WP-Safety

NotifyWise – Back In Stock Notifier for WooCommerce Security & Risk Analysis

wordpress.org/plugins/notifywise-back-in-stock-notifier-for-woocommerce

Back in Stock Notifier for WooCommerce ensures instant alerts on restocked products, increasing sales and reducing lost purchase opportunities.

10 active installs v1.0.4 PHP 7.4+ WP 6.2+ Updated Jun 14, 2025
back-in-stocknotifyrestockstock-alertwoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is NotifyWise – Back In Stock Notifier for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

NotifyWise – Back In Stock Notifier for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9mo ago
Risk Assessment

The "notifywise-back-in-stock-notifier-for-woocommerce" plugin v1.0.4 presents a concerning security posture primarily due to its extensive unprotected attack surface. With 23 AJAX handlers, none of which have authentication checks, any user, including unauthenticated ones, can trigger these functions. While the code signals indicate good practices in SQL query preparation (83% prepared) and output escaping (99% escaped), and a lack of known CVEs is positive, these strengths are overshadowed by the significant risk posed by unprotected entry points. The taint analysis reveals two high-severity flows with unsanitized paths, indicating potential for privilege escalation or sensitive data exposure if these flows are triggered in a malicious context. Although the plugin bundles Select2, its version isn't specified, so potential vulnerabilities in this library cannot be ruled out without further inspection. The history of zero recorded vulnerabilities is a positive indicator of past secure development, but the current code's unprotected AJAX handlers represent a critical weakness that needs immediate attention.

Key Concerns

  • 23 AJAX handlers without auth checks
  • 2 high severity taint flows with unsanitized paths
  • Missing nonce checks on 23 AJAX handlers
Vulnerabilities
None known

NotifyWise – Back In Stock Notifier for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

NotifyWise – Back In Stock Notifier for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
11
52 prepared
Unescaped Output
2
333 escaped
Nonce Checks
1
Capability Checks
4
File Operations
0
External Requests
13
Bundled Libraries
1

Bundled Libraries

Select2

SQL Query Safety

83% prepared63 total queries

Output Escaping

99% escaped335 total outputs
Data Flows
6 unsanitized

Data Flow Analysis

11 flows6 with unsanitized paths
<mail-configuration> (admin\partials\views\mail-configuration\mail-configuration.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
23 unprotected

NotifyWise – Back In Stock Notifier for WooCommerce Attack Surface

Entry Points23
Unprotected23

AJAX Handlers 23

authwp_ajax_notifywise_button_general_formincludes\class-notifywise-ajax.php:15
authwp_ajax_notifywise_button_design_normal_formincludes\class-notifywise-ajax.php:16
authwp_ajax_notifywise_button_design_hover_formincludes\class-notifywise-ajax.php:17
authwp_ajax_notifywise_mail_custom_content_formincludes\class-notifywise-ajax.php:20
authwp_ajax_notifywise_mailer_smtp_formincludes\class-notifywise-ajax.php:21
authwp_ajax_notifywise_set_mailer_typeincludes\class-notifywise-ajax.php:22
authwp_ajax_notifywise_mailer_brevo_formincludes\class-notifywise-ajax.php:23
authwp_ajax_notifywise_mailer_sendgrid_formincludes\class-notifywise-ajax.php:24
authwp_ajax_notifywise_revoke_smtp_mailerincludes\class-notifywise-ajax.php:26
authwp_ajax_notifywise_revoke_brevo_mailerincludes\class-notifywise-ajax.php:27
authwp_ajax_notifywise_revoke_sendgrid_mailerincludes\class-notifywise-ajax.php:28
authwp_ajax_notifywise_submit_recaptcha_formincludes\class-notifywise-ajax.php:31
authwp_ajax_notifywise_remove_recaptcha_formincludes\class-notifywise-ajax.php:32
authwp_ajax_notifywise_submit_recaptcha_versionincludes\class-notifywise-ajax.php:33
authwp_ajax_notifywise_integrate_brevo_formincludes\class-notifywise-ajax.php:36
authwp_ajax_notifywise_set_external_integration_statusincludes\class-notifywise-ajax.php:37
authwp_ajax_notifywise_revoke_brevo_external_integrationincludes\class-notifywise-ajax.php:38
authwp_ajax_notifywise_set_brevo_contact_listincludes\class-notifywise-ajax.php:39
authwp_ajax_notifywise_submit_public_formincludes\class-notifywise-ajax.php:42
noprivwp_ajax_notifywise_submit_public_formincludes\class-notifywise-ajax.php:43
authwp_ajax_notifywise_subscriber_remove_list_itemincludes\class-notifywise-ajax.php:46
authwp_ajax_notifywise_subscriber_list_bulk_removeincludes\class-notifywise-ajax.php:47
authwp_ajax_notifywise_notification_list_bulk_deleteincludes\class-notifywise-ajax.php:50
WordPress Hooks 20
actionadmin_menuadmin\class-notifywise-menu-settings.php:28
actionadmin_enqueue_scriptsadmin\class-notifywise-menu-settings.php:29
actionwpcf7_before_send_mailincludes\class-notifywise-init-external-integration.php:23
actionphpmailer_initincludes\class-notifywise-init-mailer-integration.php:16
filterwp_mailincludes\class-notifywise-init-mailer-integration.php:17
filterwoocommerce_loop_add_to_cart_linkincludes\class-notifywise-init-notify-button.php:20
actionwoocommerce_single_product_summaryincludes\class-notifywise-init-notify-button.php:21
actioninitincludes\class-notifywise-init-recaptcha.php:20
actionwoocommerce_update_productincludes\class-notifywise-init-webhooks.php:15
actionwoocommerce_product_set_stock_statusincludes\class-notifywise-init-webhooks.php:16
actionadmin_enqueue_scriptsincludes\class-notifywise.php:125
actionadmin_enqueue_scriptsincludes\class-notifywise.php:126
actionwp_enqueue_scriptsincludes\class-notifywise.php:144
actionwp_enqueue_scriptsincludes\class-notifywise.php:145
actionadmin_noticesnotifywise-back-in-stock-notifier-for-woocommerce.php:36
actionplugins_loadednotifywise-back-in-stock-notifier-for-woocommerce.php:91
actionwp_enqueue_scriptspublic\class-notifywise-init-custom-button-design.php:14
actioninitpublic\class-notifywise-init-modal.php:14
actionwoocommerce_before_main_contentpublic\class-notifywise-init-modal.php:19
actioninitpublic\class-notifywise-init-shortcode.php:14
Maintenance & Trust

NotifyWise – Back In Stock Notifier for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedJun 14, 2025
PHP min version7.4
Downloads765

Community Trust

Rating100/100
Number of ratings1
Active installs10
Alternatives

NotifyWise – Back In Stock Notifier for WooCommerce Alternatives

Restock Notifier For WooCommerce

Restock Notifier For WooCommerce

restock-notifier-for-woocommerce

A
100

Notify customers via email when out-of-stock WooCommerce products are restocked. Simple, smart, and fully automated.

20 No CVEs
Alertify – Back in Stock WooCommerce Alerts & Email Notifications

Alertify – Back in Stock WooCommerce Alerts & Email Notifications

alertify

A
92

Alertify - Back in Stock WooCommerce Alerts & Email Notifications

0 No CVEs
Beltoft In-Stock Notifier for WooCommerce

Beltoft In-Stock Notifier for WooCommerce

beltoft-in-stock-notifier

A
100

Let customers subscribe to out-of-stock product notifications and automatically email them when items are back in stock.

0 No CVEs
Stock Notifier Pro For WooCommerce

Stock Notifier Pro For WooCommerce

stock-notifier-pro-for-woocommerce

A
100

Never lose a sale due to an out-of-stock product again. Automatically notify your customers when their favorite items are back in stock and recover lo &hellip;

0 No CVEs
Simple Newsletter Plugin – Noptin

Simple Newsletter Plugin – Noptin

newsletter-optin-box

A
95

A fast, GDPR-compliant newsletter plugin. Collect newsletter subscribers, let users subscribe to new post notifications, and send newsletters. ★★★★★

10K 4 CVEs
Developer Profile

NotifyWise – Back In Stock Notifier for WooCommerce Developer Profile

6amtech

3 plugins · 210 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect NotifyWise – Back In Stock Notifier for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/notifywise-back-in-stock-notifier-for-woocommerce/admin/css/notifywise-admin-common.css/wp-content/plugins/notifywise-back-in-stock-notifier-for-woocommerce/admin/js/notifywise-admin-common.js/wp-content/plugins/notifywise-back-in-stock-notifier-for-woocommerce/admin/css/notifywise-admin-menu-custom.css
Script Paths
/wp-content/plugins/notifywise-back-in-stock-notifier-for-woocommerce/admin/js/notifywise-admin-common.js
Version Parameters
notifywise-back-in-stock-notifier-for-woocommerce/admin/css/notifywise-admin-common.css?ver=notifywise-back-in-stock-notifier-for-woocommerce/admin/js/notifywise-admin-common.js?ver=notifywise-back-in-stock-notifier-for-woocommerce/admin/css/notifywise-admin-menu-custom.css?ver=

HTML / DOM Fingerprints

CSS Classes
notifywise-menu-customnotifywise_admin_menu_styles
Data Attributes
data-notifywise-admin-noncedata-ajaxurldata-confirmdata-errordata-recaptcha-status
JS Globals
notifywise
FAQ

Frequently Asked Questions about NotifyWise – Back In Stock Notifier for WooCommerce