WP-Safety

WPC Linked Variation for WooCommerce Security & Risk Analysis

wordpress.org/plugins/wpc-linked-variation

WPC Linked Variation is built to link separate products together by attributes.

3K active installs v4.3.9 PHP + WP 4.0+ Updated Feb 25, 2026
linked-variationsvariationwoocommercewpc
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is WPC Linked Variation for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

WPC Linked Variation for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The wpc-linked-variation v4.4.0 plugin exhibits a generally good security posture, with no known vulnerabilities and a strong adherence to secure coding practices like prepared statements for SQL and a high percentage of properly escaped output. The plugin also demonstrates a good number of nonce and capability checks, indicating an awareness of common security pitfalls. However, there are specific areas that warrant attention. The presence of `unserialize` is a potential risk, as it can lead to object injection vulnerabilities if not handled with extreme caution and proper input sanitization. Furthermore, one unprotected AJAX handler represents a significant attack surface that could be exploited by unauthenticated users to trigger unintended actions within the plugin. The plugin's lack of recorded historical vulnerabilities is a positive sign, suggesting a generally secure development lifecycle, but it does not negate the risks identified in the current code analysis.

Key Concerns

  • Unprotected AJAX handler
  • Use of unserialize function
Vulnerabilities
None known

WPC Linked Variation for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

WPC Linked Variation for WooCommerce Code Analysis

Dangerous Functions
3
Raw SQL Queries
0
0 prepared
Unescaped Output
18
178 escaped
Nonce Checks
8
Capability Checks
2
File Operations
0
External Requests
3
Bundled Libraries
0

Dangerous Functions Found

unserialize$plugins = unserialize( $response['body'] );includes\dashboard\wpc-dashboard.php:101
unserialize$plugins = unserialize( $response['body'] );includes\dashboard\wpc-dashboard.php:179
unserialize$plugins = unserialize( $response['body'] );includes\kit\wpc-kit.php:98

Output Escaping

91% escaped196 total outputs
Data Flows
All sanitized

Data Flow Analysis

3 flows
ajax_export (includes\dashboard\wpc-dashboard.php:215)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

WPC Linked Variation for WooCommerce Attack Surface

Entry Points7
Unprotected1

AJAX Handlers 6

authwp_ajax_wpc_get_pluginsincludes\dashboard\wpc-dashboard.php:9
authwp_ajax_wpc_get_suggestionincludes\dashboard\wpc-dashboard.php:10
authwp_ajax_wpc_exportincludes\dashboard\wpc-dashboard.php:11
authwp_ajax_wpc_importincludes\dashboard\wpc-dashboard.php:12
authwp_ajax_wpc_get_essential_kitincludes\kit\wpc-kit.php:22
authwp_ajax_wpclv_search_termwpc-linked-variation.php:121

Shortcodes 1

[wpclv] wpc-linked-variation.php:159
WordPress Hooks 31
actionadmin_enqueue_scriptsincludes\dashboard\wpc-dashboard.php:7
actionadmin_menuincludes\dashboard\wpc-dashboard.php:8
actionbefore_woocommerce_initincludes\hpos.php:7
actionadmin_enqueue_scriptsincludes\kit\wpc-kit.php:20
actionadmin_menuincludes\kit\wpc-kit.php:21
actionadmin_initincludes\log\wpc-log.php:6
actionplugins_loadedwpc-linked-variation.php:39
actionadmin_noticeswpc-linked-variation.php:43
actioninitwpc-linked-variation.php:67
actionadd_meta_boxeswpc-linked-variation.php:70
actionsave_post_wpclvwpc-linked-variation.php:71
filtermanage_edit-wpclv_columnswpc-linked-variation.php:74
actionmanage_wpclv_posts_custom_columnwpc-linked-variation.php:75
actionwp_enqueue_scriptswpc-linked-variation.php:77
actionadmin_enqueue_scriptswpc-linked-variation.php:78
actionadmin_initwpc-linked-variation.php:79
filterpre_update_optionwpc-linked-variation.php:80
actionadmin_menuwpc-linked-variation.php:81
actionwoocommerce_single_product_summarywpc-linked-variation.php:85
actionwoocommerce_single_product_summarywpc-linked-variation.php:88
actionwoocommerce_single_product_summarywpc-linked-variation.php:91
actionwoocommerce_single_product_summarywpc-linked-variation.php:94
actionwoocommerce_single_product_summarywpc-linked-variation.php:97
actionwoocommerce_after_shop_loop_itemwpc-linked-variation.php:103
actionwoocommerce_after_shop_loop_itemwpc-linked-variation.php:106
actionwoocommerce_after_shop_loop_item_titlewpc-linked-variation.php:109
actionwoocommerce_after_shop_loop_item_titlewpc-linked-variation.php:112
filterplugin_action_linkswpc-linked-variation.php:117
filterplugin_row_metawpc-linked-variation.php:118
actionwc_ajax_wpclv_load_contentwpc-linked-variation.php:122
filterwpcsm_locationswpc-linked-variation.php:125
Maintenance & Trust

WPC Linked Variation for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 25, 2026
PHP min version
Downloads60K

Community Trust

Rating94/100
Number of ratings14
Active installs3K
Alternatives

WPC Linked Variation for WooCommerce Alternatives

WPC Variation Swatches for WooCommerce

WPC Variation Swatches for WooCommerce

wpc-variation-swatches

A
100

WPC Variation Swatches is a beautiful color, image, radio and buttons variation swatches for WooCommerce product attributes.

7K No CVEs
WPC Variations Radio Buttons for WooCommerce

WPC Variations Radio Buttons for WooCommerce

wpc-variations-radio-buttons

A
100

WPC Variations Radio Buttons will replace dropdown select with radio buttons for the buyer easier in selecting the variations.

7K No CVEs
WPC Show Single Variations for WooCommerce

WPC Show Single Variations for WooCommerce

wpc-show-single-variations

A
100

WPC Show Single Variations helps you show all variations as single products on the archive pages.

1K No CVEs
WPC Variation Bulk Editor for WooCommerce

WPC Variation Bulk Editor for WooCommerce

wpc-variation-bulk-editor

A
100

WPC Variation Bulk Editor helps you save precious time working on variations.

1K No CVEs
WPC Additional Variation Images for WooCommerce

WPC Additional Variation Images for WooCommerce

wpc-additional-variation-images

A
100

WPC Additional Variation Images allows users to configure a distinct set of images per variation of variable products.

700 No CVEs
Developer Profile

WPC Linked Variation for WooCommerce Developer Profile

WPClever

71 plugins · 441K total installs

87
trust score
Avg Security Score
99/100
Avg Patch Time
68 days
View full developer profile
Detection Fingerprints

How We Detect WPC Linked Variation for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wpc-linked-variation/assets/css/wpclv.css/wp-content/plugins/wpc-linked-variation/assets/js/wpclv.js/wp-content/plugins/wpc-linked-variation/assets/js/frontend.js/wp-content/plugins/wpc-linked-variation/assets/js/backend.js
Script Paths
/wp-content/plugins/wpc-linked-variation/assets/css/wpclv.css/wp-content/plugins/wpc-linked-variation/assets/js/wpclv.js/wp-content/plugins/wpc-linked-variation/assets/js/frontend.js/wp-content/plugins/wpc-linked-variation/assets/js/backend.js
Version Parameters
wpc-linked-variation/assets/css/wpclv.css?ver=wpc-linked-variation/assets/js/wpclv.js?ver=wpc-linked-variation/assets/js/frontend.js?ver=wpc-linked-variation/assets/js/backend.js?ver=

HTML / DOM Fingerprints

CSS Classes
wpclv-frontendwpclv-archive
Data Attributes
data-wpclv-iddata-wpclv-product-id
JS Globals
wpclv_params
Shortcode Output
[wpclv
FAQ

Frequently Asked Questions about WPC Linked Variation for WooCommerce