WP-Safety

SureCart – Ecommerce Made Easy For Selling Physical Products, Digital Downloads, Subscriptions, Donations, & Payments Security & Risk Analysis

wordpress.org/plugins/surecart

Make ecommerce easy with a simple to use, all-in-one platform, that anyone can set up in just a few minutes!

90K active installs v4.0.3 PHP 7.4+ WP 6.7+ Updated Mar 12, 2026
ecommerceonline-storepaymentsstripesubscriptions
99
A · Safe
CVEs total2
Unpatched0
Last CVEAug 28, 2024
Plugin page Download
Safety Verdict

Is SureCart – Ecommerce Made Easy For Selling Physical Products, Digital Downloads, Subscriptions, Donations, & Payments Safe to Use in 2026?

Generally Safe

Score 99/100

SureCart – Ecommerce Made Easy For Selling Physical Products, Digital Downloads, Subscriptions, Donations, & Payments has a strong security track record. Known vulnerabilities have been patched promptly.

2 known CVEsLast CVE: Aug 28, 2024Updated 22d ago
Risk Assessment

The SureCart v4.0.3 plugin exhibits a generally good security posture with several strengths. The analysis indicates robust use of prepared statements for SQL queries and a high percentage of properly escaped output, which are fundamental for preventing common web vulnerabilities. The presence of numerous capability checks and nonce checks also suggests a commitment to securing entry points. However, the presence of the `unserialize` function is a significant concern, as it can be a vector for remote code execution if not handled with extreme caution and proper input sanitization. While the taint analysis shows no critical or high severity flows, the potential for abuse with `unserialize` remains. The plugin's vulnerability history shows two medium-severity Cross-Site Scripting (XSS) vulnerabilities, with the last one being recent. While these are currently patched, the pattern suggests that XSS vulnerabilities have been an area of weakness in the past, requiring continued vigilance in output escaping practices. Overall, SureCart has implemented strong defenses in many areas, but the identified risk associated with `unserialize` and the past XSS history warrant attention for a truly secure application.

Key Concerns

  • Presence of 'unserialize' function
  • Recent medium severity XSS vulnerability history
Vulnerabilities
2

SureCart – Ecommerce Made Easy For Selling Physical Products, Digital Downloads, Subscriptions, Donations, & Payments Security Vulnerabilities

CVEs by Year

1 CVE in 2023
2023
1 CVE in 2024
2024
Patched Has unpatched

Severity Breakdown

Medium
2

2 total CVEs

CVE-2024-43970medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

SureCart <= 2.29.3 - Reflected Cross-Site Scripting

Aug 28, 2024 Patched in 2.29.4 (8d)
CVE-2023-41241medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

SureCart <= 2.5.0 - Authenticated (Administrator+) Stored Cross-Site Scripting via plugin settings

Aug 29, 2023 Patched in 2.5.1 (147d)
Code Analysis
Analyzed Mar 16, 2026

SureCart – Ecommerce Made Easy For Selling Physical Products, Digital Downloads, Subscriptions, Donations, & Payments Code Analysis

Dangerous Functions
1
Raw SQL Queries
0
120 prepared
Unescaped Output
226
1895 escaped
Nonce Checks
13
Capability Checks
357
File Operations
11
External Requests
6
Bundled Libraries
2

Dangerous Functions Found

unserializereturn @unserialize( $data, $options ); // @phpcs:ignoreapp\src\Background\BackgroundProcess.php:778

Bundled Libraries

Select2Guzzle

SQL Query Safety

100% prepared120 total queries

Output Escaping

89% escaped2121 total outputs
Data Flows
All sanitized

Data Flow Analysis

25 flows
extra_tablenav (app\src\Controllers\Admin\AffiliationClicks\AffiliationClicksListTable.php:235)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

SureCart – Ecommerce Made Easy For Selling Physical Products, Digital Downloads, Subscriptions, Donations, & Payments Attack Surface

Entry Points5
Unprotected0

AJAX Handlers 2

authwp_ajax_sc_plugin_deactivate_feedbackapp\src\Activation\DeactivationSurveyForm.php:22
authwp_ajax_surecart_fetch_formsapp\src\Integrations\Beaver\BeaverServiceProvider.php:32

Shortcodes 3

[sc_line_item] app\src\WordPress\Shortcodes\ShortcodesServiceProvider.php:48
[sc_form] app\src\WordPress\Shortcodes\ShortcodesServiceProvider.php:49
[sc_buy_button] app\src\WordPress\Shortcodes\ShortcodesServiceProvider.php:50
WordPress Hooks 343
filterdoing_it_wrong_trigger_errorapp\helpers\block-helpers.php:14
filterdo_redirect_guess_404_permalinkapp\hooks.php:21
filtersurecart.middleware.user.can.redirect_urlapp\hooks.php:53
actionadmin_enqueue_scriptsapp\src\Activation\DeactivationSurveyForm.php:26
actionadmin_footerapp\src\Activation\DeactivationSurveyForm.php:27
filtercron_schedulesapp\src\Background\BackgroundProcess.php:95
filterpre_render_blockapp\src\BlockLibrary\BlockCurrencyConversionSupportService.php:15
actioninitapp\src\BlockLibrary\BlockPatternsService.php:44
filtersafe_style_cssapp\src\BlockLibrary\BlockServiceProvider.php:76
filterwp_kses_allowed_htmlapp\src\BlockLibrary\BlockServiceProvider.php:100
actioninitapp\src\BlockLibrary\BlockServiceProvider.php:102
actionblock_categories_allapp\src\BlockLibrary\BlockServiceProvider.php:104
actionwpapp\src\BlockLibrary\BlockValidationService.php:33
actionadmin_bar_menuapp\src\BlockLibrary\FormModeSwitcherService.php:32
actionwp_after_admin_bar_renderapp\src\BlockLibrary\FormModeSwitcherService.php:34
actionwp_footerapp\src\BlockLibrary\ProductQuickViewService.php:32
actionwp_footerapp\src\BlockLibrary\ProductReviewFormService.php:32
filterenqueue_empty_block_content_assetsapp\src\BlockLibrary\ProductReviewFormService.php:59
filterwp_nav_menu_itemsapp\src\Cart\CartService.php:17
actionwp_enqueue_scriptsapp\src\Cart\CartService.php:21
actiontemplate_includeapp\src\Cart\CartService.php:30
actionwp_footerapp\src\Cart\CartService.php:282
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Abandoned\AbandonedCheckoutViewController.php:42
actionin_admin_headerapp\src\Controllers\Admin\AdminController.php:40
actionadmin_noticesapp\src\Controllers\Admin\AdminController.php:65
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\AffiliationPayoutGroups\AffiliationPayoutGroupsController.php:21
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\AffiliationPayouts\AffiliationPayoutsController.php:52
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\AffiliationPayouts\AffiliationPayoutsController.php:75
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\AffiliationReferrals\AffiliationReferralsController.php:52
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\AffiliationRequests\AffiliationRequestsController.php:35
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Affiliations\AffiliationsController.php:45
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\AutoFees\AutoFeesController.php:66
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Bumps\BumpsController.php:37
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Cart\CartController.php:22
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Checkouts\CheckoutsController.php:16
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Coupons\CouponsController.php:44
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Customers\CustomersController.php:45
actionadmin_noticesapp\src\Controllers\Admin\Customers\CustomersListTable.php:46
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Dashboard\DashboardController.php:17
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Invoices\InvoicesViewController.php:41
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Licenses\LicensesController.php:36
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Onboarding\OnboardingController.php:17
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Orders\OrdersViewController.php:40
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\ProductCollections\ProductCollectionsController.php:31
actionadmin_bar_menuapp\src\Controllers\Admin\ProductCollections\ProductCollectionsController.php:47
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\ProductGroups\ProductGroupsController.php:29
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Products\ProductsController.php:174
actionadmin_bar_menuapp\src\Controllers\Admin\Products\ProductsController.php:238
filterregister_block_type_argsapp\src\Controllers\Admin\Products\ProductScriptsController.php:185
actionadmin_noticesapp\src\Controllers\Admin\Products\ProductsListTable.php:50
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Reviews\ReviewsController.php:55
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Settings\BaseSettings.php:73
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Subscriptions\SubscriptionsController.php:44
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Subscriptions\SubscriptionsController.php:66
actionadmin_enqueue_scriptsapp\src\Controllers\Admin\Upsells\UpsellsController.php:38
actionadmin_bar_menuapp\src\Controllers\Admin\Upsells\UpsellsController.php:60
filterdocument_title_partsapp\src\Controllers\Web\BasePageController.php:82
filterpre_get_document_titleapp\src\Controllers\Web\BasePageController.php:84
actionwp_enqueue_scriptsapp\src\Controllers\Web\BasePageController.php:86
actionwp_headapp\src\Controllers\Web\BasePageController.php:88
actionwp_headapp\src\Controllers\Web\BasePageController.php:90
actionadmin_bar_menuapp\src\Controllers\Web\BuyPageController.php:16
actionwp_enqueue_scriptsapp\src\Controllers\Web\BuyPageController.php:18
actionwp_enqueue_scriptsapp\src\Controllers\Web\BuyPageController.php:20
actionwp_headapp\src\Controllers\Web\BuyPageController.php:22
actionwp_headapp\src\Controllers\Web\BuyPageController.php:24
actionadmin_bar_menuapp\src\Controllers\Web\UpsellPageController.php:25
actionadmin_initapp\src\Database\GeneralMigration.php:26
actionadmin_initapp\src\Database\GeneralMigration.php:43
actionadmin_initapp\src\Database\UpdateMigrationServiceProvider.php:27
actionadmin_initapp\src\Database\UpdateMigrationServiceProvider.php:29
actionadmin_initapp\src\Database\VersionMigration.php:22
actionadmin_initapp\src\Database\VersionMigration.php:48
actionsurecart/purchase_createdapp\src\Integrations\AffiliateWP\AffiliateWPIntegration.php:39
actionsurecart/purchase_revokedapp\src\Integrations\AffiliateWP\AffiliateWPIntegration.php:41
actionsurecart/purchase_invokedapp\src\Integrations\AffiliateWP\AffiliateWPIntegration.php:43
filteraffwp_referral_reference_columnapp\src\Integrations\AffiliateWP\AffiliateWPIntegration.php:45
actionsurecart/subscription_renewedapp\src\Integrations\AffiliateWP\AffiliateWPRecurringIntegration.php:36
filteraffwp_extended_integrationsapp\src\Integrations\AffiliateWP\AffiliateWPService.php:18
actionplugins_loadedapp\src\Integrations\AffiliateWP\AffiliateWPService.php:20
actionafter_setup_themeapp\src\Integrations\Avada\AvadaService.php:15
actionwp_enqueue_scriptsapp\src\Integrations\Avada\AvadaService.php:38
actioninitapp\src\Integrations\Beaver\BeaverServiceProvider.php:31
actionfl_builder_after_render_shortcodesapp\src\Integrations\Beaver\BeaverServiceProvider.php:33
actionbricks/dynamic_tags_listapp\src\Integrations\Bricks\BricksDynamicDataService.php:24
filterbricks/dynamic_data/render_tagapp\src\Integrations\Bricks\BricksDynamicDataService.php:25
filterbricks/frontend/render_dataapp\src\Integrations\Bricks\BricksDynamicDataService.php:26
filterbricks/dynamic_data/render_contentapp\src\Integrations\Bricks\BricksDynamicDataService.php:27
filtershould_load_separate_core_block_assetsapp\src\Integrations\Bricks\BricksElementsService.php:17
actioninitapp\src\Integrations\Bricks\BricksElementsService.php:21
filterbricks/setup/control_optionsapp\src\Integrations\Bricks\BricksElementsService.php:24
filterbricks/active_templatesapp\src\Integrations\Bricks\BricksElementsService.php:27
filterbricks/active_templatesapp\src\Integrations\Bricks\BricksElementsService.php:30
filtersurecart_product_page_query_argsapp\src\Integrations\Bricks\BricksElementsService.php:33
filtersurecart/scripts/admin/product/dataapp\src\Integrations\Bricks\BricksTemplateService.php:15
filtersc_cart_menu_iconapp\src\Integrations\Bricks\Elements\CartMenuIcon.php:121
filtersurecart/shortcode/renderapp\src\Integrations\DiviServiceProvider.php:25
filteret_builder_render_layoutapp\src\Integrations\DiviServiceProvider.php:26
actionelementor/frontend/container/before_renderapp\src\Integrations\Elementor\ElementorBlockAdapterService.php:17
actionelementor/frontend/container/after_renderapp\src\Integrations\Elementor\ElementorBlockAdapterService.php:18
actionelementor/frontend/before_get_builder_contentapp\src\Integrations\Elementor\ElementorBlockAdapterService.php:19
actionelementor/frontend/the_contentapp\src\Integrations\Elementor\ElementorBlockAdapterService.php:20
actionelementor/element/container/section_layout_container/after_section_startapp\src\Integrations\Elementor\ElementorBlockAdapterService.php:21
filterelementor/frontend/the_contentapp\src\Integrations\Elementor\ElementorBlockAdapterService.php:22
filtersurecart/product/replace_content_with_product_info_partapp\src\Integrations\Elementor\ElementorBlockAdapterService.php:23
filterpre_render_blockapp\src\Integrations\Elementor\ElementorBlockAdapterService.php:60
actionwp_enqueue_scriptsapp\src\Integrations\Elementor\ElementorCoreBlockStylesService.php:28
actionwp_enqueue_scriptsapp\src\Integrations\Elementor\ElementorCoreBlockStylesService.php:30
actionelementor/documents/registerapp\src\Integrations\Elementor\ElementorDocumentsService.php:18
actionelementor/theme/register_conditionsapp\src\Integrations\Elementor\ElementorDocumentsService.php:19
filterelementor/query/get_autocomplete/surecart-productapp\src\Integrations\Elementor\ElementorDocumentsService.php:20
filterelementor/query/get_value_titles/surecart-productapp\src\Integrations\Elementor\ElementorDocumentsService.php:21
actionelementor/dynamic_tags/registerapp\src\Integrations\Elementor\ElementorDynamicTagsService.php:15
actionelementor/dynamic_tags/registerapp\src\Integrations\Elementor\ElementorDynamicTagsService.php:16
actionelementor/frontend/before_enqueue_stylesapp\src\Integrations\Elementor\ElementorEditorService.php:29
actionelementor/editor/before_enqueue_scriptsapp\src\Integrations\Elementor\ElementorEditorService.php:30
actionelementor/editor/after_enqueue_scriptsapp\src\Integrations\Elementor\ElementorEditorService.php:31
filtertemplate_includeapp\src\Integrations\Elementor\ElementorFseScriptLoaderService.php:19
actionwp_enqueue_scriptsapp\src\Integrations\Elementor\ElementorFseScriptLoaderService.php:33
actionelementor/frontend/before_get_builder_contentapp\src\Integrations\Elementor\ElementorShortcodeService.php:23
filterelementor/frontend/the_contentapp\src\Integrations\Elementor\ElementorShortcodeService.php:37
actioninitapp\src\Integrations\Elementor\ElementorWidgetsService.php:25
actionelementor/elements/categories_registeredapp\src\Integrations\Elementor\ElementorWidgetsService.php:26
actionelementor/widgets/registerapp\src\Integrations\Elementor\ElementorWidgetsService.php:27
actionelementor/frontend/after_enqueue_stylesapp\src\Integrations\Elementor\ElementorWidgetsService.php:28
filtersc_cart_disabledapp\src\Integrations\Etch\EtchService.php:15
actionadmin_footerapp\src\Integrations\HelpWidget\HelpWidget.php:22
actionsurecart/purchase_createdapp\src\Integrations\IntegrationService.php:140
actionsurecart/purchase_invokedapp\src\Integrations\IntegrationService.php:141
actionsurecart/purchase_revokedapp\src\Integrations\IntegrationService.php:142
actionsurecart/purchase_updatedapp\src\Integrations\IntegrationService.php:143
filtersurecart/product/skip_filtersapp\src\Integrations\RankMath\RankMathService.php:27
actionthrive_automator_initapp\src\Integrations\ThriveAutomator\ThriveAutomatorServiceProvider.php:28
filtertutor/course/single/entry-box/freeapp\src\Integrations\TutorLMS\TutorLMSService.php:21
filtertutor/course/single/entry-box/purchasableapp\src\Integrations\TutorLMS\TutorLMSService.php:22
filterget_tutor_course_priceapp\src\Integrations\TutorLMS\TutorLMSService.php:23
filtertutor_course_loop_priceapp\src\Integrations\TutorLMS\TutorLMSService.php:24
actionsurecart/models/price/updatedapp\src\Integrations\TutorLMS\TutorLMSService.php:26
actionsurecart/models/price/createdapp\src\Integrations\TutorLMS\TutorLMSService.php:27
filterfound_postsapp\src\Models\Blocks\ProductListBlock.php:270
filterfound_postsapp\src\Models\Blocks\RelatedProductsBlock.php:113
actionadmin_initapp\src\Permissions\AdminAccessService.php:16
filteruser_has_capapp\src\Permissions\PermissionsService.php:19
actionrest_api_initapp\src\Rest\BlockPatternsRestServiceProvider.php:39
actionrest_api_initapp\src\Rest\RestServiceProvider.php:79
filterquery_varsapp\src\Routing\PermalinkService.php:189
actioninitapp\src\Routing\PermalinkService.php:191
actionadmin_initapp\src\Routing\PermalinkSettingService.php:77
actionadmin_initapp\src\Settings\RegisterSettingService.php:68
actionrest_api_initapp\src\Settings\RegisterSettingService.php:69
actioninitapp\src\Settings\SettingService.php:18
filteradmin_headapp\src\Support\Scripts\AdminModelEditController.php:109
filtersurecart/product/sync/created/propsapp\src\Sync\ContentSyncService.php:39
actionsurecart/models/productimport/createdapp\src\Sync\ContentSyncService.php:41
actionadmin_initapp\src\Sync\ContentSyncService.php:43
actionsurecart/sync/customersapp\src\Sync\CustomerSyncService.php:20
actionadmin_noticesapp\src\Sync\CustomerSyncService.php:21
actionadmin_noticesapp\src\Sync\ProductsSyncService.php:38
actionadmin_initapp\src\Sync\StoreSyncService.php:27
actiondelete_expired_transientsapp\src\Webhooks\WebhooksService.php:38
actionadmin_menuapp\src\WordPress\Admin\Menus\AdminMenuPageService.php:49
actionadmin_headapp\src\WordPress\Admin\Menus\AdminMenuPageService.php:50
filterparent_fileapp\src\WordPress\Admin\Menus\AdminMenuPageService.php:51
filterparent_fileapp\src\WordPress\Admin\Menus\AdminMenuPageService.php:52
actionadmin_bar_menuapp\src\WordPress\Admin\Menus\AdminToolbarService.php:35
actionadmin_bar_menuapp\src\WordPress\Admin\Menus\AdminToolbarService.php:40
actionadmin_bar_menuapp\src\WordPress\Admin\Menus\AdminToolbarService.php:45
filterrender_blockapp\src\WordPress\Admin\Menus\ProductCollectionsMenuService.php:17
actionadmin_initapp\src\WordPress\Admin\Notices\AdminNoticesService.php:29
actionadmin_noticesapp\src\WordPress\Admin\Notices\AdminNoticesService.php:107
actionadmin_noticesapp\src\WordPress\Admin\Notices\AdminNoticesService.php:130
actionadmin_noticesapp\src\WordPress\Admin\PluginCache\AdminPluginCacheService.php:27
actionedit_user_profileapp\src\WordPress\Admin\Profile\UserProfileService.php:17
actionshow_user_profileapp\src\WordPress\Admin\Profile\UserProfileService.php:18
actionadmin_noticesapp\src\WordPress\Admin\SSLCheck\AdminSSLCheckService.php:16
actioninitapp\src\WordPress\Assets\AssetsService.php:64
actioninitapp\src\WordPress\Assets\AssetsService.php:65
actionwp_enqueue_scriptsapp\src\WordPress\Assets\AssetsService.php:67
filterenqueue_block_assetsapp\src\WordPress\Assets\AssetsService.php:69
filterrender_block_dataapp\src\WordPress\Assets\AssetsService.php:70
actionenqueue_block_editor_assetsapp\src\WordPress\Assets\AssetsService.php:73
actionwp_headapp\src\WordPress\Assets\AssetsService.php:76
actionwp_footerapp\src\WordPress\Assets\AssetsService.php:225
actionadmin_footerapp\src\WordPress\Assets\AssetsService.php:231
actionwp_enqueue_scriptapp\src\WordPress\Assets\BlockAssetsLoadService.php:23
filterrender_blockapp\src\WordPress\Assets\BlockAssetsLoadService.php:71
actionwp_enqueue_scriptapp\src\WordPress\Assets\BlockAssetsLoadService.php:82
actionwp_headapp\src\WordPress\Assets\PreloadService.php:40
actionwp_footerapp\src\WordPress\Assets\PreloadService.php:41
filterscript_loader_tagapp\src\WordPress\Assets\ScriptsService.php:29
filterwp_headapp\src\WordPress\Assets\ScriptsService.php:225
actionwpapp\src\WordPress\Cache\CacheService.php:21
actionrest_api_initapp\src\WordPress\Cache\CacheService.php:24
actionsurecart/product_stock_adjustedapp\src\WordPress\Cache\CacheService.php:27
actionplugins_loadedapp\src\WordPress\Cache\CacheServiceProvider.php:43
actionlitespeed_control_finalizeapp\src\WordPress\Cache\LiteSpeedCacheService.php:21
filterlitespeed_vary_cookiesapp\src\WordPress\Cache\LiteSpeedCacheService.php:24
filterlitespeed_optm_js_defer_excapp\src\WordPress\Cache\LiteSpeedCacheService.php:27
actionrest_api_initapp\src\WordPress\Cache\LiteSpeedCacheService.php:30
actionsurecart/product_stock_adjustedapp\src\WordPress\Cache\LiteSpeedCacheService.php:33
filterw3tc_can_cacheapp\src\WordPress\Cache\W3TotalCacheService.php:23
filterw3tc_minify_js_do_tag_minificationapp\src\WordPress\Cache\W3TotalCacheService.php:26
filterw3tc_minify_js_script_tagsapp\src\WordPress\Cache\W3TotalCacheService.php:29
actioncli_initapp\src\WordPress\CLI\CLIService.php:20
actionrender_block_dataapp\src\WordPress\CompatibilityService.php:27
filtersurecart/shortcode/renderapp\src\WordPress\CompatibilityService.php:29
actionrank_math/headapp\src\WordPress\CompatibilityService.php:32
filterrank_math/frontend/canonicalapp\src\WordPress\CompatibilityService.php:33
filterrank_math/sitemap/xml_post_urlapp\src\WordPress\CompatibilityService.php:34
filterrank_math/sitemap/post_type_archive_linkapp\src\WordPress\CompatibilityService.php:35
actionwpseo_frontend_presentersapp\src\WordPress\CompatibilityService.php:38
filtersgo_javascript_combine_exclude_idsapp\src\WordPress\CompatibilityService.php:41
actionadmin_initapp\src\WordPress\CompatibilityService.php:44
actionwp_enqueue_scriptsapp\src\WordPress\CompatibilityService.php:47
actionwp_enqueue_scriptsapp\src\WordPress\CompatibilityService.php:50
filtershould_load_separate_core_block_assetsapp\src\WordPress\CompatibilityService.php:54
actionrender_blockapp\src\WordPress\CompatibilityService.php:57
actionwp_footerapp\src\WordPress\CompatibilityService.php:188
actionplugins_loadedapp\src\WordPress\CurrencyService.php:31
filterwp_nav_menu_itemsapp\src\WordPress\CurrencyService.php:34
actioninitapp\src\WordPress\CurrencyService.php:37
filterpage_linkapp\src\WordPress\CurrencyService.php:46
filterpost_linkapp\src\WordPress\CurrencyService.php:47
filterterm_linkapp\src\WordPress\CurrencyService.php:48
filterpost_type_linkapp\src\WordPress\CurrencyService.php:49
filterattachment_linkapp\src\WordPress\CurrencyService.php:50
filterhome_urlapp\src\WordPress\CurrencyService.php:51
filterget_canonical_urlapp\src\WordPress\CurrencyService.php:52
filterget_pagenum_linkapp\src\WordPress\CurrencyService.php:53
filterget_pagenum_linkapp\src\WordPress\CurrencyService.php:69
filterdebug_informationapp\src\WordPress\HealthService.php:18
filtersite_status_testsapp\src\WordPress\HealthService.php:19
actiondisplay_post_statesapp\src\WordPress\Pages\PageService.php:18
filternetwork_admin_plugin_action_links_surecart/surecart.phpapp\src\WordPress\PluginActionLinksService.php:33
filterplugin_action_links_surecart/surecart.phpapp\src\WordPress\PluginActionLinksService.php:34
actioninitapp\src\WordPress\PostTypes\CartPostTypeService.php:48
actionuse_block_editor_for_postapp\src\WordPress\PostTypes\CartPostTypeService.php:49
actionadmin_initapp\src\WordPress\PostTypes\CartPostTypeService.php:50
filtermap_meta_capapp\src\WordPress\PostTypes\CartPostTypeService.php:51
filterwp_insert_post_dataapp\src\WordPress\PostTypes\CartPostTypeService.php:52
actionwp_insert_postapp\src\WordPress\PostTypes\CartPostTypeService.php:53
actiondisplay_post_statesapp\src\WordPress\PostTypes\FormPostTypeService.php:56
actioninitapp\src\WordPress\PostTypes\FormPostTypeService.php:57
actionin_admin_headerapp\src\WordPress\PostTypes\FormPostTypeService.php:60
actionuse_block_editor_for_postapp\src\WordPress\PostTypes\FormPostTypeService.php:62
actionsurecart/payments/modeapp\src\WordPress\PostTypes\FormPostTypeService.php:63
actioninitapp\src\WordPress\PostTypes\ProductPostTypeService.php:25
actioninitapp\src\WordPress\PostTypes\ProductPostTypeService.php:28
actioninitapp\src\WordPress\PostTypes\ProductPostTypeService.php:31
actioninitapp\src\WordPress\PostTypes\ProductPostTypeService.php:34
actionenqueue_block_editor_assetsapp\src\WordPress\PostTypes\ProductPostTypeService.php:37
filterposts_whereapp\src\WordPress\PostTypes\ProductPostTypeService.php:40
filterparse_queryapp\src\WordPress\PostTypes\ProductPostTypeService.php:43
actiontemplate_redirectapp\src\WordPress\PostTypes\ProductPostTypeService.php:46
actionthe_postapp\src\WordPress\PostTypes\ProductPostTypeService.php:49
actionrest_api_initapp\src\WordPress\PostTypes\ProductPostTypeService.php:55
actionget_post_metadataapp\src\WordPress\PostTypes\ProductPostTypeService.php:58
filterget_edit_post_linkapp\src\WordPress\PostTypes\ProductPostTypeService.php:61
filterrest_sc_product_trashableapp\src\WordPress\PostTypes\ProductPostTypeService.php:64
actionrest_prepare_sc_productapp\src\WordPress\PostTypes\ProductPostTypeService.php:67
filteruse_block_editor_for_post_typeapp\src\WordPress\PostTypes\ProductPostTypeService.php:70
actionadmin_bar_menuapp\src\WordPress\PostTypes\ProductPostTypeService.php:73
actiondelete_attachmentapp\src\WordPress\PostTypes\ProductPostTypeService.php:76
actiondelete_attachmentapp\src\WordPress\PostTypes\ProductPostTypeService.php:77
actionsurecart/price_createdapp\src\WordPress\PostTypes\ProductPostTypeService.php:80
actionsurecart/price_deletedapp\src\WordPress\PostTypes\ProductPostTypeService.php:81
actionsurecart/price_updatedapp\src\WordPress\PostTypes\ProductPostTypeService.php:82
actionsurecart/product_createdapp\src\WordPress\PostTypes\ProductPostTypeService.php:83
actionsurecart/product_stock_adjustedapp\src\WordPress\PostTypes\ProductPostTypeService.php:84
actionsurecart/product_updatedapp\src\WordPress\PostTypes\ProductPostTypeService.php:85
actionsurecart/product_deletedapp\src\WordPress\PostTypes\ProductPostTypeService.php:86
filterattachment_fields_to_editapp\src\WordPress\PostTypes\ProductPostTypeService.php:89
filterattachment_fields_to_saveapp\src\WordPress\PostTypes\ProductPostTypeService.php:90
filterpost_thumbnail_idapp\src\WordPress\PostTypes\ProductPostTypeService.php:93
filterwp_get_attachment_imageapp\src\WordPress\PostTypes\ProductPostTypeService.php:94
filterhas_post_thumbnailapp\src\WordPress\PostTypes\ProductPostTypeService.php:95
filterpost_thumbnail_htmlapp\src\WordPress\PostTypes\ProductPostTypeService.php:96
filterpost_thumbnail_urlapp\src\WordPress\PostTypes\ProductPostTypeService.php:97
filterdocument_title_partsapp\src\WordPress\PostTypes\ProductPostTypeService.php:100
filterpre_get_document_titleapp\src\WordPress\PostTypes\ProductPostTypeService.php:103
actionwp_headapp\src\WordPress\PostTypes\ProductPostTypeService.php:106
actionwp_headapp\src\WordPress\PostTypes\ProductPostTypeService.php:107
filterpost_type_linkapp\src\WordPress\PostTypes\ProductPostTypeService.php:110
actiontemplate_redirectapp\src\WordPress\PostTypes\ProductPostTypeService.php:111
filterthe_contentapp\src\WordPress\PostTypes\ProductPostTypeService.php:116
filtertemplate_includeapp\src\WordPress\PostTypes\ProductPostTypeService.php:119
filterget_post_metadataapp\src\WordPress\PostTypes\ProductPostTypeService.php:742
actioninitapp\src\WordPress\PostTypes\ProductUpsellPagePostTypeService.php:22
filtershould_load_separate_core_block_assetsapp\src\WordPress\Shortcodes\ShortcodesService.php:85
filterdoing_it_wrong_trigger_errorapp\src\WordPress\Shortcodes\ShortcodesService.php:113
actioninitapp\src\WordPress\Shortcodes\ShortcodesServiceProvider.php:39
actionwp_footerapp\src\WordPress\StateService.php:34
actioninitapp\src\WordPress\Taxonomies\CollectionTaxonomyService.php:22
filtertaxonomy_templateapp\src\WordPress\Taxonomies\CollectionTaxonomyService.php:23
filterget_edit_term_linkapp\src\WordPress\Taxonomies\CollectionTaxonomyService.php:24
filterget_terms_argsapp\src\WordPress\Taxonomies\CollectionTaxonomyService.php:25
actioninitapp\src\WordPress\Taxonomies\StoreTaxonomyService.php:22
actionadmin_initapp\src\WordPress\Taxonomies\TaxonomyService.php:13
filterget_block_templatesapp\src\WordPress\Templates\BlockTemplatesService.php:34
filterpre_get_block_file_templateapp\src\WordPress\Templates\BlockTemplatesService.php:35
filtertemplate_includeapp\src\WordPress\Templates\TemplatesService.php:60
filtertemplate_includeapp\src\WordPress\Templates\TemplatesService.php:61
filterbody_classapp\src\WordPress\Templates\TemplatesService.php:62
actioninitapp\src\WordPress\Templates\TemplatesService.php:63
filtertemplate_includeapp\src\WordPress\Templates\UpsellTemplatesService.php:61
filterposts_pre_queryapp\src\WordPress\Templates\UpsellTemplatesService.php:64
filterquery_varsapp\src\WordPress\Templates\UpsellTemplatesService.php:65
actionafter_setup_themeapp\src\WordPress\ThemeService.php:16
actionafter_setup_themeapp\src\WordPress\ThemeService.php:17
filterbody_classapp\src\WordPress\ThemeService.php:19
filteradmin_body_classapp\src\WordPress\ThemeService.php:20
filterloco_compile_single_jsonapp\src\WordPress\TranslationsServiceProvider.php:28
filterload_script_translation_fileapp\src\WordPress\TranslationsServiceProvider.php:29
actioninitapp\src\WordPress\TranslationsServiceProvider.php:30
filterrest_user_queryapp\src\WordPress\Users\UsersService.php:17
filterrest_user_queryapp\src\WordPress\Users\UsersService.php:18
filterrest_user_collection_paramsapp\src\WordPress\Users\UsersService.php:19
filtershow_admin_barapp\src\WordPress\Users\UsersService.php:20
actionprofile_updateapp\src\WordPress\Users\UsersService.php:21
actionsurecart/customer_updatedapp\src\WordPress\Users\UsersService.php:22
actionprofile_updateapp\src\WordPress\Users\UsersService.php:50
filterget_avatar_urlcore\app-core\src\Avatar\Avatar.php:35
filtersurecart.pretty_errors.apply_admin_stylescore\core\src\Application\Application.php:179
actionrequestcore\core\src\Kernels\HttpKernel.php:287
actiontemplate_includecore\core\src\Kernels\HttpKernel.php:288
actionadmin_initcore\core\src\Kernels\HttpKernel.php:291
actionadmin_initcore\core\src\Kernels\HttpKernel.php:294
actionsurecart.kernels.http_kernel.respondcore\core\src\Kernels\HttpKernel.php:347
actionsurecart.kernels.http_kernel.respondcore\core\src\Kernels\HttpKernel.php:356
filternocache_headerscore\core\src\Requests\Request.php:242
filterwp_kses_allowed_htmlpackages\blocks\Blocks\BlockServiceProvider.php:54
filtersafe_style_csspackages\blocks\Blocks\BlockServiceProvider.php:55
actionwp_footerpackages\blocks\Blocks\Product\BuyButton\Block.php:139
actionwp_footerpackages\blocks\Blocks\Upsell\SubmitButton\Block.php:144
actioninitpackages\blocks-next\index.php:10
filterblock_type_metadata_settingspackages\blocks-next\index.php:22
filterrender_block_contextpackages\blocks-next\index.php:79
actioninitpackages\blocks-next\index.php:110
actionwp_footerpackages\blocks-next\index.php:129
actioninitpackages\blocks-next\index.php:203
actionwp_footerpackages\blocks-next\index.php:221
actioninitpackages\blocks-next\index.php:624
filterrender_block_contextviews\blocks\sticky-purchase.php:23
Maintenance & Trust

SureCart – Ecommerce Made Easy For Selling Physical Products, Digital Downloads, Subscriptions, Donations, & Payments Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 12, 2026
PHP min version7.4
Downloads3.1M

Community Trust

Rating96/100
Number of ratings257
Active installs90K
Alternatives

SureCart – Ecommerce Made Easy For Selling Physical Products, Digital Downloads, Subscriptions, Donations, & Payments Alternatives

PrettyLinks – Affiliate Links, Link Branding, Link Tracking, Marketing and Stripe Payments Plugin

PrettyLinks – Affiliate Links, Link Branding, Link Tracking, Marketing and Stripe Payments Plugin

pretty-link

A
90

🌠 The best WordPress link management, branding, tracking, sharing and payments plugin. Easily make pretty & trackable shortlinks. 🔗

300K 8 CVEs
Easy Digital Downloads – eCommerce Payments and Subscriptions made easy

Easy Digital Downloads – eCommerce Payments and Subscriptions made easy

easy-digital-downloads

B
75

The #1 eCommerce plugin to sell digital products & subscriptions. Accept credit card payments with Stripe & PayPal and start your store today.

40K 39 CVEs
Contact Form 7 – PayPal & Stripe Add-on

Contact Form 7 – PayPal & Stripe Add-on

contact-form-7-paypal-add-on

A
96

Easily add PayPal and Stripe to Contact Form 7. Accept credit card payments with Stripe & PayPal on your site today. Offical PayPal & Stripe Partner.

8K 5 CVEs
FluentCart A New Era of eCommerce – Faster, Lighter, and Simpler

FluentCart A New Era of eCommerce – Faster, Lighter, and Simpler

fluent-cart

A
96

Sell Subscriptions, Physical Products, Digital Downloads easier than ever. Built for performance, scalability, and flexibility.

4K 2 CVEs
Memberful – Membership Plugin

Memberful – Membership Plugin

memberful-wp

A
97

Sell memberships and restrict access to content with WordPress and Memberful.

1K 3 CVEs
Developer Profile

SureCart – Ecommerce Made Easy For Selling Physical Products, Digital Downloads, Subscriptions, Donations, & Payments Developer Profile

SureCart

1 plugin · 90K total installs

87
trust score
Avg Security Score
99/100
Avg Patch Time
78 days
View full developer profile
Detection Fingerprints

How We Detect SureCart – Ecommerce Made Easy For Selling Physical Products, Digital Downloads, Subscriptions, Donations, & Payments

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/surecart/dist/scripts/plugin-deactivation-feedback.js
Script Paths
dist/scripts/plugin-deactivation-feedback.js
Version Parameters
surecart/dist/scripts/plugin-deactivation-feedback.js?ver=

HTML / DOM Fingerprints

CSS Classes
uds-feedback-form--wrapperuds-feedback-form--containeruds-form-header--wrapperuds-form-title--icon-wrapperuds-iconuds-titleuds-closeuds-form-body--content+9 more
HTML Comments
<!-- Service for plugin deactivation survey form. --><!-- handle ajax request. --><!-- show feedback form on plugins screen. --><!-- Render feedback HTML on plugins.php admin page only. -->+8 more
Data Attributes
data-placeholderdata-show_ctadata-accept_feedbackdata-action
JS Globals
SureCart
REST Endpoints
/wp-json/surecart/v1/...
FAQ

Frequently Asked Questions about SureCart – Ecommerce Made Easy For Selling Physical Products, Digital Downloads, Subscriptions, Donations, & Payments