Does Stock market charts from finviz have any unpatched vulnerabilities?

No. All known vulnerabilities in Stock market charts from finviz have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Stock market charts from finviz compatible with WordPress 6.9.4?

According to WordPress.org data, Stock market charts from finviz 1.0.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is Stock market charts from finviz updated?

Stock market charts from finviz was last updated on Dec 2, 2025. Frequent updates are generally a positive security signal.

What is Stock market charts from finviz's security score?

Stock market charts from finviz has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Stock market charts from finviz Security & Risk Analysis

wordpress.org/plugins/stock-market-charts-from-finviz

Embed dynamic stock market charts from finviz.com

500 active installs v1.0.2 PHP + WP 3.6+ Updated Dec 2, 2025

chartfinancemarketstockticker

A · Safe

CVEs total1

Unpatched0

Last CVEFeb 20, 2023

Plugin page Download

Safety Verdict

Is Stock market charts from finviz Safe to Use in 2026?

Generally Safe

Score 100/100

Stock market charts from finviz has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Feb 20, 2023Updated 4mo ago

Risk Assessment

The stock-market-charts-from-finviz plugin version 1.0.2 presents a generally good security posture based on the static analysis, with no detected dangerous functions, file operations, or external HTTP requests. SQL queries are all prepared, and the majority of output is properly escaped. The attack surface is minimal, consisting of a single shortcode. However, the presence of a single medium severity Cross-Site Scripting (XSS) vulnerability in its history, though currently patched, is a significant concern. The lack of nonce checks and the limited capability checks (only one identified) suggest potential areas where unauthorized actions might be possible if a more complex attack vector were discovered, especially considering the XSS history. While the code itself appears relatively clean, the historical vulnerability indicates that inputs might not always be handled with sufficient sanitization for all scenarios, requiring careful monitoring and prompt updates.

Key Concerns

Medium severity XSS vulnerability in history
Only 1 capability check identified
No nonce checks identified
80% of output escaped (20% unescaped)

Vulnerabilities

Stock market charts from finviz Security Vulnerabilities

CVEs by Year

1 CVE in 2023

2023

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2023-23809medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Stock market charts from finviz <= 1.0.1 - Authenticated(Admin+) Stored Cross-Site Scripting

Feb 20, 2023 Patched in 1.0.2 (337d)

Code Analysis

Analyzed Mar 16, 2026

Stock market charts from finviz Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

80% escaped5 total outputs

Attack Surface

Stock market charts from finviz Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[finviz] stock_market_charts_finviz.php:15

WordPress Hooks 5

actioninitstock_market_charts_finviz.php:11

actionadmin_initstock_market_charts_finviz.php:161

actionadmin_menustock_market_charts_finviz.php:162

actionadmin_menustock_market_charts_finviz.php:252

filterplugin_action_linksstock_market_charts_finviz.php:279

Maintenance & Trust

Stock market charts from finviz Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 2, 2025

PHP min version

Downloads16K

Community Trust

Rating100/100

Number of ratings3

Active installs500

Alternatives

Stock market charts from finviz Alternatives

Stockdio Historical Chart

stockdio-historical-chart

WordPress plugin and widget for displaying stock market live charts and technical indicators.

900 2 CVEs

Financial Ratio

financial-ratio

Provides a block for Wordpress that displays a financial ratio of a company.

0 No CVEs

Stock Market Ticker

stock-market-ticker

100

Easy to use and versatile stock market ticker, with support of over 65 world exchanges, indices, commodities and currencies.

3K No CVEs

Stock Market Overview

stock-market-overview

100

At-a-glance display of stock market, with categories for Equities, Indices, Commodities and Currencies. Supports over 65 world exchanges.

2K No CVEs

Jika.io Stock Market Widgets

jika-stock-market-widgets

Stock Market Widgets for WordPress By Jika.io

60 No CVEs

Developer Profile

Stock market charts from finviz Developer Profile

Moris Papasmadov

2 plugins · 540 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

337 days

View full developer profile

Detection Fingerprints

How We Detect Stock market charts from finviz

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/stock-market-charts-from-finviz/css/style.css/wp-content/plugins/stock-market-charts-from-finviz/js/script.js

Version Parameters

stock-market-charts-from-finviz/css/style.css?ver=stock-market-charts-from-finviz/js/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

finviz-imagefinviz-anchor

Data Attributes

loading='lazy'

Shortcode Output

<img class="finviz-image" src='https://charts2.finviz.com/chart.ashx?t=' loading='lazy' alt='' width='' />

FAQ