WP-Safety

RefatBd notifications with Telegram for Woocommerce Security & Risk Analysis

wordpress.org/plugins/refatbd-notifications-with-telegram-for-woocommerce

Send instant, secure, and custom-templated Telegram notifications for WooCommerce events with advanced conditional logic to a single chat ID.

0 active installs v2.0.2 PHP 7.4+ WP 5.0+ Updated Dec 12, 2025
abandoned-cartconditional-logicnotificationstelegramwoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is RefatBd notifications with Telegram for Woocommerce Safe to Use in 2026?

Generally Safe

Score 100/100

RefatBd notifications with Telegram for Woocommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago
Risk Assessment

This plugin exhibits a generally strong security posture with a low overall risk. The static analysis reveals good practices in several key areas. A high percentage of SQL queries utilize prepared statements, and a significant portion of output is properly escaped, indicating a developer awareness of common web vulnerabilities. The absence of known CVEs and a clean vulnerability history further suggest a well-maintained and secure plugin. However, there is one notable area of concern: one out of twenty entry points, specifically a REST API route, is not protected by a permission callback. This unprotected endpoint represents a potential attack vector that could be exploited by unauthenticated users if it handles sensitive data or functionality. While the taint analysis shows no critical or high severity unsanitized flows, this single unprotected REST API route warrants attention.

Key Concerns

  • REST API route without permission callbacks
Vulnerabilities
None known

RefatBd notifications with Telegram for Woocommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

RefatBd notifications with Telegram for Woocommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
3
38 prepared
Unescaped Output
251
534 escaped
Nonce Checks
19
Capability Checks
20
File Operations
0
External Requests
1
Bundled Libraries
1

Bundled Libraries

Select2

SQL Query Safety

93% prepared41 total queries

Output Escaping

68% escaped785 total outputs
Data Flows
All sanitized

Data Flow Analysis

4 flows
<history-page> (admin\views\history-page.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

RefatBd notifications with Telegram for Woocommerce Attack Surface

Entry Points20
Unprotected1

AJAX Handlers 19

authwp_ajax_rntfw_dismiss_noticeadmin\class-rntfw-admin.php:31
authwp_ajax_rntfw_test_telegramadmin\class-rntfw-admin.php:32
authwp_ajax_rntfw_clear_historyadmin\class-rntfw-admin.php:33
authwp_ajax_rntfw_delete_history_recordadmin\class-rntfw-admin.php:34
authwp_ajax_rntfw_clear_logsadmin\class-rntfw-admin.php:35
authwp_ajax_rntfw_delete_log_recordadmin\class-rntfw-admin.php:36
authwp_ajax_rntfw_register_siteadmin\class-rntfw-admin.php:37
authwp_ajax_rntfw_refresh_bot_statusadmin\class-rntfw-admin.php:38
authwp_ajax_rntfw_search_productsadmin\class-rntfw-admin.php:39
authwp_ajax_rntfw_search_usersadmin\class-rntfw-admin.php:40
authwp_ajax_rntfw_get_shipping_zonesadmin\class-rntfw-admin.php:41
authwp_ajax_rntfw_fetch_api_keyadmin\class-rntfw-admin.php:46
authwp_ajax_rntfw_get_scheduled_sms_listadmin\class-rntfw-admin.php:49
authwp_ajax_rntfw_add_scheduled_smsadmin\class-rntfw-admin.php:50
authwp_ajax_rntfw_get_scheduled_smsadmin\class-rntfw-admin.php:51
authwp_ajax_rntfw_update_scheduled_smsadmin\class-rntfw-admin.php:52
authwp_ajax_rntfw_delete_scheduled_smsadmin\class-rntfw-admin.php:53
authwp_ajax_rntfw_handle_abandoned_checkoutincludes\class-rntfw-core.php:36
noprivwp_ajax_rntfw_handle_abandoned_checkoutincludes\class-rntfw-core.php:37

REST API Routes 1

POST/wp-json/rntfw/v1/commandincludes\class-rntfw-woocommerce-commands.php:23
WordPress Hooks 22
actionadmin_menuadmin\class-rntfw-admin.php:26
actionadmin_initadmin\class-rntfw-admin.php:27
actionadmin_enqueue_scriptsadmin\class-rntfw-admin.php:28
actionadmin_noticesadmin\class-rntfw-admin.php:29
actionadmin_noticesadmin\class-rntfw-admin.php:30
filtercron_schedulesincludes\activation.php:39
actionwoocommerce_order_status_changedincludes\class-rntfw-core.php:25
actionwoocommerce_checkout_order_processedincludes\class-rntfw-core.php:26
actionuser_registerincludes\class-rntfw-core.php:27
actionwoocommerce_product_set_stock_statusincludes\class-rntfw-core.php:28
actioncomment_postincludes\class-rntfw-core.php:29
actionwoocommerce_new_orderincludes\class-rntfw-core.php:30
actionwp_login_failedincludes\class-rntfw-core.php:31
actionwoocommerce_before_product_object_saveincludes\class-rntfw-core.php:32
actionwoocommerce_update_productincludes\class-rntfw-core.php:33
actionrntfw_daily_cleanup_cronincludes\class-rntfw-core.php:40
actionrntfw_scheduled_sms_cronincludes\class-rntfw-core.php:41
actionadmin_noticesincludes\class-rntfw-core.php:44
actionrest_api_initincludes\class-rntfw-woocommerce-commands.php:19
actionbefore_woocommerce_initrefatbd-notifications-with-telegram-for-woocommerce.php:24
actionplugins_loadedrefatbd-notifications-with-telegram-for-woocommerce.php:76
actionwp_enqueue_scriptsrefatbd-notifications-with-telegram-for-woocommerce.php:104

Scheduled Events 2

rntfw_scheduled_sms_cron
rntfw_daily_cleanup_cron
Maintenance & Trust

RefatBd notifications with Telegram for Woocommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 12, 2025
PHP min version7.4
Downloads216

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

RefatBd notifications with Telegram for Woocommerce Alternatives

Bot for Telegram on WooCommerce

Bot for Telegram on WooCommerce

bot-for-telegram-on-woocommerce

B
74

Bot for Telegram on WooCommerce is a plugin that allows you to create a telegram online store based on your website with WooCommerce.

300 1 unpatched
Order and Stock Notifications via Telegram Bot for WooCommerce

Order and Stock Notifications via Telegram Bot for WooCommerce

order-and-stock-notifications-via-telegram-bot-for-woocommerce

A
100

A lightweight plugin that sends WooCommerce order or stock updates to Telegram using a bot.

70 No CVEs
Order Notifications for WooCommerce

Order Notifications for WooCommerce

discord-notifications-for-woocommerce

A
100

Get real-time WooCommerce order notifications on Discord, Telegram, Slack, SMS, and Email.

60 No CVEs
Wappi: Messenger Notifications for WooCommerce

Wappi: Messenger Notifications for WooCommerce

wappi

A
100

Send WhatsApp and Telegram notifications for Woocommerce orders by connecting your personal Whatsapp or Telegram via QR code.

40 No CVEs
Got A Sale – Order Notifications for WooCommerce

Got A Sale – Order Notifications for WooCommerce

got-a-sale

A
100

Send WooCommerce order notifications to Telegram, Discord, and Slack instantly.

0 No CVEs
Developer Profile

RefatBd notifications with Telegram for Woocommerce Developer Profile

Refat Rahman

2 plugins · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect RefatBd notifications with Telegram for Woocommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/refatbd-notifications-with-telegram-for-woocommerce/assets/js/rntfw-abandoned-checkout.js
Script Paths
/wp-content/plugins/refatbd-notifications-with-telegram-for-woocommerce/assets/js/rntfw-abandoned-checkout.js
Version Parameters
refatbd-notifications-with-telegram-for-woocommerce/assets/js/rntfw-abandoned-checkout.js?ver=

HTML / DOM Fingerprints

JS Globals
rntfw_abandoned_checkout_data
FAQ

Frequently Asked Questions about RefatBd notifications with Telegram for Woocommerce