Does Hippoo Popup have any unpatched vulnerabilities?

No. All known vulnerabilities in Hippoo Popup have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Hippoo Popup compatible with WordPress 6.7.5?

According to WordPress.org data, Hippoo Popup 1.0.4 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

How often is Hippoo Popup updated?

Hippoo Popup was last updated on Apr 13, 2025. Frequent updates are generally a positive security signal.

What is Hippoo Popup's security score?

Hippoo Popup has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Hippoo Popup Security & Risk Analysis

wordpress.org/plugins/hippoo-popup

Integrated smoothly with the Hippoo WooCommerce app, users can easily configure captivating popups directly within the app.

0 active installs v1.0.4 PHP + WP 5.3+ Updated Apr 13, 2025

hippoopopupwoocommerce-popup

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Hippoo Popup Safe to Use in 2026?

Generally Safe

Score 100/100

Hippoo Popup has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11mo ago

Risk Assessment

The hippoo-popup plugin version 1.0.4 exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of dangerous functions, file operations, and external HTTP requests is a positive indicator. Furthermore, the robust use of prepared statements for SQL queries and nearly complete output escaping demonstrate good coding practices. The presence of nonce and capability checks on its entry points (REST API routes in this case) further enhances its security by ensuring proper authorization and preventing common web attacks.

Vulnerabilities

None known

Hippoo Popup Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Hippoo Popup Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

69 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

99% escaped70 total outputs

Attack Surface

Hippoo Popup Attack Surface

Entry Points2

Unprotected0

REST API Routes 2

GET/wp-json/wc/hippoo-popup/v1/settingsapp\web-api-auth.php:97

PUT/wp-json/wc/hippoo-popup/v1/settingsapp\web-api-auth.php:109

WordPress Hooks 5

actionrest_api_initapp\web-api-auth.php:121

actionplugins_loadedhippoo-popup.php:24

actionadmin_menuhippoo-popup.php:37

actionwp_enqueue_scriptshippoo-popup.php:165

actionwp_footerhippoo-popup.php:178

Maintenance & Trust

Hippoo Popup Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedApr 13, 2025

PHP min version

Downloads450

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Hippoo Popup Alternatives

Brave Popup Builder – Popup, Optins, Lead Generation, Survey & Interactive Content

brave-popup-builder

The best drag-and-drop Popup Builder for WordPress. Create Popups, exit-intent popups, slide-ins, and lead generation forms & Woocommerce popups i …

20K 5 CVEs

Poptics – Popup Builder, Email Opt-ins, Exit-Intent & WooCommerce Popups Sales

poptics

Create high-converting popups, email opt-ins, exit-intent popups & WooCommerce popups to boost leads, subscribers and sales.

2K 1 CVE

Quick View for WooCommerce

woo-quickview

Add a quick view button in the product loop so visitors can quickly view product information in a nice modal without opening the product page.

2K 2 CVEs

YITH WooCommerce Popup

yith-woocommerce-popup

Create and customize your popup windows using templates carefully designed by YITH.

2K 2 CVEs

Leo Product Recommendations for WooCommerce

leo-product-recommendations

100

Boost WooCommerce sales with smart product recommendation popups on add to cart.

500 No CVEs

Developer Profile

Hippoo Popup Developer Profile

hippooo

5 plugins · 1K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

1 days

View full developer profile

Detection Fingerprints

How We Detect Hippoo Popup

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/hippoo-popup/assets/images/icon.svg/wp-content/plugins/hippoo-popup/assets/js/bottomSheet.min.js/wp-content/plugins/hippoo-popup/assets/css/bottomSheet.min.css

Script Paths

/wp-content/plugins/hippoo-popup/assets/js/bottomSheet.min.js

Version Parameters

hippoo-popup/assets/js/bottomSheet.min.js?ver=hippoo-popup/assets/css/bottomSheet.min.css?ver=

HTML / DOM Fingerprints

CSS Classes

hp-bottom-sheet

Data Attributes

data-bs-themedata-hippoo-popup

JS Globals

HippooPopup

Shortcode Output

<div id="gift-sheet" data-hippoo-popup='{

FAQ