Does Yay Wholesale B2B for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Yay Wholesale B2B for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, Yay Wholesale B2B for WooCommerce 1.0.5 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Yay Wholesale B2B for WooCommerce compatible with PHP 7.0+?

Yay Wholesale B2B for WooCommerce requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Yay Wholesale B2B for WooCommerce updated?

Yay Wholesale B2B for WooCommerce was last updated on Mar 17, 2026. Frequent updates are generally a positive security signal.

What is Yay Wholesale B2B for WooCommerce's security score?

Yay Wholesale B2B for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Yay Wholesale B2B for WooCommerce Security & Risk Analysis

wordpress.org/plugins/yay-wholesale-b2b

Create multiple wholesale roles, offer wholesale pricing, manage B2B customers, and track wholesale performance effectively.

0 active installs v1.0.5 PHP 7.0+ WP 3.0+ Updated Mar 17, 2026

b2bdiscount-rulessalewholesalewholesale-pricing

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Yay Wholesale B2B for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Yay Wholesale B2B for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The "yay-wholesale-b2b" v1.0.4 plugin exhibits a generally good security posture based on the provided static analysis. It demonstrates a strong adherence to security best practices by implementing nonce checks and capability checks for all its identified AJAX entry points, and all SQL queries are properly prepared. The absence of dangerous functions, external HTTP requests, and file operations further contributes to its security. The taint analysis revealing zero flows, especially those with unsanitized paths or critical/high severity, is a significant positive indicator. Additionally, the plugin has no recorded vulnerability history, suggesting a mature and well-maintained codebase.

However, while the current version appears secure, a notable area for potential improvement lies in the output escaping. With 7% of outputs not being properly escaped, there is a theoretical risk of Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is ever rendered directly in the frontend without adequate sanitization. Although the taint analysis didn't uncover any immediate issues related to this, it remains a potential attack vector that could be exploited in conjunction with other factors. The plugin's strengths lie in its robust authentication and authorization mechanisms for its entry points and its clean SQL practices, while the slight oversight in output escaping is its primary, albeit minor, weakness.

Key Concerns

Outputs not properly escaped

Vulnerabilities

None known

Yay Wholesale B2B for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Yay Wholesale B2B for WooCommerce Release Timeline

v1.0.5Current

v1.0.4

v1.0.2

Code Analysis

Analyzed Mar 17, 2026

Yay Wholesale B2B for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

3 prepared

Unescaped Output

180 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared3 total queries

Output Escaping

93% escaped194 total outputs

Attack Surface

Yay Wholesale B2B for WooCommerce Attack Surface

Entry Points5

Unprotected0

AJAX Handlers 5

authwp_ajax_ywhs_get_original_price_in_cartincludes\Engine\Frontend\Requirement.php:27

noprivwp_ajax_ywhs_get_original_price_in_cartincludes\Engine\Frontend\Requirement.php:28

authwp_ajax_yay_recommended_get_plugin_dataincludes\YayCommerceMenu\OtherPluginsMenu.php:27

authwp_ajax_yay_recommended_activate_pluginincludes\YayCommerceMenu\OtherPluginsMenu.php:28

authwp_ajax_yay_recommended_upgrade_pluginincludes\YayCommerceMenu\OtherPluginsMenu.php:29

WordPress Hooks 79

actionywhs_account_registration_approvedincludes\Engine\Admin\Emails\AccountRegistrationApproved.php:47

actionywhs_account_registration_pendingincludes\Engine\Admin\Emails\AccountRegistrationPending.php:33

actionywhs_account_registration_rejectedincludes\Engine\Admin\Emails\AccountRegistrationRejected.php:34

filterwoocommerce_email_classesincludes\Engine\Admin\Emails\Emails.php:15

filterwoocommerce_email_actionsincludes\Engine\Admin\Emails\Emails.php:16

filterwoocommerce_email_preview_placeholdersincludes\Engine\Admin\Emails\Emails.php:19

actionywhs_new_account_registeredincludes\Engine\Admin\Emails\NewAccountRegistered.php:43

actionywhs_new_wholesale_order_placedincludes\Engine\Admin\Emails\NewOrderPlaced.php:33

filterwoocommerce_locate_core_templateincludes\Engine\Admin\Emails\WholesaleEmailBase.php:27

filterwoocommerce_locate_templateincludes\Engine\Admin\Emails\WholesaleEmailBase.php:28

actionwoocommerce_order_before_calculate_totalsincludes\Engine\Admin\Orders.php:22

filterwoocommerce_order_is_vat_exemptincludes\Engine\Admin\Orders.php:24

actionwoocommerce_order_list_table_restrict_manage_ordersincludes\Engine\Admin\Orders.php:26

filterwoocommerce_order_queryincludes\Engine\Admin\Orders.php:28

filterwoocommerce_shop_order_list_table_columnsincludes\Engine\Admin\Orders.php:30

actionwoocommerce_shop_order_list_table_custom_columnincludes\Engine\Admin\Orders.php:32

filterwoocommerce_order_is_vat_exemptincludes\Engine\Admin\Orders.php:87

filterwoocommerce_calc_taxincludes\Engine\Admin\Orders.php:88

filteradmin_body_classincludes\Engine\Admin\Settings.php:18

actioninitincludes\Engine\Admin\Settings.php:21

actionadmin_menuincludes\Engine\Admin\Settings.php:23

filterplugin_row_metaincludes\Engine\Admin\Settings.php:27

actionadmin_enqueue_scriptsincludes\Engine\Admin\Settings.php:29

actionadmin_enqueue_scriptsincludes\Engine\Admin\Settings.php:31

filtereditable_rolesincludes\Engine\Admin\Users.php:15

filterywhs_price_handle_processedincludes\Engine\Compatibles\YayCurrency.php:22

filterywhs_ajax_using_default_currencyincludes\Engine\Compatibles\YayCurrency.php:23

filterywhs_get_currency_by_third_partyincludes\Engine\Compatibles\YayCurrency.php:24

actionwp_enqueue_scriptsincludes\Engine\Compatibles\YayExtra.php:20

filterwc_get_templateincludes\Engine\Compatibles\YayMail\AccountRegistrationApproved.php:33

filterwc_get_templateincludes\Engine\Compatibles\YayMail\AccountRegistrationPending.php:34

filterwc_get_templateincludes\Engine\Compatibles\YayMail\AccountRegistrationRejected.php:33

filterwc_get_templateincludes\Engine\Compatibles\YayMail\NewAccountRegistered.php:33

filterwc_get_templateincludes\Engine\Compatibles\YayMail\NewOrderPlaced.php:32

actionyaymail_register_emailsincludes\Engine\Compatibles\YayMail.php:25

actionyaymail_register_shortcodesincludes\Engine\Compatibles\YayMail.php:26

filterywhs_price_handle_processedincludes\Engine\Compatibles.php:30

filterwoocommerce_coupons_enabledincludes\Engine\Frontend\Coupon.php:16

actionwp_enqueue_scriptsincludes\Engine\Frontend\Frontend.php:14

filterwoocommerce_product_get_priceincludes\Engine\Frontend\Pricing.php:25

filterwoocommerce_product_variation_get_priceincludes\Engine\Frontend\Pricing.php:26

filterwoocommerce_variation_prices_priceincludes\Engine\Frontend\Pricing.php:27

filterwoocommerce_product_get_sale_priceincludes\Engine\Frontend\Pricing.php:29

filterwoocommerce_product_variation_get_sale_priceincludes\Engine\Frontend\Pricing.php:30

filterwoocommerce_variation_prices_sale_priceincludes\Engine\Frontend\Pricing.php:31

filterwoocommerce_variation_prices_arrayincludes\Engine\Frontend\Pricing.php:33

filterwoocommerce_get_variation_prices_hashincludes\Engine\Frontend\Pricing.php:34

filterwoocommerce_get_price_htmlincludes\Engine\Frontend\Pricing.php:36

actionwoocommerce_checkout_order_processedincludes\Engine\Frontend\Pricing.php:38

filterwoocommerce_get_price_htmlincludes\Engine\Frontend\Pricing.php:223

filterwoocommerce_get_price_htmlincludes\Engine\Frontend\Pricing.php:230

filterwoocommerce_get_price_htmlincludes\Engine\Frontend\Pricing.php:250

filterwoocommerce_get_price_htmlincludes\Engine\Frontend\Pricing.php:265

filterwoocommerce_get_price_htmlincludes\Engine\Frontend\Pricing.php:279

actioninitincludes\Engine\Frontend\RequestForm.php:20

actioninitincludes\Engine\Frontend\RequestForm.php:22

actionwoocommerce_widget_shopping_cart_before_buttonsincludes\Engine\Frontend\Requirement.php:19

actionwoocommerce_before_cart_totalsincludes\Engine\Frontend\Requirement.php:20

actionwoocommerce_review_order_before_paymentincludes\Engine\Frontend\Requirement.php:21

actionwp_enqueue_scriptsincludes\Engine\Frontend\Requirement.php:23

actioninitincludes\Engine\Frontend\Requirement.php:24

filterrender_block_woocommerce/mini-cart-footer-blockincludes\Engine\Frontend\Requirement.php:25

actionwpincludes\Engine\Frontend\Tax.php:22

filterpre_option_woocommerce_tax_display_shopincludes\Engine\Frontend\Tax.php:23

filterwoocommerce_calc_taxincludes\Engine\Frontend\Tax.php:24

filterwoocommerce_calc_shipping_taxincludes\Engine\Frontend\Tax.php:25

filterscript_loader_tagincludes\Engine\Register\RegisterFacade.php:21

actioninitincludes\Engine\Register\RegisterFacade.php:22

filterpre_load_script_translationsincludes\Engine\Register\RegisterFacade.php:23

actioninitincludes\Engine\Register\RegisterProd.php:17

actionrest_api_initincludes\Engine\RestAPI.php:23

actionadmin_noticesincludes\Fallback.php:4

actionadmin_enqueue_scriptsincludes\YayCommerceMenu\RegisterMenu.php:56

actionadmin_menuincludes\YayCommerceMenu\RegisterMenu.php:57

actionadmin_menuincludes\YayCommerceMenu\RegisterMenu.php:58

actionadmin_inityay-wholesale-b2b.php:27

actionadmin_noticesyay-wholesale-b2b.php:90

actionbefore_woocommerce_inityay-wholesale-b2b.php:94

actionplugins_loadedyay-wholesale-b2b.php:102

Maintenance & Trust

Yay Wholesale B2B for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 17, 2026

PHP min version7.0

Downloads253

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Yay Wholesale B2B for WooCommerce Alternatives

Wholesale Suite – B2B, Dynamic Pricing & WooCommerce Wholesale Prices

woocommerce-wholesale-prices

WooCommerce wholesale plugin for serving wholesale & B2B customers. Adds wholesale pricing, user roles, dynamic pricing & more.

20K 6 CVEs

CatalogX – Catalog Mode, Enquiry & Quotes for WooCommerce

woocommerce-catalog-enquiry

WooCommerce Catalog Mode, product enquiry, and request a quote plugin. Hide prices, disable cart, and collect enquiries easily.

6K 5 CVEs

WholesaleX – B2B & Wholesale Plugin for WooCommerce with Wholesale Prices

wholesalex

Best WooCommerce wholesale plugin with features like b2b wholesale prices, wholesale order form, tiered pricing, catalog mode, dynamic pricing, etc!

2K 4 CVEs

Whols – Wholesale Prices and B2B Store Solution for WooCommerce

whols

100

WooCommerce Wholesale plugin for WooCommerce wholesale pricing. It is a b2b plugin for WooCommerce. WooCommerce B2B or B2B + B2C hybrid Store Solution

1K No CVEs

Wholesale for WooCommerce

woo-wholesale-pricing

100

Wholesale for WooCommerce—This Wholesale Plugin Helps B2B and B2C Businesses Streamline Wholesale Products, Pricing, and User Roles, Automating their …

1K No CVEs

Developer Profile

Yay Wholesale B2B for WooCommerce Developer Profile

YayCommerce

16 plugins · 78K total installs

trust score

Avg Security Score

97/100

Avg Patch Time

126 days

View full developer profile

Detection Fingerprints

How We Detect Yay Wholesale B2B for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/yay-wholesale-b2b/assets/css/yay-wholesale-b2b-public.css/wp-content/plugins/yay-wholesale-b2b/assets/css/yay-wholesale-b2b-admin.css/wp-content/plugins/yay-wholesale-b2b/assets/js/yay-wholesale-b2b-public.js/wp-content/plugins/yay-wholesale-b2b/assets/js/yay-wholesale-b2b-admin.js

Script Paths

/wp-content/plugins/yay-wholesale-b2b/assets/js/yay-wholesale-b2b-admin.js

Version Parameters

yay-wholesale-b2b/assets/css/yay-wholesale-b2b-public.css?ver=yay-wholesale-b2b/assets/css/yay-wholesale-b2b-admin.css?ver=yay-wholesale-b2b/assets/js/yay-wholesale-b2b-public.js?ver=yay-wholesale-b2b/assets/js/yay-wholesale-b2b-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

yay-ui

Data Attributes

data-pagedata-roles

JS Globals

YAY_WHOLESALE_B2B_PUBLICYAY_WHOLESALE_B2B_ADMIN

REST Endpoints

/wp-json/yay-wholesale-b2b/v1/settings

Shortcode Output

<div id="yay-wholesale-b2b"></div>

FAQ