WP-Safety

Persian Tools Security & Risk Analysis

wordpress.org/plugins/persian-tools

بسته‌ی حرفه‌ای برای بهبود ظاهری و عملکردی وب‌سایت‌های فارسی.

100 active installs v5.0.0 PHP 8.0+ WP 6.0+ Updated Sep 25, 2025
farsipersian%d9%88%d8%b1%d8%af%d9%be%d8%b1%d8%b3%d9%88%d8%b1%d8%af%d9%be%d8%b1%d8%b3-%d9%81%d8%a7%d8%b1%d8%b3%db%8c
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Persian Tools Safe to Use in 2026?

Generally Safe

Score 100/100

Persian Tools has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6mo ago
Risk Assessment

The 'persian-tools' v5.0.0 plugin exhibits a generally good security posture based on the static analysis. The absence of critical vulnerabilities in its history, coupled with a strong adherence to secure coding practices like prepared SQL statements and a high percentage of properly escaped output, are positive indicators. The plugin also demonstrates a small attack surface with no publicly exposed AJAX handlers, REST API routes, or shortcodes, and importantly, has a capability check in place.

However, there are a few areas that warrant attention. The presence of a single flow with an unsanitized path, even without a critical or high severity classification in the taint analysis, suggests a potential avenue for exploitation if an attacker can control the input to that specific flow. Additionally, the single external HTTP request, while not inherently a vulnerability, should be carefully monitored for any security implications, especially if the target endpoint is not fully trusted.

Overall, the plugin appears to be developed with security in mind, as evidenced by its clean vulnerability history and the implementation of a capability check. The main concerns stem from the minor taint analysis findings and the single external request. Continued vigilance and thorough review of any code modifications related to these areas would be prudent.

Key Concerns

  • Flow with unsanitized path identified
  • External HTTP request made
Vulnerabilities
None known

Persian Tools Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Persian Tools Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
13
101 escaped
Nonce Checks
0
Capability Checks
1
File Operations
0
External Requests
1
Bundled Libraries
0

Output Escaping

89% escaped114 total outputs
Data Flows
1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths
persian_tools_guest_redirect (includes\persian-tools-functions.php:455)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Persian Tools Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 69
actionwp_enqueue_scriptsincludes\persian-tools-fonts.php:217
actionadmin_enqueue_scriptsincludes\persian-tools-fonts.php:220
filteruse_block_editor_for_postincludes\persian-tools-functions.php:175
filteruse_block_editor_for_post_typeincludes\persian-tools-functions.php:176
filteruse_widgets_block_editorincludes\persian-tools-functions.php:177
actionadmin_initincludes\persian-tools-functions.php:180
actionwp_enqueue_scriptsincludes\persian-tools-functions.php:194
filterjetpack_get_settingsincludes\persian-tools-functions.php:236
filterwp_lazy_loading_enabledincludes\persian-tools-functions.php:246
filterintermediate_image_sizes_advancedincludes\persian-tools-functions.php:260
filterbig_image_size_thresholdincludes\persian-tools-functions.php:265
actioninitincludes\persian-tools-functions.php:267
filterimage_resize_dimensionsincludes\persian-tools-functions.php:273
filterwp_image_resize_limitsincludes\persian-tools-functions.php:275
filterxmlrpc_enabledincludes\persian-tools-functions.php:284
filterxmlrpc_methodsincludes\persian-tools-functions.php:286
filterwp_headersincludes\persian-tools-functions.php:292
actionadmin_noticesincludes\persian-tools-functions.php:320
actionelementor/editor/before_enqueue_scriptsincludes\persian-tools-functions.php:342
actionplugins_loadedincludes\persian-tools-functions.php:360
actionadmin_initincludes\persian-tools-functions.php:380
actionadmin_initincludes\persian-tools-functions.php:386
filterwoocommerce_checkout_fieldsincludes\persian-tools-functions.php:425
actionwoocommerce_after_checkout_validationincludes\persian-tools-functions.php:450
actiontemplate_redirectincludes\persian-tools-functions.php:489
filterlogin_redirectincludes\persian-tools-functions.php:500
actionwoocommerce_before_checkout_formincludes\persian-tools-functions.php:521
actionwoocommerce_after_checkout_billing_formincludes\persian-tools-functions.php:527
actionwoocommerce_after_checkout_shipping_formincludes\persian-tools-functions.php:533
actionwoocommerce_review_order_before_paymentincludes\persian-tools-functions.php:539
actionwoocommerce_after_order_reviewincludes\persian-tools-functions.php:545
actionwoocommerce_after_checkout_billing_formincludes\persian-tools-functions.php:551
actionwpincludes\persian-tools-functions.php:557
actionwp_headincludes\persian-tools-functions.php:594
filterwoocommerce_product_single_add_to_cart_textincludes\persian-tools-functions.php:641
filterwoocommerce_product_single_add_to_cart_textincludes\persian-tools-functions.php:642
filterwoocommerce_product_add_to_cart_textincludes\persian-tools-functions.php:677
filterwoocommerce_order_button_textincludes\persian-tools-functions.php:695
filterwoocommerce_update_cart_button_textincludes\persian-tools-functions.php:713
filterwoocommerce_proceed_to_checkout_button_textincludes\persian-tools-functions.php:731
actionwp_headincludes\persian-tools-functions.php:745
actionwpincludes\persian-tools-functions.php:769
filterwoocommerce_loop_add_to_cart_argsincludes\persian-tools-functions.php:790
filteryith_wcwl_button_labelincludes\persian-tools-functions.php:801
filtertheme_mod_woocommerce_add_to_cart_textincludes\persian-tools-functions.php:807
actioninitincludes\persian-tools-functions.php:812
filterwoocommerce_widget_cart_is_hiddenincludes\persian-tools-functions.php:831
actionwpincludes\persian-tools-functions.php:837
filterwoocommerce_order_button_htmlincludes\persian-tools-functions.php:856
filterwoocommerce_widget_cart_button_htmlincludes\persian-tools-functions.php:857
actionwoocommerce_proceed_to_checkoutincludes\persian-tools-functions.php:873
actiontemplate_redirectincludes\persian-tools-functions.php:892
filterbody_classincludes\persian-tools-functions.php:918
actioninitincludes\persian-tools-functions.php:927
actionupdate_option_persian_tools_login_slugincludes\persian-tools-functions.php:937
actionadmin_initincludes\persian-tools-functions.php:939
actionlogin_initincludes\persian-tools-functions.php:948
filterlogin_urlincludes\persian-tools-functions.php:962
filterlostpassword_urlincludes\persian-tools-functions.php:980
filterregister_urlincludes\persian-tools-functions.php:995
filterlogin_redirectincludes\persian-tools-functions.php:1006
filtersite_urlincludes\persian-tools-functions.php:1016
actioninitincludes\persian-tools-functions.php:1029
actionwp_headincludes\persian-tools-functions.php:1069
actionadmin_menuincludes\persian-tools-settings.php:35
actionadmin_enqueue_scriptsincludes\persian-tools-settings.php:49
actionwp_enqueue_scriptsincludes\persian-tools-settings.php:57
filterwp_redirectincludes\persian-tools-settings.php:151
actionadmin_initincludes\persian-tools-settings.php:251
Maintenance & Trust

Persian Tools Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedSep 25, 2025
PHP min version8.0
Downloads3K

Community Trust

Rating100/100
Number of ratings1
Active installs100
Alternatives

Persian Tools Alternatives

wp-jalali

wp-jalali

wp-jalali

A
85

Full Jalali calendar support for Wordpress and localization improvements for Persian/Afghan/Tajik users.

20K No CVEs
WP-Persian

WP-Persian

wp-persian

A
85

Fast and Powerful plugin for Jalali calendar and Farsi language support in Wordpress and standard plugins.

9K No CVEs
Gateway AqayePardakht for Woocommerce

Gateway AqayePardakht for Woocommerce

gateway-aqayepardakht-for-woocommerce

A
92

با نصب این پلاگین می توانید از خدمات درگاه آقای پرداخت برای پلاگین ووکامرس استفاده کنید!

4K No CVEs
Vazir Font

Vazir Font

vazir-font

A
85

فونت وزیرمتن برای وردپرس

700 No CVEs
kitpack for persian elementor

kitpack for persian elementor

kitpack-for-persian-elementor

A
85

افزونه کیت پک، تمپلیت های فارسی و آماده را به المنتور اضافه می کند، همچنین مجموعه از فونت های فارسی و آیکن های ایرانی را نیز به افزونه سایت ساز المنتو …

300 No CVEs
Developer Profile

Persian Tools Developer Profile

themefour wp

1 plugin · 100 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Persian Tools

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/persian-tools/assets/css/pt-persian-tools.css/wp-content/plugins/persian-tools/assets/css/pt-persian-tools-rtl.css
Version Parameters
persian-tools/assets/css/pt-persian-tools.css?ver=persian-tools/assets/css/pt-persian-tools-rtl.css?ver=

HTML / DOM Fingerprints

CSS Classes
pt-btnpt-activept-main-menupt-login-btnpt-register-btnpt-go-to-top
JS Globals
persianTools
Shortcode Output
[pt_login][pt_register][pt_users_can_not_see_this][pt_button]
FAQ

Frequently Asked Questions about Persian Tools