Does SoftTech-IT bKash, Rocket, Nagad have any unpatched vulnerabilities?

No. All known vulnerabilities in SoftTech-IT bKash, Rocket, Nagad have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is SoftTech-IT bKash, Rocket, Nagad compatible with WordPress 6.6.5?

According to WordPress.org data, SoftTech-IT bKash, Rocket, Nagad 2.4 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

How often is SoftTech-IT bKash, Rocket, Nagad updated?

SoftTech-IT bKash, Rocket, Nagad was last updated on Oct 17, 2024. Frequent updates are generally a positive security signal.

What is SoftTech-IT bKash, Rocket, Nagad's security score?

SoftTech-IT bKash, Rocket, Nagad has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SoftTech-IT bKash, Rocket, Nagad Security & Risk Analysis

wordpress.org/plugins/bkash

Easy to use bKash , Rocket and Nagad Payment Gateway for Woocommerce

7K active installs v2.4 PHP + WP 4.5.0+ Updated Oct 17, 2024

bkash-wordpress-pluginmtm-sujannagad-wordpress-pluginrocket-wordpress-pluginwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is SoftTech-IT bKash, Rocket, Nagad Safe to Use in 2026?

Generally Safe

Score 92/100

SoftTech-IT bKash, Rocket, Nagad has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The bkash v2.4 plugin exhibits a generally good security posture, with no known vulnerabilities in its history and a strong adherence to several security best practices. The code analysis reveals a complete absence of dangerous functions and SQL queries executed without prepared statements, which are significant strengths. Additionally, the plugin demonstrates a good rate of output escaping, with 78% of outputs properly handled. The presence of a capability check indicates an awareness of access control. However, there are areas for improvement. The presence of 6 unsanitized path flows in the taint analysis is a concern, even though they did not reach a critical or high severity in this static scan. While the attack surface appears minimal and protected, any potential for unsanitized paths, even if currently benign, warrants careful review. The single external HTTP request should also be monitored for potential vulnerabilities if the external service is compromised or if the request is constructed with user-supplied data.

Key Concerns

Unsanitized path flows in taint analysis
Single external HTTP request
Low output escaping percentage

Vulnerabilities

None known

SoftTech-IT bKash, Rocket, Nagad Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

SoftTech-IT bKash, Rocket, Nagad Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

54 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

78% escaped69 total outputs

Data Flows

6 unsanitized

Data Flow Analysis

8 flows6 with unsanitized paths

stit_sms_integration_callback (index.php:35)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

SoftTech-IT bKash, Rocket, Nagad Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 38

filterwoocommerce_payment_gatewaysbkash.php:12

actionplugins_loadedbkash.php:21

filterwoocommerce_thankyou_order_received_textbkash.php:51

actionwoocommerce_email_before_order_tablebkash.php:52

actionwoocommerce_cart_calculate_feesbkash.php:256

actionwoocommerce_checkout_processbkash.php:292

actionwoocommerce_checkout_update_order_metabkash.php:324

actionwoocommerce_admin_order_data_after_billing_addressbkash.php:344

actionwoocommerce_order_details_after_customer_detailsbkash.php:383

filtermanage_edit-shop_order_columnsbkash.php:415

actionmanage_shop_order_posts_custom_columnbkash.php:431

actionadmin_noticesbkash.php:451

actionadmin_initbkash.php:464

actionadmin_menuindex.php:21

filterwoocommerce_thankyou_order_received_textindex.php:128

actionwp_enqueue_scriptsindex.php:163

filterwoocommerce_payment_gatewaysnagad.php:10

actionplugins_loadednagad.php:19

filterwoocommerce_thankyou_order_received_textnagad.php:49

actionwoocommerce_email_before_order_tablenagad.php:50

actionwoocommerce_cart_calculate_feesnagad.php:255

actionwoocommerce_checkout_processnagad.php:291

actionwoocommerce_checkout_update_order_metanagad.php:323

actionwoocommerce_admin_order_data_after_billing_addressnagad.php:343

actionwoocommerce_order_details_after_customer_detailsnagad.php:382

filtermanage_edit-shop_order_columnsnagad.php:414

actionmanage_shop_order_posts_custom_columnnagad.php:430

filterwoocommerce_payment_gatewaysrocket.php:9

actionplugins_loadedrocket.php:18

filterwoocommerce_thankyou_order_received_textrocket.php:48

actionwoocommerce_email_before_order_tablerocket.php:49

actionwoocommerce_cart_calculate_feesrocket.php:254

actionwoocommerce_checkout_processrocket.php:290

actionwoocommerce_checkout_update_order_metarocket.php:322

actionwoocommerce_admin_order_data_after_billing_addressrocket.php:342

actionwoocommerce_order_details_after_customer_detailsrocket.php:381

filtermanage_edit-shop_order_columnsrocket.php:413

actionmanage_shop_order_posts_custom_columnrocket.php:429

Maintenance & Trust

SoftTech-IT bKash, Rocket, Nagad Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedOct 17, 2024

PHP min version

Downloads161K

Community Trust

Rating86/100

Number of ratings42

Active installs7K

Alternatives

SoftTech-IT bKash, Rocket, Nagad Alternatives

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs

Google for WooCommerce

google-listings-and-ads

Native integration with Google that allows merchants to easily display their products across Google’s network.

900K 1 CVE

WooPayments: Integrated WooCommerce Payments

woocommerce-payments

Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.

900K 6 CVEs

WooCommerce PayPal Payments

woocommerce-paypal-payments

100

PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.

800K 1 CVE

Click to Chat – HoliThemes

click-to-chat-for-whatsapp

WhatsApp Chat🔥. Let's make your Web page visitors contact you through 'WhatsApp', 'WhatsApp Business'. Add matching Widget✅

700K 3 CVEs

Developer Profile

SoftTech-IT bKash, Rocket, Nagad Developer Profile

Md. Toriqul Mowla

5 plugins · 7K total installs

trust score

Avg Security Score

86/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect SoftTech-IT bKash, Rocket, Nagad

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/bkash/images/bkash.png

HTML / DOM Fingerprints

CSS Classes

bkash-qr-code

Data Attributes

data-bkash-numberdata-number-typedata-bkash-charge

FAQ