WP-Safety

Offer Calc Security & Risk Analysis

wordpress.org/plugins/offer-calc

Offer Calc is a simple plugin letting your site visitors to calculate your services at final cost.

30 active installs v1.2 PHP + WP 3.8+ Updated Jan 12, 2023
calculationcalculatorcostofferoffers
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Offer Calc Safe to Use in 2026?

Generally Safe

Score 85/100

Offer Calc has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago
Risk Assessment

The "offer-calc" v1.2 plugin demonstrates some strong security practices, including the exclusive use of prepared statements for all SQL queries and the presence of nonce and capability checks on all identified entry points. The absence of known CVEs and a clean vulnerability history are also positive indicators. However, a significant concern lies in the low percentage of properly escaped output (6%). This suggests a high risk of Cross-Site Scripting (XSS) vulnerabilities, where unsanitized user input could be rendered directly in the browser, leading to potential code execution or data theft.

While the static analysis shows no critical or high severity taint flows, the 3 flows with unsanitized paths are concerning. Coupled with the poor output escaping, these unsanitized paths could potentially be leveraged by an attacker to inject malicious scripts. The plugin has a small attack surface with 3 entry points, all of which are protected, which is a good sign. Nevertheless, the lack of robust output escaping is a critical weakness that needs immediate attention to prevent potential XSS attacks.

Key Concerns

  • Low percentage of properly escaped output (6%)
  • 3 flows with unsanitized paths
Vulnerabilities
None known

Offer Calc Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Offer Calc Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
5 prepared
Unescaped Output
145
10 escaped
Nonce Checks
5
Capability Checks
3
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared5 total queries

Output Escaping

6% escaped155 total outputs
Data Flows
3 unsanitized

Data Flow Analysis

5 flows3 with unsanitized paths
offer_calc_pro_sent_email (offer-calc-pro\includes\class-offer-calc-pro-public.php:332)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Offer Calc Attack Surface

Entry Points3
Unprotected0

AJAX Handlers 2

authwp_ajax_atm_delete_fileincludes\meta-boxes\class-offer-calc-meta-box.php:115
authwp_ajax_atm_reorder_imagesincludes\meta-boxes\class-offer-calc-meta-box.php:116

Shortcodes 1

[ofc_shortcode] includes\class-offer-calc-shortcodes.php:172
WordPress Hooks 53
actionadmin_menuincludes\admin\class-offer-calc-admin.php:317
actionadmin_initincludes\admin\class-offer-calc-admin.php:319
actionadmin_initincludes\admin\class-offer-calc-admin.php:320
actionadmin_initincludes\admin\class-offer-calc-admin.php:321
actionadmin_noticesincludes\admin\class-offer-calc-admin.php:323
actionadd_meta_boxesincludes\admin\class-offer-calc-admin.php:330
actionadd_meta_boxesincludes\admin\class-offer-calc-admin.php:331
actionwp_dashboard_setupincludes\admin\class-offer-calc-admin.php:333
filterthe_contentincludes\admin\class-offer-calc-admin.php:335
actionwp_enqueue_scriptsincludes\class-offer-calc-scripts.php:86
actionadmin_enqueue_scriptsincludes\class-offer-calc-scripts.php:88
actionwp_enqueue_scriptsincludes\class-offer-calc-scripts.php:90
actionadmin_enqueue_scriptsincludes\class-offer-calc-scripts.php:93
actioninitincludes\dx-offer-calc-post-types.php:66
filterpost_updated_messagesincludes\dx-offer-calc-post-types.php:103
actionadd_meta_boxesincludes\meta-boxes\class-offer-calc-meta-box.php:105
actionsave_postincludes\meta-boxes\class-offer-calc-meta-box.php:107
actionadmin_enqueue_scriptsincludes\meta-boxes\class-offer-calc-meta-box.php:111
actionpost_edit_form_tagincludes\meta-boxes\class-offer-calc-meta-box.php:212
filtermedia_upload_galleryincludes\meta-boxes\class-offer-calc-meta-box.php:215
filtermedia_upload_libraryincludes\meta-boxes\class-offer-calc-meta-box.php:216
filtermedia_upload_imageincludes\meta-boxes\class-offer-calc-meta-box.php:217
actionwidgets_initincludes\widgets\class-offer-calc-widget.php:12
filtermce_external_pluginsoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:115
filtermce_buttonsoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:116
actionadd_meta_boxesoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:326
actionadmin_menuoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:397
actionadmin_initoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:398
actioninitoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:401
actionadmin_footer-post.phpoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:404
actionadmin_footer-post-new.phpoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:405
filteroffer_calc_sortable_servicesoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:408
filteroffer_calc_add_meta_optionsoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:409
filteroffer_calc_add_imageoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:410
filteroffer_calc_add_meta_options_topoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:411
filteroffer_calc_add_meta_options_topoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:412
filteroffer_calc_copy_short_codeoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:413
actionsave_postoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:416
actionadmin_initoffer-calc-pro\includes\admin\class-offer-calc-pro-admin.php:419
filteroffer_calc_replace_count_dropdownoffer-calc-pro\includes\class-offer-calc-pro-public.php:548
filteroffer_calc_dynamic_titleoffer-calc-pro\includes\class-offer-calc-pro-public.php:549
actionoffer_calc_show_service_imageoffer-calc-pro\includes\class-offer-calc-pro-public.php:551
actionoffer_calc_sent_email_btnoffer-calc-pro\includes\class-offer-calc-pro-public.php:553
actioninitoffer-calc-pro\includes\class-offer-calc-pro-public.php:554
actionoffer_calc_email_msgoffer-calc-pro\includes\class-offer-calc-pro-public.php:555
actioninitoffer-calc-pro\includes\class-offer-calc-pro-public.php:557
actionwp_enqueue_scriptsoffer-calc-pro\includes\class-offer-calc-pro-scripts.php:152
actionwp_enqueue_scriptsoffer-calc-pro\includes\class-offer-calc-pro-scripts.php:155
actionadmin_enqueue_scriptsoffer-calc-pro\includes\class-offer-calc-pro-scripts.php:157
actionadmin_enqueue_scriptsoffer-calc-pro\includes\class-offer-calc-pro-scripts.php:160
actionplugins_loadedoffer-calc-pro\offer-calc-pro.php:148
actionplugins_loadedoffercalc.php:88
actioninitoffercalc.php:176
Maintenance & Trust

Offer Calc Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10
Last updatedJan 12, 2023
PHP min version
Downloads11K

Community Trust

Rating0/100
Number of ratings0
Active installs30
Alternatives

Offer Calc Alternatives

Cost Calculator Builder

Cost Calculator Builder

cost-calculator-builder

B
82

WP Cost Calculator is a simple and powerful tool that lets you create price estimation forms. Easily give your clients information about your services …

30K 14 CVEs
Cost of Goods: Product Cost & Profit Calculator for WooCommerce

Cost of Goods: Product Cost & Profit Calculator for WooCommerce

cost-of-goods-for-woocommerce

A
96

Unlock detailed insights into products profitability, calculate COGS & profit margins, and get a better financial analytics insights with our Cost …

10K 4 CVEs
Cost Calculator for Contact Form 7 – Price Calculator Free

Cost Calculator for Contact Form 7 – Price Calculator Free

cf7-cost-calculator-price-calculation

A
100

With Contact Form 7 Cost Calculator – Price Calculation Form you can create forms with dynamically calculated fields to display the calculated values!

6K No CVEs
AForms — Form Builder for Price Calculator & Cost Estimation

AForms — Form Builder for Price Calculator & Cost Estimation

aforms-form-builder-for-price-calculator-cost-estimation

A
91

Form builder for Cost estimation and Custom order.

3K 1 CVE
Stylish Cost Calculator – Quote Generator, Lead Gen & Price Estimator

Stylish Cost Calculator – Quote Generator, Lead Gen & Price Estimator

stylish-cost-calculator

B
72

Cost calculator for WordPress: 🌟 Engage visitors and boost conversions with interactive calculations, lead capture, and payment integrations.

2K 1 unpatched
Developer Profile

Offer Calc Developer Profile

Mario Peshev

13 plugins · 5K total installs

69
trust score
Avg Security Score
86/100
Avg Patch Time
164 days
View full developer profile
Detection Fingerprints

How We Detect Offer Calc

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/offer-calc/includes/js/offer-calc-admin.js/wp-content/plugins/offer-calc/includes/css/offercalc.css/wp-content/plugins/offer-calc/includes/css/offer-calc-admin.css/wp-content/plugins/offer-calc/includes/js/offercalc.js
Script Paths
/wp-content/plugins/offer-calc/includes/js/offer-calc-admin.js/wp-content/plugins/offer-calc/includes/js/offercalc.js
Version Parameters
offer-calc-admin.js?ver=offercalc.css?ver=offer-calc-admin.css?ver=offercalc.js?ver=

HTML / DOM Fingerprints

FAQ

Frequently Asked Questions about Offer Calc