Does Simple Product Sample have any unpatched vulnerabilities?

No. All known vulnerabilities in Simple Product Sample have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Simple Product Sample compatible with WordPress 6.9.4?

According to WordPress.org data, Simple Product Sample 2.4.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Simple Product Sample compatible with PHP 7.0+?

Simple Product Sample requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Simple Product Sample updated?

Simple Product Sample was last updated on Dec 3, 2025. Frequent updates are generally a positive security signal.

What is Simple Product Sample's security score?

Simple Product Sample has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simple Product Sample Security & Risk Analysis

wordpress.org/plugins/simple-product-sample-for-woocommerce

Add a button to "Request sample" on the WooCommerce product page. It is possible to activate the sample and configure its price for each product.

70 active installs v2.4.2 PHP 7.0+ WP 4.6+ Updated Dec 3, 2025

order-samplesproduct-sampleproduct-sample-buttonproduct-samplessamples

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Simple Product Sample Safe to Use in 2026?

Generally Safe

Score 100/100

Simple Product Sample has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago

Risk Assessment

The plugin "simple-product-sample-for-woocommerce" v2.4.2 exhibits a generally strong security posture based on the provided static analysis. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits its attack surface, and importantly, there are no reported unprotected entry points. The code also demonstrates good practices with a high percentage of properly escaped output and a moderate use of prepared statements for SQL queries. The limited number of external HTTP requests and file operations are also positive indicators.

However, there are minor concerns. The presence of unsanitized paths in two taint flows, even without critical or high severity findings, warrants attention. While the vulnerability history is clean, indicating no publicly known exploits or past issues, the limited capability checks (only 1) could potentially be a weak point if more complex functionalities were present or if the plugin were to evolve.

In conclusion, this plugin appears to be developed with security in mind, prioritizing a small attack surface and diligent output sanitization. The lack of known vulnerabilities is a significant strength. The minor taint flow issues are the primary area for improvement. Overall, the plugin is rated as low risk, but continued vigilance regarding any future taint flow findings and ensuring adequate capability checks for all functionalities is recommended.

Key Concerns

Flows with unsanitized paths
SQL queries not using prepared statements
Limited capability checks

Vulnerabilities

None known

Simple Product Sample Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Simple Product Sample Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

117 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

50% prepared4 total queries

Output Escaping

94% escaped124 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

4 flows2 with unsanitized paths

activate (includes\check_premium\check_lemon.php:53)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Simple Product Sample Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 18

actionadmin_noticesadmin\master_admin.php:41

actionadmin_enqueue_scriptsadmin\master_admin.php:86

actionadmin_initadmin\master_admin.php:88

actionwoocommerce_product_options_inventory_product_dataadmin\master_admin.php:89

actionwoocommerce_process_product_metaadmin\master_admin.php:90

actionadmin_menuadmin\partials\get_options_panel.php:594

actionadmin_initincludes\check_premium\master_check_premium.php:59

actioninitincludes\load_textdomain.php:33

actioninitincludes\load_textdomain.php:34

actionwp_enqueue_scriptspublic\master_public.php:22

actionwoocommerce_before_single_product_summarypublic\partials\sample_controller.php:272

filterwoocommerce_add_to_cart_handlerpublic\partials\sample_controller.php:275

filterwc_add_to_cart_message_htmlpublic\partials\sample_controller.php:276

actionwoocommerce_check_cart_itemspublic\partials\sample_controller.php:279

filterwoocommerce_add_cart_item_datapublic\partials\sample_controller.php:280

actionwoocommerce_before_calculate_totalspublic\partials\sample_controller.php:282

actionwoocommerce_before_calculate_totalspublic\partials\sample_controller.php:283

actionwoocommerce_before_calculate_totalspublic\partials\sample_controller.php:284

Maintenance & Trust

Simple Product Sample Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 3, 2025

PHP min version7.0

Downloads7K

Community Trust

Rating60/100

Number of ratings2

Active installs70

Alternatives

Simple Product Sample Alternatives

MWW Disclaimer Buttons

mww-disclaimer-buttons

The FTC requires that you put disclosures at the top of your post if you were compensated in any way (affiliate links, free products, or payment).

500 2 CVEs

Free Product Sample for WooCommerce

woo-free-product-sample

100

The easy way to handle free product sample for WooCommerce. Promote your business in minutes!

300 No CVEs

Free Product Samples for WooCommerce – Try Before You Buy, Request Samples by Mail

free-product-sample

100

Advanced Product Sample for WooCommerce does one thing, and it does it well. It lets you order product as a product sample.

100 No CVEs

Document Preview For WooCommerce

woo-document-preview

100

This will allow you to add document preview at single product page. Which helps to offer more better idea when you are selling ebooks, pdf or some doc …

100 1 CVE

fley Sponsored Posts

fley-sponsored-posts

Just install fley Sponsored Posts to add a sponsored post Info above your posts or pages.

20 No CVEs

Developer Profile

Simple Product Sample Developer Profile

MCI Desarrollo

4 plugins · 500 total installs

trust score

Avg Security Score

94/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Simple Product Sample

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/simple-product-sample-for-woocommerce/admin/css/admin_styles.css/wp-content/plugins/simple-product-sample-for-woocommerce/admin/js/main_admin.js/wp-content/plugins/simple-product-sample-for-woocommerce/admin/js/preview_btn.js/wp-content/plugins/simple-product-sample-for-woocommerce/public/css/public_styles.css

HTML / DOM Fingerprints

CSS Classes

sps_btnsps_maxmcisps_preview_btn

Data Attributes

data-mcisps-is-sampledata-mcisps-sample-pricedata-mcisps-sample-text

FAQ