Does Cryptocurrency Widgets For Elementor have any unpatched vulnerabilities?

No. All known vulnerabilities in Cryptocurrency Widgets For Elementor have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Cryptocurrency Widgets For Elementor compatible with WordPress 6.9.4?

According to WordPress.org data, Cryptocurrency Widgets For Elementor 1.8.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Cryptocurrency Widgets For Elementor compatible with PHP 5.6+?

Cryptocurrency Widgets For Elementor requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Cryptocurrency Widgets For Elementor updated?

Cryptocurrency Widgets For Elementor was last updated on Feb 12, 2026. Frequent updates are generally a positive security signal.

What is Cryptocurrency Widgets For Elementor's security score?

Cryptocurrency Widgets For Elementor has a WP-Safety security score of 98/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Cryptocurrency Widgets For Elementor Security & Risk Analysis

wordpress.org/plugins/cryptocurrency-widgets-for-elementor

Easily display cryptocurrency prices and generate customizable widgets for 250+ coins, including Bitcoin, Ethereum, and more in Elementor.

2K active installs v1.8.1 PHP 5.6+ WP 5.0+ Updated Feb 12, 2026

bitcoin-widgetcrypto-donationscrypto-pricecryptocurrencyelementor-addon

A · Safe

CVEs total1

Unpatched0

Last CVENov 27, 2024

Plugin page Download

Safety Verdict

Is Cryptocurrency Widgets For Elementor Safe to Use in 2026?

Generally Safe

Score 98/100

Cryptocurrency Widgets For Elementor has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Nov 27, 2024Updated 1mo ago

Risk Assessment

The cryptocurrency-widgets-for-elementor plugin exhibits a mixed security posture. On the positive side, the code demonstrates good practices with a high percentage of prepared statements for SQL queries and properly escaped output. The presence of numerous nonce and capability checks also suggests an effort to secure WordPress functionalities. However, the static analysis reveals a notable concern: two out of five AJAX handlers lack authentication checks, presenting a direct attack vector for unauthenticated users to interact with plugin functionalities. The vulnerability history, which includes a high-severity PHP Remote File Inclusion (RFI) vulnerability discovered in late 2024, is a significant red flag. While currently patched, this indicates a past weakness that could potentially reappear if not diligently addressed in future versions.

Overall, the plugin's strengths lie in its careful handling of SQL and output, but the unauthenticated AJAX endpoints and the past RFI vulnerability introduce significant risk. The lack of taint analysis results is somewhat unusual but doesn't negate the identified risks. Users should be cautious, and developers should prioritize securing all AJAX handlers and thoroughly reviewing code for similar vulnerabilities to maintain a robust security profile.

Key Concerns

2 AJAX handlers without auth checks
1 High severity CVE in vulnerability history

Vulnerabilities

Cryptocurrency Widgets For Elementor Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

High

1 total CVE

CVE-2024-53739high · 8.1Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

Cryptocurrency Widgets For Elementor <= 1.6.4 - Unauthenticated Local File Inclusion

Nov 27, 2024 Patched in 1.6.5 (16d)

Code Analysis

Analyzed Mar 16, 2026

Cryptocurrency Widgets For Elementor Code Analysis

Dangerous Functions

Raw SQL Queries

17 prepared

Unescaped Output

364 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

DataTables

SQL Query Safety

85% prepared20 total queries

Output Escaping

97% escaped376 total outputs

Attack Surface

2 unprotected

Cryptocurrency Widgets For Elementor Attack Surface

Entry Points5

Unprotected2

AJAX Handlers 5

authwp_ajax_cpfm_handle_opt_inadmin\feedback\cpfm-common-notice.php:13

authwp_ajax_ccew_dismiss_noticeadmin\feedback-notice\ccew-review-notice.php:16

authwp_ajax_ccew_delete_transientadmin\settings.php:46

authwp_ajax_ccew_getDatacryptocurrency-widgets-for-elementor.php:88

noprivwp_ajax_ccew_getDatacryptocurrency-widgets-for-elementor.php:89

WordPress Hooks 35

actionadmin_menuadmin\addon-dashboard-page\addon-dashboard-page.php:69

actionadmin_enqueue_scriptsadmin\addon-dashboard-page\addon-dashboard-page.php:72

filterupgrader_pre_installadmin\addon-dashboard-page\includes\cool_plugins_downloader.php:25

filterupgrader_clear_destinationadmin\addon-dashboard-page\includes\cool_plugins_downloader.php:26

actionadmin_enqueue_scriptsadmin\feedback\admin-feedback-form.php:22

actionadmin_headadmin\feedback\admin-feedback-form.php:24

actionadmin_initadmin\feedback\cpfm-common-notice.php:11

actionadmin_enqueue_scriptsadmin\feedback\cpfm-common-notice.php:12

actionadmin_footeradmin\feedback\cpfm-common-notice.php:14

actionadmin_noticesadmin\feedback-notice\ccew-review-notice.php:15

actionadmin_noticesadmin\openexchange-api-settings.php:24

actionadmin_menuadmin\openexchange-api-settings.php:25

actionadmin_initadmin\openexchange-api-settings.php:26

actionadmin_headadmin\openexchange-api-settings.php:27

actionccew_get_extra_infoadmin\openexchange-api-settings.php:28

actionadmin_menuadmin\settings.php:42

actionadmin_initadmin\settings.php:43

actionadmin_enqueue_scriptsadmin\settings.php:45

actioninitcryptocurrency-widgets-for-elementor.php:85

actionplugins_loadedcryptocurrency-widgets-for-elementor.php:92

actioninitcryptocurrency-widgets-for-elementor.php:93

actioninitcryptocurrency-widgets-for-elementor.php:94

actioninitcryptocurrency-widgets-for-elementor.php:95

actionadmin_enqueue_scriptscryptocurrency-widgets-for-elementor.php:98

actionadmin_noticescryptocurrency-widgets-for-elementor.php:99

actionadmin_noticescryptocurrency-widgets-for-elementor.php:138

actioncpfm_register_noticecryptocurrency-widgets-for-elementor.php:185

actioncpfm_after_opt_in_ccewcryptocurrency-widgets-for-elementor.php:210

actionelementor/frontend/after_enqueue_scriptsdonation-box\ccew-donation-box-widget.php:17

actionelementor/frontend/after_enqueue_scriptsincludes\ccew-cryptocurrency-widgets.php:20

actionelementor/initincludes\ccew-elementor-register.php:13

actionelementor/editor/after_enqueue_stylesincludes\ccew-elementor-register.php:14

actionelementor/widgets/registerincludes\ccew-elementor-register.php:17

filtercron_schedulesincludes\cron\ccew-class-cron.php:14

actionccew_extra_data_updateincludes\cron\ccew-class-cron.php:15

Scheduled Events 6

ccew_extra_data_update

cmc_extra_data_update

celp_extra_data_update

ccpw_extra_data_update

ccew_extra_data_update

Maintenance & Trust

Cryptocurrency Widgets For Elementor Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 12, 2026

PHP min version5.6

Downloads71K

Community Trust

Rating98/100

Number of ratings13

Active installs2K

Alternatives

Cryptocurrency Widgets For Elementor Alternatives

Cryptocurrency Widgets – Price Ticker & Coins List

cryptocurrency-price-ticker-widget

Display cryptocurrency price ticker widget, coins live price list, table, labels & coin marketcap via shortcodes.

8K 4 CVEs

Crypto Price Widgets – CryptoWP

cryptowp

100

A lightweight plugin to show the latest Bitcoin, Ethereum, and other cryptocurrency widgets on your website.

700 No CVEs

Crypto Price And Stats

crypto-price-and-stats

100

Crypto Price And Stats is a WordPress plugin displays live prices and stats of crypto coins.

30 No CVEs

Crypto Coin Market Prices

cryptocurrency-coin-prices

Easy to use option for setting up a bitcoin and altcoin exchange rate.

10 No CVEs

Crypto Converter

crypto-converter

Customizable crypto price converter with multiple currencies, fiat conversions, and adjustable design settings.

0 No CVEs

Developer Profile

Cryptocurrency Widgets For Elementor Developer Profile

Cool Plugins

19 plugins · 109K total installs

trust score

Avg Security Score

98/100

Avg Patch Time

490 days

View full developer profile

Detection Fingerprints

How We Detect Cryptocurrency Widgets For Elementor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/cryptocurrency-widgets-for-elementor/assets/css/cryptocurrency-widgets-for-elementor.css/wp-content/plugins/cryptocurrency-widgets-for-elementor/assets/js/cryptocurrency-widgets-for-elementor.js/wp-content/plugins/cryptocurrency-widgets-for-elementor/admin/openexchange-api-settings.js/wp-content/plugins/cryptocurrency-widgets-for-elementor/admin/settings.js

Script Paths

/wp-content/plugins/cryptocurrency-widgets-for-elementor/assets/js/cryptocurrency-widgets-for-elementor.js/wp-content/plugins/cryptocurrency-widgets-for-elementor/admin/openexchange-api-settings.js/wp-content/plugins/cryptocurrency-widgets-for-elementor/admin/settings.js

Version Parameters

cryptocurrency-widgets-for-elementor/assets/css/cryptocurrency-widgets-for-elementor.css?ver=cryptocurrency-widgets-for-elementor/assets/js/cryptocurrency-widgets-for-elementor.js?ver=cryptocurrency-widgets-for-elementor/admin/openexchange-api-settings.js?ver=cryptocurrency-widgets-for-elementor/admin/settings.js?ver=

HTML / DOM Fingerprints

CSS Classes

ccew_coin_price_widgetccew-coin-detailsccew-trending-coins-widget

HTML Comments

Data Attributes

data-widget-iddata-coin-id

JS Globals

ccew_ajax_objectccw_get_started_obj

Shortcode Output

[ccew_coin_price][ccew_trending_coins]

FAQ