Does SmartTags AI – WooCommerce Product Tags & SEO Automation have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is SmartTags AI – WooCommerce Product Tags & SEO Automation compatible with WordPress 6.9.4?

According to WordPress.org data, SmartTags AI – WooCommerce Product Tags & SEO Automation 1.0.7 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is SmartTags AI – WooCommerce Product Tags & SEO Automation compatible with PHP 7.4+?

SmartTags AI – WooCommerce Product Tags & SEO Automation requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

SmartTags AI – WooCommerce Product Tags & SEO Automation Security & Risk Analysis

wordpress.org/plugins/smarttags-ai-for-woocommerce

Automatically generate AI-powered WooCommerce product tags to improve product SEO and search visibility. Discover real Google long-tail keywords, bulk …

0 active installs v1.0.7 PHP 7.4+ WP 5.8+ Updated Feb 25, 2026

woocommerce-woocommerce-seo-ai-seo-product-tags-auto-product-tags-bulk-product-tags-long-tail-keywords

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is SmartTags AI – WooCommerce Product Tags & SEO Automation Safe to Use in 2026?

Generally Safe

Score 100/100

SmartTags AI – WooCommerce Product Tags & SEO Automation has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The "smarttags-ai-for-woocommerce" plugin v1.0.7 demonstrates a generally good security posture, with strong adherence to secure coding practices in several areas. The extensive use of prepared statements for all SQL queries and a high percentage of properly escaped output are significant strengths, mitigating common injection and cross-site scripting risks. The plugin also correctly implements nonce and capability checks for a substantial majority of its entry points, and lacks any known historical vulnerabilities.

However, a critical concern arises from the presence of one unprotected AJAX handler, which represents a direct attack vector if not properly secured. While the taint analysis did not reveal critical or high-severity issues, the presence of two flows with unsanitized paths warrants attention, as even low-severity taint issues can sometimes be chained into more impactful vulnerabilities. The plugin's attack surface is relatively small, but the unprotected AJAX handler significantly outweighs the positive aspects of its otherwise robust security implementation.

In conclusion, the plugin has a solid foundation in secure coding, but the single unprotected AJAX handler is a notable weakness that requires immediate remediation. The lack of historical vulnerabilities is positive, suggesting a responsible development team, but it does not negate the immediate risks identified in the static analysis. Addressing the unprotected AJAX handler is paramount to improving the plugin's security.

Key Concerns

1 unprotected AJAX handler
2 flows with unsanitized paths

Vulnerabilities

None known

SmartTags AI – WooCommerce Product Tags & SEO Automation Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

SmartTags AI – WooCommerce Product Tags & SEO Automation Release Timeline

v1.0.7Current

v1.0.5

v1.0.4

v1.0.3

v1.0.2

v1.0.1

v1.0.0

Code Analysis

Analyzed Apr 16, 2026

SmartTags AI – WooCommerce Product Tags & SEO Automation Code Analysis

Dangerous Functions

Raw SQL Queries

14 prepared

Unescaped Output

966 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared14 total queries

Output Escaping

98% escaped984 total outputs

Data Flows · Security

2 unsanitized

Data Flow Analysis

9 flows2 with unsanitized paths

render_job_logs (includes/class-admin.php:1890)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

SmartTags AI – WooCommerce Product Tags & SEO Automation Attack Surface

Entry Points12

Unprotected1

AJAX Handlers 11

authwp_ajax_smarttags_apply_selected_ajaxincludes/class-ajax.php:29

authwp_ajax_smarttags_remove_tagincludes/class-ajax.php:30

authwp_ajax_smarttags_regenerate_single_productincludes/class-ajax.php:31

authwp_ajax_smarttags_get_product_suggestionsincludes/class-ajax.php:32

authwp_ajax_smarttags_test_ai_tokenincludes/class-ajax.php:33

authwp_ajax_smarttags_refresh_ai_configincludes/class-ajax.php:34

authwp_ajax_smarttags_test_singleincludes/class-ajax.php:35

authwp_ajax_smarttags_test_batchincludes/class-ajax.php:36

authwp_ajax_smarttags_test_googleincludes/class-ajax.php:37

authwp_ajax_smarttags_run_nowincludes/class-ajax.php:38

authwp_ajax_smarttags_run_nowsmarttags-ai-for-woocommerce.php:138

REST API Routes 1

POST/wp-json/smarttags/v1/cloud-executesmarttags-ai-for-woocommerce.php:181

WordPress Hooks 33

actionadmin_initincludes/class-admin.php:27

actionadmin_headincludes/class-admin.php:28

actionadmin_initincludes/class-admin.php:31

actionadmin_footerincludes/class-admin.php:34

actionshutdownincludes/class-admin.php:35

actionadmin_menuincludes/class-admin.php:38

actionadmin_menuincludes/class-admin.php:39

actionadmin_initincludes/class-admin.php:40

actionadmin_enqueue_scriptsincludes/class-admin.php:41

actionupdated_optionincludes/class-admin.php:44

filteremoji_svg_urlincludes/class-admin.php:169

filterwp_staticize_emojiincludes/class-admin.php:172

filteroption_use_smiliesincludes/class-admin.php:175

actionadmin_headincludes/class-admin.php:1059

actionadmin_post_smarttags_applyincludes/class-ajax.php:41

actionadmin_post_smarttags_apply_selectedincludes/class-ajax.php:42

actionadmin_post_smarttags_toggle_optoutincludes/class-ajax.php:43

actionadmin_post_smarttags_refresh_queueincludes/class-ajax.php:44

filtercron_schedulesincludes/class-cron.php:32

actionadmin_menuincludes/class-dlm-license.php:29

actionadmin_enqueue_scriptsincludes/class-dlm-license.php:32

filtersmarttags_is_proincludes/class-dlm-license.php:35

actionadmin_post_smarttags_dlm_activateincludes/class-dlm-license.php:38

actionadmin_post_smarttags_dlm_deactivateincludes/class-dlm-license.php:39

actionadmin_initincludes/class-dlm-license.php:963

actionadd_meta_boxes_productincludes/class-frontend.php:21

actionsave_post_productincludes/class-frontend.php:22

actionbefore_woocommerce_initsmarttags-ai-for-woocommerce.php:74

actionplugins_loadedsmarttags-ai-for-woocommerce.php:84

actionsmarttags_initial_user_syncsmarttags-ai-for-woocommerce.php:127

actionrest_api_initsmarttags-ai-for-woocommerce.php:174

filtercron_schedulessmarttags-ai-for-woocommerce.php:394

actionplugins_loadedsmarttags-ai-for-woocommerce.php:465

Maintenance & Trust

SmartTags AI – WooCommerce Product Tags & SEO Automation Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 25, 2026

PHP min version7.4

Downloads391

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

SmartTags AI – WooCommerce Product Tags & SEO Automation Alternatives

No alternatives data available yet.

Developer Profile

SmartTags AI – WooCommerce Product Tags & SEO Automation Developer Profile

Webdirection

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect SmartTags AI – WooCommerce Product Tags & SEO Automation

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/smarttags-ai-for-woocommerce/public/css/smarttags-ai-admin.css/wp-content/plugins/smarttags-ai-for-woocommerce/public/css/smarttags-ai-frontend.css/wp-content/plugins/smarttags-ai-for-woocommerce/public/js/smarttags-ai-admin.js/wp-content/plugins/smarttags-ai-for-woocommerce/public/js/smarttags-ai-frontend.js/wp-content/plugins/smarttags-ai-for-woocommerce/public/js/smarttags-ai-global.js

Version Parameters

smarttags-ai-for-woocommerce/public/css/smarttags-ai-admin.css?ver=smarttags-ai-for-woocommerce/public/css/smarttags-ai-frontend.css?ver=smarttags-ai-for-woocommerce/public/js/smarttags-ai-admin.js?ver=smarttags-ai-for-woocommerce/public/js/smarttags-ai-frontend.js?ver=smarttags-ai-for-woocommerce/public/js/smarttags-ai-global.js?ver=

HTML / DOM Fingerprints

CSS Classes

smarttags-ai-settingssmarttags-ai-product-listsmarttags-ai-tag-suggestionssmarttags-ai-generate-buttonsmarttags-ai-save-buttonsmarttags-ai-admin-sectionsmarttags-ai-review-tagsmarttags-ai-prompts-editor

HTML Comments

+4 more

Data Attributes

data-smarttags-ai-product-iddata-smarttags-ai-setting-namedata-smarttags-ai-prompt-id

JS Globals

smarttags_settingssmarttags_ajax_object

REST Endpoints

/wp-json/smarttags/v1/cloud-execute

FAQ