[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fdyGXEB65StM4amt838q0FF50fNJjUEqZmup5EpP_90E":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":34,"analysis":123,"fingerprints":261},"carticy-checkout-shield-for-woocommerce","Checkout Shield for WooCommerce – Stop Fake Orders, Spam Bots & Card Testing","1.1.0","carticy","https:\u002F\u002Fprofiles.wordpress.org\u002Fcarticy\u002F","\u003Cp>\u003Cstrong>Checkout Shield\u003C\u002Fstrong> stops fake checkout orders and card testing attacks — the kind that bypass your CAPTCHA.\u003C\u002Fp>\n\u003Cp>Card testing bots don’t fill out your checkout form. They hit your store’s checkout API directly, completely skipping any reCAPTCHA or hCaptcha you’ve set up. That’s why CAPTCHA alone doesn’t stop them.\u003C\u002Fp>\n\u003Cp>This plugin verifies that every checkout request comes from a real browser session. Bots that can’t prove they loaded your checkout page get blocked before WooCommerce processes the order.\u003C\u002Fp>\n\u003Ch4>Why Store Owners Choose This Plugin\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Catches what CAPTCHA misses\u003C\u002Fstrong> — blocks bots hitting your checkout API directly\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Works with any caching\u003C\u002Fstrong> — LiteSpeed, Cloudflare, WP Rocket, W3TC — no conflicts\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Zero configuration\u003C\u002Fstrong> — activate and you’re protected\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No external services\u003C\u002Fstrong> — everything runs on your server, no subscriptions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No performance impact\u003C\u002Fstrong> — validation adds microseconds, not seconds\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features (Free)\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Automatic bot blocking\u003C\u002Fstrong> — works the moment you activate, no setup needed\u003C\u002Fli>\n\u003Cli>\u003Cstrong>4 protection levels\u003C\u002Fstrong> — Learning, Permissive, Balanced, and Strict — choose how aggressive you want to be\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dashboard overview\u003C\u002Fstrong> — see blocked vs verified orders at a glance with a 7-day chart\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Order status tracking\u003C\u002Fstrong> — know which orders were flagged, passed, or blocked\u003C\u002Fli>\n\u003Cli>\u003Cstrong>IP whitelist\u003C\u002Fstrong> — let trusted addresses through, supports CIDR notation\u003C\u002Fli>\n\u003Cli>\u003Cstrong>API key authentication\u003C\u002Fstrong> — for headless and custom checkout setups\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Works with all checkout types\u003C\u002Fstrong> — classic, block-based, and all payment gateways\u003C\u002Fli>\n\u003Cli>\u003Cstrong>HPOS compatible\u003C\u002Fstrong> — works with High-Performance Order Storage\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce logging\u003C\u002Fstrong> — full integration with WooCommerce Status logs\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Pro Features\u003C\u002Fh4>\n\u003Cp>Take control with advanced tools:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Smart logging\u003C\u002Fstrong> — choose what gets logged: nothing, blocked attempts only, or everything with full details\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Recent blocks feed\u003C\u002Fstrong> — see the last 50 blocked attempts right on your dashboard, with email, payment method, and block reason\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Automatic CDN\u002Fproxy detection\u003C\u002Fstrong> — correctly identifies visitor IPs behind Cloudflare, Sucuri, or Akamai without manual configuration\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Stronger permissive mode\u003C\u002Fstrong> — adds referrer verification on top of session checks for tighter bot detection\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Checkout details in logs\u003C\u002Fstrong> — see exactly which email and payment method bots tried to use\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customer blocklist\u003C\u002Fstrong> — block repeat offenders by email, name, address, phone, IP, or postal code\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Order block metabox\u003C\u002Fstrong> — add customers to the blocklist directly from any order screen\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcarticy.com\u002Fplugins\u002Fcheckout-shield-for-woocommerce\u002F\" rel=\"nofollow ugc\">Learn more about Pro features\u003C\u002Fa>\u003C\u002Fp>\n","Stops fake checkout orders, card testing attacks, and spam bots that bypass CAPTCHA. Works instantly with all checkout types.",30,211,0,"2026-03-08T12:38:00.000Z","6.9.4","6.0","8.0",[19,20,21,22,23],"bot-protection","checkout","fraud","security","woocommerce","https:\u002F\u002Fcarticy.com\u002Fcheckout-shield","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcarticy-checkout-shield-for-woocommerce.1.1.0.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":11,"trust_score":32,"computed_at":33},2,94,"2026-04-03T21:09:14.545Z",[35,53,70,86,104],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":13,"downloaded":43,"rating":13,"num_ratings":13,"last_updated":44,"tested_up_to":15,"requires_at_least":16,"requires_php":45,"tags":46,"homepage":51,"download_link":52,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"checkout-origin-guard","Checkout Origin Guard","1.7.1","POTAR","https:\u002F\u002Fprofiles.wordpress.org\u002Fpotar\u002F","\u003Cp>\u003Cstrong>Checkout Origin Guard\u003C\u002Fstrong> protects your WooCommerce store from fake, fraudulent, or automated checkout attempts by identifying and blocking abusive origins before they clutter your order table or your logs.\u003C\u002Fp>\n\u003Cp>The plugin runs \u003Cstrong>client-origin heuristics\u003C\u002Fstrong>, \u003Cstrong>IP controls\u003C\u002Fstrong>, and \u003Cstrong>sequence analysis\u003C\u002Fstrong> to detect non-human traffic and suspicious behavior at checkout. It adds \u003Cstrong>Company Shield\u003C\u002Fstrong> for business and email sanity checks and an optional \u003Cstrong>AVS “U” signal handler\u003C\u002Fstrong> for gateways that report “Address not checked \u002F unavailable”.\u003C\u002Fp>\n\u003Cp>All controls live on a \u003Cstrong>single admin screen\u003C\u002Fstrong>; you can adjust sensitivity, manage allowlists and blocklists, and review traffic logs in one place.\u003C\u002Fp>\n\u003Ch3>Three layers of protection\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>Bot Block (traffic level)\u003C\u002Fstrong>\u003Cbr \u002F>\nDetects and throttles abusive requests before they become orders:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Analyzes user agents, referrers, and known bot signatures  \u003C\u002Fli>\n\u003Cli>Watches rapid-fire hits to checkout and wc-ajax endpoints  \u003C\u002Fli>\n\u003Cli>Supports monitor, soft, and hard blocking modes  \u003C\u002Fli>\n\u003Cli>Built-in allowlist for search engines, uptime monitors, and core WordPress services\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Company Shield (checkout level)\u003C\u002Fstrong>\u003Cbr \u002F>\nValidates business identity and email quality at checkout:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Flags suspicious or synthetic business names  \u003C\u002Fli>\n\u003Cli>Detects repeated syllables, odd vowel ratios, and gibberish patterns  \u003C\u002Fli>\n\u003Cli>Identifies disposable email domains and role-based accounts (admin, info, sales, etc.)  \u003C\u002Fli>\n\u003Cli>Can run in:\n\u003Cul>\n\u003Cli>\u003Cstrong>Monitor\u003C\u002Fstrong>; log and annotate orders  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Soft\u003C\u002Fstrong>; create the order and automatically place it on hold or pending  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Hard\u003C\u002Fstrong>; block checkout with a user-facing error message\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Payment AVS signals (post-payment; optional)\u003C\u002Fstrong>\u003Cbr \u002F>\nFor gateways that expose AVS results in order meta, Checkout Origin Guard can treat “AVS: U; unavailable \u002F not checked” as a \u003Cstrong>risk signal\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Does not change how your gateway authorizes or captures payments  \u003C\u002Fli>\n\u003Cli>Can be configured to:\n\u003Cul>\n\u003Cli>Ignore the signal  \u003C\u002Fli>\n\u003Cli>Add an order note only  \u003C\u002Fli>\n\u003Cli>Add an order note and bump a risk-score meta field  \u003C\u002Fli>\n\u003Cli>Put the order on hold for manual review  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Uses flexible pattern matching; can scan specific gateway meta keys or fall back to scanning all order meta for common “AVS: U” messages such as the PayPal string  \u003C\u002Fli>\n\u003Cli>Off by default; you opt in and choose the behavior\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>🛡️ \u003Cstrong>Bot Block\u003C\u002Fstrong>; Detects and blocks automated bots by analyzing user agents, referrers, and checkout behavior patterns.\u003C\u002Fli>\n\u003Cli>⚡ \u003Cstrong>Rapid Sequence Detection\u003C\u002Fstrong>; Monitors frequency and timing between checkout attempts to identify scripted attacks and card testing activity.\u003C\u002Fli>\n\u003Cli>🧠 \u003Cstrong>Company Shield\u003C\u002Fstrong>; Flags suspicious or AI-generated business names, email domains, and mixed-character spam entries at checkout.\u003C\u002Fli>\n\u003Cli>🌎 \u003Cstrong>Allowlist Controls\u003C\u002Fstrong>; Preserve access for search engines, uptime monitors, and essential WordPress and WooCommerce services.\u003C\u002Fli>\n\u003Cli>🔒 \u003Cstrong>Hard \u002F Soft \u002F Monitor Modes\u003C\u002Fstrong>; Choose between logging only, soft blocking, or full hard blocking.\u003C\u002Fli>\n\u003Cli>🧾 \u003Cstrong>AVS “U” Risk Signals (optional)\u003C\u002Fstrong>; Treat “Address not checked \u002F unavailable” as a post-payment risk signal; add notes, increase risk score, or hold the order.\u003C\u002Fli>\n\u003Cli>🗂️ \u003Cstrong>Log Viewer\u003C\u002Fstrong>; See activity including timestamps, IPs, user agents, paths, and detection outcomes.\u003C\u002Fli>\n\u003Cli>🧩 \u003Cstrong>One-Page Dashboard\u003C\u002Fstrong>; Configure settings, review logs, and manage allow\u002Fdeny lists from a single screen.\u003C\u002Fli>\n\u003Cli>🚫 \u003Cstrong>Manual Block \u002F Unblock\u003C\u002Fstrong>; Instantly remove or restore access for specific IPs with one click.\u003C\u002Fli>\n\u003Cli>💾 \u003Cstrong>CSV Export\u003C\u002Fstrong>; Download checkout-origin activity logs for security review or record keeping.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Why Online Shops Need it\u003C\u002Fh3>\n\u003Cp>WooCommerce checkouts are frequent targets for:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Card testing and BIN probing  \u003C\u002Fli>\n\u003Cli>Fake business registrations and spam accounts  \u003C\u002Fli>\n\u003Cli>Automated scripts hammering your checkout endpoints  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Checkout Origin Guard focuses on \u003Cstrong>checkout behavior and identity quality\u003C\u002Fstrong>, not just generic firewall rules. It helps you:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Reduce chargeback and fraud risk  \u003C\u002Fli>\n\u003Cli>Keep your order list clean and reviewable  \u003C\u002Fli>\n\u003Cli>Shorten the time spent cleaning up junk orders and bogus signups  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The plugin works alongside any existing firewall, CDN, or WAF; it does not rely on external APIs or subscriptions. All data stays on your server.\u003C\u002Fp>\n\u003Ch3>Use Cases\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Prevent card testing or order spam  \u003C\u002Fli>\n\u003Cli>Stop bots using nonsense or AI-generated company names  \u003C\u002Fli>\n\u003Cli>Detect rapid repeat checkout attempts from the same IP  \u003C\u002Fli>\n\u003Cli>Block suspicious POST requests that hit checkout endpoints  \u003C\u002Fli>\n\u003Cli>Add an extra layer of review for orders where the gateway reports “AVS unavailable \u002F not checked”  \u003C\u002Fli>\n\u003Cli>Maintain cleaner order history and logs for real customers\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by \u003Cstrong>Michael Winchester\u003C\u002Fstrong>\u003Cbr \u002F>\nFor documentation and updates, visit https:\u002F\u002Fmichaelwinchester.com\u003C\u002Fp>\n","One-page WooCommerce checkout hardening; bot blocking, rate\u002Fsequence checks, business\u002Femail heuristics, and optional AVS-based risk signals.",424,"2026-01-27T22:35:00.000Z","7.4",[19,47,48,49,50],"fraud-prevention","ip-blocker","spam","woocommerce-checkout-security","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcheckout-origin-guard.1.7.1.zip",{"slug":54,"name":55,"version":56,"author":57,"author_profile":58,"description":59,"short_description":60,"active_installs":61,"downloaded":62,"rating":13,"num_ratings":13,"last_updated":63,"tested_up_to":15,"requires_at_least":64,"requires_php":65,"tags":66,"homepage":68,"download_link":69,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"safercheckout-lite","SaferCheckout Lite – Fraud prevention for WooCommerce","1.0.9","nintechnet","https:\u002F\u002Fprofiles.wordpress.org\u002Fnintechnet\u002F","\u003Ch4>Safeguard Your WooCommerce Store.\u003C\u002Fh4>\n\u003Cp>SaferCheckout (Lite) is a powerful security plugin to protect your WooCommerce store from fraudulent activities. It offers several unique and advanced features as well as customizable rules to filter every order on your online store: email address, IP address, IP location, order, customer, payment method and many more.\u003C\u002Fp>\n\u003Cp>As usual with all our WordPress plugins, you can be sure of its robustness, reliability, secure code and its compliance with privacy laws such as the General Data Protection Regulation (GDPR) or the California Consumer Privacy Act (CCPA).\u003C\u002Fp>\n\u003Cp>Protecting your WooCommerce store has never been so easy!\u003C\u002Fp>\n\u003Ch4>Documentation\u003C\u002Fh4>\n\u003Cp>Online documentation: \u003Ca href=\"https:\u002F\u002Fblog.nintechnet.com\u002Fhow-to-secure-woocommerce-checkout-process-and-protect-it-against-attacks\u002F\" rel=\"nofollow ugc\">How to secure WooCommerce checkout process and protect it against attacks\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>High-Performance Order Storage (HPOS) compatibility.\u003C\u002Fli>\n\u003Cli>Block-based checkout compatibility.\u003C\u002Fli>\n\u003Cli>Lightweight plugin: No additional database tables created.\u003C\u002Fli>\n\u003Cli>Customizable fraud risk levels.\u003C\u002Fli>\n\u003Cli>Multiple whitelists: IP address (IPv4, IPv6, AS number), email address, payment method, repeat or recurring customers.\u003C\u002Fli>\n\u003Cli>Multiple blacklists: IP address (IPv4, IPv6, AS number), Reverse DNS (Pro version), email address, shipping & billing address, user & company name.\u003C\u002Fli>\n\u003Cli>Advanced detection (Pro version):  Email MX\u002FA\u002FAAAA records check, email domain registration check, IP address rDNS check, IP address DNSBL check.\u003C\u002Fli>\n\u003Cli>Geolocation.\u003C\u002Fli>\n\u003Cli>Rate limiting to protect against carding and velocity attacks (Pro version).\u003C\u002Fli>\n\u003Cli>Suspicious bot detection (Pro version).\u003C\u002Fli>\n\u003Cli>Configuration import & export (Pro version).\u003C\u002Fli>\n\u003Cli>Simulation mode.\u003C\u002Fli>\n\u003Cli>Caching (Pro version).\u003C\u002Fli>\n\u003Cli>GDPR compliant.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Need more security? Take the time to explore the Pro version: \u003Ca href=\"https:\u002F\u002Fnintechnet.com\u002Fsafercheckout\u002F\" rel=\"nofollow ugc\">SaferCheckout Pro\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Requirements for running SaferCheckout (Lite)\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WordPress 6.0.3 or above.\u003C\u002Fli>\n\u003Cli>PHP 8.1 or above.\u003C\u002Fli>\n\u003Cli>WooCommerce 7.0.0 or above\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Privacy Policy\u003C\u002Fh4>\n\u003Cp>SaferCheckout (Lite) doesn’t collect any private data from you or your visitors, and doesn’t use cookies either. You can install and use it on your website in compliance with privacy laws such as the General Data Protection Regulation (GDPR) or the California Consumer Privacy Act (CCPA).\u003C\u002Fp>\n","Fraud prevention for WooCommerce Stores.",10,1552,"2026-03-04T11:43:00.000Z","6.0.3","8.1",[20,21,67,22,23],"prevention","https:\u002F\u002Fnintechnet.com\u002Fsafercheckout\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsafercheckout-lite.1.0.9.zip",{"slug":71,"name":72,"version":73,"author":74,"author_profile":75,"description":76,"short_description":77,"active_installs":13,"downloaded":78,"rating":26,"num_ratings":31,"last_updated":79,"tested_up_to":15,"requires_at_least":80,"requires_php":45,"tags":81,"homepage":84,"download_link":85,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"ironphantom-antifraud","IronPhantom Antifraud","1.0.12","Fabrizio D.","https:\u002F\u002Fprofiles.wordpress.org\u002Fizioh1979\u002F","\u003Cp>IronPhantom Antifraud brings real-time fraud intelligence to WooCommerce.\u003C\u002Fp>\n\u003Cp>Powered by \u003Cstrong>MGFirewallAI\u003C\u002Fstrong>, the plugin analyzes checkout and login events using multiple security signals such as:\u003C\u002Fp>\n\u003Cp>• IP reputation analysis\u003Cbr \u002F>\n• known credential leaks and data breach intelligence\u003Cbr \u002F>\n• suspicious login or checkout patterns\u003C\u002Fp>\n\u003Cp>Each store connects to a personal \u003Cstrong>MGFirewallAI dashboard\u003C\u002Fstrong>, where merchants can review alerts, transactions and fraud risk indicators.\u003C\u002Fp>\n\u003Cp>IronPhantom does not block WooCommerce checkout and does not modify WordPress or WooCommerce core files.\u003Cbr \u002F>\nInstead, it provides \u003Cstrong>real-time fraud signals\u003C\u002Fstrong> that help merchants identify suspicious activity before it becomes a chargeback or account takeover.\u003C\u002Fp>\n\u003Cp>The plugin requires a \u003Cstrong>personal API key\u003C\u002Fstrong>, which can be automatically generated during the setup wizard.\u003C\u002Fp>\n\u003Cp>IronPhantom is designed with \u003Cstrong>privacy and data minimization in mind\u003C\u002Fstrong> and works only after explicit consent is enabled in the plugin settings.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cp>• \u003Cstrong>IP Risk Analysis\u003C\u002Fstrong> – identifies suspicious IP addresses during checkout or login activity.\u003C\u002Fp>\n\u003Cp>• \u003Cstrong>Data Breach Intelligence\u003C\u002Fstrong> – detects emails associated with known credential leaks and compromised databases.\u003C\u002Fp>\n\u003Cp>• \u003Cstrong>Real-Time Fraud Signals\u003C\u002Fstrong> – checkout and login events are analyzed instantly by the MGFirewallAI engine.\u003C\u002Fp>\n\u003Cp>• \u003Cstrong>Automatic API Key Generation\u003C\u002Fstrong> – the setup wizard can generate a personal API key and connect your store to MGFirewallAI.\u003C\u002Fp>\n\u003Cp>• \u003Cstrong>Merchant Dashboard\u003C\u002Fstrong> – each store connects to a personal dashboard where alerts and transactions can be monitored.\u003C\u002Fp>\n\u003Cp>• \u003Cstrong>GDPR-Friendly Design\u003C\u002Fstrong> – data is processed only after explicit consent and follows a data minimization approach.\u003C\u002Fp>\n\u003Cp>• \u003Cstrong>Safe WooCommerce Integration\u003C\u002Fstrong> – IronPhantom never modifies WooCommerce core files and does not interrupt checkout.\u003C\u002Fp>\n\u003Ch3>Easy install (recommended)\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Go to \u003Cstrong>Plugins \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Add New\u003C\u002Fstrong> in your WordPress admin panel.\u003C\u002Fli>\n\u003Cli>Search for \u003Cstrong>IronPhantom Antifraud\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Click \u003Cstrong>Install Now\u003C\u002Fstrong> and then \u003Cstrong>Activate\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>(WooCommerce must be active.)\u003C\u002Fp>\n\u003Ch3>Manual installation\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Download the plugin ZIP file.\u003C\u002Fli>\n\u003Cli>Go to \u003Cstrong>Plugins \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Add New \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Upload Plugin\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Upload the ZIP file and click \u003Cstrong>Install Now\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Activate the plugin.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Setup\u003C\u002Fh3>\n\u003Cp>After activation the \u003Cstrong>IronPhantom setup wizard\u003C\u002Fstrong> will start automatically.\u003C\u002Fp>\n\u003Cp>The wizard can generate a \u003Cstrong>personal API key\u003C\u002Fstrong> and connect your store to the MGFirewallAI security network.\u003C\u002Fp>\n\u003Cp>If you prefer manual configuration:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Navigate to\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>WooCommerce \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> IronPhantom Antifraud\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>Enable the \u003Cstrong>data sending consent\u003C\u002Fstrong> option.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Insert your \u003Cstrong>IronPhantom API key\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Save the settings.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Place a test order or login to verify that the antifraud analysis is active.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>IronPhantom connects your WooCommerce store to the \u003Cstrong>MGFirewallAI\u003C\u002Fstrong> platform to analyze fraud signals and help prevent chargebacks or account abuse.\u003C\u002Fp>\n\u003Cp>The plugin works \u003Cstrong>only after explicit consent is enabled\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>No data is transmitted automatically.\u003C\u002Fp>\n\u003Ch3>Data sent for analysis\u003C\u002Fh3>\n\u003Cp>• customer billing email (order only)\u003Cbr \u002F>\n• public IP address\u003Cbr \u002F>\n• order ID\u003Cbr \u002F>\n• order total\u003Cbr \u002F>\n• timestamp\u003Cbr \u002F>\n• login flow URL after authentication\u003Cbr \u002F>\n• browser metadata (user agent)\u003C\u002Fp>\n\u003Ch3>Data never sent\u003C\u002Fh3>\n\u003Cp>• passwords\u003Cbr \u002F>\n• credit card numbers\u003Cbr \u002F>\n• payment credentials\u003Cbr \u002F>\n• sensitive personal data\u003C\u002Fp>\n\u003Ch3>Endpoint used\u003C\u002Fh3>\n\u003Cp>POST https:\u002F\u002Fredflagai.tech\u002Fapi\u002Fpredict\u003C\u002Fp>\n\u003Ch3>Headers\u003C\u002Fh3>\n\u003Cp>Content-Type: application\u002Fjson\u003Cbr \u002F>\nx-api-key: \u003C\u002Fp>\n\u003Ch3>Data stored locally by the plugin\u003C\u002Fh3>\n\u003Cp>Order metadata\u003C\u002Fp>\n\u003Cp>ironphantom_tx_id\u003Cbr \u002F>\nironphantom_risk_level\u003Cbr \u002F>\nironphantom_motivi\u003Cbr \u002F>\nironphantom_sent\u003C\u002Fp>\n\u003Cp>User metadata\u003C\u002Fp>\n\u003Cp>ironphantom_appena_loggato\u003C\u002Fp>\n\u003Ch3>Uninstall\u003C\u002Fh3>\n\u003Cp>Deleting the plugin automatically removes:\u003C\u002Fp>\n\u003Cp>• plugin options\u003Cbr \u002F>\n• database settings\u003Cbr \u002F>\n• IronPhantom metadata stored on orders and users\u003C\u002Fp>\n\u003Cp>More information:\u003C\u002Fp>\n\u003Cp>Privacy Policy\u003Cbr \u002F>\nhttps:\u002F\u002Fredflagai.tech\u002Fprivacy-policy\u003C\u002Fp>\n\u003Cp>Terms of Use\u003Cbr \u002F>\nhttps:\u002F\u002Fredflagai.tech\u002Fterms\u003C\u002Fp>\n\u003Ch3>Troubleshooting\u003C\u002Fh3>\n\u003Cp>If IronPhantom cannot connect to the MGFirewallAI platform:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Enable \u003Cstrong>Diagnostic Logs\u003C\u002Fstrong> in\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>WooCommerce \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> IronPhantom Antifraud\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>Perform a \u003Cstrong>test order\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Navigate to\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>WooCommerce \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Status \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Logs\u003C\u002Fp>\n\u003Col>\n\u003Cli>Select the log file\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>ironphantom-antifraud\u003C\u002Fp>\n\u003Col>\n\u003Cli>Download the log and send it to:\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>security@redflagai.tech\u003C\u002Fp>\n\u003Cp>Common causes of connection issues:\u003C\u002Fp>\n\u003Cp>• API key not activated\u003Cbr \u002F>\n• hosting firewall blocking outbound requests\u003Cbr \u002F>\n• temporary server maintenance\u003C\u002Fp>\n","IronPhantom Antifraud brings real-time fraud intelligence to WooCommerce.",541,"2026-03-08T17:04:00.000Z","6.1",[82,20,83,22,23],"antifraud","fraud-detection","https:\u002F\u002Fredflagai.tech\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fironphantom-antifraud.1.0.12.zip",{"slug":87,"name":88,"version":89,"author":90,"author_profile":91,"description":92,"short_description":93,"active_installs":94,"downloaded":95,"rating":96,"num_ratings":31,"last_updated":97,"tested_up_to":15,"requires_at_least":98,"requires_php":99,"tags":100,"homepage":102,"download_link":103,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"anti-fake-orders-ip-blocker","Anti Fake Orders & IP Blocker","1.0.1","Shohanur Rahman Shohan","https:\u002F\u002Fprofiles.wordpress.org\u002Fshohanur007\u002F","\u003Cp>Anti Fake Orders & IP Blocker helps WooCommerce store owners prevent fraudulent orders by monitoring checkout behaviour patterns and automatically blocking suspicious activities.\u003C\u002Fp>\n\u003Cp>Fake orders can waste your time, increase processing costs, and damage your business reputation. This plugin provides powerful tools to identify and block these threats before they impact your business.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fproshohan.com\u002Fanti-fake-orders-ip-blocker\u002F\" rel=\"nofollow ugc\">Live Demo\u003C\u002Fa> \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fproshohan.com\u002F\" rel=\"nofollow ugc\">Need Help?\u003C\u002Fa>        \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdevelopershohan\" rel=\"nofollow ugc\">About Author\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Smart IP Blocking System\u003C\u002Fstrong>: Block specific IP addresses manually or let the system automatically detect and block suspicious ones based on behaviour patterns\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Email Domain Filtering\u003C\u002Fstrong>: Block orders from disposable email services and known suspicious domains\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User Account Security\u003C\u002Fstrong>: Block problematic users who repeatedly place fake orders\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Bot Detection Technology\u003C\u002Fstrong>: Identify automated checkout attempts using timing analysis to detect inhuman checkout speeds\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Intelligent Auto-Blocking\u003C\u002Fstrong>: Configure rules to automatically block IPs after multiple suspicious attempts\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comprehensive Logging System\u003C\u002Fstrong>: Track all blocked attempts with detailed information for security analysis\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Flexible Blocking Duration\u003C\u002Fstrong>: Set temporary blocks that automatically expire after your specified timeframe\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Real-World Applications\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Prevent Card Testing Fraud\u003C\u002Fstrong>: Stop criminals from testing stolen credit cards on your store\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reduce Chargeback Rates\u003C\u002Fstrong>: Block known fraudulent behaviour patterns before orders are placed\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Save Processing Time\u003C\u002Fstrong>: Eliminate hours wasted verifying and processing fake orders\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Protect Inventory Management\u003C\u002Fstrong>: Prevent inventory allocation to orders that will never complete\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Secure Checkout Process\u003C\u002Fstrong>: Maintain a smooth checkout for legitimate customers while blocking suspicious ones\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Technical Implementation\u003C\u002Fh3>\n\u003Cp>The plugin works behind the scenes during the WooCommerce checkout process:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>behaviour Analysis\u003C\u002Fstrong>: Monitors user interaction patterns during checkout\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Time-Based Detection\u003C\u002Fstrong>: Measures checkout completion time to identify automated bots\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Database Verification\u003C\u002Fstrong>: Checks IPs and emails against your custom blocklists and known suspicious patterns\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Configurable Actions\u003C\u002Fstrong>: Choose between blocking, flagging for review, or logging suspicious activity\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Developer-Friendly\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Clean, well-documented code\u003C\u002Fli>\n\u003Cli>Hooks and filters for customization\u003C\u002Fli>\n\u003Cli>Performance-optimized with minimal impact on checkout speed\u003C\u002Fli>\n\u003Cli>Compatible with major WooCommerce extensions\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage Instructions\u003C\u002Fh3>\n\u003Ch3>Basic Configuration\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>Set Detection Sensitivity\u003C\u002Fstrong>: Adjust the “Minimum Checkout Time” setting to determine how quickly a checkout can be completed before being flagged as suspicious.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Configure Blocking Rules\u003C\u002Fstrong>: Define how many suspicious attempts should trigger an automatic block.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Customize Block Message\u003C\u002Fstrong>: Set a custom message to display when a checkout is blocked.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Advanced Features\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>IP Whitelist\u003C\u002Fstrong>: Add trusted IP addresses that should never be blocked, useful for testing or for known legitimate customers who might trigger false positives.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Email Domain Filtering\u003C\u002Fstrong>: Block entire email domains known for fraudulent activity.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Temporary Blocking\u003C\u002Fstrong>: Set block durations to automatically expire after a set number of hours.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Manual Review System\u003C\u002Fstrong>: Flag suspicious orders for review instead of blocking them outright.\u003C\u002Fp>\n\u003Ch3>Integration with Other Security Measures\u003C\u002Fh3>\n\u003Cp>This plugin works well alongside other security plugins like Wordfence or Sucuri to provide comprehensive store protection.\u003C\u002Fp>\n","Protect your WooCommerce store from fake orders by blocking suspicious IPs, emails, and detecting bot checkout activity.",400,1265,60,"2026-02-11T20:07:00.000Z","5.0","7.2",[101,47,48,22,23],"fake-order","https:\u002F\u002Fproshohan.com\u002Fanti-fake-orders-ip-blocker\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fanti-fake-orders-ip-blocker.1.0.1.zip",{"slug":105,"name":106,"version":107,"author":108,"author_profile":109,"description":110,"short_description":111,"active_installs":112,"downloaded":113,"rating":26,"num_ratings":114,"last_updated":115,"tested_up_to":15,"requires_at_least":116,"requires_php":45,"tags":117,"homepage":121,"download_link":122,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"checkoutguard","CheckoutGuard","1.2.0","Coder Zone BD","https:\u002F\u002Fprofiles.wordpress.org\u002Fcoderzonebd\u002F","\u003Cp>CheckoutGuard is a WooCommerce plugin that helps store owners recover lost sales by tracking incomplete checkouts and providing tools for follow-up. It also includes fraud prevention, courier analytics, and an automatic success-ratio blocker to protect your store from high-risk orders.\u003C\u002Fp>\n\u003Cp>All data is stored locally in your WordPress database. No customer data leaves your server unless you explicitly use the Courier Analytics feature.\u003C\u002Fp>\n\u003Ch4>Incomplete Checkout Tracking\u003C\u002Fh4>\n\u003Cp>CheckoutGuard captures customer information and cart contents in real-time as shoppers fill in the checkout form, even if they never click “Place Order”. Data is collected via debounced AJAX calls (800ms delay) to avoid excessive requests. Tracked fields include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Billing name, email, phone, and full address\u003C\u002Fli>\n\u003Cli>Order comments\u003C\u002Fli>\n\u003Cli>Cart items (product name, quantity, line total) and cart total\u003C\u002Fli>\n\u003Cli>Customer IP address and WooCommerce session ID\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Once captured, each incomplete checkout appears in the \u003Cstrong>Incomplete Checkouts\u003C\u002Fstrong> list where you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>View full details\u003C\u002Fstrong> in a modal popup (customer info, cart items, timestamps)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Recover\u003C\u002Fstrong> the checkout by creating a real WooCommerce order with one click\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mark as Hold\u003C\u002Fstrong> for future follow-up, with an optional follow-up date (YYYY-MM-DD)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mark as Cancelled\u003C\u002Fstrong> if the checkout is no longer relevant\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Re-open\u003C\u002Fstrong> a cancelled checkout back to incomplete status\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Edit follow-up dates\u003C\u002Fstrong> on held checkouts\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Completed orders are automatically cleaned up: when a customer finishes checkout, their incomplete record is deleted.\u003C\u002Fp>\n\u003Ch4>Dashboard Overview\u003C\u002Fh4>\n\u003Cp>The main dashboard gives you a bird’s-eye view of your checkout performance with:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Pie chart\u003C\u002Fstrong> showing the distribution of incomplete, recovered, hold, and cancelled checkouts\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Count cards\u003C\u002Fstrong> for each status with clickable links to the detail pages\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Value cards\u003C\u002Fstrong> showing the total monetary value for incomplete, recovered, hold, and cancelled checkouts\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Date range filters\u003C\u002Fstrong>: Today, Last 7 Days, Last 30 Days, or a custom date range picker\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Dashboard Widget\u003C\u002Fstrong> – a compact summary widget on the main WP dashboard showing the same stats and chart\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Fraud Blocker\u003C\u002Fh4>\n\u003Cp>Prevent unwanted orders by maintaining blocklists for:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>IP Addresses\u003C\u002Fstrong> – block by customer IP\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Email Addresses\u003C\u002Fstrong> – block by billing email\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Phone Numbers\u003C\u002Fstrong> – block by billing phone\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>When a blocked customer attempts to checkout, WooCommerce displays an error message and the order is not processed. Each blocklist supports:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Adding items with an optional reason\u003C\u002Fli>\n\u003Cli>Searching\u002Ffiltering the list\u003C\u002Fli>\n\u003Cli>Deleting items\u003C\u002Fli>\n\u003Cli>Custom block message (configurable in Settings)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can also \u003Cstrong>block or unblock directly from a WooCommerce order page\u003C\u002Fstrong> using the “Fraud Blocker Actions” meta box in the order sidebar, which shows the customer’s IP, email, and phone with one-click Block\u002FUnblock buttons.\u003C\u002Fp>\n\u003Ch4>Success Ratio Blocker (Automatic)\u003C\u002Fh4>\n\u003Cp>This feature automatically blocks checkout attempts from customers with a poor delivery success history. It works by:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Checking the customer’s phone number against courier delivery data during checkout\u003C\u002Fli>\n\u003Cli>If their success ratio falls at or below the configured threshold, the order is blocked\u003C\u002Fli>\n\u003Cli>The blocked attempt is logged with full details (cart, ratio, threshold, IP)\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Configurable settings:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Block Threshold (%)\u003C\u002Fstrong> – orders are blocked if the success ratio is at or below this value (default: 20%)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Grace Period\u003C\u002Fstrong> – new customers are not blocked until they have more than this many total orders (default: 5)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Blocked Order Notice\u003C\u002Fstrong> – the message shown to the customer, supports \u003Ccode>{ratio}\u003C\u002Fcode> placeholder\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>All blocked attempts are logged in the \u003Cstrong>Blocked Orders Log\u003C\u002Fstrong> page where you can view details and delete log entries.\u003C\u002Fp>\n\u003Ch4>Courier Analytics\u003C\u002Fh4>\n\u003Cp>Check the delivery success and return ratio for any customer phone number across different courier services (Pathao, RedX, Steadfast). This feature provides:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Standalone Courier Analytics page\u003C\u002Fstrong> – enter a phone number and get a full breakdown\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce Order List column\u003C\u002Fstrong> – “Success Ratio” column added to the orders table showing a compact ratio badge per order\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Order Detail meta box\u003C\u002Fstrong> – “Customer Success Ratio” sidebar box on individual order pages with a “Check Full Ratio” button\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Live ratio check on checkout\u003C\u002Fstrong> – real-time feedback shown below the phone field as the customer types (triggers after 10+ digits)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Doughnut chart visualization\u003C\u002Fstrong> for the overall success rate\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Per-courier breakdown\u003C\u002Fstrong> by courier service\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Ratio data is cached on each order via post meta to avoid redundant API calls.\u003C\u002Fp>\n\u003Ch4>Order Status Manager\u003C\u002Fh4>\n\u003Cp>Create and manage custom WooCommerce order statuses from a dedicated admin page. This feature allows you to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>View status overview cards\u003C\u002Fstrong> showing live order counts for every status (default and custom)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Create custom statuses\u003C\u002Fstrong> with a label, color, description, and icon from a visual picker with 30+ order-management icons\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Edit any status\u003C\u002Fstrong> including default WooCommerce statuses (Pending, Processing, On Hold, etc.) — change labels, colors, and icons\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Delete any status\u003C\u002Fstrong> with automatic order migration — if orders exist on a status being deleted, you are prompted to choose a target status\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reset to defaults\u003C\u002Fstrong> from Settings to restore the original 7 WooCommerce statuses if any were accidentally deleted\u003C\u002Fli>\n\u003Cli>Custom statuses automatically appear in the WooCommerce order status dropdown\u003C\u002Fli>\n\u003Cli>Toggle the feature on\u002Foff from Settings > Module Toggles\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Checkout Status Management\u003C\u002Fh4>\n\u003Cp>Each incomplete checkout flows through a clear lifecycle:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Incomplete\u003C\u002Fstrong> – captured but not completed\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Recovered\u003C\u002Fstrong> – converted into a WooCommerce order\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Hold\u003C\u002Fstrong> – flagged for follow-up with an optional date\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cancelled\u003C\u002Fstrong> – dismissed by admin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Each status has its own dedicated list page with date range filters (Today, 7 Days, 30 Days, All Time, or Custom Range).\u003C\u002Fp>\n\u003Ch4>WooCommerce Integration\u003C\u002Fh4>\n\u003Cp>CheckoutGuard integrates deeply with WooCommerce:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Order list column\u003C\u002Fstrong> – adds “Success Ratio” column to both classic and HPOS order lists\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Order sidebar meta boxes\u003C\u002Fstrong> – “Customer Success Ratio” and “Fraud Blocker Actions” boxes on every order\u003C\u002Fli>\n\u003Cli>\u003Cstrong>HPOS compatible\u003C\u002Fstrong> – works with both classic post-based orders and High-Performance Order Storage\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Checkout hooks\u003C\u002Fstrong> – integrates at \u003Ccode>woocommerce_checkout_process\u003C\u002Fcode> for fraud blocking and \u003Ccode>woocommerce_thankyou\u003C\u002Fcode> for cleanup\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Admin Pages\u003C\u002Fh4>\n\u003Cp>CheckoutGuard adds the following pages under its own top-level menu:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>Dashboard\u003C\u002Fstrong> – overview with chart and stats\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Follow Up\u003C\u002Fstrong> – checkouts marked as hold, ordered by follow-up date\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Incomplete\u003C\u002Fstrong> – all incomplete checkouts\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Recovered\u003C\u002Fstrong> – checkouts that were converted to orders\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Blocked Orders\u003C\u002Fstrong> – log of automatically blocked checkout attempts\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cancelled\u003C\u002Fstrong> – dismissed checkouts\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Fraud Blocker\u003C\u002Fstrong> – manage IP, email, and phone blocklists\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Courier Analytics\u003C\u002Fstrong> – check delivery success ratios\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Order Statuses\u003C\u002Fstrong> – manage all WooCommerce order statuses with overview cards\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Settings\u003C\u002Fstrong> – configuration and account management\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Third-Party Services\u003C\u002Fh4>\n\u003Cp>This plugin connects to the following external services:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>CheckoutGuard Headquarters (coderzonebd.com)\u003C\u002Fstrong>\u003Cbr \u002F>\nUsed for license validation, usage tracking, and settings synchronization. The plugin sends your site domain and admin email during registration, and periodically syncs license status and usage counts.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Service URL: \u003Ca href=\"https:\u002F\u002Fcoderzonebd.com\" rel=\"nofollow ugc\">https:\u002F\u002Fcoderzonebd.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Privacy Policy: \u003Ca href=\"https:\u002F\u002Fcoderzonebd.com\u002Fprivacy-policy\" rel=\"nofollow ugc\">https:\u002F\u002Fcoderzonebd.com\u002Fprivacy-policy\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Terms of Service: \u003Ca href=\"https:\u002F\u002Fcoderzonebd.com\u002Fterms\" rel=\"nofollow ugc\">https:\u002F\u002Fcoderzonebd.com\u002Fterms\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Courier APIs (Pathao, RedX, Steadfast)\u003C\u002Fstrong>\u003Cbr \u002F>\nWhen the Courier Analytics feature is enabled, customer phone numbers are sent to third-party courier service APIs to retrieve delivery success statistics. This only occurs when explicitly triggered by an admin or during checkout (if the live ratio check is enabled).\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>CheckoutGuard stores personal data locally in your WordPress database. The following data is collected:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Customer Details:\u003C\u002Fstrong> First name, last name, email, phone, billing address (address 1, address 2, city, state, postcode, country)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Technical Information:\u003C\u002Fstrong> Customer IP address, WooCommerce session ID\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cart Information:\u003C\u002Fstrong> Product ID, name, quantity, line total for each item, and total cart value\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Tracking Status:\u003C\u002Fstrong> Checkout status (incomplete\u002Frecovered\u002Fhold\u002Fcancelled), follow-up dates, admin notes, recovered order ID\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Blocked Items:\u003C\u002Fstrong> IP addresses, email addresses, and phone numbers on the blocklists, with reason and the admin who added them\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Blocked Order Logs:\u003C\u002Fstrong> Phone number, email, cart details, cart value, success ratio, threshold at time of block, IP address, customer name, and timestamp\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This data is used exclusively within your WordPress admin area for checkout recovery and fraud prevention purposes.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Data is not transmitted to external servers\u003C\u002Fstrong> except in the following cases:\u003Cbr \u002F>\n* License validation and usage sync with the CheckoutGuard Headquarters API (coderzonebd.com)\u003Cbr \u002F>\n* Courier delivery ratio checks when the Courier Analytics feature is enabled (phone numbers are sent to courier APIs)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>GDPR Compliance:\u003C\u002Fstrong>\u003Cbr \u002F>\nCheckoutGuard supports the WordPress personal data export and erasure tools (Tools > Export Personal Data \u002F Erase Personal Data). When a valid request is made, all incomplete checkout records and blocklist entries associated with the requested email address will be included in exports or deleted upon erasure.\u003C\u002Fp>\n\u003Cp>Data retention is configurable in Settings (30 days, 90 days, 1 year, or indefinite). If the “Delete all data on uninstall” option is enabled, all plugin tables and options are permanently removed when the plugin is deleted.\u003C\u002Fp>\n\u003Cp>A suggested privacy policy text is automatically added to your site’s Privacy Policy page (Settings > Privacy) when the plugin is active.\u003C\u002Fp>\n","Track incomplete WooCommerce checkouts, recover lost sales, block fraudulent orders, analyze courier success rates, and manage order statuses.",80,858,1,"2026-03-13T18:31:00.000Z","5.8",[118,20,119,120,23],"abandoned-cart","fraud-blocker","order-status","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcheckoutguard\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcheckoutguard.1.2.0.zip",{"attackSurface":124,"codeSignals":232,"taintFlows":253,"riskAssessment":254,"analyzedAt":260},{"hooks":125,"ajaxHandlers":218,"restRoutes":229,"shortcodes":230,"cronEvents":231,"entryPointCount":31,"unprotectedCount":13},[126,132,135,140,145,149,155,159,161,165,168,173,177,181,185,188,193,199,204,209,214],{"type":127,"name":128,"callback":129,"file":130,"line":131},"action","before_woocommerce_init","closure","carticy-checkout-shield-for-woocommerce.php",71,{"type":127,"name":133,"callback":129,"file":130,"line":134},"admin_notices",130,{"type":127,"name":136,"callback":137,"priority":138,"file":130,"line":139},"plugins_loaded","carticy_checkout_shield_init",20,161,{"type":127,"name":141,"callback":142,"file":143,"line":144},"wp_dashboard_setup","add_dashboard_widget","src\\Admin\\DashboardWidget.php",54,{"type":127,"name":146,"callback":147,"file":143,"line":148},"admin_enqueue_scripts","enqueue_widget_styles",55,{"type":150,"name":151,"callback":152,"file":153,"line":154},"filter","manage_woocommerce_page_wc-orders_columns","add_column","src\\Admin\\OrdersColumn.php",51,{"type":127,"name":156,"callback":157,"priority":61,"file":153,"line":158},"manage_woocommerce_page_wc-orders_custom_column","render_column",52,{"type":150,"name":160,"callback":152,"file":153,"line":148},"manage_edit-shop_order_columns",{"type":127,"name":162,"callback":163,"priority":61,"file":153,"line":164},"manage_shop_order_posts_custom_column","render_legacy_column",56,{"type":127,"name":146,"callback":166,"file":153,"line":167},"enqueue_column_styles",59,{"type":150,"name":169,"callback":170,"file":171,"line":172},"woocommerce_get_sections_advanced","add_section","src\\Admin\\SettingsPage.php",39,{"type":150,"name":174,"callback":175,"priority":61,"file":171,"line":176},"woocommerce_get_settings_advanced","add_settings",40,{"type":127,"name":178,"callback":179,"file":171,"line":180},"woocommerce_admin_field_carticy_checkout_shield_api_keys","render_api_keys_field",46,{"type":127,"name":182,"callback":183,"file":171,"line":184},"woocommerce_update_options_advanced_checkout_shield","save_settings",47,{"type":127,"name":146,"callback":186,"file":171,"line":187},"enqueue_admin_assets",48,{"type":127,"name":189,"callback":190,"file":191,"line":192},"wp_enqueue_scripts","enqueue_checkout_scripts","src\\Frontend\\FrontendHandler.php",25,{"type":127,"name":194,"callback":195,"priority":196,"file":197,"line":198},"woocommerce_before_checkout_process","intercept_classic_checkout",5,"src\\Interceptors\\ClassicCheckoutInterceptor.php",76,{"type":150,"name":200,"callback":201,"priority":61,"file":202,"line":203},"rest_pre_dispatch","intercept_store_api","src\\Interceptors\\StoreApiInterceptor.php",77,{"type":127,"name":205,"callback":206,"file":207,"line":208},"after_uninstall","carticy_checkout_shield_uninstall_cleanup","src\\licensing.php",190,{"type":127,"name":210,"callback":211,"priority":61,"file":212,"line":213},"woocommerce_checkout_order_processed","save_attribution","src\\Services\\OrderAttributionService.php",66,{"type":127,"name":215,"callback":216,"priority":61,"file":212,"line":217},"woocommerce_store_api_checkout_order_processed","save_attribution_store_api",69,[219,225],{"action":220,"nopriv":221,"callback":222,"hasNonce":223,"hasCapCheck":223,"file":171,"line":224},"carticy_checkout_shield_generate_api_key",false,"ajax_generate_api_key",true,49,{"action":226,"nopriv":221,"callback":227,"hasNonce":223,"hasCapCheck":223,"file":171,"line":228},"carticy_checkout_shield_delete_api_key","ajax_delete_api_key",50,[],[],[],{"dangerousFunctions":233,"sqlUsage":234,"outputEscaping":243,"fileOperations":13,"externalRequests":13,"nonceChecks":31,"capabilityChecks":235,"bundledLibraries":248},[],{"prepared":235,"raw":31,"locations":236},4,[237,241],{"file":238,"line":239,"context":240},"src\\Core\\Database.php",90,"$wpdb->query() with variable interpolation",{"file":207,"line":242,"context":240},186,{"escaped":131,"rawEcho":114,"locations":244},[245],{"file":153,"line":246,"context":247},127,"raw output",[249],{"name":250,"version":251,"knownCves":252},"Freemius","1.0",[],[],{"summary":255,"deductions":256},"The \"carticy-checkout-shield-for-woocommerce\" plugin version 1.1.0 exhibits a generally strong security posture based on the provided static analysis.  The plugin demonstrates good adherence to security best practices, with a high percentage of properly escaped outputs, a significant portion of SQL queries utilizing prepared statements, and the presence of both nonce and capability checks.  The absence of file operations, external HTTP requests, and any recorded vulnerability history further contributes to its positive security profile.  The attack surface is minimal and appears to be well-protected by authentication checks.\n\nHowever, it is important to note that the analysis indicates 0 total taint flows. While this is a positive sign, it's crucial to remember that static analysis tools may not always uncover all potential vulnerabilities, especially those that depend on specific user input combinations or complex logic.  The bundled Freemius library at version 1.0, while not explicitly flagged as a vulnerability, could potentially be an outdated component if a newer, more secure version exists and contains relevant patches.  Overall, the plugin presents a low-risk profile, with the main area for potential improvement being an awareness of potential, albeit undetected, complex vulnerabilities and the review of bundled library versions for any known security advisories.",[257],{"reason":258,"points":259},"Bundled Freemius library outdated",3,"2026-03-16T22:23:02.733Z",{"wat":262,"direct":270},{"assetPaths":263,"generatorPatterns":265,"scriptPaths":266,"versionParams":268},[264],"\u002Fwp-content\u002Fplugins\u002Fcarticy-checkout-shield-for-woocommerce\u002Fassets\u002Fjs\u002Fcheckout-shield.js",[],[267],"carticy-checkout-shield-for-woocommerce\u002Fassets\u002Fjs\u002Fcheckout-shield.js",[269],"carticy-checkout-shield-for-woocommerce\u002Fassets\u002Fjs\u002Fcheckout-shield.js?ver=",{"cssClasses":271,"htmlComments":272,"htmlAttributes":273,"restEndpoints":275,"jsGlobals":276,"shortcodeOutput":278},[],[],[274],"data-carticy-checkout-shield-init",[],[277],"carticyCheckoutShieldConfig",[]]