Does NumbersQ have any unpatched vulnerabilities?

No. All known vulnerabilities in NumbersQ have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is NumbersQ compatible with WordPress 6.4.8?

According to WordPress.org data, NumbersQ 1.1.1 has been tested up to WordPress 6.4.8. Check the plugin's changelog for the latest compatibility information.

Is NumbersQ compatible with PHP 7.4+?

NumbersQ requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is NumbersQ updated?

NumbersQ was last updated on Jan 15, 2024. Frequent updates are generally a positive security signal.

What is NumbersQ's security score?

NumbersQ has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

NumbersQ Security & Risk Analysis

wordpress.org/plugins/numbersq

Provides overall stats and numbers for your site and also provides the ability to create a connection with NumbersQ.com.

0 active installs v1.1.1 PHP 7.4+ WP 4.0+ Updated Jan 15, 2024

numbersreportrevenuestatswoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is NumbersQ Safe to Use in 2026?

Generally Safe

Score 85/100

NumbersQ has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago

Risk Assessment

The "numbersq" plugin v1.1.1 exhibits a generally strong security posture based on the provided static analysis. The plugin demonstrates excellent adherence to secure coding practices, with a very high percentage of SQL queries using prepared statements and output being properly escaped. The absence of dangerous functions, file operations, and external HTTP requests further contributes to its security. Crucially, there is no known vulnerability history, suggesting a history of responsible development and maintenance.

However, a single flow with an unsanitized path identified during taint analysis presents a potential concern, even though it is not classified as critical or high severity by the analysis tool. This indicates a specific area within the code that could be exploited if it interacts with user-supplied data in an insecure manner. The lack of capability checks on any entry points, coupled with the presence of only one nonce check, means that while the attack surface is reported as zero, any newly introduced or overlooked entry points might lack sufficient authorization.

In conclusion, "numbersq" v1.1.1 is a relatively secure plugin with a good track record. The primary area for improvement lies in thoroughly investigating and sanitizing the identified unsanitized path flow. The absence of critical vulnerabilities and robust use of prepared statements and output escaping are significant strengths. Addressing the single taint flow issue and ensuring all potential entry points have appropriate authorization checks would further enhance its security.

Key Concerns

Taint flow with unsanitized path (High severity)
No capability checks on entry points

Vulnerabilities

None known

NumbersQ Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

NumbersQ Code Analysis

Dangerous Functions

Raw SQL Queries

10 prepared

Unescaped Output

123 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

77% prepared13 total queries

Output Escaping

97% escaped127 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

3 flows1 with unsanitized paths

ajaxSettings (main.php:283)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

NumbersQ Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 18

actioninitclasses\class-numbersq-column.php:21

filtermonths_dropdown_resultsclasses\class-numbersq-column.php:76

filtermonths_dropdown_resultsclasses\class-numbersq-column.php:78

filterpost_row_actionsclasses\class-numbersq-column.php:188

filterpage_row_actionsclasses\class-numbersq-column.php:189

actionadmin_initclasses\class-numbersq-column.php:192

filterparse_queryclasses\class-numbersq-column.php:202

filterparse_queryclasses\class-numbersq-column.php:268

filterparse_queryclasses\class-numbersq-column.php:300

actioninitclasses\class-numbersq-type.php:98

filterenter_title_hereclasses\class-numbersq-type.php:201

actionadmin_enqueue_scriptsclasses\class-numbersq-type.php:204

actionadmin_print_scriptsclasses\class-numbersq-type.php:205

actioninitmain.php:49

actionadmin_initmain.php:78

actionadmin_enqueue_scriptsmain.php:79

actionadmin_menumain.php:80

filterpre_get_postsmain.php:86

Maintenance & Trust

NumbersQ Maintenance & Trust

Maintenance Signals

WordPress version tested6.4.8

Last updatedJan 15, 2024

PHP min version7.4

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

NumbersQ Alternatives

Sales Analytics for WooCommerce

sales-analytics-for-woocommerce

100

Sales Analytics for WooCommerce: detailed reports, payment analytics, AI-based insights, CSV/PDF export, multi-currency, and chart visuals.

10 No CVEs

Sequential Order Number for WooCommerce

wt-woocommerce-sequential-order-numbers

100

Sequential order number for WooCommerce is the best plugin to generate sequential or custom order numbers for existing and new WooCommerce orders.

40K No CVEs

Custom Order Numbers for WooCommerce

custom-order-numbers-for-woocommerce

Set Sequential order numbers in WooCommerce. Custom order number with prefixes can also be set for existing and new WooCommerce orders.

20K 3 CVEs

Metorik – Reports & Email Automation for WooCommerce

metorik-helper

The Metorik Helper helps provide your WooCommerce store with powerful analytics, reports, and tools.

10K 1 CVE

Ninjalytics (formerly Product Sales Report)

product-sales-report-for-woocommerce

100

Quickly create sales reports and charts for your WooCommerce store with advanced filtering by date range, id, category, tag, status, and more.

6K No CVEs

Developer Profile

NumbersQ Developer Profile

agraddy

2 plugins · 1K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect NumbersQ

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/numbersq/css/admin_ajax_form.css/wp-content/plugins/numbersq/js/admin_ajax_form.js

Script Paths

/wp-content/plugins/numbersq/js/admin_ajax_form.js

Version Parameters

numbersq/css/admin_ajax_form.css?ver=numbersq/js/admin_ajax_form.js?ver=

HTML / DOM Fingerprints

Data Attributes

data-numq-copy

FAQ