WP-Safety

Coinsnap Bitcoin Donation Security & Risk Analysis

wordpress.org/plugins/coinsnap-bitcoin-donation

Let visitors donate Bitcoin anywhere on your WordPress site. Simple setup, optional shoutouts, and display messages beside or below the donation form

10 active installs v1.4.2 PHP + WP + Updated Mar 13, 2026
bitcoinbtcpaydonationlightningsats
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Coinsnap Bitcoin Donation Safe to Use in 2026?

Generally Safe

Score 100/100

Coinsnap Bitcoin Donation has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 22d ago
Risk Assessment

The 'coinsnap-bitcoin-donation' plugin v1.4.2 exhibits a generally strong security posture, indicated by the absence of known vulnerabilities and a high percentage of properly escaped outputs. The code also demonstrates good practices by using prepared statements exclusively for its SQL queries and implementing a reasonable number of nonce and capability checks. However, there are notable areas of concern within its attack surface. Specifically, the presence of unprotected AJAX handlers and REST API routes presents a clear avenue for potential exploitation if these endpoints are accessible and can be manipulated without proper authorization or validation. The lack of taint analysis data is unusual, but given the other positive indicators, it suggests that critical vulnerabilities involving unsanitized user input leading to dangerous functions or file operations might not be present.

Key Concerns

  • AJAX handler without authentication check
  • REST API route without permission callback
  • REST API route without permission callback
Vulnerabilities
None known

Coinsnap Bitcoin Donation Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Coinsnap Bitcoin Donation Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
4 prepared
Unescaped Output
33
416 escaped
Nonce Checks
8
Capability Checks
4
File Operations
2
External Requests
4
Bundled Libraries
0

SQL Query Safety

100% prepared4 total queries

Output Escaping

93% escaped449 total outputs
Attack Surface
3 unprotected

Coinsnap Bitcoin Donation Attack Surface

Entry Points14
Unprotected3

AJAX Handlers 5

authwp_ajax_coinsnap_bitcoin_donation_btcpay_apiurl_handlercoinsnap-bitcoin-donation.php:74
authwp_ajax_coinsnap_bitcoin_donation_connection_handlercoinsnap-bitcoin-donation.php:75
authwp_ajax_coinsnap_bitcoin_donation_amount_checkcoinsnap-bitcoin-donation.php:76
noprivwp_ajax_coinsnap_bitcoin_donation_amount_checkcoinsnap-bitcoin-donation.php:77
authwp_ajax_refresh_donationsincludes\class-coinsnap-bitcoin-donation-list.php:6

REST API Routes 3

GET/wp-json/coinsnap-bitcoin-donation/v1/check-payment-status/(?P<payment_id>[a-zA-Z0-9]+)includes\class-coinsnap-bitcoin-donation-webhooks.php:14
GET/wp-json/coinsnap-bitcoin-donation/v1/get-wh-secretincludes\class-coinsnap-bitcoin-donation-webhooks.php:30
GET/wp-json/coinsnap-bitcoin-donation/v1webhookincludes\class-coinsnap-bitcoin-donation-webhooks.php:79

Shortcodes 6

[multi_amount_donation_wide] includes\class-coinsnap-bitcoin-donation-shortcode-multi-amount-wide.php:10
[multi_amount_donation] includes\class-coinsnap-bitcoin-donation-shortcode-multi-amount.php:10
[coinsnap_bitcoin_donation_wide] includes\class-coinsnap-bitcoin-donation-shortcode-wide.php:10
[coinsnap_bitcoin_donation] includes\class-coinsnap-bitcoin-donation-shortcode.php:9
[shoutout_form] includes\class-coinsnap-bitcoin-donation-shoutouts-form.php:10
[shoutout_list] includes\class-coinsnap-bitcoin-donation-shoutouts-list.php:10
WordPress Hooks 23
actionwp_enqueue_scriptscoinsnap-bitcoin-donation.php:72
actionadmin_enqueue_scriptscoinsnap-bitcoin-donation.php:73
actioninitcoinsnap-bitcoin-donation.php:520
filterrequestcoinsnap-bitcoin-donation.php:526
actiontemplate_redirectcoinsnap-bitcoin-donation.php:548
actionadmin_initincludes\class-coinsnap-bitcoin-donation-forms.php:6
actioninitincludes\class-coinsnap-bitcoin-donation-public-donors.php:10
actioninitincludes\class-coinsnap-bitcoin-donation-public-donors.php:11
actionadd_meta_boxesincludes\class-coinsnap-bitcoin-donation-public-donors.php:12
actionsave_postincludes\class-coinsnap-bitcoin-donation-public-donors.php:13
filtermanage_bitcoin-pds_posts_columnsincludes\class-coinsnap-bitcoin-donation-public-donors.php:14
actionmanage_bitcoin-pds_posts_custom_columnincludes\class-coinsnap-bitcoin-donation-public-donors.php:15
actionadmin_menuincludes\class-coinsnap-bitcoin-donation-settings.php:20
actionadmin_initincludes\class-coinsnap-bitcoin-donation-settings.php:21
actioninitincludes\class-coinsnap-bitcoin-donation-shoutout-posts.php:10
actioninitincludes\class-coinsnap-bitcoin-donation-shoutout-posts.php:11
actionadd_meta_boxesincludes\class-coinsnap-bitcoin-donation-shoutout-posts.php:13
actionsave_postincludes\class-coinsnap-bitcoin-donation-shoutout-posts.php:15
filtermanage_bitcoin-shoutouts_posts_columnsincludes\class-coinsnap-bitcoin-donation-shoutout-posts.php:17
actionmanage_bitcoin-shoutouts_posts_custom_columnincludes\class-coinsnap-bitcoin-donation-shoutout-posts.php:18
actionrest_api_initincludes\class-coinsnap-bitcoin-donation-webhooks.php:7
actionrest_api_initincludes\class-coinsnap-bitcoin-donation-webhooks.php:8
actionrest_api_initincludes\class-coinsnap-bitcoin-donation-webhooks.php:9
Maintenance & Trust

Coinsnap Bitcoin Donation Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 13, 2026
PHP min version
Downloads739

Community Trust

Rating100/100
Number of ratings1
Active installs10
Alternatives

Coinsnap Bitcoin Donation Alternatives

Coinsnap Bitcoin Paywall

Coinsnap Bitcoin Paywall

coinsnap-paywall

A
100

Offer pay-per-text, -video/audio, -digital goods with a Coinsnap Bitcoin paywall. Buyers get instant access after sending Bitcoin/Sats to your wallet

0 No CVEs
BTCPay Server – Accept Bitcoin payments in WooCommerce

BTCPay Server – Accept Bitcoin payments in WooCommerce

btcpay-greenfield-for-woocommerce

A
100

BTCPay Server is a free and open-source bitcoin payment processor which allows you to receive payments in Bitcoin and altcoins directly, with no fees, &hellip;

1K No CVEs
Bitcoin Lightning Publisher for WordPress

Bitcoin Lightning Publisher for WordPress

bitcoin-lightning-publisher

A
91

Bitcoin Lightning Publisher is a Paywall, Donation and Value 4 Value plugin to accept instant Bitcoin payments directly to your favorit wallet.

100 1 CVE
Bitcoin payment for WooCommerce

Bitcoin payment for WooCommerce

coinsnap-for-woocommerce

A
100

Accept Bitcoin payments with WooCommerce. All Bitcoin payments are transferred directly from your customer’s wallet into your Lightning wallet.

50 No CVEs
BTCPay for GiveWP

BTCPay for GiveWP

btcpay-for-givewp

A
100

A BTCPay Server Bitcoin / Lightning Network (and other cryptocurrencies) payment gateway for GiveWP.

0 No CVEs
Developer Profile

Coinsnap Bitcoin Donation Developer Profile

Coinsnap

13 plugins · 60 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Coinsnap Bitcoin Donation

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/coinsnap-bitcoin-donation/assets/css/coinsnap-bitcoin-donation.css/wp-content/plugins/coinsnap-bitcoin-donation/assets/js/coinsnap-bitcoin-donation.js
Script Paths
/wp-content/plugins/coinsnap-bitcoin-donation/assets/js/coinsnap-bitcoin-donation.js
Version Parameters
coinsnap-bitcoin-donation/assets/css/coinsnap-bitcoin-donation.css?ver=coinsnap-bitcoin-donation/assets/js/coinsnap-bitcoin-donation.js?ver=

HTML / DOM Fingerprints

CSS Classes
coinsnap-donation-formcoinsnap-donation-buttoncoinsnap-bitcoin-donation-widget
HTML Comments
<!-- Coinsnap Bitcoin Donation Form --><!-- Coinsnap Bitcoin Donation Button -->
Data Attributes
data-coinsnap-api-urldata-coinsnap-api-keydata-coinsnap-store-id
JS Globals
coinsnapBitcoinDonationAjaxcoinsnapBitcoinDonationSettings
REST Endpoints
/wp-json/coinsnap-bitcoin-donation/v1/btcpayApiUrlHandler/wp-json/coinsnap-bitcoin-donation/v1/coinsnapConnectionHandler/wp-json/coinsnap-bitcoin-donation/v1/coinsnapAmountCheck
Shortcode Output
[coinsnap_bitcoin_donation][coinsnap_bitcoin_donation_wide][coinsnap_bitcoin_donation_multi_amount][coinsnap_bitcoin_donation_multi_amount_wide]
FAQ

Frequently Asked Questions about Coinsnap Bitcoin Donation