Does WP BunVC have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is WP BunVC compatible with WordPress 4.9.29?

According to WordPress.org data, WP BunVC 1.1.6 has been tested up to WordPress 4.9.29. Check the plugin's changelog for the latest compatibility information.

How often is WP BunVC updated?

WP BunVC was last updated on May 29, 2018. Frequent updates are generally a positive security signal.

What is WP BunVC's security score?

WP BunVC has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP BunVC Security & Risk Analysis

wordpress.org/plugins/wp-bunvc

Plug-in for smooth payment of virtual currency

0 active installs v1.1.6 PHP + WP 4.9.1+ Updated May 29, 2018

bitcoinbitcoin-cashcryptocurrencyethereumvirtual-currency

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP BunVC Safe to Use in 2026?

Generally Safe

Score 85/100

WP BunVC has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The 'wp-bunvc' plugin v1.1.6 exhibits a mixed security posture. On the positive side, it demonstrates good practices by using prepared statements for all SQL queries and has no recorded historical vulnerabilities. It also doesn't make external HTTP requests or contain dangerous functions. However, significant concerns arise from its attack surface and lack of security checks. The plugin exposes two AJAX handlers without any authentication or capability checks, which is a major security risk. Furthermore, only 25% of its outputs are properly escaped, meaning there's a high probability of cross-site scripting (XSS) vulnerabilities. The absence of nonce checks on AJAX actions is particularly alarming, leaving the plugin susceptible to CSRF attacks. While there are no identified taint flows or dangerous functions, the critical gaps in authentication and output sanitization present substantial risks that could be exploited by attackers.

Key Concerns

AJAX handlers without authentication
Low percentage of properly escaped output
Missing nonce checks on AJAX
No capability checks on entry points

Vulnerabilities

None known

WP BunVC Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

WP BunVC Release Timeline

v1.1.6Current

v1.1.5

v1.1.4

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.2

v1.0.1

Code Analysis

Analyzed Mar 17, 2026

WP BunVC Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

2 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

25% escaped8 total outputs

Attack Surface

2 unprotected

WP BunVC Attack Surface

Entry Points3

Unprotected2

AJAX Handlers 2

authwp_ajax_bunvc_exchangeincludes\class-wp-bunvc.php:188

noprivwp_ajax_bunvc_exchangeincludes\class-wp-bunvc.php:189

Shortcodes 1

[bun] includes\class-wp-bunvc.php:187

WordPress Hooks 4

actionadmin_menuadmin\class-wp-bunvc-admin.php:60

actionadmin_initadmin\class-wp-bunvc-admin.php:61

actionplugins_loadedincludes\class-wp-bunvc.php:154

actionwp_enqueue_scriptsincludes\class-wp-bunvc.php:185

Maintenance & Trust

WP BunVC Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29

Last updatedMay 29, 2018

PHP min version

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

WP BunVC Alternatives

Cryptocurrency Payment Gateway

cryptocurrency-payment-gateway

100

Digital Currency Payment Gateway for WooCommerce. Easily accept Bitcoin, Bitcoin Cash, Litecoin, Dogecoin, and more in your store.

500 No CVEs

elegro Crypto Payment

elegro-payment

Increase your customers base by accepting cryptocurrencies.

20K No CVEs

NOWPayments for WooCommerce – Crypto Payment Gateway

nowpayments-for-woocommerce

100

Accept Bitcoin, Ethereum, and 300+ cryptocurrencies in WooCommerce using the official NOWPayments crypto payment gateway.

3K No CVEs

Crypto Price Widgets – CryptoWP

cryptowp

100

A lightweight plugin to show the latest Bitcoin, Ethereum, and other cryptocurrency widgets on your website.

700 No CVEs

Cryptocurrency Donation Box – Bitcoin & Crypto Donations

cryptocurrency-donation-box

Accept crypto payments and donations on your WordPress site easily with this free cryptocurrency donation box plugin

600 1 unpatched

Developer Profile

WP BunVC Developer Profile

wadadanet

3 plugins · 20 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP BunVC

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-bunvc/css/wp-bunvc-public.css/wp-content/plugins/wp-bunvc/js/wp-bunvc-public.js/wp-content/plugins/wp-bunvc/css/wp-bunvc-admin.css/wp-content/plugins/wp-bunvc/js/wp-bunvc-admin.js

Script Paths

/wp-content/plugins/wp-bunvc/js/wp-bunvc-public.js/wp-content/plugins/wp-bunvc/js/wp-bunvc-admin.js

Version Parameters

wp-bunvc/css/wp-bunvc-public.css?ver=wp-bunvc/js/wp-bunvc-public.js?ver=wp-bunvc/css/wp-bunvc-admin.css?ver=wp-bunvc/js/wp-bunvc-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

wp-bunvc-admin

JS Globals

wp_bunvc_admin_params

FAQ