Does Notiqoo – Order Notification & Customer Chat for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Notiqoo – Order Notification & Customer Chat for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Notiqoo – Order Notification & Customer Chat for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, Notiqoo – Order Notification & Customer Chat for WooCommerce 1.4.7 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Notiqoo – Order Notification & Customer Chat for WooCommerce compatible with PHP 7.4+?

Notiqoo – Order Notification & Customer Chat for WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

Notiqoo – Order Notification & Customer Chat for WooCommerce Security & Risk Analysis

wordpress.org/plugins/wc-messaging

Send WooCommerce WhatsApp notifications via official WhatsApp API for instant order updates, customer chat, and abandoned cart recovery

800 active installs v1.4.7 PHP 7.4+ WP 4.0+ Updated Jan 27, 2026

whatsapp-apiwhatsapp-businesswhatsapp-chatwhatsapp-notificationwoocommerce-whatsapp

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Notiqoo – Order Notification & Customer Chat for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Notiqoo – Order Notification & Customer Chat for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The "wc-messaging" plugin v1.4.8 exhibits a mixed security posture. While it demonstrates good practices in SQL query handling, file operations, and output escaping, significant concerns arise from its extensive attack surface, particularly concerning AJAX handlers. A large majority of AJAX endpoints (16 out of 18) lack authentication checks, presenting a substantial risk for unauthorized actions. The absence of any recorded vulnerabilities historically is positive, suggesting a generally stable codebase. However, this does not mitigate the immediate risks identified in the static analysis, especially the potential for unauthenticated access to numerous plugin functionalities. The plugin's strengths lie in its secure handling of database interactions and output, but these are overshadowed by the open gateway provided by its unprotected AJAX endpoints.

Key Concerns

Unprotected AJAX handlers
Large attack surface without authentication
Low capability check coverage

Vulnerabilities

None known

Notiqoo – Order Notification & Customer Chat for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Notiqoo – Order Notification & Customer Chat for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

311 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

jQuery

SQL Query Safety

100% prepared2 total queries

Output Escaping

97% escaped322 total outputs

Data Flows

All sanitized

Data Flow Analysis

4 flows

woom_save_custom_template_options (admin\class-wc-messaging-admin.php:1653)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

16 unprotected

Notiqoo – Order Notification & Customer Chat for WooCommerce Attack Surface

Entry Points18

Unprotected16

AJAX Handlers 18

authwp_ajax_notiqoo_fetch_abandoned_cart_statsadmin\packages\notiqoo-abandoned-dashboard\notiqoo-abandoned-dashboard.php:14

noprivwp_ajax_notiqoo_fetch_abandoned_cart_statsadmin\packages\notiqoo-abandoned-dashboard\notiqoo-abandoned-dashboard.php:15

authwp_ajax_woom_autosave_manual_trigger_actionsincludes\class-wc-messaging.php:186

noprivwp_ajax_woom_autosave_manual_trigger_actionsincludes\class-wc-messaging.php:187

authwp_ajax_woom_clear_optionincludes\class-wc-messaging.php:191

noprivwp_ajax_woom_clear_optionincludes\class-wc-messaging.php:192

authwp_ajax_woom_manual_trigger_actionincludes\class-wc-messaging.php:194

noprivwp_ajax_woom_manual_trigger_actionincludes\class-wc-messaging.php:195

authwp_ajax_woom_regenerate_wa_templatesincludes\class-wc-messaging.php:199

noprivwp_ajax_woom_regenerate_wa_templatesincludes\class-wc-messaging.php:200

authwp_ajax_woom_ajax_popupincludes\class-wc-messaging.php:202

noprivwp_ajax_woom_ajax_popupincludes\class-wc-messaging.php:203

authwp_ajax_send_trigger_sample_to_urlincludes\class-wc-messaging.php:236

noprivwp_ajax_send_trigger_sample_to_urlincludes\class-wc-messaging.php:237

authwp_ajax_woom_dismiss_review_noticeincludes\class-wc-messaging.php:249

noprivwp_ajax_woom_dismiss_review_noticeincludes\class-wc-messaging.php:250

authwp_ajax_delete_abandoned_couponsincludes\class-wc-messaging.php:254

noprivwp_ajax_delete_abandoned_couponsincludes\class-wc-messaging.php:255

WordPress Hooks 61

actionadmin_noticesadmin\packages\admin-notices\AdminNotice.php:186

actionadmin_noticesadmin\packages\admin-notices\AdminNotice.php:605

actionadmin_initadmin\packages\admin-notices\AdminNotice.php:606

actionwp_dashboard_setupadmin\packages\notiqoo-abandoned-dashboard\notiqoo-abandoned-dashboard.php:8

actionadmin_enqueue_scriptsadmin\packages\notiqoo-abandoned-dashboard\notiqoo-abandoned-dashboard.php:11

actionplugins_loadedincludes\class-wc-messaging.php:156

actionadmin_enqueue_scriptsincludes\class-wc-messaging.php:173

actionadmin_enqueue_scriptsincludes\class-wc-messaging.php:174

filterwoocommerce_settings_tabs_arrayincludes\class-wc-messaging.php:175

filterwoom_tab_subsectionsincludes\class-wc-messaging.php:176

actionwoocommerce_sections_woom_settingsincludes\class-wc-messaging.php:177

filterwoom_subsection_settingsincludes\class-wc-messaging.php:178

filterwoom_subsection_settings_templatesincludes\class-wc-messaging.php:179

filterwoom_subsection_settings_abandoned_cartincludes\class-wc-messaging.php:180

filterwoom_additional_settingsincludes\class-wc-messaging.php:181

filterwoom_subsection_settings_supportincludes\class-wc-messaging.php:182

actionwoom_trigger_wa_msgincludes\class-wc-messaging.php:183

filterwoom_additional_settingsincludes\class-wc-messaging.php:185

filterwoom_settings_sidebarincludes\class-wc-messaging.php:189

actionwp_dashboard_setupincludes\class-wc-messaging.php:197

actionwoocommerce_settings_woom_settingsincludes\class-wc-messaging.php:205

actionwoocommerce_settings_save_woom_settingsincludes\class-wc-messaging.php:206

actionwoocommerce_admin_field_woom_config_template_settingsincludes\class-wc-messaging.php:207

actionwoocommerce_admin_field_woom_hiddenincludes\class-wc-messaging.php:208

actionwoocommerce_admin_field_woom_trigger_buttonincludes\class-wc-messaging.php:209

actionwoocommerce_admin_field_woom_info_downloaderincludes\class-wc-messaging.php:210

actionwoocommerce_admin_field_woom_inline_fieldsincludes\class-wc-messaging.php:211

actionwoocommerce_admin_field_woom_with_noteincludes\class-wc-messaging.php:212

actionwoocommerce_admin_field_nq_promotion_sidebarincludes\class-wc-messaging.php:213

actionadd_meta_boxesincludes\class-wc-messaging.php:215

actionwoocommerce_order_status_changedincludes\class-wc-messaging.php:217

filterplugin_row_metaincludes\class-wc-messaging.php:223

filteradmin_footer_textincludes\class-wc-messaging.php:226

filterupdate_footerincludes\class-wc-messaging.php:228

actioninitincludes\class-wc-messaging.php:231

filtercron_schedulesincludes\class-wc-messaging.php:232

actionwoom_messaging_check_abandonedincludes\class-wc-messaging.php:233

actionwoom_abandoned_order_createdincludes\class-wc-messaging.php:239

actionwoocommerce_order_status_completedincludes\class-wc-messaging.php:240

actionwoom_abandoned_order_recoveredincludes\class-wc-messaging.php:241

actionwoocommerce_order_status_failedincludes\class-wc-messaging.php:242

actionadmin_initincludes\class-wc-messaging.php:245

actionadmin_initincludes\class-wc-messaging.php:248

actionwcm_delete_coupons_weeklyincludes\class-wc-messaging.php:253

actionadmin_menuincludes\class-wc-messaging.php:258

actionupgrader_process_completeincludes\class-wc-messaging.php:260

actionplugins_loadedincludes\class-wc-messaging.php:261

actionwoom_whatsapp_msg_sent_admin_successincludes\class-wc-messaging.php:264

actionwoom_whatsapp_msg_sent_successincludes\class-wc-messaging.php:265

actionwoom_trigger_wa_msgincludes\class-wc-messaging.php:266

actionwoom_whatsapp_msg_sent_successincludes\class-wc-messaging.php:269

actionwp_enqueue_scriptsincludes\class-wc-messaging.php:286

actionwp_enqueue_scriptsincludes\class-wc-messaging.php:287

filterwoocommerce_checkout_fieldsincludes\class-wc-messaging.php:288

actionwoocommerce_initincludes\class-wc-messaging.php:289

actionwoocommerce_after_checkout_validationincludes\class-wc-messaging.php:290

actionadmin_enqueue_scriptsplugin-deactivation-survey\deactivate-feedback-form.php:17

filtersgits_deactivate_feedback_form_pluginsplugin-deactivation-survey\deactivate-feedback-form.php:81

filtersgits_deactivate_feedback_form_pluginswc-messaging.php:121

actionbefore_woocommerce_initwc-messaging.php:145

actionbefore_woocommerce_initwc-messaging.php:148

Scheduled Events 2

wcm_delete_coupons_weekly

woom_messaging_check_abandoned

Maintenance & Trust

Notiqoo – Order Notification & Customer Chat for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 27, 2026

PHP min version7.4

Downloads19K

Community Trust

Rating92/100

Number of ratings10

Active installs800

Alternatives

Notiqoo – Order Notification & Customer Chat for WooCommerce Alternatives

Send Notifications from Woocommerce, Form Plugins and More!

notifier

WhatsApp API integration to send WhatsApp notifications from Woocommerce, Contact Form 7, Gravity Forms, WPForms & more.

1K 1 unpatched

Click to Chat – HoliThemes

click-to-chat-for-whatsapp

WhatsApp Chat🔥. Let's make your Web page visitors contact you through 'WhatsApp', 'WhatsApp Business'. Add matching Widget✅

700K 3 CVEs

Social Chat – Click To Chat App Button

wp-whatsapp-chat

100

WhatsApp Chat🔥 allows you to enhance customer engagement! Integrate "WhatsApp" or "WhatsApp Business" with a single click.

200K 1 CVE

WP Chat App

wp-whatsapp

Integrate WhatsApp experience directly into your WordPress website.

100K 6 CVEs

Simple Chat Button

simple-chat-button

100

WhatsApp Chat Button - Display the beautiful WhatsApp Sticky Button on the WordPress frontend.

40K No CVEs

Developer Profile

Notiqoo – Order Notification & Customer Chat for WooCommerce Developer Profile

Sarankumar

12 plugins · 3K total installs

trust score

Avg Security Score

91/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Notiqoo – Order Notification & Customer Chat for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wc-messaging/packages/chosen/chosen.min.css/wp-content/plugins/wc-messaging/css/wc-messaging-admin.css/wp-content/plugins/wc-messaging/css/common.css/wp-content/plugins/wc-messaging/packages/chosen/chosen.jquery.min.js/wp-content/plugins/wc-messaging/js/wc-messaging-admin.js

Script Paths

/wp-content/plugins/wc-messaging/packages/chosen/chosen.jquery.min.js/wp-content/plugins/wc-messaging/js/wc-messaging-admin.js

Version Parameters

wc-messaging/css/wc-messaging-admin.css?ver=wc-messaging/css/common.css?ver=wc-messaging/js/wc-messaging-admin.js?ver=

HTML / DOM Fingerprints

JS Globals

woom_ajax

FAQ