Does SubscriptionFlow Recurring Payments for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is SubscriptionFlow Recurring Payments for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, SubscriptionFlow Recurring Payments for WooCommerce 1.0.5 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is SubscriptionFlow Recurring Payments for WooCommerce compatible with PHP 7.2+?

SubscriptionFlow Recurring Payments for WooCommerce requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

SubscriptionFlow Recurring Payments for WooCommerce Security & Risk Analysis

wordpress.org/plugins/subscriptionflow-recurring-payments-for-woocommerce

A subscription management plugin for WooCommerce with Simple and Variable product types, flexible billing schedules, and discount options.

0 active installs v1.0.5 PHP 7.2+ WP 5.0+ Updated Apr 10, 2026

recurring-paymentssubscription-managementsubscriptionsvariable-subscriptionswoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is SubscriptionFlow Recurring Payments for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

SubscriptionFlow Recurring Payments for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The "subscriptionflow-recurring-payments-for-woocommerce" plugin, version 1.0.4, exhibits a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and has a clean vulnerability history with no recorded CVEs. The presence of nonces and capability checks, while not exhaustive across all entry points, suggests an awareness of common WordPress security mechanisms. However, the analysis reveals a notable concern with its attack surface, specifically two AJAX handlers that lack authentication checks. Furthermore, the taint analysis identified two flows with unsanitized paths, which, while not classified as critical or high, represent potential avenues for malicious input to be processed without adequate sanitization. The relatively high percentage of improperly escaped output also adds to the risk, particularly if sensitive data is involved in those outputs.

Key Concerns

Unprotected AJAX handlers
Flows with unsanitized paths
Improperly escaped output (29% unsanitized)

Vulnerabilities

None known

SubscriptionFlow Recurring Payments for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

SubscriptionFlow Recurring Payments for WooCommerce Release Timeline

v1.0.4

Code Analysis

Analyzed Mar 17, 2026

SubscriptionFlow Recurring Payments for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

174

400 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

70% escaped574 total outputs

Data Flows · Security

2 unsanitized

Data Flow Analysis

5 flows2 with unsanitized paths

render_admin_page (admin\class-sfrp-subscription-admin-page.php:94)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

SubscriptionFlow Recurring Payments for WooCommerce Attack Surface

Entry Points8

Unprotected2

AJAX Handlers 8

authwp_ajax_sfrp_sync_product_to_subscriptionflowadmin\class-sfrp-simple-subscription.php:60

authwp_ajax_sfrp_sync_variable_product_to_subscriptionflowadmin\class-sfrp-variable-subscription.php:65

authwp_ajax_sfrp_get_commerceflow_urlfrontend\class-sfrp-subscription-cart.php:83

noprivwp_ajax_sfrp_get_commerceflow_urlfrontend\class-sfrp-subscription-cart.php:84

authwp_ajax_sfrp_calculate_subscription_pricefrontend\class-sfrp-subscription-frontend.php:54

noprivwp_ajax_sfrp_calculate_subscription_pricefrontend\class-sfrp-subscription-frontend.php:55

authwp_ajax_sfrp_get_variation_subscription_datafrontend\class-sfrp-subscription-frontend.php:58

noprivwp_ajax_sfrp_get_variation_subscription_datafrontend\class-sfrp-subscription-frontend.php:59

WordPress Hooks 41

filterwoocommerce_product_data_tabsadmin\class-sfrp-simple-subscription.php:48

actionwoocommerce_product_data_panelsadmin\class-sfrp-simple-subscription.php:49

actionwoocommerce_process_product_metaadmin\class-sfrp-simple-subscription.php:50

actionwoocommerce_after_product_object_saveadmin\class-sfrp-simple-subscription.php:56

actionadd_meta_boxesadmin\class-sfrp-simple-subscription.php:63

actionwoocommerce_product_duplicateadmin\class-sfrp-simple-subscription.php:66

actiondp_duplicate_productadmin\class-sfrp-simple-subscription.php:67

actionadmin_menuadmin\class-sfrp-subscription-admin-page.php:48

actionadmin_enqueue_scriptsadmin\class-sfrp-subscription-admin-page.php:49

actionadmin_enqueue_scriptsadmin\class-sfrp-subscription-admin.php:48

actionadmin_menuadmin\class-sfrp-subscriptionflow-settings.php:47

actionadmin_initadmin\class-sfrp-subscriptionflow-settings.php:48

actionadmin_enqueue_scriptsadmin\class-sfrp-subscriptionflow-settings.php:49

actionwoocommerce_product_after_variable_attributesadmin\class-sfrp-variable-subscription.php:49

actionwoocommerce_save_product_variationadmin\class-sfrp-variable-subscription.php:50

actionwoocommerce_after_product_object_saveadmin\class-sfrp-variable-subscription.php:58

actionadd_meta_boxesadmin\class-sfrp-variable-subscription.php:62

actionwoocommerce_product_duplicateadmin\class-sfrp-variable-subscription.php:68

actiondp_duplicate_productadmin\class-sfrp-variable-subscription.php:69

filterwoocommerce_add_to_cart_validationfrontend\class-sfrp-subscription-cart.php:49

filterwoocommerce_add_cart_item_datafrontend\class-sfrp-subscription-cart.php:52

filterwoocommerce_get_cart_item_from_sessionfrontend\class-sfrp-subscription-cart.php:55

filterwoocommerce_add_cart_itemfrontend\class-sfrp-subscription-cart.php:58

filterwoocommerce_get_item_datafrontend\class-sfrp-subscription-cart.php:61

actionwoocommerce_before_calculate_totalsfrontend\class-sfrp-subscription-cart.php:64

actionwoocommerce_checkout_create_order_line_itemfrontend\class-sfrp-subscription-cart.php:67

filterwoocommerce_order_item_display_meta_keyfrontend\class-sfrp-subscription-cart.php:70

filterwoocommerce_order_item_display_meta_valuefrontend\class-sfrp-subscription-cart.php:71

actiontemplate_redirectfrontend\class-sfrp-subscription-cart.php:74

actionwp_enqueue_scriptsfrontend\class-sfrp-subscription-cart.php:77

actionwp_enqueue_scriptsfrontend\class-sfrp-subscription-cart.php:80

actionwoocommerce_proceed_to_checkoutfrontend\class-sfrp-subscription-cart.php:548

actiontemplate_redirectfrontend\class-sfrp-subscription-cart.php:551

actionwoocommerce_before_add_to_cart_buttonfrontend\class-sfrp-subscription-frontend.php:48

actionwp_enqueue_scriptsfrontend\class-sfrp-subscription-frontend.php:51

actionwoocommerce_payment_completefrontend\class-sfrp-subscription-thankyou.php:50

actionwoocommerce_order_status_processingfrontend\class-sfrp-subscription-thankyou.php:53

actionwoocommerce_order_status_completedfrontend\class-sfrp-subscription-thankyou.php:54

actionwoocommerce_admin_order_data_after_billing_addressfrontend\class-sfrp-subscription-thankyou.php:57

actionplugins_loadedincludes\class-sfrp-subscription-management.php:99

actionadmin_noticesincludes\class-sfrp-subscription-management.php:108

Maintenance & Trust

SubscriptionFlow Recurring Payments for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 10, 2026

PHP min version7.2

Downloads216

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

SubscriptionFlow Recurring Payments for WooCommerce Alternatives

Recurio – Ultimate Subscription for WooCommerce

recurio

100

A powerful and comprehensive WooCommerce subscription management plugin with advanced analytics, automated billing, and customer portal.

900 No CVEs

Flexi Subscription for WooCommerce

flexi-wc-subscriptions

100

Flexible subscription management for WooCommerce products, enabling recurring billing, subscription plans, and customer subscription control.

0 No CVEs

Pay with Vipps and MobilePay for WooCommerce

woo-vipps

100

Official Vipps MobilePay payment plugin for WooCommerce.

5K 1 CVE

Vipps/MobilePay recurring payments for WooCommerce

vipps-recurring-payments-gateway-for-woocommerce

100

Vipps/MobilePay recurring payments is perfect if you run a shop with subscription based services or products that would benefit from subscriptions.

90 No CVEs

Cancellation Survey and Offers for Woo Subscriptions

cancellation-surveys-offers-for-woo-subscriptions

100

Increase retention for WooCommerce Subscriptions by making retention offers (discounts or skip renewal), and collecting feedback with surveys when cus …

30 No CVEs

Developer Profile

SubscriptionFlow Recurring Payments for WooCommerce Developer Profile

appssf

2 plugins · 0 total installs

trust score

Avg Security Score

96/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect SubscriptionFlow Recurring Payments for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/subscriptionflow-recurring-payments-for-woocommerce/assets/css/sfrp-admin-page.css

Version Parameters

sfrp-admin-page.css?ver=

HTML / DOM Fingerprints

CSS Classes

sf-subscriptions-admincolumn-ordercolumn-customercolumn-productcolumn-schedulecolumn-discountcolumn-pricecolumn-date+1 more

FAQ