[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fBb9nTbtrQKv7RwJHHLUXwnmWxAAkrgxF5lO-nRtPkh8":3,"$fBhi6r7m2Sq4SjA2aaUWMIt4bFFqeQNsUJQuzCaWpxMc":137,"$fYb8cBQWuqNlGL4z07R1246B-k6oj2faRmCbkkvXlsZI":142},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":21,"download_link":22,"security_score":23,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":26,"discovery_status":27,"vulnerabilities":28,"developer":29,"crawl_stats":25,"alternatives":35,"analysis":36,"fingerprints":117},"dfoxm-mugglepay-for-woocommerce","DFOXM MugglePay For WooCommerce","1.0.5","hoythan","https:\u002F\u002Fprofiles.wordpress.org\u002Fhoythan\u002F","\u003Cp>You will need to set up an account on \u003Ca href=\"https:\u002F\u002Fmerchants.mugglepay.com\u002Fuser\u002Fregister?ref=MP9237F1193789\" rel=\"nofollow ugc\">https:\u002F\u002Fmerchants.mugglepay.com\u002Fuser\u002Fregister?ref=MP9237F1193789\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Within the WordPress administration area, go to the WooCommerce > Settings > Payments page and you will see MugglePay in the table of payment gateways.\u003C\u002Fp>\n\u003Cp>Clicking the Manage button on the right hand side will take you into the settings page, where you can configure the plugin for your store.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note: If you are running version of WooCommerce older than 3.4.x your MugglePay tab will be underneath the WooCommerce > Settings > Checkout tab\u003C\u002Fstrong>\u003C\u002Fp>\n","You will need to set up an account on https:\u002F\u002Fmerchants.mugglepay.com\u002Fuser\u002Fregister?ref=MP9237F1193789.",10,1196,100,2,"2021-07-22T09:19:00.000Z","5.7.15","5.3","7.0",[20],"mugglepay-woocommerce-alipay-wechat-btc-digital-payment","https:\u002F\u002Fgithub.com\u002Fhoythan\u002FMugglePayForWooCommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdfoxm-mugglepay-for-woocommerce.zip",85,0,null,"2026-04-06T09:54:40.288Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":23,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},3,70,30,84,"2026-05-19T23:30:05.282Z",[],{"attackSurface":37,"codeSignals":94,"taintFlows":105,"riskAssessment":106,"analyzedAt":116},{"hooks":38,"ajaxHandlers":88,"restRoutes":89,"shortcodes":90,"cronEvents":91,"entryPointCount":24,"unprotectedCount":24},[39,45,50,55,59,63,66,70,74,78,82,86],{"type":40,"name":41,"callback":42,"file":43,"line":44},"action","woocommerce_api_wc_gateway_mpwp","check_response","class\\class-mpwp-gateway.php",117,{"type":46,"name":47,"callback":48,"priority":11,"file":43,"line":49},"filter","woocommerce_order_data_store_cpt_get_orders_query","custom_query_var",118,{"type":46,"name":51,"callback":52,"file":53,"line":54},"woocommerce_payment_gateways","mpwp_add_gateway_class","muggle-pay-for-wp.php",25,{"type":40,"name":56,"callback":57,"file":53,"line":58},"mpwp_check_orders","mpwp_wc_check_orders",27,{"type":40,"name":60,"callback":61,"file":53,"line":62},"woocommerce_admin_order_data_after_order_details","mpwp_order_meta_general",28,{"type":40,"name":64,"callback":61,"file":53,"line":65},"woocommerce_order_details_after_order_table",29,{"type":40,"name":67,"callback":68,"file":53,"line":69},"admin_print_footer_scripts","mpwp_admin_load_script",32,{"type":40,"name":71,"callback":72,"file":53,"line":73},"woocommerce_settings_start","mpwp_admin_load_style",33,{"type":46,"name":75,"callback":76,"priority":11,"file":53,"line":77},"woocommerce_available_payment_gateways","mpwp_filter_woocommerce_available_payment_gateways",35,{"type":40,"name":79,"callback":80,"file":53,"line":81},"plugins_loaded","mpwp_init",38,{"type":46,"name":83,"callback":84,"file":53,"line":85},"cron_schedules","mpwp_cron_schedules",69,{"type":40,"name":79,"callback":87,"file":53,"line":49},"mpwp_plugin_languages_init",[],[],[],[92],{"hook":56,"callback":56,"file":53,"line":93},74,{"dangerousFunctions":95,"sqlUsage":96,"outputEscaping":98,"fileOperations":99,"externalRequests":99,"nonceChecks":24,"capabilityChecks":24,"bundledLibraries":104},[],{"prepared":24,"raw":24,"locations":97},[],{"escaped":14,"rawEcho":99,"locations":100},1,[101],{"file":53,"line":102,"context":103},102,"raw output",[],[],{"summary":107,"deductions":108},"The static analysis of \"dfoxm-mugglepay-for-woocommerce\" v1.0.5 reveals a generally good security posture, with no identified critical security flaws in the analyzed code. The plugin demonstrates good practices by utilizing prepared statements for all SQL queries and appears to handle external HTTP requests and file operations with caution, as indicated by the lack of taint analysis findings.  The absence of known CVEs and a clean vulnerability history further contribute to a positive security outlook.\n\nHowever, there are a few areas that warrant attention. The complete lack of nonce checks and capability checks across all entry points is a significant concern. While the current attack surface appears small and has no explicitly unprotected entry points reported, the absence of these fundamental security mechanisms leaves the plugin vulnerable to CSRF attacks and unauthorized actions if any new entry points are introduced or if existing ones become accessible without proper authentication in the future.  Furthermore, the low percentage of properly escaped outputs (67%) suggests a potential for cross-site scripting (XSS) vulnerabilities in the unescaped portion of the output.",[109,111,113],{"reason":110,"points":11},"No nonce checks found",{"reason":112,"points":11},"No capability checks found",{"reason":114,"points":115},"Low percentage of properly escaped output",4,"2026-03-17T00:34:14.287Z",{"wat":118,"direct":126},{"assetPaths":119,"generatorPatterns":123,"scriptPaths":124,"versionParams":125},[120,121,122],"\u002Fwp-content\u002Fplugins\u002Fdfoxm-mugglepay-for-woocommerce\u002Fclass\u002Fclass-mugglepay-request.php","\u002Fwp-content\u002Fplugins\u002Fdfoxm-mugglepay-for-woocommerce\u002Fjs\u002Fmpwp-admin.js","\u002Fwp-content\u002Fplugins\u002Fdfoxm-mugglepay-for-woocommerce\u002Fcss\u002Fmpwp-admin.css",[],[],[],{"cssClasses":127,"htmlComments":129,"htmlAttributes":130,"restEndpoints":131,"jsGlobals":132,"shortcodeOutput":134},[128],"mpwp-custom-payment_gateway",[],[],[],[133],"jQuery",[135,136],"\u003Ch3>MugglePay Payment Voucher\u003C\u002Fh3>","\u003Cp>Transaction ID: %s\u003C\u002Fp>",{"error":138,"url":139,"statusCode":140,"statusMessage":141,"message":141},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fdfoxm-mugglepay-for-woocommerce\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":14,"versions":143},[144,152],{"version":145,"download_url":146,"svn_tag_url":147,"released_at":25,"has_diff":148,"diff_files_changed":149,"diff_lines":25,"trac_diff_url":150,"vulnerabilities":151,"is_current":148},"1.0.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdfoxm-mugglepay-for-woocommerce.1.0.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fdfoxm-mugglepay-for-woocommerce\u002Ftags\u002F1.0.2\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fdfoxm-mugglepay-for-woocommerce%2Ftags%2F1.0.1&new_path=%2Fdfoxm-mugglepay-for-woocommerce%2Ftags%2F1.0.2",[],{"version":153,"download_url":154,"svn_tag_url":155,"released_at":25,"has_diff":148,"diff_files_changed":156,"diff_lines":25,"trac_diff_url":25,"vulnerabilities":157,"is_current":148},"1.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdfoxm-mugglepay-for-woocommerce.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fdfoxm-mugglepay-for-woocommerce\u002Ftags\u002F1.0.1\u002F",[],[]]