Does Cashfree Quick Button have any unpatched vulnerabilities?

No. All known vulnerabilities in Cashfree Quick Button have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Cashfree Quick Button compatible with WordPress 5.6.17?

According to WordPress.org data, Cashfree Quick Button 2.0.0 has been tested up to WordPress 5.6.17. Check the plugin's changelog for the latest compatibility information.

How often is Cashfree Quick Button updated?

Cashfree Quick Button was last updated on May 26, 2021. Frequent updates are generally a positive security signal.

What is Cashfree Quick Button's security score?

Cashfree Quick Button has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Cashfree Quick Button Security & Risk Analysis

wordpress.org/plugins/cashfree-quick-button

Allows you to easily built payment buttons on your WordPress website.

100 active installs v2.0.0 PHP + WP 4.2+ Updated May 26, 2021

buttoncashfreepaymentssimplewp

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Cashfree Quick Button Safe to Use in 2026?

Generally Safe

Score 85/100

Cashfree Quick Button has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The plugin "cashfree-quick-button" v2.0.0 exhibits a mixed security posture. On the positive side, the absence of any recorded vulnerabilities (CVEs) and a clean taint analysis suggest a generally well-maintained codebase concerning known exploits and complex data flow issues. The plugin also demonstrates good practices by exclusively using prepared statements for its SQL queries and having a minimal attack surface with no unprotected entry points identified in the static analysis.

However, several concerns are raised by the static analysis. The plugin has a notable percentage (53%) of improperly escaped outputs, which could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is displayed without proper sanitization. Furthermore, the lack of nonce checks and capability checks across all identified entry points (AJAX handlers, shortcodes) is a significant weakness. This means that unauthorized users or even authenticated users with lower privileges could potentially trigger actions intended only for specific user roles or within a secure context.

While the vulnerability history is currently clear, this does not negate the risks identified in the static analysis. The lack of nonce and capability checks, combined with the significant amount of unescaped output, presents clear opportunities for exploitation. Therefore, while the plugin has strengths in its SQL handling and lack of historical vulnerabilities, the identified static analysis issues, particularly regarding output escaping and authorization checks, warrant careful attention and remediation.

Key Concerns

Significant unescaped output (47% properly escaped)
Missing nonce checks on entry points
Missing capability checks on entry points

Vulnerabilities

None known

Cashfree Quick Button Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Cashfree Quick Button Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

14 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

47% escaped30 total outputs

Attack Surface

Cashfree Quick Button Attack Surface

Entry Points2

Unprotected0

Shortcodes 2

[CFPB] cashfree-quick-button.php:75

[CFPB] trunk\cashfree-quick-button.php:75

WordPress Hooks 12

actionplugins_loadedcashfree-quick-button.php:17

actionwp_enqueue_scriptscashfree-quick-button.php:18

actionadmin_post_cashfree_checkout_formcashfree-quick-button.php:33

actionadmin_post_nopriv_cashfree_checkout_formcashfree-quick-button.php:35

actionadmin_menuincludes\settings.php:10

actionadmin_initincludes\settings.php:13

actionplugins_loadedtrunk\cashfree-quick-button.php:17

actionwp_enqueue_scriptstrunk\cashfree-quick-button.php:18

actionadmin_post_cashfree_checkout_formtrunk\cashfree-quick-button.php:33

actionadmin_post_nopriv_cashfree_checkout_formtrunk\cashfree-quick-button.php:35

actionadmin_menutrunk\includes\settings.php:10

actionadmin_inittrunk\includes\settings.php:13

Maintenance & Trust

Cashfree Quick Button Maintenance & Trust

Maintenance Signals

WordPress version tested5.6.17

Last updatedMay 26, 2021

PHP min version

Downloads4K

Community Trust

Rating0/100

Number of ratings0

Active installs100

Alternatives

Cashfree Quick Button Alternatives

WP Edit

wp-edit

Take complete control over the WordPress content editor.

40K 1 unpatched

Contact Form by BestWebSoft – Advanced WP Contact Form Builder for WordPress

contact-form-plugin

The most powerful and user-friendly WordPress contact form plugin. Create beautiful contact forms, widgets and pages using shortcodes.

30K 1 unpatched

Catch IDs

catch-ids

100

What this plugin does is to shows the IDs on admin section.

20K No CVEs

Catch Web Tools

catch-web-tools

100

A top-notch modular plugin that can greatly enhance the capabilities of a WordPress website with its powerful features.

10K 1 CVE

WP Sticky Button – Click to Chat

wa-sticky-button

Display the beautiful WhatsApp Sticky Button on the WordPress frontend.

10K 2 CVEs

Developer Profile

Cashfree Quick Button Developer Profile

Cashfree

2 plugins · 200 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Cashfree Quick Button

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/cashfree-quick-button/images/logo.png

HTML / DOM Fingerprints

CSS Classes

btnbtn-primary

Data Attributes

data-toggledata-target

Shortcode Output

[CFPB]

FAQ