Does Quote Calculator Constructor have any unpatched vulnerabilities?

No. All known vulnerabilities in Quote Calculator Constructor have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Quote Calculator Constructor compatible with WordPress 5.2.24?

According to WordPress.org data, Quote Calculator Constructor 1.1 has been tested up to WordPress 5.2.24. Check the plugin's changelog for the latest compatibility information.

Is Quote Calculator Constructor compatible with PHP 5.4+?

Quote Calculator Constructor requires PHP 5.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Quote Calculator Constructor updated?

Quote Calculator Constructor was last updated on Oct 29, 2019. Frequent updates are generally a positive security signal.

What is Quote Calculator Constructor's security score?

Quote Calculator Constructor has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Quote Calculator Constructor Security & Risk Analysis

wordpress.org/plugins/quote-calculator-constructor

With this simple plugin you can create simple quote calulators for your website. Loan quotes and other Wordpress calculators.

10 active installs v1.1 PHP 5.4+ WP 5.2+ Updated Oct 29, 2019

calculator-pluginloan-calculatorloan-quotequote-generator

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Quote Calculator Constructor Safe to Use in 2026?

Generally Safe

Score 85/100

Quote Calculator Constructor has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago

Risk Assessment

The "quote-calculator-constructor" plugin version 1.1 exhibits a generally good security posture based on the provided static analysis. The plugin has no known vulnerabilities in its history, which is a strong indicator of diligent development and testing. The static analysis reveals a limited attack surface with only one shortcode entry point, and importantly, zero AJAX handlers or REST API routes exposed without authentication checks. The code also demonstrates good practices by using prepared statements for all SQL queries and implementing capability checks for its two file operations. External HTTP requests are present but not flagged as a major concern without further context.

However, there are a few areas that warrant attention. The plugin only properly escapes 80% of its outputs, leaving a small but present risk of cross-site scripting (XSS) vulnerabilities if the unescaped outputs handle user-provided data. Furthermore, the absence of nonce checks across its entire entry point is a significant omission, as nonces are crucial for preventing cross-site request forgery (CSRF) attacks, especially for shortcodes which can be triggered by user interaction.

In conclusion, the plugin is relatively secure due to its lack of known vulnerabilities, limited attack surface, and use of prepared statements. The primary concerns are the partial output escaping and the complete lack of nonce protection, which could be exploited in specific scenarios. Addressing these would further solidify its security.

Key Concerns

Unescaped output detected
Missing nonce checks

Vulnerabilities

None known

Quote Calculator Constructor Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Quote Calculator Constructor Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

8 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

80% escaped10 total outputs

Attack Surface

Quote Calculator Constructor Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[custom_calculator] modules\shortcodes.php:2

WordPress Hooks 8

actioninitmodules\cpt.php:12

filterthe_contentmodules\hooks.php:2

filtermanage_edit-calculator_columnsmodules\hooks.php:14

actionmanage_calculator_posts_custom_columnmodules\hooks.php:23

actionadd_meta_boxesmodules\meta_box.php:13

actionsave_postmodules\meta_box.php:14

actionwp_print_scriptsmodules\scripts.php:15

actionplugins_loadedwp-calc-creator.php:27

Maintenance & Trust

Quote Calculator Constructor Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24

Last updatedOct 29, 2019

PHP min version5.4

Downloads1K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Quote Calculator Constructor Alternatives

Responsive Mortgage Calculator

responsive-mortgage-calculator

A simple responsive mortgage calculator widget and shortcode.

7K No CVEs

Mortgage Calculators WP

mortgage-calculators-wp

Mortgage Calculators WP provides users with a simple, elegant and responsive solution for users to calculate mortgage values.

3K 2 CVEs

Loan Calculator WP

loan-calculator-wp

100

Loan / EMI Calculator for Home Loan and Personal Loan

2K No CVEs

Simple Mortgage Calculator

ct-mortgage-calculator

A straightforward and simple responsive mortgage calculator with a clean flat design.

1K No CVEs

EMI Calculator

rio-emi-calculator

A simple to use EMI Calculator widget that can be added via a shortcode in post content or page.

800 No CVEs

Developer Profile

Quote Calculator Constructor Developer Profile

evgendob

3 plugins · 30 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Quote Calculator Constructor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/quote-calculator-constructor/inc/assets/css/tw-bs4.css/wp-content/plugins/quote-calculator-constructor/inc/fa/css/font-awesome.min.css/wp-content/plugins/quote-calculator-constructor/inc/bulma/css/bulma_compiled.css/wp-content/plugins/quote-calculator-constructor/inc/fb/dist/jquery.fancybox.css/wp-content/plugins/quote-calculator-constructor/css/ui.css/wp-content/plugins/quote-calculator-constructor/js/admin.js/wp-content/plugins/quote-calculator-constructor/css/admin.css/wp-content/plugins/quote-calculator-constructor/js/math.min.js+2 more

Script Paths

/wp-content/plugins/quote-calculator-constructor/inc/fb/dist/jquery.fancybox.js/wp-content/plugins/quote-calculator-constructor/js/admin.js/wp-content/plugins/quote-calculator-constructor/js/math.min.js/wp-content/plugins/quote-calculator-constructor/js/front.js

Version Parameters

quote-calculator-constructor/style.css?ver=quote-calculator-constructor/inc/assets/css/tw-bs4.css?ver=quote-calculator-constructor/inc/fa/css/font-awesome.min.css?ver=quote-calculator-constructor/inc/bulma/css/bulma_compiled.css?ver=quote-calculator-constructor/inc/fb/dist/jquery.fancybox.css?ver=quote-calculator-constructor/css/ui.css?ver=quote-calculator-constructor/js/admin.js?ver=quote-calculator-constructor/css/admin.css?ver=quote-calculator-constructor/js/math.min.js?ver=quote-calculator-constructor/js/front.js?ver=quote-calculator-constructor/css/front.css?ver=

HTML / DOM Fingerprints

CSS Classes

wlb_containersingle_rowwlb_col_col_type_datablock_label_output_containerinput_value+1 more

Data Attributes

data-before_valuedata-after_valuedata-decimalsdata-dec_pointdata-calculation_orderdata-thousand_point+2 more

JS Globals

wcc_local_data

Shortcode Output

<div class="tw-bs1 bulma"><div class="wlb_container">

FAQ