TheForge Smart COD Control & Fraud Blocker for WooCommerce
Stop losing money to fake COD orders! This comprehensive fraud prevention plugin helps WooCommerce store owners reduce fake orders, prevent COD fraud, and protect revenue with intelligent, automated controls.
Why Choose This Plugin?
✅ Built for high-fraud markets – Specifically designed for India, Middle East, Southeast Asia ✅ Complete privacy – No external APIs, all data stays in your database ✅ Zero performance impact – Lightweight code runs only during checkout ✅ Real-time protection – Block fraudulent orders before they’re placed ✅ Advanced analytics – Detailed logs with heatmap visualization ✅ Modern interface – Clean admin dashboard with intuitive navigation
Powerful Features to Stop COD Fraud
🌍 Geographic Controls
- Block/allow COD by country, state, or postal code
- Perfect for limiting COD to verified delivery areas
- Multi-region support for international stores
💰 Smart Order Limits
- Set minimum and maximum order values for COD
- Prevent high-risk expensive orders
- Customizable customer-facing messages
💵 COD Fee Management
- Add handling fees to discourage fake orders
- Customizable fee amounts and labels
- Transparent checkout display
🕒 Time-Based Controls
- Restrict COD by day of week and time windows
- Block high-risk nighttime orders
- Custom messages for blocked time slots
👥 User Role Restrictions
- Block COD for guest users and unverified accounts
- Enable COD only for trusted customer roles
- Flexible WordPress role-based access
📦 Product & Category Controls
- Block COD for specific products or entire categories
- Protect high-value items (electronics, jewelry)
- Granular control at product level
🎟️ Coupon Protection
- Disable COD when promotional coupons are applied
- Prevent discount code abuse with fake orders
⚖️ Weight-Based Limits
- Set min/max weight thresholds for COD
- Protect bulky, fragile, or heavy shipments
📊 Intelligent Risk Scoring
- AI-powered customer behavior analysis
- Automatic scoring based on order history
- Identify first-time buyers vs repeat customers
- Flag suspicious ordering patterns
🛡️ Manual Approval Workflow
- Hold suspicious COD orders for review
- Approve or reject directly from dashboard
- Perfect for high-value or risky orders
🚫 Automated Blacklisting
- Auto-block customers with failed deliveries
- Track cancellation and return patterns
- Configurable thresholds for auto-blocking
- Stop repeat offenders permanently
🔒 Manual Blacklist
- Block fraudsters by email or phone number
- Simple bulk management interface
- Instant COD blocking for blacklisted users
📊 Advanced Analytics & Logs
- Automatic logging of all blocked attempts
- View detailed customer data and block reasons
- Identify fraud patterns and trends
- Geographic heatmap visualization
🧪 Built-in Test Simulator
- Test all rules without placing real orders
- Simulate different customer scenarios
- Verify configurations before going live
- No-risk rule validation
Perfect For
- 🇮🇳 High-COD markets – India, Middle East, Southeast Asia, Africa
- 🛑 High fraud stores – Experiencing fake orders and failed deliveries
- 📍 Location-restricted – Limiting COD to verified delivery zones
- 💼 B2C eCommerce – Managing COD payment risks effectively
- 📉 High RTO rates – Reducing return-to-origin losses
Real-World Use Cases
✓ Block COD orders over ₹20,000 / $500 to limit risk ✓ Allow COD only for verified pin codes in metro cities ✓ Add ₹50 COD fee to discourage fake orders ✓ Auto-block repeat offenders with 3+ failed deliveries ✓ Disable COD from 10 PM – 8 AM to prevent late-night fraud ✓ Block COD on electronics, jewelry, and luxury items ✓ Require approval for all first-time customer COD orders
5-Minute Setup Guide
- Install → Search “Smart COD Control” in WordPress plugins
- Activate → Enable the plugin
- Configure → Go to WooCommerce → Smart COD Control
- Set Rules → Add order limits, location restrictions, or fees
- Test → Use built-in simulator to verify rules
- Go Live → Save and start blocking fraud!
🎉 Your store is now protected from COD fraud!
Privacy & Data Collection
What We Log (Blocked Orders Only): Email, phone, IP address, cart total, location, timestamp, and block reason.
Data Storage: ✓ All data stored locally in your WordPress database ✓ No external servers or APIs ✓ No cookies or tracking ✓ Complete data privacy
GDPR/CCPA Compliance: Store owners must: • Include this plugin in your privacy policy • Inform customers about fraud prevention logging • Provide data deletion upon request • Regularly clean old logs
Complete data removal via uninstall.php when plugin is deleted.
Technical Specifications
Compatibility: • WooCommerce 5.0+ (Tested up to 8.5) • WordPress 5.8+ (Tested up to 6.9) • PHP 7.4+ • HPOS (High-Performance Order Storage) ✓ • WooCommerce Blocks Checkout ✓ • Multisite Installations ✓
Performance: • Minimal overhead – runs only during checkout • Single custom database table (wp_wcsf_fraud_logs) • Translation ready (.pot file included)
Developer Information
Hooks & Filters
The plugin provides several hooks for developers:
Filters:
* wcsf_cod_available – Filter COD availability
* wcsf_blocked_message – Customize blocked message
* wcsf_settings – Modify plugin settings
Actions:
* wcsf_cod_blocked – Fires when COD is blocked
* wcsf_log_created – Fires when fraud log is created
File Structure
/includes/class-wcsf-plugin.php– Main plugin class/includes/class-wcsf-loader.php– Hooks loader/includes/class-wcsf-admin-settings.php– Admin interface/includes/class-wcsf-cod-controller.php– COD control logic/includes/class-wcsf-fraud-logger.php– Fraud logging/includes/class-wcsf-order-status.php– Order status management/includes/class-wcsf-admin-approval.php– Approval workflow/includes/class-wcsf-auto-blacklist.php– Auto-blacklist system/includes/class-wcsf-fraud-alerts.php– Email alerts/includes/class-wcsf-test-simulator.php– Testing interface/includes/class-wcsf-fraud-heatmap.php– Analytics heatmap/includes/class-wcsf-blocks-integration.php– WooCommerce Blocks support
Support & Documentation
Need Help? • WordPress.org support forum for community help • Bug reports and feature requests welcome • Documentation at thepluginforge.com • Active monitoring and quick responses
Security Issues: Report vulnerabilities responsibly through WordPress.org support forum. Do not disclose publicly before fix is released.
License & Credits
License: GPLv2 or later Developed by: The Plugin Forge Security: Proper sanitization, validation, and nonce verification throughout No Third-Party Dependencies: 100% GPL-compatible code