WP-Safety

YayBoost – Sales Booster for WooCommerce Security & Risk Analysis

wordpress.org/plugins/yayboost-sales-booster-for-woocommerce

Boost conversions, increase AOV, and create urgency with powerful sales-boosting tools for WooCommerce.

0 active installs v1.0.0 PHP 7.4+ WP 5.8+ Updated Mar 4, 2026
automationconversioncouponmarketingsales
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is YayBoost – Sales Booster for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

YayBoost – Sales Booster for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The plugin "yayboost-sales-booster-for-woocommerce" v1.0.0 exhibits a mixed security posture. While it demonstrates good practices in several areas, such as a high percentage of prepared SQL statements and properly escaped outputs, significant concerns exist regarding its attack surface. The presence of 17 AJAX handlers, with 6 completely lacking authentication checks, represents a substantial entry point for potential attackers. Furthermore, the taint analysis reveals 3 flows with unsanitized paths, all of which are classified as high severity. These unsanitized paths are particularly worrying as they could allow for data injection or manipulation by malicious actors. The plugin's history of zero known vulnerabilities is a positive indicator, suggesting a generally robust codebase or recent development. However, this should not overshadow the immediate risks identified in the static and taint analyses. The lack of authentication on several AJAX endpoints and the high-severity unsanitized flows are the most critical areas requiring immediate attention to mitigate potential security breaches. Addressing these specific weaknesses while maintaining the current strengths in SQL and output handling would significantly improve the plugin's overall security.

Key Concerns

  • Unprotected AJAX handlers
  • High severity unsanitized paths in taint analysis
Vulnerabilities
None known

YayBoost – Sales Booster for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

YayBoost – Sales Booster for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
7
69 prepared
Unescaped Output
6
139 escaped
Nonce Checks
8
Capability Checks
12
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

91% prepared76 total queries

Output Escaping

96% escaped145 total outputs
Data Flows
3 unsanitized

Data Flow Analysis

3 flows3 with unsanitized paths
handle_ping (includes\Features\LiveVisitorCount\LiveVisitorCountAjaxHandler.php:57)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
6 unprotected

YayBoost – Sales Booster for WooCommerce Attack Surface

Entry Points17
Unprotected6

AJAX Handlers 17

authwp_ajax_yay_recommended_get_plugin_dataincludes\Admin\YayCommerceMenu\OtherPluginsMenu.php:27
authwp_ajax_yay_recommended_activate_pluginincludes\Admin\YayCommerceMenu\OtherPluginsMenu.php:28
authwp_ajax_yay_recommended_upgrade_pluginincludes\Admin\YayCommerceMenu\OtherPluginsMenu.php:29
authwp_ajax_yayboost_exit_intent_couponincludes\Features\ExitIntentPopup\ExitIntentPopupAjaxHandler.php:81
noprivwp_ajax_yayboost_exit_intent_couponincludes\Features\ExitIntentPopup\ExitIntentPopupAjaxHandler.php:82
authwp_ajax_yayboost_exit_intent_check_cartincludes\Features\ExitIntentPopup\ExitIntentPopupAjaxHandler.php:85
noprivwp_ajax_yayboost_exit_intent_check_cartincludes\Features\ExitIntentPopup\ExitIntentPopupAjaxHandler.php:86
authwp_ajax_yayboost_exit_intent_shownincludes\Features\ExitIntentPopup\ExitIntentPopupAjaxHandler.php:89
noprivwp_ajax_yayboost_exit_intent_shownincludes\Features\ExitIntentPopup\ExitIntentPopupAjaxHandler.php:90
authwp_ajax_yayboost_fbt_add_to_cartincludes\Features\FrequentlyBoughtTogether\FBTAjaxHandler.php:25
noprivwp_ajax_yayboost_fbt_add_to_cartincludes\Features\FrequentlyBoughtTogether\FBTAjaxHandler.php:26
authwp_ajax_yayboost_visitor_pingincludes\Features\LiveVisitorCount\LiveVisitorCountAjaxHandler.php:45
noprivwp_ajax_yayboost_visitor_pingincludes\Features\LiveVisitorCount\LiveVisitorCountAjaxHandler.php:46
authwp_ajax_yayboost_count_visitorsincludes\Features\LiveVisitorCount\LiveVisitorCountAjaxHandler.php:47
noprivwp_ajax_yayboost_count_visitorsincludes\Features\LiveVisitorCount\LiveVisitorCountAjaxHandler.php:48
authwp_ajax_yayboost_get_shipping_barincludes\Features\SmartRecommendations\SmartRecommendationsFeature.php:98
noprivwp_ajax_yayboost_get_shipping_barincludes\Features\SmartRecommendations\SmartRecommendationsFeature.php:99
WordPress Hooks 49
filteradmin_body_classincludes\Admin\AdminMenu.php:23
actionadmin_enqueue_scriptsincludes\Admin\YayCommerceMenu\LicensesMenu.php:27
actionadmin_enqueue_scriptsincludes\Admin\YayCommerceMenu\OtherPluginsMenu.php:30
actionadmin_enqueue_scriptsincludes\Admin\YayCommerceMenu\OtherPluginsMenu.php:97
actionadmin_enqueue_scriptsincludes\Admin\YayCommerceMenu\RegisterMenu.php:57
actionadmin_menuincludes\Admin\YayCommerceMenu\RegisterMenu.php:58
actionadmin_menuincludes\Admin\YayCommerceMenu\RegisterMenu.php:59
actionrest_api_initincludes\Bootstrap.php:106
filterplugin_row_metaincludes\Bootstrap.php:118
actionwp_enqueue_scriptsincludes\Features\ExitIntentPopup\ExitIntentPopupFeature.php:118
actionwp_footerincludes\Features\ExitIntentPopup\ExitIntentPopupFeature.php:121
filterwoocommerce_add_to_cart_fragmentsincludes\Features\ExitIntentPopup\ExitIntentPopupFeature.php:124
actionwoocommerce_checkout_order_processedincludes\Features\ExitIntentPopup\ExitIntentPopupFeature.php:127
actionwoocommerce_payment_completeincludes\Features\ExitIntentPopup\ExitIntentPopupFeature.php:130
actionwoocommerce_order_status_completedincludes\Features\ExitIntentPopup\ExitIntentPopupFeature.php:131
actioninitincludes\Features\FreeShippingBar\FreeShippingBarBlock.php:35
actionenqueue_block_editor_assetsincludes\Features\FreeShippingBar\FreeShippingBarBlock.php:36
filterwoocommerce_add_to_cart_fragmentsincludes\Features\FreeShippingBar\FreeShippingBarFeature.php:123
actionwoocommerce_checkout_create_order_line_itemincludes\Features\FrequentlyBoughtTogether\FBTPurchaseTracker.php:33
actionwoocommerce_order_status_completedincludes\Features\FrequentlyBoughtTogether\FBTPurchaseTracker.php:36
actionwoocommerce_order_status_processingincludes\Features\FrequentlyBoughtTogether\FBTPurchaseTracker.php:39
actionwoocommerce_after_single_product_summaryincludes\Features\FrequentlyBoughtTogether\FrequentlyBoughtTogetherFeature.php:102
actionwoocommerce_order_status_completedincludes\Features\FrequentlyBoughtTogether\FrequentlyBoughtTogetherFeature.php:105
actioninitincludes\Features\LiveVisitorCount\LiveVisitorCountBlock.php:35
actionenqueue_block_editor_assetsincludes\Features\LiveVisitorCount\LiveVisitorCountBlock.php:36
filterallowed_block_types_allincludes\Features\LiveVisitorCount\LiveVisitorCountBlock.php:37
actionwpincludes\Features\LiveVisitorCount\LiveVisitorCountFeature.php:133
actionwoocommerce_order_status_completedincludes\Features\NextOrderCoupon\NextOrderCouponFeature.php:124
actionwoocommerce_order_status_completedincludes\Features\NextOrderCoupon\NextOrderCouponFeature.php:127
actionwoocommerce_before_thankyouincludes\Features\NextOrderCoupon\NextOrderCouponFeature.php:136
actionwoocommerce_email_before_order_tableincludes\Features\NextOrderCoupon\NextOrderCouponFeature.php:139
actioninitincludes\Features\PurchaseActivityCount\PurchaseActivityCountBlock.php:35
actionenqueue_block_editor_assetsincludes\Features\PurchaseActivityCount\PurchaseActivityCountBlock.php:36
filterallowed_block_types_allincludes\Features\PurchaseActivityCount\PurchaseActivityCountBlock.php:37
actionwpincludes\Features\PurchaseActivityCount\PurchaseActivityCountFeature.php:129
actionwoocommerce_new_orderincludes\Features\PurchaseActivityCount\PurchaseActivityCountFeature.php:130
actionwoocommerce_before_cartincludes\Features\SmartRecommendations\SmartRecommendationsFeature.php:83
actionwoocommerce_before_checkout_formincludes\Features\SmartRecommendations\SmartRecommendationsFeature.php:87
actionwoocommerce_before_mini_cartincludes\Features\SmartRecommendations\SmartRecommendationsFeature.php:91
actionwp_enqueue_scriptsincludes\Features\SmartRecommendations\SmartRecommendationsFeature.php:95
actionadmin_footerincludes\Register\RegisterDev.php:16
actioninitincludes\Register\RegisterDev.php:18
filterscript_loader_tagincludes\Register\RegisterFacade.php:19
actioninitincludes\Register\RegisterFacade.php:20
actioninitincludes\Register\RegisterProd.php:13
actionadmin_noticesyayboost-sales-booster-for-woocommerce.php:59
actionbefore_woocommerce_inityayboost-sales-booster-for-woocommerce.php:63
actionadmin_noticesyayboost-sales-booster-for-woocommerce.php:73
actionplugins_loadedyayboost-sales-booster-for-woocommerce.php:85
Maintenance & Trust

YayBoost – Sales Booster for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 4, 2026
PHP min version7.4
Downloads150

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

YayBoost – Sales Booster for WooCommerce Alternatives

Convesio Convert – WooCommerce Email Marketing Automation with Website Personalization, Popups and Forms

Convesio Convert – WooCommerce Email Marketing Automation with Website Personalization, Popups and Forms

marketing-automation-and-personalization

A
100

Sell more with less effort using personalized marketing automation, email, popups, forms, dynamic webpages, and advanced customer segmentation.

100 No CVEs
Account Engagement

Account Engagement

pardot

A
91

Integrate Account Engagement with WordPress: easily track visitors, embed forms and dynamic content in pages and posts, or use the forms or dynamic co …

2K 1 CVE
WebinarIgnition – Live & Automated Webinars for WooCommerce

WebinarIgnition – Live & Automated Webinars for WooCommerce

webinar-ignition

A
85

Live & automated webinars for WooCommerce. Sell inside webinars with embedded checkout. Boost conversion, automate sales. 30-day trial.

100 7 CVEs
Carts Guru

Carts Guru

carts-guru

B
83

Chase up every lead, convert every sale, and grow your e-commerce business fast with an advanced marketing automation software designed specifically f …

90 1 CVE
Email and SMS marketing for WordPress by DailyStory

Email and SMS marketing for WordPress by DailyStory

dailystory

A
100

DailyStory automates outbound sales, client engagement, and follow-up in order to generate interest at the top of the sales funnel.

20 No CVEs
Developer Profile

YayBoost – Sales Booster for WooCommerce Developer Profile

YayCommerce

16 plugins · 78K total installs

77
trust score
Avg Security Score
97/100
Avg Patch Time
133 days
View full developer profile
Detection Fingerprints

How We Detect YayBoost – Sales Booster for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/yayboost-sales-booster-for-woocommerce/assets/css/licenses.css/wp-content/plugins/yayboost-sales-booster-for-woocommerce/assets/css/other-plugins.css
Script Paths
/wp-content/plugins/yayboost-sales-booster-for-woocommerce/assets/js/admin/settings.js
Version Parameters
/yayboost-sales-booster-for-woocommerce/assets/css/licenses.css?ver=/yayboost-sales-booster-for-woocommerce/assets/css/other-plugins.css?ver=

HTML / DOM Fingerprints

CSS Classes
yay-ui
Data Attributes
data-vue-app
JS Globals
yayboostData
REST Endpoints
/yayboost/v1/
FAQ

Frequently Asked Questions about YayBoost – Sales Booster for WooCommerce