[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fPseH0f87qg6XPM4l4XNzOnmD_sH7WDKmTWEzZ0B-K-s":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":136,"fingerprints":221},"bold-pay","BOLD.Pay for WooCommerce","1.6.0","MACROKIOSK","https:\u002F\u002Fprofiles.wordpress.org\u002Fboldpay\u002F","\u003Cp>BOLD.Pay is a cloud-based multi-channel payment access plugin for WooCommerce.\u003C\u002Fp>\n\u003Cp>This secure dynamic payment plugin supports a variety of payment channels such as Credit Cards, Instalments, Online Banking (FPX) and E-Wallets.\u003C\u002Fp>\n","BOLD.Pay is a cloud-based multi-channel payment access plugin for WooCommerce.",40,4311,0,"2025-12-05T09:34:00.000Z","6.9.0","5.2.1","",[19,20,21,22,23],"credit-card","e-wallet","online-banking","payment-gateway","payment-request","https:\u002F\u002Fwww.boldpass.com\u002Flogin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbold-pay.1.6.0.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"boldpay",1,30,94,"2026-04-04T18:36:55.669Z",[37,56,76,97,116],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":13,"num_ratings":13,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":17,"tags":50,"homepage":53,"download_link":54,"security_score":55,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"paydirect-fpx","PayDirectFPX","1.0.2","Shahrul","https:\u002F\u002Fprofiles.wordpress.org\u002Fshahrul1995\u002F","\u003Cp>PayDirectFPX payment gateway plugin for WooCommerce. This plugin enable online payment using credit or debit cards (Visa and Mastercard only) and online banking (for Malaysian banks only). Currently PayDirectFPX  is only available for businesses that reside in Malaysia.\u003C\u002Fp>\n","PayDirectFPX payment gateway plugin for WooCommerce.",10,2432,"2024-07-04T10:07:00.000Z","6.6.5","4.3",[19,51,21,22,52],"malaysia","paypal","https:\u002F\u002Fwww.paydirect.my","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpaydirect-fpx.1.0.2.zip",92,{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":13,"downloaded":64,"rating":65,"num_ratings":32,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":69,"tags":70,"homepage":73,"download_link":74,"security_score":75,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"nofrixion-for-woocommerce","NoFrixion for WooCommerce","1.2.4","nofrixion","https:\u002F\u002Fprofiles.wordpress.org\u002Fnofrixion\u002F","\u003Cp>The NoFrixion for WooCommerce plugin provides a convenient way to access the NoFrixion payment gateway.\u003C\u002Fp>\n\u003Cp>Supported payment options are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Card payments.\u003C\u002Fli>\n\u003Cli>Open Banking (Europe only) payment initiation.\u003C\u002Fli>\n\u003C\u002Ful>\n","Card and Open Banking payment processing for WooCommerce",3975,20,"2024-01-29T23:26:00.000Z","6.3.8","5.2","7.4",[19,71,22,23,72],"payment","payments","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fnofrixion-for-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnofrixion-for-woocommerce.1.2.4.zip",85,{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":86,"num_ratings":87,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":69,"tags":91,"homepage":95,"download_link":96,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"woocommerce-payfast-gateway","WooCommerce Payfast Gateway","1.7.5","WooCommerce","https:\u002F\u002Fprofiles.wordpress.org\u002Fwoocommerce\u002F","\u003Cp>Give customers more flexibility and increase your bottom line with Payfast — one of South Africa’s most popular payment gateways.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Fast, \u003Cstrong>super-secure\u003C\u002Fstrong> payments from almost anywhere in the world.\u003C\u002Fli>\n\u003Cli>Compatible with \u003Cstrong>subscriptions\u003C\u002Fstrong>, \u003Cstrong>deposits\u003C\u002Fstrong>, and \u003Cstrong>pre-orders\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Get started\u003C\u002Fh4>\n\u003Cp>This extension requires a Payfast merchant account. \u003Ca href=\"https:\u002F\u002Fpayfast.io\u002Fgateway-aggregator-selector\u002F\" rel=\"nofollow ugc\">Sign up for free\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>How does it work?\u003C\u002Fh4>\n\u003Cp>At checkout, customers are automatically taken to Payfast to pay for their orders. Once payment is complete, Payfast redirects them to your store to continue shopping.\u003C\u002Fp>\n\u003Ch4>Fast, super-secure, and scalable\u003C\u002Fh4>\n\u003Cp>Pay it safe, every time. Payfast is trusted by \u003Cstrong>more than 100,000\u003C\u002Fstrong> South African businesses, with security that exceeds industry standards. It’s PCI DSS-compliant and also supports 18+ popular payment methods. In a nutshell, WooCommerce Payfast Gateway is the fastest, smartest, and safest way to accept payments online.\u003C\u002Fp>\n\u003Ch4>Boost your bottom line\u003C\u002Fh4>\n\u003Cp>Payfast is compatible with \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-subscriptions\u002F\" rel=\"nofollow ugc\">WooCommerce Subscriptions\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-pre-orders\u002F\" rel=\"nofollow ugc\">WooCommerce Pre-Orders\u003C\u002Fa>, giving your shoppers the ultimate flexibility. \u003Cstrong>Convert more customers\u003C\u002Fstrong> by letting them make deposits, order in advance, or subscribe to your products and services. You win each way!\u003C\u002Fp>\n","Give customers more flexibility and increase your bottom line with Payfast — one of South Africa’s most popular payment gateways.",30000,871750,60,7,"2026-02-24T19:05:00.000Z","6.9.4","6.7",[92,19,93,23,94],"automattic","payfast","woocommerce","https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fpayfast-payment-gateway\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoocommerce-payfast-gateway.1.7.5.zip",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":105,"downloaded":106,"rating":107,"num_ratings":108,"last_updated":109,"tested_up_to":89,"requires_at_least":110,"requires_php":69,"tags":111,"homepage":114,"download_link":115,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"woo-payu-payment-gateway","PayU GPO Payment for WooCommerce","2.9.1","PayU GPO","https:\u002F\u002Fprofiles.wordpress.org\u002Fpayusa\u002F","\u003Cp>\u003Cstrong>PayU payment module for WooCommerce\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The plugin offers the following payment methods:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>PayU – standard – payer will be redirected to PayU’s hosted payment page where any available payment type configured on your POS can be chosen\u003C\u002Fli>\n\u003Cli>PayU – bank list – payment type list will be displayed, depending on chosen type the payer will be either redirected directly to the bank or to PayU’s hosted payment page\u003C\u002Fli>\n\u003Cli>PayU – payment card – payer will be redirected to PayU’s hosted card form where credit, debit or prepaid card data can be securely entered\u003C\u002Fli>\n\u003Cli>PayU – secure form – a secure form collecting credit, debit or prepaid card data will be displayed\u003C\u002Fli>\n\u003Cli>PayU – Blik – payer will be redirected to Blik’s page\u003C\u002Fli>\n\u003Cli>PayU – installments – payer will be redirected to installment payment form\u003C\u002Fli>\n\u003Cli>PayU – Klarna – payer will be redirected to Klarna payment form\u003C\u002Fli>\n\u003Cli>PayU – PayPo – payer will be redirected to PayPo payment form\u003C\u002Fli>\n\u003Cli>PayU – Twisto – payer will be redirected to Twisto payment form\u003C\u002Fli>\n\u003Cli>PayU – Twisto pay in 3 – payer will be redirected to Twisto pay in 3 payment form\u003C\u002Fli>\n\u003Cli>PayU – PragmaPay – payer will be redirected to PragmaPay payment form (only for business clients)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Detailed information about each method and its configuration \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FPayU-EMEA\u002Fwoo-payu-payment-gateway\" rel=\"nofollow ugc\">can be found here\u003C\u002Fa>.\u003C\u002Fp>\n","PayU fast online payments for WooCommerce. Banks, BLIK, credit or debit cards, Installments, Apple Pay, Google Pay.",10000,379872,74,6,"2026-02-05T10:13:00.000Z","5.0",[19,71,22,112,113],"payu","platnosci","https:\u002F\u002Fgithub.com\u002FPayU\u002Fwoo-payu-payment-gateway","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-payu-payment-gateway.2.9.1.zip",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":124,"downloaded":125,"rating":126,"num_ratings":127,"last_updated":128,"tested_up_to":129,"requires_at_least":130,"requires_php":131,"tags":132,"homepage":134,"download_link":135,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"woo-asaas","Asaas Gateway for WooCommerce","2.7.4","Asaas","https:\u002F\u002Fprofiles.wordpress.org\u002Fasaas\u002F","\u003Cp>Use \u003Ca href=\"https:\u002F\u002Fwww.asaas.com\" rel=\"nofollow ugc\">Asaas\u003C\u002Fa> as payment method in your WooCommerce store.\u003C\u002Fp>\n\u003Cp>This plugin is an implementation of \u003Ca href=\"https:\u002F\u002Fasaasv3.docs.apiary.io\" rel=\"nofollow ugc\">Asaas API v3\u003C\u002Fa>. The checkout mechanism is completely transparent. The customer will not go out of your store to finish the order. The data are sent to Asaas service, that process the payment and return its status.\u003C\u002Fp>\n\u003Cp>For any doubt about the plugin installation and integration, please read the FAQ. If it doesn’t solve, use the plugin Support area that we will help you as soon as possible.\u003C\u002Fp>\n","Take transparent credit card and bank ticket payment checkouts on your store using Asaas.",9000,177841,78,17,"2026-03-10T00:36:00.000Z","6.7.5","4.4","7.0",[133,19,71,22,94],"asaas","https:\u002F\u002Fwww.asaas.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-asaas.2.7.4.zip",{"attackSurface":137,"codeSignals":198,"taintFlows":209,"riskAssessment":210,"analyzedAt":220},{"hooks":138,"ajaxHandlers":194,"restRoutes":195,"shortcodes":196,"cronEvents":197,"entryPointCount":13,"unprotectedCount":13},[139,144,149,154,159,163,167,172,176,180,185,188,191],{"type":140,"name":141,"callback":142,"priority":13,"file":143,"line":65},"action","plugins_loaded","boldpay_init","boldpay.php",{"type":145,"name":146,"callback":147,"file":143,"line":148},"filter","woocommerce_payment_gateways","add_boldpay_to_woocommerce",28,{"type":145,"name":150,"callback":151,"priority":152,"file":143,"line":153},"woocommerce_gateway_title","payment_gateway_title",24,35,{"type":145,"name":155,"callback":156,"priority":157,"file":143,"line":158},"woocommerce_gateway_description","payment_gateway_description",25,45,{"type":145,"name":160,"callback":161,"file":143,"line":162},"woocommerce_checkout_fields","make_phone_field_required",67,{"type":140,"name":164,"callback":165,"file":143,"line":166},"woocommerce_checkout_process","custom_phone_validation",73,{"type":140,"name":168,"callback":169,"priority":170,"file":143,"line":171},"init","boldpay_check_response",15,89,{"type":140,"name":173,"callback":174,"file":143,"line":175},"woocommerce_api_boldpay_check_notification","boldpay_check_notification",103,{"type":140,"name":177,"callback":178,"file":143,"line":179},"woocommerce_api_testfunction","TestFunction",116,{"type":145,"name":181,"callback":182,"file":183,"line":184},"the_content","boldpay_payment_pending_msg","includes\\boldpay.php",562,{"type":145,"name":181,"callback":186,"file":183,"line":187},"boldpay_payment_declined_msg",644,{"type":145,"name":181,"callback":189,"file":183,"line":190},"boldpay_payment_fail_connection_msg",730,{"type":145,"name":181,"callback":192,"file":183,"line":193},"anonymous",750,[],[],[],[],{"dangerousFunctions":199,"sqlUsage":200,"outputEscaping":202,"fileOperations":13,"externalRequests":32,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":208},[],{"prepared":32,"raw":13,"locations":201},[],{"escaped":203,"rawEcho":32,"locations":204},23,[205],{"file":183,"line":206,"context":207},766,"raw output",[],[],{"summary":211,"deductions":212},"The 'bold-pay' plugin v1.6.0 exhibits a generally strong security posture based on the provided static analysis.  The absence of any detected dangerous functions, raw SQL queries, or file operations is a significant positive.  Furthermore, the high percentage of properly escaped output and the presence of prepared statements for SQL queries suggest good development practices for mitigating common vulnerabilities. The plugin's attack surface appears to be zero, with no AJAX handlers, REST API routes, shortcodes, or cron events, which dramatically reduces the potential for external exploitation.  The vulnerability history also shows no recorded CVEs, indicating a stable and secure past.\n\nHowever, there are some areas that warrant attention. The complete lack of nonce checks and capability checks is a notable concern. While the attack surface is currently zero, if any entry points were to be introduced in the future, the absence of these fundamental security mechanisms would expose the plugin to significant risks of CSRF and unauthorized action. The single external HTTP request, while not inherently malicious, should be monitored for any potential data leakage or insecure handling of external resources. The taint analysis showing zero flows with unsanitized paths is positive, but this is based on a very limited number of analyzed flows, suggesting the taint analysis might not have been comprehensive.\n\nIn conclusion, 'bold-pay' v1.6.0 demonstrates a solid foundation of secure coding practices, particularly in its handling of SQL and output. The lack of historical vulnerabilities further bolsters this confidence. The primary weakness lies in the complete absence of nonce and capability checks, which represents a potential future risk if the plugin's functionality expands. A more comprehensive taint analysis would also provide greater assurance.",[213,215,217],{"reason":214,"points":45},"Missing nonce checks",{"reason":216,"points":45},"Missing capability checks",{"reason":218,"points":219},"Limited taint analysis coverage",5,"2026-03-16T22:14:20.607Z",{"wat":222,"direct":228},{"assetPaths":223,"generatorPatterns":225,"scriptPaths":226,"versionParams":227},[224],"\u002Fwp-content\u002Fplugins\u002Fbold-pay\u002Fboldpay.php",[],[],[],{"cssClasses":229,"htmlComments":232,"htmlAttributes":233,"restEndpoints":236,"jsGlobals":238,"shortcodeOutput":239},[230,231],"woocommerce-error","woocommerce-message",[],[234,235],"readonly","required",[237],"\u002Fwp-json\u002Fboldpay\u002F",[],[]]