Does Simpler Checkout have any unpatched vulnerabilities?

No. All known vulnerabilities in Simpler Checkout have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Simpler Checkout compatible with WordPress 6.8.5?

According to WordPress.org data, Simpler Checkout 1.3.5 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Simpler Checkout compatible with PHP 7.0+?

Simpler Checkout requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Simpler Checkout updated?

Simpler Checkout was last updated on Mar 2, 2026. Frequent updates are generally a positive security signal.

What is Simpler Checkout's security score?

Simpler Checkout has a WP-Safety security score of 95/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simpler Checkout Security & Risk Analysis

wordpress.org/plugins/simpler-checkout

Let your customers checkout in seconds. The simplest way to increase your sales.

40 active installs v1.3.5 PHP 7.0+ WP 5.1+ Updated Mar 2, 2026

authenticationcheckoutloginsimplerwoocommerce

A · Safe

CVEs total1

Unpatched0

Last CVEAug 22, 2025

Plugin page Download

Safety Verdict

Is Simpler Checkout Safe to Use in 2026?

Generally Safe

Score 95/100

Simpler Checkout has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Aug 22, 2025Updated 1mo ago

Risk Assessment

The "simpler-checkout" plugin version 1.3.5 presents a mixed security posture. While the static analysis indicates a lack of dangerous functions, raw SQL queries, and file operations, raising some confidence, several critical security concerns are present. Notably, there are zero capability checks and zero nonce checks across all identified entry points, which are essential for secure WordPress development. Additionally, a significant portion of output is not properly escaped, potentially leading to Cross-Site Scripting (XSS) vulnerabilities. The plugin also makes external HTTP requests without clear indications of sanitization or validation of the returned data.

The vulnerability history is particularly concerning, with a past critical vulnerability categorized as "Authentication Bypass Using an Alternate Path or Channel." Although this specific vulnerability is no longer unpatched, its existence and severity, coupled with the absence of capability and nonce checks in the current version, suggest a pattern of potential authorization and authentication weaknesses that could be exploited.

In conclusion, while the plugin avoids some common pitfalls like raw SQL, the lack of fundamental security checks for capability and nonces, along with inadequate output escaping and a history of critical vulnerabilities, indicates a high-risk profile. These weaknesses could be exploited to bypass authentication or execute arbitrary code if an attacker can find a suitable path or channel. The external HTTP requests also warrant further investigation for potential data injection or manipulation risks.

Key Concerns

Missing nonce checks on entry points
Missing capability checks on entry points
Significant portion of output not properly escaped
Past critical vulnerability (Auth Bypass)
External HTTP requests without clear sanitization

Vulnerabilities

Simpler Checkout Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Critical

1 total CVE

CVE-2025-7642critical · 9.8Authentication Bypass Using an Alternate Path or Channel

Simpler Checkout 0.7.0 - 1.1.13 - Authentication Bypass

Aug 22, 2025 Patched in 1.2.0 (6d)

Code Analysis

Analyzed Mar 16, 2026

Simpler Checkout Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

25 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

58% escaped43 total outputs

Attack Surface

Simpler Checkout Attack Surface

Entry Points4

Unprotected0

Shortcodes 4

[simpler-product-checkout] includes\button.php:15

[simpler-cart-checkout] includes\button.php:16

[simpler-product-checkout] includes\legacy-button.php:11

[simpler-cart-checkout] includes\legacy-button.php:12

WordPress Hooks 105

actioninitincludes\admin.php:13

actionadmin_initincludes\admin.php:14

actionadmin_menuincludes\admin.php:15

actionwp_enqueue_scriptsincludes\assets.php:3

actionwp_enqueue_scriptsincludes\assets.php:4

actioninitincludes\button.php:10

actioninitincludes\button.php:11

filterwoocommerce_after_add_to_cart_buttonincludes\button.php:26

filtersimplerwc_default_payment_titleincludes\Compatibility\bank-transfer.php:18

filtersimplerwc_default_order_statusincludes\Compatibility\bank-transfer.php:28

filtersimplerwc_cart_item_is_bundledincludes\Compatibility\bundles.php:12

filtersimplerwc_cart_item_is_bundle_containerincludes\Compatibility\bundles.php:22

filtersimplerwc_get_selected_cart_items_linked_to_the_bundle_cart_itemincludes\Compatibility\bundles.php:40

filtersimplerwc_product_is_bundle_containerincludes\Compatibility\bundles.php:50

filtersimplerwc_get_all_products_linked_to_the_bundle_productincludes\Compatibility\bundles.php:74

filtersimplerwc_add_simpler_bundle_to_cartincludes\Compatibility\bundles.php:151

filtersimplerwc_get_product_type_of_the_bundleincludes\Compatibility\bundles.php:160

filtersimplerwc_get_bundle_type_of_the_productincludes\Compatibility\bundles.php:172

filtersimplerwc_cart_item_is_bundledincludes\Compatibility\bundles.php:183

filtersimplerwc_cart_item_is_bundle_containerincludes\Compatibility\bundles.php:193

filtersimplerwc_get_selected_cart_items_linked_to_the_bundle_cart_itemincludes\Compatibility\bundles.php:214

filtersimplerwc_product_is_bundle_containerincludes\Compatibility\bundles.php:224

filtersimplerwc_get_all_products_linked_to_the_bundle_productincludes\Compatibility\bundles.php:248

filtersimplerwc_add_simpler_bundle_to_cartincludes\Compatibility\bundles.php:295

filtersimplerwc_before_create_quoted_productincludes\Compatibility\bundles.php:310

filtersimplerwc_get_product_type_of_the_bundleincludes\Compatibility\bundles.php:319

filtersimplerwc_get_bundle_type_of_the_productincludes\Compatibility\bundles.php:331

filtersimplerwc_cart_item_is_bundledincludes\Compatibility\bundles.php:342

filtersimplerwc_cart_item_is_bundle_containerincludes\Compatibility\bundles.php:352

filtersimplerwc_get_selected_cart_items_linked_to_the_bundle_cart_itemincludes\Compatibility\bundles.php:374

filtersimplerwc_product_is_bundle_containerincludes\Compatibility\bundles.php:386

filtersimplerwc_get_all_products_linked_to_the_bundle_productincludes\Compatibility\bundles.php:411

filtersimplerwc_add_simpler_bundle_to_cartincludes\Compatibility\bundles.php:458

filtersimplerwc_get_product_type_of_the_bundleincludes\Compatibility\bundles.php:465

filtersimplerwc_get_bundle_type_of_the_productincludes\Compatibility\bundles.php:477

filtersimplerwc_cart_item_is_bundledincludes\Compatibility\bundles.php:488

filtersimplerwc_cart_item_is_bundle_containerincludes\Compatibility\bundles.php:498

filtersimplerwc_get_selected_cart_items_linked_to_the_bundle_cart_itemincludes\Compatibility\bundles.php:513

filtersimplerwc_product_is_bundle_containerincludes\Compatibility\bundles.php:525

filtersimplerwc_get_all_products_linked_to_the_bundle_productincludes\Compatibility\bundles.php:535

filtersimplerwc_add_simpler_bundle_to_cartincludes\Compatibility\bundles.php:566

filtersimplerwc_get_product_type_of_the_bundleincludes\Compatibility\bundles.php:573

filtersimplerwc_get_bundle_type_of_the_productincludes\Compatibility\bundles.php:582

filtersimplerwc_quotation_payment_methodincludes\Compatibility\cod.php:68

filtersimplerwc_order_feesincludes\Compatibility\cod.php:110

actionsimplerwc_after_add_to_cartincludes\Compatibility\free-gifts.php:21

actionsimplerwc_after_add_to_cartincludes\Compatibility\free-gifts.php:42

filtersimplerwc_button_should_ignore_cart_itemincludes\Compatibility\free-gifts.php:43

filtersimplerwc_button_should_ignore_cart_itemincludes\Compatibility\free-gifts.php:54

filtersimplerwc_button_should_ignore_cart_itemincludes\Compatibility\free-gifts.php:65

filterrp_wcdpd_request_is_product_feedincludes\Compatibility\free-gifts.php:70

actionsimplerwc_product_controller_request_beforeincludes\Compatibility\free-gifts.php:73

filtersimplerwc_button_get_product_attributesincludes\Compatibility\gift-cards.php:19

filtersimplerwc_products_to_responseincludes\Compatibility\gift-cards.php:29

actionsimplerwc_before_add_to_cartincludes\Compatibility\gift-cards.php:43

filtersimplerwc_before_create_quoted_productincludes\Compatibility\gift-cards.php:55

filtersimplerwc_button_get_product_attributesincludes\Compatibility\gift-cards.php:72

filtersimplerwc_get_cart_item_dataincludes\Compatibility\gift-cards.php:87

filtersimplerwc_get_attributes_arrayincludes\Compatibility\gift-cards.php:101

filtersimplerwc_should_render_product_buttonincludes\Compatibility\gift-cards.php:132

filtersimplerwc_default_order_statusincludes\Compatibility\gift-cards.php:158

filtersimplerwc_quotation_addonsincludes\Compatibility\gift-wrap.php:47

filtersimplerwc_order_feesincludes\Compatibility\gift-wrap.php:85

filterwcml_client_currencyincludes\Compatibility\multi-currency.php:14

filterwoocommerce_currencyincludes\Compatibility\multi-currency.php:18

actionsimplerwc_switch_currencyincludes\Compatibility\multi-currency.php:23

filterwoocommerce_package_ratesincludes\Compatibility\multi-currency.php:45

filterwc_smart_cod_feeincludes\Compatibility\multi-currency.php:65

filtertgpc_wc_gift_wrapper_costincludes\Compatibility\multi-currency.php:85

actionsimplerwc_after_set_checkout_dataincludes\Compatibility\pickup.php:27

actioninitincludes\Compatibility\pickup.php:31

actionsimplerwc_after_set_checkout_dataincludes\Compatibility\pickup.php:63

actionsimplerwc_after_set_checkout_dataincludes\Compatibility\skroutz-slm.php:39

actioninitincludes\Compatibility\skroutz-slm.php:42

filterwoocommerce_get_tax_locationincludes\Compatibility\tax.php:73

filterwoocommerce_customer_taxable_addressincludes\Compatibility\tax.php:76

actionplugins_loadedincludes\gateway.php:3

filterwoocommerce_payment_gatewaysincludes\gateway.php:33

filterwoocommerce_available_payment_gatewaysincludes\gateway.php:40

actioninitincludes\hooks.php:5

actionwoocommerce_order_refundedincludes\hooks.php:51

actionshutdownincludes\Http\Controllers\OrderQuoteController.php:69

filterwoocommerce_available_variationincludes\Http\Controllers\ProductController.php:185

filterwoocommerce_widget_shopping_cart_before_buttonsincludes\legacy-button.php:23

actionrest_api_initincludes\routes.php:7

actionrest_api_initincludes\routes.php:8

filterwoocommerce_persistent_cart_enabledincludes\Services\CartHelper.php:15

filterwoocommerce_shipping_chosen_methodincludes\Services\OrderService.php:69

actionwoocommerce_cart_calculate_feesincludes\Services\OrderService.php:81

actionwoocommerce_cart_calculate_feesincludes\Services\OrderService.php:223

filterwoocommerce_cart_totals_get_fees_from_cart_taxesincludes\Services\OrderService.php:224

filterwoocommerce_persistent_cart_enabledincludes\Services\OrderServiceV2.php:28

actionwoocommerce_cart_calculate_feesincludes\Services\OrderServiceV2.php:178

filterwoocommerce_shipping_chosen_methodincludes\Services\QuotationService.php:138

filterwoocommerce_cart_product_cannot_add_another_messageincludes\Services\QuotationService.php:269

filterwoocommerce_cart_product_cannot_be_purchased_messageincludes\Services\QuotationService.php:273

filterwoocommerce_cart_product_out_of_stock_messageincludes\Services\QuotationService.php:277

filterwoocommerce_cart_product_not_enough_stock_messageincludes\Services\QuotationService.php:281

filterwoocommerce_cart_product_not_enough_stock_already_in_cart_messageincludes\Services\QuotationService.php:285

actionshutdownincludes\Services\QuotationService.php:297

actionwoocommerce_initincludes\takeover.php:3

actiontemplate_redirectincludes\takeover.php:5

actionadmin_noticesincludes\woocommerce.php:22

actionadmin_noticesincludes\woocommerce.php:52

actionadmin_noticesincludes\woocommerce.php:84

Maintenance & Trust

Simpler Checkout Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedMar 2, 2026

PHP min version7.0

Downloads13K

Community Trust

Rating100/100

Number of ratings2

Active installs40

Alternatives

Simpler Checkout Alternatives

WSMS (formerly WP SMS) – SMS & MMS Notifications with OTP and 2FA for WooCommerce

wp-sms

Send SMS/MMS notifications, OTP & 2FA messages, and WooCommerce updates with support for multiple gateways and plugin integrations.

9K 15 CVEs

Force Authentification Before Checkout for WooCommerce

woo-force-authentification-before-checkout

100

Force customer to log in or register before checkout

7K No CVEs

Firebase Authentication

firebase-authentication

100

This plugin allows login into WordPress using Firebase user credentials and maps Firebase user data to WordPress user profile.

500 No CVEs

reCaptcha for WooCommerce

advanced-google-recaptcha-for-woocommerce

100

Enable Google reCaptcha for WooCommerce Checkout, Login, Registration, and Reset Password Forms to protect your store against spam.

300 No CVEs

Login With

100

Add Google authentication to your WooCommerce store, allowing customers to log in with their Google accounts.

20 No CVEs

Developer Profile

Simpler Checkout Developer Profile

simplercheckout

1 plugin · 40 total installs

trust score

Avg Security Score

95/100

Avg Patch Time

6 days

View full developer profile

Detection Fingerprints

How We Detect Simpler Checkout

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/simpler-checkout/includes/assets.php

Script Paths

simpler-checkout/vendor/simpler/js/simpler-checkout.js

Version Parameters

simpler-checkout/vendor/simpler/js/simpler-checkout.js?ver=simpler-checkout/vendor/simpler/js/simpler-checkout.js?ts=

HTML / DOM Fingerprints

CSS Classes

simpler-checkout-button

HTML Comments

+2 more

Data Attributes

data-simpler-checkout-button-typedata-simpler-checkout-product-iddata-simpler-checkout-product-namedata-simpler-checkout-product-pricedata-simpler-checkout-product-imagedata-simpler-checkout-product-url+4 more

JS Globals

window.simplerCheckoutAppId

REST Endpoints

/wp-json/simpler/v1/orders/wp-json/simpler/v1/about/wp-json/simpler/v1/quotations/wp-json/simpler/v1/products/wp-json/simpler/v1/product-feed

Shortcode Output

[simpler-product-checkout][simpler-cart-checkout]

FAQ