TP Product Tooltip for WooCommerce Security & Risk Analysis
wordpress.org/plugins/tp-product-tooltipIncrease your sales by adding beautiful designed Tooltip to your woocommerce products.
Is TP Product Tooltip for WooCommerce Safe to Use in 2026?
Generally Safe
Score 85/100TP Product Tooltip for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The 'tp-product-tooltip' v1.0.4 plugin presents a mixed security posture. While it boasts zero known CVEs and no apparent critical taint flows or dangerous functions, its static analysis reveals significant areas of concern. The plugin has a total of one entry point, an AJAX handler, which lacks any authentication or authorization checks. This is a major weakness, exposing a potentially sensitive function to unauthorized access and exploitation. Furthermore, the plugin demonstrates poor output escaping practices, with only 18% of its outputs being properly sanitized. This significantly increases the risk of cross-site scripting (XSS) vulnerabilities, where malicious scripts could be injected and executed in the context of a user's browser.
The absence of vulnerability history suggests a lack of past exploitation or discovery, which is a positive indicator. However, the current code analysis highlights critical security flaws that could be actively exploited regardless of historical data. The lack of nonce checks and capability checks on the unprotected AJAX handler are particularly worrying. In conclusion, while the plugin has a clean vulnerability history and avoids common pitfalls like raw SQL or bundled libraries, the unprotected AJAX endpoint and pervasive unescaped output create substantial security risks that require immediate attention.
Key Concerns
- Unprotected AJAX handler
- Low percentage of properly escaped output
- Missing nonce checks on AJAX
- Missing capability checks on AJAX
TP Product Tooltip for WooCommerce Security Vulnerabilities
TP Product Tooltip for WooCommerce Code Analysis
Output Escaping
TP Product Tooltip for WooCommerce Attack Surface
AJAX Handlers 1
WordPress Hooks 23
Maintenance & Trust
TP Product Tooltip for WooCommerce Maintenance & Trust
Maintenance Signals
Community Trust
TP Product Tooltip for WooCommerce Alternatives
Gravity Booster – Styles & Layouts for Gravity Forms
styles-and-layouts-for-gravity-forms
Gravity Booster - Styles and Layouts for Gravity Forms plugin lets you design and style Gravity Forms without CSS coding. You can also use it for addi …
Easy Footnotes
easy-footnotes
Easy Footnotes lets you quickly and easily add footnotes throughout your WordPress posts using a simple shortcode in the text editor.
CM Tooltip Glossary
enhanced-tooltipglossary
Transform jargon into engaging content that boosts SEO, drives engagement, improves conversions, with automatic links and tooltips.
Tooltips for WordPress
wordpress-tooltips
Add custom tooltip automatically for post's content/title/tag/excerpt/gallery/menu, easily add image / video / audio / social/link tooltips
Hide Tooltips on Hover – Clean Up Title Attributes Without Losing Accessibility
hide-titles-on-hover
Hide browser tooltips on hover while preserving accessibility for screen readers.
TP Product Tooltip for WooCommerce Developer Profile
65 plugins · 296K total installs
How We Detect TP Product Tooltip for WooCommerce
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/tp-product-tooltip/admin/css/tp-woocommerce-product-tooltip-admin.css/wp-content/plugins/tp-product-tooltip/admin/css/jquery.tp_tooltip_minicolors.css/wp-content/plugins/tp-product-tooltip/admin/js/jquery.tp_tooltip_minicolors.min.js/wp-content/plugins/tp-product-tooltip/admin/js/tp-woocommerce-product-tooltip-admin.js/wp-content/plugins/tp-product-tooltip/admin/js/tpwpt-ajax-core-admin.jsadmin/js/jquery.tp_tooltip_minicolors.min.jsadmin/js/tp-woocommerce-product-tooltip-admin.jsadmin/js/tpwpt-ajax-core-admin.jstp-woocommerce-product-tooltip-admin.css?ver=jquery.tp_tooltip_minicolors.css?ver=jquery.tp_tooltip_minicolors.min.js?ver=tp-woocommerce-product-tooltip-admin.js?ver=tpwpt-ajax-core-admin.js?ver=HTML / DOM Fingerprints
tp-tooltip-wrappertp-tooltip-contenttp-tooltip-arrowtp-tooltip-visibletp-tooltip-active<!-- START TP Product Tooltip --><!-- END TP Product Tooltip --><!-- TP Tooltip Content Start --><!-- TP Tooltip Content End -->+2 moredata-tp-tooltipdata-tp-tooltip-positiondata-tp-tooltip-animationdata-tp-tooltip-delaytpwptParam/wp-json/tp-product-tooltip/v1/get_product_data[tp_product_tooltip[tp_product_tooltip_category