[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f5R8T4rltDYpgOirXfjrdhbSqa6i8NpdfeF9lq86No_o":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":136,"fingerprints":224},"mobile-pay-bd","Mobile Pay BD","2.2","Md Safiqul Islam","https:\u002F\u002Fprofiles.wordpress.org\u002Fmahadi8457\u002F","\u003Cp>This is a cool plugin to integrate a payment gateway in any WooCommerce based website to process nagad payment. It is lightweight and easy to use.\u003C\u002Fp>\n\u003Cp>Please note:\u003Cbr \u002F>\n– This is a WooCommerce based plugin, so WooCommerce plugin must be activated before active this plugin.\u003Cbr \u002F>\n– You must have a nagadaccount to get payments.\u003C\u002Fp>\n\u003Ch4>Using the Plugin\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Download the plugin, install and active.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Click on \u003Cstrong>Settings\u003C\u002Fstrong> or go to \u003Cstrong>WooCommerce\u003C\u002Fstrong> > \u003Cstrong>Settings\u003C\u002Fstrong> > \u003Cstrong>Woo nagad\u003C\u002Fstrong>,\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Now you will see few default setup. You must fill up nagad account number and account type and also adjust other fields to get payment.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>That’s it. You are ready to go!\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Mobile Pay BD is a Payment Gateway for WooCommerce",10,1613,0,"2023-02-11T13:08:00.000Z","6.1.10","5.6.0","5.2.4",[19,20,21,22,23],"bangladesh","dak-bivag","gateway","nagad","woocommerce","https:\u002F\u002Fbeetech4u.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmobile-pay-bd.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"mahadi8457",1,30,84,"2026-04-04T18:35:09.356Z",[37,60,79,98,116],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":58,"download_link":59,"security_score":47,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"codecarebd-bkash-nagad-rocket-payoneer-gateway","CodeCareBD – Payment Gateway for WooCommerce","1.0","Shakil Ahamed","https:\u002F\u002Fprofiles.wordpress.org\u002Fdevshakil\u002F","\u003Cp>CodeCareBD – Payment Gateway plugin integrates bKash, Nagad, Rocket, and Payoneer Payment Gateways with WooCommerce.\u003C\u002Fp>\n\u003Ch3>How to use\u003C\u002Fh3>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FyrK5dhQpX68?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>Please note:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>This is a WooCommerce plugin, requiring WooCommerce activation.\u003C\u002Fli>\n\u003Cli>You need accounts with bKash, Nagad, Rocket, or Payoneer to receive payments.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For suggestions and support, contact us \u003Ca href=\"https:\u002F\u002Fcodecarebd.com\u002Fcontact\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n","CodeCareBD - Payment Gateway plugin integrates bKash, Nagad, Rocket, and Payoneer Payment Gateways with WooCommerce.",300,11362,100,3,"2026-02-03T09:12:00.000Z","6.7.5","6.3","7.3",[54,22,55,56,57],"bkash","payoneer","rocket","woocommerce-payment-gateway","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcodecarebd-bkash-nagad-rocket-payoneer-gateway","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcodecarebd-bkash-nagad-rocket-payoneer-gateway.1.0.zip",{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":47,"num_ratings":70,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":74,"tags":75,"homepage":77,"download_link":78,"security_score":47,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"nagad-payment-gateway","Nagad Payment Gateway","1.1.5","Nagad Limited","https:\u002F\u002Fprofiles.wordpress.org\u002Fashik1198911\u002F","\u003Cp>After getting merchant account from Nagad simply activate the plugin and go to woocommerce setting option. Select payments and manage options for Nagad Payment Gateway.\u003C\u002Fp>\n\u003Cp>There you will find a form to put merchant id, merchant private key , Nagad gateway public key and other necessary fields.\u003C\u002Fp>\n\u003Cp>Simply fill up the form and click save to get Nagad payment option in your website.\u003C\u002Fp>\n\u003Cp>You need to add the callback url ‘your_website_url\u002Fnagad-pay\u002Fpayment\u002Fconfirmation\u002F’ to Nagad merchant panel and let Nagad know the callback url in order to whitelist this in their server.\u003Cbr \u002F>\nAlso if your website is hosted from a foreign server you need to inform Nagad the server’s main IP address to whitelist from their end.\u003C\u002Fp>\n","This is official Nagad Payment Gateway plugin for woocommerce websites.",200,12037,2,"2025-09-09T10:13:00.000Z","6.8.5","4.0","5.6",[22,76,61],"nagad-bangladesh","https:\u002F\u002Fgitlab.com\u002FNagadExternal\u002Fpgw\u002Fng_pgw_wp_plugin\u002F-\u002Fblob\u002Fmain\u002Fnagad-pay.zip","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnagad-payment-gateway.1.1.5.zip",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":33,"downloaded":87,"rating":47,"num_ratings":32,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":91,"tags":92,"homepage":96,"download_link":97,"security_score":47,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"flying-pay-gateway","Flying Pay","1.1.3","Rakib Hussain","https:\u002F\u002Fprofiles.wordpress.org\u002Fskillupwithrakib\u002F","\u003Cp>\u003Cstrong>Flying Pay\u003C\u002Fstrong> is an all-in-one payment information gateway designed for Bangladeshi merchants. It provides a clean, modern interface for customers to get payment details and submit transaction information.\u003C\u002Fp>\n\u003Ch3>Key Features:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Mobile Banking:\u003C\u002Fstrong> Support for bKash, Nagad, and Rocket.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi-Bank Support:\u003C\u002Fstrong> Integrated with Al-Arafa Islami Bank, Pubali Bank, Dutch Bangla Bank, and Islami Bank PLC.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Crypto Support:\u003C\u002Fstrong> Built-in Binance Pay and RedotPay options.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Interactive UI:\u003C\u002Fstrong> Modern tab-based design with selection blur effects for better user experience.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Copy to Clipboard:\u003C\u002Fstrong> One-click copy for Account numbers, Routing numbers, and Amounts.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>File Upload:\u003C\u002Fstrong> Option for customers to upload payment screenshots\u002Fslips for bank transfers.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Control:\u003C\u002Fstrong> Enable or disable any specific method from the WooCommerce settings.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>For detailed instructions on how to set up and use Flying Pay, please visit our official documentation:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fflying-pay-gateway\u002F\" rel=\"ugc\">Plugin Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbondubazar.com\u002Fdemo\" rel=\"nofollow ugc\">Live Demo\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwa.me\u002F8801616355160\" rel=\"nofollow ugc\">Need Help?\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frakibhussain.com\u002Fabout-me\u002F\" rel=\"nofollow ugc\">About Author\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support & Review\u003C\u002Fh3>\n\u003Cp>If you find \u003Cstrong>Flying Pay\u003C\u002Fstrong> helpful for your business, please consider leaving us a 5-star review! Your feedback helps us to keep improving the plugin and providing better support to the community.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fflying-pay-gateway\u002Freviews\u002F#new-post\" rel=\"ugc\">Leave a 5-Star Review\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwa.me\u002F8801616355160\" rel=\"nofollow ugc\">Request Technical Support\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","A seamless and secure payment gateway integration for WooCommerce featuring Mobile Banking, 4 Major Banks, and Crypto support with an interactive UI.",461,"2026-03-09T12:32:00.000Z","6.9.4","5.0","",[93,94,95,54,22],"bangladeshi-gateway","bd-gateway","bd-payment-gateway","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fflying-pay-gateway\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fflying-pay-gateway.1.1.3.zip",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":108,"num_ratings":109,"last_updated":110,"tested_up_to":111,"requires_at_least":73,"requires_php":74,"tags":112,"homepage":114,"download_link":115,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"dc-nagad","DC Nagad Payment","1.1.1","Kapil Paul","https:\u002F\u002Fprofiles.wordpress.org\u002Fkapilpaul\u002F","\u003Ch4>NAGAD PAYMENT METHOD FOR WOOCOMMERCE\u003C\u002Fh4>\n\u003Cp>Woocommerce payment method for Nagad for easy checkout. This plugin helps you to receive payment from your user.\u003C\u002Fp>\n\u003Ch4>Installation Guide\u003C\u002Fh4>\n\u003Col>\n\u003Cli>After activate the plugin you need to go to Woocommerce settings for payments. Here you can see NAGAD as a payment method. Enable this and open settings for this payment method.\u003C\u002Fli>\n\u003Cli>Collect your Merchant ID, Merchant Public Key, Merchant Private Key from Nagad. Place this in here and you are able to collect your payment.\u003C\u002Fli>\n\u003Cli>Add \u003Ccode>http:\u002F\u002Fyoursite.com\u002Fdc-nagad\u002Fpayment\u002Faction\u002F\u003C\u002Fcode> in callback url in your merchant panel.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fg6i3_n1jugQ?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>Contributing and Reporting Bugs\u003C\u002Fh4>\n\u003Cp>Nagad Payment Gateway for WC is being developed on GitHub. If you’re interested in contributing to the plugin, please look at \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fkapilpaul\u002Fnagad-woocommerce\" rel=\"nofollow ugc\">Github page\u003C\u002Fa>.\u003C\u002Fp>\n","You can easily pay via Nagad.",20,5633,40,4,"2020-07-27T10:09:00.000Z","5.4.19",[19,95,113,22],"bdt","https:\u002F\u002Fkapilpaul.me\u002Fprojects\u002Fwordpress\u002Fnagad-payment","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdc-nagad.zip",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":11,"downloaded":124,"rating":13,"num_ratings":13,"last_updated":125,"tested_up_to":89,"requires_at_least":126,"requires_php":127,"tags":128,"homepage":133,"download_link":134,"security_score":47,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":135},"bangladeshi-bank-payment-method","Bangladeshi Bank Payment Method","1.0.6","Raisul Islam Shagor","https:\u002F\u002Fprofiles.wordpress.org\u002Fshagor447\u002F","\u003Cp>This plugin adds a secure \u003Cstrong>Bank Payment with Receipt Upload\u003C\u002Fstrong> option to your WooCommerce store, specially designed for merchants and customers in Bangladesh.\u003Cbr \u002F>\nInstead of just entering a transaction ID, customers can \u003Cstrong>upload a screenshot or photo of their bank payment receipt\u003C\u002Fstrong> (e.g., mobile banking confirmation) directly on the checkout page. The uploaded image is securely stored and displayed in the order details for easy manual verification by the store admin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Perfect for businesses that require visual proof of payment before processing orders.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Accept bank transfer payments from any Bangladeshi bank (City Bank, IFIC BANK, UCB Bank, Islami Bank etc.).\u003Cbr \u002F>\n* Customers upload a \u003Cstrong>payment receipt image\u003C\u002Fstrong> (PNG\u002FJPG) during checkout.\u003Cbr \u002F>\n* Automatic file validation (max 1MB, only images allowed).\u003Cbr \u002F>\n* Uploaded receipt is visible in the \u003Cstrong>WooCommerce order details\u003C\u002Fstrong> in the admin dashboard.\u003Cbr \u002F>\n* Displays your bank account details clearly on the checkout page.\u003Cbr \u002F>\n* Fully compatible with WooCommerce emails, order statuses, and cart flow.\u003Cbr \u002F>\n* You can change your bank icon, it will make it visually clear and easier for customers to understand.\u003Cbr \u002F>\n* No sensitive data stored — secure and lightweight.\u003C\u002Fp>\n\u003Ch3>Update Notice\u003C\u002Fh3>\n\u003Cp>= 1.0.6 =\u003Cbr \u002F>\nVersion 1.0.6 has been released as a stable version.\u003C\u002Fp>\n","WooCommerce gateway for Bangladeshi businesses allowing customers to upload bank payment receipts at checkout.",253,"2025-12-19T12:37:00.000Z","6.0","7.4",[129,130,131,132,23],"bangladesh-bank-transfer","bangladeshi-bank-payment-gateway","manual-payment","payment-gateway","https:\u002F\u002Fraisul.dev\u002Fprojects\u002Fbangladeshi-bank-payment-method-for-woocommerce-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbangladeshi-bank-payment-method.1.0.6.zip","2026-03-15T14:54:45.397Z",{"attackSurface":137,"codeSignals":198,"taintFlows":215,"riskAssessment":216,"analyzedAt":223},{"hooks":138,"ajaxHandlers":194,"restRoutes":195,"shortcodes":196,"cronEvents":197,"entryPointCount":13,"unprotectedCount":13},[139,145,150,154,158,162,166,170,174,178,182,186,190],{"type":140,"name":141,"callback":142,"file":143,"line":144},"action","init","beetech_nagad_language_setup","nagad.php",22,{"type":146,"name":147,"callback":148,"file":143,"line":149},"filter","woocommerce_payment_gateways","beetech_nagad_payment_gateways",31,{"type":140,"name":151,"callback":152,"file":143,"line":153},"plugins_loaded","beetech_nagad_plugin_activation",41,{"type":146,"name":155,"callback":156,"file":143,"line":157},"woocommerce_thankyou_order_received_text","beetech_nagad_thankyou_page",74,{"type":140,"name":159,"callback":160,"priority":11,"file":143,"line":161},"woocommerce_email_before_order_table","beetech_nagad_email_instructions",75,{"type":140,"name":163,"callback":164,"file":143,"line":165},"wp_enqueue_scripts","beetech_nagad_script",218,{"type":140,"name":167,"callback":168,"file":143,"line":169},"woocommerce_cart_calculate_fees","beetech_nagad_charge",224,{"type":140,"name":171,"callback":172,"file":143,"line":173},"woocommerce_checkout_process","beetech_nagad_payment_process",257,{"type":140,"name":175,"callback":176,"file":143,"line":177},"woocommerce_checkout_update_order_meta","beetech_nagad_additional_fields_update",289,{"type":140,"name":179,"callback":180,"file":143,"line":181},"woocommerce_admin_order_data_after_billing_address","beetech_nagad_admin_order_data",309,{"type":140,"name":183,"callback":184,"file":143,"line":185},"woocommerce_order_details_after_customer_details","beetech_nagad_additional_info_order_review_fields",342,{"type":146,"name":187,"callback":188,"file":143,"line":189},"manage_edit-shop_order_columns","beetech_nagad_admin_new_column",368,{"type":140,"name":191,"callback":192,"priority":70,"file":143,"line":193},"manage_shop_order_posts_custom_column","beetech_nagad_admin_column_value",384,[],[],[],[],{"dangerousFunctions":199,"sqlUsage":200,"outputEscaping":202,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":214},[],{"prepared":13,"raw":13,"locations":201},[],{"escaped":203,"rawEcho":109,"locations":204},16,[205,208,210,212],{"file":143,"line":206,"context":207},149,"raw output",{"file":143,"line":209,"context":207},150,{"file":143,"line":211,"context":207},206,{"file":143,"line":213,"context":207},321,[],[],{"summary":217,"deductions":218},"The \"mobile-pay-bd\" plugin v2.2 exhibits a strong security posture based on the provided static analysis and vulnerability history. The complete absence of identified entry points like AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the plugin's attack surface. Furthermore, the code analysis reveals a healthy approach to data handling, with no dangerous functions, file operations, or external HTTP requests detected. The use of prepared statements for all SQL queries and a high percentage of properly escaped output further bolster its security.\n\nHowever, a notable concern arises from the complete lack of nonce checks and capability checks. While the current analysis shows no direct vulnerabilities stemming from this, it represents a critical gap in WordPress security best practices. If any entry points were to be introduced in future versions, or if existing ones were missed in this analysis, the absence of these fundamental security measures would expose the plugin to significant risks like Cross-Site Request Forgery (CSRF) and privilege escalation. The vulnerability history being entirely clear is a positive sign, suggesting a history of secure development or minimal exposure, but it does not negate the identified structural weaknesses.\n\nIn conclusion, \"mobile-pay-bd\" v2.2 demonstrates good practices in code execution and data sanitization, presenting a low immediate risk. Its strengths lie in its minimal attack surface and secure data handling. The primary weakness is the complete omission of nonce and capability checks, which, while not currently exploited, represents a fundamental security deficiency that could lead to severe vulnerabilities if not addressed, especially with any future code additions.",[219,221],{"reason":220,"points":11},"Missing nonce checks",{"reason":222,"points":11},"Missing capability checks","2026-03-17T01:43:36.717Z",{"wat":225,"direct":232},{"assetPaths":226,"generatorPatterns":228,"scriptPaths":229,"versionParams":231},[227],"\u002Fwp-content\u002Fplugins\u002Fmobile-pay-bd\u002Fimages\u002Fnagad.png",[],[230],"\u002Fwp-content\u002Fplugins\u002Fmobile-pay-bd\u002Fjs\u002Fscripts.js",[],{"cssClasses":233,"htmlComments":234,"htmlAttributes":235,"restEndpoints":236,"jsGlobals":237,"shortcodeOutput":239},[],[],[],[],[238],"window.jQuery",[]]