Does WCBoost – Wishlist have any unpatched vulnerabilities?

No. All known vulnerabilities in WCBoost – Wishlist have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WCBoost – Wishlist compatible with WordPress 6.9.4?

According to WordPress.org data, WCBoost – Wishlist 1.2.3 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is WCBoost – Wishlist compatible with PHP 7.0+?

WCBoost – Wishlist requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WCBoost – Wishlist updated?

WCBoost – Wishlist was last updated on Dec 15, 2025. Frequent updates are generally a positive security signal.

What is WCBoost – Wishlist's security score?

WCBoost – Wishlist has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WCBoost – Wishlist Security & Risk Analysis

wordpress.org/plugins/wcboost-wishlist

WCBoost - Wishlist lets shoppers create wishlists for later purchases, reminding them of desired items, driving repeat visits and boost sales.

30K active installs v1.2.3 PHP 7.0+ WP 4.5+ Updated Dec 15, 2025

e-commerceproductswishlistwoocommercewoocommerce-wishlist

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WCBoost – Wishlist Safe to Use in 2026?

Generally Safe

Score 100/100

WCBoost – Wishlist has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

Based on the static analysis and vulnerability history provided, the 'wcboost-wishlist' plugin version 1.2.3 exhibits a generally strong security posture. The code analysis reveals a minimal attack surface, with no unprotected AJAX handlers or REST API routes identified. The plugin demonstrates good practices in SQL query handling, with a high percentage of prepared statements, and robust output escaping, indicating a conscious effort to prevent common web vulnerabilities like SQL injection and Cross-Site Scripting (XSS). The absence of any recorded vulnerabilities (CVEs) and taint flows further supports this positive assessment.

However, while the plugin appears secure at first glance, the limited scope of the static analysis, particularly the zero taint flows analyzed, means potential vulnerabilities might have been missed. The presence of nonce and capability checks, while positive, would ideally be mapped against the identified entry points (shortcodes) to ensure they are correctly implemented and enforced for all relevant operations. Overall, 'wcboost-wishlist' v1.2.3 seems to be a well-developed plugin from a security perspective, but a more comprehensive taint analysis and verification of authorization checks on entry points would provide a higher degree of confidence.

Vulnerabilities

None known

WCBoost – Wishlist Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

WCBoost – Wishlist Code Analysis

Dangerous Functions

Raw SQL Queries

34 prepared

Unescaped Output

154 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

89% prepared38 total queries

Output Escaping

96% escaped160 total outputs

Attack Surface

WCBoost – Wishlist Attack Surface

Entry Points2

Unprotected0

Shortcodes 2

[wcboost_wishlist] includes\shortcodes.php:23

[wcboost_wishlist_button] includes\shortcodes.php:24

WordPress Hooks 84

actionadmin_initincludes\action-scheduler.php:23

actionwcboost_wishlist_cleanupincludes\action-scheduler.php:25

filterwoocommerce_get_settings_advancedincludes\admin\settings.php:29

actionwcboost_wishlist_installedincludes\admin\templates-notice.php:23

actioninitincludes\compatibility.php:27

filterwcboost_wishlist_item_keyincludes\compatibility.php:47

filteroption_wcboost_wishlist_page_idincludes\compatibility.php:50

filterwcboost_wishlist_hash_keyincludes\compatibility.php:53

actioncustomize_registerincludes\customizer\customizer.php:27

actioncustomize_controls_print_stylesincludes\customizer\customizer.php:28

actioncustomize_controls_print_scriptsincludes\customizer\customizer.php:29

actioncustomize_preview_initincludes\customizer\customizer.php:30

actionwp_loadedincludes\form-handler.php:22

actionwp_loadedincludes\form-handler.php:23

actionwp_loadedincludes\form-handler.php:24

actionwp_loadedincludes\form-handler.php:25

actionwp_loadedincludes\form-handler.php:26

actionwp_loadedincludes\form-handler.php:27

actionwp_loadedincludes\form-handler.php:28

actionwp_loadedincludes\form-handler.php:29

actionwoocommerce_add_to_cartincludes\form-handler.php:34

actionwoocommerce_new_order_itemincludes\form-handler.php:38

actionwpincludes\frontend.php:28

actionwpincludes\frontend.php:29

filterwp_robotsincludes\frontend.php:30

actioninitincludes\frontend.php:32

actionwp_enqueue_scriptsincludes\frontend.php:33

filterbody_classincludes\frontend.php:40

actionwcboost_wishlist_before_wishlistincludes\frontend.php:43

actionwcboost_wishlist_before_wishlistincludes\frontend.php:44

actionwcboost_wishlist_main_contentincludes\frontend.php:46

actionwcboost_wishlist_headerincludes\frontend.php:49

actionwcboost_wishlist_headerincludes\frontend.php:53

actionwcboost_wishlist_after_wishlistincludes\frontend.php:56

actionwcboost_wishlist_footerincludes\frontend.php:59

actionwcboost_wishlist_footerincludes\frontend.php:62

actionwoocommerce_before_single_productincludes\frontend.php:66

actionwoocommerce_after_shop_loop_itemincludes\frontend.php:73

actionwoocommerce_after_shop_loop_itemincludes\frontend.php:77

actionwcboost_wishlist_edit_form_actionsincludes\frontend.php:83

filterwcboost_wishlist_descriptionincludes\frontend.php:85

filterwcboost_wishlist_descriptionincludes\frontend.php:86

actionwcboost_wishlist_widget_buttonsincludes\frontend.php:89

filterdocument_title_partsincludes\frontend.php:92

filterthe_titleincludes\frontend.php:93

actionwoocommerce_single_product_summaryincludes\frontend.php:410

actionwoocommerce_single_product_summaryincludes\frontend.php:414

actionwoocommerce_before_add_to_cart_buttonincludes\frontend.php:419

actionwoocommerce_single_product_summaryincludes\frontend.php:421

actionwoocommerce_after_add_to_cart_buttonincludes\frontend.php:427

actionwoocommerce_single_product_summaryincludes\frontend.php:429

actionswitch_blogincludes\install.php:33

actioninitincludes\install.php:34

filterplugin_row_metaincludes\install.php:35

actionadmin_noticesincludes\install.php:36

actionload-post.phpincludes\integrations\elementor\elementor.php:35

actionelementor/editor/after_enqueue_stylesincludes\integrations\elementor\elementor.php:36

actionelementor/elements/categories_registeredincludes\integrations\elementor\elementor.php:38

actionelementor/widgets/registerincludes\integrations\elementor\elementor.php:39

actionplugins_loadedincludes\integrations\manager.php:31

actioninitincludes\plugin.php:186

actionadmin_initincludes\plugin.php:187

filterwoocommerce_data_storesincludes\plugin.php:189

filterwoocommerce_get_wishlist_page_idincludes\plugin.php:190

filterwoocommerce_get_settings_pagesincludes\plugin.php:192

actionwidgets_initincludes\plugin.php:194

actioninitincludes\query.php:37

actioninitincludes\query.php:38

filterquery_varsincludes\query.php:41

actionparse_requestincludes\query.php:42

actionwcboost_wishlist_add_itemincludes\session.php:31

actionwcboost_wishlist_removed_itemincludes\session.php:32

actionwpincludes\session.php:33

actionshutdownincludes\session.php:34

actionwp_loginincludes\session.php:37

actionwpincludes\session.php:38

actionadmin_initpackages\TemplatesStatus\Notice.php:24

actionswitch_themepackages\TemplatesStatus\Notice.php:25

actionadmin_print_stylespackages\TemplatesStatus\Notice.php:28

filterpre_set_transient_wc_system_status_theme_infopackages\TemplatesStatus\Status.php:26

actionswitch_themepackages\TemplatesStatus\Status.php:28

actionbefore_woocommerce_initwcboost-wishlist.php:45

actionplugins_loadedwcboost-wishlist.php:72

actionwoocommerce_loadedwcboost-wishlist.php:89

Maintenance & Trust

WCBoost – Wishlist Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 15, 2025

PHP min version7.0

Downloads309K

Community Trust

Rating0/100

Number of ratings0

Active installs30K

Alternatives

WCBoost – Wishlist Alternatives

Wishlist for WooCommerce

wt-woocommerce-wishlist

This WooCommerce wishlist plugin adds a wishlist feature to your WooCommerce store. Let the users easily add and manage products from their wishlist p …

800 1 CVE

Premmerce Wishlist for WooCommerce

premmerce-woocommerce-wishlist

This plugin provides the possibility for your customers to create wishlists with the further possibility to share them with friends.

200 3 CVEs

Wishlist and Compare for WooCommerce

wishlist-and-compare

Enhance your WooCommerce store with our Wishlist & Compare Plugin. Let customers save favorite products and compare features for informed decisions.

100 1 CVE

Productive Commerce – Wishlist, Compare, Quick View, & MiniCart

productive-commerce

Integrate Wishlists, Product Comparison, Quick View, and Mini-Cart on your WooCommerce sites.

40 1 unpatched

PBO Move to Wishlist for YITH WooCommerce Wishlist

pbo-move-to-wishlist-for-yith-woocommerce-wishlist

PBO Move to Wishlist for YITH WooCommerce Wishlist is a simple solution for adding functionality called 'Move to Wishlist' to Shopping Cart.

10 No CVEs

Developer Profile

WCBoost – Wishlist Developer Profile

WCBoost

3 plugins · 100K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WCBoost – Wishlist

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wcboost-wishlist/assets/css/admin/customizer.css/wp-content/plugins/wcboost-wishlist/assets/css/frontend/wishlist.css/wp-content/plugins/wcboost-wishlist/assets/js/admin/customizer.js/wp-content/plugins/wcboost-wishlist/assets/js/frontend/wishlist.js

Script Paths

/wp-content/plugins/wcboost-wishlist/assets/js/admin/customizer.js/wp-content/plugins/wcboost-wishlist/assets/js/frontend/wishlist.js

Version Parameters

/wp-content/plugins/wcboost-wishlist/assets/css/admin/customizer.css?ver=/wp-content/plugins/wcboost-wishlist/assets/css/frontend/wishlist.css?ver=/wp-content/plugins/wcboost-wishlist/assets/js/admin/customizer.js?ver=/wp-content/plugins/wcboost-wishlist/assets/js/frontend/wishlist.js?ver=

HTML / DOM Fingerprints

CSS Classes

wcboost-wishlist-pagewcboost-wishlist-tablewcboost-wishlist-buttonwcboost-add-to-wishlist

HTML Comments

Data Attributes

data-wcboost-wishlist-add-to-cart-textdata-wcboost-wishlist-remove-text

JS Globals

wcboost_wishlist_customizer_params

Shortcode Output

[wcboost_wishlist][wcboost_wishlist_button]

FAQ