metasrc\extension\elewidgets\deps\product\Product_Vendor.php:29
filterwoocommerce_single_product_carousel_optionssrc\extension\elewidgets\deps\product\Slider.php:15
filterwoocommerce_product_tabssrc\extension\elewidgets\deps\product\Tabs.php:19
filterwoocommerce_product_tabssrc\extension\elewidgets\deps\product\Tabs.php:20
filterinitsrc\extension\elewidgets\document\Checkout_Hook.php:21
filterwoocommerce_billing_fieldssrc\extension\elewidgets\document\Checkout_Hook.php:23
filterwoocommerce_shipping_fieldssrc\extension\elewidgets\document\Checkout_Hook.php:24
filterwoocommerce_cart_needs_shippingsrc\extension\elewidgets\document\Checkout_Hook.php:25
filterwoocommerce_order_button_textsrc\extension\elewidgets\document\Checkout_Hook.php:26
filterwoocommerce_checkout_show_termssrc\extension\elewidgets\document\Checkout_Hook.php:27
filterwoo_ready_checkout_cart_item_quantitysrc\extension\elewidgets\document\Checkout_Hook.php:28
filterwoocommerce_login_redirectsrc\extension\elewidgets\document\Login_Redirect.php:20
actionelementor/initsrc\extension\elewidgets\document\Page_Settings.php:18
actionelementor/documents/register_controlssrc\extension\elewidgets\document\Page_Settings.php:19
filterwoocommerce_cart_needs_paymentsrc\extension\elewidgets\document\Payment_Hooks.php:21
actionelementor/kit/register_tabssrc\extension\elewidgets\document\Settings_Tabs.php:17
actionelementor/initsrc\extension\elewidgets\Service.php:97
actionelementor/widgets/registersrc\extension\elewidgets\Service.php:102
actionelementor/controls/controls_registeredsrc\extension\elewidgets\Service.php:106
actionelementor/element/common/_section_style/after_section_endsrc\extension\elewrapper\base\Widget_Wrapper.php:13
actionelementor/frontend/widget/before_rendersrc\extension\elewrapper\base\Widget_Wrapper.php:14
actionelementor/frontend/widget/after_rendersrc\extension\elewrapper\base\Widget_Wrapper.php:15
filtershop_ready_system_widgets_configsrc\extension\generalwidgets\base\Widgets_Settings.php:10
actionadmin_enqueue_scriptssrc\extension\generalwidgets\deps\Menu_Item.php:21
actionwp_nav_menu_item_custom_fieldssrc\extension\generalwidgets\deps\Menu_Item.php:22
actionwp_update_nav_menu_itemsrc\extension\generalwidgets\deps\Menu_Item.php:23
actionelementor/initsrc\extension\generalwidgets\Service.php:91
actionelementor/widgets/registersrc\extension\generalwidgets\Service.php:96
actioninitsrc\extension\header_footer\base\custom_post_type\Header_Footer.php:25
actionadmin_menusrc\extension\header_footer\base\custom_post_type\Header_Footer.php:26
filtersave_post_woo-ready-hf-tplsrc\extension\header_footer\base\custom_post_type\Header_Footer.php:27
actionwpsrc\extension\header_footer\base\Template.php:16
actionwp_headsrc\extension\header_footer\base\Template.php:17
actionwoo_ready_header_buildersrc\extension\header_footer\base\Template.php:18
actionwoo_ready_footer_buildersrc\extension\header_footer\base\Template.php:19
actionget_headersrc\extension\header_footer\base\Template.php:27
actionget_footersrc\extension\header_footer\base\Template.php:31
actionwoo_ready_header_footersrc\extension\header_footer\settings\General.php:18
actionelementor/initsrc\extension\header_footer\settings\Page_Settings.php:24
actionelementor/documents/register_controlssrc\extension\header_footer\settings\Page_Settings.php:25
actionwp_enqueue_scriptssrc\extension\shopajax\Assets\Enqueue.php:20
filterwoocommerce_shortcode_products_query_resultssrc\extension\shopajax\Grid\Filter.php:25
actionwp_headsrc\extension\sticky_section\base\Sticky.php:12
actionelementor/element/before_section_startsrc\extension\sticky_section\base\Sticky.php:13
actionelementor/frontend/section/after_rendersrc\extension\sticky_section\base\Sticky.php:14
actionelementor/frontend/after_enqueue_scriptssrc\extension\sticky_section\base\Sticky.php:15
filterbody_classsrc\extension\templates\hooks\account\Login_Register.php:16
filtertemplate_includesrc\extension\templates\hooks\account\Login_Register_Layout.php:18
actioninitsrc\extension\templates\hooks\cart\Layout.php:19
actionwp_enqueue_scriptssrc\extension\templates\hooks\cart\Layout.php:20
actionadmin_bar_menusrc\extension\templates\hooks\cart\Layout.php:21
actionwp_enqueue_scriptssrc\extension\templates\hooks\checkout\Layout.php:15
filterbody_classsrc\extension\templates\hooks\Common.php:17
filtershop_ready_sr_templates_configsrc\extension\templates\hooks\Common.php:18
filterwoocommerce_cart_contents_totalsrc\extension\templates\hooks\Common.php:22
filterelementor/document/urls/previewsrc\extension\templates\hooks\Common.php:23
filterelementor/document/urls/editsrc\extension\templates\hooks\Common.php:24
actioninitsrc\extension\templates\hooks\Custom_Route.php:13
filtertemplate_includesrc\extension\templates\hooks\order\Layout.php:18
filterbody_classsrc\extension\templates\hooks\order\Order.php:18
filtertemplate_includesrc\extension\templates\hooks\product\Layout.php:17
filtertemplate_includesrc\extension\templates\hooks\product\Layout.php:18
actionwp_enqueue_scriptssrc\extension\templates\hooks\product\Layout.php:19
filterbody_classsrc\extension\templates\hooks\product\Single.php:21
filterwp_headsrc\extension\templates\hooks\product\Single.php:22
filterwc_get_template_partsrc\extension\templates\hooks\product\Single.php:23
actionshop_ready_single_product_notificationsrc\extension\templates\hooks\product\Single.php:26
actioninitsrc\extension\templates\hooks\product\Single.php:27
actionwoocommerce_product_thumbnailssrc\extension\templates\hooks\product\Single.php:28
filtertemplate_includesrc\extension\templates\hooks\shop\Archive_Layout.php:19
filtertemplate_includesrc\extension\templates\hooks\shop\Layout.php:17
actioninitsrc\extension\templates\hooks\shop\Layout.php:18
actionwp_enqueue_scriptssrc\extension\templates\hooks\shop\Layout.php:19
filterbody_classsrc\extension\templates\hooks\shop\Shop.php:18
filterbody_classsrc\extension\templates\hooks\shop\Shop_Archive.php:17
filterwoocommerce_locate_templatesrc\extension\templates\presets\Common.php:31
filterwoocommerce_locate_templatesrc\extension\templates\presets\Common.php:32
filterwc_get_template_partsrc\extension\templates\presets\Common.php:33
filterwc_get_templatesrc\extension\templates\presets\Common.php:34
filterwc_get_templatesrc\extension\templates\presets\Common.php:35
filterwc_get_templatesrc\extension\templates\presets\Common.php:36
filterwc_get_templatesrc\extension\templates\presets\Common.php:37
filterwc_get_template_partsrc\extension\templates\presets\Presets_Loader.php:28
filterwc_get_template_partsrc\extension\templates\presets\Presets_Loader.php:29
filterwc_get_templatesrc\extension\templates\presets\Presets_Loader.php:31
filterwc_get_templatesrc\extension\templates\presets\Presets_Loader.php:34
filterwc_get_template_partsrc\extension\templates\presets\Presets_Loader.php:35
actionwidgets_initsrc\extension\templates\presets\Presets_Loader.php:37
actionwoocommerce_before_main_contentsrc\extension\templates\presets\Presets_Loader.php:39
actionwoocommerce_after_main_contentsrc\extension\templates\presets\Presets_Loader.php:40
filterwc_get_templatesrc\extension\templates\presets\Presets_Loader.php:43
filterwc_get_templatesrc\extension\templates\presets\Presets_Loader.php:46
filterwc_get_templatesrc\extension\templates\presets\Presets_Loader.php:47
filterwc_get_templatesrc\extension\templates\presets\Presets_Loader.php:50
filterwc_get_templatesrc\extension\templates\presets\Presets_Loader.php:53
filterwc_get_templatesrc\extension\templates\presets\Presets_Loader.php:55
actionafter_setup_themesrc\helpers\generals.php:1388
actionadmin_footersrc\system\base\dashboard\Dashboard.php:13
actionwoo_ready_tab_itemsrc\system\base\dashboard\Dashboard.php:14
filterwoo_ready_tab_contentsrc\system\base\dashboard\Dashboard.php:15
actionadmin_noticessrc\system\base\dashboard\Notice.php:17
actionadmin_noticessrc\system\base\dashboard\Notice.php:23
actionadmin_noticessrc\system\base\dashboard\Notice.php:27
actionadmin_enqueue_scriptssrc\system\base\dashboard\Page.php:23
actionadmin_menusrc\system\base\dashboard\Page.php:24
actionnetwork_admin_menusrc\system\base\dashboard\Page.php:25
actionwoo_ready_admin_messagesrc\system\base\dashboard\Page.php:26
actionadmin_footersrc\system\base\dashboard\Page.php:27
filterpre_get_postssrc\system\base\dashboard\Template.php:14
filterajax_query_attachments_argssrc\system\base\dashboard\Template.php:15
filtertemplate_includesrc\system\base\dashboard\Template.php:18
filterplugin_row_metasrc\system\base\Meta.php:16
Maintenance & Trust

Shopready – Elementor addons for WooCommerce Page Builder Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedFeb 6, 2025
PHP min version
Downloads14K

Community Trust

Rating88/100
Number of ratings13
Active installs100
Alternatives

Shopready – Elementor addons for WooCommerce Page Builder Alternatives

Exclusive Addons for Elementor

Exclusive Addons for Elementor

exclusive-addons-for-elementor

A
96

Exclusive Addons is one of the Best Elementor Addons With 90+ Elementor Free & Pro Widgets with all the customizations options you ever imagined.

60K 24 CVEs
Ultimate Store Kit – Addon For WooCommerce, EDD and Elementor

Ultimate Store Kit – Addon For WooCommerce, EDD and Elementor

ultimate-store-kit

B
83

WooCommerce and EDD Elementor addon with product grid, category, reviews, carousel, filters, cart, checkout, slider and more

5K 12 CVEs
ShopPress – Shop Builder for Elementor and WooCommerce

ShopPress – Shop Builder for Elementor and WooCommerce

shop-press

A
100

ShopPress is a shop builder that works with WooCommerce and Elementor. Design store pages (shop, product, cart, checkout, my account) and product loop &hellip;

400 No CVEs
Authorize.Net/eProcessing Network Payment Gateway for WooCommerce

Authorize.Net/eProcessing Network Payment Gateway for WooCommerce

authorizenet-woocommerce-lightweight-addon

A
85

This plugin is an addon for WooCommerce to implement a payment gateway method for accepting Credit Cards Payments By merchants via Authorize.

100 No CVEs
eProcessing Network Payment Gateway for WooCommerce

eProcessing Network Payment Gateway for WooCommerce

epn-woocommerce-addon

A
85

This plugin is an addon for WooCommerce to implement a payment gateway method for accepting Credit Cards Payments By merchants via eProcessing Network &hellip;

80 No CVEs
Developer Profile

Shopready – Elementor addons for WooCommerce Page Builder Developer Profile

quomodosoft

3 plugins · 3K total installs

84
trust score
Avg Security Score
86/100
Avg Patch Time
9 days
View full developer profile
Detection Fingerprints

How We Detect Shopready – Elementor addons for WooCommerce Page Builder

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/shopready-elementor-addon/assets/public/css/plugins/imgclr.css/wp-content/plugins/shopready-elementor-addon/assets/public/js/plugins/imgclr.js
Script Paths
/wp-content/plugins/shopready-elementor-addon/assets/public/js/plugins/imgclr.js
Version Parameters
shopready-elementor-addon/assets/public/css/plugins/imgclr.css?ver=shopready-elementor-addon/assets/public/js/plugins/imgclr.js?ver=

HTML / DOM Fingerprints

CSS Classes
shop-ready-noticewoo-ready-rm-controlwoo-ready-radio-imgwoo-ready-elementor-image-choicesimage-choose-label-blockelementor-image-choices-label
HTML Comments
Used for security Used to help know where we are on the filesystem.Now let's include the bootloader fileRegister all elementor boot+6 more
Data Attributes
elementor-control-input-wrapper woo-ready-radio-imgelementor-image-choices woo-ready-elementor-image-choices
JS Globals
SHOP_READY_PUBLIC_ROOT_CSSSHOP_READY_PUBLIC_ROOT_JSSHOP_READY_VERSIONSHOP_READY_PLUGIN_BASESHOP_READY_URLSHOP_READY_DIR_PATH+9 more
FAQ

Frequently Asked Questions about Shopready – Elementor addons for WooCommerce Page Builder