WP-Safety

گیت‌لند | درگاه پرداخت هوشمند گیت‌لند Security & Risk Analysis

wordpress.org/plugins/gateland

گیت لند درگاه پرداخت جامع، ایمن و هوشمند وردپرس برای تمام درگاه‌های پرداخت است که شما از نصب افزونه‌های پرداخت متعدد و غیراستاندارد بی نیاز می‌کند

2K active installs v2.3.8 PHP 7.4+ WP 6.0+ Updated Dec 17, 2025
paymentpayment-gateway%d9%be%d8%b1%d8%af%d8%a7%d8%ae%d8%aa%d8%af%d8%b1%da%af%d8%a7%d9%87-%d9%be%d8%b1%d8%af%d8%a7%d8%ae%d8%aa
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is گیت‌لند | درگاه پرداخت هوشمند گیت‌لند Safe to Use in 2026?

Generally Safe

Score 100/100

گیت‌لند | درگاه پرداخت هوشمند گیت‌لند has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago
Risk Assessment

The "gateland" plugin v2.3.8 exhibits a generally good security posture, largely due to strong practices in handling SQL queries and output escaping. The complete absence of known CVEs and a clean vulnerability history are significant strengths, suggesting a well-maintained and secure codebase. However, the plugin does present a moderate attack surface with 20 entry points, of which 2 (related to REST API routes) lack explicit permission callbacks. While no critical taint analysis issues were found, 8 out of 11 analyzed flows had unsanitized paths, indicating a potential for vulnerabilities if these paths are exploited through the unprotected entry points. The presence of 5 nonce checks and 5 capability checks demonstrates an awareness of WordPress security best practices, but the identified unprotected REST API routes are a clear concern that requires attention. The use of bundled libraries like Select2 and jQuery, while common, should be monitored for potential vulnerabilities in those libraries themselves, although no specific issues are indicated by the provided data.

Key Concerns

  • REST API routes without permission callbacks
  • Flows with unsanitized paths
Vulnerabilities
None known

گیت‌لند | درگاه پرداخت هوشمند گیت‌لند Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

گیت‌لند | درگاه پرداخت هوشمند گیت‌لند Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
10
361 escaped
Nonce Checks
5
Capability Checks
5
File Operations
3
External Requests
11
Bundled Libraries
2

Bundled Libraries

Select2jQuery

Output Escaping

97% escaped371 total outputs
Data Flows
8 unsanitized

Data Flow Analysis

11 flows8 with unsanitized paths
webhook (src\Plugins\Woocommerce\Gateway.php:304)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

گیت‌لند | درگاه پرداخت هوشمند گیت‌لند Attack Surface

Entry Points20
Unprotected2

AJAX Handlers 2

authwp_ajax_gateland_dismiss_noticesrc\Notice.php:13
authwp_ajax_gateland_update_noticesrc\Notice.php:14

REST API Routes 18

POST/wp-json/gateland/dashboardoverviewsrc\API\DashboardAPI.php:13
POST/wp-json/gateland/gatewaylistsrc\API\GatewayAPI.php:17
POST/wp-json/gateland/gatewayget-optionssrc\API\GatewayAPI.php:23
POST/wp-json/gateland/gatewayaddsrc\API\GatewayAPI.php:29
POST/wp-json/gateland/gatewayindexsrc\API\GatewayAPI.php:35
POST/wp-json/gateland/gatewaysortsrc\API\GatewayAPI.php:41
POST/wp-json/gateland/gatewaychange-statussrc\API\GatewayAPI.php:47
POST/wp-json/gateland/gatewaydeletesrc\API\GatewayAPI.php:53
POST/wp-json/gateland/gatewayupdatesrc\API\GatewayAPI.php:59
POST/wp-json/gateland/gatewayoverviewsrc\API\GatewayAPI.php:65
GET/wp-json/gateland/payment(?P<id>\d+)/startsrc\API\PaymentAPI.php:12
GET/wp-json/gateland/payment(?P<id>\d+)/callbacksrc\API\PaymentAPI.php:18
POST/wp-json/gateland/pluginlistsrc\API\PluginAPI.php:11
POST/wp-json/gateland/transactionfilterssrc\API\TransactionAPI.php:21
GET/wp-json/gateland/transactionindexsrc\API\TransactionAPI.php:27
POST/wp-json/gateland/transactionviewsrc\API\TransactionAPI.php:33
POST/wp-json/gateland/transactioninquirysrc\API\TransactionAPI.php:39
POST/wp-json/gateland/transactionrefundsrc\API\TransactionAPI.php:45
WordPress Hooks 116
actionplugins_loadedgateland.php:41
actionplugins_loadedgateland.php:56
actionlearn-press/readygateland.php:60
actionwoocommerce_loadedgateland.php:64
actionsliced_loadedgateland.php:68
actionlearndash_initgateland.php:72
actionbefore_woocommerce_initgateland.php:80
actionadmin_menusrc\Admin\Menu.php:10
actionadmin_headsrc\Admin\Menu.php:11
actionrest_api_initsrc\API\RestAPI.php:10
actioninitsrc\Gateland.php:46
filterquery_varssrc\Gateland.php:47
actionwpsrc\Gateland.php:48
actionwp_enqueue_scriptssrc\Gateland.php:50
actionadmin_enqueue_scriptssrc\Gateland.php:51
actionlogin_enqueue_scriptssrc\Gateland.php:52
actionadmin_noticessrc\Notice.php:12
actionwpcf7_before_send_mailsrc\Plugins\CF7\Gateway.php:17
actionwpcf7_shortcode_callbacksrc\Plugins\CF7\Gateway.php:18
actionwpcf7_shortcode_callbacksrc\Plugins\CF7\Gateway.php:19
filterwpcf7_editor_panelssrc\Plugins\CF7\Load.php:24
filterwpcf7_save_contact_formsrc\Plugins\CF7\Load.php:25
filteredd_payment_gatewayssrc\Plugins\EDD\Gateway.php:40
filteredd_settings_gatewayssrc\Plugins\EDD\Gateway.php:41
actionedd_payment_receipt_aftersrc\Plugins\EDD\Gateway.php:47
actioninitsrc\Plugins\EDD\Gateway.php:49
filteredd_currenciessrc\Plugins\EDD\Load.php:27
filteredd_sanitize_amount_decimalssrc\Plugins\EDD\Load.php:28
filteredd_format_amount_decimalssrc\Plugins\EDD\Load.php:29
filteredd_irt_currency_filter_beforesrc\Plugins\EDD\Load.php:30
filteredd_rial_currency_filter_beforesrc\Plugins\EDD\Load.php:31
filteredd_irt_currency_filter_aftersrc\Plugins\EDD\Load.php:32
filteredd_rial_currency_filter_aftersrc\Plugins\EDD\Load.php:33
filtergform_confirmationsrc\Plugins\GF\Gateway.php:21
filterinitsrc\Plugins\GF\Gateway.php:22
filtergform_form_settings_fieldssrc\Plugins\GF\Load.php:29
filtergform_currenciessrc\Plugins\GF\Load.php:30
filtergform_common_currenciessrc\Plugins\GF\Load.php:31
actiongform_payment_detailssrc\Plugins\GF\Load.php:32
filtergform_entry_metasrc\Plugins\GF\Load.php:33
actiongive_gateland_cc_formsrc\Plugins\Give\Load.php:26
actiongive_gateway_gatelandsrc\Plugins\Give\Load.php:27
actioninitsrc\Plugins\Give\Load.php:28
filtergive_register_currencysrc\Plugins\Give\Load.php:30
actiongivewp_register_payment_gatewaysrc\Plugins\Give\Load.php:31
actiongive_view_donation_details_payment_meta_aftersrc\Plugins\Give\Load.php:32
actionwp_body_opensrc\Plugins\LearnDash\Gateway.php:78
filterlearndash_currency_code_listsrc\Plugins\LearnDash\Load.php:18
filterlearndash_payment_gatewayssrc\Plugins\LearnDash\Load.php:19
actionlearndash_settings_sections_initsrc\Plugins\LearnDash\Load.php:20
filterlearndash_model_product_display_pricesrc\Plugins\LearnDash\Load.php:21
filterlearn-press/payment-methodssrc\Plugins\LearnPress\Addon.php:31
filterlearn-press/payment-gateway/gateland/availablesrc\Plugins\LearnPress\Gateway.php:61
actionlearn_press_web_hooks_processedsrc\Plugins\LearnPress\Gateway.php:67
actionlearn-press/before-checkout-order-reviewsrc\Plugins\LearnPress\Gateway.php:68
filterlearn-press/currenciessrc\Plugins\LearnPress\Load.php:23
filterlearn-press/currency-symbolssrc\Plugins\LearnPress\Load.php:24
filternabik/gateland/transaction_clientssrc\Plugins\LifterLMS\Load.php:20
filternabik/gateland/transaction_client_order_urlsrc\Plugins\LifterLMS\Load.php:21
filterlifterlms_currenciessrc\Plugins\LifterLMS\Load.php:22
filterlifterlms_currency_symbolssrc\Plugins\LifterLMS\Load.php:23
filterlifterlms_payment_gatewayssrc\Plugins\LifterLMS\Load.php:24
actionlifterlms_after_checkout_confirm_formsrc\Plugins\LifterLMS\Load.php:25
actionmycred_buycred_load_gatewayssrc\Plugins\MyCred\Load.php:18
filtermycred_setup_gatewayssrc\Plugins\MyCred\Load.php:19
filtermycred_buycred_refssrc\Plugins\MyCred\Load.php:20
filtermycred_buycred_log_refssrc\Plugins\MyCred\Load.php:21
filtermycred_dropdown_currenciessrc\Plugins\MyCred\Load.php:22
filtermycred_buycred_display_user_amountsrc\Plugins\MyCred\Load.php:23
filtermycred_buycred_order_table_rowssrc\Plugins\MyCred\Load.php:24
filterpmpro_payment_option_fieldssrc\Plugins\PMP\Gateway.php:13
actionpmpro_checkout_before_change_membership_levelsrc\Plugins\PMP\Gateway.php:18
actioninitsrc\Plugins\PMP\Gateway.php:19
filterpmpro_include_billing_address_fieldssrc\Plugins\PMP\Gateway.php:20
filterpmpro_include_payment_information_fieldssrc\Plugins\PMP\Gateway.php:21
filterpmpro_required_billing_fieldssrc\Plugins\PMP\Gateway.php:22
filterpmpro_currenciessrc\Plugins\PMP\Load.php:29
filterpmpro_gatewayssrc\Plugins\PMP\Load.php:30
filterrcp_currenciessrc\Plugins\RCP\Load.php:19
filterrcp_irt_symbolsrc\Plugins\RCP\Load.php:20
filterrcp_irr_symbolsrc\Plugins\RCP\Load.php:21
filterrcp_irht_symbolsrc\Plugins\RCP\Load.php:22
filterrcp_irhr_symbolsrc\Plugins\RCP\Load.php:23
filterrcp_is_zero_decimal_currencysrc\Plugins\RCP\Load.php:24
filterrcp_payment_gatewayssrc\Plugins\RCP\Load.php:25
actionsliced_do_paymentsrc\Plugins\SlicedInvoices\Load.php:25
actionsliced_do_paymentsrc\Plugins\SlicedInvoices\Load.php:26
actionadmin_headsrc\Plugins\SlicedInvoices\Load.php:28
filtersliced_register_payment_methodsrc\Plugins\SlicedInvoices\Load.php:29
filtersliced_payment_option_fieldssrc\Plugins\SlicedInvoices\Load.php:30
filternabik/gateland/transaction_clientssrc\Plugins\TeraWallet\Load.php:24
filternabik/gateland/transaction_client_order_urlsrc\Plugins\TeraWallet\Load.php:25
filterwoocommerce_add_cart_item_datasrc\Plugins\TeraWallet\Load.php:26
actioninitsrc\Plugins\TeraWallet\Load.php:27
actionwoocommerce_before_thankyousrc\Plugins\Woocommerce\Load.php:32
filterwoocommerce_payment_gatewayssrc\Plugins\Woocommerce\Load.php:33
actionwoocommerce_blocks_payment_method_type_registrationsrc\Plugins\Woocommerce\Load.php:34
actionadd_meta_boxessrc\Plugins\Woocommerce\OrderMetabox.php:15
filterwpforms_currenciessrc\Plugins\WPForms\Load.php:18
filterwpuf_payment_gatewayssrc\Plugins\WPUF\Gateway.php:47
actionwpuf_options_paymentsrc\Plugins\WPUF\Gateway.php:48
actioninitsrc\Plugins\WPUF\Gateway.php:51
filterthe_contentsrc\Plugins\WPUF\Gateway.php:275
filterthe_contentsrc\Plugins\WPUF\Gateway.php:333
filterwpuf_options_paymentsrc\Plugins\WPUF\Load.php:31
filterwpuf_currenciessrc\Plugins\WPUF\Load.php:32
filtergettextsrc\Plugins\WPUF\Load.php:33
filtercron_schedulessrc\Services\CronService.php:8
actionwpsrc\Services\CronService.php:9
actiongateland_cron_jobsrc\Services\CronService.php:10
actionnabik/gateland/transaction_createdsrc\SMS.php:13
actionnabik/gateland/transaction_status_changedsrc\SMS.php:14
actionadmin_initutils\class-install.php:23
actionadmin_initutils\class-sms.php:27
actionadmin_menuutils\class-sms.php:28
actionadmin_initutils\class-version.php:41

Scheduled Events 1

gateland_cron_job
Maintenance & Trust

گیت‌لند | درگاه پرداخت هوشمند گیت‌لند Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 17, 2025
PHP min version7.4
Downloads20K

Community Trust

Rating94/100
Number of ratings16
Active installs2K
Alternatives

گیت‌لند | درگاه پرداخت هوشمند گیت‌لند Alternatives

PayPing Gateway For Woocommerce

PayPing Gateway For Woocommerce

woo-payping-gateway

A
100

افزونه درگاه پرداخت پی‌پینگ برای ووکامرس

3K No CVEs
Paystack WooCommerce Payment Gateway

Paystack WooCommerce Payment Gateway

woo-paystack

A
100

Paystack for WooCommerce allows your WooCommerce store to accept secure payments from multiple local and global payment channels.

30K No CVEs
elegro Crypto Payment

elegro Crypto Payment

elegro-payment

A
85

Increase your customers base by accepting cryptocurrencies.

20K No CVEs
Montonio for WooCommerce

Montonio for WooCommerce

montonio-for-woocommerce

A
100

Montonio is a complete checkout solution for online stores that includes all popular payment methods (local banks, card payments, Apple Pay, Google Pa &hellip;

10K No CVEs
NETOPIA Payments Payment Gateway

NETOPIA Payments Payment Gateway

netopia-payments-payment-gateway

A
92

NETOPIA Payments Payment Gateway extends WooCommerce payment options by adding NETOPIA's Payment Gateway options.

10K No CVEs
Developer Profile

گیت‌لند | درگاه پرداخت هوشمند گیت‌لند Developer Profile

Mahdi Yousefi [MahdiY]

10 plugins · 27K total installs

92
trust score
Avg Security Score
89/100
Avg Patch Time
7 days
View full developer profile
Detection Fingerprints

How We Detect گیت‌لند | درگاه پرداخت هوشمند گیت‌لند

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/gateland/dev_assets/css/style.css/wp-content/plugins/gateland/dev_assets/css/notyf.min.css/wp-content/plugins/gateland/dev_assets/css/persian-datepicker.min.css/wp-content/plugins/gateland/dev_assets/js/persian-datepicker.min.js/wp-content/plugins/gateland/dev_assets/js/persian-date.min.js/wp-content/plugins/gateland/dev_assets/js/chart.js/wp-content/plugins/gateland/dev_assets/js/alpine.js
Script Paths
/dev_assets/js/alpine.js
Version Parameters
gateland/style.css?ver=gateland/notyf.min.css?ver=gateland/persian-datepicker.min.css?ver=gateland/persian-datepicker.min.js?ver=gateland/persian-date.min.js?ver=gateland/chart.js?ver=gateland/alpine.js?ver=

HTML / DOM Fingerprints

JS Globals
GATELAND_URLGATELAND_VERSION
FAQ

Frequently Asked Questions about گیت‌لند | درگاه پرداخت هوشمند گیت‌لند