Does Checkout Gateway for IRIS have any unpatched vulnerabilities?

No. All known vulnerabilities in Checkout Gateway for IRIS have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Checkout Gateway for IRIS compatible with WordPress 6.9.4?

According to WordPress.org data, Checkout Gateway for IRIS 1.5 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Checkout Gateway for IRIS compatible with PHP 7.2+?

Checkout Gateway for IRIS requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Checkout Gateway for IRIS updated?

Checkout Gateway for IRIS was last updated on Feb 24, 2026. Frequent updates are generally a positive security signal.

What is Checkout Gateway for IRIS's security score?

Checkout Gateway for IRIS has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Checkout Gateway for IRIS Security & Risk Analysis

wordpress.org/plugins/checkout-gateway-iris

Unofficial IRIS checkout payment gateway for WooCommerce. Accept payments via IRIS and manage order statuses efficiently.

1K active installs v1.5 PHP 7.2+ WP 5.2+ Updated Feb 24, 2026

bank-transfergreek-paymentsirisqr-codewoocommerce

A · Safe

CVEs total1

Unpatched0

Last CVEFeb 5, 2026

Download

Safety Verdict

Is Checkout Gateway for IRIS Safe to Use in 2026?

Generally Safe

Score 99/100

Checkout Gateway for IRIS has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Feb 5, 2026Updated 1mo ago

Risk Assessment

The "checkout-gateway-iris" plugin v1.5 exhibits a mixed security posture. The static analysis reveals an exceptionally small attack surface with zero identified entry points that are unprotected. Furthermore, the code demonstrates good practices regarding SQL queries, with 100% using prepared statements, and a high percentage of output escaping. However, the absence of any detected nonce checks or capability checks across all entry points is a significant concern, suggesting a potential lack of robust authorization mechanisms, which is further substantiated by the vulnerability history. The plugin has a history of "Missing Authorization" vulnerabilities. While there are no currently unpatched CVEs, and the last vulnerability was in the future, suggesting it might be addressed or hypothetical, the presence of a medium severity vulnerability in the past is a red flag. The overall security is weakened by the reliance on the absence of entry points for security rather than explicit checks within them.

Key Concerns

Missing nonce checks
Missing capability checks
Past medium severity vulnerability

Vulnerabilities

Checkout Gateway for IRIS Security Vulnerabilities

CVEs by Year

1 CVE in 2026

2026

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-68542medium · 5.3Missing Authorization

Checkout Gateway for IRIS <= 1.3 - Missing Authorization

Feb 5, 2026 Patched in 1.4 (5d)

Code Analysis

Analyzed Mar 16, 2026

Checkout Gateway for IRIS Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

15 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

88% escaped17 total outputs

Attack Surface

Checkout Gateway for IRIS Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 9

actionadmin_menuiris-payments.php:22

actionplugins_loadediris-payments.php:47

filterwoocommerce_payment_gatewaysiris-payments.php:53

actionwoocommerce_checkout_order_processediris-payments.php:110

actionwp_enqueue_scriptsiris-payments.php:276

actionwoocommerce_email_order_detailsiris-payments.php:290

actionbefore_woocommerce_initiris-payments.php:341

actionwoocommerce_blocks_loadediris-payments.php:357

actionwoocommerce_blocks_payment_method_type_registrationiris-payments.php:445

Maintenance & Trust

Checkout Gateway for IRIS Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 24, 2026

PHP min version7.2

Downloads55K

Community Trust

Rating100/100

Number of ratings2

Active installs1K

Alternatives

Checkout Gateway for IRIS Alternatives

Czech QR Payments for WooCommerce

czech-qr-code-bank-transfer-payment-for-woocommerce

100

Payment method for fast QR code bank transfer payment from Czech banking mobile apps

100 No CVEs

scan2payme

100

Plugin for displaying payment QR-Codes in WooCommerce order pages.

0 No CVEs

Kaya QR Code Generator

kaya-qr-code-generator

Generate QR Code through Widgets and Shortcodes, without any dependencies.

20K 2 CVEs

UPI QR Code Payment Gateway for WooCommerce

upi-qr-code-payment-for-woocommerce

This Plugin enables WooCommerce shop owners to get direct and instant payments through UPI apps like BHIM, GooglePay, PhonePe or any banking UPI app.

20K 1 CVE

Bangladeshi Payment Gateways – Make Payment Using QR Code

bangladeshi-payment-gateways

100

Bangladeshi Payment Gateways for WooCommerce.

5K 1 CVE

Developer Profile

Checkout Gateway for IRIS Developer Profile

vgdevsolutions

2 plugins · 1K total installs

100

trust score

Avg Security Score

100/100

Avg Patch Time

5 days

View full developer profile

Detection Fingerprints

How We Detect Checkout Gateway for IRIS

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/checkout-gateway-iris/assets/payment-logo.png

HTML / DOM Fingerprints

CSS Classes

iris-payments-wrapper

HTML Comments

Data Attributes

data-gateway-id="iris_payments"

Shortcode Output

<p>Χρησιμοποιήστε το ID Παραγγελίας ως αιτιολογία πληρωμής.</p>

FAQ