Does Zakaat Calculator have any unpatched vulnerabilities?

No. All known vulnerabilities in Zakaat Calculator have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Zakaat Calculator compatible with WordPress 3.9.40?

According to WordPress.org data, Zakaat Calculator 1.0 has been tested up to WordPress 3.9.40. Check the plugin's changelog for the latest compatibility information.

How often is Zakaat Calculator updated?

Zakaat Calculator was last updated on Unknown. Frequent updates are generally a positive security signal.

What is Zakaat Calculator's security score?

Zakaat Calculator has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Zakaat Calculator Security & Risk Analysis

wordpress.org/plugins/zakaat-calculator

A beautiful Interactive Plugin which can be used to add Zakaat Calculator in your websites sidebar.

20 active installs v1.0 PHP + WP 3.0.1+ Updated Unknown

calculatorislamislamicvoice-of-muslim-ummah

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Zakaat Calculator Safe to Use in 2026?

Generally Safe

Score 100/100

Zakaat Calculator has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The "zakaat-calculator" v1.0 plugin presents a mixed security picture. On the positive side, it exhibits a remarkably small attack surface with no identifiable AJAX handlers, REST API routes, shortcodes, or cron events. Furthermore, all SQL queries are executed using prepared statements, and there are no recorded vulnerability history entries, suggesting a potentially stable codebase.

However, significant concerns arise from the static analysis. The presence of the `create_function` is a critical code smell, as it can lead to arbitrary code execution if user-supplied input influences its parameters, even if not immediately apparent in the static analysis. The fact that 100% of output is unescaped is a major vulnerability, opening the door to Cross-Site Scripting (XSS) attacks. The complete absence of nonce and capability checks on all entry points (though the attack surface is zero) is a notable weakness that could become a problem if the plugin evolves.

In conclusion, while the plugin's limited attack surface and secure SQL practices are commendable, the dangerous use of `create_function` and universal lack of output escaping are severe security flaws that require immediate attention. The lack of historical vulnerabilities is positive but does not negate the present risks identified in the code.

Key Concerns

Dangerous function 'create_function' used
100% of output not properly escaped
0 Nonce checks on entry points
0 Capability checks on entry points

Vulnerabilities

None known

Zakaat Calculator Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Zakaat Calculator Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

create_functionadd_action( 'widgets_init', create_function('', 'return register_widget("ZakaatCalculator");') );?>index.php:195

Output Escaping

0% escaped8 total outputs

Attack Surface

Zakaat Calculator Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 1

actionwidgets_initindex.php:195

Maintenance & Trust

Zakaat Calculator Maintenance & Trust

Maintenance Signals

WordPress version tested3.9.40

Last updatedUnknown

PHP min version

Downloads3K

Community Trust

Rating100/100

Number of ratings2

Active installs20

Alternatives

Zakaat Calculator Alternatives

Muslim Prayer Time-Salah/Iqamah

masjidal

Display the prayer(Athan) and/or Iqamah time for you masjid or location. Use as a widget or use the short codes and format it as you like.

400 1 CVE

Zakah Calculator

zakah-calculator

It is a simple and easy way to know how to fulfill the obligation of Zakah.

200 No CVEs

Hijri Calendar

hijri-calendar

Easily display current Hijri/Islamic date (according to hijri calendar), anywhere in your wordpress blog!

100 No CVEs

Xllentech English Islamic Calendar

xllentech-english-islamic-calendar

The Best English Islamic Calendar plugin on WordPress.

100 1 CVE

Muslim Prayer Times

muslim-prayer-times

100

Add accurate prayer times and iqama schedules to your WordPress site using blocks or shortcodes.

70 No CVEs

Developer Profile

Zakaat Calculator Developer Profile

Haseeb Ahmad Ayazi

3 plugins · 40 total installs

trust score

Avg Security Score

90/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Zakaat Calculator

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

tenthirteen

Data Attributes

name="bank_saving"name="gold_silver"name="money_owed"name="other"name="total_amount"name="zakah"

JS Globals

zakatcalc

Shortcode Output

<div align="center"><strong>Zakat Caculator</strong></div>

FAQ