Crowdfunding WePay oAuth 2.0 by Astoundify Security & Risk Analysis
wordpress.org/plugins/edd-wepay-oauth2Add WePay oAuth2 support for Easy Digital Downloads WePay and Crowdfunding by Astoundify.
Is Crowdfunding WePay oAuth 2.0 by Astoundify Safe to Use in 2026?
Generally Safe
Score 85/100Crowdfunding WePay oAuth 2.0 by Astoundify has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "edd-wepay-oauth2" plugin v0.4 exhibits a generally strong security posture based on the provided static analysis. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the plugin's attack surface. Furthermore, the code demonstrates good practices by exclusively using prepared statements for SQL queries and having a high percentage of properly escaped output. The complete lack of dangerous functions, file operations, and external HTTP requests is also a positive indicator. The taint analysis revealing no unsanitized flows further strengthens this assessment.
However, a notable area for improvement lies in the lack of nonce checks. While capability checks are present, the absence of nonce checks on entry points (even though there are currently none identified) could leave the plugin vulnerable if new entry points are introduced in future versions without proper nonces. The plugin's vulnerability history being entirely clean is a very positive sign, suggesting a commitment to security or a lack of historically exploitable flaws. Overall, this plugin appears to be built with security in mind, with the primary area of concern being the potential future implications of absent nonce checks.
Key Concerns
- No nonce checks implemented
Crowdfunding WePay oAuth 2.0 by Astoundify Security Vulnerabilities
Crowdfunding WePay oAuth 2.0 by Astoundify Code Analysis
Output Escaping
Data Flow Analysis
Crowdfunding WePay oAuth 2.0 by Astoundify Attack Surface
WordPress Hooks 15
Maintenance & Trust
Crowdfunding WePay oAuth 2.0 by Astoundify Maintenance & Trust
Maintenance Signals
Community Trust
Crowdfunding WePay oAuth 2.0 by Astoundify Alternatives
Payment Gateway using Mollie for Easy Digital Downloads
edd-mollie-gateway
This is a gateway extension for Easy Digital Downloads plugin to accept Mollie payments in your store (iDEAL, SOFORT, Bancontact, Credit Card etc.)
Bank Saman EDD gateway
bank-saman-edd-gateway
Add Bank Saman payment gateway to easy digital downloads transactions
Bank Melli EDD gateway
bank-melli-edd-gateway
This plugin will add Bank Melli Iran and Shaparak Electronic Network gateway to EDD plugin.
Easy Digital Downloads – Paddle Gateway
wpfront-paddle-gateway
Integrate your WordPress site or Easy Digital Downloads store with Paddle payment gateway.
WpYar EDD Saman Bank Gateway
wpyar-edd-saman-bank-gateway
A plugin for adding Saman Bank payment gateway to plugin edd
Crowdfunding WePay oAuth 2.0 by Astoundify Developer Profile
3 plugins · 30 total installs
How We Detect Crowdfunding WePay oAuth 2.0 by Astoundify
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/edd-wepay-oauth2/css/style.css/wp-content/plugins/edd-wepay-oauth2/js/main.js/wp-content/plugins/edd-wepay-oauth2/js/main.jsedd-wepay-oauth2/css/style.css?ver=edd-wepay-oauth2/js/main.js?ver=HTML / DOM Fingerprints
wepay-oauth-create-account<a href="" class="button wepay-oauth-create-account">Create an account on WePay →</a>