[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fCTawp1c1yCbjNACwjGjm5qlsXCnWLcO6n5_y5teDNS0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":36,"analysis":128,"fingerprints":186},"bitcoin-exchange-widget","Bitcoin Exchange Widget","1.15","bradmkjr","https:\u002F\u002Fprofiles.wordpress.org\u002Fbradmkjr\u002F","\u003Cp>This is a basic plugin to show BTC exchange rates from blockchain.info public API, as a sidebar widget on your wordpress site. No configuration options are available at this time, but maybe added in future, including which exchange rates to show and other minor changes. Plugin uses native WP caching, to minimize server load improve user experience.\u003C\u002Fp>\n\u003Cp>To donate to support plugin, please send donations to this wallet: 195jHGYxZyYxxHAYgLVGY2H9DEoGMHGQTx to support futher development efforts\u003C\u002Fp>\n","Show realtime BTC exchange rates in sidebar widgets.",10,6701,60,2,"2013-11-27T09:06:00.000Z","3.7.41","3.6.1","",[20,21,22,23],"bitcoin","btc","exchange","widget","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbtc-exchange-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbitcoin-exchange-widget.1.15.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":32,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},20,30,84,"2026-04-05T09:23:00.683Z",[37,55,70,88,108],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":11,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":16,"requires_at_least":49,"requires_php":18,"tags":50,"homepage":52,"download_link":53,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":54},"bitcoin-calculator-widget","Bitcoin Calculator Widget","1.0.0","Global Reach, LLC","https:\u002F\u002Fprofiles.wordpress.org\u002Fglobalreachllc\u002F","\u003Cp>Simple widget for converting Bitcoin to multiple currencies.\u003C\u002Fp>\n\u003Cp>This widget gets the most-recent available exchange rate data from Blockchain.info by using their ticker API.\u003C\u002Fp>\n\u003Cp>List of currently supported currencies:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>USD\u003C\u002Fli>\n\u003Cli>CNY\u003C\u002Fli>\n\u003Cli>JPY\u003C\u002Fli>\n\u003Cli>SGD\u003C\u002Fli>\n\u003Cli>HKD\u003C\u002Fli>\n\u003Cli>CAD\u003C\u002Fli>\n\u003Cli>AUD\u003C\u002Fli>\n\u003Cli>NZD\u003C\u002Fli>\n\u003Cli>GBP\u003C\u002Fli>\n\u003Cli>DKK\u003C\u002Fli>\n\u003Cli>SEK\u003C\u002Fli>\n\u003Cli>BRL\u003C\u002Fli>\n\u003Cli>CHF\u003C\u002Fli>\n\u003Cli>EUR\u003C\u002Fli>\n\u003Cli>RUB\u003C\u002Fli>\n\u003Cli>SLL\u003C\u002Fli>\n\u003Cli>PLN\u003C\u002Fli>\n\u003Cli>THB\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin reads remote data from blockchain.info in order to provide accurate and up-to-date exchange rates.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>*OpenSSL or equivalent module must be enabled to utilize this remote data.*\u003C\u002Fli>\n\u003C\u002Ful>\n","BTC Calculator Widget Plugin gives your blog\u002Fsite a simple widget for converting Bitcoin to multiple currencies.  This plugin uses live data to provid &hellip;",5588,80,4,"2014-03-03T06:17:00.000Z","3.0.1",[20,21,51,22,23],"currency","http:\u002F\u002Fwww.bitcoinvalues.net","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbitcoin-calculator-widget.zip","2026-03-15T14:54:45.397Z",{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":11,"downloaded":63,"rating":64,"num_ratings":14,"last_updated":65,"tested_up_to":66,"requires_at_least":49,"requires_php":18,"tags":67,"homepage":68,"download_link":69,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"btc-exchange-widget","BTC Exchange Widget","1.3","csmicfool","https:\u002F\u002Fprofiles.wordpress.org\u002Fcsmicfool\u002F","\u003Cp>Simple widget for converting Bitcoin to multiple currencies.\u003C\u002Fp>\n\u003Cp>22 global currencies supported!\u003C\u002Fp>\n\u003Cp>\u003C\u002Fp>\n\u003Cp>This plugin reads remote data from bitcoinaverage.com in order to provide accurate and up-to-date exchange rates.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>*OpenSSL or equivalent module must be enabled to utilize this remote data.*\u003C\u002Fli>\n\u003C\u002Ful>\n","BTC Exchange Widget Plugin adds a simple converter from Bitcoin to multiple currencies. This plugin uses live data to provide accurate exchange rates.",10970,100,"2015-11-08T21:38:00.000Z","4.3.34",[20,21,51,22,23],"http:\u002F\u002Fjacobbaron.net","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbtc-exchange-widget.1.3.zip",{"slug":71,"name":72,"version":73,"author":74,"author_profile":75,"description":76,"short_description":77,"active_installs":11,"downloaded":78,"rating":64,"num_ratings":79,"last_updated":80,"tested_up_to":16,"requires_at_least":81,"requires_php":18,"tags":82,"homepage":18,"download_link":87,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"bitcoin-online","Bitcoin Online shortcode","1.1","PaR","https:\u002F\u002Fprofiles.wordpress.org\u002Fpavelrechberg\u002F","\u003Cp>Bitcoin Online shortcode displays current bitcoin price anywhere on your WordPress site. You can choose to display a current ticker prices like last, high, low, buy, sell, avg. Prices are fetched directly from mtgox.com using their data socket channel, so your site will not make ton of unnecessary requests to mtgox.com. \u003Cstrong>In the new version are available as well as data from bitstamp.net and btc-e.com too\u003C\u002Fstrong>.\u003C\u002Fp>\n","Display current bitcoin (BTC\u002FUSD) price anywhere on your WordPress site online.",6271,3,"2014-02-19T13:46:00.000Z","3.0.0",[20,83,84,85,86],"bitcoin-exchange-rate","bitstamp","btc-e","mtgox","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbitcoin-online.1.1.zip",{"slug":89,"name":90,"version":91,"author":92,"author_profile":93,"description":94,"short_description":95,"active_installs":27,"downloaded":96,"rating":27,"num_ratings":27,"last_updated":97,"tested_up_to":98,"requires_at_least":99,"requires_php":100,"tags":101,"homepage":106,"download_link":107,"security_score":64,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"hesapis-market-data-gold-currency-crypto-prices","Hesapis Market Data – Gold, Currency & Crypto Prices","2.4.1","hesapis","https:\u002F\u002Fprofiles.wordpress.org\u002Fhesapis\u002F","\u003Cp>\u003Cstrong>Hesapis Market Data\u003C\u002Fstrong> brings real-time financial data to your WordPress website with beautiful, customizable widgets.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Gold Prices\u003C\u002Fstrong>: Gram gold, quarter gold, half gold, full gold, gold ounce, silver\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Currency Rates\u003C\u002Fstrong>: USD, EUR, GBP, CHF, JPY, SAR, CAD, AUD, CNY, RUB and more\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cryptocurrency\u003C\u002Fstrong>: Bitcoin, Ethereum, Ripple, Solana, Cardano, Dogecoin and 10+ more\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Universal Widget\u003C\u002Fstrong>: Mix gold, currency, and crypto in a single widget!\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multiple Displays\u003C\u002Fstrong>: Cards, table, list, mini, ticker, marquee views\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Themes\u003C\u002Fstrong>: Light, dark, and auto (follows system preference)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Responsive Design\u003C\u002Fstrong>: Mobile-friendly layouts\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto-refresh\u003C\u002Fstrong>: Data updates automatically\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Cache\u003C\u002Fstrong>: 3-layer caching system for reliability\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi-language\u003C\u002Fstrong>: English, Turkish, German, French, Spanish, Arabic, Russian\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Shortcode Support\u003C\u002Fstrong>: Add anywhere with simple shortcodes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Widget Support\u003C\u002Fstrong>: Drag & drop to sidebars\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Gutenberg Blocks\u003C\u002Fstrong>: Full block editor support\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Elementor Widgets\u003C\u002Fstrong>: Native Elementor integration\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Shortcodes\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Gold Prices:\u003C\u002Fstrong>\u003Cbr \u002F>\n    [hesapis_gold display=”cards” theme=”light”]\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Currency Rates:\u003C\u002Fstrong>\u003Cbr \u002F>\n    [hesapis_currency display=”table” items=”USDTRY,EURTRY,GBPTRY”]\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cryptocurrency:\u003C\u002Fstrong>\u003Cbr \u002F>\n    [hesapis_crypto display=”cards” items=”BTC,ETH,SOL”]\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Universal (Mixed):\u003C\u002Fstrong>\u003Cbr \u002F>\n    [hesapis items=”ALTIN,USDTRY,BTC,ETH” display=”cards”]\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Single Item:\u003C\u002Fstrong>\u003Cbr \u002F>\n    [hesapis_single type=”gold” item=”ALTIN”]\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Ticker:\u003C\u002Fstrong>\u003Cbr \u002F>\n    [hesapis_ticker type=”gold” speed=”normal”]\u003C\u002Fp>\n\u003Ch4>Supported Gold Types\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>ALTIN – Gram Gold\u003C\u002Fli>\n\u003Cli>CEYREK_YENI – Quarter Gold\u003C\u002Fli>\n\u003Cli>YARIM_YENI – Half Gold\u003C\u002Fli>\n\u003Cli>TEK_YENI – Full Gold\u003C\u002Fli>\n\u003Cli>ATA_YENI – Republic Gold\u003C\u002Fli>\n\u003Cli>ONS – Gold Ounce\u003C\u002Fli>\n\u003Cli>GUMUSTRY – Gram Silver\u003C\u002Fli>\n\u003Cli>GUMUSIONS – Silver Ounce\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Supported Currencies\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>USDTRY – US Dollar\u003C\u002Fli>\n\u003Cli>EURTRY – Euro\u003C\u002Fli>\n\u003Cli>GBPTRY – British Pound\u003C\u002Fli>\n\u003Cli>CHFTRY – Swiss Franc\u003C\u002Fli>\n\u003Cli>JPYTRY – Japanese Yen\u003C\u002Fli>\n\u003Cli>CADTRY – Canadian Dollar\u003C\u002Fli>\n\u003Cli>AUDTRY – Australian Dollar\u003C\u002Fli>\n\u003Cli>SARTRY – Saudi Riyal\u003C\u002Fli>\n\u003Cli>CNYTRY – Chinese Yuan\u003C\u002Fli>\n\u003Cli>RUBTRY – Russian Ruble\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Supported Cryptocurrencies\u003C\u002Fh4>\n\u003Cp>Bitcoin (BTC), Ethereum (ETH), Ripple (XRP), Solana (SOL), Cardano (ADA), Dogecoin (DOGE), Polkadot (DOT), Avalanche (AVAX), Polygon (MATIC), Chainlink (LINK), Litecoin (LTC), Uniswap (UNI), Cosmos (ATOM), Stellar (XLM), Algorand (ALGO)\u003C\u002Fp>\n\u003Ch4>API Key Required\u003C\u002Fh4>\n\u003Cp>This plugin requires a free API key from Hesapis.com.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Get your API key:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.hesapis.com\u002Fwidget-kayit\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.hesapis.com\u002Fwidget-kayit\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Simply enter your domain and email to receive your API key instantly (format: \u003Ccode>HW_xxxxx\u003C\u002Fcode>).\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>This plugin connects to the Hesapis.com API to fetch financial data. No personal user data is collected or transmitted. The plugin only sends:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Your website domain (for API authentication)\u003C\u002Fli>\n\u003Cli>Requested data type (gold, currency, crypto)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more information, visit \u003Ca href=\"https:\u002F\u002Fwww.hesapis.com\u002Fprivacy\" rel=\"nofollow ugc\">Hesapis.com Privacy Policy\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Additional Info\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Data Source:\u003C\u002Fstrong> All financial data is provided by \u003Ca href=\"https:\u002F\u002Fwww.hesapis.com\" rel=\"nofollow ugc\">Hesapis.com\u003C\u002Fa> API.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Support:\u003C\u002Fstrong> For questions, visit \u003Ca href=\"https:\u002F\u002Fwww.hesapis.com\" rel=\"nofollow ugc\">Hesapis.com\u003C\u002Fa> or open an issue on our support forum.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Documentation:\u003C\u002Fstrong> Full documentation is included with the plugin (USER-GUIDE-EN.md and KULLANIM-KILAVUZU-TR.md).\u003C\u002Fp>\n","Real-time gold prices, currency exchange rates, and cryptocurrency data widgets for WordPress. Beautiful, customizable, and easy to use.",135,"2026-02-14T10:16:00.000Z","6.9.4","5.0","7.4",[20,102,103,104,105],"crypto","currency-exchange","gold-prices","widgets","https:\u002F\u002Fwww.hesapis.com\u002Fapi\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhesapis-market-data-gold-currency-crypto-prices.zip",{"slug":109,"name":110,"version":40,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":115,"downloaded":116,"rating":64,"num_ratings":117,"last_updated":118,"tested_up_to":119,"requires_at_least":120,"requires_php":121,"tags":122,"homepage":18,"download_link":127,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"elegro-payment","elegro Crypto Payment","nikotech","https:\u002F\u002Fprofiles.wordpress.org\u002Fnikotech\u002F","\u003Cp>elegro Gateway provides facilities for smooth, safe and instant cryptocurrency payments with automated exchange to\u003Cbr \u002F>\n EUR\u002FUSD or any other fiat currency at direct exchange rates. Payment processing fees are reasonable and calculated\u003Cbr \u002F>\n  depending on business risk levels.\u003Cbr \u002F>\nUsing our payment system, your customers can easily and instantly pay for the purchases on the website you’ve\u003Cbr \u002F>\n integrated with elegro Gateway. They can make purchases on any device and without any fees for elegro-inspired payments.\u003Cbr \u002F>\nA branded crypto wallet – elegro Wallet facilitates safe, easy and instant crypto\u002Ffiat payments and exchanges. Level-up\u003Cbr \u002F>\n your business and be a part of a modern world with elegro.\u003C\u002Fp>\n\u003Ch4>elegro benefits:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>fast and simple onboarding\u003C\u002Fli>\n\u003Cli>instant and secure payments\u003C\u002Fli>\n\u003Cli>crypto payments with automatic exchange to chosen fiat currency\u003C\u002Fli>\n\u003Cli>no losses on cryptocurrency conversion\u003C\u002Fli>\n\u003Cli>UK IBANs to accept C2B transfers with no recalls\u003C\u002Fli>\n\u003Cli>reasonable payment processing fees\u003C\u002Fli>\n\u003Cli>zero volatility guarantee\u003C\u002Fli>\n\u003Cli>merchant branded wallet\u003C\u002Fli>\n\u003Cli>a wide range of supported cryptocurrencies (Bitcoin, Ethereum, Dash, Litecoin)\u003C\u002Fli>\n\u003Cli>an account with possibility to manage multiple websites\u003C\u002Fli>\n\u003Cli>fast and easy checkout solution\u003C\u002Fli>\n\u003Cli>BioSecure payments based on BioID and NFC technologies\u003C\u002Fli>\n\u003Cli>smooth and quick integration\u003C\u002Fli>\n\u003Cli>\n\u003Cp>24\u002F7 live technical support\u003C\u002Fp>\n\u003Cp>The withdrawal process is really quickly, without delays, without restrictions on countries and the amount of funds,\u003Cbr \u002F>\ncause you are given a personal EU IBAN account on which all your funds will be accumulated. Also, you can make\u003Cbr \u002F>\nwithdrawals in fiat currencies using the most popular e-payment services: skrill, webmoney, qiwi, etc. New services\u003Cbr \u002F>\nare being added everyday.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n","Increase your customers base by accepting cryptocurrencies.",20000,439160,12,"2019-11-22T14:13:00.000Z","4.9.29","4.6","5.6",[123,20,124,125,126],"automatic-cryptocurrency-exchange","bitcoin-cash","crypto-payments","cryptocurrency-payment-gateway","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Felegro-payment.1.0.1.zip",{"attackSurface":129,"codeSignals":141,"taintFlows":172,"riskAssessment":173,"analyzedAt":185},{"hooks":130,"ajaxHandlers":137,"restRoutes":138,"shortcodes":139,"cronEvents":140,"entryPointCount":27,"unprotectedCount":27},[131],{"type":132,"name":133,"callback":134,"file":135,"line":136},"action","widgets_init","register_btc_exchange_widget","btc-exchange.php",177,[],[],[],[],{"dangerousFunctions":142,"sqlUsage":143,"outputEscaping":145,"fileOperations":27,"externalRequests":170,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":171},[],{"prepared":27,"raw":27,"locations":144},[],{"escaped":146,"rawEcho":117,"locations":147},5,[148,151,153,155,157,159,161,162,164,165,167,168],{"file":135,"line":149,"context":150},49,"raw output",{"file":135,"line":152,"context":150},51,{"file":135,"line":154,"context":150},59,{"file":135,"line":156,"context":150},65,{"file":135,"line":158,"context":150},87,{"file":135,"line":160,"context":150},88,{"file":135,"line":160,"context":150},{"file":135,"line":163,"context":150},91,{"file":135,"line":64,"context":150},{"file":135,"line":166,"context":150},101,{"file":135,"line":166,"context":150},{"file":135,"line":169,"context":150},103,1,[],[],{"summary":174,"deductions":175},"The 'bitcoin-exchange-widget' plugin, version 1.15, exhibits a generally good security posture in its static analysis.  The absence of known CVEs and a clean vulnerability history are positive indicators.  Furthermore, the plugin demonstrates strong adherence to secure coding practices by avoiding dangerous functions, performing file operations safely, and exclusively using prepared statements for SQL queries.  The lack of detected taint flows with unsanitized paths is also a significant strength.\n\nHowever, there are notable areas for concern. The significantly low percentage of properly escaped output (29%) suggests a high likelihood of Cross-Site Scripting (XSS) vulnerabilities.  While the attack surface appears small, the absence of capability checks on entry points (even though there are no detected entry points in this analysis) and the presence of an external HTTP request without explicit security considerations warrant caution. The lack of nonce checks, even with a limited attack surface, is a potential weakness if new entry points were to be introduced.\n\nIn conclusion, while the plugin benefits from a clean vulnerability history and good SQL practices, the prevalent unescaped output presents a clear and immediate risk. The plugin's overall security is weakened by the potential for XSS due to insufficient output escaping. Addressing the output escaping issue should be a priority for improving the plugin's security.",[176,179,181,183],{"reason":177,"points":178},"Low percentage of properly escaped output",8,{"reason":180,"points":79},"External HTTP request without clear security context",{"reason":182,"points":146},"No capability checks on potential entry points",{"reason":184,"points":146},"No nonce checks on entry points","2026-03-17T00:24:05.262Z",{"wat":187,"direct":192},{"assetPaths":188,"generatorPatterns":189,"scriptPaths":190,"versionParams":191},[],[],[],[],{"cssClasses":193,"htmlComments":195,"htmlAttributes":196,"restEndpoints":198,"jsGlobals":199,"shortcodeOutput":200},[194],"bitcoin-widget-list",[],[197],"id=\"displayed_values_",[],[],[]]