Does CalcForm Calculator have any unpatched vulnerabilities?

No. All known vulnerabilities in CalcForm Calculator have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is CalcForm Calculator compatible with WordPress 6.9.4?

According to WordPress.org data, CalcForm Calculator 1.0.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is CalcForm Calculator compatible with PHP 7.4+?

CalcForm Calculator requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is CalcForm Calculator updated?

CalcForm Calculator was last updated on Feb 20, 2026. Frequent updates are generally a positive security signal.

What is CalcForm Calculator's security score?

CalcForm Calculator has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

CalcForm Calculator Security & Risk Analysis

wordpress.org/plugins/calcform-calculator

A scientific calculator (Casio-style) that you can embed anywhere via a shortcode.

0 active installs v1.0.2 PHP 7.4+ WP 5.8+ Updated Feb 20, 2026

calculatorformmathscientific-calculatorshortcode

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is CalcForm Calculator Safe to Use in 2026?

Generally Safe

Score 100/100

CalcForm Calculator has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The calcform-calculator plugin v1.0.2 exhibits a generally strong security posture based on this static analysis. The absence of known CVEs and the lack of identified critical or high-severity issues in taint analysis are positive indicators. The plugin also demonstrates good practices by utilizing prepared statements for all SQL queries and performing capability checks on its single entry point.

However, a significant concern is the output escaping, with only 54% of outputs being properly escaped. This leaves a substantial portion of the plugin's output potentially vulnerable to cross-site scripting (XSS) attacks if user-supplied data is not correctly sanitized before being displayed. The lack of nonce checks on AJAX handlers (though there are none in this version) and the absence of taint flow analysis on a larger scale are areas that could be strengthened to provide a more robust security guarantee.

Overall, while the plugin has avoided historical vulnerabilities and employs some secure coding practices, the prevalent output escaping issue presents a tangible risk that should be addressed. The limited attack surface and preparedness for SQL injection are strengths, but the unescaped output is a notable weakness.

Key Concerns

Low percentage of properly escaped output
No nonce checks on AJAX handlers (though none exist)
No taint flow analysis performed (large scale)

Vulnerabilities

None known

CalcForm Calculator Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

CalcForm Calculator Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

21 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

54% escaped39 total outputs

Attack Surface

CalcForm Calculator Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[calc_form] calcform-calculator.php:377

WordPress Hooks 3

actionadmin_menucalcform-calculator.php:138

actionadmin_initcalcform-calculator.php:224

actionwp_enqueue_scriptscalcform-calculator.php:243

Maintenance & Trust

CalcForm Calculator Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 20, 2026

PHP min version7.4

Downloads196

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

CalcForm Calculator Alternatives

$Enable Latex$

Enable Latex

enable-latex

Insert LaTeX formulas in your posts.

70 1 unpatched

Shortcode for My Mitsu Estimation Form

shortcode-for-my-mitsu-estimation-form

This plugin allows users to put a My Mitsu estimation form in your website.

30 No CVEs

MW WP Form

mw-wp-form

MW WP Form is shortcode base contact form plugin. This plugin have many features. For example you can use many validation rules, inquiry data saving, …

200K 6 CVEs

Calculated Fields Form

calculated-fields-form

The CFF plugin allows you to create both simple and professional forms. Its form builder includes dynamic calculated fields and many other controls.

40K 17 CVEs

YITH WooCommerce Ajax Search

yith-woocommerce-ajax-search

YITH WooCommerce Ajax Search allows your users to search products in real time.

40K 4 CVEs

Developer Profile

CalcForm Calculator Developer Profile

james8383

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect CalcForm Calculator

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/calcform-calculator/assets/css/calcform-calculator.css/wp-content/plugins/calcform-calculator/assets/js/calcform-calculator.js

Script Paths

/wp-content/plugins/calcform-calculator/assets/js/calcform-calculator.js

Version Parameters

calcform-calculator/assets/css/calcform-calculator.css?ver=calcform-calculator/assets/js/calcform-calculator.js?ver=

HTML / DOM Fingerprints

Shortcode Output

[calc_form]

FAQ