Does Tax Switch for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Tax Switch for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Tax Switch for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, Tax Switch for WooCommerce 1.6.11 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Tax Switch for WooCommerce compatible with PHP 7.2+?

Tax Switch for WooCommerce requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Tax Switch for WooCommerce updated?

Tax Switch for WooCommerce was last updated on Mar 13, 2026. Frequent updates are generally a positive security signal.

What is Tax Switch for WooCommerce's security score?

Tax Switch for WooCommerce has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Tax Switch for WooCommerce Security & Risk Analysis

wordpress.org/plugins/tax-switch-for-woocommerce

Let customers toggle between inclusive and exclusive VAT pricing in your WooCommerce store.

900 active installs v1.6.11 PHP 7.2+ WP 5.0+ Updated Mar 13, 2026

taxvatwoocommerce

A · Safe

CVEs total1

Unpatched0

Last CVEApr 21, 2025

Plugin page Download

Safety Verdict

Is Tax Switch for WooCommerce Safe to Use in 2026?

Generally Safe

Score 99/100

Tax Switch for WooCommerce has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Apr 21, 2025Updated 21d ago

Risk Assessment

The "tax-switch-for-woocommerce" plugin version 1.6.11 demonstrates generally good security practices with a clean static analysis report. The absence of dangerous functions, file operations, and external HTTP requests, along with the use of prepared statements for all SQL queries and a high percentage of properly escaped output, are positive indicators. The presence of a nonce check is also a good sign. However, the lack of capability checks on entry points, while not explicitly flagged as a vulnerability in this analysis, is a potential area for improvement, as it relies solely on nonce checks for authentication. The vulnerability history shows one past CVE, specifically a cross-site scripting vulnerability, which has since been patched. The fact that there are no currently unpatched vulnerabilities is reassuring. The medium severity of the past vulnerability suggests that while the plugin has had issues, they have been addressed. Overall, the plugin appears to be in a decent security state, but ongoing vigilance regarding capability checks and prompt patching of any future vulnerabilities is recommended.

Key Concerns

No capability checks on entry points
Past medium severity XSS vulnerability

Vulnerabilities

Tax Switch for WooCommerce Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-3814medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Tax Switch for WooCommerce <= 1.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via class-name Parameter

Apr 21, 2025 Patched in 1.4.3 (1d)

Code Analysis

Analyzed Mar 16, 2026

Tax Switch for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

17 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

94% escaped18 total outputs

Attack Surface

Tax Switch for WooCommerce Attack Surface

Entry Points2

Unprotected0

Shortcodes 2

[wdevs_tax_switch_label] includes\class-wdevs-tax-switch-block-label.php:56

[wdevs_tax_switch] includes\class-wdevs-tax-switch-block-switch.php:66

WordPress Hooks 39

filterwapf/html/pricing_hintincludes\class-wdevs-tax-switch-compatibility.php:288

filterpewc_field_formatted_priceincludes\class-wdevs-tax-switch-compatibility.php:320

actionwoocommerce_sections_wdevs_tax_switchincludes\class-wdevs-tax-switch-woocommerce.php:149

actionwoocommerce_update_options_wdevs_tax_switchincludes\class-wdevs-tax-switch-woocommerce.php:157

actionenqueue_block_editor_assetsincludes\class-wdevs-tax-switch.php:186

actionadmin_enqueue_scriptsincludes\class-wdevs-tax-switch.php:187

actionwoocommerce_before_mini_cartincludes\class-wdevs-tax-switch.php:205

actionwoocommerce_after_mini_cartincludes\class-wdevs-tax-switch.php:206

actionwp_enqueue_scriptsincludes\class-wdevs-tax-switch.php:210

filterwc_priceincludes\class-wdevs-tax-switch.php:213

filterwoocommerce_get_price_htmlincludes\class-wdevs-tax-switch.php:214

filterwoocommerce_countries_inc_tax_or_vatincludes\class-wdevs-tax-switch.php:215

filterwoocommerce_countries_ex_tax_or_vatincludes\class-wdevs-tax-switch.php:216

filterwoocommerce_coupon_get_minimum_amountincludes\class-wdevs-tax-switch.php:217

filterwoocommerce_coupon_get_maximum_amountincludes\class-wdevs-tax-switch.php:218

filterbm_filter_woocommerce_get_price_htmlincludes\class-wdevs-tax-switch.php:222

filterbefore_woocommerce_initincludes\class-wdevs-tax-switch.php:236

filterwoocommerce_settings_tabs_arrayincludes\class-wdevs-tax-switch.php:238

actionwoocommerce_settings_tabs_wdevs_tax_switchincludes\class-wdevs-tax-switch.php:239

actionwoocommerce_after_settings_wdevs_tax_switchincludes\class-wdevs-tax-switch.php:240

actioninitincludes\class-wdevs-tax-switch.php:253

actioninitincludes\class-wdevs-tax-switch.php:261

actioninitincludes\class-wdevs-tax-switch.php:262

actioninitincludes\class-wdevs-tax-switch.php:263

actionblock_type_metadataincludes\class-wdevs-tax-switch.php:266

actionwp_enqueue_scriptsincludes\class-wdevs-tax-switch.php:281

filterwcpt_elementincludes\class-wdevs-tax-switch.php:284

filterwp_kses_allowed_htmlincludes\class-wdevs-tax-switch.php:287

filterwoocommerce_available_variationincludes\class-wdevs-tax-switch.php:291

filterwoocommerce_available_variationincludes\class-wdevs-tax-switch.php:308

filterwapf/html/pricing_hintincludes\class-wdevs-tax-switch.php:319

filterpewc_field_formatted_priceincludes\class-wdevs-tax-switch.php:330

filterfacetwp_facet_render_argsincludes\class-wdevs-tax-switch.php:341

filterdgwt/wcas/tnt/dynamic_pricesincludes\class-wdevs-tax-switch.php:352

filterwdevs_tax_switch_current_productincludes\class-wdevs-tax-switch.php:357

filteryith_role_based_prices_get_price_suffixincludes\class-wdevs-tax-switch.php:362

filterpre_option_woocommerce_tax_display_shopincludes\trait-wdevs-tax-switch-helper.php:181

filterwoocommerce_prices_include_taxincludes\trait-wdevs-tax-switch-helper.php:198

filterwc_pricepublic\class-wdevs-tax-switch-public.php:125

Maintenance & Trust

Tax Switch for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 13, 2026

PHP min version7.2

Downloads16K

Community Trust

Rating100/100

Number of ratings23

Active installs900

Alternatives

Tax Switch for WooCommerce Alternatives

WooCommerce Tax (formerly WooCommerce Shipping & Tax)

woocommerce-services

100

We’re here to help with tax rates: collect accurate sales tax, automatically.

600K 1 CVE

EU VAT Assistant for WooCommerce

woocommerce-eu-vat-assistant

100

Extends the standard WooCommerce sale process and assists in achieving compliance with the new EU VAT regime starting on the 1st of January 2015.

5K No CVEs

Tax Exemption for WooCommerce

tax-exemption-woo

100

Tax Exemption plugin for WooCommerce. Allow customers to declare tax / VAT exemption eligibility, and provide tax exemption details.

600 No CVEs

RD Order Modifier for WooCommerce

rd-wc-order-modifier

100

Allows editing order items pricing inclusive of tax or VAT and using unit cost instead of items totals.

300 1 CVE

Rename VAT to GST for WooCommerce

rename-vat-to-gst-for-woocommerce

100

Replaces VAT and Tax terminology with GST throughout WooCommerce (emails, cart, checkout, admin, order pages).

200 No CVEs

Developer Profile

Tax Switch for WooCommerce Developer Profile

wijnbergdevelopments

3 plugins · 1K total installs

100

trust score

Avg Security Score

100/100

Avg Patch Time

1 days

View full developer profile

Detection Fingerprints

How We Detect Tax Switch for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/tax-switch-for-woocommerce/admin/js/wdevs-tax-switch-woocommerce.js/wp-content/plugins/tax-switch-for-woocommerce/includes/assets/css/wdevs-tax-switch-shared.css

Script Paths

/wp-content/plugins/tax-switch-for-woocommerce/admin/js/wdevs-tax-switch-woocommerce.js

Version Parameters

tax-switch-for-woocommerce/admin/js/wdevs-tax-switch-woocommerce.js?ver=tax-switch-for-woocommerce/includes/assets/css/wdevs-tax-switch-shared.css?ver=

HTML / DOM Fingerprints

CSS Classes

wdevs-tax-switch-container

HTML Comments

Data Attributes

data-original-tax-displaydata-check-price-elements

JS Globals

wtsEditorObjectwtsAjaxObject

Shortcode Output

[wdevs_tax_switch]

FAQ