Does Store Addons for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Store Addons for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Store Addons for WooCommerce compatible with WordPress 6.8.5?

According to WordPress.org data, Store Addons for WooCommerce 1.0.0 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Store Addons for WooCommerce compatible with PHP 8.0+?

Store Addons for WooCommerce requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Store Addons for WooCommerce updated?

Store Addons for WooCommerce was last updated on Oct 19, 2025. Frequent updates are generally a positive security signal.

What is Store Addons for WooCommerce's security score?

Store Addons for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Store Addons for WooCommerce Security & Risk Analysis

wordpress.org/plugins/store-addons-for-woocommerce

Store Addons for WooCommerce help you increase your sales with personalized products and store.

0 active installs v1.0.0 PHP 8.0+ WP 5.0+ Updated Oct 19, 2025

buy-togetherproduct-addonsproduct-badge

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Store Addons for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Store Addons for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago

Risk Assessment

The 'store-addons-for-woocommerce' plugin v1.0.0 exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries, performing a high percentage of output escaping, and not engaging in external HTTP requests or file operations. The absence of critical or high-severity taint flows and a clean vulnerability history with no known CVEs are significant strengths, suggesting a generally well-developed codebase regarding common web application vulnerabilities.

However, the plugin has a notable weakness in its handling of entry points. A significant portion of its attack surface, specifically 4 out of 8 total entry points, is unprotected by authentication checks. These unprotected entry points are AJAX handlers, which can be a common vector for various attacks if not properly secured. While nonce checks and capability checks are present to some extent (9 and 7 respectively), their absence on these 4 AJAX handlers represents a potential risk for unauthorized actions or data manipulation.

In conclusion, while the plugin benefits from strong internal code security practices like prepared SQL and output escaping, the presence of unprotected AJAX endpoints is a clear concern that warrants attention. The lack of past vulnerabilities is encouraging, but it does not negate the immediate risks posed by the identified unprotected entry points. Addressing these unprotected AJAX handlers should be the priority to strengthen the plugin's overall security.

Key Concerns

Unprotected AJAX handlers

Vulnerabilities

None known

Store Addons for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Store Addons for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

107 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

86% escaped125 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<store-addons-for-woocommerce-admin-display> (admin\partials\store-addons-for-woocommerce-admin-display.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

Store Addons for WooCommerce Attack Surface

Entry Points8

Unprotected4

AJAX Handlers 4

authwp_ajax_store_addons_for_woocommerce_reset_settingsincludes\class-store-addons-for-woocommerce.php:159

authwp_ajax_store_addons_for_woocommerce_reset_all_settingsincludes\class-store-addons-for-woocommerce.php:160

authwp_ajax_store_addons_for_woocommerce_ajax_callbackincludes\class-store-addons-for-woocommerce.php:182

noprivwp_ajax_store_addons_for_woocommerce_ajax_callbackincludes\class-store-addons-for-woocommerce.php:183

REST API Routes 4

GET/wp-json/store-addons-for-woocommerce/v1/optionsadmin\class-store-addons-for-woocommerce-admin.php:361

POST/wp-json/store-addons-for-woocommerce/v1/optionsadmin\class-store-addons-for-woocommerce-admin.php:375

POST/wp-json/store-addons-for-woocommerce/v1/feedbackadmin\class-store-addons-for-woocommerce-admin.php:387

POST/wp-json/store-addons-for-woocommerce/v1/settingsincludes\class-store-addons-for-woocommerce-import-export.php:14

WordPress Hooks 32

actionwoocommerce_before_shop_loop_item_titleincludes\class-store-addons-for-woocommerce-badge.php:12

actionwoocommerce_before_shop_loop_item_titleincludes\class-store-addons-for-woocommerce-badge.php:13

actionwoocommerce_before_shop_loop_item_titleincludes\class-store-addons-for-woocommerce-badge.php:14

actionwp_enqueue_scriptsincludes\class-store-addons-for-woocommerce-badge.php:17

filterwoocommerce_product_data_tabsincludes\class-store-addons-for-woocommerce-buy-together.php:12

actionwoocommerce_product_data_panelsincludes\class-store-addons-for-woocommerce-buy-together.php:15

actionwoocommerce_process_product_metaincludes\class-store-addons-for-woocommerce-buy-together.php:18

actionwoocommerce_before_add_to_cart_buttonincludes\class-store-addons-for-woocommerce-buy-together.php:20

actionwoocommerce_add_to_cart_validationincludes\class-store-addons-for-woocommerce-buy-together.php:21

actionrest_api_initincludes\class-store-addons-for-woocommerce-import-export.php:10

actionwp_headincludes\class-store-addons-for-woocommerce-more.php:12

actionwp_enqueue_scriptsincludes\class-store-addons-for-woocommerce-more.php:14

filterwoocommerce_product_data_tabsincludes\class-store-addons-for-woocommerce-product-addons.php:12

actionwoocommerce_product_data_panelsincludes\class-store-addons-for-woocommerce-product-addons.php:15

actionwoocommerce_process_product_metaincludes\class-store-addons-for-woocommerce-product-addons.php:18

actionwoocommerce_before_add_to_cart_buttonincludes\class-store-addons-for-woocommerce-product-addons.php:20

filterwoocommerce_add_cart_item_dataincludes\class-store-addons-for-woocommerce-product-addons.php:22

filterwoocommerce_get_item_dataincludes\class-store-addons-for-woocommerce-product-addons.php:23

actionwoocommerce_before_calculate_totalsincludes\class-store-addons-for-woocommerce-product-addons.php:24

actionadmin_enqueue_scriptsincludes\class-store-addons-for-woocommerce-product-addons.php:26

actionadmin_enqueue_scriptsincludes\class-store-addons-for-woocommerce.php:140

actionadmin_enqueue_scriptsincludes\class-store-addons-for-woocommerce.php:141

actionadmin_menuincludes\class-store-addons-for-woocommerce.php:143

filteradmin_body_classincludes\class-store-addons-for-woocommerce.php:149

actionadmin_initincludes\class-store-addons-for-woocommerce.php:151

actioncurrent_screenincludes\class-store-addons-for-woocommerce.php:153

actionadmin_headincludes\class-store-addons-for-woocommerce.php:156

actionupgrader_process_completeincludes\class-store-addons-for-woocommerce.php:163

actionrest_api_initincludes\class-store-addons-for-woocommerce.php:165

actionwp_enqueue_scriptsincludes\class-store-addons-for-woocommerce.php:179

actionwp_enqueue_scriptsincludes\class-store-addons-for-woocommerce.php:180

actionbefore_woocommerce_initstore-addons-for-woocommerce.php:212

Maintenance & Trust

Store Addons for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedOct 19, 2025

PHP min version8.0

Downloads135

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Store Addons for WooCommerce Alternatives

Advanced Product Fields (Product Addons) for WooCommerce

advanced-product-fields-for-woocommerce

Add options (addons) to your WooCommerce products so your customers can personalize their products. Product forms for everyone!

50K 2 CVEs

Product Addons for Woocommerce – Product Options with Custom Fields

woo-custom-product-addons

WooCommerce Product Addons Add custom fields to your WooCommerce product page. With an easy-to-use Custom Form Builder.

30K 1 CVE

Extra Product Options For WooCommerce | Custom Product Addons and Fields

woo-extra-product-options

100

WooCommerce Extra Product Options plugin lets you add product addons (custom products field) of 20 different field types to your product page.

30K No CVEs

PPOM – Product Addons & Custom Fields for WooCommerce

woocommerce-product-addon

Easily add a range of custom fields to WooCommerce products, from text boxes to date selectors, allowing customers to personalize their orders.

20K 11 CVEs

YITH WooCommerce Product Add-Ons

yith-woocommerce-product-add-ons

Increase average order value by letting your customers purchase additional options on your products.

20K 7 CVEs

Developer Profile

Store Addons for WooCommerce Developer Profile

Md. Mostak Shahid

4 plugins · 50 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Store Addons for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/store-addons-for-woocommerce/assets/images/sale-badge-01.svg/wp-content/plugins/store-addons-for-woocommerce/assets/images/sale-badge-02.svg/wp-content/plugins/store-addons-for-woocommerce/assets/images/sale-badge-03.svg/wp-content/plugins/store-addons-for-woocommerce/assets/images/sale-badge-04.svg/wp-content/plugins/store-addons-for-woocommerce/assets/images/sold-badge-01.svg/wp-content/plugins/store-addons-for-woocommerce/assets/images/sold-badge-02.svg/wp-content/plugins/store-addons-for-woocommerce/assets/images/sold-badge-03.svg/wp-content/plugins/store-addons-for-woocommerce/assets/images/sold-badge-04.svg

Version Parameters

store-addons-for-woocommerce/store-addons-for-woocommerce.php?ver=store-addons-for-woocommerce/includes/class-store-addons-for-woocommerce-activator.php?ver=store-addons-for-woocommerce/includes/class-store-addons-for-woocommerce-deactivator.php?ver=store-addons-for-woocommerce/includes/class-store-addons-for-woocommerce.php?ver=

HTML / DOM Fingerprints

HTML Comments

FAQ