WP-Safety

SCM – Smart Currency Manager – Premium Variant for Dokan Security & Risk Analysis

wordpress.org/plugins/scd-smart-currency-detector-variant-for-dokan

❓ Have you thought about letting your customers buy in your online shop using their own currency and payment method ❓

10 active installs v4.8.0.1 PHP + WP 4.0.0+ Updated Sep 28, 2023
auto-detectconversionconvertercurrencywoocommerce
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is SCM – Smart Currency Manager – Premium Variant for Dokan Safe to Use in 2026?

Generally Safe

Score 85/100

SCM – Smart Currency Manager – Premium Variant for Dokan has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago
Risk Assessment

The plugin 'scd-smart-currency-detector-variant-for-dokan' v4.8.0.1 exhibits a mixed security posture. While it has a clean vulnerability history with no known CVEs, the static analysis reveals significant concerns regarding its attack surface and data handling. A substantial portion of its AJAX handlers (8 out of 8) lack authentication checks, creating a large entry point for potential unauthorized actions. Furthermore, all identified taint flows (3 out of 3) indicate unsanitized paths, which could lead to vulnerabilities if not properly handled, even though they are not currently classified as critical or high severity. The plugin also shows moderate concerns with output escaping, with 52% of outputs properly escaped, suggesting potential for cross-site scripting vulnerabilities in the remaining 48%.

Key Concerns

  • Unprotected AJAX handlers
  • Unsanitized paths in taint flows
  • Significant portion of outputs unescaped
Vulnerabilities
None known

SCM – Smart Currency Manager – Premium Variant for Dokan Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

SCM – Smart Currency Manager – Premium Variant for Dokan Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
6 prepared
Unescaped Output
96
105 escaped
Nonce Checks
4
Capability Checks
2
File Operations
3
External Requests
6
Bundled Libraries
0

SQL Query Safety

86% prepared7 total queries

Output Escaping

52% escaped201 total outputs
Data Flows
3 unsanitized

Data Flow Analysis

3 flows3 with unsanitized paths
scd_license_activation (index.php:189)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
8 unprotected

SCM – Smart Currency Manager – Premium Variant for Dokan Attack Surface

Entry Points9
Unprotected8

AJAX Handlers 8

authwp_ajax_puc_v4_debug_check_nowplugin-update-checker\Puc\v4p6\DebugBar\Extension.php:20
authwp_ajax_puc_v4_debug_request_infoplugin-update-checker\Puc\v4p6\DebugBar\PluginExtension.php:11
authwp_ajax_scd_dokan_get_order_total_and_earningscd_dokan_multivendor.php:653
authwp_ajax_scd_dokan_get_user_currencyscd_multivendors_renders.php:53
authwp_ajax_scd_show_user_currencyscd_multivendors_renders.php:85
authwp_ajax_scd_update_user_currencyscd_multivendors_renders.php:156
authwp_ajax_scd_update_user_currency_optionscd_multivendors_renders.php:169
authwp_ajax_dokan-update-shipping-method-settingsscd_multivendors_renders.php:252

Shortcodes 1

[scd_widget1] index.php:348
WordPress Hooks 67
actioninitindex.php:28
actionplugins_loadedindex.php:39
actioncurrent_screenindex.php:52
actionwp_enqueue_scriptsindex.php:63
filterscd-admin-tab-listindex.php:65
filterscd-pro-unactivatedindex.php:76
filterscd_noticeindex.php:85
filterscd_license_manager_tabindex.php:101
actionscd_activate_license_formindex.php:106
actionadmin_noticesindex.php:326
filterdebug_bar_panelsplugin-update-checker\Puc\v4p6\DebugBar\Extension.php:17
actiondebug_bar_enqueue_scriptsplugin-update-checker\Puc\v4p6\DebugBar\Extension.php:18
filterupgrader_post_installplugin-update-checker\Puc\v4p6\Plugin\Package.php:32
actiondelete_site_transient_update_pluginsplugin-update-checker\Puc\v4p6\Plugin\Package.php:33
actionadmin_initplugin-update-checker\Puc\v4p6\Plugin\Ui.php:17
filterplugin_row_metaplugin-update-checker\Puc\v4p6\Plugin\Ui.php:24
filterplugin_row_metaplugin-update-checker\Puc\v4p6\Plugin\Ui.php:25
actionall_admin_noticesplugin-update-checker\Puc\v4p6\Plugin\Ui.php:26
filterplugins_apiplugin-update-checker\Puc\v4p6\Plugin\UpdateChecker.php:94
filtercron_schedulesplugin-update-checker\Puc\v4p6\Scheduler.php:50
actionadmin_initplugin-update-checker\Puc\v4p6\Scheduler.php:60
actionload-update-core.phpplugin-update-checker\Puc\v4p6\Scheduler.php:64
actionupgrader_process_completeplugin-update-checker\Puc\v4p6\Scheduler.php:71
actioninitplugin-update-checker\Puc\v4p6\UpdateChecker.php:88
filterupgrader_source_selectionplugin-update-checker\Puc\v4p6\UpdateChecker.php:132
filterhttp_request_host_is_externalplugin-update-checker\Puc\v4p6\UpdateChecker.php:136
actionplugins_loadedplugin-update-checker\Puc\v4p6\UpdateChecker.php:142
actionpuc_api_errorplugin-update-checker\Puc\v4p6\UpdateChecker.php:244
filterupgrader_pre_installplugin-update-checker\Puc\v4p6\UpgraderStatus.php:17
filterupgrader_package_optionsplugin-update-checker\Puc\v4p6\UpgraderStatus.php:18
filterupgrader_post_installplugin-update-checker\Puc\v4p6\UpgraderStatus.php:19
actionupgrader_process_completeplugin-update-checker\Puc\v4p6\UpgraderStatus.php:20
filterupgrader_pre_downloadplugin-update-checker\Puc\v4p6\Vcs\GitHubApi.php:362
filterhttp_request_argsplugin-update-checker\Puc\v4p6\Vcs\GitHubApi.php:387
actiondokan_get_dashboard_navscd_dokan_multivendor.php:70
actiondokan_after_new_product_content_areascd_dokan_multivendor.php:139
actiondokan_product_edit_after_mainscd_dokan_multivendor.php:140
actiondokan_product_updatedscd_dokan_multivendor.php:272
actiondokan_new_product_addedscd_dokan_multivendor.php:306
actiondokan_product_updatedscd_dokan_multivendor.php:307
actiondokan_variation_options_pricingscd_dokan_multivendor.php:338
actionwoocommerce_save_product_variationscd_dokan_multivendor.php:512
actiondokan_process_product_metascd_dokan_multivendor.php:571
actiondokan_ajax_save_product_variationsscd_dokan_multivendor.php:572
filterdokan_seller_total_salesscd_dokan_multivendor.php:692
filterdokan_get_seller_earningsscd_dokan_multivendor.php:723
filterdokan_get_formatted_seller_earningsscd_dokan_multivendor.php:803
actiondokan_order_detail_after_order_itemsscd_dokan_multivendor.php:811
actiondokan_product_list_table_after_status_table_datascd_dokan_multivendor.php:977
filterdokan_withdraw_contentscd_dokan_multivendor.php:1222
filterdokan_order_net_amountscd_dokan_multivendor.php:1240
actionwoocommerce_admin_order_actions_endscd_dokan_multivendor.php:1256
actiondokan_order_detail_after_order_itemsscd_dokan_multivendor.php:1379
actionadmin_initscd_free_install.php:16
filterscd_multivendors_activatescd_multivendors_renders.php:5
filterwoocommerce_product_export_column_namesscd_multivendors_renders.php:195
filterwoocommerce_product_export_product_default_columnsscd_multivendors_renders.php:196
filterwoocommerce_product_export_product_column_scd_other_optionsscd_multivendors_renders.php:213
filterwoocommerce_product_importer_parsed_datascd_multivendors_renders.php:216
filteris_scd_multivendorscd_multivendors_renders.php:228
filterscd_disable_sidebar_currenciesscd_multivendors_renders.php:234
filterdokan_withdraw_contentscd_multivendors_renders.php:241
filterwoocommerce_currency_symbolscd_multivendors_renders.php:243
filterscd-settings-groupsscd_multivendors_settings.php:25
filterscd-options-fieldsscd_multivendors_settings.php:32
filterscd_init_currency_optionsscd_multivendors_settings.php:45
filterscd_list_currenciesscd_pro_currencies.php:3
Maintenance & Trust

SCM – Smart Currency Manager – Premium Variant for Dokan Maintenance & Trust

Maintenance Signals

WordPress version tested6.3.8
Last updatedSep 28, 2023
PHP min version
Downloads5K

Community Trust

Rating100/100
Number of ratings2
Active installs10
Alternatives

SCM – Smart Currency Manager – Premium Variant for Dokan Alternatives

SCD – Smart Currency Detector – Premium Variant for WCFM

SCD – Smart Currency Detector – Premium Variant for WCFM

scd-smart-currency-detector-variant-for-wcfm

A
85

❓ Have you thought about letting your customers buy in your online shop using their own currency and payment method ❓

10 No CVEs
SCM – Smart Currency Manager – Premium Variant for WcVendor

SCM – Smart Currency Manager – Premium Variant for WcVendor

scd-smart-currency-detector-premium-variant-for-wcvendor

A
100

ALL-IN-ONE solution for buyers, sellers, single/multi vendors sites, market places. Best currency plugin for WC Vendor Marketplace for currency conver …

0 No CVEs
FOX – Currency Switcher Professional for WooCommerce

FOX – Currency Switcher Professional for WooCommerce

woocommerce-currency-switcher

A
93

FOX - Currency Switcher Professional for WooCommerce (former name is WOOCS) is currency plugin for woocommerce and multi currency shop, switch & pay

50K 12 CVEs
YayCurrency – WooCommerce Multi-Currency Switcher

YayCurrency – WooCommerce Multi-Currency Switcher

yaycurrency

A
96

WooCommerce Multi-Currency made easy, powerful, and flexible.

8K 2 CVEs
Currency Switcher for WooCommerce by WBW

Currency Switcher for WooCommerce by WBW

woo-currency

A
100

WBW Currency Switcher for WooCommerce allows customers to switch products prices to any currencies. Get rates converted in the real-time with dynamic …

4K 1 CVE
Developer Profile

SCM – Smart Currency Manager – Premium Variant for Dokan Developer Profile

scd2021

4 plugins · 80 total installs

86
trust score
Avg Security Score
89/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect SCM – Smart Currency Manager – Premium Variant for Dokan

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/scd-smart-currency-detector-variant-for-dokan/languages/wp-content/plugins/scd-smart-currency-detector-variant-for-dokan/js/scd_lic_form.js/wp-content/plugins/scd-smart-currency-detector-variant-for-dokan/js/scd_dokan_multivendor.js/wp-content/plugins/scd-smart-currency-detector-variant-for-dokan/js/scd_pro_postready.js
Script Paths
/wp-content/plugins/scd-smart-currency-detector-variant-for-dokan/js/scd_lic_form.js/wp-content/plugins/scd-smart-currency-detector-variant-for-dokan/js/scd_dokan_multivendor.js/wp-content/plugins/scd-smart-currency-detector-variant-for-dokan/js/scd_pro_postready.js

HTML / DOM Fingerprints

CSS Classes
scd-notice
JS Globals
scd_ajax
FAQ

Frequently Asked Questions about SCM – Smart Currency Manager – Premium Variant for Dokan