Easy Bitcoin Donation Widget Security & Risk Analysis
wordpress.org/plugins/easy-bitcoin-donation-widgetA simple widget to create a QR code widget for accepting donations.
Is Easy Bitcoin Donation Widget Safe to Use in 2026?
Generally Safe
Score 100/100Easy Bitcoin Donation Widget has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "easy-bitcoin-donation-widget" v1.1 plugin presents a mixed security posture. On one hand, it demonstrates a commendable lack of exposed attack surface through AJAX handlers, REST API routes, shortcodes, and cron events, with no apparent direct unauthenticated entry points. The absence of known CVEs and vulnerability history further suggests a historically stable plugin. However, the static analysis reveals significant areas of concern. The presence of the `create_function` function is a critical security risk, as it can be exploited for remote code execution. Furthermore, the plugin's reliance on a single SQL query that does not use prepared statements is a major vulnerability, opening the door to SQL injection attacks. The low percentage of properly escaped output (16%) is also alarming, indicating a high risk of cross-site scripting (XSS) vulnerabilities. The lack of nonce and capability checks on any potential code paths is a serious oversight. While the plugin has a clean history, the internal code analysis reveals substantial risks that need immediate attention.
Key Concerns
- Use of create_function
- Raw SQL query without prepared statements
- Low percentage of proper output escaping
- Missing nonce checks
- Missing capability checks
Easy Bitcoin Donation Widget Security Vulnerabilities
Easy Bitcoin Donation Widget Code Analysis
Dangerous Functions Found
SQL Query Safety
Output Escaping
Easy Bitcoin Donation Widget Attack Surface
WordPress Hooks 6
Maintenance & Trust
Easy Bitcoin Donation Widget Maintenance & Trust
Maintenance Signals
Community Trust
Easy Bitcoin Donation Widget Alternatives
Bitcoin Donations
bitcoin-donations
This plugin displays your bitcoin address to allow visitors of your site to donate bitcoins
BitMate Author Donations
bitmate-author-donations
BitMate Author Donations is a WordPress plugin for authors on WordPress powered sites to accept cryptocurrency donations.
Cryptocurrency Donation Widget – Accept Bitcoin, Ethereum, and more – Bytemart.org
bitcoin-donation-and-fundraising-widget
Accept Bitcoin, Ether, Dogecoin, TRON, Dash and other popular cryptocurrencies as donation on your website.
Simple Bitcoin donations widget
simple-bitcoin-donations-widget
This adds a simple Bitcoin donations widget to your WordPress site.
GiveWP – Donation Plugin and Fundraising Platform
give
Accept donations and begin fundraising with GiveWP, the highest rated WordPress donation plugin for online giving.
Easy Bitcoin Donation Widget Developer Profile
5 plugins · 260 total installs
How We Detect Easy Bitcoin Donation Widget
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/easy-bitcoin-donation-widget/easy-bitcoin-donation-widget.css/wp-content/plugins/easy-bitcoin-donation-widget/js/easy-bitcoin-donation-widget-script.js/wp-content/plugins/easy-bitcoin-donation-widget/js/easy-bitcoin-donation-widget-script.jseasy-bitcoin-donation-widget/easy-bitcoin-donation-widget.css?ver=easy-bitcoin-donation-widget/js/easy-bitcoin-donation-widget-script.js?ver=HTML / DOM Fingerprints
easy-bitcoin-donation-widget-containerebdw-formEasy Bitcoin Donation WidgetAuthor: The Plugin Factory, Consulting WPTrying to make a living working for myself. This is the advertisement for my consulting services.If you're reading this, and need any help with your WordPress code, drop me a line.+2 moredata-ebdw-btc-addrdata-ebdw-amounteasyBitcoinDonationWidget[easy_bitcoin_donation]