Does Digital Goods (Checkout Field Editor) for WooCommerce Checkout have any unpatched vulnerabilities?

No. All known vulnerabilities in Digital Goods (Checkout Field Editor) for WooCommerce Checkout have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Digital Goods (Checkout Field Editor) for WooCommerce Checkout compatible with WordPress 6.8.5?

According to WordPress.org data, Digital Goods (Checkout Field Editor) for WooCommerce Checkout 3.8.3 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Security & Risk Analysis

wordpress.org/plugins/woo-checkout-for-digital-goods

This plugin will remove billing address fields for downloadable and virtual products.

4K active installs v3.8.3 PHP 7.2+ WP 5.0+ Updated Jul 18, 2025

checkout-field-editorcheckout-for-digital-goodscustom-fieldsremove-checkout-fieldswoocommerce-checkout

A · Safe

CVEs total1

Unpatched0

Last CVEJun 3, 2018

Plugin page Download

Safety Verdict

Is Digital Goods (Checkout Field Editor) for WooCommerce Checkout Safe to Use in 2026?

Generally Safe

Score 100/100

Digital Goods (Checkout Field Editor) for WooCommerce Checkout has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Jun 3, 2018Updated 8mo ago

Risk Assessment

The "woo-checkout-for-digital-goods" plugin v3.8.3 exhibits a mixed security posture. While the absence of dangerous functions, 100% prepared SQL statements, and a low number of external HTTP requests are positive signs, significant concerns remain. The plugin has a total of one entry point, and critically, this single AJAX handler lacks authentication checks. This unprotected entry point presents a direct avenue for attackers to potentially interact with the plugin's functionality without proper authorization.

The vulnerability history shows one medium-severity CVE, identified as Cross-Site Request Forgery (CSRF), last patched in 2018. While there are no currently unpatched vulnerabilities, the past presence of CSRF, even at a medium level, highlights a historical weakness in handling user interactions securely. The taint analysis found no critical or high severity unsanitized flows, which is reassuring, but it analyzed only one flow, suggesting a limited scope of analysis or minimal complexity in this area.

In conclusion, the plugin demonstrates some good security practices, particularly with its SQL handling. However, the unprotected AJAX handler is a severe oversight that significantly elevates the risk. The outdated vulnerability history, while patched, serves as a reminder that the plugin may have had past security weaknesses. The overall risk is moderate, primarily due to the single, unprotected AJAX entry point.

Key Concerns

Unprotected AJAX handler
Bundled outdated Freemius library
Past medium severity CVE (CSRF)

Vulnerabilities

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Security Vulnerabilities

CVEs by Year

1 CVE in 2018

2018

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2018-11633medium · 6.5Cross-Site Request Forgery (CSRF)

Digital Goods < 2.2 - Cross-Site Request Forgery

Jun 3, 2018 Patched in 2.2 (2060d)

Code Analysis

Analyzed Mar 16, 2026

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

281 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2Freemius1.0

Output Escaping

84% escaped333 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<wcdg-general-setting> (admin\partials\wcdg-general-setting.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_wcdg_plugin_setup_wizard_submitincludes\class-woo-checkout-for-digital-goods.php:219

WordPress Hooks 44

filterplugin_row_metaincludes\class-woo-checkout-for-digital-goods.php:72

actionplugins_loadedincludes\class-woo-checkout-for-digital-goods.php:128

actionwp_enqueue_scriptsincludes\class-woo-checkout-for-digital-goods.php:140

actionwp_enqueue_scriptsincludes\class-woo-checkout-for-digital-goods.php:141

filterwoocommerce_get_country_locale_defaultincludes\class-woo-checkout-for-digital-goods.php:146

filterwoocommerce_get_country_locale_baseincludes\class-woo-checkout-for-digital-goods.php:147

filterwoocommerce_checkout_fieldsincludes\class-woo-checkout-for-digital-goods.php:148

filterwoocommerce_get_country_localeincludes\class-woo-checkout-for-digital-goods.php:155

filterwoocommerce_localisation_address_formatsincludes\class-woo-checkout-for-digital-goods.php:161

actionwoocommerce_blocks_checkout_block_registrationincludes\class-woo-checkout-for-digital-goods.php:162

actionwoocommerce_after_add_to_cart_buttonincludes\class-woo-checkout-for-digital-goods.php:170

actionwoocommerce_after_shop_loop_itemincludes\class-woo-checkout-for-digital-goods.php:174

filterwoocommerce_product_single_add_to_cart_textincludes\class-woo-checkout-for-digital-goods.php:181

filterwoocommerce_product_add_to_cart_textincludes\class-woo-checkout-for-digital-goods.php:188

filterwoocommerce_thankyouincludes\class-woo-checkout-for-digital-goods.php:195

actionadmin_enqueue_scriptsincludes\class-woo-checkout-for-digital-goods.php:208

actionadmin_enqueue_scriptsincludes\class-woo-checkout-for-digital-goods.php:209

actionactivated_pluginincludes\class-woo-checkout-for-digital-goods.php:210

actionadmin_menuincludes\class-woo-checkout-for-digital-goods.php:211

actionadmin_headincludes\class-woo-checkout-for-digital-goods.php:212

actionadmin_headincludes\class-woo-checkout-for-digital-goods.php:218

actionadmin_initincludes\class-woo-checkout-for-digital-goods.php:220

filteradmin_footer_textincludes\class-woo-checkout-for-digital-goods.php:223

filterwoocommerce_email_order_meta_fieldspublic\class-woo-checkout-for-digital-goods-public.php:53

actionwoocommerce_order_details_after_customer_detailspublic\class-woo-checkout-for-digital-goods-public.php:78

actionwoocommerce_admin_order_data_after_billing_addresspublic\class-woo-checkout-for-digital-goods-public.php:96

actionwoocommerce_checkout_update_order_metapublic\class-woo-checkout-for-digital-goods-public.php:112

actionwoocommerce_checkout_create_orderpublic\class-woo-checkout-for-digital-goods-public.php:137

filterwoocommerce_cart_needs_shipping_addresspublic\class-woo-checkout-for-digital-goods-public.php:259

filterwoocommerce_enable_order_notes_fieldpublic\class-woo-checkout-for-digital-goods-public.php:263

filterwoocommerce_default_address_fieldspublic\class-woo-checkout-for-digital-goods-public.php:813

filterwoocommerce_form_field_checkboxpublic\class-woo-checkout-for-digital-goods-public.php:835

actionadmin_initwoo-checkout-for-digital-goods.php:113

filterhide_account_tabswoo-checkout-for-digital-goods.php:171

actionafter_account_detailswoo-checkout-for-digital-goods.php:184

actionhide_billing_and_payments_infowoo-checkout-for-digital-goods.php:196

actionhide_freemius_powered_bywoo-checkout-for-digital-goods.php:208

actionconnect/beforewoo-checkout-for-digital-goods.php:229

actionconnect/afterwoo-checkout-for-digital-goods.php:241

actionplugins_loadedwoo-checkout-for-digital-goods.php:243

actionadmin_noticeswoo-checkout-for-digital-goods.php:257

actionadmin_noticeswoo-checkout-for-digital-goods.php:263

actionwoocommerce_thankyouwoo-checkout-for-digital-goods.php:278

actionbefore_woocommerce_initwoo-checkout-for-digital-goods.php:332

Maintenance & Trust

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJul 18, 2025

PHP min version7.2

Downloads188K

Community Trust

Rating90/100

Number of ratings41

Active installs4K

Alternatives

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Alternatives

Checkout Field Editor (Checkout Manager) for WooCommerce

woo-checkout-field-editor-pro

Checkout Field Editor (Checkout Manager) for WooCommerce – The best WooCommerce checkout manager plugin to manage WooCommerce checkout fields.

500K 3 CVEs

Custom WooCommerce Checkout Fields Editor

add-fields-to-checkout-page-woocommerce

Custom WooCommerce Checkout Fields Editor

2K 1 unpatched

Qodax Checkout Manager – Checkout Field Editor for WooCommerce

qodax-checkout-manager

100

Customize and manage checkout fields in your WooCommerce store with a simple and user-friendly interface.

400 No CVEs

Checkout Field Editor / Checkout Manager for WooCommerce

checkout-field-editor

100

Checkout Field Editor /Checkout Manager for WooCommerce - WooCommerce checkout editor plugin to manage your WooCommerce checkout fields.

10 No CVEs

All in one checkout page builder for woocommerce

all-in-one-checkout-page-builder-for-woocommerce

100

Build fully customized WooCommerce checkout pages with drag-and-drop controls, flexible layouts, and smart field management.

0 No CVEs

Developer Profile

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Developer Profile

dotsquares

37 plugins · 95K total installs

trust score

Avg Security Score

97/100

Avg Patch Time

470 days

View full developer profile

Detection Fingerprints

How We Detect Digital Goods (Checkout Field Editor) for WooCommerce Checkout

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/woo-checkout-for-digital-goods/admin/css/wcdg-admin-style.css/wp-content/plugins/woo-checkout-for-digital-goods/assets/css/wcdg-style.css/wp-content/plugins/woo-checkout-for-digital-goods/assets/js/wcdg-scripts.js

Script Paths

https://ps.w.org/woo-checkout-for-digital-goods/trunk/woo-checkout-for-digital-goods.phphttps://ps.w.org/woo-checkout-for-digital-goods/assets/js/wcdg-scripts.js?ver=3.8.3

Version Parameters

woo-checkout-for-digital-goods/assets/css/wcdg-style.css?ver=3.8.3woo-checkout-for-digital-goods/assets/js/wcdg-scripts.js?ver=3.8.3

HTML / DOM Fingerprints

CSS Classes

wcdg-admin-csswcdg-custom-style

HTML Comments

Data Attributes

data-wcdg-field-id

JS Globals

wcdg_vars

FAQ

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Security & Risk Analysis

Is Digital Goods (Checkout Field Editor) for WooCommerce Checkout Safe to Use in 2026?

Generally Safe

Key Concerns

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Security Vulnerabilities

CVEs by Year

Severity Breakdown

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Code Analysis

Bundled Libraries

Output Escaping

Data Flow Analysis

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Attack Surface

AJAX Handlers 1

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Maintenance & Trust

Maintenance Signals

Community Trust

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Alternatives

Checkout Field Editor (Checkout Manager) for WooCommerce

Custom WooCommerce Checkout Fields Editor

Qodax Checkout Manager – Checkout Field Editor for WooCommerce

Checkout Field Editor / Checkout Manager for WooCommerce

All in one checkout page builder for woocommerce

Digital Goods (Checkout Field Editor) for WooCommerce Checkout Developer Profile

How We Detect Digital Goods (Checkout Field Editor) for WooCommerce Checkout

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Digital Goods (Checkout Field Editor) for WooCommerce Checkout