Does Ultimate Downloadable Products for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Ultimate Downloadable Products for WooCommerce compatible with WordPress 6.7.5?

According to WordPress.org data, Ultimate Downloadable Products for WooCommerce 1.3.4 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Ultimate Downloadable Products for WooCommerce compatible with PHP 7.1+?

Ultimate Downloadable Products for WooCommerce requires PHP 7.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is Ultimate Downloadable Products for WooCommerce's security score?

Ultimate Downloadable Products for WooCommerce has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Ultimate Downloadable Products for WooCommerce Security & Risk Analysis

wordpress.org/plugins/ultimate-downloadable-products-for-woocommerce

Ultimate Downloadable Products for WooCommerce plugin enables to display downloadable files on a product page.

50 active installs v1.3.4 PHP 7.1+ WP 4.7+ Updated Jan 27, 2025

downloadse-commercewoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Ultimate Downloadable Products for WooCommerce Safe to Use in 2026?

Generally Safe

Score 92/100

Ultimate Downloadable Products for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The plugin 'ultimate-downloadable-products-for-woocommerce' v1.3.4 exhibits a generally good security posture based on the provided static analysis. It demonstrates a strong adherence to secure coding practices by not utilizing dangerous functions, performing all SQL queries using prepared statements, and not engaging in file operations or external HTTP requests. The presence of nonce and capability checks indicates an effort to protect against common web vulnerabilities. However, a significant concern arises from the low percentage of properly escaped output. With 36% properly escaped, this leaves a substantial portion of outputs potentially vulnerable to cross-site scripting (XSS) attacks, especially considering the one identified shortcode which serves as a potential entry point for user-supplied data.

Key Concerns

Low percentage of properly escaped output
Bundled library Freemius v1.0 might be outdated

Vulnerabilities

None known

Ultimate Downloadable Products for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Ultimate Downloadable Products for WooCommerce Release Timeline

v1.3.4Current

v1.3.3

v1.3.1

Code Analysis

Analyzed Mar 16, 2026

Ultimate Downloadable Products for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

16 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Freemius1.0

Output Escaping

36% escaped44 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

2 flows

ULTIMATE_DOWNLOADABLE_PRODUCTS_options_page (ultimate-downloadable-products-for-woocommerce.admin.php:7)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Ultimate Downloadable Products for WooCommerce Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[ultimate-downloadable-list] ultimate-downloadable-products-for-woocommerce.php:168

WordPress Hooks 12

actionadmin_initultimate-downloadable-products-for-woocommerce.php:41

actionadmin_noticesultimate-downloadable-products-for-woocommerce.php:42

actionadmin_initultimate-downloadable-products-for-woocommerce.php:59

actionadmin_noticesultimate-downloadable-products-for-woocommerce.php:60

filterwoocommerce_product_tabsultimate-downloadable-products-for-woocommerce.php:310

actionadmin_footerultimate-downloadable-products-for-woocommerce.php:437

actionwp_enqueue_scriptsultimate-downloadable-products-for-woocommerce.php:452

actionadmin_enqueue_scriptsultimate-downloadable-products-for-woocommerce.php:473

actionwp_enqueue_scriptsultimate-downloadable-products-for-woocommerce.php:474

filteradmin_menuultimate-downloadable-products-for-woocommerce.php:491

filterplugin_action_linksultimate-downloadable-products-for-woocommerce.php:507

actionplugins_loadedultimate-downloadable-products-for-woocommerce.php:562

Maintenance & Trust

Ultimate Downloadable Products for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedJan 27, 2025

PHP min version7.1

Downloads5K

Community Trust

Rating100/100

Number of ratings4

Active installs50

Alternatives

Ultimate Downloadable Products for WooCommerce Alternatives

Product Filter for WooCommerce by WBW

woo-product-filter

Filter products by categories, attributes, prices, and more. Elementor Compatibility. Shoppers easily find products with WooCommerce Product Filter

60K 9 CVEs

WCBoost – Wishlist

wcboost-wishlist

100

WCBoost - Wishlist lets shoppers create wishlists for later purchases, reminding them of desired items, driving repeat visits and boost sales.

40K No CVEs

Klarna for WooCommerce

klarna-payments-for-woocommerce

100

Grow your business for increased sales and enhanced shopping experiences at no extra costs.

30K 1 CVE

Conversion Tracking for WooCommerce

woocommerce-conversion-tracking

Adds various conversion tracking codes to cart, checkout, registration success and product page on WooCommerce

20K 4 CVEs

Amazon Pay for WooCommerce

woocommerce-gateway-amazon-payments-advanced

100

Install the Amazon Pay plugin for your WooCommerce store and take advantage of a seamless checkout experience

20K 1 CVE

Developer Profile

Ultimate Downloadable Products for WooCommerce Developer Profile

ethereumicoio

7 plugins · 280 total installs

trust score

Avg Security Score

94/100

Avg Patch Time

1 days

View full developer profile

Detection Fingerprints

How We Detect Ultimate Downloadable Products for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ultimate-downloadable-products-for-woocommerce/asset/css/style.css/wp-content/plugins/ultimate-downloadable-products-for-woocommerce/asset/js/script.js/wp-content/plugins/ultimate-downloadable-products-for-woocommerce/asset/js/select2/js/select2.min.js

Script Paths

/wp-content/plugins/ultimate-downloadable-products-for-woocommerce/vendor/freemius/wordpress-sdk/start.php

Version Parameters

ultimate-downloadable-products-for-woocommerce/asset/css/style.css?ver=ultimate-downloadable-products-for-woocommerce/asset/js/script.js?ver=ultimate-downloadable-products-for-woocommerce/asset/js/select2/js/select2.min.js?ver=

HTML / DOM Fingerprints

HTML Comments

Data Attributes

data-ultimatedownloadable_product_iddata-ultimatedownloadable_download_id

JS Globals

ULTIMATE_DOWNLOADABLE_PRODUCTS_plugin_basenameULTIMATE_DOWNLOADABLE_PRODUCTS_plugin_dirULTIMATE_DOWNLOADABLE_PRODUCTS_plugin_url_pathULTIMATE_DOWNLOADABLE_PRODUCTS_product

Shortcode Output

<div class="ultimate-downloadable-products-for-woocommerce-product-wrap">

FAQ