WP-Safety

WiserReview Product Reviews for WooCommerce Security & Risk Analysis

wordpress.org/plugins/wiser-review

Collect, manage, and display powerful product reviews and testimonials for WooCommerce stores. Boost trust and conversion with automated review collec …

700 active installs v3.0 PHP 7.4+ WP 5.6+ Updated Feb 3, 2026
customer-reviewsproduct-reviewsreview-pluginreview-reminderwoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is WiserReview Product Reviews for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

WiserReview Product Reviews for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The "wiser-review" plugin v3.0 exhibits a mixed security posture. While it demonstrates good practices in areas like SQL query preparation and output escaping, significant concerns arise from its attack surface and taint analysis.

The plugin exposes a substantial attack surface with 15 entry points, of which 5 are unprotected, including 2 AJAX handlers and 3 REST API routes lacking permission callbacks. This presents a clear opportunity for unauthenticated or improperly authenticated access to potentially sensitive functionalities. The taint analysis further highlights this risk, revealing 2 flows with unsanitized paths classified as high severity, indicating potential for code execution or sensitive data exposure through user-controlled input.

Conversely, the plugin's vulnerability history is clean, with no known CVEs. This, combined with the absence of dangerous functions and a generally good approach to SQL queries and output escaping, suggests a development team that may be attentive to common security pitfalls. However, the identified unprotected entry points and high-severity taint flows are critical and require immediate attention, as they could be exploited despite the absence of historical vulnerabilities.

Key Concerns

  • Unprotected AJAX handlers
  • Unprotected REST API routes
  • High severity unsanitized taint flows
Vulnerabilities
None known

WiserReview Product Reviews for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

WiserReview Product Reviews for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
4 prepared
Unescaped Output
15
73 escaped
Nonce Checks
7
Capability Checks
7
File Operations
1
External Requests
15
Bundled Libraries
0

SQL Query Safety

80% prepared5 total queries

Output Escaping

83% escaped88 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

4 flows2 with unsanitized paths
<wiserw-plugin-settings> (views\wiserw-plugin-settings.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
5 unprotected

WiserReview Product Reviews for WooCommerce Attack Surface

Entry Points15
Unprotected5

AJAX Handlers 8

authwp_ajax_wiserrw_save_settingswiser-review.php:82
authwp_ajax_wiserrw_export_orderswiser-review.php:974
authwp_ajax_wiserrw_bulk_orders_sendwiser-review.php:1187
authwp_ajax_wiserrw_fetch_order_countwiser-review.php:1249
authwp_ajax_wiserrw_sync_productswiser-review.php:1452
noprivwp_ajax_wiserrw_sync_productswiser-review.php:1453
authwp_ajax_wiserrw_reset_productswiser-review.php:1480
noprivwp_ajax_wiserrw_reset_productswiser-review.php:1481

REST API Routes 3

GET/wp-json/wiserrw/v1/reviewswiser-review.php:1686
POST/wp-json/wiserreview/v1/apiwiser-review.php:1768
POST/wp-json/wiserreview/v1/asyncwiser-review.php:1777

Shortcodes 4

[wiserrw_rating_count] wiser-review.php:411
[wiserrw_product_review] wiser-review.php:570
[wiserrw_product_nudges] wiser-review.php:667
[wiserreview_widget] wiser-review.php:2368
WordPress Hooks 21
actionadmin_enqueue_scriptswiser-review.php:57
actionadmin_menuwiser-review.php:99
actionwoocommerce_after_single_product_summarywiser-review.php:191
actionkadence_after_short_description_blockwiser-review.php:193
actionwoocommerce_after_shop_loop_item_titlewiser-review.php:207
actionwp_footerwiser-review.php:241
actionwoocommerce_single_product_summarywiser-review.php:255
actionwoocommerce_after_add_to_cart_buttonwiser-review.php:258
actionwoocommerce_after_add_to_cart_formwiser-review.php:275
actionwoocommerce_order_status_completedwiser-review.php:828
actiondeleted_postwiser-review.php:1503
actiontrashed_postwiser-review.php:1504
actionwoocommerce_after_product_object_savewiser-review.php:1511
actionrest_api_initwiser-review.php:1699
actionrest_api_initwiser-review.php:1767
actionrest_api_initwiser-review.php:1776
actionwiserrw_endpoint_calledwiser-review.php:1900
actionwp_headwiser-review.php:2148
filterhttps_ssl_verifywiser-review.php:2186
actionadmin_initwiser-review.php:2269
actionwe_after_grid_content_htmlwiser-review.php:2313
Maintenance & Trust

WiserReview Product Reviews for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 3, 2026
PHP min version7.4
Downloads4K

Community Trust

Rating100/100
Number of ratings25
Active installs700
Alternatives

WiserReview Product Reviews for WooCommerce Alternatives

Customer Reviews for WooCommerce

Customer Reviews for WooCommerce

customer-reviews-woocommerce

A
88

Customer Reviews for WooCommerce plugin helps you get more sales with social proof. Set up automated review reminders and increase conversion rate.

80K 19 CVEs
Photo Reviews for WooCommerce

Photo Reviews for WooCommerce

woo-photo-reviews

A
100

Let customers attach photos to reviews, enhanced with filterable grids and overall ratings. Auto-send review reminders and coupon emails

10K No CVEs
ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & Schema

ReviewX – Multi-Criteria Reviews for WooCommerce with Google Reviews & Schema

reviewx

A
88

Drive woocommerce business growth with social proof: gather product reviews with multicriteria ratings, auto-reminder emails, discounts, and more.

9K 13 CVEs
Customer Reviews for WooCommerce

Customer Reviews for WooCommerce

customer-reviews-for-woocommerce

A
85

Looking to boost your WooCommerce sales? Using the WooCommerce customer reviews widget, you can! Collect more reviews and build brand loyalty with thi &hellip;

200 No CVEs
Builder for WooCommerce product reviews shortcodes – ReviewShort

Builder for WooCommerce product reviews shortcodes – ReviewShort

woo-product-reviews-shortcode

A
91

Show WooCommerce customer feedback anywhere with WooCommerce reviews shortcodes, beautifully and ...

100 2 CVEs
Developer Profile

WiserReview Product Reviews for WooCommerce Developer Profile

Wisernotify team

2 plugins · 2K total installs

79
trust score
Avg Security Score
100/100
Avg Patch Time
141 days
View full developer profile
Detection Fingerprints

How We Detect WiserReview Product Reviews for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wiser-review/assets/css/wiserrw-admin.css/wp-content/plugins/wiser-review/assets/js/wiserw-js.js
Script Paths
/wp-content/plugins/wiser-review/assets/js/wiserw-js.js
Version Parameters
wiser-review/assets/css/wiserrw-admin.css?ver=wiser-review/assets/js/wiserw-js.js?ver=

HTML / DOM Fingerprints

Data Attributes
wiserrw_data
JS Globals
wiserrw_ajax_var
REST Endpoints
/wp-json/wiserrw/v1/reviews
Shortcode Output
[wiserrw_product_review][wiserrw_rating_count]
FAQ

Frequently Asked Questions about WiserReview Product Reviews for WooCommerce