WP-Safety

Donation Platform for WooCommerce: Fundraising & Donation Management Security & Risk Analysis

wordpress.org/plugins/wc-donation-platform

Open source donation system for your fundraising that supports recurring donations and more

7K active installs v1.4.0 PHP 7.1+ WP 5.8+ Updated Feb 6, 2026
charitydonationfundraisingrecurring-donationwoocommerce-donation
100
A · Safe
CVEs total1
Unpatched0
Last CVEMay 31, 2023
Plugin page Download
Safety Verdict

Is Donation Platform for WooCommerce: Fundraising & Donation Management Safe to Use in 2026?

Generally Safe

Score 100/100

Donation Platform for WooCommerce: Fundraising & Donation Management has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

1 known CVELast CVE: May 31, 2023Updated 3mo ago
Risk Assessment

The wc-donation-platform plugin v1.4.0 demonstrates a generally good security posture with several strengths. The static analysis reveals no dangerous functions and a high percentage of SQL queries utilizing prepared statements, indicating a conscious effort to prevent SQL injection. Nonce and capability checks are present on most entry points, and the output escaping rate is reasonably high. However, a single flow with unsanitized paths was detected, which, while not classified as critical or high severity, warrants attention as it could potentially be exploited. The plugin's vulnerability history shows one medium-severity CVE related to Cross-Site Request Forgery (CSRF) in the past, which has since been patched. This suggests the developers are responsive to security issues, but the presence of past CSRF vulnerabilities highlights a potential area of weakness that should be monitored. Overall, the plugin has a decent foundation for security, but the identified taint flow and historical CSRF issue indicate that ongoing vigilance and thorough code reviews are advisable.

Key Concerns

  • Flow with unsanitized path identified in taint analysis
  • One medium severity CVE historically
Vulnerabilities
1 published

Donation Platform for WooCommerce: Fundraising & Donation Management Security Vulnerabilities

CVEs by Year

1 CVE in 2023
2023
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

WF-3c8602ed-6c0d-4357-93e6-bab1ab38ffb2-wc-donation-platformmedium · 4.3Cross-Site Request Forgery (CSRF)

Donation Platform for WooCommerce: Fundraising & Donation Management <= 1.2.9 - Cross-Site Request Forgery to Survey Submission

May 31, 2023 Patched in 1.2.10 (237d)
Version History

Donation Platform for WooCommerce: Fundraising & Donation Management Release Timeline

v1.4.0Current
v1.3.4.1
v1.3.4
v1.3.3
v1.3.2
v1.3.1
v1.3.0
v1.2.10
v1.2.91 CVE
WF-3c8602ed-6c0d-4357-93e6-bab1ab38ffb2-wc-donation-platform
v1.2.81 CVE
WF-3c8602ed-6c0d-4357-93e6-bab1ab38ffb2-wc-donation-platform
v1.2.71 CVE
WF-3c8602ed-6c0d-4357-93e6-bab1ab38ffb2-wc-donation-platform
v1.2.61 CVE
WF-3c8602ed-6c0d-4357-93e6-bab1ab38ffb2-wc-donation-platform
v1.2.51 CVE
WF-3c8602ed-6c0d-4357-93e6-bab1ab38ffb2-wc-donation-platform
v1.2.41 CVE
WF-3c8602ed-6c0d-4357-93e6-bab1ab38ffb2-wc-donation-platform
v1.2.31 CVE
WF-3c8602ed-6c0d-4357-93e6-bab1ab38ffb2-wc-donation-platform
v1.2.21 CVE
WF-3c8602ed-6c0d-4357-93e6-bab1ab38ffb2-wc-donation-platform
v1.2.11 CVE
WF-3c8602ed-6c0d-4357-93e6-bab1ab38ffb2-wc-donation-platform
v1.2.01 CVE
WF-3c8602ed-6c0d-4357-93e6-bab1ab38ffb2-wc-donation-platform
v1.1.41 CVE
WF-3c8602ed-6c0d-4357-93e6-bab1ab38ffb2-wc-donation-platform
v1.1.31 CVE
WF-3c8602ed-6c0d-4357-93e6-bab1ab38ffb2-wc-donation-platform
Code Analysis
Analyzed Mar 16, 2026

Donation Platform for WooCommerce: Fundraising & Donation Management Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
8 prepared
Unescaped Output
200
835 escaped
Nonce Checks
5
Capability Checks
8
File Operations
1
External Requests
1
Bundled Libraries
0

SQL Query Safety

89% prepared9 total queries

Output Escaping

81% escaped1035 total outputs
Data Flows · Security
1 unsanitized

Data Flow Analysis

1 flows1 with unsanitized paths
<wcdp_step_1_amount> (includes\templates\wcdp_step_1_amount.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Donation Platform for WooCommerce: Fundraising & Donation Management Attack Surface

Entry Points8
Unprotected0

AJAX Handlers 4

authwp_ajax_wcdp_ajax_donation_calculationincludes\class-wcdp-form.php:23
noprivwp_ajax_wcdp_ajax_donation_calculationincludes\class-wcdp-form.php:24
authwp_ajax_wcdp_clear_cacheincludes\class-wcdp-general-settings.php:18
authwp_ajax_wcdp_feedback_surveyincludes\class-wcdp_feedback.php:28

Shortcodes 4

[wcdp_donation_form] includes\class-wcdp-form.php:14
[wcdp_progress] includes\class-wcdp-progress.php:19
[wcdp_order_counter] includes\class-wcdp-progress.php:22
[wcdp_leaderboard] includes\class-wcdp_leaderboard.php:21
WordPress Hooks 90
actionwoocommerce_cart_calculate_feesincludes\class-wcdp-fee-recovery.php:22
actionwoocommerce_admin_field_wcdp_fee_recoveryincludes\class-wcdp-fee-recovery.php:23
actionwp_enqueue_scriptsincludes\class-wcdp-form.php:17
actioninitincludes\class-wcdp-form.php:20
actionwp_loadedincludes\class-wcdp-form.php:27
actionwp_footerincludes\class-wcdp-form.php:150
filterwoocommerce_settings_tabs_arrayincludes\class-wcdp-general-settings.php:13
actionwoocommerce_settings_tabs_wc-donation-platformincludes\class-wcdp-general-settings.php:14
actionwoocommerce_update_options_wc-donation-platformincludes\class-wcdp-general-settings.php:15
actionwoocommerce_update_options_advancedincludes\class-wcdp-general-settings.php:16
actionwoocommerce_admin_field_wcdp_clear_cache_buttonincludes\class-wcdp-general-settings.php:17
actionwoocommerce_admin_field_wcdp_leaderboard_jsincludes\class-wcdp-general-settings.php:19
actionadmin_initincludes\class-wcdp-general-settings.php:22
actionupgrader_process_completeincludes\class-wcdp-general-settings.php:25
filterwc_get_templateincludes\class-wcdp-hooks.php:16
filterwoocommerce_is_checkoutincludes\class-wcdp-hooks.php:19
filterwoocommerce_order_button_htmlincludes\class-wcdp-hooks.php:22
filterwoocommerce_endpoint_orders_titleincludes\class-wcdp-hooks.php:27
filterwoocommerce_account_menu_itemsincludes\class-wcdp-hooks.php:30
filterwoocommerce_order_button_textincludes\class-wcdp-hooks.php:33
filterwoocommerce_account_orders_columnsincludes\class-wcdp-hooks.php:36
filterwoocommerce_checkout_fieldsincludes\class-wcdp-hooks.php:39
filterwoocommerce_order_item_quantity_htmlincludes\class-wcdp-hooks.php:42
actionwoocommerce_product_related_products_headingincludes\class-wcdp-hooks.php:45
filterwoocommerce_product_add_to_cart_textincludes\class-wcdp-hooks.php:48
filterwoocommerce_loop_add_to_cart_linkincludes\class-wcdp-hooks.php:52
filterwoocommerce_checkout_redirect_empty_cartincludes\class-wcdp-hooks.php:55
filterwoocommerce_checkout_update_order_review_expiredincludes\class-wcdp-hooks.php:58
filterwoocommerce_valid_order_statuses_for_order_againincludes\class-wcdp-hooks.php:61
actionwoocommerce_before_calculate_totalsincludes\class-wcdp-hooks.php:64
filterwoocommerce_cart_item_priceincludes\class-wcdp-hooks.php:67
actionwoocommerce_before_checkout_formincludes\class-wcdp-hooks.php:70
actionwpincludes\class-wcdp-hooks.php:73
filterwoocommerce_enable_order_notes_fieldincludes\class-wcdp-hooks.php:77
filterwoocommerce_order_item_needs_processingincludes\class-wcdp-hooks.php:81
actionwoocommerce_new_order_itemincludes\class-wcdp-hooks.php:84
actionadmin_menuincludes\class-wcdp-hooks.php:87
filterwoocommerce_product_data_tabsincludes\class-wcdp-product-settings.php:17
actionwoocommerce_product_data_panelsincludes\class-wcdp-product-settings.php:20
actionwoocommerce_process_product_metaincludes\class-wcdp-product-settings.php:23
filterproduct_type_optionsincludes\class-wcdp-product-settings.php:26
actionsave_post_productincludes\class-wcdp-product-settings.php:29
actionwoocommerce_analytics_update_productincludes\class-wcdp-progress.php:25
actionadmin_initincludes\class-wcdp-progress.php:28
actionadmin_footerincludes\class-wcdp_feedback.php:25
actioncurrent_screenincludes\class-wcdp_feedback.php:34
actionadmin_noticesincludes\class-wcdp_feedback.php:37
actionwoocommerce_analytics_update_productincludes\class-wcdp_leaderboard.php:24
actionwoocommerce_checkout_create_orderincludes\class-wcdp_leaderboard.php:32
actionwoocommerce_order_details_after_customer_detailsincludes\class-wcdp_leaderboard.php:35
actionupdated_post_metaincludes\class-wcdp_leaderboard.php:39
actionadded_post_metaincludes\class-wcdp_leaderboard.php:40
filterwoocommerce_cart_get_cart_contents_totalincludes\integrations\class-wcdp-integrator.php:20
filterwoocommerce_cart_needs_paymentincludes\integrations\class-wcdp-integrator.php:23
filterwcdp_update_product_revenueincludes\integrations\class-wcdp-integrator.php:64
filterwoocommerce_add_cart_item_dataincludes\integrations\express-checkout\class-wcdp-express-checkout.php:17
filterwoocommerce_add_cart_item_dataincludes\integrations\express-checkout\class-wcdp-express-checkout.php:20
filterwoocommerce_product_variation_get_priceincludes\integrations\express-checkout\class-wcdp-express-checkout.php:23
filterwoocommerce_product_get_priceincludes\integrations\express-checkout\class-wcdp-express-checkout.php:24
actionwcdp_express_checkout_headingincludes\integrations\express-checkout\class-wcdp-express-checkout.php:28
actionwcdp_express_checkout_amount_variationincludes\integrations\express-checkout\class-wcdp-express-checkout.php:31
filterwc_stripe_payment_request_total_label_suffixincludes\integrations\express-checkout\class-wcdp-express-checkout.php:34
actionwc_stripe_product_payment_methodsincludes\integrations\express-checkout\class-wcdp-express-checkout.php:36
filterwps_sfw_cart_data_for_susbcriptionincludes\integrations\subscriptions-for-woocommerce\class-wcdp-subscriptions-for-woocommerce.php:17
filterwc_get_templateincludes\integrations\subscriptions-for-woocommerce\class-wcdp-subscriptions-for-woocommerce.php:21
filterwoocommerce_account_menu_itemsincludes\integrations\subscriptions-for-woocommerce\class-wcdp-subscriptions-for-woocommerce.php:24
filterwps_sfw_check_pro_pluginincludes\integrations\subscriptions-for-woocommerce\class-wcdp-subscriptions-for-woocommerce.php:27
filterwps_rbpfw_cart_priceincludes\integrations\subscriptions-for-woocommerce\class-wcdp-subscriptions-for-woocommerce.php:29
filterwpo_wcpdf_template_pathsincludes\integrations\woocommerce-pdf-invoices-packing-slips\class-wcdp-pdf-Invoices.php:22
filterwpo_wcpdf_filenameincludes\integrations\woocommerce-pdf-invoices-packing-slips\class-wcdp-pdf-Invoices.php:25
filterwpo_wcpdf_document_classesincludes\integrations\woocommerce-pdf-invoices-packing-slips\class-wcdp-pdf-Invoices.php:28
filterwpo_wcpdf_document_titleincludes\integrations\woocommerce-pdf-invoices-packing-slips\class-wcdp-pdf-Invoices.php:31
filterwpo_wcpdf_paper_orientationincludes\integrations\woocommerce-pdf-invoices-packing-slips\class-wcdp-thank-you-certificate.php:72
filterwpo_wcpdf_attach_documentsincludes\integrations\woocommerce-pdf-invoices-packing-slips\class-wcdp-thank-you-certificate.php:74
filterwpo_wcpdf_myaccount_actionsincludes\integrations\woocommerce-pdf-invoices-packing-slips\class-wcdp-thank-you-certificate.php:77
filterwpo_wcpdf_custom_attachment_conditionincludes\integrations\woocommerce-pdf-invoices-packing-slips\class-wcdp-thank-you-certificate.php:83
filterwoocommerce_is_subscriptionincludes\integrations\woocommerce-subscriptions\class-wcdp-subscriptions.php:19
filterwc_get_templateincludes\integrations\woocommerce-subscriptions\class-wcdp-subscriptions.php:22
filterwoocommerce_account_menu_itemsincludes\integrations\woocommerce-subscriptions\class-wcdp-subscriptions.php:26
filterwoocommerce_add_messageincludes\integrations\woocommerce-subscriptions\class-wcdp-subscriptions.php:29
filterwoocommerce_subscriptions_thank_you_messageincludes\integrations\woocommerce-subscriptions\class-wcdp-subscriptions.php:32
filterwoocommerce_subscriptions_can_item_be_switched_by_userincludes\integrations\woocommerce-subscriptions\class-wcdp-subscriptions.php:37
filterwoocommerce_order_item_meta_endincludes\integrations\woocommerce-subscriptions\templates\emails\plain\admin-new-switch-order.php:40
filterwoocommerce_order_shipping_to_display_shipped_viaincludes\wc-templates\emails\email-order-details.php:41
filterwoocommerce_order_shipping_to_display_shipped_viaincludes\wc-templates\emails\plain\email-order-details.php:27
filterplugin_row_metawc-donation-platform.php:66
actionadmin_noticeswc-donation-platform.php:169
actionplugins_loadedwc-donation-platform.php:172
actionbefore_woocommerce_initwc-donation-platform.php:183
actioninitwc-donation-platform.php:235
Maintenance & Trust

Donation Platform for WooCommerce: Fundraising & Donation Management Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 6, 2026
PHP min version7.1
Downloads83K

Community Trust

Rating98/100
Number of ratings94
Active installs7K
Alternatives

Donation Platform for WooCommerce: Fundraising & Donation Management Alternatives

Kudos Donations: Easy Donations with Mollie | One-off & Recurring | PDF Invoices | Buttons & Forms

Kudos Donations: Easy Donations with Mollie | One-off & Recurring | PDF Invoices | Buttons & Forms

kudos-donations

A
97

Add a donation button to any page on your website. Easy & fast setup. Works with Mollie payments.

100 3 CVEs
GiveWP – Donation Plugin and Fundraising Platform

GiveWP – Donation Plugin and Fundraising Platform

give

B
76

Accept donations and begin fundraising with GiveWP, the highest rated WordPress donation plugin for online giving.

100K 72 CVEs
Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More

Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More

charitable

B
80

The best WordPress donation plugin. Create fundraising donation forms, accept recurring donations, easy donor management, add crowdfunding, and more.

10K 16 CVEs
Better Payment – Instant Payments, Donations, Fundraising with Subscriptions & More

Better Payment – Instant Payments, Donations, Fundraising with Subscriptions & More

better-payment

A
100

Better Payment allows you to automate payment transactions to manage payments, donations, subscriptions, sell products, etc on your Elementor website.

6K No CVEs
Leyka

Leyka

leyka

D
38

Leyka is a plugin for crowdfunding and donations collection via WordPress website.

2K 2 unpatched
Developer Profile

Donation Platform for WooCommerce: Fundraising & Donation Management Developer Profile

Jonas

1 plugin · 7K total installs

79
trust score
Avg Security Score
100/100
Avg Patch Time
237 days
View full developer profile
Detection Fingerprints

How We Detect Donation Platform for WooCommerce: Fundraising & Donation Management

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wc-donation-platform/assets/css/wcdp-donation-form.css/wp-content/plugins/wc-donation-platform/assets/css/wcdp-progress.css/wp-content/plugins/wc-donation-platform/assets/css/wcdp-leaderboard.css/wp-content/plugins/wc-donation-platform/assets/js/wcdp-donation-form.js/wp-content/plugins/wc-donation-platform/assets/js/wcdp-progress.js/wp-content/plugins/wc-donation-platform/assets/js/wcdp-leaderboard.js
Script Paths
/wp-content/plugins/wc-donation-platform/assets/js/wcdp-donation-form.js/wp-content/plugins/wc-donation-platform/assets/js/wcdp-progress.js/wp-content/plugins/wc-donation-platform/assets/js/wcdp-leaderboard.js
Version Parameters
wc-donation-platform/assets/css/wcdp-donation-form.css?ver=wc-donation-platform/assets/css/wcdp-progress.css?ver=wc-donation-platform/assets/css/wcdp-leaderboard.css?ver=wc-donation-platform/assets/js/wcdp-donation-form.js?ver=wc-donation-platform/assets/js/wcdp-progress.js?ver=wc-donation-platform/assets/js/wcdp-leaderboard.js?ver=

HTML / DOM Fingerprints

CSS Classes
wcdp-donation-formwcdp-progress-bar-containerwcdp-leaderboard-table
HTML Comments
<!-- WCDP Donation Form --><!-- Fundraising Progress --><!-- WCDP Leaderboard -->
Data Attributes
data-wcdp-donation-iddata-wcdp-progress-target
JS Globals
wcdp_donation_form_paramswcdp_progress_paramswcdp_leaderboard_params
REST Endpoints
/wp-json/wc-donation-platform/v1/submit-donation
Shortcode Output
[wcdp_donation_form][wcdp_progress_bar][wcdp_leaderboard]
FAQ

Frequently Asked Questions about Donation Platform for WooCommerce: Fundraising & Donation Management