WP-Safety

Lumino Payments for WooCommerce Security & Risk Analysis

wordpress.org/plugins/lumino-payments-for-woocommerce

Redirect-based card payments via Lumino. Creates a session, redirects to hosted page, and confirms orders via webhook.

0 active installs v1.0.0 PHP 8.2+ WP 6.3+ Updated Nov 19, 2025
checkoutcredit-cardpaymentswoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Lumino Payments for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Lumino Payments for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago
Risk Assessment

The plugin "lumino-payments-for-woocommerce" v1.0.0 exhibits a strong security posture based on the provided static analysis. There are no identified direct attack vectors through AJAX handlers, REST API routes, shortcodes, or cron events, and importantly, none of these entry points appear to be unprotected. The code also demonstrates good practices by exclusively using prepared statements for SQL queries and a high percentage of properly escaped output. The presence of a file operation and an external HTTP request are noted but do not inherently signal risk without further context from taint analysis.

The vulnerability history is completely clean, with zero known CVEs, including no currently unpatched vulnerabilities. This lack of historical issues suggests a commitment to security or a relatively low profile for the plugin. However, the absence of nonce checks and a single capability check, while not directly linked to exploitable issues in this analysis, are areas that can sometimes lead to vulnerabilities if not carefully managed. The overall picture is one of a plugin that has been developed with security in mind, but vigilance is always recommended, especially regarding the handling of file operations and external requests.

Key Concerns

  • No nonce checks found
  • Only 1 capability check found
Vulnerabilities
None known

Lumino Payments for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Lumino Payments for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
1
16 escaped
Nonce Checks
0
Capability Checks
1
File Operations
1
External Requests
1
Bundled Libraries
0

Output Escaping

94% escaped17 total outputs
Attack Surface

Lumino Payments for WooCommerce Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 7
actionwoocommerce_update_options_payment_gateways_payment_gatewayincludes\class-payment-gateway-admin.php:19
actionbefore_woocommerce_initlumino-payments-for-woocommerce.php:34
actionplugins_loadedlumino-payments-for-woocommerce.php:51
filterwoocommerce_payment_gatewayslumino-payments-for-woocommerce.php:62
actionwoocommerce_api_payment_gatewaylumino-payments-for-woocommerce.php:67
actionwoocommerce_blocks_loadedlumino-payments-for-woocommerce.php:71
actionwoocommerce_blocks_payment_method_type_registrationlumino-payments-for-woocommerce.php:94
Maintenance & Trust

Lumino Payments for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedNov 19, 2025
PHP min version8.2
Downloads128

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Lumino Payments for WooCommerce Alternatives

Pelecard Gateway

Pelecard Gateway

woo-pelecard-gateway

A
100

Extends WooCommerce with Pelecard payment gateway.

500 No CVEs
WooPayments: Integrated WooCommerce Payments

WooPayments: Integrated WooCommerce Payments

woocommerce-payments

A
89

Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.

900K 7 CVEs
WooCommerce PayPal Payments

WooCommerce PayPal Payments

woocommerce-paypal-payments

A
100

PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.

800K 1 CVE
WooCommerce Stripe Payment Gateway

WooCommerce Stripe Payment Gateway

woocommerce-gateway-stripe

A
98

Accept debit and credit cards in 135+ currencies, many local methods like Alipay, ACH, and SEPA, and express checkout with Apple Pay and Google Pay.

700K 4 CVEs
Mollie Payments for WooCommerce

Mollie Payments for WooCommerce

mollie-payments-for-woocommerce

A
93

Accept all major payment methods in WooCommerce today. Credit cards, iDEAL and more! Fast, safe and intuitive.

100K 4 CVEs
Developer Profile

Lumino Payments for WooCommerce Developer Profile

luminodevs

1 plugin · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Lumino Payments for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/lumino-payments-for-woocommerce/assets/js/polling.js/wp-content/plugins/lumino-payments-for-woocommerce/assets/css/main.css
Script Paths
/wp-content/plugins/lumino-payments-for-woocommerce/assets/js/polling.js
Version Parameters
lumino-payments-for-woocommerce/assets/js/polling.js?ver=lumino-payments-for-woocommerce/assets/css/main.css?ver=

HTML / DOM Fingerprints

CSS Classes
lumino-payments-gateway-description
HTML Comments
<!-- Lumino Payments Gateway Description -->
Data Attributes
data-lumino-api-urldata-lumino-api-tokendata-lumino-order-iddata-lumino-polling-interval
JS Globals
lumino_pfw_polling
REST Endpoints
/wp-json/lumino-pfw/v1/payment-status
FAQ

Frequently Asked Questions about Lumino Payments for WooCommerce