WP-Safety

SCD – Smart Currency Detector – Premium Variant for wcmp Security & Risk Analysis

wordpress.org/plugins/scd-smart-currency-detector-variant-for-wcmp

ALL-IN-ONE solution for buyers, sellers, single/multi vendors sites, market places. Best currency plugin for wcmp Marketplace for currency conversion

0 active installs v4.8.0.0 PHP + WP 4.0.0+ Updated Sep 6, 2022
auto-detectconversionconvertercurrencywoocommerce
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is SCD – Smart Currency Detector – Premium Variant for wcmp Safe to Use in 2026?

Generally Safe

Score 85/100

SCD – Smart Currency Detector – Premium Variant for wcmp has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago
Risk Assessment

The plugin "scd-smart-currency-detector-variant-for-wcmp" v4.8.0.0 presents a concerning security posture primarily due to a significant number of unprotected entry points. With 8 out of 9 total entry points lacking authentication checks, this plugin exposes a large attack surface to unauthenticated users. While the static analysis did not reveal critical or high severity taint flows, the presence of unprotected AJAX handlers is a significant risk, potentially allowing attackers to trigger plugin functionality without proper authorization. The plugin's lack of recorded vulnerabilities in its history is a positive indicator, suggesting a history of security awareness or a lack of discoverable issues. However, this cannot solely mitigate the risks posed by the current code analysis. The absence of prepared statements for all SQL queries and a moderate percentage of unescaped output are additional areas of concern that could lead to vulnerabilities if exploited in conjunction with other weaknesses.

Key Concerns

  • High number of unprotected AJAX handlers
  • All SQL queries lack prepared statements
  • Moderate percentage of unescaped output
  • Use of dangerous functions (ini_set, set_time_limit)
  • Limited capability checks
Vulnerabilities
None known

SCD – Smart Currency Detector – Premium Variant for wcmp Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

SCD – Smart Currency Detector – Premium Variant for wcmp Release Timeline

v4.8.0
v1.1.1
Code Analysis
Analyzed Apr 16, 2026

SCD – Smart Currency Detector – Premium Variant for wcmp Code Analysis

Dangerous Functions
2
Raw SQL Queries
4
0 prepared
Unescaped Output
63
95 escaped
Nonce Checks
4
Capability Checks
2
File Operations
5
External Requests
6
Bundled Libraries
0

Dangerous Functions Found

ini_set@ini_set('display_errors', 'On');plugin-update-checker/Puc/v4p6/DebugBar/Extension.php:142
set_time_limit@set_time_limit(60);plugin-update-checker/Puc/v4p6/Vcs/PluginUpdateChecker.php:38

SQL Query Safety

0% prepared4 total queries

Output Escaping

60% escaped158 total outputs
Data Flows · Security
4 unsanitized

Data Flow Analysis

4 flows4 with unsanitized paths
scd_wcmp_search_vendor_data (includes/admin/scd-wcmp-orders-report-vendor.php:150)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
8 unprotected

SCD – Smart Currency Detector – Premium Variant for wcmp Attack Surface

Entry Points9
Unprotected8

AJAX Handlers 8

authwp_ajax_scd_wcmp_get_vendor_report_dataincludes/admin/scd-wcmp-orders-report-vendor.php:56
authwp_ajax_vendor_searchincludes/admin/scd-wcmp-orders-report-vendor.php:145
authwp_ajax_puc_v4_debug_check_nowplugin-update-checker/Puc/v4p6/DebugBar/Extension.php:20
authwp_ajax_puc_v4_debug_request_infoplugin-update-checker/Puc/v4p6/DebugBar/PluginExtension.php:11
authwp_ajax_scd_wcmp_get_user_currencyscd_multivendors_renders.php:61
authwp_ajax_scd_show_user_currencyscd_multivendors_renders.php:95
authwp_ajax_scd_update_user_currencyscd_multivendors_renders.php:147
authwp_ajax_scd_update_user_currency_optionscd_multivendors_renders.php:159

Shortcodes 1

[scd_widget1] index.php:331
WordPress Hooks 63
actionwcmp_frontend_report_vendor_filterincludes/admin/scd-wcmp-orders-report-vendor.php:8
actionwcmp_report_admin_overviewincludes/admin/scd-wcmp-report-by-admin-overview.php:3
actionwoocommerce_thankyouincludes/scd-wcmp-rate-saver.php:4
actioninitindex.php:22
actioncurrent_screenindex.php:40
actionwp_enqueue_scriptsindex.php:49
filterscd-admin-tab-listindex.php:51
filterscd-pro-unactivatedindex.php:62
filterscd_noticeindex.php:71
filterscd_license_manager_tabindex.php:87
actionscd_activate_license_formindex.php:92
actionadmin_noticesindex.php:311
filterdebug_bar_panelsplugin-update-checker/Puc/v4p6/DebugBar/Extension.php:17
actiondebug_bar_enqueue_scriptsplugin-update-checker/Puc/v4p6/DebugBar/Extension.php:18
filterupgrader_post_installplugin-update-checker/Puc/v4p6/Plugin/Package.php:32
actiondelete_site_transient_update_pluginsplugin-update-checker/Puc/v4p6/Plugin/Package.php:33
actionadmin_initplugin-update-checker/Puc/v4p6/Plugin/Ui.php:17
filterplugin_row_metaplugin-update-checker/Puc/v4p6/Plugin/Ui.php:24
filterplugin_row_metaplugin-update-checker/Puc/v4p6/Plugin/Ui.php:25
actionall_admin_noticesplugin-update-checker/Puc/v4p6/Plugin/Ui.php:26
filterplugins_apiplugin-update-checker/Puc/v4p6/Plugin/UpdateChecker.php:94
filtercron_schedulesplugin-update-checker/Puc/v4p6/Scheduler.php:50
actionadmin_initplugin-update-checker/Puc/v4p6/Scheduler.php:60
actionload-update-core.phpplugin-update-checker/Puc/v4p6/Scheduler.php:64
actionupgrader_process_completeplugin-update-checker/Puc/v4p6/Scheduler.php:71
actioninitplugin-update-checker/Puc/v4p6/UpdateChecker.php:88
filterupgrader_source_selectionplugin-update-checker/Puc/v4p6/UpdateChecker.php:132
filterhttp_request_host_is_externalplugin-update-checker/Puc/v4p6/UpdateChecker.php:136
actionplugins_loadedplugin-update-checker/Puc/v4p6/UpdateChecker.php:142
actionpuc_api_errorplugin-update-checker/Puc/v4p6/UpdateChecker.php:244
filterupgrader_pre_installplugin-update-checker/Puc/v4p6/UpgraderStatus.php:17
filterupgrader_package_optionsplugin-update-checker/Puc/v4p6/UpgraderStatus.php:18
filterupgrader_post_installplugin-update-checker/Puc/v4p6/UpgraderStatus.php:19
actionupgrader_process_completeplugin-update-checker/Puc/v4p6/UpgraderStatus.php:20
filterupgrader_pre_downloadplugin-update-checker/Puc/v4p6/Vcs/GitHubApi.php:362
filterhttp_request_argsplugin-update-checker/Puc/v4p6/Vcs/GitHubApi.php:387
actionadmin_initscd_free_install.php:16
filterscd_enable_js_conversionscd_multivendors_renders.php:5
filterscd_multivendors_activatescd_multivendors_renders.php:14
filterscd_target_currencyscd_multivendors_renders.php:182
filterwoocommerce_product_export_column_namesscd_multivendors_renders.php:186
filterwoocommerce_product_export_product_default_columnsscd_multivendors_renders.php:187
filterwoocommerce_product_export_product_column_scd_other_optionsscd_multivendors_renders.php:204
filterwoocommerce_product_importer_parsed_datascd_multivendors_renders.php:207
filteris_scd_multivendorscd_multivendors_renders.php:219
filterscd_disable_sidebar_currenciesscd_multivendors_renders.php:225
filterwcmp_datatable_order_list_row_datascd_multivendors_renders.php:232
actionwoocommerce_email_before_order_tablescd_multivendors_renders.php:283
filterwoocommerce_cart_totals_order_total_htmlscd_multivendors_renders.php:416
filterwoocommerce_cart_subtotalscd_multivendors_renders.php:601
filterwoocommerce_cart_item_subtotalscd_multivendors_renders.php:712
filterwoocommerce_cart_item_pricescd_multivendors_renders.php:814
filterwoocommerce_get_price_htmlscd_multivendors_renders.php:990
filterscd-settings-groupsscd_multivendors_settings.php:25
filterscd-options-fieldsscd_multivendors_settings.php:32
filterscd_init_currency_optionsscd_multivendors_settings.php:45
filterscd_list_currenciesscd_pro_currencies.php:3
actionwcfm_formeted_menusscd_wcmp_multivendor.php:69
filterwcmp_vendor_dashboard_navscd_wcmp_multivendor.php:83
actionwcmp_afm_product_options_pricingscd_wcmp_multivendor.php:98
actionwcmp_process_product_meta_simplescd_wcmp_multivendor.php:170
actionwcmp_afm_after_variation_skuscd_wcmp_multivendor.php:178
actionwoocommerce_save_product_variationscd_wcmp_multivendor.php:257
Maintenance & Trust

SCD – Smart Currency Detector – Premium Variant for wcmp Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13
Last updatedSep 6, 2022
PHP min version
Downloads6K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

SCD – Smart Currency Detector – Premium Variant for wcmp Alternatives

SCM – Smart Currency Manager – Premium Variant for Dokan

SCM – Smart Currency Manager – Premium Variant for Dokan

scd-smart-currency-detector-variant-for-dokan

A
85

❓ Have you thought about letting your customers buy in your online shop using their own currency and payment method ❓

10 No CVEs
SCD – Smart Currency Detector – Premium Variant for WCFM

SCD – Smart Currency Detector – Premium Variant for WCFM

scd-smart-currency-detector-variant-for-wcfm

A
85

❓ Have you thought about letting your customers buy in your online shop using their own currency and payment method ❓

10 No CVEs
SCM – Smart Currency Manager – Premium Variant for WcVendor

SCM – Smart Currency Manager – Premium Variant for WcVendor

scd-smart-currency-detector-premium-variant-for-wcvendor

A
85

ALL-IN-ONE solution for buyers, sellers, single/multi vendors sites, market places. Best currency plugin for WC Vendor Marketplace for currency conver …

0 No CVEs
FOX – Currency Switcher Professional for WooCommerce

FOX – Currency Switcher Professional for WooCommerce

woocommerce-currency-switcher

A
88

FOX - Currency Switcher Professional for WooCommerce (former name is WOOCS) is currency plugin for woocommerce and multi currency shop, switch & pay

50K 14 CVEs
YayCurrency – WooCommerce Multi-Currency Switcher

YayCurrency – WooCommerce Multi-Currency Switcher

yaycurrency

A
96

WooCommerce Multi-Currency made easy, powerful, and flexible.

8K 2 CVEs
Developer Profile

SCD – Smart Currency Detector – Premium Variant for wcmp Developer Profile

scd2021

5 plugins · 80 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect SCD – Smart Currency Detector – Premium Variant for wcmp

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/scd-smart-currency-detector-variant-for-wcmp/js/scd_lic_form.js/wp-content/plugins/scd-smart-currency-detector-variant-for-wcmp/js/scd_wcmp_multivendor.js
Script Paths
/wp-content/plugins/scd-smart-currency-detector-variant-for-wcmp/js/scd_lic_form.js/wp-content/plugins/scd-smart-currency-detector-variant-for-wcmp/js/scd_wcmp_multivendor.js

HTML / DOM Fingerprints

CSS Classes
scd-notice
JS Globals
scd_ajax
FAQ

Frequently Asked Questions about SCD – Smart Currency Detector – Premium Variant for wcmp