WP-Safety

WC Force Pass Security & Risk Analysis

wordpress.org/plugins/wc-force-pass

This plugin allows users to enroll with weak passwords in stores using the WooCommerce.

70 active installs v1.0.2 PHP + WP 4.0+ Updated Jul 29, 2016
passwordregisterstorewoocommerce
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is WC Force Pass Safe to Use in 2026?

Generally Safe

Score 85/100

WC Force Pass has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago
Risk Assessment

Based on the provided static analysis and vulnerability history, the 'wc-force-pass' v1.0.2 plugin exhibits an exceptionally strong security posture. The static analysis reveals no identifiable attack surface through common WordPress entry points like AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, the code demonstrates excellent security practices, with no dangerous functions, no SQL queries requiring sanitization, all output properly escaped, and no file operations or external HTTP requests. The absence of nonce checks and capability checks, while not ideal for granular control, doesn't immediately present a risk given the lack of an attack surface. The vulnerability history is also completely clear, with no known CVEs ever recorded for this plugin.

Vulnerabilities
None known

WC Force Pass Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

WC Force Pass Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0
Attack Surface

WC Force Pass Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 5
actionplugins_loadedwc-force-pass.php:54
actionwp_enqueue_scriptswc-force-pass.php:57
actionwp_print_scriptswc-force-pass.php:60
filterwoocommerce_min_password_strengthwc-force-pass.php:63
actionplugins_loadedwc-force-pass.php:117
Maintenance & Trust

WC Force Pass Maintenance & Trust

Maintenance Signals

WordPress version tested4.5.33
Last updatedJul 29, 2016
PHP min version
Downloads2K

Community Trust

Rating100/100
Number of ratings2
Active installs70
Alternatives

WC Force Pass Alternatives

OpenPOS Lite – Point of Sale for WooCommerce

OpenPOS Lite – Point of Sale for WooCommerce

wpos-lite-version

A
99

OpenPOS Lite is a powerful and extendable Point of Sale (POS) plugin for WooCommerce, designed to seamlessly connect your online and offline sales.

50 1 CVE
Password Protected Site and Store

Password Protected Site and Store

password-protected-site-and-store

A
100

This is a great plugin for securing your WordPress Site. Easily set passwords to restrict access to the site and WooCommerce products.

40 No CVEs
Download Monitor

Download Monitor

download-monitor

B
82

Powerful Download Manager Plugin for WordPress

90K 26 CVEs
Theme My Login

Theme My Login

theme-my-login

A
95

The ultimate login branding solution! Theme My Login offers matchless customization of your WordPress user experience!

60K 4 CVEs
Login & Register Customizer – Popup | Slider | Inline | WooCommerce

Login & Register Customizer – Popup | Slider | Inline | WooCommerce

easy-login-woocommerce

A
94

Replace your old login/registration form with an interactive popup & inline form design

40K 6 CVEs
Developer Profile

WC Force Pass Developer Profile

Leo Baiano

7 plugins · 840 total installs

85
trust score
Avg Security Score
87/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect WC Force Pass

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wc-force-pass/main.js
Script Paths
/wp-content/plugins/wc-force-pass/main.js

HTML / DOM Fingerprints

FAQ

Frequently Asked Questions about WC Force Pass