WP-Safety

Genwave – AI Agent for WordPress Security & Risk Analysis

wordpress.org/plugins/gen-wave

The #1 AI Agent for WordPress. Build plugins, fix errors, create pages, manage WooCommerce & optimize SEO — all through natural conversation.

0 active installs v1.0.5 PHP 7.4+ WP 5.0+ Updated Feb 25, 2026
aiai-agentseowoocommercewordpress-automation
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Genwave – AI Agent for WordPress Safe to Use in 2026?

Generally Safe

Score 100/100

Genwave – AI Agent for WordPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The "gen-wave" plugin v1.0.5 demonstrates a generally good security posture with several strong security practices in place. The vast majority of SQL queries utilize prepared statements, output is almost universally escaped, and there are no recorded vulnerabilities (CVEs) or critical taint analysis findings. The plugin also includes a significant number of nonce and capability checks, indicating an awareness of common WordPress security mechanisms. This suggests a developer who is conscientious about secure coding principles.

Key Concerns

  • AJAX handlers without authentication checks
Vulnerabilities
None known

Genwave – AI Agent for WordPress Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Genwave – AI Agent for WordPress Code Analysis

Dangerous Functions
0
Raw SQL Queries
10
64 prepared
Unescaped Output
2
182 escaped
Nonce Checks
34
Capability Checks
23
File Operations
0
External Requests
14
Bundled Libraries
1

Bundled Libraries

Select2

SQL Query Safety

86% prepared74 total queries

Output Escaping

99% escaped184 total outputs
Data Flows
All sanitized

Data Flow Analysis

14 flows
handleAdminAction (src\AjaxManager.php:523)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Genwave – AI Agent for WordPress Attack Surface

Entry Points20
Unprotected2

AJAX Handlers 20

authwp_ajax_genwave_verify_loginsrc\AjaxManager.php:40
noprivwp_ajax_genwave_verify_loginsrc\AjaxManager.php:41
authwp_ajax_genwave_get_all_productssrc\AjaxManager.php:47
authwp_ajax_genwave_get_all_postssrc\AjaxManager.php:48
authwp_ajax_genwave_get_post_datasrc\AjaxManager.php:49
noprivwp_ajax_genwave_get_post_datasrc\AjaxManager.php:50
authwp_ajax_genwave_refresh_tokenssrc\AjaxManager.php:52
authwp_ajax_genwave_disconnect_accountsrc\AjaxManager.php:53
authwp_ajax_genwave_check_license_statussrc\AjaxManager.php:54
authwp_ajax_genwave_get_dashboard_statssrc\AjaxManager.php:57
authwp_ajax_genwave_polling_resultssrc\AjaxManager.php:60
noprivwp_ajax_genwave_polling_resultssrc\AjaxManager.php:61
authwp_ajax_genwave_poll_proxysrc\AjaxManager.php:62
noprivwp_ajax_genwave_poll_proxysrc\AjaxManager.php:63
authwp_ajax_genwave_update_token_balancesrc\AjaxManager.php:64
noprivwp_ajax_genwave_update_token_balancesrc\AjaxManager.php:65
authwp_ajax_genwave_generate_singlesrc\AjaxManager.php:68
authwp_ajax_genwave_mark_convertedsrc\AjaxManager.php:69
authwp_ajax_genwave_apply_contentsrc\AjaxManager.php:70
authwp_ajax_genwave_test_connectionsrc\Pages\InstantGeneratorSettings.php:15
WordPress Hooks 27
actioninitgen-wave.php:166
actionadmin_bar_menusrc\AdminBar.php:14
actionadmin_noticessrc\Controllers\IntegrationCallbackController.php:78
actionadmin_noticessrc\Controllers\IntegrationCallbackController.php:113
filterallowed_redirect_hostssrc\Controllers\VerifyLoginController.php:32
actionadmin_menusrc\Core\AdminPageManager.php:16
actionrest_api_initsrc\Core\AiRestApi.php:26
actioninitsrc\Core\AiRestApi.php:30
filterhttp_request_timeoutsrc\Core\ApiManager.php:178
filterhttp_request_timeoutsrc\Core\ApiManager.php:531
actionadmin_enqueue_scriptssrc\Core\Enqueue.php:20
actionadd_meta_boxessrc\MetaBox.php:14
actionsave_postsrc\MetaBox.php:15
actionwp_loadedsrc\Pages\Dashboard.php:18
actionwp_loadedsrc\Pages\Generate.php:18
actionadmin_menusrc\Pages\InstantGeneratorSettings.php:13
actionadmin_initsrc\Pages\InstantGeneratorSettings.php:14
actionadmin_enqueue_scriptssrc\Pages\InstantGeneratorSettings.php:16
actioninitsrc\Pages\Settings.php:23
actionrest_api_initsrc\Pages\Settings.php:31
actionwp_loadedsrc\Pages\Settings.php:40
actionadmin_noticessrc\Pages\Settings.php:41
actionwp_loadedsrc\Pages\Tools.php:15
actionadmin_post_ai_clear_cachesrc\Pages\Tools.php:16
actionadmin_post_ai_repair_databasesrc\Pages\Tools.php:17
actionadmin_initsrc\Plugin.php:30
actionadmin_initupgrade.php:194
Maintenance & Trust

Genwave – AI Agent for WordPress Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 25, 2026
PHP min version7.4
Downloads371

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Genwave – AI Agent for WordPress Alternatives

AIKTP

AIKTP

aiktp

A
99

AI-powered content automation. Generate SEO-optimized articles and WooCommerce product descriptions with bulk generation support.

3K 1 CVE
All In One SEO Pack for WooCommerce

All In One SEO Pack for WooCommerce

woocommerce-all-in-one-seo-pack

A
85

Manage All in One SEO Pack meta details for WooCommerce Products within the Add/Edit Products view within the WordPress Administration.

3K No CVEs
StoreAgent – WooCommerce AI Chatbot & AI Content Tools

StoreAgent – WooCommerce AI Chatbot & AI Content Tools

storeagent-ai-for-woocommerce

A
100

WooCommerce AI Chatbot for stores with built-in AI content tools. Generate product descriptions, answer customer questions & more with AI.

200 No CVEs
WriteText.ai

WriteText.ai

writetext-ai

A
100

WooCommerce AI for SEO & AEO. Automate product content creation with smart templates, bulk generation, and full-site optimization.

70 No CVEs
Spyglasses – AI Traffic Analytics

Spyglasses – AI Traffic Analytics

spyglasses-ai-traffic-analytics

A
100

AI traffic analytics for WordPress. Detect and monitor traffic from AI assistants like ChatGPT, Claude, Perplexity.

30 No CVEs
Developer Profile

Genwave – AI Agent for WordPress Developer Profile

GenWave

1 plugin · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Genwave – AI Agent for WordPress

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/gen-wave/assets/css/gen-wave-styles.css/wp-content/plugins/gen-wave/assets/js/gen-wave-script.js
Script Paths
/wp-content/plugins/gen-wave/assets/js/gen-wave-script.js
Version Parameters
gen-wave/assets/css/gen-wave-styles.css?ver=gen-wave/assets/js/gen-wave-script.js?ver=

HTML / DOM Fingerprints

CSS Classes
gen-wave-wrappergenwave-button
HTML Comments
<!-- Genwave AI Agent for WordPress --><!-- Start of Genwave Output -->
Data Attributes
data-genwave-actiondata-genwave-id
JS Globals
window.genwave_ajax_objectvar GenWave = {}
REST Endpoints
/wp-json/gen-wave/v1/get-settings/wp-json/gen-wave/v1/process-request
Shortcode Output
[gen_wave_chat][gen_wave_button]
FAQ

Frequently Asked Questions about Genwave – AI Agent for WordPress