Does side cart plus for woocommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is side cart plus for woocommerce compatible with WordPress 5.9.13?

According to WordPress.org data, side cart plus for woocommerce 1.0 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

Is side cart plus for woocommerce compatible with PHP 7.0+?

side cart plus for woocommerce requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is side cart plus for woocommerce updated?

side cart plus for woocommerce was last updated on May 7, 2022. Frequent updates are generally a positive security signal.

What is side cart plus for woocommerce's security score?

side cart plus for woocommerce has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

side cart plus for woocommerce Security & Risk Analysis

wordpress.org/plugins/side-cart-plus-for-woocommerce

Side cart for Woocommerce is an interactive Side Cart for your WooCommerce store.

10 active installs v1.0 PHP 7.0+ WP 3.0+ Updated May 7, 2022

mini-cartpopup-cartside-cart-woocommercewoocommerce-cartwoocommerce-side-cart

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is side cart plus for woocommerce Safe to Use in 2026?

Generally Safe

Score 85/100

side cart plus for woocommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The 'side-cart-plus-for-woocommerce' plugin exhibits a concerning security posture primarily due to a significantly large attack surface with no authentication checks on its AJAX endpoints. While the plugin demonstrates good practices by exclusively using prepared statements for SQL queries and having no recorded historical vulnerabilities, the lack of authorization for 12 AJAX handlers presents a critical risk. Attackers could potentially exploit these unprotected endpoints to perform unintended actions or gather sensitive information, especially in a WooCommerce context. The low percentage of properly escaped output further amplifies this risk, as it opens the door to Cross-Site Scripting (XSS) vulnerabilities through these same unauthenticated AJAX handlers.

Despite the absence of critical taint flows and dangerous functions, the unauthenticated AJAX endpoints and insufficient output escaping are significant weaknesses. The plugin's vulnerability history is clean, which is positive, but it cannot compensate for the immediate, present risks identified in the static analysis. A balanced assessment shows a plugin with a strong foundation in data handling (SQL) but severe deficiencies in access control and output sanitization, demanding immediate attention to secure its entry points.

Key Concerns

12 AJAX handlers without auth checks
Low percentage of properly escaped output

Vulnerabilities

None known

side cart plus for woocommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

side cart plus for woocommerce Release Timeline

No version history available.

Code Analysis

Analyzed Mar 16, 2026

side cart plus for woocommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

254

12 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

5% escaped266 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

2 flows

SIWSCP_save_options (class-option\siwscp-admin-side.php:927)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

12 unprotected

side cart plus for woocommerce Attack Surface

Entry Points12

Unprotected12

AJAX Handlers 12

noprivwp_ajax_WFC_product_ajaxclass-option\siwscp-admin-side.php:1052

authwp_ajax_WFC_product_ajaxclass-option\siwscp-admin-side.php:1054

authwp_ajax_coupon_ajax_callclass-option\siwscp-front-side.php:419

noprivwp_ajax_coupon_ajax_callclass-option\siwscp-front-side.php:420

authwp_ajax_wfc_get_refresh_fragmentsclass-option\siwscp-front-side.php:421

noprivwp_ajax_wfc_get_refresh_fragmentsclass-option\siwscp-front-side.php:422

authwp_ajax_product_removeclass-option\siwscp-front-side.php:423

noprivwp_ajax_product_removeclass-option\siwscp-front-side.php:424

authwp_ajax_siwscp_change_qtyclass-option\siwscp-front-side.php:425

noprivwp_ajax_siwscp_change_qtyclass-option\siwscp-front-side.php:426

authwp_ajax_siwscp_remove_applied_coupon_ajax_callclass-option\siwscp-front-side.php:427

noprivwp_ajax_siwscp_remove_applied_coupon_ajax_callclass-option\siwscp-front-side.php:428

WordPress Hooks 12

actionadmin_menuclass-option\siwscp-admin-side.php:1048

actionadmin_initclass-option\siwscp-admin-side.php:1050

filterwp_footerclass-option\siwscp-front-side.php:406

actionwp_headclass-option\siwscp-front-side.php:417

filterwoocommerce_add_to_cart_fragmentsclass-option\siwscp-front-side.php:418

actionwp_headclass-option\siwscp-inline.php:165

actionwp_footerclass-option\siwscp-inline.php:167

actionadmin_initside-cart-plus-woocommerce.php:58

actionadmin_noticesside-cart-plus-woocommerce.php:207

actionwp_enqueue_scriptsside-cart-plus-woocommerce.php:209

actionadmin_enqueue_scriptsside-cart-plus-woocommerce.php:211

actionplugins_loadedside-cart-plus-woocommerce.php:238

Maintenance & Trust

side cart plus for woocommerce Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedMay 7, 2022

PHP min version7.0

Downloads2K

Community Trust

Rating20/100

Number of ratings1

Active installs10

Alternatives

side cart plus for woocommerce Alternatives

Modern Cart – WooCommerce Side Cart & Popup Cart

modern-cart

100

Modern Cart gives your store a side cart and free shipping bar so shoppers stay on the page, spend more to unlock rewards, and check out in seconds.

40K No CVEs

XT Floating Cart for WooCommerce

woo-floating-cart-lite

A modern Floating Cart / Side Cart for WooCommerce that will improve customer buying experience and increase conversions.

5K 1 CVE

Modal Fly Cart & AJAX Add to Cart for WooCommerce

woocomm-popup-cart-ajax

100

Popup Cart Lite for WooCommerce for WooCommerce plugin that displays popup cart for add to cart action.

2K No CVEs

Addonify Floating Cart For WooCommerce

addonify-floating-cart

Addonify Floating Cart is a free WooCommerce addon that adds a sticky, interactive cart, letting visitors manage items without visiting the cart page.

1K 1 unpatched

Instantio — Side Cart & One-Page Checkout for WooCommerce

instantio

Instantio adds side cart, popup cart, floating button, and one-page checkout layouts to WooCommerce for a faster, more convenient shopping and checkou …

800 4 CVEs

Developer Profile

side cart plus for woocommerce Developer Profile

easytechy

3 plugins · 220 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect side cart plus for woocommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/side-cart-plus-for-woocommerce/owlcarousel/owl.carousel.js/wp-content/plugins/side-cart-plus-for-woocommerce/owlcarousel/assets/owl.carousel.min.css/wp-content/plugins/side-cart-plus-for-woocommerce/owlcarousel/assets/owl.theme.default.min.css/wp-content/plugins/side-cart-plus-for-woocommerce/assest/js/siwscp-front.js/wp-content/plugins/side-cart-plus-for-woocommerce/assest/css/style.css/wp-content/plugins/side-cart-plus-for-woocommerce/assest/css/back.css/wp-content/plugins/side-cart-plus-for-woocommerce/assest/js/siwscp-back.js/wp-content/plugins/side-cart-plus-for-woocommerce/assest/js/wp-color-picker-alpha.js

Script Paths

/wp-content/plugins/side-cart-plus-for-woocommerce/owlcarousel/owl.carousel.js/wp-content/plugins/side-cart-plus-for-woocommerce/assest/js/siwscp-front.js/wp-content/plugins/side-cart-plus-for-woocommerce/assest/js/siwscp-back.js/wp-content/plugins/side-cart-plus-for-woocommerce/assest/js/wp-color-picker-alpha.js

Version Parameters

/wp-content/plugins/side-cart-plus-for-woocommerce/owlcarousel/owl.carousel.js?ver=1.0.0/wp-content/plugins/side-cart-plus-for-woocommerce/owlcarousel/assets/owl.carousel.min.css?ver=1.0.0/wp-content/plugins/side-cart-plus-for-woocommerce/owlcarousel/assets/owl.theme.default.min.css?ver=1.0.0/wp-content/plugins/side-cart-plus-for-woocommerce/assest/js/siwscp-front.js?ver=1.0.0/wp-content/plugins/side-cart-plus-for-woocommerce/assest/css/style.css?ver=1.0.0/wp-content/plugins/side-cart-plus-for-woocommerce/assest/css/back.css?ver=1.0.0/wp-content/plugins/side-cart-plus-for-woocommerce/assest/js/siwscp-back.js?ver=1.0.0/wp-content/plugins/side-cart-plus-for-woocommerce/assest/js/wp-color-picker-alpha.js?ver=1.0.0

HTML / DOM Fingerprints

CSS Classes

siwcsp_main_side_cartsiwcsp_headersiwcsp_first_icon_cartcart_counter

Data Attributes

data-siwscp_sidecart_widthdata-siwscp_auto_opendata-siwscp_cart_open_fromdata-siwscp_trigger_class

JS Globals

ajax_postajaxsiwscpData

FAQ