Does NS Product Rating for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is NS Product Rating for WooCommerce compatible with WordPress 6.1.10?

According to WordPress.org data, NS Product Rating for WooCommerce 1.2.5 has been tested up to WordPress 6.1.10. Check the plugin's changelog for the latest compatibility information.

How often is NS Product Rating for WooCommerce updated?

NS Product Rating for WooCommerce was last updated on Mar 24, 2023. Frequent updates are generally a positive security signal.

What is NS Product Rating for WooCommerce's security score?

NS Product Rating for WooCommerce has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

NS Product Rating for WooCommerce Security & Risk Analysis

wordpress.org/plugins/ns-product-rating-for-woocommerce

Add rating to your product and view a report

40 active installs v1.2.5 PHP + WP 4.3+ Updated Mar 24, 2023

ratingvotevote-productwoocommercewoocommerce-rating

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is NS Product Rating for WooCommerce Safe to Use in 2026?

Generally Safe

Score 85/100

NS Product Rating for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago

Risk Assessment

The plugin "ns-product-rating-for-woocommerce" v1.2.5 exhibits a mixed security posture. On the positive side, it demonstrates good practices regarding SQL queries, utilizing prepared statements exclusively, and has no recorded vulnerabilities or CVEs in its history, suggesting a commitment to security. The absence of file operations and dangerous functions further strengthens its security foundation.

However, several concerns arise from the static analysis. The presence of two unprotected AJAX handlers presents a significant attack surface, as actions triggered by these handlers could be executed by unauthenticated users. While the taint analysis shows no critical or high-severity unsanitized paths, the fact that all four analyzed flows have unsanitized paths is a notable weakness. Additionally, only 9% of output operations are properly escaped, indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities, especially given the number of outputs and the potential for malicious data to be injected through the unprotected AJAX endpoints.

In conclusion, while the plugin benefits from a clean vulnerability history and secure SQL practices, the unprotected AJAX endpoints and widespread output escaping issues create substantial security risks. The plugin needs urgent attention to address these weaknesses to prevent potential exploitation.

Key Concerns

Unprotected AJAX handlers
Low percentage of properly escaped output
Flows with unsanitized paths
Lack of capability checks

Vulnerabilities

None known

NS Product Rating for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

NS Product Rating for WooCommerce Release Timeline

v1.2.5Current

v1.2.4

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.1.4

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.2

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

NS Product Rating for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

1 prepared

Unescaped Output

117

12 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared1 total queries

Output Escaping

9% escaped129 total outputs

Data Flows · Security

4 unsanitized

Data Flow Analysis

4 flows4 with unsanitized paths

tt_render_list_page (ns_product_rating_woocommerce.restable.php:179)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

NS Product Rating for WooCommerce Attack Surface

Entry Points4

Unprotected2

AJAX Handlers 4

authwp_ajax_add_post_ratingns_product_rating_woocommerce.plugin.php:195

noprivwp_ajax_add_post_ratingns_product_rating_woocommerce.plugin.php:196

authwp_ajax_pe_deactivation_ajax_functionplugineye\plugineye-ajax\plugineye_on_deactivation_function.php:2

noprivwp_ajax_pe_deactivation_ajax_functionplugineye\plugineye-ajax\plugineye_on_deactivation_function.php:3

WordPress Hooks 21

actionadmin_menuns-admin-options\ns-admin-options-setup.php:11

actionadmin_enqueue_scriptsns-admin-options\ns-admin-options-setup.php:18

actionwoocommerce_initns_product_rating_woocommerce.plugin.php:70

actionplugins_loadedns_product_rating_woocommerce.plugin.php:73

actioninitns_product_rating_woocommerce.plugin.php:76

actionwoocommerce_after_shop_loop_itemns_product_rating_woocommerce.plugin.php:149

actionwoocommerce_single_product_summaryns_product_rating_woocommerce.plugin.php:150

actionadmin_initns_product_rating_woocommerce.plugin.php:224

actionadmin_initns_product_rating_woocommerce.plugin.php:240

actionplugins_loadedns_product_rating_woocommerce.plugin.php:250

actionwp_enqueue_scriptsns_product_rating_woocommerce.style.php:12

actionwp_headns_product_rating_woocommerce.style.php:34

actionwp_enqueue_scriptsns_product_rating_woocommerce.style.php:48

actionadmin_enqueue_scriptsns_product_rating_woocommerce.style.php:58

filterplugin_action_linksplugineye\plugineye-class.php:96

actionadmin_menuplugineye\plugineye-class.php:113

actionadmin_enqueue_scriptsplugineye\plugineye-class.php:125

actionadmin_enqueue_scriptsplugineye\plugineye-class.php:136

actionactivated_pluginplugineye\plugineye-class.php:147

actionin_admin_footerplugineye\plugineye-class.php:401

actionactivated_pluginplugineye\plugineye-class.php:440

Maintenance & Trust

NS Product Rating for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10

Last updatedMar 24, 2023

PHP min version

Downloads8K

Community Trust

Rating0/100

Number of ratings0

Active installs40

Alternatives

NS Product Rating for WooCommerce Alternatives

WP Rate And Review

wp-rate-and-review

100

WP Rate And Review enhances your WooCommerce product pages by displaying attractive and customizable rating and review summaries.

0 No CVEs

Crowdsignal Dashboard – Polls, Surveys & more

polldaddy

Manage your Crowdsignal polls, surveys, quizzes, and ratings directly from the WordPress dashboard.

100K 9 CVEs

WP-PostRatings

wp-postratings

Adds an AJAX rating system for your WordPress site's content.

30K 5 CVEs

Trusted Shops Easy Integration for WooCommerce

trusted-shops-easy-integration-for-woocommerce

100

Show that your customers love you with reviews in your online store and boost your business with the free Trusted Shops Easy Integration Plugin for Wo …

6K No CVEs

Like Button Rating ♥ LikeBtn

likebtn-like-button

Add Like button to posts, pages, comments, WooCommerce, BuddyPress, bbPress, UM, custom posts! Sort content by likes! Get instant stats and insights!

4K 5 CVEs

Developer Profile

NS Product Rating for WooCommerce Developer Profile

NsThemes

24 plugins · 4K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect NS Product Rating for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ns-product-rating-for-woocommerce/ns_product_rating_woocommerce.style.php

HTML / DOM Fingerprints

Data Attributes

ns_product_rating_woocommerce_nonce

FAQ