[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fxx1RcCgoqYZvtZp_VoodVR-cDqkym7zhCD3zJIKZNVg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":54,"fingerprints":133},"card-transfer-gateway","Card Transfer Gateway","1.0.1","Wipna","https:\u002F\u002Fprofiles.wordpress.org\u002Firwebds\u002F","\u003Cp>The Card Transfer Gateway plugin is a very simple plugin for users, which eliminates the need for online payment gateways.\u003C\u002Fp>\n\u003Ch3>توضیحات\u003C\u002Fh3>\n\u003Cp>پلاگین کارت به کارت به شما اجازه می دهد به سادگی درگاه پرداختی تحت عنوان کارت به کارت اضافه نمایید که می تواند شامل شماره کارت یا حساب و نام صاحب حساب باشد.\u003Cbr \u002F>\nهمچنین این امکان در افزونه قرار داده شده است تا قبل یا بعد از اقدام به ثبت سفارش رسید را از طریق تلگرام یا واتساپ به شما ارسال نمایند.\u003C\u002Fp>\n\u003Ch3>نمونه نصب شده:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwipna.com\u002Fcard-transfer-gateway\u002F\" rel=\"nofollow ugc\">دمو افزونه کارت به کارت\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>این پلاگین شامل ویژگی های مفیدی است که در اینجا آمده است.\u003C\u002Fp>\n\u003Ch3>ویژگی های نسخه رایگان\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>**نصب آسان **\u003C\u002Fli>\n\u003Cli>\u003Cstrong>هماهنگ با تمامی نسخه های وردپرس و ووکامرس\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>کاملا سبک\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان تغییر تمامی متون\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان درج شماره کارت\u002Fحساب\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان درج نام صاحب حساب\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان نمایش پشتیبانی تلگرام\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان نمایش پشتیبانی واتساپ\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان لغو خودکار سفارشات\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان تعیین زمان\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان تعیین وضعیت در انتظار کارت به کارت برای سفارشات\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>شما میتوانید نسخه پرمیوم را با مراجعه به \u003Ca href=\"https:\u002F\u002Fwipna.com\u002Fcard-transfer-gateway\u002F\" rel=\"nofollow ugc\">سایت wipna.com\u003C\u002Fa> نسخه پرمیوم را دریافت نمایید.\u003C\u002Fp>\n\u003Ch3>ویژگی های نسخه پرمیوم\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>امکان آپلود رسید و اطلاعات پرداختی در صفحه پرداخت\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان آپلود رسید و اطلاعات پرداختی در صفحه تشکر پرداخت\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان ارسال رسید و اطلاعات پرداختی در پنل کاربری\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان مشاهده رسید و جزئیات در پنل مدیریت\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان تغییر استایل باکس ها و متون\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان ارسال پیامک\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان ارسال پیامک در ساعت خاص\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان تغییر وضعیت به وضعیت دلخواه در ساعت خاص\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>امکان محدود سازی مبلغ و تعداد تراکنش برای هر کارت یا حساب\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>اگر هرگونه مشکلی یا پیشنهادی داشتید میتوانید به ایمیل ما ارسال نمایید. support@wipna.com\u003C\u002Fp>\n","The Card Transfer Gateway plugin is a very simple plugin for users, which eliminates the need for online payment gateways.",700,3616,100,2,"2025-08-04T14:37:00.000Z","6.8.5","3.3.0","",[20,21,22,23],"card-to-card","card-transfer","%da%a9%d8%a7%d8%b1%d8%aa-%d8%a8%d9%87-%da%a9%d8%a7%d8%b1%d8%aa","%d8%a7%d9%86%d8%aa%d9%82%d8%a7%d9%84-%da%a9%d8%a7%d8%b1%d8%aa%db%8c","https:\u002F\u002Fwipna.com\u002Fcard-transfer-gateway","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcard-transfer-gateway.1.0.1.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":13,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"irwebds",1,30,94,"2026-04-05T02:08:09.335Z",[37],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":26,"downloaded":45,"rating":13,"num_ratings":32,"last_updated":46,"tested_up_to":16,"requires_at_least":47,"requires_php":18,"tags":48,"homepage":18,"download_link":53,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"card-to-card-gateway-for-edd","Card To Card Gateway For EDD","1.4.0","mohammadr3z","https:\u002F\u002Fprofiles.wordpress.org\u002Fmohammadr3z\u002F","\u003Cp>This plugin adds Card to Card payment functionality to Easy Digital Downloads. Customers can transfer money to a specified card number after purchase and submit their transaction details. Orders will be confirmed by the site administrator after review.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Add Card to Card payment gateway to Easy Digital Downloads\u003Cbr \u002F>\n– Allow customers to submit tracking and reference numbers\u003Cbr \u002F>\n– Send order notifications to Telegram (optional)\u003Cbr \u002F>\n– Display Card to Card information in order management\u003Cbr \u002F>\n– Custom bank icon upload option for unlisted banks\u003Cbr \u002F>\n– Display bank name in checkout form\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin uses the Telegram Bot API to send store\u002Fadmin notifications during order events in Easy Digital Downloads.\u003C\u002Fp>\n\u003Cp>Data sent includes:\u003Cbr \u002F>\n– Order total\u003Cbr \u002F>\n– Order status\u003Cbr \u002F>\n– Customer email (if available)\u003C\u002Fp>\n\u003Cp>This data is sent when a new payment is completed or fails.\u003C\u002Fp>\n\u003Cp>Service: Telegram Bot API\u003Cbr \u002F>\nTerms of Service: \u003Ccode>https:\u002F\u002Ftelegram.org\u002Ftos\u003C\u002Fcode>\u003Cbr \u002F>\nPrivacy Policy: \u003Ccode>https:\u002F\u002Ftelegram.org\u002Fprivacy\u003C\u002Fcode>\u003C\u002Fp>\n","Add Card to Card payment gateway to Easy Digital Downloads",491,"2026-02-17T07:28:00.000Z","5.0",[20,49,50,51,52],"easy-digital-downloads","edd","gateway","payment","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcard-to-card-gateway-for-edd.1.4.0.zip",{"attackSurface":55,"codeSignals":99,"taintFlows":121,"riskAssessment":122,"analyzedAt":132},{"hooks":56,"ajaxHandlers":93,"restRoutes":94,"shortcodes":95,"cronEvents":96,"entryPointCount":26,"unprotectedCount":26},[57,63,67,73,77,83,86,89],{"type":58,"name":59,"callback":60,"file":61,"line":62},"action","admin_enqueue_scripts","ctgfree_dashboard_enqueue_assets","card-transfer-gateway.php",48,{"type":58,"name":64,"callback":65,"file":61,"line":66},"wp_enqueue_scripts","ctgfree_frontend_enqueue_assets",62,{"type":68,"name":69,"callback":70,"file":71,"line":72},"filter","cron_schedules","ctgfree_cronjob_update_order_statuses_schedule","inc\\cronjobs.php",9,{"type":58,"name":74,"callback":75,"file":71,"line":76},"ctgfree_cronjob_update_order_statuses_cron_hook","ctgfree_cronjob_update_orders_statuses",10,{"type":58,"name":78,"callback":79,"priority":80,"file":81,"line":82},"plugins_loaded","ctgfree_initialize_card_transfer_gateway",11,"inc\\gateway.php",5,{"type":58,"name":84,"callback":85,"file":81,"line":72},"init","ctgfree_register_card_transfer_gateway_order_status",{"type":68,"name":87,"callback":88,"file":81,"line":76},"wc_order_statuses","ctgfree_add_card_transfer_gateway_order_status",{"type":68,"name":90,"callback":91,"file":81,"line":92},"woocommerce_payment_gateways","ctgfree_add_card_transfer_gateway",13,[],[],[],[97],{"hook":74,"callback":74,"file":71,"line":98},39,{"dangerousFunctions":100,"sqlUsage":101,"outputEscaping":103,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":120},[],{"prepared":26,"raw":26,"locations":102},[],{"escaped":104,"rawEcho":105,"locations":106},19,6,[107,110,112,114,116,118],{"file":81,"line":108,"context":109},130,"raw output",{"file":81,"line":111,"context":109},143,{"file":81,"line":113,"context":109},148,{"file":81,"line":115,"context":109},171,{"file":81,"line":117,"context":109},182,{"file":81,"line":119,"context":109},187,[],[],{"summary":123,"deductions":124},"The \"card-transfer-gateway\" v1.0.1 plugin exhibits a generally good security posture based on the provided static analysis. There are no identified dangerous functions, SQL queries are exclusively using prepared statements, and a high percentage of output is properly escaped. The absence of file operations, external HTTP requests, and no recorded vulnerabilities or CVEs further contribute to this positive assessment.  However, the complete lack of nonce checks and capability checks across all identified entry points is a significant concern. While the attack surface appears small (0 AJAX handlers, 0 REST API routes, 0 shortcodes), any potential future vulnerabilities in these areas, or if the cron event itself has exploitable logic, would be entirely unprotected from unauthorized access or manipulation. This lack of fundamental security controls represents a critical weakness that could be easily exploited if an attacker finds a way to trigger the plugin's functionality without proper authorization.",[125,128,130],{"reason":126,"points":127},"No nonce checks on any entry points",15,{"reason":129,"points":127},"No capability checks on any entry points",{"reason":131,"points":82},"High percentage of unescaped output (24%)","2026-03-16T19:22:55.590Z",{"wat":134,"direct":143},{"assetPaths":135,"generatorPatterns":138,"scriptPaths":139,"versionParams":140},[136,137],"\u002Fwp-content\u002Fplugins\u002Fcard-transfer-gateway\u002Fassets\u002Fcss\u002Fdashboard.css","\u002Fwp-content\u002Fplugins\u002Fcard-transfer-gateway\u002Fassets\u002Fcss\u002Fctg-style.css",[],[],[141,142],"card-transfer-gateway\u002Fassets\u002Fcss\u002Fdashboard.css?ver=1.0.1","card-transfer-gateway\u002Fassets\u002Fcss\u002Fctg-style.css?ver=1.0.1",{"cssClasses":144,"htmlComments":145,"htmlAttributes":146,"restEndpoints":147,"jsGlobals":148,"shortcodeOutput":149},[],[],[],[],[],[]]