SpecFit-Virtual Try On Woocommerce Security & Risk Analysis
wordpress.org/plugins/try-on-for-woocommerceVitual EyeWear Try-On SpecFit allows customers to virtually try eye wears products on their face before buying it.
Is SpecFit-Virtual Try On Woocommerce Safe to Use in 2026?
Mostly Safe
Score 78/100SpecFit-Virtual Try On Woocommerce is generally safe to use. 1 past CVE were resolved. Keep it updated.
The "try-on-for-woocommerce" plugin v8.0.3 presents a significant security risk due to its large, unprotected attack surface and a history of vulnerabilities. While the plugin demonstrates good practices in SQL query handling and a moderate level of output escaping, the presence of 14 unprotected AJAX handlers is a major concern. This, combined with a concerning number of unsanitized path taint flows, suggests potential pathways for attackers to inject malicious code or manipulate plugin functionality. The existence of a currently unpatched medium severity vulnerability, specifically Cross-site Scripting, further exacerbates the risk. This pattern of a known vulnerability, even if older, indicates a need for diligent patching and code review.
Key Concerns
- 14 unprotected AJAX handlers
- 6 unsanitized path taint flows
- 1 currently unpatched medium CVE
- 73% output escaping (implies 27% unescaped)
SpecFit-Virtual Try On Woocommerce Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
SpecFit-Virtual Try On Woocommerce <= 7.0.5 - Reflected Cross-Site Scripting
SpecFit-Virtual Try On Woocommerce Code Analysis
Output Escaping
Data Flow Analysis
SpecFit-Virtual Try On Woocommerce Attack Surface
AJAX Handlers 14
WordPress Hooks 13
Maintenance & Trust
SpecFit-Virtual Try On Woocommerce Maintenance & Trust
Maintenance Signals
Community Trust
SpecFit-Virtual Try On Woocommerce Alternatives
Product Virtual Try On Showroom for WooCommerce – Sunglasses, Furniture
my-woocommerce-product-virtual-showroom
Virtual Try On Showroom WooCommerce – Boost Your Sales for Eyewear, Furniture and other type of business with this WordPress Plugin
YouCam Makeup For WooCommerce
youcam-makeup
Boost Your Sales with Virtual Makeup Try-On. Let Innovative AR Try-On Improve Buyer's Satisfaction.
TryAura
tryaura
Upgrade your WooCommerce store with AI-powered product images and virtual try on, using your existing products.
Auglio Try-on Mirror
auglio-try-on-mirror
The Virtual mirror allows the shoppers to experience all decorative cosmetics, sunglasses, contact lenses, jewelry, clothing and apparel using their …
Tryly.ai Virtual Try-On for WooCommerce
tryly-ai-virtual-try-on-for-woocommerce
Transform your fashion store with virtual try-on technology. Let customers see how clothes look on them before buying - boost sales, reduce returns!
SpecFit-Virtual Try On Woocommerce Developer Profile
2 plugins · 80 total installs
How We Detect SpecFit-Virtual Try On Woocommerce
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/eyewear_virtual_try_on_wordpress/css/eyewear_virtual_try_on_wordpress-admin.css/wp-content/plugins/eyewear_virtual_try_on_wordpress/js/eyewear_virtual_try_on_wordpress-admin.js/wp-content/plugins/eyewear_virtual_try_on_wordpress/js/load_core_function_specfit.js/wp-content/plugins/eyewear_virtual_try_on_wordpress/js/submitNewtryOnImages.js/wp-content/plugins/eyewear_virtual_try_on_wordpress/js/frame-size-manager.js/wp-content/plugins/eyewear_virtual_try_on_wordpress/js/admin-3d-viewer.js/wp-content/plugins/eyewear_virtual_try_on_wordpress/js/admin-3d-preview.jshttps://cdn.jsdelivr.net/npm/three@0.158.0/build/three.min.jseyewear_virtual_try_on_wordpress/css/eyewear_virtual_try_on_wordpress-admin.css?ver=eyewear_virtual_try_on_wordpress/js/eyewear_virtual_try_on_wordpress-admin.js?ver=eyewear_virtual_try_on_wordpress/js/load_core_function_specfit.js?ver=eyewear_virtual_try_on_wordpress/js/submitNewtryOnImages.js?ver=eyewear_virtual_try_on_wordpress/js/frame-size-manager.js?ver=eyewear_virtual_try_on_wordpress/js/admin-3d-viewer.js?ver=eyewear_virtual_try_on_wordpress/js/admin-3d-preview.js?ver=HTML / DOM Fingerprints
specfit_admin_container<!-- Start of SpecFit Admin Settings --><!-- End of SpecFit Admin Settings -->data-specfit-product-iddata-specfit-frame-datadata-specfit-texture-urlSpecFitAdminSpecFitViewersubmitNewType_specfit_Ajax/wp-json/specfit/v1/products/wp-json/specfit/v1/colors[specfit_try_on_button][specfit_product_viewer]