Does BizzWishlist – WooCommerce Wishlist have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is BizzWishlist – WooCommerce Wishlist compatible with WordPress 6.9.4?

According to WordPress.org data, BizzWishlist – WooCommerce Wishlist 1.0.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is BizzWishlist – WooCommerce Wishlist compatible with PHP 8.0+?

BizzWishlist – WooCommerce Wishlist requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is BizzWishlist – WooCommerce Wishlist updated?

BizzWishlist – WooCommerce Wishlist was last updated on Apr 8, 2026. Frequent updates are generally a positive security signal.

What is BizzWishlist – WooCommerce Wishlist's security score?

BizzWishlist – WooCommerce Wishlist has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

BizzWishlist – WooCommerce Wishlist Security & Risk Analysis

wordpress.org/plugins/bizzwishlist

A lightweight and powerful WooCommerce Wishlist addon. Allow customers to save their favorite products and purchase them later.

0 active installs v1.0.0 PHP 8.0+ WP 6.2+ Updated Apr 8, 2026

favorite-productsproduct-wishlistsave-for-laterwishlistwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is BizzWishlist – WooCommerce Wishlist Safe to Use in 2026?

Generally Safe

Score 100/100

BizzWishlist – WooCommerce Wishlist has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The bizzwishlist plugin v1.0.0 exhibits a mixed security posture. On the positive side, it demonstrates strong practices regarding SQL query sanitization and output escaping, with 87% of SQL queries using prepared statements and 98% of outputs being properly escaped. The absence of known CVEs and dangerous functions is also a good sign. However, significant concerns arise from the attack surface analysis. A substantial portion of its entry points, specifically 18 out of 24, are unprotected by authentication checks. This, coupled with four identified taint flows with unsanitized paths, suggests a potential for vulnerabilities that could be exploited by unauthenticated users. The high number of unprotected AJAX handlers is a primary area of risk.

The vulnerability history shows no past recorded issues, which is encouraging, but it doesn't negate the immediate risks identified in the static analysis. The taint analysis, while not reporting critical or high severity flows as explicitly stated, does flag four flows with unsanitized paths. These, in conjunction with the numerous unprotected AJAX handlers, are the most pressing security concerns for this plugin. While the code demonstrates good practices in other areas, the lack of robust authentication on a significant number of entry points and the identified unsanitized paths create a considerable risk that needs to be addressed.

Key Concerns

Large attack surface without auth
Flows with unsanitized paths (4)
Missing nonce checks on AJAX (18 handlers)

Vulnerabilities

None known

BizzWishlist – WooCommerce Wishlist Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

BizzWishlist – WooCommerce Wishlist Release Timeline

v1.0.0Current

Code Analysis

Analyzed Mar 17, 2026

BizzWishlist – WooCommerce Wishlist Code Analysis

Dangerous Functions

Raw SQL Queries

46 prepared

Unescaped Output

223 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

87% prepared53 total queries

Output Escaping

98% escaped228 total outputs

Data Flows · Security

4 unsanitized

Data Flow Analysis

4 flows4 with unsanitized paths

get_trend_data (includes\Admin\Analytics\AnalyticsAjax.php:55)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

18 unprotected

BizzWishlist – WooCommerce Wishlist Attack Surface

Entry Points24

Unprotected18

AJAX Handlers 21

authwp_ajax_bizzwishlist_analytics_trendincludes\Admin\Analytics\AnalyticsAjax.php:45

authwp_ajax_bizzwishlist_analytics_export_csvincludes\Admin\Analytics\AnalyticsAjax.php:46

authwp_ajax_bizzwishlist_analytics_user_wishlistincludes\Admin\Analytics\AnalyticsAjax.php:47

authwp_ajax_bizzwishlist_toggleincludes\Plugin.php:156

noprivwp_ajax_bizzwishlist_toggleincludes\Plugin.php:157

authwp_ajax_bizzwishlist_removeincludes\Plugin.php:158

noprivwp_ajax_bizzwishlist_removeincludes\Plugin.php:159

authwp_ajax_bizzwishlist_add_all_to_cartincludes\Plugin.php:160

noprivwp_ajax_bizzwishlist_add_all_to_cartincludes\Plugin.php:161

authwp_ajax_bizzwishlist_get_countincludes\Plugin.php:162

noprivwp_ajax_bizzwishlist_get_countincludes\Plugin.php:163

authwp_ajax_bizzwishlist_get_itemsincludes\Plugin.php:164

noprivwp_ajax_bizzwishlist_get_itemsincludes\Plugin.php:165

authwp_ajax_bizzwishlist_add_selected_to_cartincludes\Plugin.php:166

noprivwp_ajax_bizzwishlist_add_selected_to_cartincludes\Plugin.php:167

authwp_ajax_bizzwishlist_add_to_cart_singleincludes\Plugin.php:168

noprivwp_ajax_bizzwishlist_add_to_cart_singleincludes\Plugin.php:169

authwp_ajax_bizzwishlist_get_mini_fragmentincludes\Plugin.php:170

noprivwp_ajax_bizzwishlist_get_mini_fragmentincludes\Plugin.php:171

authwp_ajax_bizzwishlist_update_variationincludes\Plugin.php:172

noprivwp_ajax_bizzwishlist_update_variationincludes\Plugin.php:173

Shortcodes 3

[bizzwishlist] includes\Plugin.php:135

[bizzwishlist_mini] includes\Plugin.php:136

[bizzwishlist_button] includes\Plugin.php:145

WordPress Hooks 26

actionadmin_noticesbizzwishlist.php:58

actionplugins_loadedbizzwishlist.php:65

actionbefore_woocommerce_initbizzwishlist.php:77

actionadmin_menuincludes\Admin\Analytics\AnalyticsPage.php:45

actionadmin_enqueue_scriptsincludes\Admin\Analytics\AnalyticsPage.php:46

actionadmin_menuincludes\Admin\Settings.php:58

actionadmin_initincludes\Admin\Settings.php:59

actionadmin_enqueue_scriptsincludes\Admin\Settings.php:60

filterplugin_row_metaincludes\Admin\Settings.php:64

actionwp_enqueue_scriptsincludes\Plugin.php:103

actionwp_enqueue_scriptsincludes\Plugin.php:104

actionwoocommerce_before_add_to_cart_buttonincludes\Plugin.php:111

actionwoocommerce_single_product_summaryincludes\Plugin.php:114

actionwoocommerce_single_product_summaryincludes\Plugin.php:117

actionwoocommerce_after_add_to_cart_buttonincludes\Plugin.php:130

filterwoocommerce_loop_add_to_cart_linkincludes\Plugin.php:134

actionwp_footerincludes\Plugin.php:137

actionwp_footerincludes\Plugin.php:139

actionwp_footerincludes\Plugin.php:140

actionbizzwishlist_buttonincludes\Plugin.php:151

actionbizzwishlist_button_showincludes\Plugin.php:152

actionrest_api_initincludes\Plugin.php:176

actionadmin_initincludes\Plugin.php:188

actioninitincludes\Plugin.php:195

filterquery_varsincludes\Plugin.php:198

actionwp_loginincludes\Plugin.php:201

Maintenance & Trust

BizzWishlist – WooCommerce Wishlist Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 8, 2026

PHP min version8.0

Downloads189

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

BizzWishlist – WooCommerce Wishlist Alternatives

Addonify – WooCommerce Wishlist

addonify-wishlist

Addonify WooCommerce Wishlist is a light-weight yet powerful tool that adds a wishlist functionality to your e-commerce shop.

1K 1 CVE

Velocity Wishlist – WooCommerce Wishlist Plugin

velocity-wishlist

100

Powerful, lightweight wishlist functionality for WooCommerce. Supports guest users, product variations, social sharing, and fully customizable buttons …

10 No CVEs

WPMozo Wishlist Lite for WooCommerce

wpmozo-wishlist-lite-for-woocommerce

100

WPMozo Wishlist Lite for WooCommerce adds a wishlist feature to your WooCommerce store, allowing customers to save their favorite products for future …

10 No CVEs

Advanced Wishlist & Share – Save Products for Later

advwl-wishlist-for-woocommerce

100

A simple and user-friendly wishlist plugin that allows customers to save products they love for later purchase or review.

0 No CVEs

AICOSO Wishlist for WooCommerce

aicoso-wishlist-for-woocommerce

100

Comprehensive wishlist solution for WooCommerce with AI-powered recommendations, social sharing, and advanced analytics.

0 No CVEs

Developer Profile

BizzWishlist – WooCommerce Wishlist Developer Profile

Saiful Islam

14 plugins · 19K total installs

trust score

Avg Security Score

95/100

Avg Patch Time

116 days

View full developer profile

Detection Fingerprints

How We Detect BizzWishlist – WooCommerce Wishlist

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/bizzwishlist/assets/css/admin-analytics.css/wp-content/plugins/bizzwishlist/assets/js/vendor/chart.min.js/wp-content/plugins/bizzwishlist/assets/js/admin-analytics.js

Script Paths

/wp-content/plugins/bizzwishlist/assets/js/admin-analytics.js/wp-content/plugins/bizzwishlist/assets/js/vendor/chart.min.js

Version Parameters

bizzwishlist/assets/css/admin-analytics.css?ver=bizzwishlist/assets/js/admin-analytics.js?ver=

HTML / DOM Fingerprints

Data Attributes

data-nonce="bizzwishlist_analytics_nonce"

JS Globals

window.bizzwishlistAnalytics

FAQ