WP-Safety

Interac e-Transfer / Email Money Transfer (EMT) Gateway for WooCommerce Security & Risk Analysis

wordpress.org/plugins/advanced-emt-payment-gateway

Accept Interac e-Transfer payments in WooCommerce with clear instructions, optional discounts, and static or dynamic secret answers.

100 active installs v2.1.0 PHP 7.4+ WP 5.8+ Updated Mar 6, 2026
canadae-transferinteracpaymentwoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Interac e-Transfer / Email Money Transfer (EMT) Gateway for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Interac e-Transfer / Email Money Transfer (EMT) Gateway for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 29d ago
Risk Assessment

The 'advanced-emt-payment-gateway' plugin v2.1.0 exhibits a mixed security posture. While it demonstrates good practices like 100% prepared statement usage for SQL queries and the absence of critical or high severity taint flows, significant concerns arise from its attack surface. The plugin exposes two AJAX handlers, both of which lack authentication checks, presenting a direct risk of unauthorized execution of plugin functionalities.

Despite the lack of recorded vulnerabilities in its history, the presence of unprotected AJAX endpoints is a critical security flaw. The plugin also has a moderate percentage of properly escaped outputs (71%), indicating potential for cross-site scripting (XSS) vulnerabilities in the remaining 29% of outputs. The bundled Freemius library, while common, should be monitored for its own security updates. The limited number of entry points is a positive, but the unprotected nature of these points overshadows this benefit.

In conclusion, the plugin has some strong security foundations, particularly in its database interaction. However, the unprotected AJAX endpoints create a substantial and easily exploitable attack vector. The moderate output escaping also warrants attention. Until these authentication and output sanitization issues are addressed, the plugin carries a significant risk of unauthorized actions and potential client-side attacks.

Key Concerns

  • AJAX handlers without auth checks
  • Unescaped output percentage
  • Bundled Freemius v1.0 library
Vulnerabilities
None known

Interac e-Transfer / Email Money Transfer (EMT) Gateway for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Interac e-Transfer / Email Money Transfer (EMT) Gateway for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
9
22 escaped
Nonce Checks
3
Capability Checks
4
File Operations
0
External Requests
0
Bundled Libraries
1

Bundled Libraries

Freemius1.0

Output Escaping

71% escaped31 total outputs
Attack Surface
2 unprotected

Interac e-Transfer / Email Money Transfer (EMT) Gateway for WooCommerce Attack Surface

Entry Points2
Unprotected2

AJAX Handlers 2

authwp_ajax_wc_emt_set_payment_methodadvanced-emt-payment-gateway.php:343
noprivwp_ajax_wc_emt_set_payment_methodadvanced-emt-payment-gateway.php:352
WordPress Hooks 28
filterdeactivate_on_activationadvanced-emt-payment-gateway.php:111
filterafter_connect_urladvanced-emt-payment-gateway.php:113
filterafter_skip_urladvanced-emt-payment-gateway.php:116
actionadmin_menuadvanced-emt-payment-gateway.php:120
actionwoocommerce_new_orderadvanced-emt-payment-gateway.php:199
actionwoocommerce_checkout_order_processedadvanced-emt-payment-gateway.php:200
actionwoocommerce_thankyouadvanced-emt-payment-gateway.php:201
filterwoocommerce_order_get_payment_method_titleadvanced-emt-payment-gateway.php:205
actionadmin_enqueue_scriptsadvanced-emt-payment-gateway.php:213
actionwp_enqueue_scriptsadvanced-emt-payment-gateway.php:229
actionbefore_woocommerce_initadvanced-emt-payment-gateway.php:274
filterwoocommerce_payment_gatewaysadvanced-emt-payment-gateway.php:296
actionwoocommerce_checkout_create_orderadvanced-emt-payment-gateway.php:302
actionwoocommerce_cart_calculate_feesadvanced-emt-payment-gateway.php:324
filterwoocommerce_gateway_titleadvanced-emt-payment-gateway.php:362
filterwoocommerce_gateway_descriptionadvanced-emt-payment-gateway.php:388
actionwoocommerce_blocks_loadedadvanced-emt-payment-gateway.php:399
actionwoocommerce_blocks_payment_method_type_registrationadvanced-emt-payment-gateway.php:405
actionwoocommerce_loadedadvanced-emt-payment-gateway.php:418
actionwoocommerce_email_after_order_tableadvanced-emt-payment-gateway.php:449
actionwoocommerce_thankyouadvanced-emt-payment-gateway.php:450
actionwoocommerce_email_headeradvanced-emt-payment-gateway.php:451
actionwoocommerce_sections_checkoutadvanced-emt-payment-gateway.php:452
filterallowed_redirect_hostsincludes\advanced-emt-review.php:9
actionplugins_loadedincludes\advanced-emt-review.php:30
actionwoocommerce_order_status_changedincludes\advanced-emt-review.php:42
actionadmin_initincludes\advanced-emt-review.php:79
actionadmin_noticesincludes\advanced-emt-review.php:118
Maintenance & Trust

Interac e-Transfer / Email Money Transfer (EMT) Gateway for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 6, 2026
PHP min version7.4
Downloads1K

Community Trust

Rating100/100
Number of ratings2
Active installs100
Alternatives

Interac e-Transfer / Email Money Transfer (EMT) Gateway for WooCommerce Alternatives

BLAZING Email Transfer Payment Gateway

BLAZING Email Transfer Payment Gateway

woocommerce-email-money-transfer-gateway

A
92

Many customers in Canada prefer to pay for the merchandise they buy, by e-Transfer (formerly Email Money Transfer).

2K No CVEs
WooPayments: Integrated WooCommerce Payments

WooPayments: Integrated WooCommerce Payments

woocommerce-payments

A
89

Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.

900K 7 CVEs
WooCommerce PayPal Payments

WooCommerce PayPal Payments

woocommerce-paypal-payments

A
100

PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.

800K 1 CVE
WooCommerce Stripe Payment Gateway

WooCommerce Stripe Payment Gateway

woocommerce-gateway-stripe

A
98

Accept debit and credit cards in 135+ currencies, many local methods like Alipay, ACH, and SEPA, and express checkout with Apple Pay and Google Pay.

700K 4 CVEs
WooCommerce Tax (formerly WooCommerce Shipping & Tax)

WooCommerce Tax (formerly WooCommerce Shipping & Tax)

woocommerce-services

A
100

We’re here to help with tax rates: collect accurate sales tax, automatically.

600K 1 CVE
Developer Profile

Interac e-Transfer / Email Money Transfer (EMT) Gateway for WooCommerce Developer Profile

CaphLabs

4 plugins · 160 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Interac e-Transfer / Email Money Transfer (EMT) Gateway for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/advanced-emt-payment-gateway/includes/js/advanced-emt-checkout.js/wp-content/plugins/advanced-emt-payment-gateway/includes/css/advanced-emt-checkout.css
Script Paths
/wp-content/plugins/advanced-emt-payment-gateway/includes/js/advanced-emt-checkout.js
Version Parameters
advanced-emt-payment-gateway/includes/js/advanced-emt-checkout.js?ver=advanced-emt-payment-gateway/includes/css/advanced-emt-checkout.css?ver=

HTML / DOM Fingerprints

HTML Comments
<!-- Start of Advanced EMT Payment Gateway integration --><!-- End of Advanced EMT Payment Gateway integration -->
FAQ

Frequently Asked Questions about Interac e-Transfer / Email Money Transfer (EMT) Gateway for WooCommerce