Love Calculator Security & Risk Analysis
wordpress.org/plugins/love-calculatorThis love calculator evaluates the compatibility of two people based on names.
Is Love Calculator Safe to Use in 2026?
Generally Safe
Score 85/100Love Calculator has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The 'love-calculator' plugin v1.2 exhibits a generally strong security posture based on the provided static analysis. The absence of any detected AJAX handlers, REST API routes, shortcodes, or cron events with exploitable attack surfaces is a significant strength. Furthermore, the code does not appear to utilize dangerous functions, perform file operations, or make external HTTP requests, all of which are positive security indicators. The 100% usage of prepared statements for SQL queries is commendable, mitigating the risk of SQL injection vulnerabilities.
However, a critical concern arises from the complete lack of output escaping. With 3 total outputs analyzed and 0% properly escaped, this indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities. Any data displayed to users, especially if it originates from user input or external sources, could be exploited to inject malicious scripts. The absence of nonce checks and capability checks, particularly in conjunction with the potential for XSS, further exacerbates this risk, as there are no built-in mechanisms to verify user intent or permissions for actions that might lead to output.
The plugin's vulnerability history is currently clean, with no recorded CVEs. This suggests a good track record in the past, but it does not negate the immediate risks identified in the static analysis. The lack of any identified taint flows is also a positive sign, but again, this is overshadowed by the severe output escaping deficiency. In conclusion, while the plugin avoids many common pitfalls, the severe lack of output escaping presents a significant and immediate security risk that needs to be addressed.
Key Concerns
- Output escaping missing
- No nonce checks
- No capability checks
Love Calculator Security Vulnerabilities
Love Calculator Code Analysis
Output Escaping
Love Calculator Attack Surface
WordPress Hooks 1
Maintenance & Trust
Love Calculator Maintenance & Trust
Maintenance Signals
Community Trust
Love Calculator Alternatives
Classic Widgets
classic-widgets
Enables the previous "classic" widgets settings screens in Appearance - Widgets and the Customizer. Disables the block editor from managing widgets.
ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor
elementskit-lite
Join millions who empower their websites with ElementsKit Elementor Addons. Get templates, & 100+ widgets like header-footer, mega menu, custom widget
Essential Addons for Elementor – Popular Elementor Templates & Widgets
essential-addons-for-elementor-lite
Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.
Ultimate Addons for Elementor
header-footer-elementor
Powerful Elementor addon with advanced Elementor widgets, templates, WooCommerce widgets & Header-Footer builder to build professional websites fa …
One Click Demo Import
one-click-demo-import
Import your demo content, widgets and theme settings with one click. Theme authors! Enable simple theme demo import for your users.
Love Calculator Developer Profile
3 plugins · 110 total installs
How We Detect Love Calculator
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
HTML / DOM Fingerprints
calculatornet_love_calculatorEdit the following to change the look and feel of this calculatorid="calinputtablelove"id="cnameone"id="cnametwo"gObjtrimAllshowquicklovemsggetNumlovecalc[calculatornet_love_calculator]