Does Simple Virtu Widget have any unpatched vulnerabilities?

No. All known vulnerabilities in Simple Virtu Widget have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Simple Virtu Widget compatible with WordPress 5.6.17?

According to WordPress.org data, Simple Virtu Widget 1.2.1 has been tested up to WordPress 5.6.17. Check the plugin's changelog for the latest compatibility information.

How often is Simple Virtu Widget updated?

Simple Virtu Widget was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Simple Virtu Widget's security score?

Simple Virtu Widget has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simple Virtu Widget Security & Risk Analysis

wordpress.org/plugins/simple-virtu-widget

Enables Virtu Systems mortgage widget and shortcode.

0 active installs v1.2.1 PHP + WP 4.5.0+ Updated Unknown

javascriptvirtuwidget

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Simple Virtu Widget Safe to Use in 2026?

Generally Safe

Score 100/100

Simple Virtu Widget has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The `simple-virtu-widget` plugin, version 1.2.1, presents a generally good security posture based on the provided static analysis. There are no detected dangerous functions, SQL injection vulnerabilities due to prepared statements, file operations, or external HTTP requests. The absence of known CVEs and a clean vulnerability history further bolster this perception. However, a significant concern arises from the lack of output escaping for all identified outputs. This means that any data processed and displayed by the plugin could potentially be vulnerable to cross-site scripting (XSS) attacks if that data originates from an untrusted source. While the attack surface appears small with only one shortcode and no unprotected entry points, the unescaped output represents a tangible risk that should be addressed.

Key Concerns

Unescaped output identified

Vulnerabilities

None known

Simple Virtu Widget Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Simple Virtu Widget Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped2 total outputs

Attack Surface

Simple Virtu Widget Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[virtu-widget] simple-virtu-widget.php:92

WordPress Hooks 4

actionadmin_initsimple-virtu-widget.php:88

actionadmin_menusimple-virtu-widget.php:89

actioninitsimple-virtu-widget.php:98

actionplugins_loadedsimple-virtu-widget.php:107

Maintenance & Trust

Simple Virtu Widget Maintenance & Trust

Maintenance Signals

WordPress version tested5.6.17

Last updatedUnknown

PHP min version

Downloads835

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Simple Virtu Widget Alternatives

CoolClock – a Javascript Analog Clock

coolclock

Show an analog clock on your WordPress site sidebar or in post and page content.

2K 1 CVE

JS Categories List Widget

jquery-categories-list

100

A simple Gutenberg block and JS widget (can be called from posts) for displaying categories in a list with some effects.

1K No CVEs

Allow Javascript in Text Widgets

allow-javascript-in-text-widgets

Replaces the default text widget with one that allows Javascript so you can do basic things like add Google Ads to your sidebar without using other pl …

100 No CVEs

Safe PHP Code Widget

safe-php-code-widget

Adds a secure and simple widget in which you can use PHP and JavaScript code. Also you can use unfiltered HTML or just Text. Admin Use Only.

70 No CVEs

Sliding Panel

sliding-panel

Adds a responsive sliding panel to the top of your WordPress-powered site.

70 No CVEs

Developer Profile

Simple Virtu Widget Developer Profile

Hayk Chamyan

7 plugins · 20 total installs

trust score

Avg Security Score

91/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Simple Virtu Widget

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/simple-virtu-widget/languages/

Script Paths

https://bkr.jarvis.su/virtu-widget/virtu-widgets.js

HTML / DOM Fingerprints

Data Attributes

managerIDgaID

Shortcode Output

<virtu-widgetmanagerID="gaID="

FAQ