Does CodeArt Units Converter have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is CodeArt Units Converter compatible with WordPress 6.8.5?

According to WordPress.org data, CodeArt Units Converter 3.7.0 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is CodeArt Units Converter compatible with PHP 7.0+?

CodeArt Units Converter requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is CodeArt Units Converter updated?

CodeArt Units Converter was last updated on Apr 2, 2026. Frequent updates are generally a positive security signal.

What is CodeArt Units Converter's security score?

CodeArt Units Converter has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

CodeArt Units Converter Security & Risk Analysis

wordpress.org/plugins/codeart-units-converter

Easily add unit converters and calculators (basic & scientific) to your WordPress site using shortcodes.

70 active installs v3.7.0 PHP 7.0+ WP 4.7+ Updated Apr 2, 2026

calculatorconvertermathtoolunit

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is CodeArt Units Converter Safe to Use in 2026?

Generally Safe

Score 100/100

CodeArt Units Converter has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The 'codeart-units-converter' v3.4.0 plugin exhibits a mixed security posture. While the absence of known CVEs and the prevalent use of prepared statements for SQL queries are positive indicators, several significant security concerns arise from the static analysis. A substantial portion of the plugin's attack surface, specifically all 16 REST API routes, lacks any permission callbacks, exposing them to unauthenticated access. Furthermore, the taint analysis reveals four flows with unsanitized paths, although these did not reach critical or high severity levels. The complete absence of nonce checks across all entry points, including AJAX handlers (though none are explicitly listed as unprotected), is a notable weakness, potentially allowing for CSRF attacks if AJAX functionality exists and is not properly secured. The plugin also has no recorded vulnerability history, which is a good sign, but this does not negate the immediate risks identified in the code.

Key Concerns

Unprotected REST API routes
Taint flows with unsanitized paths
Missing nonce checks
File operations without clear context

Vulnerabilities

None known

CodeArt Units Converter Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

CodeArt Units Converter Release Timeline

v3.7.0Current

v3.6.0

v3.5.0

v3.4.0

v3.3.2

v3.3.1

v3.3.0

v3.2.1

v3.2.0

v3.1.1

v3.1.0

v3.0.0

v2.6.0

v2.5.0

v2.4.0

v2.3.0

v2.1.0

v2.0.0

v1.4.0

v1.3.0

Code Analysis

Analyzed Mar 16, 2026

CodeArt Units Converter Code Analysis

Dangerous Functions

Raw SQL Queries

38 prepared

Unescaped Output

19 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

84% prepared45 total queries

Output Escaping

83% escaped23 total outputs

Data Flows · Security

4 unsanitized

Data Flow Analysis

4 flows4 with unsanitized paths

codeart_units_converter_edit_shortcode (admin\edit-shortcode.php:3)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

16 unprotected

CodeArt Units Converter Attack Surface

Entry Points23

Unprotected16

REST API Routes 16

GET/wp-json/CodeArtUnitsConverter/v1/angleinclude\converter\angle\angle.php:3

GET/wp-json/CodeArtUnitsConverter/v1/areainclude\converter\area\area.php:5

GET/wp-json/CodeArtUnitsConverter/v1/densityinclude\converter\density\density.php:3

GET/wp-json/CodeArtUnitsConverter/v1/energyinclude\converter\energy\energy.php:3

GET/wp-json/CodeArtUnitsConverter/v1/forceinclude\converter\force\force.php:3

GET/wp-json/CodeArtUnitsConverter/v1/frequencyinclude\converter\frequency\frequency.php:3

GET/wp-json/CodeArtUnitsConverter/v1/fuel_economyinclude\converter\fuel-economy\fuel-economy.php:3

GET/wp-json/CodeArtUnitsConverter/v1/lengthinclude\converter\length\length.php:4

GET/wp-json/CodeArtUnitsConverter/v1/powerinclude\converter\power\power.php:3

GET/wp-json/CodeArtUnitsConverter/v1/pressureinclude\converter\pressure\pressure.php:3

GET/wp-json/CodeArtUnitsConverter/v1/speedinclude\converter\speed\speed.php:5

GET/wp-json/CodeArtUnitsConverter/v1/digital_storageinclude\converter\storage\storage.php:3

GET/wp-json/CodeArtUnitsConverter/v1/temperatureinclude\converter\temperature\temperature.php:4

GET/wp-json/CodeArtUnitsConverter/v1/timeinclude\converter\time\time.php:3

GET/wp-json/CodeArtUnitsConverter/v1/volumeinclude\converter\volume\volume.php:3

GET/wp-json/CodeArtUnitsConverter/v1/weightinclude\converter\weight\weight.php:5

Shortcodes 7

[codeart_units_converter] include\shortcodes.php:28

[codeart_units_converter_converters] include\shortcodes.php:47

[codeart_units_converter_area] include\shortcodes.php:66

[codeart_units_converter_speed] include\shortcodes.php:85

[codeart_units_converter_weight] include\shortcodes.php:104

[codeart_units_converter_basic_calculator] include\shortcodes.php:113

[codeart_units_converter_scientific_calculator] include\shortcodes.php:122

WordPress Hooks 21

actionadmin_headadmin\menus.php:46

actionadmin_menuadmin\menus.php:52

actionadmin_noticesadmin\welcome.php:36

actionwp_enqueue_scriptscodeart-units-converter.php:91

actioninitcodeart-units-converter.php:157

actionrest_api_initinclude\converter\angle\angle.php:2

actionrest_api_initinclude\converter\area\area.php:4

actionrest_api_initinclude\converter\density\density.php:2

actionrest_api_initinclude\converter\energy\energy.php:2

actionrest_api_initinclude\converter\force\force.php:2

actionrest_api_initinclude\converter\frequency\frequency.php:2

actionrest_api_initinclude\converter\fuel-economy\fuel-economy.php:2

actionrest_api_initinclude\converter\length\length.php:3

actionrest_api_initinclude\converter\power\power.php:2

actionrest_api_initinclude\converter\pressure\pressure.php:2

actionrest_api_initinclude\converter\speed\speed.php:4

actionrest_api_initinclude\converter\storage\storage.php:2

actionrest_api_initinclude\converter\temperature\temperature.php:3

actionrest_api_initinclude\converter\time\time.php:2

actionrest_api_initinclude\converter\volume\volume.php:2

actionrest_api_initinclude\converter\weight\weight.php:4

Maintenance & Trust

CodeArt Units Converter Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedApr 2, 2026

PHP min version7.0

Downloads7K

Community Trust

Rating0/100

Number of ratings0

Active installs70

Alternatives

CodeArt Units Converter Alternatives

Universal Unit Converter

hash-converter

100

Universal unit converter with 7 templates. Real-time conversion for length, weight, temperature, volume, area, speed, time, and data units.

10 No CVEs

Unit Converter & Sizing Calculator for Product Pages

calcslive-article-embed

100

Prevent Product Returns with Unit Aware Specs & Buying Calculators that help customers buy the right size & quantity from the beginning.

0 No CVEs

Currency Converter Widget

currency-converter-widget

100

Free, fast, and beautiful currency converter widget with 170+ currencies, live exchange rates, and 11 widget styles.

3K 1 CVE

Flexible Quantity – Measurement Price Calculator for WooCommerce

flexible-quantity-measurement-price-calculator-for-woocommerce

100

WooCommerce price calculator. Sell products by unit, dimension or volume. Calculate quantity increment and final price for a new unit of measure.

2K No CVEs

Currency Converter Calculator

currency-converter-calculator

100

❤️‍ Is a magic real-time and easy-to-use with beautiful UI widget. Included 195+ world currencies with popular cryptocurrencies.

1K 1 CVE

Developer Profile

CodeArt Units Converter Developer Profile

CodeIsArt.NET

1 plugin · 70 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect CodeArt Units Converter

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/codeart-units-converter/assets/css/style.css/wp-content/plugins/codeart-units-converter/assets/script/script.js

Script Paths

/wp-content/plugins/codeart-units-converter/assets/script/script.js

Version Parameters

codeart-units-converter/assets/css/style.css?ver=codeart-units-converter/assets/script/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

codeart-units-converter

Data Attributes

data-plugin-name="CodeArt Units Converter"

JS Globals

CodeArtUnitsConverter

REST Endpoints

/wp-json/CodeArtUnitsConverter/v1/angle/wp-json/CodeArtUnitsConverter/v1/area/wp-json/CodeArtUnitsConverter/v1/energy/wp-json/CodeArtUnitsConverter/v1/force/wp-json/CodeArtUnitsConverter/v1/frequency/wp-json/CodeArtUnitsConverter/v1/fuel-economy/wp-json/CodeArtUnitsConverter/v1/length/wp-json/CodeArtUnitsConverter/v1/power/wp-json/CodeArtUnitsConverter/v1/pressure/wp-json/CodeArtUnitsConverter/v1/speed/wp-json/CodeArtUnitsConverter/v1/storage/wp-json/CodeArtUnitsConverter/v1/temperature/wp-json/CodeArtUnitsConverter/v1/time/wp-json/CodeArtUnitsConverter/v1/volume/wp-json/CodeArtUnitsConverter/v1/weight/wp-json/CodeArtUnitsConverter/v1/density

FAQ