Does Currency Converter Calculator have any unpatched vulnerabilities?

No. All known vulnerabilities in Currency Converter Calculator have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Currency Converter Calculator compatible with WordPress 6.9.4?

According to WordPress.org data, Currency Converter Calculator 1.4.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Currency Converter Calculator compatible with PHP 5.3+?

Currency Converter Calculator requires PHP 5.3 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Currency Converter Calculator updated?

Currency Converter Calculator was last updated on Dec 1, 2025. Frequent updates are generally a positive security signal.

What is Currency Converter Calculator's security score?

Currency Converter Calculator has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Currency Converter Calculator Security & Risk Analysis

wordpress.org/plugins/currency-converter-calculator

❤️‍ Is a magic real-time and easy-to-use with beautiful UI widget. Included 195+ world currencies with popular cryptocurrencies.

1K active installs v1.4.1 PHP 5.3+ WP 3.1+ Updated Dec 1, 2025

currency-calculatorcurrency-conversioncurrency-converterforeign-exchange-conversionforex

A · Safe

CVEs total1

Unpatched0

Last CVENov 28, 2023

Plugin page Download

Safety Verdict

Is Currency Converter Calculator Safe to Use in 2026?

Generally Safe

Score 100/100

Currency Converter Calculator has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Nov 28, 2023Updated 4mo ago

Risk Assessment

The 'currency-converter-calculator' plugin v1.4.1 presents a mixed security posture. On the positive side, the static analysis reveals excellent practices regarding SQL queries, with all using prepared statements, and a high percentage of output escaping. The absence of direct external HTTP requests and bundled libraries also mitigates common attack vectors. However, significant concerns arise from the lack of nonces and capability checks on its single shortcode entry point, and the presence of a past medium-severity Cross-Site Scripting (XSS) vulnerability. Although this vulnerability is listed as currently unpatched, its single instance and medium severity suggest it might not be exploitable in all contexts or that patches were applied in subsequent versions not reflected here. The overall attack surface is small, but the lack of authentication on the shortcode is a notable weakness, potentially allowing unauthenticated users to trigger shortcode functionality, which could be leveraged if the shortcode's logic is vulnerable.

Key Concerns

Missing capability checks on shortcode
Missing nonce checks on shortcode
Past medium severity XSS vulnerability

Vulnerabilities

Currency Converter Calculator Security Vulnerabilities

CVEs by Year

1 CVE in 2023

2023

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2023-49149medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Currency Converter Calculator <= 1.3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via shortcode

Nov 28, 2023 Patched in 1.3.2 (108d)

Code Analysis

Analyzed Mar 16, 2026

Currency Converter Calculator Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

147 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

98% escaped150 total outputs

Attack Surface

Currency Converter Calculator Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[ccc_currency_converter_calculator] widget_init.php:93

WordPress Hooks 2

actionwidgets_initwidget_init.php:30

actionadmin_enqueue_scriptswidget_init.php:37

Maintenance & Trust

Currency Converter Calculator Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 1, 2025

PHP min version5.3

Downloads34K

Community Trust

Rating86/100

Number of ratings6

Active installs1K

Alternatives

Currency Converter Calculator Alternatives

Currency Converter

currency-converter

Currency calculator, converts amounts between currencies. Size, color, and layout can be customized.

500 No CVEs

Currency Converter Widget

currency-converter-widget

100

Free, fast, and beautiful currency converter widget with 170+ currencies, live exchange rates, and 11 widget styles.

3K 1 CVE

Exchange Rates

exchange-rates

Currency Converter & Exchange Rates Widgets, easy-to-use, with beautiful UI. 🔑 No API key needed, ❤️‍ plug and play.

1K 2 CVEs

Currency Converter Widget ⚡ PRO

currency-converter-widget-pro

Currency Converter Widget ⚡ PRO: Free, easy, beautiful UI, real-time multi-currency calculation, full features.

400 1 CVE

Cryptocurrency Converter

cryptocurrency-converter

This plugin allows to add shortcode on your WordPress site and convert over 1,400 crypto currencies. [Cryptocurrency_Converter title="Your Title& …

10 No CVEs

Developer Profile

Currency Converter Calculator Developer Profile

falselight

9 plugins · 5K total installs

trust score

Avg Security Score

99/100

Avg Patch Time

22 days

View full developer profile

Detection Fingerprints

How We Detect Currency Converter Calculator

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/currency-converter-calculator/assets/jscolor.min.js

Script Paths