Does NS Sending Update Email for Woocommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is NS Sending Update Email for Woocommerce compatible with WordPress 5.9.13?

According to WordPress.org data, NS Sending Update Email for Woocommerce 1.2.4 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

Is NS Sending Update Email for Woocommerce compatible with PHP 5.3.29+?

NS Sending Update Email for Woocommerce requires PHP 5.3.29 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is NS Sending Update Email for Woocommerce updated?

NS Sending Update Email for Woocommerce was last updated on Feb 4, 2022. Frequent updates are generally a positive security signal.

What is NS Sending Update Email for Woocommerce's security score?

NS Sending Update Email for Woocommerce has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

NS Sending Update Email for Woocommerce Security & Risk Analysis

wordpress.org/plugins/ns-sending-update-email

Send mail to your customer and upsell your product!

10 active installs v1.2.4 PHP 5.3.29+ WP 4.3+ Updated Feb 4, 2022

productwoocommercewoocommerce-productwoocommerce-productswordpress-products

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is NS Sending Update Email for Woocommerce Safe to Use in 2026?

Generally Safe

Score 85/100

NS Sending Update Email for Woocommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The "ns-sending-update-email" plugin v1.2.4 presents a significant security risk due to its unprotected attack surface. All four identified AJAX handlers lack authentication checks, meaning any user, including unauthenticated ones, can trigger these functions. While there are no documented vulnerabilities or critical taint analysis findings, the presence of unsanitized paths in all analyzed flows is a major concern, indicating potential for malicious input to be processed in unexpected ways. The plugin also exhibits poor output escaping practices, with only 18% of outputs being properly escaped, increasing the risk of cross-site scripting (XSS) vulnerabilities.

Despite the absence of past CVEs, which might suggest a history of good security, the current code analysis reveals critical weaknesses. The lack of nonce and capability checks on AJAX endpoints is a serious oversight that could be exploited. The plugin's strengths lie in its use of prepared statements for SQL queries and the absence of dangerous functions or file operations. However, these positive aspects are heavily overshadowed by the extensive unprotected attack surface and potential for data sanitization and output escaping issues.

Key Concerns

AJAX handlers without auth checks
Flows with unsanitized paths
Low output escaping percentage
No nonce checks on AJAX handlers
No capability checks on AJAX handlers

Vulnerabilities

None known

NS Sending Update Email for Woocommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

NS Sending Update Email for Woocommerce Release Timeline

v1.2.4Current

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.1.2

v1.1.1

v1.1.0

v1.0.0

Code Analysis

Analyzed Mar 17, 2026

NS Sending Update Email for Woocommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

6 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

18% escaped34 total outputs

Data Flows · Security

4 unsanitized

Data Flow Analysis

4 flows4 with unsanitized paths

ns_sue_update_status (ajax-services\ns-sue-update-status-ajax.php:5)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

NS Sending Update Email for Woocommerce Attack Surface

Entry Points4

Unprotected4

AJAX Handlers 4

noprivwp_ajax_ns_sue_update_statusajax-services\ns-sue-update-status-ajax.php:3

authwp_ajax_ns_sue_update_statusajax-services\ns-sue-update-status-ajax.php:4

authwp_ajax_pe_deactivation_ajax_functionplugineye\plugineye-ajax\plugineye_on_deactivation_function.php:2

noprivwp_ajax_pe_deactivation_ajax_functionplugineye\plugineye-ajax\plugineye_on_deactivation_function.php:3

WordPress Hooks 15

actionadmin_noticesinc\ns-sue-check-woocommerce-version.php:25

actionadmin_menuns-admin-options\ns-admin-options-setup.php:11

actionadmin_initns-admin-options\ns-admin-options-setup.php:29

actionadmin_enqueue_scriptsns-admin-options\ns-admin-options-setup.php:35

actionadd_meta_boxesns-plugin-home.php:78

actionsave_postns-plugin-home.php:102

filterwp_mail_content_typens-plugin-home.php:141

actionadmin_initns-sending-update-email-options.php:21

filterplugin_action_linksplugineye\plugineye-class.php:96

actionadmin_menuplugineye\plugineye-class.php:113

actionadmin_enqueue_scriptsplugineye\plugineye-class.php:125

actionadmin_enqueue_scriptsplugineye\plugineye-class.php:136

actionactivated_pluginplugineye\plugineye-class.php:147

actionin_admin_footerplugineye\plugineye-class.php:401

actionactivated_pluginplugineye\plugineye-class.php:440

Maintenance & Trust

NS Sending Update Email for Woocommerce Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedFeb 4, 2022

PHP min version5.3.29

Downloads9K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

NS Sending Update Email for Woocommerce Alternatives

Product Import Export for WooCommerce – Import Export Product CSV Suite

product-import-export-for-woo

Easily import/export WooCommerce products (simple, grouped, external/affiliate) via CSV. Transfer product data, including images, reviews, categories, …

90K 7 CVEs

WP All Import – Product Import for WooCommerce

woocommerce-xml-csv-product-import

100

Drag & drop to import products from any CSV, XML, Excel, or Google Sheets file. Supports variations, images, attributes, brands, and more with pow …

20K No CVEs

WP All Export – Product Export Add-On for WooCommerce

product-export-for-woocommerce

100

Drag & drop to export products to CSV, Excel, or XML files of any format. Supports variations, images, attributes, brands, and more with powerful …

10K No CVEs

Products Per Page for WooCommerce

woocommerce-products-per-page

100

Products Per Page for WooCommerce is a easy-to-setup plugin that integrates a 'products per page' dropdown on your WooCommerce pages.

10K No CVEs

Export All Posts, Products, Orders, Refunds & Users

wp-ultimate-exporter

Export any WordPress website including WooCommerce data seamlessly with our powerful export plugin. Save records as CSV, XML, or Excel file for secure …

9K 9 CVEs

Developer Profile

NS Sending Update Email for Woocommerce Developer Profile

NsThemes

24 plugins · 4K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect NS Sending Update Email for Woocommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ns-sending-update-email/ns-admin-options/css/ns-option-css-page.css/wp-content/plugins/ns-sending-update-email/ns-admin-options/css/ns-option-css-custom-page.css/wp-content/plugins/ns-sending-update-email/ns-admin-options/js/ns-option-js-page.js

Script Paths

/wp-content/plugins/ns-sending-update-email/ns-admin-options/js/ns-option-js-page.js

HTML / DOM Fingerprints

CSS Classes

ns-sue-containerns-sue-div-container

Data Attributes

id="ns-sue-activate-on-product"name="ns-sue-activate-on-product"id="ns-sue-prod-id"name="ns-sue-prod-id"id="nssumlinkpremium"

FAQ