WP-Safety

SMSQ Notifications for WooCommerce Security & Risk Analysis

wordpress.org/plugins/smsq-notifications-for-woocommerce

Add to your WooCommerce store SMS notifications to your customers when order status changed.

20 active installs v1.3 PHP + WP 3.8+ Updated Nov 10, 2022
a2p-smsq-technologies-limitedsms-pluginssmsqwoocommerce
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is SMSQ Notifications for WooCommerce Safe to Use in 2026?

Generally Safe

Score 85/100

SMSQ Notifications for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago
Risk Assessment

The smsq-notifications-for-woocommerce plugin exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices in its handling of SQL queries, utilizing prepared statements exclusively, and no file operations are present, which are common attack vectors. The absence of known CVEs and a clean vulnerability history also suggest a generally stable codebase. However, significant concerns arise from the code analysis. The presence of the `unserialize` function, a known source of unserialization vulnerabilities when handling untrusted input, is a critical red flag, especially without clear sanitization or capability checks. Furthermore, the exceptionally low percentage of properly escaped output (6%) indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities across the plugin's outputs. The lack of nonce checks and capability checks on any entry points, though the static analysis reports zero unprotected entry points, suggests that any potential future additions or misconfigurations could easily introduce vulnerabilities.

Key Concerns

  • Presence of unserialize function
  • Low percentage of properly escaped output
  • Missing nonce checks
  • Missing capability checks
Vulnerabilities
None known

SMSQ Notifications for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

SMSQ Notifications for WooCommerce Code Analysis

Dangerous Functions
1
Raw SQL Queries
0
0 prepared
Unescaped Output
33
2 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
3
Bundled Libraries
0

Dangerous Functions Found

unserialize$plugin = get_object_vars( unserialize( $respuesta['body'] ) );includes\admin\funciones-smsq.php:68

Output Escaping

6% escaped35 total outputs
Attack Surface

SMSQ Notifications for WooCommerce Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 15
filterplugin_row_metaincludes\admin\funciones-smsq.php:31
actionadmin_enqueue_scriptsincludes\admin\funciones-smsq.php:92
actioninitsms-q.php:68
actionadmin_menusms-q.php:80
filterwoocommerce_screen_idssms-q.php:88
actionadmin_initsms-q.php:103
actionwoocommerce_order_status_pending_to_on-hold_notificationsms-q.php:244
actionwoocommerce_order_status_failed_to_on-hold_notificationsms-q.php:245
actionwoocommerce_order_status_processingsms-q.php:246
actionwoocommerce_order_status_completedsms-q.php:247
actionwoocommerce_order_status_cancelledsms-q.php:248
actionwoocommerce_order_status_pending_to_processing_notificationsms-q.php:253
actionsms_q_ejecuta_el_temporizadorsms-q.php:271
actionwoocommerce_new_customer_notesms-q.php:331
actionadmin_noticessms-q.php:333

Scheduled Events 1

sms_q_ejecuta_el_temporizador
Maintenance & Trust

SMSQ Notifications for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13
Last updatedNov 10, 2022
PHP min version
Downloads2K

Community Trust

Rating100/100
Number of ratings1
Active installs20
Alternatives

SMSQ Notifications for WooCommerce Alternatives

Essential Addons for Elementor – Popular Elementor Templates & Widgets

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

B
76

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs
Google for WooCommerce

Google for WooCommerce

google-listings-and-ads

A
99

Native integration with Google that allows merchants to easily display their products across Google’s network.

900K 1 CVE
WooPayments: Integrated WooCommerce Payments

WooPayments: Integrated WooCommerce Payments

woocommerce-payments

A
89

Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.

900K 7 CVEs
WooCommerce PayPal Payments

WooCommerce PayPal Payments

woocommerce-paypal-payments

A
100

PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.

800K 1 CVE
Click to Chat – HoliThemes

Click to Chat – HoliThemes

click-to-chat-for-whatsapp

A
96

WhatsApp Chat🔥. Let's make your Web page visitors contact you through 'WhatsApp', 'WhatsApp Business'. Add matching Widget✅

700K 3 CVEs
Developer Profile

SMSQ Notifications for WooCommerce Developer Profile

SMS Q

1 plugin · 20 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect SMSQ Notifications for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/smsq-notifications-for-woocommerce/css/admin.css/wp-content/plugins/smsq-notifications-for-woocommerce/js/admin.js
Version Parameters
smsq-notifications-for-woocommerce/css/admin.css?ver=smsq-notifications-for-woocommerce/js/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
smsq-settings
HTML Comments
Igual no deberías poder abrirme
FAQ

Frequently Asked Questions about SMSQ Notifications for WooCommerce