Invoicebox: Payment module for WooCommerce Security & Risk Analysis

wordpress.org/plugins/invoicebox-payment-gateway

Позвольте вашим пользователям оплачивать заказы с помощью Invoicebox.

10 active installs v1.2.4 PHP 7.4+ WP 5.9.3+ Updated Jun 25, 2024
invoiceboxpayment-gatewaywoocommerce
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Invoicebox: Payment module for WooCommerce Safe to Use in 2026?

Generally Safe

Score 85/100

Invoicebox: Payment module for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago
Risk Assessment

The "invoicebox-payment-gateway" v1.2.4 plugin exhibits a generally positive security posture with no recorded vulnerabilities or critical security signals in the static and taint analysis. The absence of known CVEs and the use of prepared statements for all SQL queries are strong indicators of secure development practices. Furthermore, the plugin has a minimal attack surface, with no identifiable AJAX handlers, REST API routes, shortcodes, or cron events that are exposed without authentication or capability checks. However, a significant concern arises from the output escaping metric, where only 68% of outputs are properly escaped. This leaves a substantial portion of outputs potentially vulnerable to cross-site scripting (XSS) attacks if untrusted data is introduced into them. The presence of file operations also warrants attention, although without further context, their security implications remain unclear.

Key Concerns

  • Insufficient output escaping
Vulnerabilities
None known

Invoicebox: Payment module for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Invoicebox: Payment module for WooCommerce Release Timeline

v1.2.3
v1.2.2
v1.2.1
v1.2.0
v1.1.2
v1.1.1
v1.1.0
v1.0.0
Code Analysis
Analyzed Mar 17, 2026

Invoicebox: Payment module for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
23
49 escaped
Nonce Checks
0
Capability Checks
0
File Operations
6
External Requests
0
Bundled Libraries
0

Output Escaping

68% escaped72 total outputs
Attack Surface

Invoicebox: Payment module for WooCommerce Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 8
actionwp_enqueue_scriptsincludes\class-wc-invoicebox-abstract-gateway.php:119
filterwoocommerce_available_payment_gatewaysincludes\class-wc-invoicebox-abstract-gateway.php:122
actionplugins_loadedindex.php:32
actionadmin_noticesindex.php:39
actionadmin_enqueue_scriptsindex.php:51
actionwp_enqueue_scriptsindex.php:52
filterwoocommerce_payment_gatewaysindex.php:53
actioninitindex.php:54
Maintenance & Trust

Invoicebox: Payment module for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10
Last updatedJun 25, 2024
PHP min version7.4
Downloads2K

Community Trust

Rating100/100
Number of ratings1
Active installs10
Developer Profile

Invoicebox: Payment module for WooCommerce Developer Profile

invoicebox

1 plugin · 10 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Invoicebox: Payment module for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/invoicebox-payment-gateway/assets/js/admin-scripts.js/wp-content/plugins/invoicebox-payment-gateway/assets/js/imask.js/wp-content/plugins/invoicebox-payment-gateway/assets/js/script.js/wp-content/plugins/invoicebox-payment-gateway/assets/images/invoicebox-logo-png-ru.png/wp-content/plugins/invoicebox-payment-gateway/assets/images/invoicebox-logo-png-en.png
Script Paths
/wp-content/plugins/invoicebox-payment-gateway/assets/js/admin-scripts.js/wp-content/plugins/invoicebox-payment-gateway/assets/js/imask.js/wp-content/plugins/invoicebox-payment-gateway/assets/js/script.js
Version Parameters
/wp-content/plugins/invoicebox-payment-gateway/assets/js/admin-scripts.js?ver=1.1/wp-content/plugins/invoicebox-payment-gateway/assets/js/imask.js?ver=1.6/wp-content/plugins/invoicebox-payment-gateway/assets/js/script.js?ver=1.6

HTML / DOM Fingerprints

CSS Classes
invoicebox-form
HTML Comments
<!-- invoicebox -->
Data Attributes
data-invoicebox-form
JS Globals
Invoicebox
REST Endpoints
/wc-api/wc_invoicebox_gateway/wc-api/wc_invoicebox_legal_gateway
FAQ

Frequently Asked Questions about Invoicebox: Payment module for WooCommerce