Does WPC Product Quantity for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in WPC Product Quantity for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is WPC Product Quantity for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, WPC Product Quantity for WooCommerce 5.1.6 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is WPC Product Quantity for WooCommerce updated?

WPC Product Quantity for WooCommerce was last updated on Mar 14, 2026. Frequent updates are generally a positive security signal.

What is WPC Product Quantity for WooCommerce's security score?

WPC Product Quantity for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WPC Product Quantity for WooCommerce Security & Risk Analysis

wordpress.org/plugins/wpc-product-quantity

WPC Product Quantity for WooCommerce is a handy plugin for fully controlling the quantity number of products in your online store.

2K active installs v5.1.6 PHP + WP 4.0+ Updated Mar 14, 2026

qtyquantitywoocommercewpc

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WPC Product Quantity for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

WPC Product Quantity for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 20d ago

Risk Assessment

The "wpc-product-quantity" v5.1.6 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by using prepared statements for all SQL queries and properly escaping a high percentage of its outputs. The absence of any recorded vulnerabilities or CVEs in its history is also a strong indicator of robust development. Furthermore, the presence of nonce checks for all identified AJAX handlers and capability checks on some entry points suggests an effort to secure sensitive operations.

However, there are notable areas of concern that detract from its overall security. The plugin exposes 7 AJAX handlers, with 2 of them lacking any authentication checks. This creates a significant attack surface where unauthorized users could potentially trigger unintended actions. The presence of the `unserialize` function, while not inherently a vulnerability, is a dangerous function that can lead to severe security issues if used with untrusted input. The lack of any recorded vulnerabilities in its history might also be due to a lack of previous rigorous security audits or that any past issues were minor and quickly patched, which doesn't guarantee future safety.

In conclusion, while "wpc-product-quantity" v5.1.6 has several strengths in its security implementation, the two unprotected AJAX endpoints represent a clear and present risk. Developers should prioritize patching these entry points with appropriate authentication and authorization mechanisms. The use of `unserialize` should be carefully reviewed to ensure it is not exposed to user-controlled data. Addressing these specific weaknesses would significantly improve the plugin's security posture.

Key Concerns

AJAX handlers without authentication checks
Use of dangerous function (unserialize)

Vulnerabilities

None known

WPC Product Quantity for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

WPC Product Quantity for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

260 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$plugins = unserialize( $response['body'] );includes\dashboard\wpc-dashboard.php:101

unserialize$plugins = unserialize( $response['body'] );includes\dashboard\wpc-dashboard.php:179

unserialize$plugins = unserialize( $response['body'] );includes\kit\wpc-kit.php:98

Output Escaping

95% escaped274 total outputs

Data Flows

All sanitized

Data Flow Analysis

5 flows

ajax_export (includes\dashboard\wpc-dashboard.php:215)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

WPC Product Quantity for WooCommerce Attack Surface

Entry Points7

Unprotected2

AJAX Handlers 7

authwp_ajax_wpc_get_pluginsincludes\dashboard\wpc-dashboard.php:9

authwp_ajax_wpc_get_suggestionincludes\dashboard\wpc-dashboard.php:10

authwp_ajax_wpc_exportincludes\dashboard\wpc-dashboard.php:11

authwp_ajax_wpc_importincludes\dashboard\wpc-dashboard.php:12

authwp_ajax_wpc_get_essential_kitincludes\kit\wpc-kit.php:22

authwp_ajax_woopq_search_termwpc-product-quantity.php:127

authwp_ajax_woopq_add_rulewpc-product-quantity.php:128

WordPress Hooks 35

actionadmin_enqueue_scriptsincludes\dashboard\wpc-dashboard.php:7

actionadmin_menuincludes\dashboard\wpc-dashboard.php:8

actionbefore_woocommerce_initincludes\hpos.php:7

actionadmin_enqueue_scriptsincludes\kit\wpc-kit.php:20

actionadmin_menuincludes\kit\wpc-kit.php:21

actionadmin_initincludes\log\wpc-log.php:6

actionplugins_loadedwpc-product-quantity.php:39

actionadmin_noticeswpc-product-quantity.php:43

actioninitwpc-product-quantity.php:64

actionadmin_enqueue_scriptswpc-product-quantity.php:67

actionwp_enqueue_scriptswpc-product-quantity.php:70

actionadmin_initwpc-product-quantity.php:73

filterpre_update_optionwpc-product-quantity.php:74

actionadmin_menuwpc-product-quantity.php:75

filterplugin_action_linkswpc-product-quantity.php:78

filterplugin_row_metawpc-product-quantity.php:79

filterwoocommerce_quantity_input_argswpc-product-quantity.php:82

filterwoocommerce_loop_add_to_cart_argswpc-product-quantity.php:83

filterwoocommerce_quantity_input_min_adminwpc-product-quantity.php:86

filterwoocommerce_quantity_input_step_adminwpc-product-quantity.php:87

filterwoocommerce_stock_amountwpc-product-quantity.php:95

filterwc_add_to_cart_message_htmlwpc-product-quantity.php:98

filterwoocommerce_rest_shop_order_schemawpc-product-quantity.php:101

filterwoocommerce_product_get_stock_statuswpc-product-quantity.php:105

filterwc_get_templatewpc-product-quantity.php:108

filterwoocommerce_add_to_cart_validationwpc-product-quantity.php:111

filterwoocommerce_product_data_tabswpc-product-quantity.php:114

actionwoocommerce_product_data_panelswpc-product-quantity.php:115

actionwoocommerce_process_product_metawpc-product-quantity.php:116

actionwoocommerce_product_after_variable_attributeswpc-product-quantity.php:119

actionwoocommerce_save_product_variationwpc-product-quantity.php:123

actionwoocommerce_before_variations_formwpc-product-quantity.php:124

filterwpcsm_locationswpc-product-quantity.php:131

actionwpcvd_duplicatedwpc-product-quantity.php:134

actionwpcvb_bulk_update_variationwpc-product-quantity.php:137

Maintenance & Trust

WPC Product Quantity for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 14, 2026

PHP min version

Downloads133K

Community Trust

Rating80/100

Number of ratings15

Active installs2K

Alternatives

WPC Product Quantity for WooCommerce Alternatives

Qty Increment Buttons for WooCommerce

qty-increment-buttons-for-woocommerce

Adds professionally looking "-" and "+" quantity increment buttons around product quantity field on WooCommerce pages.

10K No CVEs

Quantity Plus Minus Button for WooCommerce

wc-quantity-plus-minus-button

100

Easily add plus, minus button for WooCommerce Quantity Input box in everywhere. Such: Single Page, In Loop Quantity input, Cart page , everywhere.

10K 1 CVE

WPC Price by Quantity for WooCommerce

wpc-price-by-quantity

100

Offering quantity-based prices would be one of the most effective and powerful methods to urge buyers with very few convincing actions needed.

1K No CVEs

TG Product Quantity Plus Minus Button

product-quantity-updater

This plugin will add quantity increment and decrement buttons with the product quantity input control.

200 No CVEs

WPC Smart Quick View for WooCommerce

woo-smart-quick-view

WPC Smart Quick View allows users to get a quick look at products without opening the product page.

100K 3 CVEs

Developer Profile

WPC Product Quantity for WooCommerce Developer Profile

WPClever

71 plugins · 441K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

68 days

View full developer profile

Detection Fingerprints

How We Detect WPC Product Quantity for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wpc-product-quantity/assets/css/backend.css/wp-content/plugins/wpc-product-quantity/assets/js/backend.js/wp-content/plugins/wpc-product-quantity/assets/css/frontend.css

Script Paths

/wp-content/plugins/wpc-product-quantity/assets/js/backend.js

Version Parameters

wpc-product-quantity/assets/css/backend.css?ver=wpc-product-quantity/assets/js/backend.js?ver=wpc-product-quantity/assets/css/frontend.css?ver=

HTML / DOM Fingerprints

CSS Classes

woopq-quantity-inputwoopq-quantity-input-admin

Data Attributes

data-woopq-mindata-woopq-maxdata-woopq-stepdata-woopq-decimal

JS Globals

woopq_frontend_params

REST Endpoints

/wp-json/woopq

FAQ