[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f2ADo_4D7HNG0XoatcjpBqVkgzBSAojHwceSTyJa4cMA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":37,"analysis":127,"fingerprints":245},"kkiapay-woocommerce","KKiapay WooCommerce Plugin","2.4.7","shadaiali","https:\u002F\u002Fprofiles.wordpress.org\u002Fshadaiali\u002F","\u003Cp>KkiaPay allows businesses to safely receive payments by mobile money, credit card and bank account.\u003C\u002Fp>\n\u003Ch4>Accept Mobile money, direct bank and credit card payments your store\u003C\u002Fh4>\n\u003Cp>The KKiapay plugin extends WooCommerce allowing you to take payments directly on your store via KKIAPAY Widget.\u003C\u002Fp>\n\u003Cp>KKIAPAY is available in:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Benin\u003C\u002Fli>\n\u003Cli>Côte d’Ivoire\u003C\u002Fli>\n\u003Cli>Togo\u003C\u002Fli>\n\u003Cli>Senegal\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fkkiapay.me\u002Ffeatures\u002Fsupported-countries\" rel=\"nofollow ugc\">More details at \u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Kkiapay is developer friendly solution that allows you to accept mobile money and credit card, and direct bank payments in your application or website. Before using this plugin, make sure you have a right Merchant Account on Kkiapay, otherwise go and create your account. It is free and without pain.\u003C\u002Fp>\n\u003Ch4>Why choose KKIAPAY?\u003C\u002Fh4>\n\u003Cp>Kkiapay is developer friendly solution, has no setup fees, no hidden costs, and is easy to integrates\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fkkiapay.me\" rel=\"nofollow ugc\">See more details\u003C\u002Fa>\u003C\u002Fp>\n","Accept Mobile money, direct bank and credit card payments with KKiapay",500,22166,100,2,"2024-06-24T11:21:00.000Z","6.4.8","6.0","7.4",[20,21,22,23,24],"africa-payment","credit-card","mobile-money","online-payment","swift-payment","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fkkiapay-woocommerce-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fkkiapay-woocommerce.2.4.8.zip",92,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},1,30,88,"2026-04-05T04:00:51.441Z",[38,56,74,91,110],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":13,"downloaded":46,"rating":28,"num_ratings":28,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":54,"download_link":55,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"feexpay","FeexPay","1.0.8","Feexpay","https:\u002F\u002Fprofiles.wordpress.org\u002Flavedettemedia\u002F","\u003Cp>A secure plugin to accept Mobile Money and Credit Card payments.\u003C\u002Fp>\n\u003Cp>FeexPay is a plugin designed for Woocommerce that allows you to accept mobile money or credit card payments on your various websites.\u003C\u002Fp>\n\u003Cp>As an advantage, this plugin is very easy to use, intuitive and above all requires no integration costs.\u003C\u002Fp>\n\u003Cp>Using FeexPay is choosing a fast, secure and reliable way to collect online payments.\u003C\u002Fp>\n","A secure plugin to accept Mobile Money and Credit Card payments.",3063,"2024-10-25T14:29:00.000Z","","4.4","5.6",[21,52,22,23,53],"digital-payment","payment-gateway","https:\u002F\u002Fgithub.com\u002FLa-Vedette-Media\u002Ffeexpay-woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffeexpay.1.0.8.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":67,"last_updated":68,"tested_up_to":16,"requires_at_least":49,"requires_php":50,"tags":69,"homepage":72,"download_link":73,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"woo-gateway-fedapay","FedaPay Gateway for WooCommerce","0.3.9","FedaPay","https:\u002F\u002Fprofiles.wordpress.org\u002Ffedapay\u002F","\u003Cp>Accept Visa, MasterCard, Mobile Money directly on your store with the FedaPay payment gateway for WooCommerce.\u003C\u002Fp>\n\u003Ch4>Take Credit card and Mobile Money payments easily and directly on your store\u003C\u002Fh4>\n\u003Cp>The FedaPay plugin extends WooCommerce allowing you to take payments directly on your store via FedaPay’s API.\u003C\u002Fp>\n\u003Cp>FedaPay is available in:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Benin\u003C\u002Fli>\n\u003Cli>Togo\u003C\u002Fli>\n\u003Cli>Ivory Coast\u003C\u002Fli>\n\u003Cli>Senegal\u003C\u002Fli>\n\u003Cli>Mali\u003C\u002Fli>\n\u003Cli>Niger\u003C\u002Fli>\n\u003Cli>Burkina Faso\u003C\u002Fli>\n\u003Cli>World wide with card payments\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Why choose FedaPay?\u003C\u002Fh4>\n\u003Cp>FedaPay has no setup fees, no monthly fees, no hidden costs: you only get charged when you earn money! Earnings are transferred to your bank or mobile money account on a 3-days rolling basis.\u003C\u002Fp>\n","Take credit card and mobile money payments on your store using FedaPay.",900,17426,80,3,"2025-01-04T15:55:00.000Z",[21,70,22,71],"fedapay","woocommerce","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoo-gateway-fedapay\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-gateway-fedapay.0.3.9.zip",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":13,"downloaded":82,"rating":28,"num_ratings":28,"last_updated":83,"tested_up_to":84,"requires_at_least":85,"requires_php":86,"tags":87,"homepage":48,"download_link":90,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"paystation-woocommerce-payment-gateway","Paystation Payment Gateway for woocommerce","1.3.1","paystationNZ","https:\u002F\u002Fprofiles.wordpress.org\u002Fpaystationnz\u002F","\u003Cp>Accept credit card payments with \u003Ca href=\"http:\u002F\u002Fwww.paystation.co.nz\" rel=\"nofollow ugc\">Paystation\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>With our secure hosted payment pages you can take payments via multiple card types\u003C\u002Fp>\n\u003Cul>\n\u003Cli>VISA\u003C\u002Fli>\n\u003Cli>Mastercard\u003C\u002Fli>\n\u003Cli>American Express\u003C\u002Fli>\n\u003Cli>Diners Club\u003C\u002Fli>\n\u003Cli>Q Card\u003C\u002Fli>\n\u003Cli>POLi\u003C\u002Fli>\n\u003Cli>MasterPass\u003C\u002Fli>\n\u003Cli>UnionPay\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Requirements:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>An account with \u003Ca href=\"https:\u002F\u002Fpaystation.co.nz\u002Fpricing\u002F\" rel=\"nofollow ugc\">Paystation\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>An HMAC key for your Paystation account, contact our support team \u003Ca href=\"mailto:support@paystation.co.nz\" rel=\"nofollow ugc\">via email\u003C\u002Fa> if you do not already have this.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Installation\u003C\u002Fh4>\n\u003Col>\n\u003Cli>From the WooCommerce menu on the admin menu, select the ‘Settings’ link.\u003C\u002Fli>\n\u003Cli>Select ‘Payments’ tab from the top menu bar.\u003C\u002Fli>\n\u003Cli>Scroll down to the Paystation payment method and click ‘Manage’ for using Paystation Payment Gateway’.\u003C\u002Fli>\n\u003Cli>Click ‘Enable Paystation Payment Module’ checkbox to turn on plugin.\u003C\u002Fli>\n\u003Cli>Enter Paystation Id as provided by Paystation.\u003C\u002Fli>\n\u003Cli>Enter Gateway Id as provided by Paystation.\u003C\u002Fli>\n\u003Cli>Enter HMAC key as provided by Paystation.\u003C\u002Fli>\n\u003Cli>Select the ‘Enable test mode’ box if required.\u003C\u002Fli>\n\u003Cli>Click ‘Save changes’ button.\u003C\u002Fli>\n\u003Cli>Email our support team \u003Ca href=\"mailto:support@paystation.co.nz\" rel=\"nofollow ugc\">via email\u003C\u002Fa> if you have any issues with the details: Your Paystation ID, Gateway ID, confirming that you are using the Paystation WooCommerce plugin, the website link.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Testing Payments\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Ensure your Paystation settings have ‘Enable test mode’ selected.\u003C\u002Fli>\n\u003Cli>Make sure that you have at least one product added to your store.\u003C\u002Fli>\n\u003Cli>Set up a product with any amount to check successful or unsuccessful transaction testing respectively.\u003C\u002Fli>\n\u003Cli>Add product to cart and proceed to the checkout screen.\u003C\u002Fli>\n\u003Cli>Select Paystation credit card payments as payment method and continue.\u003C\u002Fli>\n\u003Cli>Fill the test card details of hosted payment form with one of our VISA or Mastercard \u003Ca href=\"https:\u002F\u002Fpaystation.co.nz\u002Fdevelopers\u002Ftest-cards\u002F\" rel=\"nofollow ugc\">test cards\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Upon successful transaction orders will be shown at your website backend store.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Taking Live Credit Payments\u003C\u002Fh4>\n\u003Cp>Once the site is working as expected you will need to fill in the \u003Ca href=\"https:\u002F\u002Fpaystation.co.nz\u002Fgolive\" rel=\"nofollow ugc\">Go live\u003C\u002Fa> form so that Paystation can test and set your account into Production Mode.\u003C\u002Fp>\n\u003Cp>Your account will be confirmed by Paystation when it’s live, and after that you need to go back to the Woocommerce checkout settings, and uncheck the ‘Enable test mode’ box in the Paystation method settings.\u003C\u002Fp>\n\u003Cp>Congratulations – you’re now setup to take credit card Payments!\u003C\u002Fp>\n","Take credit card payments on your store via Paystation.",8420,"2026-02-09T02:12:00.000Z","6.9.0","4.1","7.0",[21,88,89,53,71],"ecommerce","online-payments","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpaystation-woocommerce-payment-gateway.1.3.1.zip",{"slug":92,"name":93,"version":94,"author":95,"author_profile":96,"description":97,"short_description":98,"active_installs":66,"downloaded":99,"rating":13,"num_ratings":100,"last_updated":101,"tested_up_to":102,"requires_at_least":103,"requires_php":48,"tags":104,"homepage":48,"download_link":108,"security_score":109,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"easypay-mobile-money","Easypay Mobile Money","1.2.0","easypayuganda","https:\u002F\u002Fprofiles.wordpress.org\u002Feasypayuganda\u002F","\u003Cp>Allows receiving mobile money and card payments (VISA\u002FMastercard) payments within your woocommerce\u002Fwordpress stores.\u003C\u002Fp>\n\u003Cp>Easypay harmonizes the open mobile money and VISA api in Uganda to bring you the quickest one page checkout experience you would expect.\u003C\u002Fp>\n\u003Cp>Integration is less than 5 minutes. At last…. The wait is over.\u003C\u002Fp>\n\u003Cp>This plugin uses the \u003Ca href=\"https:\u002F\u002Fwww.easypay.co.ug\u002F\" rel=\"nofollow ugc\">Easypay Platform API\u003C\u002Fa> to bring you seamless\u003C\u002Fp>\n\u003Cp>mobile money payments. It makes use of this API  https:\u002F\u002Fwww.easypay.co.ug\u002Fapi\u002F.\u003C\u002Fp>\n\u003Cp>EasyPay is a mobile wallet developed by Payline Holdings Ltd. It was founded in 2016 with the aim of helping you\u002Fyour business make online payments with simplicity and at lower costs. We elegantly bridge the gap between the consumers and suppliers.\u003C\u002Fp>\n\u003Cp>You can get an easy step by step tutorial of installing plugin here \u003Ca href=\"https:\u002F\u002Fwww.mukalele.net\u002Fhow-easypay-mobile-money-wordpress-plugin-eases-integration-of-e-payment-gateways-on-woocommerce-websites\u002F\" rel=\"nofollow ugc\">Easypay WordPress Tutorial\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Steps (Recommended):\u003C\u002Fp>\n\u003Ch4>Installation of Mobile Money Plugin by Easypay\u003C\u002Fh4>\n\u003Cp>Please make sure your site is on https or has an ssl certificate\u003C\u002Fp>\n\u003Cp>You can get an easy step by step tutorial of installing plugin here \u003Ca href=\"https:\u002F\u002Fwww.mukalele.net\u002Fhow-easypay-mobile-money-wordpress-plugin-eases-integration-of-e-payment-gateways-on-woocommerce-websites\u002F\" rel=\"nofollow ugc\">Easypay WordPress Tutorial\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>This plugin requires you have woocommerce already installed on your wordpress website. If you do not, follow this instructions to install woocommerce \u003Ca href=\"https:\u002F\u002Fdocs.woocommerce.com\u002Fdocument\u002Finstalling-uninstalling-woocommerce\u002F\" title=\"How to install woocommerce\" rel=\"nofollow ugc\">Woocommerce Installation\u003C\u002Fa>\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>Upload the plugin files to the \u003Ccode>\u002Fwp-content\u002Fplugins\u002Feasypay-mobile-money\u003C\u002Fcode> directory, or install the plugin through the WordPress plugins screen directly.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Activate the plugin through the ‘Plugins’ screen in WordPress.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Go to Woocommerce-> Settings-> Checkout->EasyPay\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Go to Woocommerce -> Easypay Setup. If you do not have an Easypay account, register from within the plugin. If you do, just login in plugin and Voila! you are done. Airtel Uganda, MTN Uganda, Africell Money and Uganda Telcom M-sente currently supported for mobile money.\u003Cbr \u002F>\nCard payments allows for VISA, Mastercard, Discover and American Express cards. You also can use Easypay wallet payment which has lowest transaction costs and has the smoothest experience.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n","Allow mobile money (MTN,Airtel,M-Sente & Africell Money), Visa & Mastercard payments within your woocommerce stores and wordpress.",20053,4,"2022-03-16T08:35:00.000Z","5.9.13","4.0",[105,106,22,23,107],"easypay-wallet","mastercard","visa","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasypay-mobile-money.1.2.0.zip",85,{"slug":111,"name":112,"version":113,"author":112,"author_profile":114,"description":115,"short_description":116,"active_installs":117,"downloaded":118,"rating":119,"num_ratings":14,"last_updated":120,"tested_up_to":16,"requires_at_least":121,"requires_php":86,"tags":122,"homepage":125,"download_link":126,"security_score":109,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"pay-advantage","Pay Advantage","3.3.1","https:\u002F\u002Fprofiles.wordpress.org\u002Fpayadvantage\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.payadvantage.com.au\" rel=\"nofollow ugc\">Pay Advantage\u003C\u002Fa> is Australia’s #1 solution for accepting Visa, Mastercard, American Express, BPAY and Direct Debit.\u003C\u002Fp>\n\u003Cp>This plugin allows you to add widgets to your website so you can:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Instantly accept all \u003Ca href=\"https:\u002F\u002Fwww.payadvantage.com.au\u002Faccept-credit-card-payments\u002F\" rel=\"nofollow ugc\">major credit cards\u003C\u002Fa> including Visa, Mastercard and American Express from your site\u003C\u002Fli>\n\u003Cli>Automatically on-charge credit card processing fee’s\u003C\u002Fli>\n\u003Cli>Reduce card acceptance fraud with the latest \u003Ca href=\"https:\u002F\u002Fhelp.payadvantage.com.au\u002Fhc\u002Fen-us\u002Farticles\u002F4411360257167\" rel=\"nofollow ugc\">3D Secure v2\u002FPayer Authentication\u003C\u002Fa> system which verifies the cardholder authenticity\u003C\u002Fli>\n\u003Cli>Generate \u003Ca href=\"https:\u002F\u002Fwww.payadvantage.com.au\u002Fbpay-biller\u002F\" rel=\"nofollow ugc\">BPAY CRNs\u003C\u002Fa> allowing you to accept BPAY payments\u003C\u002Fli>\n\u003Cli>Integrates with \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\" rel=\"nofollow ugc\">WooCommerce\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Awards\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>CIO Top 10 APAC Payment Solution Companies (2019)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Easy online application with fast account approvals and next business day settlement of most payment types\u003C\u002Fli>\n\u003Cli>Australia based telephone and email support\u003C\u002Fli>\n\u003Cli>Instant online credit card payments through Visa, Mastercard and American Express\u003C\u002Fli>\n\u003Cli>Generate BPAY compatible CRN’s allowing you to accept payments through BPAY\u003C\u002Fli>\n\u003Cli>WooCommerce payments\u003C\u002Fli>\n\u003C\u002Fol>\n","Instantly accept Visa, Mastercard and American Express from your site with fast settlement to any Australian bank account.",40,3892,60,"2023-11-22T23:21:00.000Z","5.2",[123,124,89,53],"credit-cards","e-commerce","https:\u002F\u002Fwww.payadvantage.com.au\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpay-advantage.3.3.1.zip",{"attackSurface":128,"codeSignals":180,"taintFlows":199,"riskAssessment":227,"analyzedAt":244},{"hooks":129,"ajaxHandlers":176,"restRoutes":177,"shortcodes":178,"cronEvents":179,"entryPointCount":28,"unprotectedCount":28},[130,137,140,145,149,153,159,163,166,169,172],{"type":131,"name":132,"callback":133,"priority":134,"file":135,"line":136},"action","woocommerce_rest_checkout_process_payment_with_context","failed_payment_notice",8,"includes\\class-wc-kkiapay-gateway-blocks-support.php",24,{"type":131,"name":138,"callback":139,"file":135,"line":13},"wc_gateway_kkiapay_woocommerce_plugin_process_payment_error","closure",{"type":131,"name":141,"callback":142,"file":143,"line":144},"admin_notices","do_ssl_check","includes\\class-wc-kkiapay-gateway.php",114,{"type":131,"name":146,"callback":147,"file":143,"line":148},"woocommerce_api_wc_kkiapay_gateway","on_kkiapay_back",118,{"type":131,"name":150,"callback":151,"file":143,"line":152},"woocommerce_api_wc_kkiapay_gateway_webhook","on_kkiapay_webhook",121,{"type":154,"name":155,"callback":156,"file":157,"line":158},"filter","woocommerce_payment_gateways","kkiapay_add_gateway_class","kkiapay-woocommerce-plugin.php",35,{"type":131,"name":160,"callback":161,"file":157,"line":162},"plugins_loaded","kkiapay_init_gateway_class",46,{"type":131,"name":160,"callback":164,"file":157,"line":165},"kkiapay_load_plugin_textdomain",71,{"type":131,"name":167,"callback":139,"file":157,"line":168},"before_woocommerce_init",76,{"type":131,"name":170,"callback":139,"file":157,"line":171},"woocommerce_blocks_payment_method_type_registration",102,{"type":131,"name":173,"callback":174,"file":157,"line":175},"woocommerce_blocks_loaded","kkiapay_gateway_woocommerce_block_support",110,[],[],[],[],{"dangerousFunctions":181,"sqlUsage":182,"outputEscaping":184,"fileOperations":33,"externalRequests":14,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":198},[],{"prepared":28,"raw":28,"locations":183},[],{"escaped":33,"rawEcho":185,"locations":186},5,[187,190,192,194,196],{"file":143,"line":188,"context":189},194,"raw output",{"file":143,"line":191,"context":189},235,{"file":143,"line":193,"context":189},237,{"file":143,"line":195,"context":189},238,{"file":143,"line":197,"context":189},447,[],[200,219],{"entryPoint":201,"graph":202,"unsanitizedCount":67,"severity":218},"on_kkiapay_back (includes\\class-wc-kkiapay-gateway.php:304)",{"nodes":203,"edges":215},[204,209],{"id":205,"type":206,"label":207,"file":143,"line":208},"n0","source","$_GET (x3)",308,{"id":210,"type":211,"label":212,"file":143,"line":213,"wp_function":214},"n1","sink","wp_redirect() [Open Redirect]",334,"wp_redirect",[216],{"from":205,"to":210,"sanitized":217},false,"medium",{"entryPoint":220,"graph":221,"unsanitizedCount":67,"severity":218},"\u003Cclass-wc-kkiapay-gateway> (includes\\class-wc-kkiapay-gateway.php:0)",{"nodes":222,"edges":225},[223,224],{"id":205,"type":206,"label":207,"file":143,"line":208},{"id":210,"type":211,"label":212,"file":143,"line":213,"wp_function":214},[226],{"from":205,"to":210,"sanitized":217},{"summary":228,"deductions":229},"The kkiapay-woocommerce plugin version 2.4.7 exhibits a generally good security posture, with no recorded vulnerabilities and a strong adherence to secure coding practices in several areas. Notably, the absence of any known CVEs and a complete lack of critical or high-severity vulnerabilities in its history are positive indicators. The code analysis also shows a commendable absence of dangerous functions and that all SQL queries utilize prepared statements, which significantly mitigates SQL injection risks. However, concerns arise from the output escaping, with only 17% of outputs being properly escaped, leaving room for potential cross-site scripting (XSS) vulnerabilities if user-supplied data is rendered without proper sanitization.\n\nFurther analysis reveals two taint flows with unsanitized paths. While these are not classified as critical or high severity, they represent potential weaknesses where an attacker might be able to inject malicious code or manipulate program flow. The presence of file operations and external HTTP requests without explicit capability or nonce checks on these entry points, though the attack surface is reported as zero, suggests a lack of defense-in-depth. The absence of any nonce checks and capability checks across the plugin's code is a significant concern, as it indicates a reliance on WordPress's default authentication and authorization, which may not be sufficient for all contexts.\n\nIn conclusion, while the plugin benefits from a clean vulnerability history and secure database practices, the low percentage of properly escaped output and the presence of unsanitized taint flows, coupled with a complete lack of nonce and capability checks, introduce notable risks. These weaknesses could be exploited to perform XSS attacks or potentially more severe actions if the unsanitized paths can be triggered. The plugin's strengths lie in its database security and lack of historical vulnerabilities, but its weaknesses in output sanitization and access control mechanisms require attention.",[230,233,236,238,240,242],{"reason":231,"points":232},"Unsanitized taint flows detected",10,{"reason":234,"points":235},"Low percentage of properly escaped output",7,{"reason":237,"points":232},"No nonce checks implemented",{"reason":239,"points":232},"No capability checks implemented",{"reason":241,"points":185},"File operation without clear access control",{"reason":243,"points":185},"External HTTP requests without clear access control","2026-03-16T19:38:52.553Z",{"wat":246,"direct":253},{"assetPaths":247,"generatorPatterns":249,"scriptPaths":250,"versionParams":251},[248],"\u002Fwp-content\u002Fplugins\u002Fkkiapay-woocommerce\u002Fassets\u002Fcss\u002Fstyle.css",[],[],[252],"kkiapay-woocommerce\u002Fassets\u002Fcss\u002Fstyle.css?ver=",{"cssClasses":254,"htmlComments":256,"htmlAttributes":257,"restEndpoints":258,"jsGlobals":261,"shortcodeOutput":262},[255],"kkiapay-payment-method",[],[],[259,260],"\u002Fwp-json\u002Fwc-kkiapay-gateway\u002Fv1\u002Fpayment","\u002Fwp-json\u002Fwc-kkiapay-gateway\u002Fv1\u002Fwebhook",[],[]]