WP-Safety

Simple multi-currency for Woocommerce by Invelity Security & Risk Analysis

wordpress.org/plugins/simple-multi-currency-for-woocommerce

Access to documentation

0 active installs v1.0.11 PHP + WP 4.7+ Updated Unknown
checkoutcouponcurrencypaymentwoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Simple multi-currency for Woocommerce by Invelity Safe to Use in 2026?

Generally Safe

Score 100/100

Simple multi-currency for Woocommerce by Invelity has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs
Risk Assessment

The `simple-multi-currency-for-woocommerce` plugin, version 1.0.11, presents a generally good security posture with several positive indicators. The absence of any known CVEs, unpatched vulnerabilities, or critical/high severity taint flows is a significant strength. The plugin also demonstrates an effort towards secure coding practices with a reasonable percentage of SQL queries using prepared statements and a notable number of capability checks for its entry points. However, there are areas that warrant attention and potential risk.

The static analysis reveals a concerning pattern in taint analysis, where both analyzed flows resulted in unsanitized paths. While no critical or high severity issues were identified from these flows, the presence of unsanitized paths indicates a potential for data to be mishandled, which could be exploited if a specific attack vector is identified. Furthermore, a substantial portion of output (57%) is not properly escaped, posing a risk of Cross-Site Scripting (XSS) vulnerabilities, especially if user-supplied data is involved in these outputs.

Despite the clean vulnerability history, which is a positive sign, the identified code signals, particularly the unsanitized taint flows and insufficient output escaping, present a notable risk. The low number of entry points and the absence of unprotected ones are commendable. The conclusion is that while the plugin benefits from a lack of past vulnerabilities and a structured approach to entry points, the findings in taint analysis and output escaping require careful consideration and potential remediation to solidify its security.

Key Concerns

  • Unsanitized taint flows found
  • Significant portion of output not escaped
Vulnerabilities
None known

Simple multi-currency for Woocommerce by Invelity Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Simple multi-currency for Woocommerce by Invelity Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
4 prepared
Unescaped Output
93
71 escaped
Nonce Checks
2
Capability Checks
12
File Operations
1
External Requests
2
Bundled Libraries
0

SQL Query Safety

67% prepared6 total queries

Output Escaping

43% escaped164 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
smcfw_create_display_switcher (includes\functions\switcher.php:40)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Simple multi-currency for Woocommerce by Invelity Attack Surface

Entry Points5
Unprotected0

AJAX Handlers 2

authwp_ajax_smcfwupdatefeesactionincludes\functions\ajax-actions.php:2
authwp_ajax_smcfwupdatesettingactionincludes\functions\ajax-actions.php:31

Shortcodes 3

[smcfw_currency_switcher_shortcode] includes\functions\shortcodes.php:3
[smcfw_convert_price_shortcode] includes\functions\shortcodes.php:19
[smcfw_product_prices_shortcode] includes\functions\shortcodes.php:77
WordPress Hooks 90
actionadmin_menuincludes\admin\admin-fees-page.php:2
actionadmin_footerincludes\admin\admin-fees-page.php:199
filternav_menu_meta_box_objectincludes\admin\nav-menus.php:6
actionget_footerincludes\admin\nav-menus.php:108
filtermanage_edit-shop_order_columnsincludes\admin\orders-table-admin.php:3
actionmanage_shop_order_posts_custom_columnincludes\admin\orders-table-admin.php:15
filtermanage_edit-shop_order_sortable_columnsincludes\admin\orders-table-admin.php:27
filtermanage_edit-product_columnsincludes\admin\products-table-admin.php:4
actionmanage_product_posts_custom_columnincludes\admin\products-table-admin.php:5
filtermanage_edit-product_sortable_columnsincludes\admin\products-table-admin.php:6
actionadmin_menuincludes\admin\settings-page.php:2
actionsmcfw_action_settings_page_func_startincludes\admin\settings-page.php:201
actionadmin_footerincludes\admin\settings-page.php:242
actionadmin_enqueue_scriptsincludes\classes\class.invelityPluginsAdmin.php:17
actionadmin_menuincludes\classes\class.invelityPluginsAdmin.php:18
actionsmcfw_action_add_price_fields_to_product_endincludes\classes\class.SimpleMultiCurrencyForWoocommerce.Product.php:12
actionsmcfw_action_js_datepicker_inputsincludes\classes\class.SimpleMultiCurrencyForWoocommerce.Product.php:13
filterwoocommerce_package_ratesincludes\functions\checkout.php:26
actionwoocommerce_review_order_before_paymentincludes\functions\checkout.php:28
filterwoocommerce_gateway_method_titleincludes\functions\checkout.php:42
filterdefault_checkout_billing_countryincludes\functions\checkout.php:57
filtersmcfw_filter_custom_priceincludes\functions\conversion.php:30
filtersmcfw_filter_variation_priceincludes\functions\conversion.php:31
actionwoocommerce_coupon_options_usage_restrictionincludes\functions\coupons.php:3
actionwoocommerce_coupon_options_saveincludes\functions\coupons.php:4
actionwoocommerce_coupon_loadedincludes\functions\coupons.php:5
filterwoocommerce_coupon_is_validincludes\functions\coupons.php:6
filterwoocommerce_coupon_errorincludes\functions\coupons.php:7
filterwoocommerce_api_coupon_responseincludes\functions\coupons.php:9
actionwoocommerce_api_create_couponincludes\functions\coupons.php:10
actionwoocommerce_api_edit_couponincludes\functions\coupons.php:11
filterwoocommerce_coupon_get_amountincludes\functions\coupons.php:118
filterwoocommerce_coupon_get_minimum_amountincludes\functions\coupons.php:119
filterwoocommerce_coupon_get_maximum_amountincludes\functions\coupons.php:120
filterwoocommerce_boost_sales_coupon_amount_priceincludes\functions\coupons.php:121
filtersmcfw_filter_func_change_wc_currency_symbolsincludes\functions\currency.php:2
filterwoocommerce_currency_symbolincludes\functions\currency.php:45
actionwoocommerce_initincludes\functions\currency.php:47
filtersmcfw_filter_change_wc_currency_symbols_noexistsincludes\functions\currency.php:495
actionwp_dashboard_setupincludes\functions\dashboard.php:12
filteriwc_filter_sanitize_priceincludes\functions\dashboard.php:221
actionwoocommerce_product_options_pricingincludes\functions\edit-product-page.php:2
actionsmcfw_action_add_price_fields_to_product_loop_itemincludes\functions\edit-product-page.php:19
actionwoocommerce_variation_options_pricingincludes\functions\edit-variation-product-page.php:2
actionsmcfw_action_add_price_fields_to_variation_product_loop_itemincludes\functions\edit-variation-product-page.php:20
actionwoocommerce_cart_calculate_feesincludes\functions\fees.php:41
filterwoocommerce_admin_disabledincludes\functions\filters.php:3
actioninitincludes\functions\filters.php:10
filtersmcfw_filter_get_shipping_countryincludes\functions\filters.php:20
filtersmcfw_filter_get_shipping_countryincludes\functions\filters.php:24
filtersmcfw_filter_get_shipping_countryincludes\functions\filters.php:25
filtersmcfw_filter_get_shipping_countryincludes\functions\filters.php:26
filtersmcfw_filter_get_shipping_country_allowincludes\functions\filters.php:28
actionsmcfw_action_settings_page_func_endincludes\functions\logo.php:20
filtersmcfw_filter_logo_echoincludes\functions\logo.php:21
actionsmcfw_action_fees_page_func_footerincludes\functions\logo.php:23
actionrestrict_manage_postsincludes\functions\orders-table-filter.php:2
actionrestrict_manage_postsincludes\functions\orders-table-filter.php:49
actionposts_whereincludes\functions\orders-table-filter.php:105
filtersmcfw_filter_order_table_filter_product_product_filter_whereincludes\functions\orders-table-filter.php:123
filtersmcfw_filter_order_table_filter_product_product_filter_whereincludes\functions\orders-table-filter.php:139
filterwoocommerce_product_get_priceincludes\functions\price.php:28
filterwoocommerce_product_get_sale_priceincludes\functions\price.php:33
filterwoocommerce_product_get_regular_priceincludes\functions\price.php:38
filterwoocommerce_product_variation_get_regular_priceincludes\functions\price.php:41
filterwoocommerce_product_variation_get_priceincludes\functions\price.php:42
filterwoocommerce_variation_prices_priceincludes\functions\price.php:62
filterwoocommerce_variation_prices_regular_priceincludes\functions\price.php:63
filterwoocommerce_format_sale_priceincludes\functions\price.php:82
actionadmin_initincludes\functions\reports.php:3
filterwoocommerce_admin_reportsincludes\functions\reports.php:7
filterwc_admin_reports_pathincludes\functions\reports.php:8
filtersmcfw_filter_report_orders_line_colorincludes\functions\reports.php:9
actionadmin_enqueue_scriptsincludes\functions\reports.php:10
actionsave_post_productincludes\functions\save-product.php:3
actionwoocommerce_save_product_variationincludes\functions\save-product.php:81
filterwoocommerce_product_is_on_saleincludes\functions\schedule.php:2
actionwp_insert_postincludes\functions\shop-order.php:20
filterwoocommerce_get_formatted_order_totalincludes\functions\shop-order.php:24
actioninitincludes\functions\support.php:18
filtersmcfw_sanitize_country_codeincludes\functions\support.php:28
actionwp_footerincludes\functions\switcher.php:14
actionsmcfw_init_add_switcherincludes\functions\switcher.php:16
actionsmcfw_display_switcherincludes\functions\switcher.php:39
actionwpincludes\functions\switcher.php:116
actionwidgets_initincludes\functions\widgets.php:6
actionadmin_initinit.php:2
actionadmin_noticesinit.php:4
actionplugins_loadedinit.php:13
actioninitinit.php:29
Maintenance & Trust

Simple multi-currency for Woocommerce by Invelity Maintenance & Trust

Maintenance Signals

WordPress version tested5.4.19
Last updatedUnknown
PHP min version
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Simple multi-currency for Woocommerce by Invelity Alternatives

NOWPayments for WooCommerce – Crypto Payment Gateway

NOWPayments for WooCommerce – Crypto Payment Gateway

nowpayments-for-woocommerce

A
100

Accept Bitcoin, Ethereum, and 300+ cryptocurrencies in WooCommerce using the official NOWPayments crypto payment gateway.

3K No CVEs
Tokenpay Payment Gateway

Tokenpay Payment Gateway

tokenpay-payment-gateway

A
92

Tokenpay's latest payment processing solution. Accept payment via cryptocurrency.

10 No CVEs
Payment Gateway for Gonano on WooCommerce

Payment Gateway for Gonano on WooCommerce

wc-gateway-gonano

A
85

Accept payments in NANO via Gonano Payments.

10 No CVEs
Amazon Pay for WooCommerce

Amazon Pay for WooCommerce

woocommerce-gateway-amazon-payments-advanced

A
100

Install the Amazon Pay plugin for your WooCommerce store and take advantage of a seamless checkout experience

20K 1 CVE
iyzico for WooCommerce

iyzico for WooCommerce

iyzico-woocommerce

A
100

iyzico latest payment processing solution. Accept credit/debit cards, alternative digital wallets and bank accounts.

10K No CVEs
Developer Profile

Simple multi-currency for Woocommerce by Invelity Developer Profile

INVELITY

8 plugins · 380 total installs

82
trust score
Avg Security Score
83/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Simple multi-currency for Woocommerce by Invelity

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/simple-multi-currency-for-woocommerce/assets/css/invelity-plugins-main-admin.css

HTML / DOM Fingerprints

CSS Classes
smcfw-currency-switcher
JS Globals
smcfw_global_vars
FAQ

Frequently Asked Questions about Simple multi-currency for Woocommerce by Invelity