WP-Safety

Nomod for WooCommerce Security & Risk Analysis

wordpress.org/plugins/nomod-for-woocommerce

Accept major cards, Apple Pay, Google Pay, Mada, Tabby & Tamara on your store. Get same-day payouts, no monthly fees & amazing support!

300 active installs v1.0.9 PHP 7.4+ WP 6.5+ Updated Feb 18, 2026
apple-paycredit-cardpayment-gatewaypaymentswoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Nomod for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Nomod for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The nomod-for-woocommerce plugin v1.0.9 demonstrates a generally good security posture based on the provided static analysis. The plugin has no recorded vulnerabilities, indicating a history of stable and secure development. The attack surface is minimal with only one AJAX handler, and importantly, it appears to be protected by authentication. SQL queries are exclusively prepared, and output escaping is high at 94%. The absence of taint analysis results with unsanitized paths or critical/high severity flows further strengthens this positive assessment.

However, there are a few areas that prevent a perfect score. The lack of capability checks on the single AJAX handler is a notable concern. While the attack surface is small, the absence of explicit permission checks means that any authenticated user, regardless of their role or permissions, could potentially interact with this AJAX handler. The presence of external HTTP requests also warrants caution, though their nature is not detailed. Overall, the plugin is in good condition, but the missing capability checks represent a specific area for improvement to further harden its security.

Key Concerns

  • Missing capability checks on AJAX handler
  • External HTTP requests present
Vulnerabilities
None known

Nomod for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Nomod for WooCommerce Release Timeline

v1.0.9Current
v1.0.8
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
Code Analysis
Analyzed Mar 16, 2026

Nomod for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
1
16 escaped
Nonce Checks
1
Capability Checks
0
File Operations
0
External Requests
2
Bundled Libraries
0

Output Escaping

94% escaped17 total outputs
Attack Surface

Nomod for WooCommerce Attack Surface

Entry Points1
Unprotected0

AJAX Handlers 1

authwp_ajax_woocommerce_delete_refundincludes\class-wc-nomod-refunds.php:28
WordPress Hooks 15
actionrest_api_initincludes\class-wc-nomod-payment-webhook.php:13
actionwoocommerce_refund_createdincludes\class-wc-nomod-refunds.php:22
actionadmin_noticesincludes\class-wc-nomod-refunds.php:33
actionadmin_footerincludes\class-wc-nomod-refunds.php:34
actionadmin_noticesnomod-for-woocommerce.php:34
actionplugins_loadednomod-for-woocommerce.php:45
actionplugins_loadednomod-for-woocommerce.php:46
filterwoocommerce_payment_gatewaysnomod-for-woocommerce.php:47
actionwoocommerce_api_wc_nomod_webhooknomod-for-woocommerce.php:48
actiontemplate_redirectnomod-for-woocommerce.php:49
actiontemplate_redirectnomod-for-woocommerce.php:50
actionbefore_woocommerce_initnomod-for-woocommerce.php:51
actionwoocommerce_blocks_loadednomod-for-woocommerce.php:52
actionwp_enqueue_scriptsnomod-for-woocommerce.php:53
actionwoocommerce_blocks_payment_method_type_registrationnomod-for-woocommerce.php:124
Maintenance & Trust

Nomod for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 18, 2026
PHP min version7.4
Downloads2K

Community Trust

Rating100/100
Number of ratings2
Active installs300
Alternatives

Nomod for WooCommerce Alternatives

WooPayments: Integrated WooCommerce Payments

WooPayments: Integrated WooCommerce Payments

woocommerce-payments

A
89

Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.

900K 7 CVEs
Clover Payments for WooCommerce

Clover Payments for WooCommerce

clover-payments-for-woocommerce

A
100

The Clover Payments plugin enables merchants that use WooCommerce to process online card payments using Clover.

2K No CVEs
Sola Payment Gateway for WooCommerce

Sola Payment Gateway for WooCommerce

woo-cardknox-gateway

A
100

Accept payments with the Sola gateway.

700 No CVEs
MONEI Payments for WooCommerce

MONEI Payments for WooCommerce

monei

A
100

Accept Card, Apple Pay, Google Pay, Bizum, PayPal and many more payment methods in your WooCommerce store using MONEI payment gateway.

400 No CVEs
Checkout.com Payment Gateway

Checkout.com Payment Gateway

checkout-com-unified-payments-api

A
100

Checkout.com helps your business offer more payment methods and currencies to more customers. We provide best-in-class payment processing for credit c …

300 No CVEs
Developer Profile

Nomod for WooCommerce Developer Profile

Nomod

1 plugin · 300 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Nomod for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/nomod-for-woocommerce/assets/css/payment-icons.css
Version Parameters
nomod-for-woocommerce/assets/css/payment-icons.css?ver=

HTML / DOM Fingerprints

CSS Classes
nomod-payment-icons
REST Endpoints
/wp-json/nomod/v1/webhook
FAQ

Frequently Asked Questions about Nomod for WooCommerce