[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fi7Uvy_A4smPhBLCczh4uQTEyCyX1cL2FAXp4-WiIDv0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":8,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":140,"fingerprints":301},"bykea-instant-delivery","Bykea Instant Delivery","1.0","dizyn","https:\u002F\u002Fprofiles.wordpress.org\u002Fdizyn\u002F","\u003Cp>Bykea is an instant delivery service in Pakistan, currently operating in four cities Karachi, Lahore, Rawalpindi & Islamabad. Both ecommerce or non-ecommerce sellers can use Bykea to delivery their parcels within 60 mins. To get your Bykea corporate account please install Bykea app from Google Play or App Store,\u003Cbr \u002F>\n1. Signup with your Business Mobile Number\u003Cbr \u002F>\n2. Contact Bykea team at info@bykea.com to start using Bykea delivery.\u003C\u002Fp>\n","Bykea is an instant delivery service in Pakistan which is currently operating in Karachi, Lahore, Rawalpindi & Islamabad.",10,1371,0,"2020-11-18T12:06:00.000Z","4.8.28","4.0","5.6.28",[19,20,21,22,23],"instant-delivery","karachi","logistics-bykea","pakistan","parcel-delivery","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbykea-instant-delivery.1.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},2,210,30,84,"2026-04-04T14:22:04.316Z",[36,58,78,101,122],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":13,"num_ratings":13,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":49,"tags":50,"homepage":56,"download_link":57,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"wc-easypay-pk","WC Easypay pk","1.0.1","Ali Kazim","https:\u002F\u002Fprofiles.wordpress.org\u002Fali-kazim\u002F","\u003Cp>WC Easypay PK allow users to checkout through Easypay. This plugin redirects user to easypay site where user can pay through different payment methods. Instant payment notification feature is available to record customer activity for order on easypay checkout page.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Sandbox Mode\u003C\u002Fli>\n\u003Cli>Production Mode\u003C\u002Fli>\n\u003Cli>Debug mode\u003C\u002Fli>\n\u003Cli>Instant Payment Notification\u003C\u002Fli>\n\u003C\u002Ful>\n","WC Easypay PK is developed to provide checkout experience with Easypay(Pakistan). This plugin is compatiable with woocommerce.",300,21693,"2022-12-30T11:35:00.000Z","6.1.10","4.2","",[51,52,53,54,55],"easypay","easypay-pakistan","payment","payment-gateway","woocommerce","https:\u002F\u002Fwww.intelvue.com\u002Fwordpress-wc-easypay\u002F?utm=wceasypay-plugin-page","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-easypay-pk.1.0.1.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":44,"downloaded":66,"rating":67,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":76,"download_link":77,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"woo-safepay-gateway","Safepay for WooCommerce","1.0.6","safepay","https:\u002F\u002Fprofiles.wordpress.org\u002Fsafepay\u002F","\u003Cp>This is the official Safepay Checkout plugin for WooCommerce. It allows you to accept credit cards and debit cards with the WooCommerce plugin. It uses a seamles integration, allowing the customer to pay on your website. This works across all browsers, and is compatible with the latest WooCommerce.\u003C\u002Fp>\n\u003Ch3>Dependencies\u003C\u002Fh3>\n\u003Col>\n\u003Cli>WordPress v3.9.2 and later\u003C\u002Fli>\n\u003Cli>Woocommerce v3.1 and later\u003C\u002Fli>\n\u003Cli>PHP v5.6.0 and later\u003C\u002Fli>\n\u003Cli>php-curl extension\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Visit the WooCommerce settings page, and click on the Checkout\u002FPayment Gateways tab.\u003C\u002Fli>\n\u003Cli>Click on Safepay to edit the settings. If you do not see Safepay in the list at the top of the screen make sure you have activated the plugin in the WordPress Plugin Manager.\u003C\u002Fli>\n\u003Cli>Enable the Payment Method, name it Pay with Credit & Debit Cards (this will show up on the payment page your customer sees), add in your API keys and Webhook Secrets for both Sandbox and Production environments.\u003C\u002Fli>\n\u003Cli>Toggle between test payments and live payments by checking\u002Funchecking the Enable Sandbox mode checkbox.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Visit \u003Ca href=\"https:\u002F\u002Fspectrum.chat\u002Fsafepay\" rel=\"nofollow ugc\">spectrum.chat\u002Fsafepay\u003C\u002Fa> to access our community and chat with fellow merchants.\u003C\u002Fp>\n\u003Cp>Visit our \u003Ca href=\"https:\u002F\u002Fsafepay.helpscoutdocs.com\u002F\" rel=\"nofollow ugc\">knowledge center\u003C\u002Fa> for detailed guides on how to use Safepay as a merchant.\u003C\u002Fp>\n","Allows you to use Safepay Checkout with the WooCommerce plugin.",10379,54,3,"2020-09-02T20:11:00.000Z","5.5.18","3.9.2","5.6",[74,22,75,62,55],"ecommerce","payments","https:\u002F\u002Fgithub.com\u002Fgetsafepay\u002Fsafepay-woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-safepay-gateway.1.0.7.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":88,"num_ratings":30,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":92,"tags":93,"homepage":98,"download_link":99,"security_score":100,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"pakistan-tax-calculator","Pakistan Tax Calculator","0.5.5","TechUp Solutions","https:\u002F\u002Fprofiles.wordpress.org\u002Ftechupsol\u002F","\u003Cp>Simplify tax calculations on your WordPress site with our user-friendly Pakistan Tax Calculator Plugin. Easily manage budgeting and financial planning hassle-free.\u003C\u002Fp>\n\u003Ch3>Features:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Quick and accurate tax calculations\u003C\u002Fli>\n\u003Cli>Streamlined budgeting tools\u003C\u002Fli>\n\u003Cli>Seamless integration into your WordPress site\u003C\u002Fli>\n\u003Cli>User-friendly interface for effortless financial planning\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Enhance your website’s financial capabilities today!\u003C\u002Fp>\n","Simplify tax calculations on your WordPress site. Easy budgeting and financial planning.",20,1077,60,"2025-01-31T07:56:00.000Z","6.7.5","6.5.1","7.0",[94,95,96,97,79],"corporate-tax-pakistan","fbr-tax-calculator","income-tax-pakistan","pakistan-salary-tax-calculator","https:\u002F\u002Fpaktaxcalculator.pk\u002Fpakistan-tax-calculator-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpakistan-tax-calculator.0.5.5.zip",92,{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":11,"downloaded":109,"rating":110,"num_ratings":111,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":72,"tags":115,"homepage":120,"download_link":121,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"parcelbroker-for-woocommerce","ParcelBroker for Woocommerce","1.0.5","ParcelBroker","https:\u002F\u002Fprofiles.wordpress.org\u002Fparcelbroker\u002F","\u003Cp>The Official ParcelBroker extension for WooCommerce.\u003C\u002Fp>\n\u003Cp>Quote, compare, book and manage your national and international shipments with DHL, TNT, FedEx, DPD, UPS, ParcelForce and more.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>FEATURES\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Book your favourite carriers quickly and easily with a wide range of couriers, all while benefiting from ParcelBroker’s discounted rates.\u003C\u002Fli>\n\u003Cli>Automatically update your WooCommerce orders with a tracking number.\u003C\u002Fli>\n\u003Cli>Reaturn a list of service names and rates to compare crrier costs.\u003C\u002Fli>\n\u003Cli>Experience premium support from the ParcelBroker team.\u003C\u002Fli>\n\u003Cli>Book imports to the UK, Exports from the UK and domestic shipments from within the UK.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more information on the carriers and services that ParcelBroker have to offer please visit https:\u002F\u002Fparcelbroker.co.uk.\u003C\u002Fp>\n\u003Cp>Please note: Imports and Exports are currently disabled while we update our internal API.\u003C\u002Fp>\n","Quote, compare, book and manage your national and international shipments with DHL, TNT, FedEx, DPD, UPS, ParcelForce and more.",1731,100,1,"2021-02-16T14:11:00.000Z","5.6.17","4.4",[116,117,118,23,119],"delivery","freight","logistics","shipping","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fparcelbroker-for-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparcelbroker-for-woocommerce.1.0.5.zip",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":13,"downloaded":130,"rating":13,"num_ratings":13,"last_updated":131,"tested_up_to":132,"requires_at_least":133,"requires_php":134,"tags":135,"homepage":138,"download_link":139,"security_score":110,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"asaan-retail-phone-order-tracker","Cubicsofts Phone Order Tracker for Asaan Retail","1.1.1","cubicsofts","https:\u002F\u002Fprofiles.wordpress.org\u002Fcubicsofts\u002F","\u003Cp>Order Tracking by Phone for Asaan Retail allows WooCommerce store owners to sync delivery status from Asaan Retail and lets customers track their orders using phone number.\u003C\u002Fp>\n\u003Cp>Developed by Cubicsofts (https:\u002F\u002Fcubicsofts.com).\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Sync WooCommerce orders with Asaan Retail\u003C\u002Fli>\n\u003Cli>Phone-based order tracking\u003C\u002Fli>\n\u003Cli>Optimized hash-based syncing\u003C\u002Fli>\n\u003Cli>Secure AJAX tracking\u003C\u002Fli>\n\u003Cli>Custom database table (fast & scalable)\u003C\u002Fli>\n\u003Cli>Admin panel for synced orders\u003C\u002Fli>\n\u003Cli>WP-Cron background syncing\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Author\u003C\u002Fh3>\n\u003Cp>Talha Tabani\u003Cbr \u002F>\nCompany: Cubicsofts\u003Cbr \u002F>\nWebsite: https:\u002F\u002Fcubicsofts.com\u003C\u002Fp>\n","Order Tracking by Phone for Asaan Retail allows WooCommerce store owners to sync delivery status from Asaan Retail and lets customers track their orde …",93,"2026-01-07T13:12:00.000Z","6.9.4","6.6","7.4",[136,137,22,55],"courier-tracking","order-tracking","https:\u002F\u002Fcubicsofts.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fasaan-retail-phone-order-tracker.1.1.1.zip",{"attackSurface":141,"codeSignals":212,"taintFlows":252,"riskAssessment":287,"analyzedAt":300},{"hooks":142,"ajaxHandlers":208,"restRoutes":209,"shortcodes":210,"cronEvents":211,"entryPointCount":13,"unprotectedCount":13},[143,149,155,158,162,166,169,173,176,181,185,189,193,196,200,204],{"type":144,"name":145,"callback":146,"file":147,"line":148},"action","init","bykea_init","bykea-instant-delivery.php",16,{"type":150,"name":151,"callback":152,"file":153,"line":154},"filter","manage_edit-shop_order_columns","bykea_columns_head","includes\\functions.php",8,{"type":144,"name":156,"callback":157,"priority":11,"file":153,"line":11},"manage_shop_order_posts_custom_column","bykea_columns_content",{"type":150,"name":159,"callback":160,"file":153,"line":161},"bulk_actions-edit-shop_order","bykea_request_delivery_bulk_actions",12,{"type":150,"name":163,"callback":164,"priority":11,"file":153,"line":165},"handle_bulk_actions-edit-shop_order","bykea_bulk_action_handler",14,{"type":144,"name":167,"callback":168,"file":153,"line":148},"admin_notices","bykea_admin_notices",{"type":144,"name":170,"callback":171,"file":153,"line":172},"admin_head-edit.php","bykea_header_html",18,{"type":144,"name":174,"callback":175,"file":153,"line":86},"admin_footer-edit.php","bykea_footer_html",{"type":150,"name":177,"callback":178,"priority":179,"file":153,"line":180},"woocommerce_settings_tabs_array","bykea_wc_custom_settings_tabs",50,22,{"type":144,"name":182,"callback":183,"file":153,"line":184},"woocommerce_settings_tabs_bykea_api_setings","bykea_api_settings_tab",24,{"type":144,"name":186,"callback":187,"file":153,"line":188},"woocommerce_settings_tabs_bykea_pickup_addresses","bykea_pickup_addresses_tab",26,{"type":144,"name":190,"callback":191,"file":153,"line":192},"woocommerce_update_options_bykea_api_setings","bykea_save_api_settings",28,{"type":144,"name":194,"callback":195,"file":153,"line":32},"admin_enqueue_scripts","bykea_admin_scripts",{"type":144,"name":197,"callback":198,"file":153,"line":199},"wp_enqueue_scripts","bykea_client_scripts",32,{"type":144,"name":201,"callback":202,"file":203,"line":161},"add_meta_boxes","bykea_order_delivery_logs_meta_box","includes\\meta-boxes\\bykea-order-delivery-logs.php",{"type":144,"name":205,"callback":206,"file":203,"line":207},"save_post","bykea_save_order_delivery_logs_meta_box",177,[],[],[],[],{"dangerousFunctions":213,"sqlUsage":214,"outputEscaping":227,"fileOperations":250,"externalRequests":30,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":251},[],{"prepared":215,"raw":68,"locations":216},15,[217,221,224],{"file":218,"line":219,"context":220},"includes\\bykea-delivery-requests.php",187,"$wpdb->query() with variable interpolation",{"file":222,"line":223,"context":220},"includes\\bykea-pickup-addresses.php",132,{"file":225,"line":226,"context":220},"includes\\bykea-webhooks.php",274,{"escaped":148,"rawEcho":11,"locations":228},[229,232,233,235,237,240,242,245,246,248],{"file":203,"line":230,"context":231},163,"raw output",{"file":203,"line":230,"context":231},{"file":234,"line":219,"context":231},"includes\\woocommerce-settings\\bykea-pickup-addresses.php",{"file":234,"line":236,"context":231},188,{"file":238,"line":239,"context":231},"templates\\admin-ui.php",78,{"file":238,"line":241,"context":231},79,{"file":243,"line":244,"context":231},"templates\\footer-html.php",186,{"file":243,"line":219,"context":231},{"file":243,"line":247,"context":231},263,{"file":249,"line":250,"context":231},"templates\\header-html.php",4,[],[253,277],{"entryPoint":254,"graph":255,"unsanitizedCount":111,"severity":276},"bykea_custom_form_submissions (includes\\functions.php:302)",{"nodes":256,"edges":272},[257,262,266],{"id":258,"type":259,"label":260,"file":153,"line":261},"n0","source","$_POST",672,{"id":263,"type":264,"label":265,"file":153,"line":261},"n1","transform","→ bykea_update_pickup_address()",{"id":267,"type":268,"label":269,"file":234,"line":270,"wp_function":271},"n2","sink","update_option() [Settings Manipulation]",245,"update_option",[273,275],{"from":258,"to":263,"sanitized":274},false,{"from":263,"to":267,"sanitized":274},"low",{"entryPoint":278,"graph":279,"unsanitizedCount":111,"severity":276},"\u003Cfunctions> (includes\\functions.php:0)",{"nodes":280,"edges":284},[281,282,283],{"id":258,"type":259,"label":260,"file":153,"line":261},{"id":263,"type":264,"label":265,"file":153,"line":261},{"id":267,"type":268,"label":269,"file":234,"line":270,"wp_function":271},[285,286],{"from":258,"to":263,"sanitized":274},{"from":263,"to":267,"sanitized":274},{"summary":288,"deductions":289},"The \"bykea-instant-delivery\" v1.0 plugin exhibits a seemingly robust security posture based on the provided static analysis. There are no identified entry points for direct attacks such as AJAX handlers, REST API routes, shortcodes, or cron events that lack authentication or permission checks.  Furthermore, the absence of dangerous functions and a lack of recorded vulnerabilities in its history are positive indicators.\n\nHowever, several areas warrant concern. The plugin has a notable lack of both nonce checks and capability checks, which are fundamental WordPress security mechanisms. This absence is particularly worrying given the presence of two taint analysis flows with unsanitized paths. While these flows are not flagged as critical or high severity, their presence, coupled with the missing authorization checks, suggests a potential avenue for security issues if user-supplied data is not adequately handled and validated before being used in operations.\n\nIn conclusion, while the plugin has avoided known vulnerabilities and doesn't expose a large attack surface, the lack of fundamental security checks like nonces and capability checks, combined with the identified unsanitized taint flows, presents a significant weakness. The plugin developers should prioritize implementing these missing security measures to mitigate potential risks.",[290,292,294,297],{"reason":291,"points":11},"Missing nonce checks",{"reason":293,"points":11},"Missing capability checks",{"reason":295,"points":296},"Taint flows with unsanitized paths",7,{"reason":298,"points":299},"Output escaping is not fully proper (38% issues)",5,"2026-03-17T00:48:28.101Z",{"wat":302,"direct":311},{"assetPaths":303,"generatorPatterns":306,"scriptPaths":307,"versionParams":308},[304,305],"\u002Fwp-content\u002Fplugins\u002Fbykea-instant-delivery\u002Fjs\u002Fadmin-script.js","\u002Fwp-content\u002Fplugins\u002Fbykea-instant-delivery\u002Fjs\u002Fclient-script.js",[],[304,305],[309,310],"bykea-instant-delivery\u002Fjs\u002Fadmin-script.js?ver=","bykea-instant-delivery\u002Fjs\u002Fclient-script.js?ver=",{"cssClasses":312,"htmlComments":313,"htmlAttributes":314,"restEndpoints":316,"jsGlobals":317,"shortcodeOutput":319},[],[],[315],"onclick=\"bydiz_shipWithByKeaSingle(",[],[318],"bydiz_shipWithByKeaSingle",[]]