G Online SMS Security & Risk Analysis
wordpress.org/plugins/g-online-smsSend automated SMS notifications from WordPress — OTP/2FA, WooCommerce orders, Contact Form 7, Gravity Forms and more.
Is G Online SMS Safe to Use in 2026?
Generally Safe
Score 100/100G Online SMS has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The g-online-sms plugin v2.0.0 exhibits a generally strong security posture based on the provided static analysis. The plugin demonstrates excellent adherence to secure coding practices, with a high percentage of SQL queries using prepared statements and nearly all output being properly escaped. The absence of dangerous functions, file operations, and critical or high severity taint flows further reinforces this positive assessment. The attack surface is minimal, with only one AJAX handler, and importantly, it is protected by nonce and capability checks, indicating a good understanding of WordPress security fundamentals.
Despite these strengths, there are a couple of minor areas that warrant attention. The presence of two external HTTP requests, while not inherently a vulnerability, could become a risk if not handled securely or if the external endpoints are compromised. The plugin's vulnerability history being entirely clear is a significant positive, suggesting a history of stable and secure development. However, it's crucial to remember that past security is not a guarantee of future security, and ongoing vigilance is always necessary. Overall, this plugin appears well-developed from a security perspective, with only very minor areas for potential improvement.
Key Concerns
- External HTTP requests detected
G Online SMS Security Vulnerabilities
G Online SMS Release Timeline
G Online SMS Code Analysis
SQL Query Safety
Output Escaping
Data Flow Analysis
G Online SMS Attack Surface
AJAX Handlers 1
WordPress Hooks 11
Maintenance & Trust
G Online SMS Maintenance & Trust
Maintenance Signals
Community Trust
G Online SMS Alternatives
WSMS (formerly WP SMS) – SMS & MMS Notifications with OTP and 2FA for WooCommerce
wp-sms
Send SMS/MMS notifications, OTP & 2FA messages, and WooCommerce updates with support for multiple gateways and plugin integrations.
miniOrange OTP Verification and SMS Notification for WooCommerce
miniorange-sms-order-notification-otp-verification
OTP Verification via SMS, Email,or WhatsApp, and SMS Order Notifications, Vendor Notifications for WooCommerce.OTP Login and registration with Phone →
Ultimate SMS Notifications – Messaging, Alerts & OTP
ultimate-sms
Send SMS/MMS notifications, OTP & 2FA messages, and WooCommerce updates with support for multiple gateways and plugin integrations.
miniOrange OTP Login, Verification and SMS Notifications
miniorange-otp-verification
OTP Verification via Email/SMS/WhatsApp,SMS Notifications for WooCommerce,OTP Login with Phone,PasswordLess Login.Custom Gateway for OTP Verification
SMS Alert – SMS & OTP for WooCommerce, Order Notifications & Abandoned Cart Recovery
sms-alert
Send WooCommerce SMS notifications, OTP verification, abandoned cart recovery alerts, and real-time order updates to customers and admins.
G Online SMS Developer Profile
1 plugin · 0 total installs
How We Detect G Online SMS
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/g-online-sms/assets/css/admin.css/wp-content/plugins/g-online-sms/assets/js/admin.js/wp-content/plugins/g-online-sms/assets/js/admin.jsg-online-sms/assets/css/admin.css?ver=g-online-sms/assets/js/admin.js?ver=HTML / DOM Fingerprints
g-sms-template-wrapg-sms-reset-defaultdata-field-idgOnlineSMS/wp-json/g-online-sms/v1/settings