[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f0BVMq2epoIaoRXsJ6mdth3y_w64vgY9RBANgXeR68oE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":14,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":47,"crawl_stats":36,"alternatives":51,"analysis":140,"fingerprints":246},"hitpay-payment-gateway","HitPay Payment Gateway for WooCommerce","4.2.1","HitPay Payment Solutions Pte Ltd","https:\u002F\u002Fprofiles.wordpress.org\u002Fhitpay2020\u002F","\u003Cp>HitPay Payment Gateway Plugin allows HitPay merchants to accept PayNow QR, Cards, Apple Pay, Google Pay, WeChatPay, AliPay and GrabPay Payments.\u003C\u002Fp>\n\u003Cp>This plugin would communicate with 3rd party HitPay payment gateway(https:\u002F\u002Fwww.hitpayapp.com\u002F) in order to process the payments.\u003C\u002Fp>\n\u003Cp>Merchant must create an account with HitPay payment gateway(https:\u002F\u002Fwww.hitpayapp.com\u002F).\u003C\u002Fp>\n\u003Cp>Pay only per transaction. No monthly, setup, admin or any hidden service fees.\u003C\u002Fp>\n\u003Cp>Merchant once created an account with HitPay payment gateway(https:\u002F\u002Fwww.hitpayapp.com\u002F), they can go to thier HitPay dashboard and choose the payment options they would to avail for their site.\u003C\u002Fp>\n\u003Cp>And merchant need to copy the API keys and Salt values from the HitPay Web Dashboard under Settings > Payment Gateway > API Keys\u003C\u002Fp>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Go to WooCommerce settings\u003C\u002Fli>\n\u003Cli>Select the “Payments” tab\u003C\u002Fli>\n\u003Cli>Activate the payment method (if inactive)\u003C\u002Fli>\n\u003Cli>Set the name you wish to show your users on Checkout (for example: “HitPay or Creditcard”)\u003C\u002Fli>\n\u003Cli>Fill the payment method’s description (for example: “Pay with HitPay”)\u003C\u002Fli>\n\u003Cli>Copy the API keys and Salt values from the HitPay Web Dashboard under Settings > Payment Gateway > API Keys\u003C\u002Fli>\n\u003Cli>Select the payment gateway logos.\u003C\u002Fli>\n\u003Cli>Click “Save Changes”\u003C\u002Fli>\n\u003Cli>All done!\u003C\u002Fli>\n\u003C\u002Fol>\n","HitPay Payment Gateway Plugin allows HitPay merchants to accept PayNow QR, Cards, Apple Pay, Google Pay, WeChatPay, AliPay and GrabPay Payments.",4000,42761,100,1,"2025-11-29T02:34:00.000Z","6.9.4","4.0","5.5",[20,21,22,23],"hitpay","payment-gateway","qr-code","woocommerce","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhitpay-payment-gateway.4.2.1.zip",99,0,"2024-07-11 00:00:00","2026-03-15T15:16:48.613Z",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":38,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":28,"updated_date":43,"references":44,"days_to_patch":46},"CVE-2024-38747","hitpay-payment-gateway-for-woocommerce-information-exposure-via-log-files","HitPay Payment Gateway for WooCommerce \u003C= 4.1.3 - Information Exposure via Log Files","The HitPay Payment Gateway for WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.1.3 through publicly exposed log files. This makes it possible for unauthenticated attackers to view potentially sensitive information contained in the exposed log files.",null,"\u003C=4.1.3","4.1.4","medium",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:N\u002FA:N","Insertion of Sensitive Information into Log File","2024-07-19 13:54:56",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F5db4709d-0121-4b37-b0d2-79aa7943b442?source=api-prod",9,{"slug":48,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":46,"trust_score":49,"computed_at":50},"hitpay2020",93,"2026-04-04T04:23:40.621Z",[52,72,88,104,119],{"slug":53,"name":54,"version":55,"author":56,"author_profile":57,"description":58,"short_description":59,"active_installs":60,"downloaded":61,"rating":13,"num_ratings":62,"last_updated":63,"tested_up_to":16,"requires_at_least":64,"requires_php":65,"tags":66,"homepage":69,"download_link":70,"security_score":13,"vuln_count":14,"unpatched_count":27,"last_vuln_date":71,"fetched_at":29},"bangladeshi-payment-gateways","Bangladeshi Payment Gateways – Make Payment Using QR Code","4.0.4","ultraDevs","https:\u002F\u002Fprofiles.wordpress.org\u002Fultradevs\u002F","\u003Cp>Bangladeshi Payment Gateways for WooCommerce. It has some advanced features that will help you to manage payment easily.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Pay with QR Code\u003C\u002Fli>\n\u003Cli>Fee for each gateway\u003C\u002Fli>\n\u003Cli>Block Based Checkout Page Support\u003C\u002Fli>\n\u003Cli>USD to BDT Conversion Support\u003C\u002Fli>\n\u003Cli>Statistics, Transactions.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Supported Gateways\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>bKash\u003C\u002Fli>\n\u003Cli>Rocket\u003C\u002Fli>\n\u003Cli>Nagad\u003C\u002Fli>\n\u003Cli>Upay\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Video\u003C\u002Fh4>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FArJ-zOW1KBU?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>Our Other Plugins.\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-dropbox-integration\u002F\" rel=\"ugc\">Easy Dropbox Integration For WordPress\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frandom-image-block-for-block-editor\u002F\" rel=\"ugc\">Random Image Block for Block Editor\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fultraembed-advanced-iframe\u002F\" rel=\"ugc\">UltraEmbed – Advanced Iframe Plugin For WordPress with Gutenberg Block Included\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftestimonialx-block\u002F\" rel=\"ugc\">TestimonialX – Testimonial Block For Gutenberg Block Editor with 15+ Stunning Styles\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Need Help?\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fbangladeshi-payment-gateways\u002F\" rel=\"ugc\">Free Support\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fweb.facebook.com\u002Fhello.ultradevs\" rel=\"nofollow ugc\">Live Chat\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fultradevs.com\u002Fdocs\u002Fbangladeshi-payment-gateways\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>  | \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fplaylist?list=PL6-MOhUm73eiSSVHgAVnFFEvs6rO2sZyC\" rel=\"nofollow ugc\">Video Tutorials\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Join With US\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fweb.facebook.com\u002Fgroups\u002Fpowerfulblocks\u002F\" rel=\"nofollow ugc\">Facebook – Community\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fweb.facebook.com\u002Fhello.ultradevs\" rel=\"nofollow ugc\">Facebook – Page\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCc2yL-QGQjscXpPx9Pp7J8w\" rel=\"nofollow ugc\">Youtube\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002FultraDevsBD\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.instagram.com\u002Fultradevs\u002F\" rel=\"nofollow ugc\">Instagram\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Contribute\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002FultraDevs\u002FBangladeshi-Payment-Gateways\" rel=\"nofollow ugc\">Github Link\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>Bangladeshi Payment Gateways uses \u003Ca href=\"https:\u002F\u002Fappsero.com\" rel=\"nofollow ugc\">Appsero\u003C\u002Fa> SDK to collect some telemetry data upon user’s confirmation. This helps us to troubleshoot problems faster & make product improvements.\u003C\u002Fp>\n\u003Cp>Appsero SDK \u003Cstrong>does not gather any data by default.\u003C\u002Fstrong> The SDK only starts gathering basic telemetry data \u003Cstrong>when a user allows it via the admin notice\u003C\u002Fstrong>. We collect the data to ensure a great user experience for all our users.\u003C\u002Fp>\n\u003Cp>Integrating Appsero SDK \u003Cstrong>DOES NOT IMMEDIATELY\u003C\u002Fstrong> start gathering data, \u003Cstrong>without confirmation from users in any case.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Learn more about how \u003Ca href=\"https:\u002F\u002Fappsero.com\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">Appsero collects and uses this data\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Made with love by \u003Ca href=\"https:\u002F\u002Fultradevs.com\" rel=\"nofollow ugc\">ultraDevs\u003C\u002Fa>\u003C\u002Fp>\n","Bangladeshi Payment Gateways for WooCommerce.",5000,72784,87,"2025-12-28T04:28:00.000Z","4.4","7.0.0",[67,68,21,22,23],"bkash","mobile-payment","https:\u002F\u002Fultradevs.com\u002Fproducts\u002Fwp-plugin\u002Fbangladeshi-payment-gateways\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbangladeshi-payment-gateways.4.0.4.zip","2022-12-16 00:00:00",{"slug":73,"name":74,"version":75,"author":73,"author_profile":76,"description":77,"short_description":78,"active_installs":27,"downloaded":79,"rating":27,"num_ratings":27,"last_updated":80,"tested_up_to":16,"requires_at_least":81,"requires_php":82,"tags":83,"homepage":86,"download_link":87,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"frinextqr","Frinext Scan & Pay","1.1.2","https:\u002F\u002Fprofiles.wordpress.org\u002Ffrinextqr\u002F","\u003Cp>Frinext Scan & Pay is a manual UPI payment gateway for WooCommerce that allows Indian businesses to accept UPI payments with manual verification.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Important:\u003C\u002Fstrong> This plugin does NOT automatically verify payments. Store owners must manually confirm payment receipt and update order status.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Generate UPI QR codes for customer payments\u003C\u002Fli>\n\u003Cli>Customer uploads payment proof\u002Fscreenshot\u003C\u002Fli>\n\u003Cli>5-minute QR code expiry timer\u003C\u002Fli>\n\u003Cli>Admin can view payment proof in order details\u003C\u002Fli>\n\u003Cli>Works with WooCommerce Classic Checkout\u003C\u002Fli>\n\u003Cli>Simple setup – just enter your UPI ID\u003C\u002Fli>\n\u003Cli>No transaction fees from this plugin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Customer selects “Frinext Scan & Pay” at checkout\u003C\u002Fli>\n\u003Cli>Customer is shown a UPI QR code to scan\u003C\u002Fli>\n\u003Cli>Customer pays via any UPI app (Google Pay, PhonePe, Paytm, etc.)\u003C\u002Fli>\n\u003Cli>Customer uploads payment proof (screenshot)\u003C\u002Fli>\n\u003Cli>Store admin manually verifies payment and approves order\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Who Should Use This\u003C\u002Fh4>\n\u003Cp>This plugin is ideal for small businesses that:\u003Cbr \u002F>\n* Want to accept UPI payments without payment gateway fees\u003Cbr \u002F>\n* Are comfortable with manual payment verification\u003Cbr \u002F>\n* Process a manageable number of orders\u003Cbr \u002F>\n* Operate in India and serve Indian customers\u003C\u002Fp>\n\u003Cp>A Pro version with automatic payment verification is available separately at the plugin author’s website.\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin relies on a third-party external service to generate QR codes for UPI payments.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Service Used:\u003C\u002Fstrong> QR Server API (api.qrserver.com) provided by goqr.me\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What it’s used for:\u003C\u002Fstrong>\u003Cbr \u002F>\nThis service generates QR code images that customers scan to complete UPI payments. The plugin sends a UPI payment string to this service, which returns a QR code image.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What data is sent:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Merchant UPI ID (configured by store owner)\u003Cbr \u002F>\n– Payment amount for the order\u003Cbr \u002F>\n– Merchant\u002Fpayee name\u003Cbr \u002F>\n– Transaction reference note (order ID)\u003C\u002Fp>\n\u003Cp>No customer personal information (name, email, address, etc.) is sent to this service. Only payment-related data needed to generate the UPI payment QR code is transmitted.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>When data is sent:\u003C\u002Fstrong>\u003Cbr \u002F>\nData is sent when a customer views the payment page after placing an order and choosing “Frinext Scan & Pay” as the payment method. The QR code is generated on-demand each time the payment page loads.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Service Links:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Service Website: https:\u002F\u002Fgoqr.me\u002F\u003Cbr \u002F>\n– API Documentation: https:\u002F\u002Fgoqr.me\u002Fapi\u002F\u003Cbr \u002F>\n– Terms of Service: https:\u002F\u002Fgoqr.me\u002Fde\u002Frechtliches\u002Fdatenschutz-goqrme.html\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fgoqr.me\u002Fde\u002Frechtliches\u002Fdatenschutz-goqrme.html\u003C\u002Fp>\n\u003Cp>By using this plugin, you acknowledge that QR codes will be generated via this external service.\u003C\u002Fp>\n","Manual UPI Scan & Pay payment gateway for WooCommerce with QR code and payment proof upload.",119,"2026-03-15T14:30:00.000Z","5.8","7.4",[84,21,22,85,23],"india","upi","https:\u002F\u002Ffrinext.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffrinextqr.1.1.3.zip",{"slug":89,"name":90,"version":91,"author":92,"author_profile":93,"description":94,"short_description":95,"active_installs":27,"downloaded":96,"rating":27,"num_ratings":27,"last_updated":97,"tested_up_to":16,"requires_at_least":98,"requires_php":82,"tags":99,"homepage":102,"download_link":103,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"scanandpay-payments-via-payid-for-woocommerce","Scanandpay Payments via PayID for WooCommerce","1.1.8","scanandpay","https:\u002F\u002Fprofiles.wordpress.org\u002Fscanandpay\u002F","\u003Cp>\u003Cstrong>Scan & Pay\u003C\u002Fstrong> enables Australian WooCommerce stores to accept PayID payments directly. Customers simply scan a QR code at checkout and pay with PayID using their mobile banking app – no card details required.\u003C\u002Fp>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Customer selects “Scan & Pay (PayID)” at checkout\u003C\u002Fli>\n\u003Cli>A unique QR code is displayed for their order\u003C\u002Fli>\n\u003Cli>Customer scans the QR code and pays with PayID using their banking app\u003C\u002Fli>\n\u003Cli>Payment is verified in real-time by Scan & Pay API via Global Payments Oceania\u003C\u002Fli>\n\u003Cli>Order is automatically marked as paid when payment is confirmed\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Instant PayID Payments\u003C\u002Fstrong> – Real-time payment confirmation via webhooks\u003C\u002Fli>\n\u003Cli>\u003Cstrong>QR Code Checkout\u003C\u002Fstrong> – Mobile-friendly payment experience\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce Blocks Support\u003C\u002Fstrong> – Works with classic and block-based checkout\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Secure\u003C\u002Fstrong> – HMAC-signed webhooks, encrypted API communication\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Fallback Polling\u003C\u002Fstrong> – Automatic status checks if webhooks are delayed\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WooCommerce 7.0 or higher\u003C\u002Fli>\n\u003Cli>PHP 7.4 or higher\u003C\u002Fli>\n\u003Cli>A Scan & Pay merchant account (\u003Ca href=\"https:\u002F\u002Fid.scanandpay.com.au\u002F\" rel=\"nofollow ugc\">Sign up here\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Australian PayID configured with your bank\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>External Services\u003C\u002Fh4>\n\u003Cp>This plugin connects to the \u003Cstrong>Scan & Pay API\u003C\u002Fstrong> to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Create payment sessions when customers checkout\u003C\u002Fli>\n\u003Cli>Generate QR codes for PayID payments\u003C\u002Fli>\n\u003Cli>Receive payment confirmation webhooks via Global Payments Oceania API\u003C\u002Fli>\n\u003Cli>Verify payments in real-time\u003C\u002Fli>\n\u003Cli>Check payment status\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Service Provider:\u003C\u002Fstrong> Scan & Pay by SENAX Enterprises Pty Ltd\u003Cbr \u002F>\n\u003Cstrong>Payment Verification:\u003C\u002Fstrong> Global Payments Oceania API\u003Cbr \u002F>\n\u003Cstrong>Terms of Service:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fscanandpay.com.au\u002Fterms\" rel=\"nofollow ugc\">https:\u002F\u002Fscanandpay.com.au\u002Fterms\u003C\u002Fa>\u003Cbr \u002F>\n\u003Cstrong>Privacy Policy:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fscanandpay.com.au\u002Fprivacy\" rel=\"nofollow ugc\">https:\u002F\u002Fscanandpay.com.au\u002Fprivacy\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Data transmitted to the service includes: order amount, currency, order reference, and merchant credentials. No customer personal data is sent to the external service.\u003C\u002Fp>\n\u003Cp>All QR codes are generated securely by the Scan & Pay backend infrastructure – no third-party QR code services are used.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Example payment page:\u003C\u002Fstrong> See Screenshot #6 below or view at \u003Ca href=\"https:\u002F\u002Fscanandpay.com.au\u002Fwp-content\u002Fuploads\u002F2026\u002F03\u002Fpayment_page.png\" rel=\"nofollow ugc\">scanandpay.com.au\u002Fpayment-example\u003C\u002Fa>\u003C\u002Fp>\n","Accept PayID payments in your WooCommerce store. Customers scan a QR code and pay instantly via their banking app.",808,"2026-03-08T05:35:00.000Z","6.0",[100,101,21,22,23],"australia","payid","https:\u002F\u002Fscanandpay.com.au\u002Fwoocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fscanandpay-payments-via-payid-for-woocommerce.1.1.8.zip",{"slug":105,"name":106,"version":107,"author":108,"author_profile":109,"description":110,"short_description":111,"active_installs":27,"downloaded":112,"rating":27,"num_ratings":27,"last_updated":24,"tested_up_to":16,"requires_at_least":81,"requires_php":82,"tags":113,"homepage":24,"download_link":117,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":118},"ssv-smart-pay-payment-gateway","SSV Smart Pay Payment Gateway","1.0","ssvsmartpay","https:\u002F\u002Fprofiles.wordpress.org\u002Fssvsmartpay\u002F","\u003Cp>\u003Cstrong>SSV Smart Pay Payment Gateway\u003C\u002Fstrong> allows WooCommerce store owners to accept payments directly from customers’ bank accounts.\u003Cbr \u002F>\nIt supports both Sandbox and Production environments, making it perfect for testing before going live.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Accept payments using QR codes or direct bank transfer.\u003Cbr \u002F>\n* Supports Sandbox (test) and Production (live) environments.\u003Cbr \u002F>\n* Fully compatible with WooCommerce checkout flow.\u003Cbr \u002F>\n* Shows clear messages for payment success, failure, or cancellation.\u003C\u002Fp>\n\u003Ch3>Currency Support\u003C\u002Fh3>\n\u003Cp>This plugin currently supports GBP (British Pound) as the only currency.\u003Cbr \u002F>\nMake sure your WooCommerce store uses GBP for successful payment processing.\u003C\u002Fp>\n\u003Cp>WooCommerce \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> General \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Currency \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> GBP – Pound Sterling (£)\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to the \u003Cstrong>SSV Smart Pay API\u003C\u002Fstrong> to securely process WooCommerce payments.\u003C\u002Fp>\n\u003Cp>Service Used:\u003Cbr \u002F>\n– \u003Cstrong>SSV Smart Pay API\u003C\u002Fstrong> (https:\u002F\u002Fapi.ssvsmartpay.co\u002F)\u003C\u002Fp>\n\u003Cp>Purpose:\u003Cbr \u002F>\n– Generate payment token \u002F payment URL\u003Cbr \u002F>\n– Create orders\u003Cbr \u002F>\n– Validate payment status\u003Cbr \u002F>\n– Update WooCommerce order after successful payment\u003C\u002Fp>\n\u003Cp>Data Sent:\u003Cbr \u002F>\n– Customer email\u003Cbr \u002F>\n– Customer phone number\u003Cbr \u002F>\n– Customer name\u003Cbr \u002F>\n– Order ID\u003Cbr \u002F>\n– Order amount and currency\u003Cbr \u002F>\n– Callback URL\u003C\u002Fp>\n\u003Cp>When Data Is Sent:\u003Cbr \u002F>\n– During checkout when the customer selects SSV Smart Pay\u003Cbr \u002F>\n– During payment verification\u003Cbr \u002F>\n– During callback\u002Fresponse from the SSV Smart Pay system\u003C\u002Fp>\n\u003Cp>Terms of Service: https:\u002F\u002Fapp.ssvsmartpay.co\u002Flegal\u002FTerms-of-Service-Consumers\u003Cbr \u002F>\nPrivacy Policy: https:\u002F\u002Fapp.ssvsmartpay.co\u002Flegal\u002FSSV-Privacy-and-Cookies-Policy\u003C\u002Fp>\n\u003Ch3>Arbitrary section\u003C\u002Fh3>\n\u003Cp>This plugin is developed for projects that require direct bank payment integration with WooCommerce.\u003Cbr \u002F>\nFor feature requests or bug reports, please contact support via https:\u002F\u002Fapp.ssvsmartpay.co\u002Fhome\u002FcontactUs.\u003C\u002Fp>\n","Accept payments via Pay by Bank - SSV SmartPay Payment Gateway using QR code or bank transfer. Fast, secure, and easy to use for WooCommerce stores.",114,[114,115,22,116,23],"bank-payment","payment","ssv-payment-gateway","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fssv-smart-pay-payment-gateway.1.0.zip","2026-03-15T10:48:56.248Z",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":129,"num_ratings":130,"last_updated":131,"tested_up_to":132,"requires_at_least":133,"requires_php":82,"tags":134,"homepage":138,"download_link":139,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"woo-paystack","Paystack WooCommerce Payment Gateway","5.8.2","Tunbosun Ayinla","https:\u002F\u002Fprofiles.wordpress.org\u002Ftubiz\u002F","\u003Cp>Paystack makes it easy for businesses in Nigeria, Ghana, Kenya and South Africa to accept secure payments from multiple local and global payment channels. Integrate Paystack with your store today, and let your customers pay you with their choice of methods.\u003C\u002Fp>\n\u003Cp>With Paystack for WooCommerce, you can accept payments via:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Credit\u002FDebit Cards — Visa, Mastercard, Verve (NG, GH, KE), American Express (SA only)\u003C\u002Fli>\n\u003Cli>Bank transfer (Nigeria)\u003C\u002Fli>\n\u003Cli>Mobile money (Ghana)\u003C\u002Fli>\n\u003Cli>Masterpass (South Africa)\u003C\u002Fli>\n\u003Cli>EFT (South Africa)\u003C\u002Fli>\n\u003Cli>USSD (Nigeria)\u003C\u002Fli>\n\u003Cli>Visa QR (Nigeria)\u003C\u002Fli>\n\u003Cli>Many more coming soon\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Why Paystack?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Start receiving payments instantly—go from sign-up to your first real transaction in as little as 15 minutes\u003C\u002Fli>\n\u003Cli>Simple, transparent pricing—no hidden charges or fees\u003C\u002Fli>\n\u003Cli>Modern, seamless payment experience via the Paystack Checkout — \u003Ca href=\"https:\u002F\u002Fpaystack.com\u002Fdemo\u002Fcheckout\" rel=\"nofollow ugc\">Try the demo!\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Advanced fraud detection\u003C\u002Fli>\n\u003Cli>Understand your customers better through a simple and elegant dashboard\u003C\u002Fli>\n\u003Cli>Access to attentive, empathetic customer support 24\u002F7\u003C\u002Fli>\n\u003Cli>Free updates as we launch new features and payment options\u003C\u002Fli>\n\u003Cli>Clearly documented APIs to build your custom payment experiences\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Over 60,000 businesses of all sizes in Nigeria, Ghana, Kenya, and South Africa rely on Paystack’s suite of products to receive payments and make payouts seamlessly. Sign up on \u003Ca href=\"https:\u002F\u002Fpaystack.com\u002Fsignup\" rel=\"nofollow ugc\">Paystack.com\u002Fsignup\u003C\u002Fa> to get started.\u003C\u002Fp>\n\u003Ch4>Note\u003C\u002Fh4>\n\u003Cp>This plugin is meant to be used by merchants in Ghana, Kenya, Nigeria and South Africa.\u003C\u002Fp>\n\u003Ch4>Plugin Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Accept payment\u003C\u002Fstrong> via Mastercard, Visa, Verve, USSD, Mobile Money, Bank Transfer, EFT, Bank Accounts, GTB 737 & Visa QR.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Seamless integration\u003C\u002Fstrong> into the WooCommerce checkout page. Accept payment directly on your site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Refunds\u003C\u002Fstrong> from the WooCommerce order details page. Refund an order directly from the order details page\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Recurring payment\u003C\u002Fstrong> using \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-subscriptions\u002F\" rel=\"nofollow ugc\">WooCommerce Subscriptions\u003C\u002Fa> plugin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WooCommerce Subscriptions Integration\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-subscriptions\u002F\" rel=\"nofollow ugc\">WooCommerce Subscriptions\u003C\u002Fa> integration only works with \u003Cstrong>WooCommerce v2.6 and above\u003C\u002Fstrong> and \u003Cstrong>WooCommerce Subscriptions v2.0 and above\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>No subscription plans is created on Paystack. The \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-subscriptions\u002F\" rel=\"nofollow ugc\">WooCommerce Subscriptions\u003C\u002Fa> plugin handles all the subscription functionality.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>If a customer pays for a subscription using a Mastercard or Visa card, their subscription will renew automatically throughout the duration of the subscription. If an automatic renewal fail their subscription will be put on-hold and they will have to login to their account to renew the subscription.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>For customers paying with a Verve card, their subscription can’t be renewed automatically, once a payment is due their subscription will be on-hold. The customer will have to login to his account to manually renew his subscription.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>If a subscription has a free trial and no signup-fee, automatic renewal is not possible for the first payment because the initial order total will be 0, after the free trial the subscription will be put on-hold. The customer will have to login to his account to renew his subscription. If a Mastercard or Visa card is used to renew the subscription subsequent renewals will be automatic throughout the duration of the subscription, if a Verve card is used automatic renewal isn’t possible.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Suggestions \u002F Feature Request\u003C\u002Fh4>\n\u003Cp>If you have suggestions or a new feature request, feel free to get in touch with me via the contact form on my website \u003Ca href=\"http:\u002F\u002Fbosun.me\u002Fget-in-touch\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>You can also follow me on Twitter! \u003Cstrong>\u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Ftubiz\" rel=\"nofollow ugc\">@tubiz\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n","Paystack for WooCommerce allows your WooCommerce store to accept secure payments from multiple local and global payment channels.",30000,432109,90,24,"2025-04-17T08:26:00.000Z","6.8.5","6.2",[135,21,136,137,23],"mastercard","paystack","visa","https:\u002F\u002Fpaystack.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-paystack.5.8.2.zip",{"attackSurface":141,"codeSignals":194,"taintFlows":207,"riskAssessment":235,"analyzedAt":245},{"hooks":142,"ajaxHandlers":190,"restRoutes":191,"shortcodes":192,"cronEvents":193,"entryPointCount":27,"unprotectedCount":27},[143,149,153,158,162,166,169,173,178,182,186],{"type":144,"name":145,"callback":146,"file":147,"line":148},"action","before_woocommerce_init","closure","hitpay-payment-gateway.php",30,{"type":144,"name":150,"callback":151,"file":147,"line":152},"plugins_loaded","woocommerce_hitpay_init",39,{"type":154,"name":155,"callback":156,"file":147,"line":157},"filter","woocommerce_payment_gateways","hitpay_add_gateway_class",52,{"type":154,"name":159,"callback":160,"file":147,"line":161},"woocommerce_available_payment_gateways","hitpay_enable_gateway",58,{"type":144,"name":163,"callback":164,"file":147,"line":165},"woocommerce_blocks_loaded","woocommerce_hitpay_blocks_support",74,{"type":144,"name":167,"callback":146,"file":147,"line":168},"woocommerce_blocks_payment_method_type_registration",78,{"type":154,"name":170,"callback":171,"priority":172,"file":147,"line":62},"woocommerce_order_button_html","hitpay_custom_order_button_html",10,{"type":154,"name":174,"callback":175,"priority":172,"file":176,"line":177},"woocommerce_gateway_icon","custom_payment_gateway_icons","includes\\regular-checkout.php",125,{"type":144,"name":179,"callback":180,"priority":172,"file":176,"line":181},"woocommerce_admin_order_totals_after_total","admin_order_totals",126,{"type":144,"name":183,"callback":184,"priority":172,"file":176,"line":185},"admin_footer","hitpay_admin_footer",127,{"type":144,"name":187,"callback":188,"file":176,"line":189},"wp_enqueue_scripts","hitpay_load_front_assets",128,[],[],[],[],{"dangerousFunctions":195,"sqlUsage":196,"outputEscaping":198,"fileOperations":199,"externalRequests":27,"nonceChecks":46,"capabilityChecks":27,"bundledLibraries":206},[],{"prepared":27,"raw":27,"locations":197},[],{"escaped":185,"rawEcho":199,"locations":200},2,[201,204],{"file":176,"line":202,"context":203},218,"raw output",{"file":176,"line":205,"context":203},1309,[],[208,227],{"entryPoint":209,"graph":210,"unsanitizedCount":27,"severity":226},"hitpay_admin_footer (includes\\regular-checkout.php:623)",{"nodes":211,"edges":223},[212,217],{"id":213,"type":214,"label":215,"file":176,"line":216},"n0","source","$_GET",635,{"id":218,"type":219,"label":220,"file":176,"line":221,"wp_function":222},"n1","sink","echo() [XSS]",858,"echo",[224],{"from":213,"to":218,"sanitized":225},true,"low",{"entryPoint":228,"graph":229,"unsanitizedCount":27,"severity":226},"\u003Cregular-checkout> (includes\\regular-checkout.php:0)",{"nodes":230,"edges":233},[231,232],{"id":213,"type":214,"label":215,"file":176,"line":216},{"id":218,"type":219,"label":220,"file":176,"line":221,"wp_function":222},[234],{"from":213,"to":218,"sanitized":225},{"summary":236,"deductions":237},"The \"hitpay-payment-gateway\" plugin version 4.2.1 exhibits a generally good security posture based on the static analysis. The complete absence of exploitable entry points (AJAX, REST API, shortcodes, cron events) is a significant strength, indicating a well-architected plugin with limited exposure to external manipulation. The plugin also demonstrates good practices by using prepared statements for all SQL queries and properly escaping the vast majority (98%) of its output, minimizing the risk of SQL injection and cross-site scripting vulnerabilities.  The presence of nonce checks and capability checks, while not explicitly detailed in terms of their coverage, suggests an attempt to secure sensitive operations.\n\nHowever, a few areas warrant attention. The existence of 2 file operations, while not inherently problematic, could be a vector for vulnerabilities if not implemented with strict input validation and sanitization. The historical data reveals one medium severity vulnerability related to \"Insertion of Sensitive Information into Log File,\" which, though currently patched, highlights a past weakness that attackers might seek to re-exploit or that could resurface in future versions. While there are no current critical or high-severity vulnerabilities and no critical or high taint flows found, the past medium vulnerability and the presence of file operations suggest that thorough code reviews and ongoing vigilance are still necessary.\n\nIn conclusion, \"hitpay-payment-gateway\" v4.2.1 is a relatively secure plugin with strong defenses against common web attacks. Its limited attack surface and proper handling of SQL and output escaping are commendable. The primary concerns revolve around the potential for file operation abuse and the reminder from past vulnerabilities that even medium severity issues can impact security. Continued monitoring and adherence to secure coding practices will be crucial for maintaining this positive security standing.",[238,240,243],{"reason":239,"points":172},"One medium severity vulnerability historically",{"reason":241,"points":242},"Two file operations present",4,{"reason":244,"points":199},"Low percentage of output escaping (98%)","2026-03-16T18:10:59.461Z",{"wat":247,"direct":256},{"assetPaths":248,"generatorPatterns":250,"scriptPaths":251,"versionParams":252},[249],"\u002Fwp-content\u002Fplugins\u002Fhitpay-payment-gateway\u002Fassets\u002Fimages\u002Flogo.png",[],[],[253,254,255],"hitpay-payment-gateway\u002Fassets\u002Fcss\u002Fstyle.css?ver=","hitpay-payment-gateway\u002Fassets\u002Fjs\u002Ffrontend.js?ver=","hitpay-payment-gateway\u002Fassets\u002Fjs\u002Fcheckout.js?ver=",{"cssClasses":257,"htmlComments":259,"htmlAttributes":260,"restEndpoints":262,"jsGlobals":263,"shortcodeOutput":264},[258],"hitpay-own-payment-button",[],[261],"data-value",[],[],[]]