Does Precious Metals Automated Product Pricing – Pro have any unpatched vulnerabilities?

No. All known vulnerabilities in Precious Metals Automated Product Pricing – Pro have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Precious Metals Automated Product Pricing – Pro compatible with WordPress 6.8.5?

According to WordPress.org data, Precious Metals Automated Product Pricing – Pro 4.0.5 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

What is Precious Metals Automated Product Pricing – Pro's security score?

Precious Metals Automated Product Pricing – Pro has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Precious Metals Automated Product Pricing – Pro Security & Risk Analysis

wordpress.org/plugins/precious-metals-automated-product-pricing-pro

Automated realtime metals spot and futures data dynamically updates product prices in your store for Gold, Silver, Platinum, and Palladium

100 active installs v4.0.5 PHP + WP 3.5.0+ Updated Jan 23, 2026

goldplatinumprecious-metalsilverspot-price

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Precious Metals Automated Product Pricing – Pro Safe to Use in 2026?

Generally Safe

Score 100/100

Precious Metals Automated Product Pricing – Pro has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The plugin 'precious-metals-automated-product-pricing-pro' v4.0.5 exhibits a generally good security posture with several strengths. Notably, all SQL queries are properly prepared, and there are no recorded historical vulnerabilities, suggesting a history of secure development. The use of nonces and capability checks, while not universal, is present in a significant number of entry points. However, there are clear areas of concern that warrant attention. The presence of four AJAX handlers without authentication checks represents a significant attack vector, potentially allowing unauthorized actions. Additionally, the taint analysis identified one flow with unsanitized paths, which, although not categorized as critical or high severity in this analysis, still poses a potential risk for unintended data handling.

The plugin's strengths lie in its robust handling of database interactions and its clean vulnerability history. The absence of file operations and bundled libraries also reduces potential attack surfaces. Nevertheless, the unprotected AJAX endpoints are a direct and exploitable weakness. While the taint analysis did not reveal critical issues, the presence of any unsanitized path is a red flag. The overall risk is moderate; the plugin is not inherently insecure, but the identified unprotected AJAX handlers significantly elevate the risk of unauthorized access or manipulation if not addressed.

Key Concerns

Unprotected AJAX handlers
Flows with unsanitized paths
Output escaping is not 100%

Vulnerabilities

None known

Precious Metals Automated Product Pricing – Pro Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Precious Metals Automated Product Pricing – Pro Code Analysis

Dangerous Functions

Raw SQL Queries

4 prepared

Unescaped Output

134 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared4 total queries

Output Escaping

79% escaped169 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

clear_nfusion_cache_transients (includes\admin\class-admin-plugin-settings.php:314)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

Precious Metals Automated Product Pricing – Pro Attack Surface

Entry Points15

Unprotected4

AJAX Handlers 15

authwp_ajax_nfs_dismiss_reviewincludes\admin\class-admin-plugin-feedback.php:14

authwp_ajax_cleartransientincludes\admin\class-admin-plugin-settings.php:10

noprivwp_ajax_cleartransientincludes\admin\class-admin-plugin-settings.php:11

authwp_ajax_nfs_get_quick_edit_dataincludes\admin\class-admin-product-list.php:15

authwp_ajax_nfs_push_product_to_catalogincludes\admin\class-admin-product-meta.php:13

authwp_ajax_nfs_push_variable_product_to_catalogincludes\admin\class-admin-product-meta.php:14

authwp_ajax_nfs_clear_cacheincludes\admin\class-admin-product-sync.php:8

authwp_ajax_nfs_bulk_edit_productsincludes\admin\class-admin-product-sync.php:11

authwp_ajax_nfs_sync_catalog_to_woocommerceincludes\admin\class-admin-product-sync.php:14

authwp_ajax_nfs_sync_woocommerce_to_catalogincludes\admin\class-admin-product-sync.php:15

authwp_ajax_nfs_sync_selected_catalog_to_woocommerceincludes\admin\class-admin-product-sync.php:18

authwp_ajax_nfs_sync_selected_woocommerce_to_catalogincludes\admin\class-admin-product-sync.php:19

authwp_ajax_nfs_get_sync_job_statusincludes\admin\class-admin-product-sync.php:22

authwp_ajax_nfs_get_invalid_productsincludes\admin\class-admin-product-sync.php:25

authwp_ajax_nfs_dismiss_invalid_products_noticeincludes\admin\class-admin-product-sync.php:26

WordPress Hooks 41

actionadmin_enqueue_scriptsincludes\admin\class-admin-enqueue.php:8

actioninitincludes\admin\class-admin-plugin-feedback.php:11

actionadmin_noticesincludes\admin\class-admin-plugin-feedback.php:13

actionadmin_menuincludes\admin\class-admin-plugin-settings.php:6

actionadmin_initincludes\admin\class-admin-plugin-settings.php:7

actionadmin_initincludes\admin\class-admin-plugin-settings.php:8

actionadmin_initincludes\admin\class-admin-plugin-settings.php:9

actionupdate_option_nfusion_tenant_aliasincludes\admin\class-admin-plugin-settings.php:13

actionupdate_option_nfusion_api_tokenincludes\admin\class-admin-plugin-settings.php:14

actionmanage_edit-product_columnsincludes\admin\class-admin-product-list.php:10

actionmanage_product_posts_custom_columnincludes\admin\class-admin-product-list.php:11

actionwoocommerce_product_quick_edit_endincludes\admin\class-admin-product-list.php:13

actionsave_post_productincludes\admin\class-admin-product-list.php:14

actionwoocommerce_product_options_skuincludes\admin\class-admin-product-meta.php:5

actionwoocommerce_process_product_metaincludes\admin\class-admin-product-meta.php:6

actionwoocommerce_update_productincludes\admin\class-admin-product-meta.php:7

actionadmin_noticesincludes\admin\class-admin-product-meta.php:9

actionadd_meta_boxesincludes\admin\class-admin-product-meta.php:10

actionwoocommerce_product_options_dimensionsincludes\admin\class-admin-product-meta.php:16

actionwoocommerce_process_product_metaincludes\admin\class-admin-product-meta.php:17

actionwoocommerce_product_after_variable_attributesincludes\admin\class-admin-product-meta.php:19

actionwoocommerce_save_product_variationincludes\admin\class-admin-product-meta.php:20

actionadmin_menuincludes\admin\class-admin-product-sync.php:7

actionwp_enqueue_scriptsincludes\frontend\class-frontend-enqueue.php:8

filterwoocommerce_product_get_priceincludes\frontend\class-frontend-product.php:6

filterwoocommerce_product_variation_get_priceincludes\frontend\class-frontend-product.php:7

filterwoocommerce_display_product_attributesincludes\frontend\class-frontend-product.php:8

filterwoocommerce_available_variationincludes\frontend\class-frontend-product.php:10

actionwoocommerce_single_product_summaryincludes\frontend\class-frontend-summary.php:4

filterwoocommerce_get_price_htmlincludes\frontend\class-frontend-summary.php:5

filterwoocommerce_variable_price_htmlincludes\frontend\class-frontend-summary.php:6

actionwoocommerce_after_checkout_formincludes\frontend\class-frontend-woo-checkout.php:8

actionwoocommerce_cart_calculate_feesincludes\frontend\class-frontend-woo-checkout.php:9

actioninitincludes\service\class-action-scheduler-service.php:13

actionnfs_catalog_to_woocommerce_syncincludes\service\class-action-scheduler-service.php:16

actionnfs_woocommerce_to_catalog_syncincludes\service\class-action-scheduler-service.php:17

actionnfs_selected_catalog_to_woocommerce_syncincludes\service\class-action-scheduler-service.php:20

actionnfs_selected_woocommerce_to_catalog_syncincludes\service\class-action-scheduler-service.php:21

actionnfs_catalog_plugin_product_reindexingincludes\service\class-action-scheduler-service.php:24

actionbefore_woocommerce_initWooCommerce_Plugin_Nfusion.php:21

actionplugins_loadedWooCommerce_Plugin_Nfusion.php:65

Maintenance & Trust

Precious Metals Automated Product Pricing – Pro Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJan 23, 2026

PHP min version

Downloads11K

Community Trust

Rating100/100

Number of ratings1

Active installs100

Alternatives

Precious Metals Automated Product Pricing – Pro Alternatives

MetalpriceAPI

metalpriceapi

Display live or historical precious metal prices (Gold, Silver, Platinum, Palladium, ...) in over 150+ currencies

600 1 CVE

Gold Price Live

gold-price-live

Allows you to easily use shortcode to post gold, silver, platinum and palladium spot prices (updated once daily in the morning at 8:20am New York Time …

300 No CVEs

Precious Metals Charts and Widgets for WordPress

precious-metals-chart-and-widgets

Precious metals widgets (intraday and historical charts, tickers, spot tables, london fixings, etc) for Gold, Silver, Platinum, and Palladium

100 1 CVE

Sound Money Info Quotes Widget

sound-money-info-quotes-widget

100

A lightweight, cache-friendly ticker widget that displays sound money and precious-metals quotes (gold, silver, Goldback, Kinesis, and more).

10 No CVEs

ZPT Metals

zpt-metals

A solution provided to display precious Metals(Gold, Silver, Platinum and 36+ metals) rates in the desired currencies (USD,GBP, CAD etc).

60 No CVEs

Developer Profile

Precious Metals Automated Product Pricing – Pro Developer Profile

nfusionsolutions

2 plugins · 200 total installs

trust score

Avg Security Score

96/100

Avg Patch Time

1 days

View full developer profile

Detection Fingerprints

How We Detect Precious Metals Automated Product Pricing – Pro

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/precious-metals-automated-product-pricing-pro/assets/css/nfusion-admin.css/wp-content/plugins/precious-metals-automated-product-pricing-pro/assets/js/nfusion-admin-product-sync.js/wp-content/plugins/precious-metals-automated-product-pricing-pro/assets/js/nfusion-admin-settings.js/wp-content/plugins/precious-metals-automated-product-pricing-pro/assets/css/nfusion-admin-product-list.css/wp-content/plugins/precious-metals-automated-product-pricing-pro/assets/js/nfusion-admin-product-list.js/wp-content/plugins/precious-metals-automated-product-pricing-pro/assets/css/nfusion-admin-menu.css/wp-content/plugins/precious-metals-automated-product-pricing-pro/assets/css/nfusion-frontend-product.css/wp-content/plugins/precious-metals-automated-product-pricing-pro/assets/js/nfusion-frontend-product.js

Script Paths

/wp-content/plugins/precious-metals-automated-product-pricing-pro/assets/js/nfusion-admin-product-sync.js/wp-content/plugins/precious-metals-automated-product-pricing-pro/assets/js/nfusion-admin-settings.js/wp-content/plugins/precious-metals-automated-product-pricing-pro/assets/js/nfusion-admin-product-list.js/wp-content/plugins/precious-metals-automated-product-pricing-pro/assets/js/nfusion-frontend-product.js

HTML / DOM Fingerprints

Data Attributes

data-nf-ajax-urldata-nf-plugin-url

JS Globals

nfObj

FAQ