[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fsJ9PSQfy_rXKgCgmjrcCHt5AsyME5P57MNFe6iMPwAU":3},{"slug":4,"name":5,"version":6,"author":5,"author_profile":7,"description":8,"short_description":9,"active_installs":10,"downloaded":11,"rating":12,"num_ratings":12,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":12,"unpatched_count":12,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":34,"analysis":116,"fingerprints":212},"freedompay-payment-gateway","FreedomPay","1.10.0","https:\u002F\u002Fprofiles.wordpress.org\u002Ffreedompay\u002F","\u003Cp>It’s pretty easy to receive payments with FreedomPay Payments Provider.\u003C\u002Fp>\n\u003Ch3>International payment service for online business\u003C\u002Fh3>\n\u003Cp>Increase your profits with high-conversion payments. We will set up a convenient payment acceptance for your customers, and you can focus on developing your business!\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin connects to an API to create payment requests. It’s necessary for the payment system to work.\u003C\u002Fp>\n\u003Cp>It sends the payment request information, such as the cart data, payment amount, user’s IP every time the payment is created\u003Cbr \u002F>\n(when user clicks on “Pay” button), if the user’s IP is not available, sends empty string.\u003Cbr \u002F>\nThis service is provided by “Freedom Pay LLP”: \u003Ca href=\"https:\u002F\u002Ffreedompay.kz\u002Fen\u002Frules\" rel=\"nofollow ugc\">terms of use\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Ffreedompay.kz\u002Fen\u002Fprivacy_policy\" rel=\"nofollow ugc\">privacy policy\u003C\u002Fa>.\u003C\u002Fp>\n","It's pretty easy to receive payments with FreedomPay Payments Provider.",90,2873,0,"2025-03-12T04:44:00.000Z","6.7.5","5.0","7.4",[18,19,20,21],"checkout","ecommerce","payments","woocommerce","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffreedompay-payment-gateway.1.10.0.zip",92,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":5,"profile_url":7,"plugin_count":30,"total_installs":10,"avg_security_score":24,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"freedompay",1,30,88,"2026-04-04T15:37:05.829Z",[35,52,69,87,104],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":12,"num_ratings":12,"last_updated":45,"tested_up_to":14,"requires_at_least":46,"requires_php":47,"tags":48,"homepage":50,"download_link":51,"security_score":24,"vuln_count":12,"unpatched_count":12,"last_vuln_date":25,"fetched_at":26},"wc-paypay-gateway","Payment Gateway PayPay for WooCommerce","0.8","Hiroaki Miyashita","https:\u002F\u002Fprofiles.wordpress.org\u002Fhiroaki-miyashita\u002F","\u003Cp>The Payment Gateway PayPay for WooCommerce plugin adds the functionality to take PayPay payments on your store of WooCommerce.\u003C\u002Fp>\n\u003Ch4>About PayPay\u003C\u002Fh4>\n\u003Cp>PayPay is barcode based payment services in Japan. In order to start PayPay payments, you need to create a PayPay developer account.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdeveloper.paypay.ne.jp\u002F\" rel=\"nofollow ugc\">PayPay for Developers\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>In order to make the mode Real, you have to purchase the authentication key at the following site.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.wpmarket.jp\u002F\" rel=\"nofollow ugc\">WordPress Market\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Known Issues \u002F Bugs\u003C\u002Fh3>\n\u003Cp>Nothing.\u003C\u002Fp>\n\u003Ch3>Uninstall\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Deactivate the plugin\u003C\u002Fli>\n\u003Cli>That’s it! 🙂\u003C\u002Fli>\n\u003C\u002Fol>\n","This plugin adds the functionality to take PayPay payments on your store of WooCommerce.",100,4227,"2024-12-03T00:30:00.000Z","4.4","7.0",[18,19,20,49,21],"paypay","https:\u002F\u002Fwww.wpmarket.jp\u002Fproduct\u002Fwc_paypay_gateway\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-paypay-gateway.0.8.zip",{"slug":53,"name":54,"version":55,"author":56,"author_profile":57,"description":58,"short_description":59,"active_installs":60,"downloaded":61,"rating":12,"num_ratings":12,"last_updated":62,"tested_up_to":63,"requires_at_least":64,"requires_php":16,"tags":65,"homepage":67,"download_link":68,"security_score":43,"vuln_count":12,"unpatched_count":12,"last_vuln_date":25,"fetched_at":26},"paypercut-payments-for-woocommerce","Paypercut Payments for WooCommerce","0.1.4","Paypercut Dev","https:\u002F\u002Fprofiles.wordpress.org\u002Fpaypercutdev\u002F","\u003Cp>Make it easy for customers to pay — and easier for you to manage — with Paypercut for WooCommerce.\u003Cbr \u002F>\nThis plugin brings fast, secure, and intuitive checkout to your online shop,\u003Cbr \u002F>\nhelping you boost conversions and streamline operations.\u003C\u002Fp>\n\u003Cp>Paypercut enables a range of trusted payment methods while giving you a single,\u003Cbr \u002F>\nunified view of all your transactions — whether online or in person.\u003C\u002Fp>\n\u003Cp>Whether you’re selling physical products or digital downloads, Paypercut for WooCommerce\u003Cbr \u002F>\nmakes taking payments effortless — so you can focus on growing your online business.\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin connects to the Paypercut Payments API (api.paypercut.io) to process payments and manage checkout sessions for your WooCommerce store. This connection is required for the plugin to function, as all payment processing is handled through Paypercut’s secure infrastructure.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What the service is used for:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Creating and managing payment checkout sessions\u003Cbr \u002F>\n* Processing customer payments securely\u003Cbr \u002F>\n* Verifying payment status and updating order status\u003Cbr \u002F>\n* Managing refunds for completed orders\u003Cbr \u002F>\n* Setting up and managing webhooks for payment notifications\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What data is sent and when:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The plugin sends data to Paypercut’s API (https:\u002F\u002Fapi.paypercut.io\u002F) in the following scenarios:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>During checkout session creation\u003C\u002Fstrong> (when a customer initiates checkout):\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Store information (store name, store URL, WooCommerce order identifiers)\u003C\u002Fli>\n\u003Cli>Order details (order total, currency, line items, shipping costs, tax amounts)\u003C\u002Fli>\n\u003Cli>Customer billing information (name, billing address, email address)\u003C\u002Fli>\n\u003Cli>Customer shipping information (if applicable: shipping name and address)\u003C\u002Fli>\n\u003Cli>Technical metadata (session identifiers, return URLs, webhook URLs)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>During payment verification\u003C\u002Fstrong> (when verifying payment status):\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Checkout session identifiers\u003C\u002Fli>\n\u003Cli>Order identifiers\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>During refund processing\u003C\u002Fstrong> (when a store administrator issues a refund):\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Payment intent identifiers\u003C\u002Fli>\n\u003Cli>Refund amount and currency\u003C\u002Fli>\n\u003Cli>Refund reason (if provided)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>During webhook setup\u003C\u002Fstrong> (when configuring the plugin):\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Webhook URL for payment notifications\u003C\u002Fli>\n\u003Cli>Webhook event types to subscribe to\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>During API credential validation\u003C\u002Fstrong> (when testing connection in settings):\u003C\u002Fp>\n\u003Cul>\n\u003Cli>API credentials for authentication purposes only\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Important:\u003C\u002Fstrong> Payment card data (credit card numbers, CVV codes, etc.) is collected and processed directly by Paypercut via their hosted checkout interface. This sensitive payment information never passes through or gets stored by this plugin or your WordPress site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Service provider:\u003C\u002Fstrong>\u003Cbr \u002F>\nThis service is provided by Paypercut. For more information about how Paypercut handles data, please refer to:\u003Cbr \u002F>\n* Privacy policy: https:\u002F\u002Fpaypercut.com\u002Fprivacy-policy\u003C\u002Fp>\n\u003Ch3>Development\u003C\u002Fh3>\n\u003Cp>This plugin uses npm and @wordpress\u002Fscripts (which uses webpack) to build the Blocks checkout integration.\u003C\u002Fp>\n\u003Ch3>Source Code Location\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>IMPORTANT:\u003C\u002Fstrong> The human-readable source code for all compiled JavaScript is included in this plugin.\u003C\u002Fp>\n\u003Cp>The minified\u002Fcompiled file \u003Ccode>assets\u002Fbuild\u002Findex.js\u003C\u002Fcode> is generated from the following source file:\u003Cbr \u002F>\n* \u003Cstrong>Source file:\u003C\u002Fstrong> \u003Ccode>assets\u002Fblocks\u002Findex.js\u003C\u002Fcode> – This is the human-readable, unminified source code for the Blocks checkout integration\u003C\u002Fp>\n\u003Cp>All source code is included in the published plugin. The source file (\u003Ccode>assets\u002Fblocks\u002Findex.js\u003C\u002Fcode>) contains the original, readable JavaScript code with ES6 modules, comments, and proper formatting. The compiled version (\u003Ccode>assets\u002Fbuild\u002Findex.js\u003C\u002Fcode>) is generated from this source using the build process described below.\u003C\u002Fp>\n\u003Ch3>Building assets\u003C\u002Fh3>\n\u003Cp>To rebuild the compiled assets from source:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>Install dependencies:\u003Cbr \u002F>\n   \u003Ccode>bash\u003Cbr \u002F>\nnpm install\u003C\u002Fcode>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Build production assets:\u003Cbr \u002F>\n   \u003Ccode>bash\u003Cbr \u002F>\nnpm run build\u003C\u002Fcode>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>This will compile \u003Ccode>assets\u002Fblocks\u002Findex.js\u003C\u002Fcode> into the minified \u003Ccode>assets\u002Fbuild\u002Findex.js\u003C\u002Fcode> using @wordpress\u002Fscripts.\u003C\u002Fp>\n","Paypercut Payments enables WooCommerce merchants to accept online payments using Paypercut's checkout experience.",20,249,"2026-03-14T18:18:00.000Z","6.9.4","6.6",[18,19,66,20,21],"payment-gateway","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpaypercut-payments","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpaypercut-payments-for-woocommerce.0.1.4.zip",{"slug":70,"name":71,"version":72,"author":73,"author_profile":74,"description":75,"short_description":76,"active_installs":60,"downloaded":77,"rating":78,"num_ratings":79,"last_updated":80,"tested_up_to":81,"requires_at_least":64,"requires_php":82,"tags":83,"homepage":85,"download_link":86,"security_score":43,"vuln_count":12,"unpatched_count":12,"last_vuln_date":25,"fetched_at":26},"precisionpay-payments-for-woocommerce","PrecisionPay Payments for WooCommerce","4.0.3","daveprecisionpay","https:\u002F\u002Fprofiles.wordpress.org\u002Fdaveprecisionpay\u002F","\u003Cp>PrecisionPay is \u003Cem>the\u003C\u002Fem> payment solution for the firearms industry. We are a staunch supporter of the 2nd Amendment and will never cancel you for exercising your constitutional rights. Download and install our plugin and then visit our website to complete your application. Soon after that, you’ll be able to process payments for guns and ammunition without having to pay the exorbitant fees associated with “high risk” e-commerce categories.\u003C\u002Fp>\n\u003Cp>This plugin uses Plaid (\u003Ca href=\"https:\u002F\u002Fplaid.com\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fplaid.com\u002F\u003C\u002Fa>) along with the PrecisionPay checkout portal to allow your customers to pay with PrecisionPay as a guest (using Plaid) or as a PrecisionPay user (if they already have an account at \u003Ca href=\"myprecisionpay.com\" rel=\"nofollow ugc\">myprecisionpay.com\u003C\u002Fa>). View the PrecisionPay privacy policy \u003Ca href=\"https:\u002F\u002Fwww.myprecisionpay.com\u002Fprivacy-policy\" rel=\"nofollow ugc\">here\u003C\u002Fa>. View Plaid’s privacy policy \u003Ca href=\"https:\u002F\u002Fplaid.com\u002Flegal\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>The benefits of using PrecisionPay\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>It’s easy for your customers\u003C\u002Fstrong>: There is a built in, fast, and easy to use guest checkout if the user isn’t already using PrecisionPay\u003C\u002Fli>\n\u003Cli>\u003Cstrong>2nd Amendment Friendly\u003C\u002Fstrong>: PrecisionPay is \u003Cem>the\u003C\u002Fem> WooCommerce solution entirely dedicated to supporting the sale of firearms and firearm related products.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Private\u003C\u002Fstrong>: We care about privacy as much as you do. We are transparent about what we store and we don’t sell personal user data. Ever.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Secure\u003C\u002Fstrong>: We use industry standards, and even go beyond industry standards where possible to keep all your payment processing secure.\u003C\u002Fli>\n\u003C\u002Ful>\n","Accept online bank payments in your WooCommerce store using PrecisionPay - the firearms friendly payments processor.",2007,74,3,"2025-09-09T18:59:00.000Z","6.8.5","7.2",[18,19,20,84,21],"precisionpay","https:\u002F\u002Fgithub.com\u002FMakeCents-NYC\u002Fwoocommerce-gateway-precisionpay","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprecisionpay-payments-for-woocommerce.4.0.3.zip",{"slug":88,"name":89,"version":90,"author":91,"author_profile":92,"description":93,"short_description":94,"active_installs":95,"downloaded":96,"rating":12,"num_ratings":12,"last_updated":97,"tested_up_to":98,"requires_at_least":99,"requires_php":100,"tags":101,"homepage":22,"download_link":102,"security_score":103,"vuln_count":12,"unpatched_count":12,"last_vuln_date":25,"fetched_at":26},"omipay","Omipay for WooCommerce","1.0.3","hpay","https:\u002F\u002Fprofiles.wordpress.org\u002Fomipay\u002F","\u003Cp>This is the official Omipay payment gateway plugin for WooCommerce.\u003Cbr \u002F>\nContact Omipay’s customer care system for connection support.\u003C\u002Fp>\n\u003Ch3>Dependencies\u003C\u002Fh3>\n\u003Col>\n\u003Cli>WordPress v4.3 and later\u003C\u002Fli>\n\u003Cli>Woocommerce v7.0.0 and later\u003C\u002Fli>\n\u003Cli>PHP v5.6.0 and later\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Visit the WooCommerce settings page, and click on the Checkout\u002FPayment Gateways tab.\u003C\u002Fli>\n\u003Cli>Click on Omipay to edit the settings. If you do not see Omipay in the list at the top of the screen make sure you have activated the plugin in the WordPress Plugin Manager.\u003C\u002Fli>\n\u003Cli>Enable the Payment Method, add in your email, merchant id and secure_pass.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Visit \u003Ca href=\"https:\u002F\u002Fcheckout.omipay.vn\" rel=\"nofollow ugc\">Omipay.vn\u003C\u002Fa> for support requests.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>The Omipay WooCommerce plugin is released under the GPLv2 license, same as that\u003Cbr \u002F>\nof WordPress. See the LICENSE file for the complete LICENSE text.\u003C\u002Fp>\n","Allows you to use Omipay payment gateway with the WooCommerce plugin.",10,5252,"2022-11-11T05:01:00.000Z","6.1.10","4.7","5.6",[18,19,88,20,21],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fomipay.zip",85,{"slug":105,"name":106,"version":107,"author":39,"author_profile":40,"description":108,"short_description":109,"active_installs":95,"downloaded":110,"rating":12,"num_ratings":12,"last_updated":111,"tested_up_to":14,"requires_at_least":46,"requires_php":47,"tags":112,"homepage":114,"download_link":115,"security_score":24,"vuln_count":12,"unpatched_count":12,"last_vuln_date":25,"fetched_at":26},"wc-zeus-gateway","Payment Gateway Zeus for WooCommerce","0.3.1","\u003Cp>The Payment Gateway Zeus for WooCommerce plugin adds the functionality to take Zeus payments on your store using Zeus for WooCommerce.\u003C\u002Fp>\n\u003Ch4>About Zeus\u003C\u002Fh4>\n\u003Cp>Zeus is a comprehensive payment platform that offers various online payment methods, such as credit card payment and convenience store payment in Japan.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.cardservice.co.jp\u002F\" rel=\"nofollow ugc\">Zeus\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>In order to use Zeus, you have to purchase the authentication key at the following site.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.wpmarket.jp\u002F\" rel=\"nofollow ugc\">WordPress Market\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Known Issues \u002F Bugs\u003C\u002Fh3>\n\u003Cp>Nothing.\u003C\u002Fp>\n\u003Ch3>Uninstall\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Deactivate the plugin\u003C\u002Fli>\n\u003Cli>That’s it! 🙂\u003C\u002Fli>\n\u003C\u002Fol>\n","This plugin adds the functionality to take various online payments on your store using Zeus for WooCommerce.",1518,"2024-12-03T00:38:00.000Z",[18,113,19,20,21],"ec","https:\u002F\u002Fwww.wpmarket.jp\u002Fproduct\u002Fwc_zeus_gateway\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-zeus-gateway.0.3.1.zip",{"attackSurface":117,"codeSignals":167,"taintFlows":196,"riskAssessment":197,"analyzedAt":211},{"hooks":118,"ajaxHandlers":163,"restRoutes":164,"shortcodes":165,"cronEvents":166,"entryPointCount":12,"unprotectedCount":12},[119,125,130,134,138,141,144,148,152,156,159],{"type":120,"name":121,"callback":122,"file":123,"line":124},"action","woocommerce_blocks_loaded","freedompay_woocommerce_blocks_support","freedompay-payment-gateway.php",54,{"type":126,"name":127,"callback":128,"file":123,"line":129},"filter","woocommerce_payment_gateways","freedompay_add_gateway",55,{"type":120,"name":131,"callback":132,"file":123,"line":133},"admin_enqueue_scripts","freedompay_admin_enqueue_scripts_callback",66,{"type":120,"name":135,"callback":136,"file":123,"line":137},"before_woocommerce_init","closure",68,{"type":120,"name":139,"callback":140,"priority":12,"file":123,"line":78},"plugins_loaded","freedompay_init",{"type":120,"name":142,"callback":136,"file":123,"line":143},"woocommerce_blocks_payment_method_type_registration",114,{"type":120,"name":145,"callback":146,"file":147,"line":137},"woocommerce_check_cart_items","check_total","includes\\class-wc-freedompay-payment-gateway.php",{"type":120,"name":149,"callback":150,"file":147,"line":151},"woocommerce_api_wc_freedompay_payment_gateway","handle_result_callback",69,{"type":120,"name":153,"callback":154,"file":147,"line":155},"woocommerce_receipt_freedompay","receipt_page",77,{"type":120,"name":157,"callback":157,"file":147,"line":158},"admin_notices",78,{"type":120,"name":160,"callback":161,"priority":95,"file":147,"line":162},"update_option_woocommerce_freedompay_settings","check_merchant_data",79,[],[],[],[],{"dangerousFunctions":168,"sqlUsage":169,"outputEscaping":171,"fileOperations":30,"externalRequests":30,"nonceChecks":12,"capabilityChecks":12,"bundledLibraries":195},[],{"prepared":12,"raw":12,"locations":170},[],{"escaped":172,"rawEcho":95,"locations":173},21,[174,177,179,181,183,185,187,189,191,193],{"file":147,"line":175,"context":176},437,"raw output",{"file":147,"line":178,"context":176},643,{"file":147,"line":180,"context":176},647,{"file":147,"line":182,"context":176},650,{"file":147,"line":184,"context":176},661,{"file":147,"line":186,"context":176},665,{"file":147,"line":188,"context":176},668,{"file":147,"line":190,"context":176},678,{"file":147,"line":192,"context":176},684,{"file":147,"line":194,"context":176},687,[],[],{"summary":198,"deductions":199},"The freedompay-payment-gateway plugin version 1.10.0 exhibits a generally positive security posture based on the provided static analysis. The absence of identified AJAX handlers, REST API routes, shortcodes, and cron events suggests a limited attack surface. Furthermore, the code signals are promising: no dangerous functions were detected, all SQL queries utilize prepared statements, and there are no recorded vulnerabilities or CVEs. This indicates a diligent effort to implement secure coding practices, particularly around data handling and preventing known exploits.\n\nHowever, there are several areas of concern that temper the otherwise strong security profile. The most significant is the lack of any identified nonce checks or capability checks. This is a critical omission, as it means that any entry points, even if not explicitly listed, are not protected against unauthorized actions or CSRF attacks. Additionally, a substantial portion of output (32%) is not properly escaped, posing a risk of Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is ever involved in these outputs. The presence of file operations and external HTTP requests, while not inherently insecure, introduces potential risks if not handled with extreme care and proper sanitization, especially given the absence of broader security checks.\n\nIn conclusion, while the plugin demonstrates strengths in SQL security and a clean vulnerability history, the absence of essential security mechanisms like nonce and capability checks, coupled with a notable percentage of unescaped output, presents tangible security risks. The limited attack surface is a positive, but it doesn't fully mitigate the inherent dangers of these missing fundamental security controls. Continuous monitoring for new vulnerabilities and addressing the output escaping and authorization checks are crucial for improving its overall security.",[200,202,204,207,209],{"reason":201,"points":95},"Missing nonce checks on entry points",{"reason":203,"points":95},"Missing capability checks on entry points",{"reason":205,"points":206},"Significant unescaped output identified",8,{"reason":208,"points":79},"File operations present without explicit sanitization context",{"reason":210,"points":79},"External HTTP requests present without explicit sanitization context","2026-03-16T21:18:30.456Z",{"wat":213,"direct":223},{"assetPaths":214,"generatorPatterns":218,"scriptPaths":219,"versionParams":220},[215,216,217],"\u002Fwp-content\u002Fplugins\u002Ffreedompay-payment-gateway\u002Fassets\u002Fcss\u002Fsettings-custom.css","\u002Fwp-content\u002Fplugins\u002Ffreedompay-payment-gateway\u002Fassets\u002Fjs\u002Fsettings-custom.js","\u002Fwp-content\u002Fplugins\u002Ffreedompay-payment-gateway\u002Fassets\u002Fimages\u002Ficon.png",[],[216],[221,222],"freedompay-payment-gateway\u002Fassets\u002Fcss\u002Fsettings-custom.css?ver=","freedompay-payment-gateway\u002Fassets\u002Fjs\u002Fsettings-custom.js?ver=",{"cssClasses":224,"htmlComments":225,"htmlAttributes":226,"restEndpoints":228,"jsGlobals":230,"shortcodeOutput":232},[],[],[227],"data-freedompay-method-id",[229],"\u002Fwp-json\u002Ffreedompay\u002Fv1\u002Fconfig",[231],"freedompay_data",[]]