WP-Safety

Quarkcode NeuralCommerce Lite – Profit Analytics & Cost Intelligence Hub Security & Risk Analysis

wordpress.org/plugins/quarkcode-neuralcommerce-lite

Accurate WooCommerce profit analytics by tracking real costs, margins, and net profit — not just revenue.

0 active installs v1.0.8 PHP 7.4+ WP 6.0+ Updated Feb 1, 2026
clvcogsmarginprofit-analyticswoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Quarkcode NeuralCommerce Lite – Profit Analytics & Cost Intelligence Hub Safe to Use in 2026?

Generally Safe

Score 100/100

Quarkcode NeuralCommerce Lite – Profit Analytics & Cost Intelligence Hub has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The plugin "quarkcode-neuralcommerce-lite" v1.0.8 exhibits a mixed security posture. While it demonstrates good practices in output escaping and a relatively low percentage of raw SQL queries, significant concerns arise from its attack surface. A large number of AJAX handlers (23 out of 31) lack authentication checks, presenting a substantial entry point for potential attacks. The taint analysis further exacerbates this concern, revealing 8 high-severity flows with unsanitized paths, suggesting a risk of data manipulation or injection vulnerabilities through these unprotected AJAX endpoints. The absence of any recorded vulnerabilities in its history is a positive sign, indicating a historical lack of exploitable flaws and potentially diligent security practices by the developers. However, this historical data should not overshadow the immediate risks identified in the current static analysis. The plugin's strengths lie in its robust output escaping and prepared statement usage, but the high number of unprotected AJAX endpoints and critical taint flows represent a pressing security concern that requires immediate attention.

Key Concerns

  • Unprotected AJAX handlers
  • High severity taint flows
  • Raw SQL queries without prepare
  • Large attack surface without auth
Vulnerabilities
None known

Quarkcode NeuralCommerce Lite – Profit Analytics & Cost Intelligence Hub Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Quarkcode NeuralCommerce Lite – Profit Analytics & Cost Intelligence Hub Code Analysis

Dangerous Functions
0
Raw SQL Queries
46
111 prepared
Unescaped Output
31
730 escaped
Nonce Checks
10
Capability Checks
12
File Operations
5
External Requests
0
Bundled Libraries
0

SQL Query Safety

71% prepared157 total queries

Output Escaping

96% escaped761 total outputs
Data Flows
10 unsanitized

Data Flow Analysis

16 flows10 with unsanitized paths
bulk_import_costs (includes\admin\class-qcnc-admin-ajax.php:295)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
23 unprotected

Quarkcode NeuralCommerce Lite – Profit Analytics & Cost Intelligence Hub Attack Surface

Entry Points31
Unprotected23

AJAX Handlers 31

authwp_ajax_qcnc_update_product_costincludes\admin\class-qcnc-admin-ajax.php:83
authwp_ajax_qcnc_get_product_costincludes\admin\class-qcnc-admin-ajax.php:84
authwp_ajax_qcnc_bulk_import_costsincludes\admin\class-qcnc-admin-ajax.php:85
authwp_ajax_qcnc_export_costsincludes\admin\class-qcnc-admin-ajax.php:86
authwp_ajax_qcnc_recalculate_orderincludes\admin\class-qcnc-admin-ajax.php:87
authwp_ajax_qcnc_get_product_costs_listincludes\admin\class-qcnc-admin-ajax.php:88
authwp_ajax_qcnc_delete_costincludes\admin\class-qcnc-admin-ajax.php:89
authwp_ajax_qcnc_get_orders_profitincludes\admin\class-qcnc-admin-ajax.php:90
authwp_ajax_qcnc_get_products_listincludes\admin\class-qcnc-admin-ajax.php:91
authwp_ajax_qcnc_get_product_detailsincludes\admin\class-qcnc-admin-ajax.php:92
authwp_ajax_qcnc_get_order_countincludes\admin\class-qcnc-admin-ajax.php:93
authwp_ajax_qcnc_start_bulk_processingincludes\admin\class-qcnc-admin-ajax.php:94
authwp_ajax_qcnc_process_order_batchincludes\admin\class-qcnc-admin-ajax.php:95
authwp_ajax_qcnc_clear_dashboard_cacheincludes\admin\class-qcnc-admin-ajax.php:96
authwp_ajax_qcnc_reset_profit_dataincludes\admin\class-qcnc-admin-ajax.php:97
authwp_ajax_qcnc_get_order_detailsincludes\admin\class-qcnc-admin-ajax.php:98
authwp_ajax_qcnc_get_gateway_feeincludes\admin\class-qcnc-admin-ajax.php:99
authwp_ajax_qcnc_save_gateway_feeincludes\admin\class-qcnc-admin-ajax.php:100
authwp_ajax_qcnc_delete_gateway_feeincludes\admin\class-qcnc-admin-ajax.php:101
authwp_ajax_qcnc_get_cost_historyincludes\admin\class-qcnc-admin-ajax.php:102
authwp_ajax_qcnc_cleanup_duplicate_costsincludes\admin\class-qcnc-admin-ajax.php:103
authwp_ajax_qcnc_get_advanced_dashboard_dataincludes\admin\class-qcnc-admin-ajax.php:105
authwp_ajax_qcnc_get_profit_forecastincludes\admin\class-qcnc-admin-ajax.php:106
authwp_ajax_qcnc_get_realtime_statsincludes\admin\class-qcnc-admin-ajax.php:107
authwp_ajax_qcnc_export_dashboardincludes\admin\class-qcnc-admin-ajax.php:108
authwp_ajax_qcnc_save_products_inlineincludes\admin\class-qcnc-admin-ajax.php:110
authwp_ajax_qcnc_calculate_all_profitsincludes\admin\class-qcnc-admin-ajax.php:113
authwp_ajax_qcnc_send_digest_nowincludes\admin\class-qcnc-admin-ajax.php:114
authwp_ajax_qcnc_get_products_listincludes\admin\class-qcnc-admin.php:86
authwp_ajax_qcnc_save_products_inlineincludes\admin\class-qcnc-admin.php:87
authwp_ajax_qcnc_test_alertincludes\admin\class-qcnc-alert-test-handler.php:26
WordPress Hooks 44
actionadmin_menuincludes\admin\class-qcnc-admin.php:80
actionadmin_enqueue_scriptsincludes\admin\class-qcnc-admin.php:81
filtermanage_shop_order_posts_columnsincludes\admin\class-qcnc-admin.php:82
actionmanage_shop_order_posts_custom_columnincludes\admin\class-qcnc-admin.php:83
filtermanage_edit-product_columnsincludes\admin\class-qcnc-admin.php:84
actionmanage_product_posts_custom_columnincludes\admin\class-qcnc-admin.php:85
actionadmin_enqueue_scriptsincludes\admin\class-qcnc-admin.php:88
actionrest_api_initincludes\class-qcnc-core.php:193
actionwoocommerce_order_status_changedincludes\class-qcnc-core.php:249
actionwoocommerce_payment_completeincludes\class-qcnc-core.php:250
actionwoocommerce_order_refundedincludes\class-qcnc-core.php:251
actionwoocommerce_update_productincludes\class-qcnc-core.php:254
actionwoocommerce_new_productincludes\class-qcnc-core.php:255
actionwoocommerce_order_status_completedincludes\core\class-qcnc-margin-alert-system.php:59
actionqcnc_product_cost_updatedincludes\core\class-qcnc-margin-alert-system.php:62
actionqcnc_order_profit_calculatedincludes\core\class-qcnc-margin-alert-system.php:65
actionqcnc_before_bulk_profit_calculationincludes\core\class-qcnc-margin-alert-system.php:68
actionqcnc_after_bulk_profit_calculationincludes\core\class-qcnc-margin-alert-system.php:69
actionqcnc_daily_profit_summaryincludes\core\class-qcnc-margin-alert-system.php:74
actionqcnc_anomaly_detectionincludes\core\class-qcnc-margin-alert-system.php:77
filterqcnc_settings_tabsincludes\core\class-qcnc-margin-alert-system.php:80
actionqcnc_settings_alertsincludes\core\class-qcnc-margin-alert-system.php:81
actionqcnc_hourly_digestincludes\core\class-qcnc-margin-alert-system.php:83
actionqcnc_daily_digestincludes\core\class-qcnc-margin-alert-system.php:84
filterwp_mail_content_typeincludes\core\class-qcnc-margin-alert-system.php:1859
filtercron_schedulesincludes\cron\class-qcnc-cron-jobs.php:28
actionqcnc_plugin_activatedincludes\cron\class-qcnc-cron-jobs.php:31
actionqcnc_plugin_deactivatedincludes\cron\class-qcnc-cron-jobs.php:34
actionqcnc_daily_profit_summaryincludes\cron\class-qcnc-cron-jobs.php:37
actionqcnc_anomaly_detectionincludes\cron\class-qcnc-cron-jobs.php:38
actionqcnc_hourly_profit_checkincludes\cron\class-qcnc-cron-jobs.php:39
actionqcnc_weekly_cleanupincludes\cron\class-qcnc-cron-jobs.php:40
actionqcnc_cache_cleanupincludes\cron\class-qcnc-cron-jobs.php:41
actionadmin_initincludes\cron\class-qcnc-cron-jobs.php:44
actionqcnc_daily_clv_recalculationincludes\cron\class-qcnc-cron-jobs.php:391
actionqcnc_weekly_churn_checkincludes\cron\class-qcnc-cron-jobs.php:392
actionqcnc_monthly_clv_summaryincludes\cron\class-qcnc-cron-jobs.php:393
actionqcnc_hourly_high_risk_checkincludes\cron\class-qcnc-cron-jobs.php:394
actionqcnc_calculate_new_customer_clvincludes\cron\class-qcnc-cron-jobs.php:395
actionwoocommerce_payment_gatewaysincludes\integrations\class-qcnc-payment-gateway-integration.php:44
actionadmin_noticesquarkcode-neuralcommerce-lite.php:126
actionplugins_loadedquarkcode-neuralcommerce-lite.php:132
actionadmin_initquarkcode-neuralcommerce-lite.php:149
actionbefore_woocommerce_initquarkcode-neuralcommerce-lite.php:182

Scheduled Events 11

qcnc_hourly_digest
qcnc_daily_digest
qcnc_daily_profit_summary
qcnc_anomaly_detection
qcnc_hourly_profit_check
qcnc_weekly_cleanup
qcnc_cache_cleanup
qcnc_daily_clv_recalculation
qcnc_weekly_churn_check
qcnc_monthly_clv_summary
qcnc_hourly_high_risk_check
Maintenance & Trust

Quarkcode NeuralCommerce Lite – Profit Analytics & Cost Intelligence Hub Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 1, 2026
PHP min version7.4
Downloads141

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Quarkcode NeuralCommerce Lite – Profit Analytics & Cost Intelligence Hub Alternatives

Profitblue – Financial reporting for WooCommerce

Profitblue – Financial reporting for WooCommerce

profitblue-financial-reporting-for-woocommerce

A
100

Profitblue is an advanced financial reporting tool for WooCommerce. With this tool, even small and medium-sized companies can measure their profit.

10 No CVEs
Modifier For Color Label Variations For Woocomerce

Modifier For Color Label Variations For Woocomerce

modifier-for-colors-label-variations-for-woocomerce

A
85

Beautiful Color, Image For WooCommerce Product Attributes

60 No CVEs
Disconnect: Complete Inventory & Order Management tool for Discogs Sellers

Disconnect: Complete Inventory & Order Management tool for Discogs Sellers

integration-by-disconnect-discogs

A
100

Effortless Discogs & WooCommerce Integration! Manage your inventory and orders seamlessly with our all-in-one app, designed specifically for Disc …

20 No CVEs
Profit Margin Calculator for WooCommerce

Profit Margin Calculator for WooCommerce

profit-margin-calculator

A
100

A lightweight, easy-to-use WooCommerce extension that calculates product profit and profit margins automatically.

10 No CVEs
Essential Addons for Elementor – Popular Elementor Templates & Widgets

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

B
76

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs
Developer Profile

Quarkcode NeuralCommerce Lite – Profit Analytics & Cost Intelligence Hub Developer Profile

vortexplaytv

2 plugins · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Quarkcode NeuralCommerce Lite – Profit Analytics & Cost Intelligence Hub

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/quarkcode-neuralcommerce-lite/assets/css/style.css/wp-content/plugins/quarkcode-neuralcommerce-lite/assets/js/main.js
Script Paths
/wp-content/plugins/quarkcode-neuralcommerce-lite/assets/js/main.js
Version Parameters
quarkcode-neuralcommerce-lite/assets/css/style.css?ver=quarkcode-neuralcommerce-lite/assets/js/main.js?ver=

HTML / DOM Fingerprints

CSS Classes
qcnc-admin-notice
HTML Comments
<!-- Quarkcode NeuralCommerce Lite Plugin --><!-- END OF MIGRATIONS -->
Data Attributes
data-qcnc-order-iddata-qcnc-product-id
JS Globals
QCNC_Admin
FAQ

Frequently Asked Questions about Quarkcode NeuralCommerce Lite – Profit Analytics & Cost Intelligence Hub