IMS Woo Ajax Cart Count Security & Risk Analysis
wordpress.org/plugins/woo-ajax-cart-countWoo Ajax Cart Count plugin allow you to show cart total any where in website, by simply place a shortcode.
Is IMS Woo Ajax Cart Count Safe to Use in 2026?
Generally Safe
Score 100/100IMS Woo Ajax Cart Count has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "woo-ajax-cart-count" plugin version 1.4.2 exhibits a generally positive security posture based on the static analysis provided. There are no detected dangerous functions, SQL queries are all prepared, and no external HTTP requests or file operations are observed. The limited attack surface is also a strong point, with no AJAX handlers or REST API routes that are unprotected.
However, a significant concern arises from the complete lack of output escaping. With 11 outputs identified and 0% properly escaped, this indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities. Attackers could potentially inject malicious scripts through user-supplied data that is then displayed on the frontend without proper sanitization. Furthermore, the absence of nonce checks and capability checks on the single shortcode entry point is a notable weakness. While the attack surface is small, the lack of these fundamental security measures means that the shortcode could be exploited by unauthorized users or through cross-site request forgery (CSRF).
The plugin's vulnerability history is clean, with no recorded CVEs. This suggests that the developers have a track record of producing secure code or that the plugin hasn't been a target for in-depth security research. Nevertheless, the presence of unescaped output and missing authorization checks on the shortcode are critical oversights that should be addressed to maintain a robust security posture.
Key Concerns
- Unescaped output
- Missing nonce checks on shortcode
- Missing capability checks on shortcode
IMS Woo Ajax Cart Count Security Vulnerabilities
IMS Woo Ajax Cart Count Code Analysis
Output Escaping
IMS Woo Ajax Cart Count Attack Surface
Shortcodes 1
WordPress Hooks 10
Maintenance & Trust
IMS Woo Ajax Cart Count Maintenance & Trust
Maintenance Signals
Community Trust
IMS Woo Ajax Cart Count Alternatives
Direct Checkout for WooCommerce
woocommerce-direct-checkout
Formerly "WooCommerce Direct Checkout". This plugin simplifies the entire WooCommerce checkout process to improve your sales rate.
Ajax add to cart for WooCommerce
woo-ajax-add-to-cart
Ajax add to cart for WooCommerce products
Advance Side Cart, Ajax Cart & Floating Cart for WooCommerce
th-all-in-one-woo-cart
Enhance your Cart for WooCommerce with a modern side cart and floating cart. Improve shopping experience with a fast, Ajax-powered shopping cart.
Mini Ajax Cart for WooCommerce
mini-ajax-woo-cart
Mini Ajax Cart adds a sticky shopping cart on your WooCommerce store.
Minicart for WooCommerce
woo-minicart
The simple plugin to add a minicart on your WooCommerce store. Choose from multiple cart icons, adjust position, and optionally use the shortcode.
IMS Woo Ajax Cart Count Developer Profile
7 plugins · 340 total installs
How We Detect IMS Woo Ajax Cart Count
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/woo-ajax-cart-count/admin/css/ace-woo-ajax-cart-count-admin.css/wp-content/plugins/woo-ajax-cart-count/admin/js/ace-woo-ajax-cart-count-admin.jshttps://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.7.2/css/all.min.cssace-woo-ajax-cart-count-admin.css?ver=ace-woo-ajax-cart-count-admin.js?ver=HTML / DOM Fingerprints
ace-woo-ajax-cart-count-adminaceAjaxCartCountSettingThis function is provided for demonstration purposes only.An instance of this class should be passed to the run() functiondefined in Ace_Woo_Ajax_Cart_Count_Loader as all of the hooks are definedin that particular class.+3 moreaceAjaxCartCountSettingaceAjaxCartCount