Does R+L Carriers Shipping Rates for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in R+L Carriers Shipping Rates for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is R+L Carriers Shipping Rates for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, R+L Carriers Shipping Rates for WooCommerce 2.0.3 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is R+L Carriers Shipping Rates for WooCommerce compatible with PHP 7.4+?

R+L Carriers Shipping Rates for WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is R+L Carriers Shipping Rates for WooCommerce updated?

R+L Carriers Shipping Rates for WooCommerce was last updated on Jan 5, 2026. Frequent updates are generally a positive security signal.

What is R+L Carriers Shipping Rates for WooCommerce's security score?

R+L Carriers Shipping Rates for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

R+L Carriers Shipping Rates for WooCommerce Security & Risk Analysis

wordpress.org/plugins/woo-shipping-method-rl-carriers

The R+L Carriers Shipping Plugin adds your R+L Carriers shipping rates to WooCommerce cart and checkout pages.

100 active installs v2.0.3 PHP 7.4+ WP 6.0+ Updated Jan 5, 2026

freightltlrl-carriersshippingwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is R+L Carriers Shipping Rates for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

R+L Carriers Shipping Rates for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The "woo-shipping-method-rl-carriers" plugin v2.0.3 presents a mixed security posture. On the positive side, it has no recorded CVEs, indicating a generally stable security history. The static analysis shows no dangerous functions and a decent percentage of SQL queries using prepared statements. However, significant concerns arise from the attack surface analysis. All four identified AJAX handlers lack authentication checks, creating a substantial risk for unauthorized actions. Furthermore, the taint analysis reveals two flows with unsanitized paths, categorized as high severity, which is a critical finding that could lead to code execution or data manipulation vulnerabilities. The low percentage of properly escaped output (53%) is also a concern, increasing the risk of cross-site scripting (XSS) vulnerabilities.

While the plugin has no known CVEs, the presence of unprotected AJAX endpoints and high-severity unsanitized taint flows suggests potential vulnerabilities that may not have been publicly disclosed or addressed. The lack of nonce checks on AJAX handlers further exacerbates the risk of CSRF attacks. The plugin demonstrates some good practices in SQL handling, but the significant gaps in authentication and output sanitization, coupled with the critical taint flows, necessitate immediate attention and remediation to mitigate potential security breaches.

Key Concerns

Unprotected AJAX handlers
High severity unsanitized taint flows
Low percentage of output escaping
Missing nonce checks on AJAX

Vulnerabilities

None known

R+L Carriers Shipping Rates for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

R+L Carriers Shipping Rates for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

16 prepared

Unescaped Output

87 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

80% prepared20 total queries

Output Escaping

53% escaped163 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

checkout_store_order_shipments (woocommerce-shipping-rlc.php:1092)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

R+L Carriers Shipping Rates for WooCommerce Attack Surface

Entry Points4

Unprotected4

AJAX Handlers 4

authwp_ajax_reset_shippingwoocommerce-shipping-rlc.php:193

noprivwp_ajax_reset_shippingwoocommerce-shipping-rlc.php:194

authwp_ajax_itemized_rateswoocommerce-shipping-rlc.php:195

noprivwp_ajax_itemized_rateswoocommerce-shipping-rlc.php:196

WordPress Hooks 30

actionadmin_noticesincludes\classes\RLC_RateQuote.php:485

actionwoocommerce_review_order_before_shippingincludes\classes\WC_Shipping_RLC.php:285

actionwoocommerce_review_order_after_shippingincludes\classes\WC_Shipping_RLC.php:288

actionadmin_menuwoocommerce-shipping-rlc.php:123

actionadmin_initwoocommerce-shipping-rlc.php:125

actionadmin_enqueue_scriptswoocommerce-shipping-rlc.php:130

actionwp_enqueue_scriptswoocommerce-shipping-rlc.php:131

actionwoocommerce_shipping_initwoocommerce-shipping-rlc.php:134

filterwoocommerce_shipping_methodswoocommerce-shipping-rlc.php:135

filterwoocommerce_package_rateswoocommerce-shipping-rlc.php:136

actionwoocommerce_checkout_update_order_metawoocommerce-shipping-rlc.php:140

actionwoocommerce_get_order_item_totalswoocommerce-shipping-rlc.php:142

filterwoocommerce_form_field_checkboxwoocommerce-shipping-rlc.php:147

filterwoocommerce_checkout_fieldswoocommerce-shipping-rlc.php:148

actionwoocommerce_checkout_after_customer_detailswoocommerce-shipping-rlc.php:149

actionwoocommerce_product_options_shippingwoocommerce-shipping-rlc.php:154

actionwoocommerce_process_product_metawoocommerce-shipping-rlc.php:155

actionwoocommerce_product_after_variable_attributeswoocommerce-shipping-rlc.php:156

actionwoocommerce_save_product_variationwoocommerce-shipping-rlc.php:157

actionwoocommerce_cart_updatedwoocommerce-shipping-rlc.php:159

actionwoocommerce_checkout_order_processedwoocommerce-shipping-rlc.php:178

actionwoocommerce_process_product_metawoocommerce-shipping-rlc.php:185

actionwoocommerce_product_options_shippingwoocommerce-shipping-rlc.php:186

actionwoocommerce_product_after_variable_attributeswoocommerce-shipping-rlc.php:187

actionwoocommerce_product_after_variable_attributes_jswoocommerce-shipping-rlc.php:188

actionwoocommerce_save_product_variationwoocommerce-shipping-rlc.php:189

actionwoocommerce_admin_order_items_after_shippingwoocommerce-shipping-rlc.php:199

filterwoocommerce_hidden_order_itemmetawoocommerce-shipping-rlc.php:201

actionbefore_woocommerce_initwoocommerce-shipping-rlc.php:203

filtershipping_class_filterwoocommerce-shipping-rlc.php:210

Maintenance & Trust

R+L Carriers Shipping Rates for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 5, 2026

PHP min version7.4

Downloads7K

Community Trust

Rating0/100

Number of ratings0

Active installs100

Alternatives

R+L Carriers Shipping Rates for WooCommerce Alternatives

Freight Shipping Quote – Simplify Shipping Cost Requests

freight-shipping-quote

100

Freight Shipping Quote allow your customer to request a custom shipping quote before checkout for freight shipping.

200 No CVEs

LTL Freight Quotes – Worldwide Express Edition

ltl-freight-quotes-worldwide-express-edition

Real-time LTL freight quotes from Worldwide Express. Fifteen day free trial.

100 4 CVEs

LTL Freight Quotes – FreightQuote Edition

ltl-freight-quotes-freightquote-edition

Real-time LTL freight quotes from FreightQuote. Fifteen day free trial.

70 2 CVEs

LTL Freight Quotes – XPO Edition

ltl-freight-quotes-xpo-edition

Real-time LTL freight quotes from XPO Logistics. Fifteen day free trial.

60 1 CVE

LTL Freight Quotes – Unishippers Edition

ltl-freight-quotes-unishippers-edition

Real-time Unishippers freight quotes from Unishippers. Fifteen day free trial.

50 3 CVEs

Developer Profile

R+L Carriers Shipping Rates for WooCommerce Developer Profile

R+L Carriers

1 plugin · 100 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect R+L Carriers Shipping Rates for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/woo-shipping-method-rl-carriers/assets/css/admin.css/wp-content/plugins/woo-shipping-method-rl-carriers/assets/css/frontend.css/wp-content/plugins/woo-shipping-method-rl-carriers/assets/js/admin.js/wp-content/plugins/woo-shipping-method-rl-carriers/assets/js/frontend.js/wp-content/plugins/woo-shipping-method-rl-carriers/assets/js/vendor/jquery-ui.min.js/wp-content/plugins/woo-shipping-method-rl-carriers/assets/js/vendor/select2.full.min.js/wp-content/plugins/woo-shipping-method-rl-carriers/assets/css/vendor/select2.min.css

Script Paths

/wp-content/plugins/woo-shipping-method-rl-carriers/assets/js/admin.js/wp-content/plugins/woo-shipping-method-rl-carriers/assets/js/frontend.js/wp-content/plugins/woo-shipping-method-rl-carriers/assets/js/vendor/jquery-ui.min.js/wp-content/plugins/woo-shipping-method-rl-carriers/assets/js/vendor/select2.full.min.js

Version Parameters

woo-shipping-method-rl-carriers/assets/css/admin.css?ver=woo-shipping-method-rl-carriers/assets/css/frontend.css?ver=woo-shipping-method-rl-carriers/assets/js/admin.js?ver=woo-shipping-method-rl-carriers/assets/js/frontend.js?ver=woo-shipping-method-rl-carriers/assets/js/vendor/jquery-ui.min.js?ver=woo-shipping-method-rl-carriers/assets/js/vendor/select2.full.min.js?ver=woo-shipping-method-rl-carriers/assets/css/vendor/select2.min.css?ver=

HTML / DOM Fingerprints

CSS Classes

rlc_accessorial_options

Data Attributes

data-rlc-product-hazmat-options

JS Globals

wc_rlc_optionswc_rlc_params

FAQ