WP-Safety

Donation Manager for WooCommerce – Effortlessly Collect & Manage Donations Security & Risk Analysis

wordpress.org/plugins/wc-donation-manager

Easily manage donations and effortlessly collect donation with WooCommerce.

10 active installs v1.1.1 PHP 7.4+ WP 5.2+ Updated Mar 12, 2026
charitabledonatedonationdonationshelp
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Donation Manager for WooCommerce – Effortlessly Collect & Manage Donations Safe to Use in 2026?

Generally Safe

Score 100/100

Donation Manager for WooCommerce – Effortlessly Collect & Manage Donations has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 23d ago
Risk Assessment

The "wc-donation-manager" plugin v1.1.1 presents a generally strong security posture, with excellent output escaping practices and a complete absence of identified taint flows, dangerous functions, file operations, and external HTTP requests. The plugin also appears to implement a commendable number of nonce checks and capability checks, which are crucial for protecting against common attack vectors. The lack of recorded vulnerabilities in its history further reinforces this positive outlook, suggesting a history of secure development and maintenance.

However, the static analysis does reveal a significant concern: one SQL query is present but is not using prepared statements. This is a critical oversight that could expose the plugin to SQL injection vulnerabilities, especially if the data used in this query originates from user input. While the overall attack surface appears minimal with no exposed AJAX handlers, REST API routes, shortcodes, or cron events without authentication, the presence of a single unparameterized SQL query remains a notable weakness.

In conclusion, the "wc-donation-manager" plugin demonstrates many good security practices, particularly in its handling of output and its limited attack surface. The absence of known vulnerabilities is a strong positive. The sole significant weakness lies in the non-prepared SQL query, which requires immediate attention. Addressing this specific issue would further solidify the plugin's security and mitigate a potentially severe risk.

Key Concerns

  • SQL query without prepared statements
Vulnerabilities
None known

Donation Manager for WooCommerce – Effortlessly Collect & Manage Donations Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Donation Manager for WooCommerce – Effortlessly Collect & Manage Donations Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
0 prepared
Unescaped Output
2
160 escaped
Nonce Checks
12
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

0% prepared1 total queries

Output Escaping

99% escaped162 total outputs
Attack Surface

Donation Manager for WooCommerce – Effortlessly Collect & Manage Donations Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 44
actionadmin_post_wcdm_add_campaignincludes\Admin\Actions.php:24
actionadmin_post_wcdm_edit_campaignincludes\Admin\Actions.php:25
actionwoocommerce_process_product_meta_donationincludes\Admin\Actions.php:26
actionadmin_enqueue_scriptsincludes\Admin\Admin.php:21
filterwoocommerce_screen_idsincludes\Admin\Admin.php:22
filteradmin_footer_textincludes\Admin\Admin.php:23
filterupdate_footerincludes\Admin\Admin.php:24
actionadmin_menuincludes\Admin\Menus.php:36
filterset-screen-optionincludes\Admin\Menus.php:37
actioncurrent_screenincludes\Admin\Menus.php:38
actionwc_donation_manager_campaigns_contentincludes\Admin\Menus.php:39
actionwc_donation_manager_donors_contentincludes\Admin\Menus.php:43
actionwc_donation_manager_settings_emails_contentincludes\Admin\Menus.php:44
actionwoocommerce_admin_field_wcdm_add_to_cart_btn_textincludes\Admin\Menus.php:45
filterwoocommerce_product_data_tabsincludes\Admin\Metaboxes.php:20
filterwoocommerce_product_options_general_product_dataincludes\Admin\Metaboxes.php:21
actionwoocommerce_product_data_panelsincludes\Admin\Metaboxes.php:22
actionadmin_footerincludes\Admin\Metaboxes.php:23
actionadmin_initincludes\Admin\Notices.php:20
filterproduct_type_selectorincludes\Donation\Donation.php:19
filterwoocommerce_product_classincludes\Donation\Donation.php:20
filterwoocommerce_get_cart_item_from_sessionincludes\Frontend\Cart.php:23
filterwoocommerce_cart_item_priceincludes\Frontend\Cart.php:24
filterwoocommerce_update_cart_action_cart_updatedincludes\Frontend\Cart.php:25
actionwoocommerce_before_cartincludes\Frontend\Frontend.php:23
actionwoocommerce_before_checkout_formincludes\Frontend\Frontend.php:24
actionwp_enqueue_scriptsincludes\Frontend\Frontend.php:25
filterwoocommerce_coupons_enabledincludes\Frontend\Frontend.php:40
actionwoocommerce_order_status_changedincludes\Frontend\Orders.php:23
actionwoocommerce_order_status_completedincludes\Frontend\Orders.php:24
filterwoocommerce_loop_add_to_cart_linkincludes\Frontend\Product.php:23
filterwoocommerce_get_price_htmlincludes\Frontend\Product.php:24
actionwoocommerce_before_add_to_cart_buttonincludes\Frontend\Product.php:25
actionwoocommerce_donation_add_to_cartincludes\Frontend\Product.php:26
filterwoocommerce_add_to_cart_redirectincludes\Frontend\Product.php:27
filterwoocommerce_add_cart_itemincludes\Frontend\Product.php:28
filterwc_add_to_cart_messageincludes\Frontend\Product.php:29
filterwoocommerce_add_to_cart_validationincludes\Frontend\Product.php:30
actioninitincludes\Installer.php:27
actionwcdm_run_update_callbackincludes\Installer.php:28
actionwcdm_update_db_versionincludes\Installer.php:29
actionbefore_woocommerce_initincludes\Plugin.php:65
actionwoocommerce_initincludes\Plugin.php:66
actioninitincludes\Plugin.php:106
Maintenance & Trust

Donation Manager for WooCommerce – Effortlessly Collect & Manage Donations Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 12, 2026
PHP min version7.4
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Donation Manager for WooCommerce – Effortlessly Collect & Manage Donations Alternatives

GiveWP – Donation Plugin and Fundraising Platform

GiveWP – Donation Plugin and Fundraising Platform

give

B
76

Accept donations and begin fundraising with GiveWP, the highest rated WordPress donation plugin for online giving.

100K 69 CVEs
Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More

Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More

charitable

B
80

The best WordPress donation plugin. Create fundraising donation forms, accept recurring donations, easy donor management, add crowdfunding, and more.

10K 14 CVEs
Potent Donations for WooCommerce

Potent Donations for WooCommerce

donations-for-woocommerce

A
92

Easily accept donations of varying amounts through your WooCommerce store.

2K 1 CVE
Charitable – Instamojo Payment Gateway

Charitable – Instamojo Payment Gateway

integrate-charitable-instamojo

A
92

Collect donations in INR via Debit Cards, Credit Cards, Net Banking, UPI, Wallets, EMI, NEFT, IMPS by integrating Instamojo Indian Payment Gateway.

200 No CVEs
CustomDonations – Donation, Membership, and Fundraising Forms with Stripe, PayPal and DAF Pay

CustomDonations – Donation, Membership, and Fundraising Forms with Stripe, PayPal and DAF Pay

customdonations

A
100

Best WordPress plugin for highly customizable and secure online giving forms. Drag & Drop form builder. No Coding. Official PayPal & Stripe Partner.

100 No CVEs
Developer Profile

Donation Manager for WooCommerce – Effortlessly Collect & Manage Donations Developer Profile

PluginEver

12 plugins · 14K total installs

78
trust score
Avg Security Score
99/100
Avg Patch Time
317 days
View full developer profile
Detection Fingerprints

How We Detect Donation Manager for WooCommerce – Effortlessly Collect & Manage Donations

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wc-donation-manager/css/admin.css/wp-content/plugins/wc-donation-manager/js/admin.js/wp-content/plugins/wc-donation-manager/css/frontend.css/wp-content/plugins/wc-donation-manager/js/frontend.js
Script Paths
/wp-content/plugins/wc-donation-manager/js/admin.js/wp-content/plugins/wc-donation-manager/js/frontend.js
Version Parameters
wc-donation-manager/css/admin.css?ver=wc-donation-manager/js/admin.js?ver=wc-donation-manager/css/frontend.css?ver=wc-donation-manager/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
wcdm-donation-formwcdm-donation-campaign
HTML Comments
<!-- Start of Donation Form --><!-- End of Donation Form --><!-- Start of Donation Campaign --><!-- End of Donation Campaign -->
Data Attributes
data-wcdm-donation-id
JS Globals
wcdm_admin_vars
Shortcode Output
[donation_form][donation_campaign]
FAQ

Frequently Asked Questions about Donation Manager for WooCommerce – Effortlessly Collect & Manage Donations