WP-Safety

پارسی دیت – Parsi Date Security & Risk Analysis

wordpress.org/plugins/wp-parsidate

Persian date support for WordPress

100K active installs v5.1.8.2 PHP 7.4+ WP 5.3+ Updated Dec 10, 2025
jalalipersianshamsi%d9%88%d9%88%da%a9%d8%a7%d9%85%d8%b1%d8%b3woocommerce
99
A · Safe
CVEs total2
Unpatched0
Last CVENov 25, 2024
Plugin page Download
Safety Verdict

Is پارسی دیت – Parsi Date Safe to Use in 2026?

Generally Safe

Score 99/100

پارسی دیت – Parsi Date has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

2 known CVEsLast CVE: Nov 25, 2024Updated 5mo ago
Risk Assessment

The wp-parsidate plugin v5.1.8.2 presents a mixed security posture. While it demonstrates good practices by utilizing prepared statements for a majority of its SQL queries and has no known unpatched vulnerabilities, significant concerns arise from its attack surface and output sanitization. The presence of two AJAX handlers, both lacking authentication checks, creates a direct entry point for potential attackers. Furthermore, the taint analysis indicates that all analyzed flows contain unsanitized paths, which, though not currently classified as critical or high severity, represents a latent risk. The plugin's vulnerability history shows two past medium-severity Cross-site Scripting (XSS) vulnerabilities, suggesting a pattern of input sanitization issues. While the absence of critical or high severity issues and the secure handling of SQL are positive, the unprotected AJAX endpoints and the prevalence of unsanitized paths in taint flows warrant careful consideration and highlight areas for improvement.

Key Concerns

  • Unprotected AJAX handlers
  • All taint flows have unsanitized paths
  • Lower percentage of properly escaped output
  • Lack of capability checks
Vulnerabilities
2 published

پارسی دیت – Parsi Date Security Vulnerabilities

CVEs by Year

1 CVE in 2023
2023
1 CVE in 2024
2024
Patched Has unpatched

Severity Breakdown

Medium
2

2 total CVEs

CVE-2024-11032medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Parsi Date <= 5.1.1 - Reflected Cross-Site Scripting via add_query_arg Parameter

Nov 25, 2024 Patched in 5.1.2 (1d)
WF-f4955368-85bc-4a9c-8d3a-446e09955f6c-wp-parsidatemedium · 5.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Parsi Date <= 4.0.1 - Reflected Cross-Site Scripting

Jan 23, 2023 Patched in 4.0.2 (365d)
Version History

پارسی دیت – Parsi Date Release Timeline

v5.1.8.2Current
v5.1.8
v5.1.7
v5.1.6
v5.1.5
v5.1.4
v5.1.3
v5.1.2
v5.1.11 CVE
CVE-2024-11032
v5.1.01 CVE
CVE-2024-11032
v4.0.21 CVE
CVE-2024-11032
v4.0.12 CVEs
CVE-2024-11032 WF-f4955368-85bc-4a9c-8d3a-446e09955f6c-wp-parsidate
v4.0.02 CVEs
CVE-2024-11032 WF-f4955368-85bc-4a9c-8d3a-446e09955f6c-wp-parsidate
v3.0.32 CVEs
CVE-2024-11032 WF-f4955368-85bc-4a9c-8d3a-446e09955f6c-wp-parsidate
v3.0.22 CVEs
CVE-2024-11032 WF-f4955368-85bc-4a9c-8d3a-446e09955f6c-wp-parsidate
v3.0.12 CVEs
CVE-2024-11032 WF-f4955368-85bc-4a9c-8d3a-446e09955f6c-wp-parsidate
v2.3.42 CVEs
CVE-2024-11032 WF-f4955368-85bc-4a9c-8d3a-446e09955f6c-wp-parsidate
v2.3.32 CVEs
CVE-2024-11032 WF-f4955368-85bc-4a9c-8d3a-446e09955f6c-wp-parsidate
v2.3.22 CVEs
CVE-2024-11032 WF-f4955368-85bc-4a9c-8d3a-446e09955f6c-wp-parsidate
v2.3.12 CVEs
CVE-2024-11032 WF-f4955368-85bc-4a9c-8d3a-446e09955f6c-wp-parsidate
Code Analysis
Analyzed Mar 16, 2026

پارسی دیت – Parsi Date Code Analysis

Dangerous Functions
0
Raw SQL Queries
3
17 prepared
Unescaped Output
63
110 escaped
Nonce Checks
1
Capability Checks
0
File Operations
0
External Requests
7
Bundled Libraries
0

SQL Query Safety

85% prepared20 total queries

Output Escaping

64% escaped173 total outputs
Data Flows · Security
11 unsanitized

Data Flow Analysis

11 flows11 with unsanitized paths
wpp_restrict_posts (includes\admin\lists-fix.php:72)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

پارسی دیت – Parsi Date Attack Surface

Entry Points2
Unprotected2

AJAX Handlers 2

authwp_ajax_wpp-dashboard-widgetsincludes\admin\widgets.php:318
authwp_ajax_fetch_sponsorship_slidesincludes\admin\widgets.php:413
WordPress Hooks 115
actionenqueue_block_editor_assetsincludes\admin\gutenberg-jalali-calendar.php:61
actionadmin_enqueue_scriptsincludes\admin\lists-fix.php:34
actionrestrict_manage_postsincludes\admin\lists-fix.php:42
filterposts_whereincludes\admin\lists-fix.php:43
actionload-edit.phpincludes\admin\lists-fix.php:46
actionadmin_print_styles-plugin-editor.phpincludes\admin\styles-fix.php:25
actionadmin_print_styles-theme-editor.phpincludes\admin\styles-fix.php:26
filterinitincludes\admin\styles-fix.php:41
filterdashboard_primary_linkincludes\admin\widgets.php:23
filterdashboard_primary_feedincludes\admin\widgets.php:35
filterdashboard_secondary_linkincludes\admin\widgets.php:47
filterdashboard_secondary_feedincludes\admin\widgets.php:59
actionwp_dashboard_setupincludes\admin\widgets.php:82
actionadmin_enqueue_scriptsincludes\admin\widgets.php:384
filterwp_titleincludes\fixes-archive.php:48
filterpre_get_document_titleincludes\fixes-archive.php:49
filterthe_timeincludes\fixes-dates.php:16
filterthe_dateincludes\fixes-dates.php:17
filterget_the_timeincludes\fixes-dates.php:18
filterget_the_dateincludes\fixes-dates.php:19
filterget_the_modified_dateincludes\fixes-dates.php:20
filterget_comment_timeincludes\fixes-dates.php:21
filterget_comment_dateincludes\fixes-dates.php:22
filterdate_i18nincludes\fixes-dates.php:24
filtermedia_view_settingsincludes\fixes-dates.php:25
filterwp_dateincludes\fixes-dates.php:28
filterwp_titleincludes\fixes-misc.php:18
filterthe_titleincludes\fixes-misc.php:22
filterthe_contentincludes\fixes-misc.php:26
filterthe_excerptincludes\fixes-misc.php:30
filtercomment_textincludes\fixes-misc.php:34
filtercomments_numberincludes\fixes-misc.php:38
filterwp_list_categoriesincludes\fixes-misc.php:42
filterthe_contentincludes\fixes-misc.php:46
filterthe_titleincludes\fixes-misc.php:47
filtercomment_textincludes\fixes-misc.php:48
filterwp_list_categoriesincludes\fixes-misc.php:49
filterthe_excerptincludes\fixes-misc.php:50
filterwp_titleincludes\fixes-misc.php:51
filterposts_whereincludes\fixes-permalinks.php:15
actionpre_get_postsincludes\fixes-permalinks.php:16
filterpost_linkincludes\fixes-permalinks.php:17
filterlocaleincludes\general.php:48
filterlogin_headerurlincludes\general.php:59
actionadmin_noticesincludes\general.php:84
actionadmin_initincludes\general.php:99
filtergutenberg_use_widgets_block_editorincludes\general.php:108
filteruse_widgets_block_editorincludes\general.php:109
actioninitincludes\general.php:113
filterwpp_plugins_compatibility_settingsincludes\plugins\acf.php:26
actionacf/include_field_typesincludes\plugins\acf.php:29
actionacf/register_fieldsincludes\plugins\acf.php:30
filterwoocommerce_reports_get_order_report_queryincludes\plugins\disable.php:115
filterwpp_plugins_compatibility_settingsincludes\plugins\disable.php:132
filterdis_rial_currency_filter_afterincludes\plugins\disable.php:135
filterdis_rial_currency_filter_afterincludes\plugins\disable.php:139
filterwpp_plugins_compatibility_settingsincludes\plugins\edd.php:19
filteredd_rial_currency_filter_afterincludes\plugins\edd.php:22
filteredd_rial_currency_filter_afterincludes\plugins\edd.php:26
actionelementor/editor/after_enqueue_stylesincludes\plugins\elementor.php:11
filterrank_math/opengraph/facebook/article_published_timeincludes\plugins\rank-math.php:11
filterrank_math/opengraph/facebook/article_modified_timeincludes\plugins\rank-math.php:12
filterrank_math/json_ldincludes\plugins\rank-math.php:13
filterrank_math/snippet/rich_snippet_product_entityincludes\plugins\rank-math.php:14
filterwoocommerce_billing_fieldsincludes\plugins\wc-cities\wc-city-select.php:34
filterwoocommerce_shipping_fieldsincludes\plugins\wc-cities\wc-city-select.php:35
filterwoocommerce_form_field_cityincludes\plugins\wc-cities\wc-city-select.php:36
actionwp_enqueue_scriptsincludes\plugins\wc-cities\wc-city-select.php:39
actionbefore_woocommerce_initincludes\plugins\wc-gateways\wc-gateways.php:22
filterwpp_woocommerce_settingsincludes\plugins\wc-gateways\wc-gateways.php:23
filterwoocommerce_payment_gatewaysincludes\plugins\wc-gateways\wc-gateways.php:24
actionwoocommerce_blocks_loadedincludes\plugins\wc-gateways\wc-gateways.php:25
actionwoocommerce_blocks_payment_method_type_registrationincludes\plugins\wc-gateways\wc-gateways.php:124
actionbefore_woocommerce_initincludes\plugins\wc-gateways\wpp-mellat-gateway.php:485
actionbefore_woocommerce_initincludes\plugins\wc-gateways\wpp-melli-gateway.php:340
actionbefore_woocommerce_initincludes\plugins\wc-gateways\wpp-parsian-gateway.php:502
actionbefore_woocommerce_initincludes\plugins\wc-gateways\wpp-pasargad-gateway.php:592
filterwpp_plugins_compatibility_settingsincludes\plugins\woocommerce.php:19
actionbefore_woocommerce_initincludes\plugins\woocommerce.php:21
actionplugins_loadedincludes\plugins\woocommerce.php:23
filterwc_priceincludes\plugins\woocommerce.php:27
filterwoocommerce_get_price_htmlincludes\plugins\woocommerce.php:28
filterwoocommerce_cart_item_priceincludes\plugins\woocommerce.php:29
filterwoocommerce_cart_item_subtotalincludes\plugins\woocommerce.php:30
filterwoocommerce_cart_subtotalincludes\plugins\woocommerce.php:31
filterwoocommerce_cart_totals_coupon_htmlincludes\plugins\woocommerce.php:32
filterwoocommerce_cart_shipping_method_full_labelincludes\plugins\woocommerce.php:33
filterwoocommerce_cart_totalincludes\plugins\woocommerce.php:34
actionwp_headincludes\plugins\woocommerce.php:38
filterwoocommerce_email_stylesincludes\plugins\woocommerce.php:39
actionadmin_enqueue_scriptsincludes\plugins\woocommerce.php:42
actionwoocommerce_process_shop_order_metaincludes\plugins\woocommerce.php:45
filterwoocommerce_process_product_metaincludes\plugins\woocommerce.php:46
actionwoocommerce_ajax_save_product_variationsincludes\plugins\woocommerce.php:47
actionwoocommerce_process_shop_coupon_metaincludes\plugins\woocommerce.php:48
filterget_post_metadataincludes\plugins\woocommerce.php:49
filtermanage_edit-shop_coupon_columnsincludes\plugins\woocommerce.php:50
actionmanage_shop_coupon_posts_custom_columnincludes\plugins\woocommerce.php:51
actionadmin_footerincludes\plugins\woocommerce.php:52
actionadmin_initincludes\plugins\woocommerce.php:53
filterwoocommerce_checkout_processincludes\plugins\woocommerce.php:56
filterwoocommerce_checkout_posted_dataincludes\plugins\woocommerce.php:57
filterwoocommerce_validate_postcodeincludes\plugins\woocommerce.php:60
actionwoocommerce_after_checkout_validationincludes\plugins\woocommerce.php:64
actionadmin_enqueue_scriptsincludes\settings.php:41
actionadmin_menuincludes\settings.php:44
actionadmin_initincludes\settings.php:124
filterwpp_core_settingsincludes\settings.php:764
actionadmin_bar_menuincludes\tools.php:34
actionadmin_headincludes\tools.php:52
actioninitwp-parsidate.php:60
actionwidgets_initwp-parsidate.php:77
actionadmin_enqueue_scriptswp-parsidate.php:78
actionwpp_jalali_datepicker_enqueuedwp-parsidate.php:79
actionadmin_headwp-parsidate.php:245
Maintenance & Trust

پارسی دیت – Parsi Date Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 10, 2025
PHP min version7.4
Downloads1.3M

Community Trust

Rating92/100
Number of ratings126
Active installs100K
Alternatives

پارسی دیت – Parsi Date Alternatives

ووکامرس فارسی

ووکامرس فارسی

persian-woocommerce

A
99

بسته ووکامرس فارسی به راحتی سیستم فروشگاه ساز ووکامرس را فارسی می کند و امکانات جدید متناسب با ایران را به ووکامرس اضافه میکند.

100K 2 CVEs
افزونه پیامک ووکامرس Persian WooCommerce SMS

افزونه پیامک ووکامرس Persian WooCommerce SMS

persian-woocommerce-sms

B
72

افزونه کامل و حرفه ای برای اطلاع رسانی پیامکی سفارشات و رویداد های محصولات ووکامرس

40K 1 unpatched
Persian Date

Persian Date

persian-date

A
85

تاریخ شمسی برای وردپرس

3K No CVEs
Persian Reports – گزارش فارسی ووکامرس

Persian Reports – گزارش فارسی ووکامرس

persian-reports

A
85

گزارش و آمار پیشرفته فروشگاه ووکامرس به فارسی و تاریخ شمسی ★★★★★

200 No CVEs
Persian date for codestar framework

Persian date for codestar framework

persian-date-for-codestar-framework

A
85

Codestar Framework Is A Simple and Lightweight WordPress Option Framework for Themes and Plugins. Persian date for codestar framework adds a new field &hellip;

20 No CVEs
Developer Profile

پارسی دیت – Parsi Date Developer Profile

Morteza Geransayeh

7 plugins · 100K total installs

71
trust score
Avg Security Score
89/100
Avg Patch Time
183 days
View full developer profile
Detection Fingerprints

How We Detect پارسی دیت – Parsi Date

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wp-parsidate/assets/css/admin.css/wp-content/plugins/wp-parsidate/assets/css/style.css/wp-content/plugins/wp-parsidate/assets/js/admin.js/wp-content/plugins/wp-parsidate/assets/js/parsidate.js/wp-content/plugins/wp-parsidate/assets/js/parsidate.min.js
Script Paths
/wp-content/plugins/wp-parsidate/assets/js/parsidate.js/wp-content/plugins/wp-parsidate/assets/js/parsidate.min.js
Version Parameters
/wp-content/plugins/wp-parsidate/assets/css/admin.css?ver=/wp-content/plugins/wp-parsidate/assets/css/style.css?ver=/wp-content/plugins/wp-parsidate/assets/js/admin.js?ver=/wp-content/plugins/wp-parsidate/assets/js/parsidate.js?ver=/wp-content/plugins/wp-parsidate/assets/js/parsidate.min.js?ver=

HTML / DOM Fingerprints

CSS Classes
parsidate-datepicker-calendar
Data Attributes
data-gregorian-to-jalalidata-jalali-to-gregorian
JS Globals
parsidate
FAQ

Frequently Asked Questions about پارسی دیت – Parsi Date