Does Post Status Notifier Lite have any unpatched vulnerabilities?

No. All known vulnerabilities in Post Status Notifier Lite have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Post Status Notifier Lite compatible with WordPress 6.6.5?

According to WordPress.org data, Post Status Notifier Lite 1.11.7 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

Is Post Status Notifier Lite compatible with PHP 7.4+?

Post Status Notifier Lite requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Post Status Notifier Lite updated?

Post Status Notifier Lite was last updated on Oct 24, 2024. Frequent updates are generally a positive security signal.

What is Post Status Notifier Lite's security score?

Post Status Notifier Lite has a WP-Safety security score of 90/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Post Status Notifier Lite Security & Risk Analysis

wordpress.org/plugins/post-status-notifier-lite

Notify on every post change: Flexible rules, custom placeholders and support for all post types and taxonomies.

800 active installs v1.11.7 PHP 7.4+ WP 3.3+ Updated Oct 24, 2024

emailnotificationnotifypoststatus

A · Safe

CVEs total3

Unpatched0

Last CVEOct 28, 2024

Plugin page Download

Safety Verdict

Is Post Status Notifier Lite Safe to Use in 2026?

Generally Safe

Score 90/100

Post Status Notifier Lite has a strong security track record. Known vulnerabilities have been patched promptly.

3 known CVEsLast CVE: Oct 28, 2024Updated 1yr ago

Risk Assessment

The static analysis of the post-status-notifier-lite plugin v1.11.7 reveals a generally positive security posture regarding its attack surface. There are no identified AJAX handlers, REST API routes, shortcodes, or cron events, and no direct file operations or external HTTP requests are made. The plugin also utilizes prepared statements for all its SQL queries and includes nonce checks, which are good security practices. However, a significant concern arises from the output escaping, where only 33% of the identified outputs are properly escaped, leaving potential for Cross-Site Scripting vulnerabilities. Furthermore, the plugin has a history of three known medium-severity vulnerabilities, with the last one being very recent. This pattern of past Cross-Site Scripting vulnerabilities, coupled with the current low output escaping rate, suggests a recurring weakness that could be exploited if not addressed comprehensively.

Key Concerns

Low percentage of properly escaped outputs
History of 3 medium severity vulnerabilities

Vulnerabilities

Post Status Notifier Lite Security Vulnerabilities

CVEs by Year

1 CVE in 2022

2022

1 CVE in 2023

2023

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

3 total CVEs

CVE-2024-10048medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Post Status Notifier Lite and Premium <= 1.11.6 - Reflected Cross-Site Scripting via page

Oct 28, 2024 Patched in 1.11.7 (1d)

CVE-2023-47766medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Post Status Notifier Lite <= 1.11.0 - Reflected Cross-Site Scripting

Nov 14, 2023 Patched in 1.11.1 (70d)

CVE-2022-4325medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Post Status Notifier Lite <= 1.10.0 - Reflected Cross-Site Scripting

Dec 20, 2022 Patched in 1.10.1 (399d)

Code Analysis

Analyzed Mar 16, 2026

Post Status Notifier Lite Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

33% escaped3 total outputs

Attack Surface

Post Status Notifier Lite Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

filterpsn_rule_form_description_ccadmin\menu\controllers\PsnRulesController.php:266

filterpsn_rule_form_description_bccadmin\menu\controllers\PsnRulesController.php:269

actionplugins_loadedincludes\check_for_lite_version.php:24

Maintenance & Trust

Post Status Notifier Lite Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedOct 24, 2024

PHP min version7.4

Downloads51K

Community Trust

Rating78/100

Number of ratings17

Active installs800

Alternatives

Post Status Notifier Lite Alternatives

Post Status Notifications

wpsite-post-status-notifications

The Post Status Notifications plugin by 99 Robots provides an easy way to notify Administrators when Contributors submit posts for review or when a Co …

1K No CVEs

Mail to Users

mail2users

Email to users about new posts and pages. Send custom emails. Email to users about latest woocommerce products. Emails privacy.

20 No CVEs

WP Post Status Notifications

wp-post-status-notifications

Configure email notifications for post/page status changes.

10 No CVEs

MailPoet – Newsletters, Email Marketing, and Automation

mailpoet

Send beautiful newsletters from WordPress. Collect subscribers with signup forms, automate your emails for WooCommerce, blog post notifications & more

500K 3 CVEs

Email Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress

email-subscribers

Add subscription forms on the website and send newsletters & automatically send post notification about new blog posts once it gets published.

60K 42 CVEs

Developer Profile

Post Status Notifier Lite Developer Profile

Timo

2 plugins · 3K total installs

trust score

Avg Security Score

94/100

Avg Patch Time

158 days

View full developer profile

Detection Fingerprints

How We Detect Post Status Notifier Lite

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/post-status-notifier-lite/admin/css/admin.css/wp-content/plugins/post-status-notifier-lite/admin/css/dialog.css/wp-content/plugins/post-status-notifier-lite/admin/js/dialog.js/wp-content/plugins/post-status-notifier-lite/admin/js/admin.js/wp-content/plugins/post-status-notifier-lite/admin/js/menu.js/wp-content/plugins/post-status-notifier-lite/admin/js/pointers.js/wp-content/plugins/post-status-notifier-lite/admin/js/tab.js/wp-content/plugins/post-status-notifier-lite/lib/IfwPsn/Wp/Plugin/Metabox/css/metabox.css+1 more

Script Paths

/wp-content/plugins/post-status-notifier-lite/admin/js/dialog.js/wp-content/plugins/post-status-notifier-lite/admin/js/admin.js/wp-content/plugins/post-status-notifier-lite/admin/js/menu.js/wp-content/plugins/post-status-notifier-lite/admin/js/pointers.js/wp-content/plugins/post-status-notifier-lite/admin/js/tab.js/wp-content/plugins/post-status-notifier-lite/lib/IfwPsn/Wp/Plugin/Metabox/js/metabox.js

Version Parameters

post-status-notifier-lite/admin/css/admin.css?ver=post-status-notifier-lite/admin/css/dialog.css?ver=post-status-notifier-lite/admin/js/dialog.js?ver=post-status-notifier-lite/admin/js/admin.js?ver=post-status-notifier-lite/admin/js/menu.js?ver=post-status-notifier-lite/admin/js/pointers.js?ver=post-status-notifier-lite/admin/js/tab.js?ver=post-status-notifier-lite/lib/IfwPsn/Wp/Plugin/Metabox/css/metabox.css?ver=post-status-notifier-lite/lib/IfwPsn/Wp/Plugin/Metabox/js/metabox.js?ver=

HTML / DOM Fingerprints

CSS Classes

psn-settings-tabspsn-metabox-plugin-infopsn-metabox-plugin-statuspsn-metabox-plugin-premium-adpsn-metabox-ifwfeedpsn-metabox-rulespsn-metabox-testmailpsn-metabox-serverenv+1 more

HTML Comments

Data Attributes

data-psn-pointer-iddata-psn-pointer-headerdata-psn-pointer-contentdata-psn-pointer-edgedata-psn-pointer-aligndata-psn-pointer-target

JS Globals

window.psnvar IfwPsn_Wp_Proxy_Scriptvar IfwPsn_Wp_Proxy_Stylevar PsnApplicationControllervar PsnIndexControllervar PsnServiceController+11 more

FAQ