WP-Safety

CMSPS Revenue Pulse Advisor Security & Risk Analysis

wordpress.org/plugins/cmsps-revenue-pulse-advisor

Generate AI-powered WooCommerce revenue analysis in wp-admin and review saved reports, trends, and recommendations.

0 active installs v1.0.3 PHP 7.4+ WP 6.4+ Updated Mar 23, 2026
aianalyticsecommercesales-reportswoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is CMSPS Revenue Pulse Advisor Safe to Use in 2026?

Generally Safe

Score 100/100

CMSPS Revenue Pulse Advisor has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The plugin 'cmsps-revenue-pulse-advisor' v1.0.3 exhibits a generally strong security posture with several positive indicators. The absence of dangerous functions, the exclusive use of prepared statements for all SQL queries, and the 100% proper output escaping are excellent practices. Furthermore, the plugin demonstrates a clean vulnerability history with no recorded CVEs, suggesting a well-maintained and secure codebase.

However, a significant concern arises from the static analysis, specifically the presence of one unprotected REST API route. This creates a direct entry point into the plugin's functionality that is not protected by any permission checks, posing a potential risk of unauthorized access or execution of sensitive operations. While the overall code quality appears high, this single unprotected entry point is a critical vulnerability that needs immediate attention.

In conclusion, while the plugin benefits from robust coding practices in SQL handling and output sanitization, the unprotected REST API route is a glaring weakness that overshadows these strengths. The lack of historical vulnerabilities is a positive sign, but it does not negate the present risk introduced by the exposed API endpoint.

Key Concerns

  • Unprotected REST API route found
Vulnerabilities
None known

CMSPS Revenue Pulse Advisor Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

CMSPS Revenue Pulse Advisor Release Timeline

v1.0.3Current
v1.0.2
Code Analysis
Analyzed Apr 16, 2026

CMSPS Revenue Pulse Advisor Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
8 prepared
Unescaped Output
1
331 escaped
Nonce Checks
3
Capability Checks
10
File Operations
0
External Requests
3
Bundled Libraries
0

SQL Query Safety

100% prepared8 total queries

Output Escaping

100% escaped332 total outputs
Attack Surface
1 unprotected

CMSPS Revenue Pulse Advisor Attack Surface

Entry Points1
Unprotected1

REST API Routes 1

GET/wp-json/cmsps-rpa/v1/domain-proofcmsps-revenue-pulse-advisor.php:91
WordPress Hooks 11
actionadmin_noticescmsps-revenue-pulse-advisor.php:28
actionplugins_loadedcmsps-revenue-pulse-advisor.php:36
actionrest_api_initcmsps-revenue-pulse-advisor.php:40
actionadmin_initcmsps-revenue-pulse-advisor.php:41
actionadmin_noticescmsps-revenue-pulse-advisor.php:43
actionadmin_post_cmsps_rpa_run_manualincludes/class-cmsps-scheduler.php:16
actionadmin_menuincludes/class-cmsps-settings.php:22
actionadmin_initincludes/class-cmsps-settings.php:23
actionadmin_enqueue_scriptsincludes/class-cmsps-settings.php:24
actionadmin_post_cmsps_rpa_export_pdfincludes/class-cmsps-settings.php:25
actionadmin_post_cmsps_rpa_reconnect_siteincludes/class-cmsps-settings.php:26
Maintenance & Trust

CMSPS Revenue Pulse Advisor Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 23, 2026
PHP min version7.4
Downloads116

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

CMSPS Revenue Pulse Advisor Alternatives

IKAROS Ai Commerce Infrastructure

IKAROS Ai Commerce Infrastructure

ikaros-ai-manifest

A
100

Prepare your WooCommerce store for the AI internet.

20 No CVEs
BaoBrain Analytics for WooCommerce

BaoBrain Analytics for WooCommerce

baobrain-analytics-for-woocommerce

A
100

AI-powered customer intelligence that connects what shoppers SAY online with what they DO on your store.

0 No CVEs
Klaviyo

Klaviyo

klaviyo

A
99

Klaviyo for WooCommerce

100K 2 CVEs
MailerLite – WooCommerce integration

MailerLite – WooCommerce integration

woo-mailerlite

A
93

Powerful e-commerce email marketing tools that are easy to use. Grow your store with automated emails, pop-ups, product blocks, sales tracking + more.

30K 4 CVEs
Website Pop-up Builder by BDOW! (formerly Sumo): Pop-ups + forms for email opt-ins and lead generation

Website Pop-up Builder by BDOW! (formerly Sumo): Pop-ups + forms for email opt-ins and lead generation

sumome

A
100

Sumo is trusted by over 600,000 businesses — small and large — in growing their email lists, customer base, and revenue online.

20K 1 CVE
Developer Profile

CMSPS Revenue Pulse Advisor Developer Profile

CodingMall.com

4 plugins · 30 total installs

89
trust score
Avg Security Score
93/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect CMSPS Revenue Pulse Advisor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/cmsps-revenue-pulse-advisor/assets/css/style.css/wp-content/plugins/cmsps-revenue-pulse-advisor/assets/js/script.js
Script Paths
/wp-content/plugins/cmsps-revenue-pulse-advisor/assets/js/script.js
Version Parameters
cmsps-revenue-pulse-advisor/assets/css/style.css?ver=cmsps-revenue-pulse-advisor/assets/js/script.js?ver=

HTML / DOM Fingerprints

CSS Classes
cmsps-rpa-admin-notice
HTML Comments
<!-- CMSPS Revenue Pulse Advisor Activation Notice --><!-- CMSPS Revenue Pulse Advisor WooCommerce Required Notice -->
Data Attributes
data-cmsps-rpa-nonce
JS Globals
cmspsRPA_ajax_urlcmspsRPA_site_idcmspsRPA_site_token
REST Endpoints
/wp-json/cmsps-rpa/v1/domain-proof
FAQ

Frequently Asked Questions about CMSPS Revenue Pulse Advisor