WP-Safety

Custom Add to Cart Button Label and Link for WooCommerce Security & Risk Analysis

wordpress.org/plugins/woo-custom-cart-button

Custom Add to Cart Button Label and Link for WooCommerce is the ultimate plugin to personalize your WooCommerce store's add to cart experience.

3K active installs v2.0 PHP 8.0+ WP 6.5+ Updated Aug 29, 2025
affiliate-button-woocommercechange-add-to-cart-textcustom-cart-buttoncustom-product-buttonwoocommerce-custom-add-to-cart-button
99
A · Safe
CVEs total1
Unpatched0
Last CVEOct 15, 2024
Plugin page Download
Safety Verdict

Is Custom Add to Cart Button Label and Link for WooCommerce Safe to Use in 2026?

Generally Safe

Score 99/100

Custom Add to Cart Button Label and Link for WooCommerce has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Oct 15, 2024Updated 7mo ago
Risk Assessment

The plugin "woo-custom-cart-button" v2.0 exhibits a generally good security posture with several strengths, including the complete absence of raw SQL queries and a high percentage of properly escaped outputs. The plugin also demonstrates a commitment to security through the implementation of nonce and capability checks, and a lack of external HTTP requests or file operations. The limited attack surface, with no unprotected entry points identified in the static analysis, further contributes to its positive security standing.

However, the presence of the `unserialize` function is a notable concern. While the static analysis did not reveal any direct taint flows stemming from this function, its use inherently introduces a risk of deserialization vulnerabilities if the input is not strictly controlled and sanitized. Furthermore, the plugin has a history of a past medium-severity vulnerability, specifically Cross-site Scripting, which, although currently patched, indicates that such issues have existed in its codebase. This past vulnerability, combined with the inherent risk of `unserialize`, warrants careful consideration despite the overall positive static analysis findings.

Key Concerns

  • Use of dangerous function (unserialize)
  • History of medium severity vulnerability (XSS)
Vulnerabilities
1

Custom Add to Cart Button Label and Link for WooCommerce Security Vulnerabilities

CVEs by Year

1 CVE in 2024
2024
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2024-49296medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Custom Add to Cart Button Label and Link <= 1.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

Oct 15, 2024 Patched in 1.6.2 (301d)
Code Analysis
Analyzed Mar 16, 2026

Custom Add to Cart Button Label and Link for WooCommerce Code Analysis

Dangerous Functions
2
Raw SQL Queries
0
0 prepared
Unescaped Output
137
467 escaped
Nonce Checks
2
Capability Checks
3
File Operations
0
External Requests
0
Bundled Libraries
0

Dangerous Functions Found

unserialize$btn_name = unserialize($btn_label);catcbll.php:107
unserialize$btn_act = unserialize($btn_url);catcbll.php:111

Output Escaping

77% escaped604 total outputs
Attack Surface

Custom Add to Cart Button Label and Link for WooCommerce Attack Surface

Entry Points2
Unprotected0

AJAX Handlers 1

authwp_ajax_catcbll_save_optioninclude\functions.php:38

Shortcodes 1

[catcbll] include\wcatcbll_shortcode.php:179
WordPress Hooks 37
actionbefore_woocommerce_initcatcbll.php:66
actioninitcatcbll.php:79
actionadmin_initcatcbll.php:89
actionadmin_initcatcbll.php:121
filterplugin_row_metacatcbll.php:223
filterplugin_row_metacatcbll.php:237
actioninitcatcbll.php:325
actionwoocommerce_before_single_product_summarycatcbll.php:346
actionwp_default_scriptscatcbll.php:362
actionplugins_loadedinclude\elementor\class-catcbll-elementor-widgets.php:73
actionadmin_noticesinclude\elementor\class-catcbll-elementor-widgets.php:92
actionadmin_noticesinclude\elementor\class-catcbll-elementor-widgets.php:98
actionadmin_noticesinclude\elementor\class-catcbll-elementor-widgets.php:104
actionadmin_noticesinclude\elementor\class-catcbll-elementor-widgets.php:110
actionelementor/widgets/registerinclude\elementor\class-catcbll-elementor-widgets.php:115
actionelementor/elements/categories_registeredinclude\elementor\class-catcbll-elementor-widgets.php:116
actionadmin_menuinclude\functions.php:7
actionadmin_headinclude\functions.php:85
actionadmin_enqueue_scriptsinclude\wcatcbll_inscrpt.php:41
actionadmin_enqueue_scriptsinclude\wcatcbll_inscrpt.php:61
actionwp_enqueue_scriptsinclude\wcatcbll_inscrpt.php:72
actionadd_meta_boxesinclude\wcatcbll_metabox.php:7
actionsave_postinclude\wcatcbll_metabox.php:172
filtermce_external_pluginsinclude\wcatcbll_shortcode.php:7
filtermce_buttonsinclude\wcatcbll_shortcode.php:8
actionadmin_headinclude\wcatcbll_shortcode.php:11
actionwidgets_initinclude\wcatcbll_widget.php:6
actionafter_setup_themepublic\wcatcbll_archive.php:114
actionwoocommerce_after_shop_loop_itempublic\wcatcbll_archive.php:120
actionocean_after_archive_product_innerpublic\wcatcbll_archive.php:123
filterocean_woo_product_elements_positioningpublic\wcatcbll_archive.php:124
actionwoocommerce_after_shop_loop_itempublic\wcatcbll_archive.php:131
actionocean_before_single_product_metapublic\wcatcbll_single_product.php:135
filterocean_woo_summary_elements_positioningpublic\wcatcbll_single_product.php:137
actionwoocommerce_single_variationpublic\wcatcbll_single_product.php:151
actionwoocommerce_single_product_summarypublic\wcatcbll_single_product.php:153
actionwoocommerce_before_single_product_summarypublic\wcatcbll_single_product.php:156
Maintenance & Trust

Custom Add to Cart Button Label and Link for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedAug 29, 2025
PHP min version8.0
Downloads82K

Community Trust

Rating92/100
Number of ratings27
Active installs3K
Alternatives

Custom Add to Cart Button Label and Link for WooCommerce Alternatives

NS Custom Add To Cart Button For Woocommerce

NS Custom Add To Cart Button For Woocommerce

ns-custom-add-to-cart-button-for-woocoomerce

A
85

This plugin help to change add to cart button text with no code required!

10 No CVEs
Remove Add to cart

Remove Add to cart

woo-options

A
85

Woocommerce basic configurations, Disable add to cart Show message insetd of add to cart button Remove Add to cart Chnage Add to cart text Proceed to &hellip;

10 No CVEs
Developer Profile

Custom Add to Cart Button Label and Link for WooCommerce Developer Profile

JC

8 plugins · 5K total installs

78
trust score
Avg Security Score
99/100
Avg Patch Time
183 days
View full developer profile
Detection Fingerprints

How We Detect Custom Add to Cart Button Label and Link for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/woo-custom-cart-button/assets/css/catcbll_admin_style.css/wp-content/plugins/woo-custom-cart-button/assets/css/catcbll_style.css/wp-content/plugins/woo-custom-cart-button/assets/js/catcbll_backend.js/wp-content/plugins/woo-custom-cart-button/assets/js/catcbll_frontend.js
Script Paths
/wp-content/plugins/woo-custom-cart-button/assets/js/catcbll_backend.js/wp-content/plugins/woo-custom-cart-button/assets/js/catcbll_frontend.js
Version Parameters
/wp-content/plugins/woo-custom-cart-button/assets/css/catcbll_admin_style.css?ver=/wp-content/plugins/woo-custom-cart-button/assets/css/catcbll_style.css?ver=/wp-content/plugins/woo-custom-cart-button/assets/js/catcbll_backend.js?ver=/wp-content/plugins/woo-custom-cart-button/assets/js/catcbll_frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
wcatcbll_btn_add_to_cart
Data Attributes
data-catcbll-btn-bgdata-catcbll-btn-fclrdata-catcbll-btn-sizedata-catcbll-btn-shapedata-catcbll-btn-icondata-catcbll-btn-border+8 more
JS Globals
wc_atcbll_ajax_object
FAQ

Frequently Asked Questions about Custom Add to Cart Button Label and Link for WooCommerce