Does Tb Product Designer for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Tb Product Designer for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, Tb Product Designer for WooCommerce 1.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Tb Product Designer for WooCommerce compatible with PHP 7.2+?

Tb Product Designer for WooCommerce requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Tb Product Designer for WooCommerce updated?

Tb Product Designer for WooCommerce was last updated on Mar 31, 2026. Frequent updates are generally a positive security signal.

What is Tb Product Designer for WooCommerce's security score?

Tb Product Designer for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Tb Product Designer for WooCommerce Security & Risk Analysis

wordpress.org/plugins/tb-product-designer-for-woocommerce

Allow customers to customize WooCommerce products with text and images using an interactive canvas designer.

0 active installs v1.0.0 PHP 7.2+ WP 5.0+ Updated Mar 31, 2026

canvascustom-productproduct-customizationproduct-designerwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Tb Product Designer for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Tb Product Designer for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The "tb-product-designer-for-woocommerce" plugin v1.0.0 exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices regarding SQL queries, output escaping, and file operations, all of which are handled securely. The absence of dangerous functions, external HTTP requests, and bundled libraries also contributes to a cleaner codebase. However, a significant concern arises from the presence of two AJAX handlers that lack authentication checks. This creates a direct attack vector for unauthenticated users to interact with these functions, potentially leading to unintended consequences if not properly secured.

The static analysis reveals an attack surface heavily concentrated in unprotected AJAX endpoints, which is the primary area of concern. Taint analysis did not reveal any critical or high-severity vulnerabilities, which is a positive indicator. The plugin's vulnerability history is clean, with no recorded CVEs, suggesting a potentially well-maintained or less-targeted plugin in the past. However, this lack of history should not be a sole basis for assuming future security.

In conclusion, while the plugin has strong foundational security practices in place for data handling and output, the two unprotected AJAX endpoints represent a clear and present risk. This oversight could be exploited by unauthenticated users to trigger actions within the plugin, potentially leading to data manipulation or other security issues. Addressing these unprotected entry points should be the highest priority for improving the plugin's security.

Key Concerns

AJAX handlers without auth checks
Large attack surface without auth

Vulnerabilities

None known

Tb Product Designer for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Tb Product Designer for WooCommerce Release Timeline

v1.0.0Current

Code Analysis

Analyzed Apr 16, 2026

Tb Product Designer for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

63 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped63 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

1 flows

<class-tb-product-designer-for-woocommerce-public> (public/class-tb-product-designer-for-woocommerce-public.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

Tb Product Designer for WooCommerce Attack Surface

Entry Points2

Unprotected2

AJAX Handlers 2

authwp_ajax_tbprdefo_save_designincludes/class-tb-product-designer-for-woocommerce.php:184

noprivwp_ajax_tbprdefo_save_designincludes/class-tb-product-designer-for-woocommerce.php:185

WordPress Hooks 21

actionplugins_loadedincludes/class-tb-product-designer-for-woocommerce.php:144

actionadmin_enqueue_scriptsincludes/class-tb-product-designer-for-woocommerce.php:158

actionadmin_enqueue_scriptsincludes/class-tb-product-designer-for-woocommerce.php:159

actionwoocommerce_product_options_general_product_dataincludes/class-tb-product-designer-for-woocommerce.php:162

actionwoocommerce_process_product_metaincludes/class-tb-product-designer-for-woocommerce.php:163

actionwp_enqueue_scriptsincludes/class-tb-product-designer-for-woocommerce.php:177

actionwp_enqueue_scriptsincludes/class-tb-product-designer-for-woocommerce.php:178

actionwoocommerce_before_add_to_cart_buttonincludes/class-tb-product-designer-for-woocommerce.php:181

actionwc_ajax_cpdfw_add_to_cartincludes/class-tb-product-designer-for-woocommerce.php:189

actionwc_ajax_nopriv_cpdfw_add_to_cartincludes/class-tb-product-designer-for-woocommerce.php:190

filterwoocommerce_add_cart_item_dataincludes/class-tb-product-designer-for-woocommerce.php:193

filterwoocommerce_get_item_dataincludes/class-tb-product-designer-for-woocommerce.php:196

filterwoocommerce_cart_item_thumbnailincludes/class-tb-product-designer-for-woocommerce.php:197

filterwoocommerce_store_api_product_quantity_editableincludes/class-tb-product-designer-for-woocommerce.php:200

actionwoocommerce_store_api_cart_update_order_from_requestincludes/class-tb-product-designer-for-woocommerce.php:201

filterwoocommerce_blocks_cart_item_thumbnailincludes/class-tb-product-designer-for-woocommerce.php:202

actionwoocommerce_blocks_loadedincludes/class-tb-product-designer-for-woocommerce.php:203

actionwoocommerce_checkout_create_order_line_itemincludes/class-tb-product-designer-for-woocommerce.php:206

actionwoocommerce_thankyouincludes/class-tb-product-designer-for-woocommerce.php:209

actionwoocommerce_email_order_detailsincludes/class-tb-product-designer-for-woocommerce.php:212

filterwoocommerce_admin_order_item_thumbnailincludes/class-tb-product-designer-for-woocommerce.php:215

Maintenance & Trust

Tb Product Designer for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 31, 2026

PHP min version7.2

Downloads66

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Tb Product Designer for WooCommerce Alternatives

PickPlugins Product Designer for WooCommerce

product-designer

Ready product designer plugin for WooCommerce

600 3 CVEs

Precise Expressions Product Customizer

precise-expressions-product-customiser

100

Easily sell custom products in WooCommerce. Shoppers personalize items by uploading images and text in a live preview modal

0 No CVEs

Flexible Product Fields (WooCommerce Product Addons) – WooCommerce Product Page Editor

flexible-product-fields

100

Add extra product options on your WooCommerce product page. Product addons for all product variations. 20 free product addons.

10K No CVEs

Custom Product Tabs for WooCommerce & WordPress Tabs Builder – Smart Tabs

wp-expand-tabs-free

A customizable plugin to create and manage WooCommerce product tabs and WordPress tabs to organize content.

10K 5 CVEs

WC Fields Factory

wc-fields-factory

Sell your products with personalised options. Add custom fields to your products, variations, checkout, order and your admin screens.

7K 2 CVEs

Developer Profile

Tb Product Designer for WooCommerce Developer Profile

Vishit Shah

7 plugins · 820 total installs

trust score

Avg Security Score

94/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Tb Product Designer for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/tb-product-designer-for-woocommerce/admin/css/tb-product-designer-for-woocommerce-admin.css/wp-content/plugins/tb-product-designer-for-woocommerce/admin/js/tb-product-designer-for-woocommerce-admin.js

Script Paths

admin/js/tb-product-designer-for-woocommerce-admin.js

Version Parameters

tb-product-designer-for-woocommerce/admin/css/tb-product-designer-for-woocommerce-admin.css?ver=tb-product-designer-for-woocommerce/admin/js/tb-product-designer-for-woocommerce-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

tb_product_designer_canvastb_pd_color_pickertb_pd_layer_itemtb_pd_text_editortb_pd_tools_wrapper

Data Attributes

data-enable-product-customizationdata-product-iddata-variation-id

JS Globals

tb_pd_configtb_pd_customizer_init

FAQ