[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$foL52cpVsfZbm1_1fy1l8SXIIKePUSp-Zu7qXbbZiYoE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":17,"tags":18,"homepage":17,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":124,"fingerprints":454},"idpay-gateway-gravity-forms","IDPay For Wp Gravity Forms","3.1.1","IDPay","https:\u002F\u002Fprofiles.wordpress.org\u002Fidpayir\u002F","\u003Cp>After installing and enabling this plugin, your customers can pay through IDPay gateway.\u003Cbr \u002F>\nFor doing a transaction through IDPay gateway, you must have an API Key. You can obtain the API Key by going to your \u003Ca href=\"https:\u002F\u002Fidpay.ir\u002Fdashboard\u002Fweb-services\" rel=\"nofollow ugc\">dashboard\u003C\u002Fa> in your IDPay \u003Ca href=\"https:\u002F\u002Fidpay.ir\u002Fuser\" rel=\"nofollow ugc\">account\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>3.1.1, DEC 04, 2023\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>New Version Plugin And Many Add Features\u003C\u002Fli>\n\u003Cli>Fix All Problems\u003C\u002Fli>\n\u003Cli>Update Structures\u003C\u002Fli>\n\u003Cli>Tested Up With WordPress 6.4.1 And GravityForm 2.7.17\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>2.0.0, STP 11, 2023\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>New Version Plugin And Many Add Features\u003C\u002Fli>\n\u003Cli>Fix All Problems\u003C\u002Fli>\n\u003Cli>Update Structures\u003C\u002Fli>\n\u003Cli>Tested Up With WordPress 6.3.1 And GravityForm 2.7.12\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>1.1.2, Nov 13, 2022\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Tested Up With WordPress 6.1 And GravityForm 2.6.3\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>1.1.1, June 18, 2022\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Tested Up With WordPress 6.0 And GravityForm 2.6.3\u003C\u002Fli>\n\u003Cli>Check Double Spending Correct\u003C\u002Fli>\n\u003Cli>Check Does Not Xss Attack Correct\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>1.0.5, January 30, 2021\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>add deactivation method.\u003C\u002Fli>\n\u003Cli>add checkbox to use Gravity Forms confirmations.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>1.0.4, December 9, 2020\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>add name and email to gateway configuration.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>1.0.3, October 11, 2020\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>check GET parameters if POST was empty in relation with IDPay webservices new update.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>1.0.2, October 6, 2020\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Prevent IDPay logo applying in all forms.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>1.0.1, August 22, 2020\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Fix a typo bug.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>1.0.0, Jul 08, 2020\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Develope release.\u003C\u002Fli>\n\u003C\u002Ful>\n","After installing and enabling this plugin, your customers can pay through IDPay gateway.",100,7372,20,1,"2023-12-09T05:55:00.000Z","6.4.8","",[19,20,21,22,23],"gateway","gravity-forms","gravityforms","idpay","payment","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fidpay-gateway-gravity-forms.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":25,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"idpayir",7,1370,30,84,"2026-04-04T21:16:43.104Z",[38,53,72,95,113],{"slug":39,"name":40,"version":41,"author":7,"author_profile":8,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":16,"requires_at_least":17,"requires_php":17,"tags":49,"homepage":17,"download_link":52,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"woo-idpay-gateway","IDPay Payment Gateway for Woocommerce","2.2.5","\u003Cp>\u003Ca href=\"https:\u002F\u002Fidpay.ir\" rel=\"nofollow ugc\">IDPay\u003C\u002Fa> is one of the Financial Technology providers in Iran.\u003C\u002Fp>\n\u003Cp>IDPay provides some payment services and this plugin enables the IDPay’s payment gateway for Woocommerce.\u003C\u002Fp>\n","IDPay payment method for Woocommerce.",1000,56424,74,6,"2023-12-05T08:09:00.000Z",[19,22,23,50,51],"woocommerce","%d8%a2%db%8c%d8%af%db%8c-%d9%be%db%8c","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-idpay-gateway.zip",{"slug":54,"name":55,"version":56,"author":57,"author_profile":58,"description":59,"short_description":60,"active_installs":61,"downloaded":62,"rating":11,"num_ratings":14,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":66,"tags":67,"homepage":70,"download_link":71,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"zibal-payment-gateway-for-gravity-forms","Zibal Payment Gateway for Gravity Forms","1.0.0","Mohammad Zamanzadeh","https:\u002F\u002Fprofiles.wordpress.org\u002Fmzamanzadah\u002F","\u003Cp>افزونه Zibal Payment Gateway for Gravity Forms امکان فروش اینترنتی و آنلاین از طریق درگاه پرداخت زیبال به افزونه گرویتی فرم اضافه می کند.\u003C\u002Fp>\n","با نصب این پلاگین می توانید از خدمات درگاه پرداخت واسط و مستقیم و یا اختصاصی زیبال برروی افزونه گرویتی فرم استفاده کنید!",600,5545,"2022-06-20T09:48:00.000Z","6.0.11","4.5","5.4",[19,21,23,68,69],"zibal","%d8%b2%db%8c%d8%a8%d8%a7%d9%84","http:\u002F\u002Fzibal.ir\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzibal-payment-gateway-for-gravity-forms.zip",{"slug":73,"name":74,"version":75,"author":76,"author_profile":77,"description":78,"short_description":79,"active_installs":80,"downloaded":81,"rating":82,"num_ratings":83,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":87,"tags":88,"homepage":93,"download_link":94,"security_score":11,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"gravityforms-eway","Gravity Forms Eway","2.6.1","webaware","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebaware\u002F","\u003Cp>Gravity Forms Eway integrates the \u003Ca href=\"https:\u002F\u002Feway.io\u002F\" rel=\"nofollow ugc\">Eway credit card payment gateway\u003C\u002Fa> with \u003Ca href=\"https:\u002F\u002Fwebaware.com.au\u002Fget-gravity-forms\" rel=\"nofollow ugc\">Gravity Forms\u003C\u002Fa> advanced form builder, using Eway’s \u003Ca href=\"https:\u002F\u002Feway.io\u002Ffeatures\u002Fapi-rapid-api\" rel=\"nofollow ugc\">Rapid API Direct Payments\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwww.eway.com.au\u002Ffeatures\u002Fpayments-recurring-payments\" rel=\"nofollow ugc\">Recurring Payments XML API\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>build online donation forms\u003C\u002Fli>\n\u003Cli>build online booking forms\u003C\u002Fli>\n\u003Cli>build simple Buy Now forms\u003C\u002Fli>\n\u003Cli>accept recurring payments (Australian merchants only; see \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgravityforms-eway\u002Ffaq\u002F\" rel=\"ugc\">FAQ\u003C\u002Fa>)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>NB: this plugin extends \u003Ca href=\"https:\u002F\u002Fwebaware.com.au\u002Fget-gravity-forms\" rel=\"nofollow ugc\">Gravity Forms\u003C\u002Fa>; you still need to install and activate Gravity Forms!\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgfeway.webaware.net.au\u002F\" rel=\"nofollow ugc\">Go Pro\u003C\u002Fa> and access these additional features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>record entry even when transaction fails\u003C\u002Fli>\n\u003Cli>use Responsive Shared Page, no need for SSL certificate on standard payments\u003C\u002Fli>\n\u003Cli>create complex forms with feeds mapping fields to Eway\u003C\u002Fli>\n\u003Cli>create token payment customers\u003C\u002Fli>\n\u003Cli>remember customer cards using tokens\u003C\u002Fli>\n\u003Cli>send shipping addresses to Eway\u003C\u002Fli>\n\u003Cli>use sophisticated conditional logic\u003C\u002Fli>\n\u003Cli>mix multiple currencies on one website\u003C\u002Fli>\n\u003Cli>mix multiple Eway accounts on one website\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Sponsorships\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>recurring payments generously sponsored by \u003Ca href=\"https:\u002F\u002Fwww.castledesign.com.au\u002F\" rel=\"nofollow ugc\">Castle Design\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Thanks for sponsoring new features on Gravity Forms Eway!\u003C\u002Fp>\n\u003Ch3>Translations\u003C\u002Fh3>\n\u003Cp>If you’d like to help out by translating this plugin, please \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fgravityforms-eway\" rel=\"nofollow ugc\">sign up for an account and dig in\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>you need to install the \u003Ca href=\"https:\u002F\u002Fwebaware.com.au\u002Fget-gravity-forms\" rel=\"nofollow ugc\">Gravity Forms\u003C\u002Fa> plugin\u003C\u002Fli>\n\u003Cli>you need an SSL\u002FTLS certificate for your hosting account\u003C\u002Fli>\n\u003Cli>you need an account with Eway\u003C\u002Fli>\n\u003Cli>this plugin uses Eway’s \u003Ca href=\"https:\u002F\u002Fgo.eway.io\u002Fs\u002Farticle\u002FDirect-Payments-API-Snippets\" rel=\"nofollow ugc\">Rapid API Direct Payments\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fgo.eway.io\u002Fs\u002Farticle\u002FHow-do-I-setup-a-Recurring-Payment\" rel=\"nofollow ugc\">Recurring Payments XML API\u003C\u002Fa>, and does not support Eway’s Responsive Shared Page (available with \u003Ca href=\"https:\u002F\u002Fgfeway.webaware.net.au\u002F\" rel=\"nofollow ugc\">Pro\u003C\u002Fa>)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>Information gathered for processing a credit card transaction is transmitted to Eway for processing, and in turn, Eway passes that information on to your bank. Please review \u003Ca href=\"https:\u002F\u002Fwww.eway.com.au\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">Eway’s Privacy Policy\u003C\u002Fa> for information about how that affects your website’s privacy policy. By using this plugin, you are agreeing to the terms of use for Eway.\u003C\u002Fp>\n","Easily create online payment forms with Gravity Forms and Eway.",500,31200,96,10,"2025-12-14T04:07:00.000Z","6.9.4","4.2","7.4",[89,90,91,20,92],"donations","ecommerce","eway","payment-gateway","https:\u002F\u002Fshop.webaware.com.au\u002Fdownloads\u002Fgravity-forms-eway\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgravityforms-eway.2.6.1.zip",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":103,"downloaded":104,"rating":26,"num_ratings":26,"last_updated":105,"tested_up_to":85,"requires_at_least":106,"requires_php":17,"tags":107,"homepage":111,"download_link":112,"security_score":11,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"gf-ach-field","GF ACH Field Type","1.0.4","mohsin.id","https:\u002F\u002Fprofiles.wordpress.org\u002Fmohsinoffline\u002F","\u003Cp>At WP Gateways, we offer a much needed easy integration ACH (eCheck) payments via our ACH Field Type addon for \u003Ca href=\"https:\u002F\u002Fwww.gravityforms.com\u002F\" rel=\"nofollow ugc\">Gravity Forms\u003C\u002Fa>. This extension adds a new field type called “ACH” and lets you configure it just like the native Credit Card field type and is supported by other WP Gateways add-ons for Gravity Forms including Authorize.Net, USAePay and BluePay.\u003C\u002Fp>\n\u003Cp>Not only in the back-end but ACH (eCheck) addon for Gravity Forms adds an equally good looking field on the front end and blends with any WordPress theme without much of a problem.\u003C\u002Fp>\n\u003Cp>The ACH (eCheck) addon for Gravity Forms plugin is available for free and is easy to integrate with more payment gateway addons. The list of existing gateway plugins that integrate ACH with Gravity Forms is provided below, and we will continue to make more of our plugins support ACH payments.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Requirements\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.gravityforms.com\u002F\" rel=\"nofollow ugc\">Gravity Forms\u003C\u002Fa> plugin 2.3.0 or later, Basic version at the minimum.\u003C\u002Fli>\n\u003Cli>Any compatible payment gateway plugin that supports ACH. (See current list below).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Extend, Contribute, Integrate\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The plugins currently compatible with the ACH field add-on are (more to be added later):\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpgateways.com\u002Fproducts\u002Fauthorize-net-gateway-gravity-forms\u002F\" rel=\"nofollow ugc\">Authorize.Net Gateway For Gravity Forms (Advanced Version)\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpgateways.com\u002Fproducts\u002Fusaepay-gateway-gravity-forms\u002F\" rel=\"nofollow ugc\">USAePay Gateway For Gravity Forms (Advanced Version)\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpgateways.com\u002Fproducts\u002Fbluepay-gateway-gravity-forms\u002F\" rel=\"nofollow ugc\">BluePay Gateway For Gravity Forms (Advanced Version)\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpgateways.com\u002Fproducts\u002Fnmi-gateway-gravity-forms\u002F\" rel=\"nofollow ugc\">NMI Gateway For Gravity Forms (Advanced Version)\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpgateways.com\u002Fproducts\u002Fcardknox-gateway-gravity-forms\u002F\" rel=\"nofollow ugc\">Cardknox Gateway For Gravity Forms (Advanced Version)\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpgateways.com\u002Fproducts\u002Faccept-blue-gateway-gravity-forms\u002F\" rel=\"nofollow ugc\">accept.blue Gateway For Gravity Forms (Advanced Version)\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpgateways.com\u002Fproducts\u002Fiats-payments-gateway-gravity-forms\u002F\" rel=\"nofollow ugc\">iATS Payments Gateway For Gravity Forms (Advanced Version)\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Visit the \u003Ca href=\"https:\u002F\u002Fwpgateways.com\u002Fgravity-forms-ach-echeck-payments\u002F\" rel=\"nofollow ugc\">plugin page\u003C\u002Fa> for more details. Contributors are welcome to send pull requests via \u003Ca href=\"https:\u002F\u002Fbitbucket.org\u002Fgateways\u002Fgf-ach-field\" rel=\"nofollow ugc\">Bitbucket repository\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For custom integration with your WordPress website, please \u003Ca href=\"https:\u002F\u002Fwpgateways.com\u002Fsupport\u002Fcustom-payment-gateway-integration\u002F\" rel=\"nofollow ugc\">contact us here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Disclaimer: This plugin is not affiliated with or supported by Gravity Forms. All logos and trademarks are the property of their respective owners.\u003C\u002Fp>\n","This plugin enables you to add ACH field type to Gravity Forms.",300,6180,"2025-12-14T04:18:00.000Z","4.0",[108,109,20,110,92],"ach","echeck","payment-forms","https:\u002F\u002Fwpgateways.com\u002Fproducts\u002Fgravity-forms-ach-echeck-payments\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgf-ach-field.1.0.4.zip",{"slug":114,"name":115,"version":116,"author":7,"author_profile":8,"description":117,"short_description":10,"active_installs":11,"downloaded":118,"rating":11,"num_ratings":14,"last_updated":119,"tested_up_to":120,"requires_at_least":17,"requires_php":17,"tags":121,"homepage":17,"download_link":123,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"idpay-for-restrict-content-pro","IDPay For Restrict Content Pro (RCP)","1.2.2","\u003Cp>After installing and enabling this plugin, your customers can pay through IDPay gateway.\u003Cbr \u002F>\nFor doing a transaction through IDPay gateway, you must have an API Key. You can obtain the API Key by going to your \u003Ca href=\"https:\u002F\u002Fidpay.ir\u002Fdashboard\u002Fweb-services\" rel=\"nofollow ugc\">dashboard\u003C\u002Fa> in your IDPay \u003Ca href=\"https:\u002F\u002Fidpay.ir\u002Fuser\" rel=\"nofollow ugc\">account\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>1.2.2, Nov 13, 2022\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Tested Up With WordPress 6.1 And Restrict Content Pro version 3.5.3\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>1.2.1, June 18, 2022\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>First Official Release\u003C\u002Fli>\n\u003Cli>Tested Up With WordPress 6.0 And RCP Plugin 3.5.3\u003C\u002Fli>\n\u003Cli>Check Double Spending Correct\u003C\u002Fli>\n\u003Cli>Check Does Not Xss Attack Correct\u003C\u002Fli>\n\u003Cli>Fix Changing Membership\u003C\u002Fli>\n\u003Cli>Fix Email Verification Process After Payment\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>1.0.3, January 30, 2021\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>fix sticking in loading state’s bug.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>1.0.2, December 20, 2020\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>change configuration for currencies and fix decimal place in numbers.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>1.0.1, October 13, 2020\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>check GET parameters if POST was empty in relation with IDPay webservices new update.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>1.0.0, Jul 09, 2020\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Develope Release\u003C\u002Fli>\n\u003C\u002Ful>\n",2802,"2022-11-13T14:08:00.000Z","6.1.10",[19,22,23,122,51],"restrict-content-pro","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fidpay-for-restrict-content-pro.zip",{"attackSurface":125,"codeSignals":205,"taintFlows":445,"riskAssessment":446,"analyzedAt":453},{"hooks":126,"ajaxHandlers":196,"restRoutes":202,"shortcodes":203,"cronEvents":204,"entryPointCount":14,"unprotectedCount":14},[127,131,135,138,143,147,152,156,160,164,167,171,175,180,184,188,193],{"type":128,"name":129,"callback":129,"file":130,"line":13},"action","init","idpay-gravity-forms.php",{"type":128,"name":132,"callback":133,"file":130,"line":134},"admin_notices","reportPreRequiredPersianGravityForm",43,{"type":128,"name":132,"callback":136,"file":130,"line":137},"reportPreRequiredGravityForm",48,{"type":139,"name":140,"callback":141,"file":130,"line":142},"filter","members_get_capabilities","MembersCapabilities",52,{"type":139,"name":144,"callback":145,"file":130,"line":146},"gform_addon_navigation","addIdpayToNavigation",57,{"type":128,"name":148,"callback":149,"priority":150,"file":130,"line":151},"gform_entry_info","showOrEditPaymentData",4,58,{"type":128,"name":153,"callback":154,"priority":150,"file":130,"line":155},"gform_after_update_entry","updatePaymentData",59,{"type":139,"name":157,"callback":158,"priority":83,"file":130,"line":159},"gform_form_settings_menu","addIdpayToToolbar",62,{"type":128,"name":161,"callback":162,"file":130,"line":163},"gform_form_settings_page_IDPay","route",63,{"type":139,"name":165,"callback":166,"priority":83,"file":130,"line":25},"gform_disable_post_creation","setDelayedActivity",{"type":139,"name":168,"callback":169,"priority":83,"file":130,"line":170},"gform_is_delayed_pre_process_feed","setDelayedGravityAddons",86,{"type":139,"name":172,"callback":173,"priority":44,"file":130,"line":174},"gform_confirmation","doPayment",87,{"type":128,"name":176,"callback":177,"priority":178,"file":130,"line":179},"wp","doVerify",5,88,{"type":139,"name":181,"callback":182,"priority":83,"file":130,"line":183},"gform_submit_button","renderButtonSubmitForm",89,{"type":139,"name":185,"callback":186,"file":130,"line":187},"gform_logging_supported","setLogSystem",92,{"type":139,"name":189,"callback":190,"priority":191,"file":130,"line":192},"gf_payment_gateways","setDefaultSys",2,93,{"type":139,"name":194,"callback":195,"file":130,"line":82},"gform_admin_pre_render","preRenderScript",[197],{"action":198,"nopriv":199,"callback":200,"hasNonce":199,"hasCapCheck":199,"file":130,"line":201},"gf_IDPay_update_feed_active",false,"SaveOrUpdateFeed",56,[],[],[],{"dangerousFunctions":206,"sqlUsage":207,"outputEscaping":209,"fileOperations":26,"externalRequests":26,"nonceChecks":191,"capabilityChecks":26,"bundledLibraries":444},[],{"prepared":26,"raw":26,"locations":208},[],{"escaped":210,"rawEcho":211,"locations":212},9,132,[213,216,217,218,220,222,224,226,228,230,232,234,236,238,240,242,244,246,248,250,252,254,256,258,260,262,264,266,268,270,272,274,276,278,280,282,284,286,288,290,292,294,296,298,300,302,304,306,308,310,313,315,317,319,321,323,325,327,329,331,333,335,337,339,340,341,343,344,345,347,349,351,353,354,356,358,360,362,363,365,367,368,370,372,374,375,377,378,381,383,385,387,388,389,391,392,393,394,396,398,400,401,402,403,405,407,409,410,412,414,415,416,417,419,421,423,424,425,426,427,428,429,430,431,433,434,436,437,439,440,441,442],{"file":214,"line":35,"context":215},"resources\\views\\config.php","raw output",{"file":214,"line":174,"context":215},{"file":214,"line":179,"context":215},{"file":214,"line":219,"context":215},94,{"file":214,"line":221,"context":215},97,{"file":214,"line":223,"context":215},107,{"file":214,"line":225,"context":215},110,{"file":214,"line":227,"context":215},113,{"file":214,"line":229,"context":215},117,{"file":214,"line":231,"context":215},128,{"file":214,"line":233,"context":215},130,{"file":214,"line":235,"context":215},136,{"file":214,"line":237,"context":215},138,{"file":214,"line":239,"context":215},140,{"file":214,"line":241,"context":215},146,{"file":214,"line":243,"context":215},148,{"file":214,"line":245,"context":215},150,{"file":214,"line":247,"context":215},156,{"file":214,"line":249,"context":215},158,{"file":214,"line":251,"context":215},160,{"file":214,"line":253,"context":215},166,{"file":214,"line":255,"context":215},168,{"file":214,"line":257,"context":215},170,{"file":214,"line":259,"context":215},176,{"file":214,"line":261,"context":215},179,{"file":214,"line":263,"context":215},180,{"file":214,"line":265,"context":215},181,{"file":214,"line":267,"context":215},185,{"file":214,"line":269,"context":215},191,{"file":214,"line":271,"context":215},193,{"file":214,"line":273,"context":215},194,{"file":214,"line":275,"context":215},195,{"file":214,"line":277,"context":215},197,{"file":214,"line":279,"context":215},200,{"file":214,"line":281,"context":215},202,{"file":214,"line":283,"context":215},205,{"file":214,"line":285,"context":215},207,{"file":214,"line":287,"context":215},210,{"file":214,"line":289,"context":215},212,{"file":214,"line":291,"context":215},215,{"file":214,"line":293,"context":215},222,{"file":214,"line":295,"context":215},224,{"file":214,"line":297,"context":215},225,{"file":214,"line":299,"context":215},226,{"file":214,"line":301,"context":215},230,{"file":214,"line":303,"context":215},235,{"file":214,"line":305,"context":215},236,{"file":214,"line":307,"context":215},237,{"file":214,"line":309,"context":215},243,{"file":311,"line":312,"context":215},"resources\\views\\index.php",31,{"file":311,"line":314,"context":215},34,{"file":311,"line":316,"context":215},35,{"file":311,"line":318,"context":215},37,{"file":311,"line":320,"context":215},42,{"file":311,"line":322,"context":215},47,{"file":311,"line":324,"context":215},49,{"file":311,"line":326,"context":215},50,{"file":311,"line":328,"context":215},54,{"file":311,"line":330,"context":215},66,{"file":311,"line":332,"context":215},67,{"file":311,"line":334,"context":215},68,{"file":311,"line":336,"context":215},69,{"file":311,"line":338,"context":215},76,{"file":311,"line":25,"context":215},{"file":311,"line":179,"context":215},{"file":311,"line":342,"context":215},90,{"file":311,"line":82,"context":215},{"file":311,"line":221,"context":215},{"file":311,"line":346,"context":215},98,{"file":311,"line":348,"context":215},103,{"file":311,"line":350,"context":215},104,{"file":311,"line":352,"context":215},105,{"file":311,"line":223,"context":215},{"file":311,"line":355,"context":215},108,{"file":311,"line":357,"context":215},109,{"file":311,"line":359,"context":215},111,{"file":311,"line":361,"context":215},112,{"file":311,"line":227,"context":215},{"file":311,"line":364,"context":215},115,{"file":311,"line":366,"context":215},116,{"file":311,"line":229,"context":215},{"file":311,"line":369,"context":215},119,{"file":311,"line":371,"context":215},120,{"file":311,"line":373,"context":215},121,{"file":311,"line":233,"context":215},{"file":311,"line":376,"context":215},134,{"file":311,"line":237,"context":215},{"file":379,"line":380,"context":215},"resources\\views\\setting.php",23,{"file":379,"line":382,"context":215},32,{"file":379,"line":384,"context":215},38,{"file":379,"line":386,"context":215},41,{"file":379,"line":320,"context":215},{"file":379,"line":137,"context":215},{"file":379,"line":390,"context":215},53,{"file":379,"line":151,"context":215},{"file":379,"line":159,"context":215},{"file":379,"line":332,"context":215},{"file":379,"line":395,"context":215},70,{"file":379,"line":397,"context":215},71,{"file":379,"line":399,"context":215},77,{"file":379,"line":174,"context":215},{"file":379,"line":179,"context":215},{"file":379,"line":183,"context":215},{"file":404,"line":13,"context":215},"resources\\views\\transactions.php",{"file":404,"line":406,"context":215},22,{"file":404,"line":408,"context":215},29,{"file":404,"line":384,"context":215},{"file":404,"line":411,"context":215},39,{"file":404,"line":413,"context":215},40,{"file":404,"line":386,"context":215},{"file":404,"line":320,"context":215},{"file":404,"line":134,"context":215},{"file":404,"line":418,"context":215},44,{"file":404,"line":420,"context":215},45,{"file":404,"line":422,"context":215},46,{"file":404,"line":322,"context":215},{"file":404,"line":137,"context":215},{"file":404,"line":330,"context":215},{"file":404,"line":332,"context":215},{"file":404,"line":334,"context":215},{"file":404,"line":336,"context":215},{"file":404,"line":395,"context":215},{"file":404,"line":397,"context":215},{"file":404,"line":432,"context":215},72,{"file":404,"line":432,"context":215},{"file":404,"line":435,"context":215},73,{"file":404,"line":46,"context":215},{"file":404,"line":438,"context":215},75,{"file":404,"line":338,"context":215},{"file":404,"line":35,"context":215},{"file":404,"line":174,"context":215},{"file":404,"line":443,"context":215},91,[],[],{"summary":447,"deductions":448},"The 'idpay-gateway-gravity-forms' plugin version 3.1.1 presents a mixed security posture. On the positive side, it demonstrates good practices by avoiding dangerous functions, utilizing prepared statements for all SQL queries, and not performing file operations or external HTTP requests. The absence of known vulnerabilities in its history is also a strong indicator of past development attention to security.  However, there are significant concerns primarily stemming from the attack surface. The plugin exposes a single AJAX handler which lacks any authentication checks. This is a critical weakness as it means any unauthenticated user could potentially interact with this handler, leading to unintended actions or information disclosure if the handler is not designed with extreme care. The limited output escaping (6%) is also a concern, although the taint analysis did not reveal any issues, suggesting that while outputs might not be properly escaped, they might not be directly exposed to malicious input in a way that leads to exploitation through this plugin alone.\n\nDespite the positive aspects like secure SQL and lack of known vulnerabilities, the unprotected AJAX endpoint is a substantial risk. This single point of entry without authentication represents a direct path for potential exploitation. While the plugin has a clean vulnerability history, this does not negate the immediate risk posed by the current code's exposed functionality. The low percentage of properly escaped output, though not leading to immediate critical findings in taint analysis, is a good practice that should be addressed to further harden the plugin. Overall, the plugin has some strong security foundations but requires immediate attention to secure its AJAX endpoint to mitigate the identified risk.",[449,451],{"reason":450,"points":83},"AJAX handler without authentication",{"reason":452,"points":150},"Low percentage of properly escaped output","2026-03-16T21:11:24.320Z",{"wat":455,"direct":464},{"assetPaths":456,"generatorPatterns":459,"scriptPaths":460,"versionParams":461},[457,458],"\u002Fwp-content\u002Fplugins\u002Fidpay-gateway-gravity-forms\u002Fassets\u002Fjs\u002Fidpay-gravity-forms.js","\u002Fwp-content\u002Fplugins\u002Fidpay-gateway-gravity-forms\u002Fassets\u002Fcss\u002Fidpay-gravity-forms.css",[],[457],[462,463],"idpay-gravity-forms\u002Fassets\u002Fjs\u002Fidpay-gravity-forms.js?ver=","idpay-gravity-forms\u002Fassets\u002Fcss\u002Fidpay-gravity-forms.css?ver=",{"cssClasses":465,"htmlComments":467,"htmlAttributes":470,"restEndpoints":473,"jsGlobals":474,"shortcodeOutput":476},[466],"idpay-gravity-forms-style",[468,469],"\u003C!-- IDPay Payment Data -->","\u003C!-- IDPay Payment Meta -->",[471,472],"data-idpay-action","data-idpay-gateway",[],[475],"gform.addFilter('gform_merge_tags')",[477],"\u003Cdiv class=\"idpay-gravity-forms-style\">"]