Does WP247 Extension Notification Server have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is WP247 Extension Notification Server compatible with WordPress 4.9.29?

According to WordPress.org data, WP247 Extension Notification Server 1.0.1 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

Is WP247 Extension Notification Server compatible with PHP 5.6.31+?

WP247 Extension Notification Server requires PHP 5.6.31 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WP247 Extension Notification Server updated?

WP247 Extension Notification Server was last updated on Dec 14, 2017. Frequent updates are generally a positive security signal.

What is WP247 Extension Notification Server's security score?

WP247 Extension Notification Server has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP247 Extension Notification Server Security & Risk Analysis

wordpress.org/plugins/wp247-extension-notification-server

Provides the ability for WordPress extension developers to send notification messages to their users

0 active installs v1.0.1 PHP 5.6.31+ WP 4.0+ Updated Dec 14, 2017

extensionmessagenoticenotificationtheme

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is WP247 Extension Notification Server Safe to Use in 2026?

Generally Safe

Score 85/100

WP247 Extension Notification Server has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The plugin "wp247-extension-notification-server" v1.0.1 presents a mixed security posture. While it demonstrates good practices by exclusively using prepared statements for SQL queries and avoiding file operations and external HTTP requests, significant concerns arise from its attack surface. Two out of three AJAX handlers lack authentication checks, creating potential entry points for unauthorized actions. The presence of the `create_function` dangerous function, although not explicitly linked to a taint flow in this analysis, is a known security risk that should be addressed. Furthermore, a low percentage of output escaping (24%) indicates a substantial risk of Cross-Site Scripting (XSS) vulnerabilities, as user-controlled data might be rendered without proper sanitization. The plugin's clean vulnerability history is a positive indicator, suggesting that past development might have adhered to security best practices, but this does not negate the immediate risks identified in the static analysis.

Key Concerns

AJAX handlers without authentication checks
Low percentage of output escaping
Presence of dangerous function 'create_function'

Vulnerabilities

None known

WP247 Extension Notification Server Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

WP247 Extension Notification Server Release Timeline

v1.0.1Current

v1.0

Code Analysis

Analyzed Apr 16, 2026

WP247 Extension Notification Server Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

13 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

create_function$callback = create_function('', 'echo "'.str_replace('"', '\"', $section['desc']).'";');admin/wp247-settings-api/wp247-settings-api.class.php:292

Output Escaping

24% escaped54 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

2 flows

do_action_wp247xns_client_corequisite_notice_dismiss (admin/wp247xns-client-corequisite-notice/wp247xns-client-corequisite-notice.php:167)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

WP247 Extension Notification Server Attack Surface

Entry Points3

Unprotected2

AJAX Handlers 3

authwp_ajax_wp247xns_server_inquireadmin/wp247-extension-notification-server-admin.php:59

noprivwp_ajax_wp247xns_server_inquireadmin/wp247-extension-notification-server-admin.php:60

authwp_ajax_wp247xns_client_corequisite_notice_dismissadmin/wp247xns-client-corequisite-notice/wp247xns-client-corequisite-notice.php:182

WordPress Hooks 8

actioninitadmin/wp247-extension-notification-server-admin.php:44

actionadmin_enqueue_scriptsadmin/wp247-settings-api/wp247-settings-api.class.php:117

actionadmin_headadmin/wp247-settings-api/wp247-settings-api.class.php:118

actionadmin_menuadmin/wp247-settings-api/wp247-settings-api.class.php:119

actionadmin_initadmin/wp247-settings-api/wp247-settings-api.class.php:120

actionadmin_noticesadmin/wp247xns-client-corequisite-notice/wp247xns-client-corequisite-notice.php:86

actionadmin_enqueue_scriptsadmin/wp247xns-client-corequisite-notice/wp247xns-client-corequisite-notice.php:180

actionadmin_headadmin/wp247xns-client-corequisite-notice/wp247xns-client-corequisite-notice.php:181

Maintenance & Trust

WP247 Extension Notification Server Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedDec 14, 2017

PHP min version5.6.31

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

WP247 Extension Notification Server Alternatives

WP247 Extension Notification Client

wp247-extension-notification-client

Provides the ability for WordPress extension developers to send notification messages to their users

10 No CVEs

Disable WP Notification

disable-wp-notification

100

Best wordpress plugin to remove all the admin panel notifications in just one click. Including the theme and plugin update notification.

10K No CVEs

Advanced Notifications

advanced-notifications

Advanced Notifications allows you to create beautiful custom notifications that appear on pages or posts of your choice.

100 1 CVE

Site Notices WP

site-notices-wp

Show notices, alert, popup, info messages on your WordPress site easily. Choose where to display notice on any single page/post/product or on complete …

70 No CVEs

Disable Admin Notices – Hide Dashboard Notifications

disable-admin-notices

Disable admin notices and hide dashboard notifications from plugins, themes and core. Hide all notices, selected ones, or show them in a single line.

100K 2 CVEs

Developer Profile

WP247 Extension Notification Server Developer Profile

wescleveland

5 plugins · 240 total installs

trust score

Avg Security Score

86/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP247 Extension Notification Server

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp247-extension-notification-server/admin/wp247-settings-api/wp247-settings-api.css

Script Paths

/wp-content/plugins/wp247-extension-notification-server/admin/wp247-extension-notification-server-ajax.php/wp-content/plugins/wp247-extension-notification-server/admin/wp247-extension-notification-server-admin.php/wp-content/plugins/wp247-extension-notification-server/admin/wp247-settings-api/wp247-settings-api.js

Version Parameters

wp247-extension-notification-server/style.css?ver=

HTML / DOM Fingerprints

Data Attributes

wp247xns_client_corequisite_notice

JS Globals

WP247XNS_SERVER_DEBUGWP247XNS_SERVER_VERSIONWP247XNS_SERVER_PLUGIN_PATHWP247XNS_SERVER_PLUGIN_URLWP247XNS_SERVER_PLUGIN_NAMEWP247XNS_SERVER_PLUGIN_ID+2 more

REST Endpoints

/wp-json/wp247xns/server/v1

FAQ