
Sticky Bottom Cart Bar Security & Risk Analysis
wordpress.org/plugins/sticky-bottom-cart-barAdds a sticky Add to Cart and Buy Now button at the bottom of WooCommerce product pages with a customizable interface.
Is Sticky Bottom Cart Bar Safe to Use in 2026?
Generally Safe
Score 92/100Sticky Bottom Cart Bar has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The sticky-bottom-cart-bar plugin, version 1.2.0, exhibits a generally strong security posture based on the provided static analysis. The absence of any recorded vulnerabilities, including CVEs, and the clean taint analysis results are positive indicators. Furthermore, the plugin demonstrates good coding practices by not using dangerous functions, performing all SQL queries using prepared statements, and avoiding file operations and external HTTP requests. This suggests a low risk of common web vulnerabilities originating from these areas.
However, there are a few areas that warrant attention. The plugin has a concerningly low percentage of properly escaped output (40%), indicating a potential for Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not handled with care before being displayed. Additionally, the complete lack of nonce checks and capability checks on its entry points (though there are none currently) raises a flag. While the attack surface is currently zero, if any new entry points are introduced in future versions without appropriate authentication and authorization checks, this could create significant security risks. The absence of any vulnerability history is a strength, but the lack of defensive checks on potential entry points means that if vulnerabilities were introduced, they might go unnoticed until exploited.
In conclusion, the plugin is currently in a good state, with no known vulnerabilities or serious coding flaws. Its strengths lie in its disciplined handling of SQL and its avoidance of risky external operations. The primary weakness is the insufficient output escaping, which could lead to XSS if new input vectors are added. The lack of security checks on entry points is a latent risk that should be addressed proactively if the plugin's functionality expands.
Key Concerns
- Insufficient output escaping (40% proper)
- No nonce checks on entry points
- No capability checks on entry points
Sticky Bottom Cart Bar Security Vulnerabilities
Sticky Bottom Cart Bar Release Timeline
Sticky Bottom Cart Bar Code Analysis
Output Escaping
Sticky Bottom Cart Bar Attack Surface
WordPress Hooks 3
Maintenance & Trust
Sticky Bottom Cart Bar Maintenance & Trust
Maintenance Signals
Community Trust
Sticky Bottom Cart Bar Alternatives
Direct Checkout – Quick View – Buy Now For WooCommerce
quick-view-and-buy-now-for-woocommerce
Quick View and Buy Now plugin makes the buying process easy in your store to increase conversion and encorage clients buying from your website by addi …
Add to Cart Text Changer and Customize Button, Add Custom Icon
woo-add-to-cart-text-change
Easy handle: Add to Cart Text Changer and Customize Button, Add Custom Icon. With icon of shop or cart.
Simple Sticky Add To Cart For WooCommerce
sticky-add-to-cart-woo
Simple Sticky add to cart for WooCommerce show on product page top and bottom with full color customization and much more option.
Sticky Add To Cart Bar For WooCommerce
sticky-add-to-cart-bar-for-wc
Sticky Add To Cart Bar For WooCommerce is use to add sticky add to cart button on the product page of WooCommerce.
Woo Button Text
woo-button-text
Simple WooCommerce button text changer / Styler / add to cart text changer for WooCommerce.
Sticky Bottom Cart Bar Developer Profile
1 plugin · 0 total installs
How We Detect Sticky Bottom Cart Bar
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/sticky-bottom-cart-bar/assets/css/style.css/wp-content/plugins/sticky-bottom-cart-bar/assets/js/script.js/wp-content/plugins/sticky-bottom-cart-bar/assets/js/script.jssticky-bottom-cart-bar/assets/css/style.css?ver=sticky-bottom-cart-bar/assets/js/script.js?ver=HTML / DOM Fingerprints
sbcb-sticky-barsbcb-price-wrappersbcb-price-labelsbcb-price-containersbcb-buttonssbcb-add-to-cartsbcb-labelsbcb-loader+1 moresbcb_params