Does Notifixious Plugin have any unpatched vulnerabilities?

No. All known vulnerabilities in Notifixious Plugin have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Notifixious Plugin compatible with WordPress 2.6.2?

According to WordPress.org data, Notifixious Plugin 0.8 has been tested up to WordPress 2.6.2. Check the plugin's changelog for the latest compatibility information.

How often is Notifixious Plugin updated?

Notifixious Plugin was last updated on Dec 3, 2008. Frequent updates are generally a positive security signal.

What is Notifixious Plugin's security score?

Notifixious Plugin has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Notifixious Plugin Security & Risk Analysis

wordpress.org/plugins/notifixious-plugin

This plugin allows you to notify your readers on their Instant Messaging (AIM, MSN, GTalk, ICQ...), Email or SMS when you publish new posts! It also a …

10 active installs v0.8 PHP + WP 2.5+ Updated Dec 3, 2008

emailfeedsimnotificationsms

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Notifixious Plugin Safe to Use in 2026?

Generally Safe

Score 85/100

Notifixious Plugin has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 17yr ago

Risk Assessment

The 'notifixious-plugin' v0.8 exhibits a mixed security posture. On the positive side, the plugin has no known CVEs and a clean vulnerability history, suggesting good long-term maintenance or a lack of past exploitation. The static analysis also indicates no critical or high severity taint flows, no dangerous functions, and a commitment to using prepared statements for its SQL queries. However, significant concerns arise from the lack of output escaping, with 100% of identified outputs not being properly sanitized. This could lead to Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is directly rendered in the output. Additionally, the absence of any nonce checks or capability checks across all identified entry points, despite a file operation being present, is a notable weakness. While the attack surface is reported as zero, this might be an artifact of the static analysis not identifying all potential entry points or the plugin being very basic. The file operation without any authorization checks is a potential risk.

Key Concerns

No output escaping
No nonce checks
No capability checks
File operation without auth checks

Vulnerabilities

None known

Notifixious Plugin Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Notifixious Plugin Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped7 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

notifixious_widget_control (notifixious.php:81)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Notifixious Plugin Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionadmin_menunotifixious.php:313

actionpublish_postnotifixious.php:314

actionwp_headnotifixious.php:315

actionplugins_loadednotifixious.php:316

Maintenance & Trust

Notifixious Plugin Maintenance & Trust

Maintenance Signals

WordPress version tested2.6.2

Last updatedDec 3, 2008

PHP min version

Downloads6K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Notifixious Plugin Alternatives

miniOrange OTP Login, Verification and SMS Notifications

miniorange-otp-verification

100

OTP Verification via Email/SMS/WhatsApp,SMS Notifications for WooCommerce,OTP Login with Phone,PasswordLess Login.Custom Gateway for OTP Verification

6K 1 CVE

Ultimate WP Mail

ultimate-wp-mail

Custom email and SMS notifications. Automatic send actions. WPForms SMS integration. WooCommerce notifications for purchases, abandoned cart and more!

800 1 unpatched

Notification Master – Real-Time WordPress Notifications With Email, SMS, Webhooks & More

notification-master

100

Send push, email, and real-time notifications across 12+ channels like WhatsApp, Slack, and Discord. Boost engagement automatically.

500 No CVEs

MC4WP: Mailchimp for WordPress

mailchimp-for-wp

The #1 Mailchimp plugin for WordPress. Allows you to add a multitude of newsletter sign-up methods to your site.

1.0M 11 CVEs

MailPoet – Newsletters, Email Marketing, and Automation

mailpoet

Send beautiful newsletters from WordPress. Collect subscribers with signup forms, automate your emails for WooCommerce, blog post notifications & more

500K 3 CVEs

Developer Profile

Notifixious Plugin Developer Profile

julien51

3 plugins · 100 total installs

trust score

Avg Security Score

87/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Notifixious Plugin

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/notifixious-plugin/notifixious.php

Script Paths

https://s3.amazonaws.com/notifixious_assets/notifixious_widget.js

HTML / DOM Fingerprints

HTML Comments

Copyright 2008 Mathieu BUONOMO / Notifixious (email : http://www.notifixio.us) This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or+33 more

Data Attributes

name="notifix_widget_title"id="notifix_widget_title"name="notifix_widget_submit"id="notifix_widget_submit"

FAQ