Does Bitcoin payment for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Bitcoin payment for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, Bitcoin payment for WooCommerce 1.7.6 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Bitcoin payment for WooCommerce compatible with PHP 7.4+?

Bitcoin payment for WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Bitcoin payment for WooCommerce updated?

Bitcoin payment for WooCommerce was last updated on Apr 9, 2026. Frequent updates are generally a positive security signal.

What is Bitcoin payment for WooCommerce's security score?

Bitcoin payment for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Bitcoin payment for WooCommerce Security & Risk Analysis

wordpress.org/plugins/coinsnap-for-woocommerce

Accept Bitcoin payments with WooCommerce. All Bitcoin payments are transferred directly from your customer’s wallet into your Lightning wallet.

50 active installs v1.7.6 PHP 7.4+ WP 6.0+ Updated Apr 9, 2026

bitcoinlightningpayment-gatewaysatswoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Bitcoin payment for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Bitcoin payment for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The "coinsnap-for-woocommerce" plugin v1.7.4 exhibits a generally strong security posture based on the static analysis. The plugin effectively utilizes prepared statements for SQL queries and demonstrates a high percentage of properly escaped output, which are crucial for preventing common web vulnerabilities. The presence of nonce and capability checks on its entry points, including AJAX handlers, further indicates good security practices in place to authenticate and authorize user actions. The absence of known CVEs and a clean vulnerability history suggest a well-maintained and secure codebase over time.

However, a single instance of the `unserialize` function is a notable concern. While the static analysis does not reveal any exploitable taint flows leading to this function, the use of `unserialize` without careful sanitization of the input data it processes can lead to Remote Code Execution (RCE) vulnerabilities if an attacker can control the serialized data. The plugin also performs file operations and makes external HTTP requests, which, while not inherently insecure, represent potential vectors that require vigilant oversight. The limited attack surface and lack of immediately apparent exploitable weaknesses are positive signs, but the `unserialize` function warrants further investigation and potential mitigation.

Key Concerns

Use of unserialize function

Vulnerabilities

None known

Bitcoin payment for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Bitcoin payment for WooCommerce Release Timeline

v1.7.6Current

v1.7.5

v1.7.4

v1.7.3

v1.7.2

v1.7.1

v1.7.0

v1.6.5

v1.6.4

v1.6.3

v1.6.2

v1.6.1

v1.6.0

v1.5.4

v1.5.3

v1.5.2

v1.5.1

v1.5.0

v1.4.2

v1.4.1

Code Analysis

Analyzed Mar 16, 2026

Bitcoin payment for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

140 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$notice = unserialize($coinsnap_notice);library\Util\Notice.php:25

Output Escaping

96% escaped146 total outputs

Attack Surface

Bitcoin payment for WooCommerce Attack Surface

Entry Points4

Unprotected0

AJAX Handlers 4

authwp_ajax_coinsnap_connection_handlercoinsnap-for-woocommerce.php:59

authwp_ajax_btcpay_server_apiurl_handlercoinsnap-for-woocommerce.php:60

authwp_ajax_coinsnap_checkoutcoinsnap-for-woocommerce.php:101

noprivwp_ajax_coinsnap_checkoutcoinsnap-for-woocommerce.php:102

WordPress Hooks 28

actionwoocommerce_thankyou_coinsnapcoinsnap-for-woocommerce.php:50

actionadmin_enqueue_scriptscoinsnap-for-woocommerce.php:58

actionwoocommerce_admin_order_data_after_billing_addresscoinsnap-for-woocommerce.php:65

filtermanage_woocommerce_page_wc-orders_columnscoinsnap-for-woocommerce.php:68

actionmanage_woocommerce_page_wc-orders_custom_columncoinsnap-for-woocommerce.php:69

filtermanage_edit-shop_order_columnscoinsnap-for-woocommerce.php:75

actionmanage_shop_order_posts_custom_columncoinsnap-for-woocommerce.php:76

actionwoocommerce_admin_order_data_after_billing_addresscoinsnap-for-woocommerce.php:79

filterwoocommerce_get_settings_pagescoinsnap-for-woocommerce.php:87

filterwoocommerce_currenciescoinsnap-for-woocommerce.php:293

actionwoocommerce_blocks_payment_method_type_registrationcoinsnap-for-woocommerce.php:462

actioninitcoinsnap-for-woocommerce.php:484

filterrequestcoinsnap-for-woocommerce.php:509

actiontemplate_redirectcoinsnap-for-woocommerce.php:518

filterwoocommerce_payment_gatewayscoinsnap-for-woocommerce.php:602

actionplugins_loadedcoinsnap-for-woocommerce.php:603

actionbefore_woocommerce_initcoinsnap-for-woocommerce.php:606

actionwp_enqueue_scriptscoinsnap-for-woocommerce.php:613

actionwoocommerce_blocks_loadedcoinsnap-for-woocommerce.php:614

actionwoocommerce_admin_field_coinsnap_order_statesincludes\Admin\GlobalSettings.php:21

actionwoocommerce_admin_field_custom_markupincludes\Admin\GlobalSettings.php:22

actionadmin_noticesincludes\Admin\Notice.php:9

actionadmin_enqueue_scriptsincludes\Gateway\AbstractGateway.php:49

actionwp_enqueue_scriptsincludes\Gateway\AbstractGateway.php:50

actionwoocommerce_cart_calculate_feesincludes\Gateway\AbstractGateway.php:54

actionwoocommerce_api_coinsnapincludes\Gateway\DefaultGateway.php:22

filterwoocommerce_currenciesincludes\Helper\SatsMode.php:15

filterwoocommerce_currency_symbolincludes\Helper\SatsMode.php:16

Maintenance & Trust

Bitcoin payment for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 9, 2026

PHP min version7.4

Downloads5K

Community Trust

Rating100/100

Number of ratings1

Active installs50

Alternatives

Bitcoin payment for WooCommerce Alternatives

BTCPay Server – Accept Bitcoin payments in WooCommerce

btcpay-greenfield-for-woocommerce

100

BTCPay Server is a free and open-source bitcoin payment processor which allows you to receive payments in Bitcoin and altcoins directly, with no fees, …

1K No CVEs

Accept Bitcoin instantly via OpenNode

opennode-for-woocommerce

100

Start accepting Bitcoin instantly through Lightning Network today. Powered by OpenNode

400 No CVEs

Blink For WooCommerce

blink-for-woocommerce

A simple, fast and secure Bitcoin payment gateway for WooCommerce using Blink.

50 No CVEs

Bitcoin payment for GiveWP

coinsnap-for-givewp

100

Receive Bitcoin donations or Bitcoin contributions for your fundraisers. Easy setup, fast & simple transactions.

0 No CVEs

Bitcoin payment for Gravity Forms

coinsnap-for-gravity-forms

100

With this Bitcoin payment plugin for Gravity Forms you can now offer products, downloads, bookings or get donations in Bitcoin right in your forms!

0 No CVEs

Developer Profile

Bitcoin payment for WooCommerce Developer Profile

Coinsnap

14 plugins · 60 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Bitcoin payment for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/coinsnap-for-woocommerce/assets/css/coinsnap-backend-style.css/wp-content/plugins/coinsnap-for-woocommerce/assets/js/coinsnap-backend-script.js/wp-content/plugins/coinsnap-for-woocommerce/assets/js/coinsnap-connection.js/wp-content/plugins/coinsnap-for-woocommerce/assets/js/coinsnap-checkout.js/wp-content/plugins/coinsnap-for-woocommerce/assets/js/coinsnap-order-status.js/wp-content/plugins/coinsnap-for-woocommerce/assets/js/coinsnap-order-details.js

Script Paths

/wp-content/plugins/coinsnap-for-woocommerce/assets/js/coinsnap-connection.js/wp-content/plugins/coinsnap-for-woocommerce/assets/js/coinsnap-checkout.js/wp-content/plugins/coinsnap-for-woocommerce/assets/js/coinsnap-order-status.js/wp-content/plugins/coinsnap-for-woocommerce/assets/js/coinsnap-order-details.js

Version Parameters

coinsnap-for-woocommerce/assets/css/coinsnap-backend-style.css?ver=coinsnap-for-woocommerce/assets/js/coinsnap-backend-script.js?ver=coinsnap-for-woocommerce/assets/js/coinsnap-connection.js?ver=coinsnap-for-woocommerce/assets/js/coinsnap-checkout.js?ver=coinsnap-for-woocommerce/assets/js/coinsnap-order-status.js?ver=coinsnap-for-woocommerce/assets/js/coinsnap-order-details.js?ver=

HTML / DOM Fingerprints

CSS Classes

coinsnap-servicecoinsnap-text-dangercoinsnap-alertcoinsnap-api-connectioncoinsnap-api-key-fieldcoinsnap-server-url-fieldcoinsnap-api-host-fieldcoinsnap-button+6 more

HTML Comments

+3 more

Data Attributes

data-coinsnap-checkout-urldata-coinsnap-order-iddata-coinsnap-amountdata-coinsnap-currency

JS Globals

coinsnap_checkout_paramscoinsnap_order_status_paramscoinsnap_ajax_objectcoinsnap_wc_settings

REST Endpoints

/wp-json/coinsnap/v1/checkout/wp-json/coinsnap/v1/payment/status

Shortcode Output

[coinsnap_checkout][coinsnap_payment_details]

FAQ