Does Sif have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Sif compatible with WordPress 5.0.25?

According to WordPress.org data, Sif 1.04 has been tested up to WordPress 5.0.25. Check the plugin's changelog for the latest compatibility information.

How often is Sif updated?

Sif was last updated on Nov 15, 2018. Frequent updates are generally a positive security signal.

What is Sif's security score?

Sif has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Sif Security & Risk Analysis

wordpress.org/plugins/sif

Sif is a simple wordpress plugin that adds hover or flipper image in woocommerce product list, category list and related products list.

10 active installs v1.04 PHP + WP 4.0+ Updated Nov 15, 2018

ecommerceimagesphotosproductwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Sif Safe to Use in 2026?

Generally Safe

Score 85/100

Sif has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The "sif" v1.04 plugin exhibits a generally positive security posture based on the provided static analysis and vulnerability history. The absence of any identified CVEs and the use of prepared statements for all SQL queries are strong indicators of good development practices. Furthermore, the lack of file operations and external HTTP requests reduces the potential attack surface in those areas. However, a significant concern arises from the complete lack of output escaping. This means that any dynamic content generated by the plugin is not being properly sanitized before being displayed to users, creating a high risk of Cross-Site Scripting (XSS) vulnerabilities. The fact that there are no detected taint flows is encouraging, but this could be a reflection of the limited entry points rather than robust sanitization of all outputs. The absence of nonce and capability checks on potential entry points, coupled with zero identified AJAX handlers, REST API routes, and shortcodes, suggests a very limited attack surface, but it does not mitigate the risk of XSS if any output were to be rendered through an unanalyzed or future entry point.

Key Concerns

All outputs are unescaped
No nonce checks
No capability checks

Vulnerabilities

None known

Sif Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Sif Release Timeline

v1.04Current

v1.03

v1.02

v1.01

Code Analysis

Analyzed Apr 16, 2026

Sif Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped2 total outputs

Attack Surface

Sif Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 7

actionwoocommerce_before_shop_loop_item_titleadmin/class-sif-admin.php:48

actionwp_headadmin/class-sif-admin.php:49

actionplugins_loadedincludes/class-sif.php:139

actionadmin_enqueue_scriptsincludes/class-sif.php:154

actionadmin_enqueue_scriptsincludes/class-sif.php:155

actionwp_enqueue_scriptsincludes/class-sif.php:170

actionwp_enqueue_scriptsincludes/class-sif.php:171

Maintenance & Trust

Sif Maintenance & Trust

Maintenance Signals

WordPress version tested5.0.25

Last updatedNov 15, 2018

PHP min version

Downloads3K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Sif Alternatives

WooCommerce Product Image Flipper

woocommerce-product-image-flipper

Adds a secondary image on product archives that is revealed on hover. Perfect for displaying front/back shots of clothing and other products.

3K No CVEs

Image Flip For WooCommerce

image-flip-for-woocommerce

Adds a secondary image on product archives that is revealed on hover. Perfect for displaying front/back shots of clothing and other products.

40 No CVEs

EdiDev AI Assistant for Perfection42

edidev-ai-assistant-for-perfection42

100

AI assistant for WooCommerce that generates and improves product titles, descriptions, images and videos in bulk from your Products list.

0 No CVEs

Product Gallery Slider, Additional Variation Images, Product Video, Product Image Zoom and Lightbox for WooCommerce – WooGallery

gallery-slider-for-woocommerce

100

🔥 All-in-One WooCommerce Product Image and Video Gallery Solution to Enhance Your Customers' Shopping Experience and Boost Sales Instantly! 🚀

20K No CVEs

Additional Variation Images Gallery for WooCommerce

woo-variation-gallery

100

Allows inserting multiple images per variation to let your store customers to see different sets of images when WooCommerce product variations are swi …

20K 1 CVE

Developer Profile

Sif Developer Profile

AdPushup

4 plugins · 50 total installs

trust score

Avg Security Score

89/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Sif

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/sif/admin/css/sif-admin.css/wp-content/plugins/sif/admin/js/sif-admin.js

Script Paths

/wp-content/plugins/sif/admin/js/sif-admin.js

Version Parameters

sif-admin.css?ver=sif-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

rollover-image

Shortcode Output

<img src='' class='rollover-image' alt='Rollover image' /><img src='/images/no-image.jpg' class='rollover-image' alt='Rollover image' />

FAQ