Mutual Funds Data Security & Risk Analysis
wordpress.org/plugins/mutual-funds-dataShow latest data about Indian Mutual Funds on your website, e.g. 1 yr, 3 yr, 5 yr returns, risk, category etc.
Is Mutual Funds Data Safe to Use in 2026?
Generally Safe
Score 85/100Mutual Funds Data has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "mutual-funds-data" v1.2.1 plugin presents a mixed security posture. While it demonstrates good practices such as the absence of dangerous functions and 100% usage of prepared statements for SQL queries, significant concerns emerge from its handling of entry points and output sanitization. The presence of an unprotected AJAX handler creates a direct avenue for potential abuse without proper authentication or authorization checks. Furthermore, all output, as indicated by the static analysis, is not properly escaped, posing a substantial risk of Cross-Site Scripting (XSS) vulnerabilities when user-supplied data is displayed. The taint analysis, while showing no critical or high severity unsanitized paths, still reveals two flows with unsanitized paths, which warrants attention in conjunction with the unescaped output. The plugin's vulnerability history is clean, with no recorded CVEs, which is a positive indicator of its past security, but it does not mitigate the immediate risks identified in the current code analysis. The overall security is hampered by the lack of robust input validation and output escaping, coupled with an exposed entry point.
Key Concerns
- AJAX handler without auth checks
- 0% output properly escaped
- 2 flows with unsanitized paths
- No nonce checks
- No capability checks
Mutual Funds Data Security Vulnerabilities
Mutual Funds Data Code Analysis
Bundled Libraries
Output Escaping
Data Flow Analysis
Mutual Funds Data Attack Surface
AJAX Handlers 1
Shortcodes 1
WordPress Hooks 8
Maintenance & Trust
Mutual Funds Data Maintenance & Trust
Maintenance Signals
Community Trust
Mutual Funds Data Alternatives
Stock Market Ticker
stock-market-ticker
Easy to use and versatile stock market ticker, with support of over 65 world exchanges, indices, commodities and currencies.
Stock Market News
stock-market-news
WordPress plugin and widget for displaying a list of stock news for a given public company, available in several languages.
Economic & Market News
economic-market-news
Displays a list of economic and general stock markets news, available in more than 20 languages and covering over 40 countries.
AC's Retirement Nest Egg Calculator
fc-retirement-nest-egg-calculator
A retirement future value calculator to create date based schedules and charts. Rebrandable. Supports 90 currencies, 6 date formats, and 15 languages.
Show Stock Quotes by 99 Robots
show-stock-quotes
Display up to 20 stock quotes per portfolio. Each widget instance is considered a portfolio, so just add more widget instances for more portfolios.
Mutual Funds Data Developer Profile
1 plugin · 30 total installs
How We Detect Mutual Funds Data
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/mutual-funds-data/css/frontend.css/wp-content/plugins/mutual-funds-data/css/responsive-table.css/wp-content/plugins/mutual-funds-data/js/frontend.js/wp-content/plugins/mutual-funds-data/js/script.js/wp-content/plugins/mutual-funds-data/js/frontend.js/wp-content/plugins/mutual-funds-data/js/script.jsmutual-funds-data/css/frontend.css?ver=mutual-funds-data/css/responsive-table.css?ver=mutual-funds-data/js/frontend.js?ver=mutual-funds-data/js/script.js?ver=HTML / DOM Fingerprints
mfd-containermfd-responsive-tabledata-titledata-type/wp-json/mutual-funds-data/v1/settings<table class="mfd-responsive-table"><th scope="col">Fund Name</th><td data-title="1Y" data-type="currency"><td data-title="3Y" data-type="currency">