WP-Safety

Link Nacional Payment Gateway for MercadoPago and GiveWP Security & Risk Analysis

wordpress.org/plugins/lknmp-gateway-givewp

Link Nacional MercadoPago payment option for GiveWP.

50 active installs v1.5.1 PHP 7.4+ WP 5.7+ Updated Mar 5, 2026
cardgivewpmercadopagopayment
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Link Nacional Payment Gateway for MercadoPago and GiveWP Safe to Use in 2026?

Generally Safe

Score 100/100

Link Nacional Payment Gateway for MercadoPago and GiveWP has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 28d ago
Risk Assessment

The "lknmp-gateway-givewp" plugin version 1.5.1 presents a concerning security posture due to a significant unprotected attack surface. While the plugin demonstrates good practices by exclusively using prepared statements for SQL queries and having no recorded vulnerabilities, the presence of two REST API routes without permission callbacks is a critical oversight. This means any unauthenticated user can potentially interact with these endpoints, leading to unintended actions or information disclosure if the underlying functionality is sensitive. The lack of nonce checks and capability checks further exacerbates this risk, as these are fundamental security mechanisms for preventing common web attacks and ensuring proper authorization. Despite the absence of dangerous functions and taint flow issues, the exposed REST API endpoints without proper authentication or authorization checks represent a clear and present danger.

Key Concerns

  • Unprotected REST API routes
  • Missing capability checks
  • Missing nonce checks
  • Unescaped output (83% is not 100%)
Vulnerabilities
None known

Link Nacional Payment Gateway for MercadoPago and GiveWP Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Link Nacional Payment Gateway for MercadoPago and GiveWP Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
3
15 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

83% escaped18 total outputs
Attack Surface
2 unprotected

Link Nacional Payment Gateway for MercadoPago and GiveWP Attack Surface

Entry Points2
Unprotected2

REST API Routes 2

GET/wp-json/lknmp/v1/paymentsIncludes\LknmpGatewayGiveWP.php:239
GET/wp-json/lknmp/v1/payments/checkpaymentIncludes\LknmpGatewayGiveWP.php:247
WordPress Hooks 11
actionplugins_loadedIncludes\LknmpGatewayGiveWP.php:130
actionadmin_enqueue_scriptsIncludes\LknmpGatewayGiveWP.php:144
actionadmin_enqueue_scriptsIncludes\LknmpGatewayGiveWP.php:145
actiongivewp_register_payment_gatewayIncludes\LknmpGatewayGiveWP.php:146
actionrest_api_initIncludes\LknmpGatewayGiveWP.php:147
actionrest_api_initIncludes\LknmpGatewayGiveWP.php:148
filtergive_get_settings_gatewaysIncludes\LknmpGatewayGiveWP.php:149
filtergive_get_sections_gatewaysIncludes\LknmpGatewayGiveWP.php:150
actionwp_enqueue_scriptsIncludes\LknmpGatewayGiveWP.php:164
actionwp_enqueue_scriptsIncludes\LknmpGatewayGiveWP.php:165
actiongivewp_register_payment_gatewayIncludes\LknmpGatewayGiveWP.php:166
Maintenance & Trust

Link Nacional Payment Gateway for MercadoPago and GiveWP Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 5, 2026
PHP min version7.4
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs50
Alternatives

Link Nacional Payment Gateway for MercadoPago and GiveWP Alternatives

WooPayments: Integrated WooCommerce Payments

WooPayments: Integrated WooCommerce Payments

woocommerce-payments

A
97

Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.

900K 6 CVEs
WooCommerce PayPal Payments

WooCommerce PayPal Payments

woocommerce-paypal-payments

A
100

PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.

800K 1 CVE
WooCommerce Stripe Payment Gateway

WooCommerce Stripe Payment Gateway

woocommerce-gateway-stripe

A
98

Accept debit and credit cards in 135+ currencies, many local methods like Alipay, ACH, and SEPA, and express checkout with Apple Pay and Google Pay.

700K 4 CVEs
Mollie Payments for WooCommerce

Mollie Payments for WooCommerce

mollie-payments-for-woocommerce

A
93

Accept all major payment methods in WooCommerce today. Credit cards, iDEAL and more! Fast, safe and intuitive.

100K 4 CVEs
Paystack WooCommerce Payment Gateway

Paystack WooCommerce Payment Gateway

woo-paystack

A
100

Paystack for WooCommerce allows your WooCommerce store to accept secure payments from multiple local and global payment channels.

30K No CVEs
Developer Profile

Link Nacional Payment Gateway for MercadoPago and GiveWP Developer Profile

linknacional

18 plugins · 5K total installs

99
trust score
Avg Security Score
98/100
Avg Patch Time
6 days
View full developer profile
Detection Fingerprints

How We Detect Link Nacional Payment Gateway for MercadoPago and GiveWP

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/lknmp-gateway-givewp/css/lknmp-gateway-givewp-admin.css/wp-content/plugins/lknmp-gateway-givewp/js/lknmp-gateway-givewp-show-message.js
Script Paths
js/lknmp-gateway-givewp-show-message.js
Version Parameters
lknmp-gateway-givewp/css/lknmp-gateway-givewp-admin.css?ver=lknmp-gateway-givewp/js/lknmp-gateway-givewp-show-message.js?ver=

HTML / DOM Fingerprints

Data Attributes
data-plugin-name="Lknmp_Gateway_Givewp"
JS Globals
window.lknmp_gateway_givewp_vars
FAQ

Frequently Asked Questions about Link Nacional Payment Gateway for MercadoPago and GiveWP