Does Forex News Widget have any unpatched vulnerabilities?

No. All known vulnerabilities in Forex News Widget have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Forex News Widget compatible with WordPress 6.8.5?

According to WordPress.org data, Forex News Widget 3.1 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Forex News Widget compatible with PHP 7.4+?

Forex News Widget requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Forex News Widget updated?

Forex News Widget was last updated on Aug 21, 2025. Frequent updates are generally a positive security signal.

What is Forex News Widget's security score?

Forex News Widget has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Forex News Widget Security & Risk Analysis

wordpress.org/plugins/forex-news-widget

Display filtered Forex economic news by impact level and timezone. Lightweight, responsive, and customizable via shortcode.

30 active installs v3.1 PHP 7.4+ WP 5.0+ Updated Aug 21, 2025

ajaxeconomic-calendarforeximpact-filternews-widget

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Forex News Widget Safe to Use in 2026?

Generally Safe

Score 100/100

Forex News Widget has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7mo ago

Risk Assessment

The "forex-news-widget" v3.1 plugin exhibits a generally good security posture with no known vulnerabilities in its history and a clean taint analysis. The static analysis reveals a very small attack surface, with only one shortcode and no AJAX handlers or REST API routes. Importantly, all SQL queries are prepared, and there are no file operations or external HTTP requests, which are common sources of vulnerabilities. However, a significant concern is the complete lack of output escaping for the single output identified. This means any data displayed by the widget could potentially be rendered directly by the user's browser, opening the door for Cross-Site Scripting (XSS) attacks if the input data is not properly sanitized beforehand. Additionally, the absence of nonce and capability checks on the shortcode, while seemingly minor given the limited attack surface, represents a missed opportunity for basic security hardening. While the lack of historical CVEs is positive, the current findings suggest a need for improvement in input validation and output sanitization practices.

Key Concerns

1 output not properly escaped
No nonce checks on entry points
No capability checks on entry points

Vulnerabilities

None known

Forex News Widget Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Forex News Widget Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped1 total outputs

Attack Surface

Forex News Widget Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[forex_news_widget] forex-news-widget.php:95

WordPress Hooks 1

actionwp_enqueue_scriptsforex-news-widget.php:26

Maintenance & Trust

Forex News Widget Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedAug 21, 2025

PHP min version7.4

Downloads486

Community Trust

Rating0/100

Number of ratings0

Active installs30

Alternatives

Forex News Widget Alternatives

Ivory Search – WordPress Search Plugin

add-search-to-menu

Advanced WordPress custom search plugin. Provides Search Form Customizer, WooCommerce Search, AJAX Search & Live Search support!

100K 11 CVEs

FiboSearch – Ajax Search for WooCommerce

ajax-search-for-woocommerce

The most popular WooCommerce product search plugin. Gives your users a well-designed advanced AJAX search bar with live search suggestions.

100K 3 CVEs

HUSKY – Products Filter Professional for WooCommerce

woocommerce-products-filter

HUSKY - WooCommerce Products Filter Professional (former name is WOOF) – flexible, easy and robust professional filter for products for WooCommerce

90K 23 CVEs

Heartbeat Control

heartbeat-control

Allows you to easily manage the frequency of the WordPress heartbeat API.

80K No CVEs

kk Star Ratings – Rate Post & Collect User Feedbacks

kk-star-ratings

kk Star Ratings allows blog visitors to involve and interact more effectively with your website by rating posts.

80K 4 CVEs

Developer Profile

Forex News Widget Developer Profile

fxgadgets

3 plugins · 60 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Forex News Widget

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/forex-news-widget/assets/style.css/wp-content/plugins/forex-news-widget/assets/script.js

Script Paths

/wp-content/plugins/forex-news-widget/assets/script.js

HTML / DOM Fingerprints

CSS Classes

fxgadgets-main-boxfxgadgets-filter-containerfxgadgets-impact-filtersfxgadgets-timezone-filterfxgadgets-forex-news

Data Attributes

name="impact"value="ALL"value="HIGH"value="MEDIUM"value="LOW"name="timezone"+2 more

JS Globals

fxgadgets_ajax_object

Shortcode Output

<div class="fxgadgets-main-box"><div class="fxgadgets-filter-container"><div class="fxgadgets-impact-filters"><label><input type="radio" name="impact" value="ALL" checked> All</label>

FAQ