WP Notice Popup Security & Risk Analysis
wordpress.org/plugins/wp-notice-popup[English]
Is WP Notice Popup Safe to Use in 2026?
Generally Safe
Score 85/100WP Notice Popup has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The wp-notice-popup v1.1 plugin exhibits a mixed security posture. On the positive side, the plugin has no known historical vulnerabilities (CVEs) and its static analysis reveals no dangerous functions, no raw SQL queries, and no file operations or external HTTP requests. This suggests a level of care in its development concerning these common attack vectors. However, a significant concern arises from the code analysis indicating that 100% of its outputs are not properly escaped. Coupled with the taint analysis revealing two flows with unsanitized paths, this presents a substantial risk of Cross-Site Scripting (XSS) vulnerabilities. The absence of any capability checks, nonce checks, and a complete lack of protected entry points also contribute to a wider potential attack surface if any of the identified unsanitized flows were to be triggered. While the vulnerability history is clean, the internal code signals point to a high likelihood of exploitable weaknesses that have perhaps not yet been discovered or reported.
Key Concerns
- All outputs unescaped
- Taint flows with unsanitized paths
- No capability checks
- No nonce checks
WP Notice Popup Security Vulnerabilities
WP Notice Popup Code Analysis
Output Escaping
Data Flow Analysis
WP Notice Popup Attack Surface
WordPress Hooks 2
Maintenance & Trust
WP Notice Popup Maintenance & Trust
Maintenance Signals
Community Trust
WP Notice Popup Alternatives
Advanced Notifications
advanced-notifications
Advanced Notifications allows you to create beautiful custom notifications that appear on pages or posts of your choice.
Popup Box – Easily Create WordPress Popups
popup-box
Popup Box lets you create responsive, customizable WordPress popups with live preview, flexible triggers, and smart targeting to boost engagement and …
Popup for CF7 with Sweet Alert
cf7-sweet-alert-popup
Popup for CF7 with Sweet Alert
Cart Notices for WooCommerce
cart-notices-for-woocommerce
Display on cart page notices based on products and product categories in cart, cart cost, current day and time, customer referrer.
Popups for WooCommerce: Add to Cart, Checkout & More
popup-notices-for-woocommerce
Make your WooCommerce Notices (sucess, info, and error) more visible to your customers by turning them into popups
WP Notice Popup Developer Profile
5 plugins · 330 total installs
How We Detect WP Notice Popup
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/wp-notice-popup/images/icon1.png/wp-content/plugins/wp-notice-popup/images/icon2.png/wp-content/plugins/wp-notice-popup/images/icon3.png/wp-content/plugins/wp-notice-popup/images/icon4.png/wp-content/plugins/wp-notice-popup/images/icon5.png/wp-content/plugins/wp-notice-popup/images/icon6.png/wp-content/plugins/wp-notice-popup/images/icon7.pngHTML / DOM Fingerprints
name="mt_op_header_notice"name="mt_op_noticia"name="mt_op_px"name="mt_op_py"name="mt_op_unidx"name="mt_op_unidy"+9 more