Does Wontonee CommerIQ — AI Commerce Insights for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Wontonee CommerIQ — AI Commerce Insights for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Wontonee CommerIQ — AI Commerce Insights for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, Wontonee CommerIQ — AI Commerce Insights for WooCommerce 1.0.8 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Wontonee CommerIQ — AI Commerce Insights for WooCommerce compatible with PHP 7.4+?

Wontonee CommerIQ — AI Commerce Insights for WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Security & Risk Analysis

wordpress.org/plugins/wontonee-commeriq

AI-powered product descriptions, image generation, and price comparison for WooCommerce. Boost sales with smart content optimization.

0 active installs v1.0.8 PHP 7.4+ WP 6.2+ Updated Jan 10, 2026

aiprice-comparisonproduct-descriptionseowoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Wontonee CommerIQ — AI Commerce Insights for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Wontonee CommerIQ — AI Commerce Insights for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The wontonee-commeriq plugin version 1.0.8 exhibits a generally good security posture, with a significant number of positive indicators. The plugin makes excellent use of prepared statements for all its SQL queries and demonstrates a high rate of proper output escaping, minimizing risks associated with data injection and cross-site scripting. The absence of known CVEs and any recorded historical vulnerabilities further strengthens this impression, suggesting a development team that prioritizes security or has been fortunate in avoiding discovered flaws.

However, the plugin does present a notable security concern due to an unprotected AJAX handler. With 11 AJAX handlers in total, one lacking authentication checks creates a potential entry point for attackers to execute unauthorized actions. While taint analysis did not reveal any critical or high severity issues, and there are no dangerous functions, this single unprotected AJAX endpoint represents a clear risk that needs immediate attention.

In conclusion, while the plugin's core code demonstrates strong security practices like prepared statements and output escaping, the presence of an unprotected AJAX handler significantly detracts from its overall security. The lack of past vulnerabilities is positive, but it should not lead to complacency, especially when a direct attack vector has been identified in the current version.

Key Concerns

Unprotected AJAX handler detected

Vulnerabilities

None known

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

8 prepared

Unescaped Output

168 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared8 total queries

Output Escaping

97% escaped174 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

handle_export_csv (src\Admin\ReportsPage.php:33)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Attack Surface

Entry Points12

Unprotected1

AJAX Handlers 11

authwp_ajax_commeriq_save_licensesrc\Admin\SettingsPage.php:14

authwp_ajax_commeriq_refresh_store_configsrc\Admin\StoreConfiguration.php:13

authwp_ajax_commeriq_run_comparisonsrc\commeriq-loader.php:15

authwp_ajax_commeriq_generate_ai_contentsrc\commeriq-loader.php:16

authwp_ajax_commeriq_generate_ai_imagesrc\commeriq-loader.php:17

authwp_ajax_commeriq_set_featured_imagesrc\commeriq-loader.php:18

authwp_ajax_commeriq_retrieve_storesrc\commeriq-loader.php:19

authwp_ajax_commeriq_save_storesrc\commeriq-loader.php:20

authwp_ajax_commeriq_save_licensesrc\commeriq-loader.php:21

authwp_ajax_commeriq_activate_licensesrc\commeriq-loader.php:22

authwp_ajax_commeriq_remove_licensesrc\commeriq-loader.php:23

REST API Routes 1

POST/wp-json/commeriq/v1/run-comparisonsrc\REST\RestEndpoints.php:14

WordPress Hooks 14

actionplugins_loadedcommeriq.php:57

actionmedia_buttonssrc\Admin\ProductEditor.php:10

actionwoocommerce_product_options_pricingsrc\Admin\ProductEditor.php:12

actionadmin_footer-post.phpsrc\Admin\ProductEditor.php:14

actionadmin_footer-post-new.phpsrc\Admin\ProductEditor.php:15

actionadmin_menusrc\Admin\ReportsPage.php:12

actionadmin_post_commeriq_export_csvsrc\Admin\ReportsPage.php:13

actionadmin_initsrc\Admin\SettingsPage.php:12

actionadmin_initsrc\Admin\StoreConfiguration.php:12

actionadmin_menusrc\commeriq-loader.php:12

actionadd_meta_boxessrc\commeriq-loader.php:13

actionadmin_enqueue_scriptssrc\commeriq-loader.php:14

actioncommeriq_hourly_syncsrc\commeriq-loader.php:65

actionrest_api_initsrc\REST\RestEndpoints.php:13

Scheduled Events 1

commeriq_hourly_sync

Maintenance & Trust

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 10, 2026

PHP min version7.4

Downloads102

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Alternatives

WriteText.ai

writetext-ai

100

WooCommerce AI for SEO & AEO. Automate product content creation with smart templates, bulk generation, and full-site optimization.

70 No CVEs

{descrb}

descrb

A plugin for WooCommerce that enables quick creation of descriptions for your products.

0 No CVEs

IntelliDesc for WooCommerce

intellidesc-for-woocommerce

100

Auto-generate WooCommerce product descriptions and intelligently extract technical features using AI.

0 No CVEs

ShopWriter Lite

shopwriter-lite

100

Generate AI-powered product descriptions, short descriptions, meta titles, meta descriptions, and image alt text for your WooCommerce products.

0 No CVEs

WebGears AI Product Describer for WooCommerce

webgears-ai-product-describer-for-woocommerce

100

Generate SEO-optimized product and category descriptions using AI. Bulk generation with real-time progress tracking and preview.

0 No CVEs

Developer Profile

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Developer Profile

Saju Gopal

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Wontonee CommerIQ — AI Commerce Insights for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wontonee-commeriq/assets/css/commeriq-admin-common.css/wp-content/plugins/wontonee-commeriq/assets/css/commeriq-admin-settings.css/wp-content/plugins/wontonee-commeriq/assets/js/commeriq-admin-settings.js

Script Paths

/wp-content/plugins/wontonee-commeriq/assets/js/commeriq-admin-settings.js

Version Parameters

wontonee-commeriq/assets/css/commeriq-admin-common.css?ver=wontonee-commeriq/assets/css/commeriq-admin-settings.css?ver=wontonee-commeriq/assets/js/commeriq-admin-settings.js?ver=

HTML / DOM Fingerprints

CSS Classes

commeriq-admin-settings-pagecommeriq-api-settingscommeriq-settings-tab

Data Attributes

data-commeriq-setting

JS Globals

commeriqSettingsCommerIQ

REST Endpoints

/wp-json/commeriq/v1/activate-license/wp-json/commeriq/v1/remove-license/wp-json/commeriq/v1/save-license

FAQ

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Security & Risk Analysis

Is Wontonee CommerIQ — AI Commerce Insights for WooCommerce Safe to Use in 2026?

Generally Safe

Key Concerns

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Security Vulnerabilities

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Code Analysis

SQL Query Safety

Output Escaping

Data Flow Analysis

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Attack Surface

AJAX Handlers 11

REST API Routes 1

Scheduled Events 1

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Maintenance & Trust

Maintenance Signals

Community Trust

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Alternatives

WriteText.ai

{descrb}

IntelliDesc for WooCommerce

ShopWriter Lite

WebGears AI Product Describer for WooCommerce

Wontonee CommerIQ — AI Commerce Insights for WooCommerce Developer Profile

How We Detect Wontonee CommerIQ — AI Commerce Insights for WooCommerce

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Wontonee CommerIQ — AI Commerce Insights for WooCommerce