[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fuuRwzWt6IBgFz-aTPWUd5sjpK3kZ13GdI-J8MoKLo78":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":44,"crawl_stats":35,"alternatives":51,"analysis":149,"fingerprints":559},"gst-for-woocommerce","GST for WooCommerce","2.0","Ashwani kumar","https:\u002F\u002Fprofiles.wordpress.org\u002Ftmdwp\u002F","\u003Cp>This plugin helps apply GST New Rule of Tax Inclusive to your product rate, you can also apply the tax on the base product as well as on the category\u003C\u002Fp>\n\u003Cp>GST is a multi-stage, comprehensive and destination-based tax in India\u003C\u002Fp>\n\u003Cp>It has replaced many indirect tax laws which exist previously in India where the tax is collected by the State where goods are consumed.\u003C\u002Fp>\n\u003Cp>So it is a one nation one tax law of taxation for the entire country.\u003C\u002Fp>\n\u003Cp>Features of TMD GST WooCommerce Plugin (Inclusive  & Exclusive  of Tax)\u003C\u002Fp>\n\u003Ch4>Additional Feature\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Apply Tax as per Product & Category\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>GST brings one uniform indirect tax in all states, so it is easier for you to define a universal one-tax rate for your product on the product master.\u003C\u002Fp>\n\u003Cp>It also enables you to define category-wise GST rates under the category section\u003C\u002Fp>\n\u003Cp>Also, you can assign multiple categories and multiple products under one tax rate.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Set New GST Rules\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Change or edit your tax rate any time you want depending on tax laws rate, product, and category whenever you want.\u003C\u002Fp>\n\u003Cp>And also define your GST Name as per tax slabs\u003C\u002Fp>\n\u003Cp>Also, you can modify the invoice template to show the GST for each product and select different rates product-wise.\u003C\u002Fp>\n\u003Col>\n\u003Cli>HSN monthly GST Report (Available in paid mode).\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>HSN Report is a summary of all the products and services sold over a month or a period.\u003C\u002Fp>\n\u003Cp>And the HSN-wise report is auto-generated under TMD GST WooCommerce Plugin reports\u003C\u002Fp>\n\u003Cp>So you can verify it and upload your correct data to the GSTN portal. available option in Paid mode.\u003C\u002Fp>\n\u003Col>\n\u003Cli>HSN Monthly GST Reports XLS\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>In order to file your monthly HSN summary, you can export your HSN register to an XLS file and TMD GST for WooCommerce provides you with the option to directly export it from your website report ( Available option in paid mode ) .\u003C\u002Fp>\n\u003Cp>So you can copy and paste it to other sources for creating your perfect reports for filing your returns, available option in Paid mode.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Change GST as per Location.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>You can fix your location from the master settings to set up your base location with your OpenCart store.\u003C\u002Fp>\n\u003Cp>Depending on your base location, the GST module assigns required taxes to local sales or interstate sales.\u003C\u002Fp>\n\u003Cp>So, suppose your base location is in Tamil Nadu, the Plugin will identify all of your sales orders from Tamil Nadu and set local GST to your orders, i.e CGST and SGST as per the location identified.\u003C\u002Fp>\n\u003Cp>And if the orders are from a different location it will identify and match your base location and set IGST to all orders if your business master location does not match with orders placed from a different location.\u003C\u002Fp>\n\u003Cp>Benefits of GST for E-commerce Trade:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>Defined treatment for e-commerce\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Mitigation of cascading and double taxation\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Online simple procedures under GST\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Simple Tax regime\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Regulating the unorganized sector\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Composition scheme for small business\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Increased efficiency in logistics\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Development of a common national market\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Fewer rates and exemptions\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Reduction in the multiplicity of taxes\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n","The Plugin allows You To apply GST (Goods and services tax) on product and also  category-wise.",60,5595,0,"2024-09-19T07:48:00.000Z","6.6.5","5.1","7.4",[19,4,20,21,22],"gst","tmd","woo","woocommerce","https:\u002F\u002Fwww.tmdextensions.com\u002Fwoocommerce-plugin\u002Fwoocommerce-gst","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgst-for-woocommerce.zip",70,1,"2025-09-26 00:00:00","2026-03-15T15:16:48.613Z",[30],{"id":31,"url_slug":32,"title":33,"description":34,"plugin_slug":4,"theme_slug":35,"affected_versions":36,"patched_in_version":35,"severity":37,"cvss_score":38,"cvss_vector":39,"vuln_type":40,"published_date":27,"updated_date":41,"references":42,"days_to_patch":35},"CVE-2025-60173","gst-for-woocommerce-cross-site-request-forgery","GST for WooCommerce \u003C= 2.0 - Cross-Site Request Forgery","The GST for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to perform an unauthorized action via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",null,"\u003C=2.0","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2025-09-29 21:09:02",[43],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F80e2a376-ae15-4883-8a80-0b867fbeeb4c?source=api-prod",{"slug":45,"display_name":7,"profile_url":8,"plugin_count":46,"total_installs":11,"avg_security_score":47,"avg_patch_time_days":48,"trust_score":49,"computed_at":50},"tmdwp",3,87,30,85,"2026-04-04T17:02:09.949Z",[52,75,97,115,130],{"slug":53,"name":54,"version":55,"author":56,"author_profile":57,"description":58,"short_description":59,"active_installs":60,"downloaded":61,"rating":62,"num_ratings":63,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":17,"tags":67,"homepage":71,"download_link":72,"security_score":73,"vuln_count":26,"unpatched_count":13,"last_vuln_date":74,"fetched_at":28},"woocommerce-services","WooCommerce Tax (formerly WooCommerce Shipping & Tax)","3.5.1","WooCommerce","https:\u002F\u002Fprofiles.wordpress.org\u002Fwoocommerce\u002F","\u003Cp>Attention: Shipping features have moved to a new dedicated plugin. Download WooCommerce Shipping.\u003C\u002Fp>\n\u003Cp>Enable automated taxes\u003Cbr \u002F>\nThat’s it! Once you update your tax settings, your store will collect sales tax at checkout based on the store address in your WooCommerce Settings.\u003C\u002Fp>\n\u003Cp>Eliminate the need to even think about sales taxes for your store\u003Cbr \u002F>\nAutomatically calculate how much sales tax should be collected for WooCommerce orders — by city, country, or state — at checkout.\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin relies on the following external services:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>WordPress.com connection:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Description: The plugin makes requests to our own endpoints at WordPress.com (proxied via https:\u002F\u002Fapi.woocommerce.com) to fetch automated tax calculations.\u003C\u002Fli>\n\u003Cli>Website: https:\u002F\u002Fwordpress.com\u002F\u003C\u002Fli>\n\u003Cli>Terms of Service: https:\u002F\u002Fwordpress.com\u002Ftos\u002F\u003C\u002Fli>\n\u003Cli>Privacy Policy: https:\u002F\u002Fautomattic.com\u002Fprivacy\u002F\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Usage Tracking:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Description: The plugin will send usage statistics to our own service, after the user has accepted our Terms of Service.\u003C\u002Fli>\n\u003Cli>Script: https:\u002F\u002Fstats.wp.com\u002Fw.js\u003C\u002Fli>\n\u003Cli>Terms of Service: https:\u002F\u002Fwordpress.com\u002Ftos\u002F\u003C\u002Fli>\n\u003Cli>Privacy Policy: https:\u002F\u002Fautomattic.com\u002Fprivacy\u002F\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n","We’re here to help with tax rates: collect accurate sales tax, automatically.",600000,48372092,40,105,"2026-03-10T08:22:00.000Z","6.9.4","6.7",[19,68,69,70,22],"payment","tax","vat","https:\u002F\u002Fwoocommerce.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoocommerce-services.3.5.1.zip",100,"2023-05-23 00:00:00",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":85,"num_ratings":86,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":90,"tags":91,"homepage":95,"download_link":96,"security_score":73,"vuln_count":13,"unpatched_count":13,"last_vuln_date":35,"fetched_at":28},"woo-gst","GST Invoice for WooCommerce","1.7","Stark Digital Media Services Pvt Ltd","https:\u002F\u002Fprofiles.wordpress.org\u002Fstarkinfo\u002F","\u003Cp>Managing GST invoices for WooCommerce doesn’t have to be complicated anymore.\u003Cbr \u002F>\nWith GST Invoice For WooCommerce, you can automate end-to-end GST tax calculations, apply the correct tax slabs (CGST, SGST, IGST, UTGST), and generate GST-compliant invoices — all directly from your WooCommerce store.\u003C\u002Fp>\n\u003Cp>Whether you run a small business or a growing eCommerce brand, manual GST billing often leads to errors, penalties, and wasted time. This plugin solves that by letting you easily configure GST settings, add GSTIN and HSN\u002FSAC codes, and apply automated tax rules for every order. It’s built especially for Indian WooCommerce sellers who want to stay 100% GST compliant without juggling spreadsheets.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Automated GST Calculation – Apply CGST, SGST, IGST & UTGST based on billing & shipping addresses.  \u003C\u002Fli>\n\u003Cli>Add GSTIN Number – Display your business GSTIN number on every WooCommerce invoice.  \u003C\u002Fli>\n\u003Cli>Product level HSN\u002FSAC Codes – Add HSN\u002FSAC codes for accurate GST classification.  \u003C\u002Fli>\n\u003Cli>Easy GST Settings Panel – Configure tax rules quickly from the WooCommerce dashboard.  \u003C\u002Fli>\n\u003Cli>Flexible Tax Slabs – Works for single or multiple product types.  \u003C\u002Fli>\n\u003Cli>100% Made for Indian Sellers – Designed to handle Indian GST structure & rules seamlessly.  \u003C\u002Fli>\n\u003Cli>Instant GST-compliant Invoices – Auto-generate invoices after each order.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>PRO Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>PDF GST Invoices with GSTIN & HSN\u002FSAC details for every order.  \u003C\u002Fli>\n\u003Cli>Dynamic Tax Slabs for complex product catalogs & multi-rate GST.  \u003C\u002Fli>\n\u003Cli>Customer GSTIN Capture during checkout — ideal for B2B invoicing.  \u003C\u002Fli>\n\u003Cli>Advanced Invoice Branding to personalize invoices professionally.  \u003C\u002Fli>\n\u003Cli>Priority Support & Updates for smooth GST compliance.   \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgstforecom.com\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Checkout our PRO plugin\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin loads a HubSpot tracking script (https:\u002F\u002Fjs.hs-scripts.com\u002F) used for analytics.\u003Cbr \u002F>\nNo user data is sent from WordPress to HubSpot by this plugin.\u003Cbr \u002F>\nHubSpot Privacy Policy: https:\u002F\u002Flegal.hubspot.com\u002Fprivacy-policy\u003C\u002Fp>\n","This plugin is for GST tax setting. It set all tax including Tax slabs setting for CGST, SGST and IGST automatically.",2000,84745,64,15,"2025-12-29T05:42:00.000Z","6.8.5","4.0","7.6",[92,19,93,22,94],"addon","gst-tax","woocommerce-addon","https:\u002F\u002Fgstforecom.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-gst.zip",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":105,"downloaded":106,"rating":73,"num_ratings":48,"last_updated":107,"tested_up_to":65,"requires_at_least":108,"requires_php":109,"tags":110,"homepage":113,"download_link":114,"security_score":73,"vuln_count":13,"unpatched_count":13,"last_vuln_date":35,"fetched_at":28},"webplanex-gst-invoice-india","WebPlanex: GST Invoice India","1.6","WebPlanex","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebplanex\u002F","\u003Cp>This plugin is designed exclusively for Indian merchants using WooCommerce, automating the generation of invoices that fully comply with India’s Goods and Services Tax (GST) regulations. By integrating with WooCommerce via REST API and webhooks, it dynamically pulls order details, product data, and customer information to create precise, audit-ready invoices with mandatory GST fields.\u003C\u002Fp>\n\u003Cp>If your store also sells globally and you need flexible invoicing for non-GST orders, you can pair this plugin with our global solution.\u003C\u002Fp>\n\u003Cp>With added support for \u003Cstrong>Delivery Notes\u003C\u002Fstrong>, \u003Cstrong>Shipping Labels\u003C\u002Fstrong>, and \u003Cstrong>Packaging Slips\u003C\u002Fstrong>, you can now manage documents for order fulfillment and logistics alongside GST-compliant invoices, all from one dashboard.\u003C\u002Fp>\n\u003Cp>Looking for flexible, worldwide invoicing? Check out the global \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwebplanex-invoices\u002F\" rel=\"ugc\">WooCommerce invoicing plugin by Webplanex\u003C\u002Fa>, which offers PDF customization for packing slips and supports multi-currency and multi-language invoices at 👉 \u003Ca href=\"https:\u002F\u002Finvoice.webplanex.com\u002Fwoocommerce-pdf-invoices-packing-slips.html\" rel=\"nofollow ugc\">https:\u002F\u002Finvoice.webplanex.com\u002Fwoocommerce-pdf-invoices-packing-slips.html\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Key Features for Indian Compliance\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Automated GST Invoice Generation\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Instantly generates invoices with HSN\u002FSAC codes, GSTIN validation, and tax breakdowns (CGST, SGST, IGST) based on customer location and place-of-supply rules.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>State-Specific Tax Calculations\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatically applies IGST for inter-state transactions or CGST+SGST for intra-state sales, aligned with the GST Council’s latest guidelines.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>B2B & B2C Compliance\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Supports invoice formats for both business customers (with GSTIN) and consumer transactions, including QR codes as per GST Rule 48.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Real-Time Data Sync\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Updates invoices in real-time via webhooks for order modifications, cancellations, or refunds to ensure accuracy.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Customer Notifications\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Sends automated emails with secure download links for GST-compliant PDF invoices, branded with your business logo and terms.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Audit-Ready Records\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Generates GST-friendly reports (e.g., sales registers, tax summaries) for seamless GSTR-1\u002FGSTR-3B filing.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>No Manual Work\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Generate GST-compliant invoices for your WooCommerce store easily!\u003C\u002Fli>\n\u003Cli>Bulk export invoices (PDF).\u003C\u002Fli>\n\u003Cli>Auto generation of credit notes upon order cancellation.\u003C\u002Fli>\n\u003Cli>Export sales reports, credit notes reports, and offline orders reports.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Offline Order Creation\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create offline orders with your WooCommerce products and customers.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Invoice Customization\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Get 5 different invoice templates with customization options.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Shipping Labels\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create \u003Cstrong>Shipping Labels\u003C\u002Fstrong> directly from WooCommerce order pages.\u003C\u002Fli>\n\u003Cli>Include crucial shipping information such as customer address, tracking ID, and handling notes for faster fulfillment processing\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Delivery Note\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Produce clear Delivery Notes for shipments that outline items dispatched without pricing or tax details,  perfect for logistics and courier partners.\u003C\u002Fli>\n\u003Cli>Customize delivery note layouts to match your branding.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Packaging Slips\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Generate Packaging Slips for warehouse and packaging teams containing order contents with quantities and SKU details — ideal for error-free packing.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>✅ Tested OK with WooCommerce 10.4.3\u003Cbr \u002F>\n✅ Tested OK up to PHP 8.2\u003C\u002Fp>\n\u003Ch3>Third Party Compatibility\u003C\u002Fh3>\n\u003Cp>The plugin is compatible with the following third party plugins:\u003Cbr \u002F>\n• \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce-currency-switcher\u002F\" rel=\"ugc\">FOX – Currency Switcher Professional for WooCommerce\u003C\u002Fa>\u003Cbr \u002F>\n• \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwt-woocommerce-sequential-order-numbers\u002F\" rel=\"ugc\">Sequential Order Number for WooCommerce\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Subscription\u003C\u002Fh3>\n\u003Cp>We offer tiered subscription options designed to scale with your business needs, ensuring affordability for startups and robust features for growing enterprises.\u003C\u002Fp>\n\u003Ch3>Third-Party Services Disclosure\u003C\u002Fh3>\n\u003Cp>This plugin integrates with external services to deliver core functionality. By using this plugin, you consent to the data practices described below.\u003C\u002Fp>\n\u003Ch3>External Compliance & Notification Service (ECNS)\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Purpose\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatically generates GST-compliant invoices.\u003C\u002Fli>\n\u003Cli>Validates tax calculations against Indian GST rules.\u003C\u002Fli>\n\u003Cli>Sends customer emails with invoice download links.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Data Sent\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Order details (IDs, products, prices, discounts).\u003C\u002Fli>\n\u003Cli>Customer data (name, email, address).\u003C\u002Fli>\n\u003Cli>Business details (store name, email,address).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>When Data Is Sent\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>When an order is created in WooCommerce.\u003C\u002Fli>\n\u003Cli>When manually regenerating\u002Fresending invoices.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Service Provider\u003C\u002Fstrong>: WebPlanex Infotech Pvt. Ltd.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgst.webplanex.com\u002Fwoocommerce\u002Fterm-condition.html\" rel=\"nofollow ugc\">Terms of Service\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgst.webplanex.com\u002Fwoocommerce\u002Fprivacy-policy.html\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Automated Tax Compliance & Streamlined Billing for WooCommerce. Generate GST-compliant invoices effortlessly and stay 100% compliant.",300,2281,"2026-01-12T09:04:00.000Z","6.2","7.3",[19,111,112,69,22],"india","invoice","https:\u002F\u002Fgst.webplanex.com\u002Fwoocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwebplanex-gst-invoice-india.1.6.zip",{"slug":116,"name":117,"version":118,"author":119,"author_profile":120,"description":121,"short_description":122,"active_installs":123,"downloaded":124,"rating":11,"num_ratings":125,"last_updated":126,"tested_up_to":88,"requires_at_least":66,"requires_php":17,"tags":127,"homepage":128,"download_link":129,"security_score":73,"vuln_count":13,"unpatched_count":13,"last_vuln_date":35,"fetched_at":28},"rename-vat-to-gst-for-woocommerce","Rename VAT to GST for WooCommerce","2.0.0","Abhi","https:\u002F\u002Fprofiles.wordpress.org\u002Fabhi9\u002F","\u003Cp>Many countries like Australia, Canada, Singapore and India use GST instead of VAT. This plugin automatically renames VAT and Tax labels to GST across your entire WooCommerce store.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Works everywhere:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Cart & Checkout pages\u003Cbr \u002F>\n* Order confirmation pages\u003Cbr \u002F>\n* Email notifications\u003Cbr \u002F>\n* Admin order pages\u003Cbr \u002F>\n* My Account pages\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n* ✅ Zero configuration needed\u003Cbr \u002F>\n* ✅ Compatible with WooCommerce HPOS\u003Cbr \u002F>\n* ✅ Works with all WooCommerce themes\u003Cbr \u002F>\n* ✅ Lightweight and performant\u003Cbr \u002F>\n* ✅ Follows WordPress coding standards\u003C\u002Fp>\n","Replaces VAT and Tax terminology with GST throughout WooCommerce (emails, cart, checkout, admin, order pages).",200,3019,2,"2025-11-30T05:47:00.000Z",[19,111,69,70,22],"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frename-vat-to-gst-for-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frename-vat-to-gst-for-woocommerce.2.0.0.zip",{"slug":131,"name":132,"version":133,"author":134,"author_profile":135,"description":136,"short_description":137,"active_installs":138,"downloaded":139,"rating":13,"num_ratings":13,"last_updated":140,"tested_up_to":88,"requires_at_least":141,"requires_php":142,"tags":143,"homepage":147,"download_link":148,"security_score":73,"vuln_count":13,"unpatched_count":13,"last_vuln_date":35,"fetched_at":28},"indian-gst-invoice-suite","Indian GST Invoice Suite","1.2.1","SAUBHIK DAS","https:\u002F\u002Fprofiles.wordpress.org\u002Fjblgroup\u002F","\u003Cp>\u003Cstrong>Indian GST Invoice Suite\u003C\u002Fstrong> is a complete GST invoicing solution for WooCommerce stores operating in India.\u003Cbr \u002F>\nIt automatically generates \u003Cstrong>GST-compliant PDF invoices\u003C\u002Fstrong> with GSTIN, HSN\u002FSAC, CGST, SGST, IGST calculations, and supports download invoices.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Perfect for:\u003C\u002Fstrong>\u003Cbr \u002F>\nE-commerce businesses in India that need \u003Cstrong>professional, GST-compliant\u003C\u002Fstrong> invoices for customers and tax filing.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Generate GST-compliant PDF invoices for WooCommerce orders.\u003Cbr \u002F>\n* Show GSTIN, HSN\u002FSAC codes, and tax slab details.\u003Cbr \u002F>\n* Auto-calculates CGST, SGST, and IGST based on store & customer location.\u003Cbr \u002F>\n* Compatible with variable and grouped products.\u003Cbr \u002F>\n* Customizable invoice number.\u003Cbr \u002F>\n* Customers can download Invoice PDF from \u003Cstrong>My Account \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Orders\u003C\u002Fstrong> (Only Completed Orders)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Add-ons Available:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Packing Slips Addon\u003C\u002Fstrong> – Generate Packing Slips for warehouse. \u003Cstrong>(Free)\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Order List Addon\u003C\u002Fstrong> – Add invoice download button in WooCommerce admin order list. \u003Cstrong>(Pro)\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Delivery Note Addon\u003C\u002Fstrong> – Generate Delivery Labels with Customer Sign Area and Product list. \u003Cstrong>(Pro)\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Shipping Labels Addon\u003C\u002Fstrong> – Generate Shipping Labels with Courier Name and AWB Number and bar code. \u003Cstrong>(Paid)\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Model Number Addon\u003C\u002Fstrong> – Model Number Addon lets you store and display unique product model codes for electronics etc. \u003Cstrong>(Pro)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Add-ons Coming Soon:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Email Invoice PDF Addon\u003C\u002Fstrong> – Automatically attach Invoice to order emails (when order is completed).\u003Cbr \u002F>\n* \u003Cstrong>GST Filing Tool Addon\u003C\u002Fstrong> – Helps with monthly GST filing (GSTR-1, GSTR-3B prep).\u003Cbr \u002F>\n* \u003Cstrong>Serial Number Addon\u003C\u002Fstrong> – for Electronics Goods etc.\u003Cbr \u002F>\n* \u003Cstrong>Expiry Date Addon\u003C\u002Fstrong> – for Medicines and perishables.\u003Cbr \u002F>\n* \u003Cstrong>Batch Number Addon\u003C\u002Fstrong> – for Medicines and perishables.\u003Cbr \u002F>\n* \u003Cstrong>Multiple Invoice Templates\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Multiple Shipping Label Templates\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Add-ons in Mind (Future Plan):\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Pro Forma Invoice Addon\u003C\u002Fstrong> – Generate pre-payment invoices (quotation-style).\u003Cbr \u002F>\n* \u003Cstrong>Bulk PDF Generator Addon\u003C\u002Fstrong> – Download invoices, Packing Slips, Shipping Labels for multiple orders at once.\u003Cbr \u002F>\n* \u003Cstrong>And Many More\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin does not connect to any third-party services.\u003C\u002Fp>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>This plugin does not collect or share any personal data.\u003Cbr \u002F>\nIt does not send any information to external servers.\u003Cbr \u002F>\nAll invoice and tax data is stored locally within your WordPress database.\u003C\u002Fp>\n\u003Ch3>Developer Notes\u003C\u002Fh3>\n\u003Cp>This plugin follows WordPress coding standards and enqueues all CSS\u002FJS properly.\u003Cbr \u002F>\nIn certain cases, inline \u003Ccode>\u003Cstyle>\u003C\u002Fcode> blocks are used inside PDF template files only.\u003Cbr \u002F>\nReason: These templates are rendered by the PDF generator (dompdf\u002Fdompdf). WordPress functions like \u003Ccode>wp_enqueue_style()\u003C\u002Fcode> cannot be applied in this context because the output is not a browser page, but a static PDF.\u003Cbr \u002F>\nThe inline CSS is always loaded from local files bundled with the plugin and does not include any dynamic code or external requests. This approach is required for correct PDF rendering.\u003Cbr \u002F>\nAll front-end and admin scripts\u002Fstyles outside of PDF templates are enqueued using \u003Ccode>wp_enqueue_style()\u003C\u002Fcode> and \u003Ccode>wp_enqueue_script()\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPL v2 or later.\u003Cbr \u002F>\nYou are free to use, modify, and redistribute it under the same license.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by \u003Cstrong>Radha Solution (jblgroup)\u003C\u002Fstrong>\u003Cbr \u002F>\nBuilt for use with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce\u002F\" rel=\"ugc\">WooCommerce\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Third-Party Libraries\u003C\u002Fh4>\n\u003Cp>This plugin bundles and uses the following open-source libraries:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpicqer\u002Fphp-barcode-generator\" rel=\"nofollow ugc\">picqer\u002Fphp-barcode-generator\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Purpose: Generate barcodes (used in invoices).  \u003C\u002Fli>\n\u003Cli>License: MIT License (GPL-compatible).  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdompdf\u002Fdompdf\" rel=\"nofollow ugc\">dompdf\u002Fdompdf\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Purpose: PDF rendering for invoices.  \u003C\u002Fli>\n\u003Cli>License: LGPL v2.1 or later (GPL-compatible).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n","Generate GST Compliant PDF invoices, Supports CGST\u002FSGST\u002FIGST, HSN\u002FSAC, and more for WooCommerce.",20,476,"2026-02-14T00:24:00.000Z","5.0","8.2",[19,144,145,146,22],"gst-invoice","indian-gst","indian-tax","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Findian-gst-invoice-suite.1.2.1.zip",{"attackSurface":150,"codeSignals":284,"taintFlows":444,"riskAssessment":539,"analyzedAt":558},{"hooks":151,"ajaxHandlers":264,"restRoutes":280,"shortcodes":281,"cronEvents":282,"entryPointCount":283,"unprotectedCount":283},[152,158,163,165,168,171,177,181,185,189,193,197,201,205,209,213,217,221,225,229,232,236,240,244,248,253,256,261],{"type":153,"name":154,"callback":155,"file":156,"line":157},"action","admin_menu","gst_admin_menus","admin\\menus\\admin-menus.php",19,{"type":153,"name":159,"callback":160,"file":161,"line":162},"admin_init","tmd_gst_tab_insert","classes\\class-tmd-gst-data.php",13,{"type":153,"name":159,"callback":164,"file":161,"line":86},"tmd_gst_record_dlt",{"type":153,"name":159,"callback":166,"file":161,"line":167},"tmd_gst_settings",17,{"type":153,"name":169,"callback":170,"file":161,"line":157},"woocommerce_cart_calculate_fees","tmd_gst_add_cart_fee",{"type":172,"name":173,"callback":174,"priority":175,"file":161,"line":176},"filter","woocommerce_product_data_tabs","tmd_gst_product_data_tabs",10,21,{"type":153,"name":178,"callback":179,"priority":175,"file":161,"line":180},"woocommerce_product_data_panels","action_woocommerce_product_data_panels",23,{"type":153,"name":182,"callback":183,"file":161,"line":184},"admin_head","tmd_gst_action_head",25,{"type":153,"name":186,"callback":187,"file":161,"line":188},"woocommerce_process_product_meta","save_tmd_product_gst",27,{"type":172,"name":190,"callback":191,"priority":26,"file":161,"line":192},"woocommerce_add_cart_item_data","tmd_hsn_add_cart_item_data",29,{"type":172,"name":194,"callback":195,"priority":184,"file":161,"line":196},"woocommerce_get_item_data","tmd_get_item_data_hsn_code",31,{"type":153,"name":198,"callback":199,"priority":175,"file":161,"line":200},"woocommerce_checkout_create_order","tmd_hsn_add_order_item_meta",33,{"type":172,"name":202,"callback":203,"priority":138,"file":161,"line":204},"woocommerce_order_item_display_meta_key","tmd_gst_display_hsn_code_label",35,{"type":153,"name":206,"callback":207,"priority":175,"file":161,"line":208},"before_delete_post","tmd_gst_before_delete_post",37,{"type":172,"name":210,"callback":211,"priority":175,"file":161,"line":212},"woocommerce_account_orders_columns","add_account_orders_column",39,{"type":153,"name":214,"callback":215,"file":161,"line":216},"woocommerce_my_account_my_orders_column_custom-column","add_account_orders_column_rows",41,{"type":172,"name":218,"callback":219,"priority":175,"file":161,"line":220},"woocommerce_hidden_order_itemmeta","tmd_hide_meta_gst_id",43,{"type":172,"name":222,"callback":223,"priority":138,"file":161,"line":224},"manage_edit-shop_order_columns","custom_shop_order_column",45,{"type":153,"name":226,"callback":227,"priority":138,"file":161,"line":228},"manage_shop_order_posts_custom_column","custom_orders_list_column_content",47,{"type":153,"name":198,"callback":230,"priority":175,"file":161,"line":231},"tmd_gst_add_order",49,{"type":153,"name":233,"callback":234,"priority":175,"file":161,"line":235},"woocommerce_after_order_object_save","tmd_save_order_action",51,{"type":172,"name":237,"callback":238,"priority":73,"file":161,"line":239},"woocommerce_get_price_html","tmd_add_gst_to_product_shop_page",53,{"type":153,"name":241,"callback":242,"priority":175,"file":161,"line":243},"woocommerce_calculated_total","tmd_add_gst_subtotal",55,{"type":153,"name":245,"callback":246,"priority":175,"file":161,"line":247},"woocommerce_order_status_changed","tmd_set_order_total_during_chnage_order_status",57,{"type":153,"name":249,"callback":250,"file":251,"line":252},"admin_enqueue_scripts","tmd_enqueue_scripts","tmd-gst-main.php",59,{"type":153,"name":254,"callback":255,"file":251,"line":11},"wp_enqueue_scripts","tmd_front_gst_script",{"type":153,"name":257,"callback":258,"priority":259,"file":251,"line":260},"plugins_loaded","closure",11,234,{"type":153,"name":262,"callback":258,"priority":175,"file":251,"line":263},"admin_notices",266,[265,270,273,275,276,279],{"action":266,"nopriv":267,"callback":266,"hasNonce":267,"hasCapCheck":267,"file":268,"line":269},"tmd_gst_get_update_to_gst_advance_msg",false,"inc\\tmd-ajax.php",7,{"action":266,"nopriv":271,"callback":266,"hasNonce":267,"hasCapCheck":267,"file":268,"line":272},true,8,{"action":274,"nopriv":267,"callback":274,"hasNonce":267,"hasCapCheck":267,"file":268,"line":138},"tmd_gst_front_order_invoice_html",{"action":274,"nopriv":271,"callback":274,"hasNonce":267,"hasCapCheck":267,"file":268,"line":176},{"action":277,"nopriv":267,"callback":277,"hasNonce":267,"hasCapCheck":267,"file":268,"line":278},"tmd_gst_admin_order_invoice_html",42,{"action":277,"nopriv":271,"callback":277,"hasNonce":267,"hasCapCheck":267,"file":268,"line":220},[],[],[],6,{"dangerousFunctions":285,"sqlUsage":299,"outputEscaping":341,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":443},[286,290,293,296],{"fn":287,"file":161,"line":288,"context":289},"unserialize",204,"$gst_rate  = unserialize( $gst_data->tmd_rates );",{"fn":287,"file":161,"line":291,"context":292},341,"$setting_data \t= unserialize( $settings );",{"fn":287,"file":161,"line":294,"context":295},593,"$tmd_gst_rates = unserialize( $gst_datas['_gst_rates'] );",{"fn":287,"file":161,"line":297,"context":298},834,"if( !empty($tab_pd) && $tab_pd['_gst_rates'] ){ $tab_gst_rates = unserialize($tab_pd['_gst_rates']);",{"prepared":283,"raw":157,"locations":300},[301,304,307,310,312,314,315,317,319,320,322,324,327,329,331,333,335,337,339],{"file":302,"line":48,"context":303},"admin\\templates\\tmd-gst-add.php","$wpdb->get_row() with variable interpolation",{"file":305,"line":306,"context":303},"admin\\templates\\tmd-gst-invoice.php",34,{"file":308,"line":259,"context":309},"admin\\templates\\tmd-gst-report.php","$wpdb->get_results() with variable interpolation",{"file":308,"line":311,"context":303},147,{"file":313,"line":243,"context":309},"admin\\templates\\tmd-gst.php",{"file":161,"line":123,"context":303},{"file":161,"line":316,"context":303},201,{"file":161,"line":318,"context":309},218,{"file":161,"line":260,"context":309},{"file":161,"line":321,"context":303},250,{"file":161,"line":323,"context":303},267,{"file":161,"line":325,"context":326},306,"$wpdb->get_col() with variable interpolation",{"file":161,"line":328,"context":303},815,{"file":161,"line":330,"context":303},826,{"file":161,"line":332,"context":303},1179,{"file":161,"line":334,"context":309},1346,{"file":161,"line":336,"context":303},1386,{"file":161,"line":338,"context":303},1425,{"file":161,"line":340,"context":303},1725,{"escaped":342,"rawEcho":343,"locations":344},107,52,[345,347,348,350,352,354,356,358,360,362,364,366,368,370,372,374,376,378,380,382,384,386,388,390,392,393,395,397,399,401,403,405,407,409,410,412,414,416,417,419,421,423,425,427,429,431,433,435,437,439,440,441],{"file":302,"line":167,"context":346},"raw output",{"file":302,"line":167,"context":346},{"file":302,"line":349,"context":346},24,{"file":302,"line":351,"context":346},95,{"file":302,"line":353,"context":346},102,{"file":302,"line":355,"context":346},146,{"file":302,"line":357,"context":346},165,{"file":302,"line":359,"context":346},173,{"file":302,"line":361,"context":346},188,{"file":302,"line":363,"context":346},202,{"file":302,"line":365,"context":346},213,{"file":305,"line":367,"context":346},167,{"file":305,"line":369,"context":346},175,{"file":305,"line":371,"context":346},328,{"file":305,"line":373,"context":346},330,{"file":305,"line":375,"context":346},332,{"file":305,"line":377,"context":346},334,{"file":305,"line":379,"context":346},348,{"file":305,"line":381,"context":346},354,{"file":305,"line":383,"context":346},361,{"file":305,"line":385,"context":346},367,{"file":305,"line":387,"context":346},373,{"file":305,"line":389,"context":346},379,{"file":308,"line":391,"context":346},164,{"file":308,"line":369,"context":346},{"file":308,"line":394,"context":346},176,{"file":308,"line":396,"context":346},177,{"file":308,"line":398,"context":346},178,{"file":308,"line":400,"context":346},179,{"file":308,"line":402,"context":346},180,{"file":308,"line":404,"context":346},181,{"file":308,"line":406,"context":346},182,{"file":313,"line":408,"context":346},69,{"file":313,"line":25,"context":346},{"file":313,"line":411,"context":346},71,{"file":313,"line":413,"context":346},78,{"file":313,"line":415,"context":346},90,{"file":161,"line":402,"context":346},{"file":161,"line":418,"context":346},417,{"file":161,"line":420,"context":346},421,{"file":161,"line":422,"context":346},426,{"file":161,"line":424,"context":346},529,{"file":161,"line":426,"context":346},536,{"file":161,"line":428,"context":346},939,{"file":161,"line":430,"context":346},941,{"file":161,"line":432,"context":346},1156,{"file":161,"line":434,"context":346},1159,{"file":161,"line":436,"context":346},1766,{"file":268,"line":438,"context":346},12,{"file":268,"line":196,"context":346},{"file":268,"line":343,"context":346},{"file":251,"line":442,"context":346},268,[],[445,470,484,499,511,526],{"entryPoint":446,"graph":447,"unsanitizedCount":125,"severity":37},"tmd_gst_front_order_invoice_html (inc\\tmd-ajax.php:22)",{"nodes":448,"edges":466},[449,453,458,460,464],{"id":450,"type":451,"label":452,"file":268,"line":184},"n0","source","$_POST",{"id":454,"type":455,"label":456,"file":268,"line":196,"wp_function":457},"n1","sink","echo() [XSS]","echo",{"id":459,"type":451,"label":452,"file":268,"line":196},"n2",{"id":461,"type":462,"label":463,"file":268,"line":196},"n3","transform","→ tmd_get_order_pdf_html()",{"id":465,"type":455,"label":456,"file":161,"line":436,"wp_function":457},"n4",[467,468,469],{"from":450,"to":454,"sanitized":267},{"from":459,"to":461,"sanitized":267},{"from":461,"to":465,"sanitized":267},{"entryPoint":471,"graph":472,"unsanitizedCount":125,"severity":37},"tmd_gst_admin_order_invoice_html (inc\\tmd-ajax.php:44)",{"nodes":473,"edges":480},[474,476,477,478,479],{"id":450,"type":451,"label":452,"file":268,"line":475},46,{"id":454,"type":455,"label":456,"file":268,"line":343,"wp_function":457},{"id":459,"type":451,"label":452,"file":268,"line":343},{"id":461,"type":462,"label":463,"file":268,"line":343},{"id":465,"type":455,"label":456,"file":161,"line":436,"wp_function":457},[481,482,483],{"from":450,"to":454,"sanitized":267},{"from":459,"to":461,"sanitized":267},{"from":461,"to":465,"sanitized":267},{"entryPoint":485,"graph":486,"unsanitizedCount":498,"severity":37},"\u003Ctmd-ajax> (inc\\tmd-ajax.php:0)",{"nodes":487,"edges":494},[488,490,491,492,493],{"id":450,"type":451,"label":489,"file":268,"line":184},"$_POST (x2)",{"id":454,"type":455,"label":456,"file":268,"line":196,"wp_function":457},{"id":459,"type":451,"label":489,"file":268,"line":196},{"id":461,"type":462,"label":463,"file":268,"line":196},{"id":465,"type":455,"label":456,"file":161,"line":436,"wp_function":457},[495,496,497],{"from":450,"to":454,"sanitized":267},{"from":459,"to":461,"sanitized":267},{"from":461,"to":465,"sanitized":267},4,{"entryPoint":500,"graph":501,"unsanitizedCount":26,"severity":510},"tmd_gst_settings (classes\\class-tmd-gst-data.php:318)",{"nodes":502,"edges":508},[503,505],{"id":450,"type":451,"label":452,"file":161,"line":504},324,{"id":454,"type":455,"label":506,"file":161,"line":371,"wp_function":507},"update_option() [Settings Manipulation]","update_option",[509],{"from":450,"to":454,"sanitized":267},"low",{"entryPoint":512,"graph":513,"unsanitizedCount":26,"severity":525},"tmd_gst_tab_product (classes\\class-tmd-gst-data.php:461)",{"nodes":514,"edges":522},[515,518,520],{"id":450,"type":451,"label":516,"file":161,"line":517},"$_GET",509,{"id":454,"type":462,"label":519,"file":161,"line":517},"→ tmd_gst_rate_tab()",{"id":459,"type":455,"label":521,"file":161,"line":294,"wp_function":287},"unserialize() [Object Injection]",[523,524],{"from":450,"to":454,"sanitized":267},{"from":454,"to":459,"sanitized":267},"high",{"entryPoint":527,"graph":528,"unsanitizedCount":125,"severity":525},"\u003Cclass-tmd-gst-data> (classes\\class-tmd-gst-data.php:0)",{"nodes":529,"edges":535},[530,531,532,533,534],{"id":450,"type":451,"label":452,"file":161,"line":504},{"id":454,"type":455,"label":506,"file":161,"line":371,"wp_function":507},{"id":459,"type":451,"label":516,"file":161,"line":517},{"id":461,"type":462,"label":519,"file":161,"line":517},{"id":465,"type":455,"label":521,"file":161,"line":294,"wp_function":287},[536,537,538],{"from":450,"to":454,"sanitized":267},{"from":459,"to":461,"sanitized":267},{"from":461,"to":465,"sanitized":267},{"summary":540,"deductions":541},"The \"gst-for-woocommerce\" plugin v2.0 exhibits a concerning security posture, primarily due to a significant number of unprotected AJAX handlers and a complete lack of nonce and capability checks across its entry points. The static analysis reveals 6 AJAX handlers, all of which are exposed without any authentication or authorization, creating a substantial attack surface that could be exploited by unauthenticated users. This is further exacerbated by the presence of the `unserialize` function, a known risk vector, and a notable percentage of SQL queries not using prepared statements, potentially leading to SQL injection vulnerabilities.\n\nThe taint analysis highlights 6 flows with unsanitized paths, with 2 classified as high severity. This indicates that data entering the plugin is not being properly validated or sanitized before being used in potentially dangerous operations. The vulnerability history, while not detailing critical or high severity CVEs, does show a past medium-severity CSRF vulnerability. The recurrence of CSRF as a common vulnerability type in its history suggests a pattern of insufficient input validation or token protection, particularly relevant given the identified lack of nonce checks.\n\nIn conclusion, while the plugin has no reported external HTTP requests or file operations, which are positive indicators, the critical deficiencies in authentication, authorization, and input sanitization on its AJAX endpoints present a high risk. The reliance on `unserialize` and the significant number of unsanitized taint flows are major red flags. The past vulnerability history, though not severe, reinforces the need for robust security practices. The plugin's overall security is significantly compromised by these fundamental oversights.",[542,544,546,548,550,552,554,556],{"reason":543,"points":175},"Unprotected AJAX handlers",{"reason":545,"points":175},"Missing nonce checks",{"reason":547,"points":175},"Missing capability checks",{"reason":549,"points":175},"Dangerous function: unserialize",{"reason":551,"points":86},"High severity taint flows",{"reason":553,"points":272},"SQL queries not using prepared statements",{"reason":555,"points":86},"Unpatched CVE",{"reason":557,"points":175},"Unsanitized paths in taint flows","2026-03-16T21:46:02.703Z",{"wat":560,"direct":597},{"assetPaths":561,"generatorPatterns":574,"scriptPaths":575,"versionParams":584},[562,563,564,565,566,567,568,569,570,571,572,573],"\u002Fwp-content\u002Fplugins\u002Fgst-for-woocommerce\u002Fassets\u002Fcss\u002Ftmd-gst-style.css","\u002Fwp-content\u002Fplugins\u002Fgst-for-woocommerce\u002Fassets\u002Fcss\u002Ftmd-style-ui.css","\u002Fwp-content\u002Fplugins\u002Fgst-for-woocommerce\u002Fassets\u002Fcss\u002Fselect-ui.css","\u002Fwp-content\u002Fplugins\u002Fgst-for-woocommerce\u002Fassets\u002Fcss\u002Fdatatable-ui.css","\u002Fwp-content\u002Fplugins\u002Fgst-for-woocommerce\u002Fassets\u002Fjs\u002Fadmin-script.js","\u002Fwp-content\u002Fplugins\u002Fgst-for-woocommerce\u002Fassets\u002Fjs\u002Fdatatable-ui.js","\u002Fwp-content\u002Fplugins\u002Fgst-for-woocommerce\u002Fassets\u002Fjs\u002Fselect-ui.js","\u002Fwp-content\u002Fplugins\u002Fgst-for-woocommerce\u002Fassets\u002Fjs\u002Fajax.js","\u002Fwp-content\u002Fplugins\u002Fgst-for-woocommerce\u002Fassets\u002Fjs\u002Fjquery-jspdf.js","\u002Fwp-content\u002Fplugins\u002Fgst-for-woocommerce\u002Fassets\u002Fjs\u002Fjquery-jspdf-convas.js","\u002Fwp-content\u002Fplugins\u002Fgst-for-woocommerce\u002Fassets\u002Fjs\u002Fjquery-gst-pdf.js","\u002Fwp-content\u002Fplugins\u002Fgst-for-woocommerce\u002Fassets\u002Fjs\u002Ffront-ajax.js",[],[576,577,578,579,580,581,582,583],"assets\u002Fjs\u002Fadmin-script.js","assets\u002Fjs\u002Fdatatable-ui.js","assets\u002Fjs\u002Fselect-ui.js","assets\u002Fjs\u002Fajax.js","assets\u002Fjs\u002Fjquery-jspdf.js","assets\u002Fjs\u002Fjquery-jspdf-convas.js","assets\u002Fjs\u002Fjquery-gst-pdf.js","assets\u002Fjs\u002Ffront-ajax.js",[585,586,587,588,589,590,591,592,593,594,595,596],"gst-for-woocommerce\u002Fassets\u002Fcss\u002Ftmd-gst-style.css?ver=","gst-for-woocommerce\u002Fassets\u002Fcss\u002Ftmd-style-ui.css?ver=","gst-for-woocommerce\u002Fassets\u002Fcss\u002Fselect-ui.css?ver=","gst-for-woocommerce\u002Fassets\u002Fcss\u002Fdatatable-ui.css?ver=","gst-for-woocommerce\u002Fassets\u002Fjs\u002Fadmin-script.js?ver=","gst-for-woocommerce\u002Fassets\u002Fjs\u002Fdatatable-ui.js?ver=","gst-for-woocommerce\u002Fassets\u002Fjs\u002Fselect-ui.js?ver=","gst-for-woocommerce\u002Fassets\u002Fjs\u002Fajax.js?ver=","gst-for-woocommerce\u002Fassets\u002Fjs\u002Fjquery-jspdf.js?ver=","gst-for-woocommerce\u002Fassets\u002Fjs\u002Fjquery-jspdf-convas.js?ver=","gst-for-woocommerce\u002Fassets\u002Fjs\u002Fjquery-gst-pdf.js?ver=","gst-for-woocommerce\u002Fassets\u002Fjs\u002Ffront-ajax.js?ver=",{"cssClasses":598,"htmlComments":603,"htmlAttributes":604,"restEndpoints":605,"jsGlobals":606,"shortcodeOutput":608},[599,600,601,602],"tmd-gst-fr-style","tmd-gst-fr-tmd-style","tmd-gst-fr-select","tmd-gst-fr-datatable",[],[],[],[607],"tmd_ajax_script",[]]