[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$frpxBhy0YAJsK_keZdiVpVY_Y9_bR97t3CP1-PiBD1Kk":3},{"slug":4,"name":5,"version":6,"author":5,"author_profile":7,"description":8,"short_description":9,"active_installs":10,"downloaded":11,"rating":12,"num_ratings":12,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":12,"unpatched_count":12,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":33,"analysis":136,"fingerprints":408},"parcelow","Parcelow","3.3.8","https:\u002F\u002Fprofiles.wordpress.org\u002Fparcelow\u002F","\u003Ch3>Payment method that can be easily integrated\u003C\u002Fh3>\n\u003Cp>Self-payment checkout.\u003C\u002Fp>\n\u003Cp>The best rates in the market.\u003C\u002Fp>\n\u003Cp>Accept payments by PIX and credit card.\u003C\u002Fp>\n\u003Cp>Installment payment.\u003C\u002Fp>\n\u003Cp>To learn more about Parcelow visit our website: www.parcelow.com.br\u003C\u002Fp>\n\u003Cp>To use our payment method, just enroll here: https:\u002F\u002Fprecadastro.parcelow.com\u002F\u003C\u002Fp>\n\u003Cp>After your registration is approved you will be given access credentials to the API.\u003C\u002Fp>\n\u003Cp>If you need help, contact us by sending an e-mail to integracao@parcelow.com\u003C\u002Fp>\n","Payment method that can be easily integrated",10,4460,0,"2025-09-23T15:03:00.000Z","6.8.5","5.9","7.2",[18,4,19,20,21],"credit-card","payment-gateway","pix","woocommerce","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fparcelow\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fparcelow.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":4,"display_name":5,"profile_url":7,"plugin_count":29,"total_installs":10,"avg_security_score":24,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},1,30,94,"2026-04-04T00:35:26.932Z",[34,50,71,94,116],{"slug":35,"name":36,"version":37,"author":38,"author_profile":39,"description":40,"short_description":41,"active_installs":12,"downloaded":42,"rating":24,"num_ratings":29,"last_updated":43,"tested_up_to":14,"requires_at_least":44,"requires_php":45,"tags":46,"homepage":48,"download_link":49,"security_score":24,"vuln_count":12,"unpatched_count":12,"last_vuln_date":25,"fetched_at":26},"fatoripay-gateway-for-woocommerce","FatoriPay Gateway for WooCommerce","1.5.2","suportepress","https:\u002F\u002Fprofiles.wordpress.org\u002Fsuportepress\u002F","\u003Cp>FatoriPay Gateway for WooCommerce integrates seamlessly with your store to process payments through \u003Cstrong>Pix (instant payments)\u003C\u002Fstrong>, \u003Cstrong>Boleto bancário\u003C\u002Fstrong>, and \u003Cstrong>Credit Cards\u003C\u002Fstrong>. Designed for the Brazilian market, this official plugin ensures compliance with local regulations while providing a smooth checkout experience.\u003C\u002Fp>\n\u003Cp>Key features:\u003Cbr \u002F>\n– \u003Cstrong>Pix payments\u003C\u002Fstrong>: Instant payments with automatic order confirmation.\u003Cbr \u002F>\n– \u003Cstrong>Boleto bancário\u003C\u002Fstrong>: Generate printable\u002Fsendable invoices.\u003Cbr \u002F>\n– \u003Cstrong>Credit Card processing\u003C\u002Fstrong>: Secure transactions via FatoriPay’s gateway.\u003Cbr \u002F>\n– \u003Cstrong>Sandbox mode\u003C\u002Fstrong>: Test payments before going live.\u003Cbr \u002F>\n– \u003Cstrong>Order status sync\u003C\u002Fstrong>: Automatic updates for completed\u002Ffailed payments.\u003C\u002Fp>\n\u003Ch3>Short Description\u003C\u002Fh3>\n\u003Cp>Accept Pix, Boleto, and Credit Card payments in WooCommerce via FatoriPay’s secure Brazilian payment gateway.\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to the external service FatoriPay to process payments.\u003C\u002Fp>\n\u003Cp>Required services and credentials:\u003Cbr \u002F>\n– An active merchant account with FatoriPay: https:\u002F\u002Ffatoripay.com.br\u003Cbr \u002F>\n– API credentials, obtained from your FatoriPay dashboard\u003Cbr \u002F>\n– API endpoints used:\u003Cbr \u002F>\n  – Production: https:\u002F\u002Fapi.fatoripay.com.br\u002Fapi\u002Fv1\u002F\u003Cbr \u002F>\n  – Sandbox (homologation): https:\u002F\u002Fsandbox-api.fatoripay.com.br\u002Fapi\u002Fv1\u002F\u003C\u002Fp>\n\u003Cp>Terms and Privacy Policy:\u003Cbr \u002F>\n– Terms of Use: https:\u002F\u002Ffatoripay.com.br\u002Ftermosdeuso\u002F\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Ffatoripay.com.br\u002Favisodeprivacidade\u002F\u003C\u002Fp>\n\u003Cp>Data sent to FatoriPay:\u003Cbr \u002F>\n– Order total\u003Cbr \u002F>\n– Customer CPF or CNPJ (for Pix\u002FBoleto)\u003Cbr \u002F>\n– Selected payment method\u003C\u002Fp>\n\u003Cp>This data is required for completing payment transactions through the FatoriPay gateway.\u003C\u002Fp>\n\u003Cp>The plugin uses the WordPress HTTP API to securely send requests to FatoriPay’s servers.\u003C\u002Fp>\n","FatoriPay Gateway for WooCommerce integrates seamlessly with your store to process payments through Pix (instant payments), Boleto bancário, and Credi &hellip;",200,"2025-07-04T20:12:00.000Z","5.8","8.0.0",[47,18,19,20,21],"boleto","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffatoripay-gateway-for-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffatoripay-gateway-for-woocommerce.zip",{"slug":51,"name":52,"version":53,"author":54,"author_profile":55,"description":56,"short_description":57,"active_installs":58,"downloaded":59,"rating":60,"num_ratings":61,"last_updated":62,"tested_up_to":63,"requires_at_least":64,"requires_php":65,"tags":66,"homepage":69,"download_link":70,"security_score":24,"vuln_count":12,"unpatched_count":12,"last_vuln_date":25,"fetched_at":26},"woo-asaas","Asaas Gateway for WooCommerce","2.7.4","Asaas","https:\u002F\u002Fprofiles.wordpress.org\u002Fasaas\u002F","\u003Cp>Use \u003Ca href=\"https:\u002F\u002Fwww.asaas.com\" rel=\"nofollow ugc\">Asaas\u003C\u002Fa> as payment method in your WooCommerce store.\u003C\u002Fp>\n\u003Cp>This plugin is an implementation of \u003Ca href=\"https:\u002F\u002Fasaasv3.docs.apiary.io\" rel=\"nofollow ugc\">Asaas API v3\u003C\u002Fa>. The checkout mechanism is completely transparent. The customer will not go out of your store to finish the order. The data are sent to Asaas service, that process the payment and return its status.\u003C\u002Fp>\n\u003Cp>For any doubt about the plugin installation and integration, please read the FAQ. If it doesn’t solve, use the plugin Support area that we will help you as soon as possible.\u003C\u002Fp>\n","Take transparent credit card and bank ticket payment checkouts on your store using Asaas.",9000,177841,78,17,"2026-03-10T00:36:00.000Z","6.7.5","4.4","7.0",[67,18,68,19,21],"asaas","payment","https:\u002F\u002Fwww.asaas.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-asaas.2.7.4.zip",{"slug":72,"name":73,"version":74,"author":75,"author_profile":76,"description":77,"short_description":78,"active_installs":79,"downloaded":80,"rating":81,"num_ratings":82,"last_updated":83,"tested_up_to":84,"requires_at_least":85,"requires_php":65,"tags":86,"homepage":89,"download_link":90,"security_score":91,"vuln_count":92,"unpatched_count":12,"last_vuln_date":93,"fetched_at":26},"gestpay-for-woocommerce","Gestpay for WooCommerce","20251211","Fabrick Support","https:\u002F\u002Fprofiles.wordpress.org\u002Feasynolo\u002F","\u003Cp>Axerve Free Plugin for Woocommerce allows you to use \u003Ca href=\"https:\u002F\u002Fwww.axerve.com\u002F\" title=\"Axerve Website\" rel=\"nofollow ugc\">Axerve\u003C\u002Fa> on your WooCommerce-powered website.\u003C\u002Fp>\n\u003Cp>There are four operational modes in this plugin, which depends on Axerve version you are using:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Axerve Starter\u003C\u002Fli>\n\u003Cli>Axerve Professional\u003C\u002Fli>\n\u003Cli>Axerve Professional On Site\u003C\u002Fli>\n\u003Cli>Axerve Professional iFrame\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdocs.axerve.com\u002Fit\u002Fplugin\u002Fwoocommerce\u002F\" title=\"Axerve for WooCommerce - Usage Documentation\" rel=\"nofollow ugc\">Click here to read the full usage documentation on Axerve\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>WooCommerce Blocks Compatibility\u003C\u002Fh4>\n\u003Cp>Starting from version 20251028, the plugin is fully compatible with WooCommerce Blocks checkout. All payment methods are now supported in both classic checkout and blocks checkout modes. There is no need to disable WooCommerce Blocks checkout.\u003C\u002Fp>\n\u003Ch4>Available Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>S2S SOAP (Except callReadTrxS2S and callVerifyCardS2S)\u003C\u002Fli>\n\u003Cli>Tokenization\u003C\u002Fli>\n\u003Cli>3DS1\u003C\u002Fli>\n\u003Cli>3DS2 – Authentication\u003C\u002Fli>\n\u003Cli>3DS2 – Recurring Transactions\u003C\u002Fli>\n\u003Cli>RBA (Risk-Based Authentication)\u003C\u002Fli>\n\u003Cli>PayPal Seller Protection\u003C\u002Fli>\n\u003Cli>WooCommerce Subscriptions support (Recurring payments and subscriptions)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Available Payment Methods\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Credit Cards\u003C\u002Fli>\n\u003Cli>BANCOMAT Pay\u003C\u002Fli>\n\u003Cli>MyBank\u003C\u002Fli>\n\u003Cli>PayPal\u003C\u002Fli>\n\u003Cli>PayPal Billing Agreement\u003C\u002Fli>\n\u003Cli>PayPal Buy Now Pay Later\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Actions and filters list\u003C\u002Fh3>\n\u003Cp>Here is a list of filters and actions used in this plugin:\u003C\u002Fp>\n\u003Ch4>Actions\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>gestpay_before_processing_order\u003C\u002Fli>\n\u003Cli>gestpay_after_order_completed\u003C\u002Fli>\n\u003Cli>gestpay_after_order_failed\u003C\u002Fli>\n\u003Cli>gestpay_after_order_pending\u003C\u002Fli>\n\u003Cli>gestpay_before_order_settle\u003C\u002Fli>\n\u003Cli>gestpay_order_settle_success\u003C\u002Fli>\n\u003Cli>gestpay_order_settle_fail\u003C\u002Fli>\n\u003Cli>gestpay_before_order_refund\u003C\u002Fli>\n\u003Cli>gestpay_order_refund_success\u003C\u002Fli>\n\u003Cli>gestpay_order_refund_fail\u003C\u002Fli>\n\u003Cli>gestpay_before_order_delete\u003C\u002Fli>\n\u003Cli>gestpay_order_delete_success\u003C\u002Fli>\n\u003Cli>gestpay_order_delete_fail\u003C\u002Fli>\n\u003Cli>gestpay_after_s2s_order_failed\u003C\u002Fli>\n\u003Cli>gestpay_on_renewal_payment_failure\u003C\u002Fli>\n\u003Cli>gestpay_my_cards_template_before_table\u003C\u002Fli>\n\u003Cli>gestpay_my_cards_template_after_table\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Filters\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>gestpay_gateway_parameters\u003C\u002Fli>\n\u003Cli>gestpay_encrypt_parameters\u003C\u002Fli>\n\u003Cli>gestpay_settings_tab\u003C\u002Fli>\n\u003Cli>gestpay_my_cards_template\u003C\u002Fli>\n\u003Cli>gestpay_cvv_fancybox\u003C\u002Fli>\n\u003Cli>gestpay_gateway_cards_images\u003C\u002Fli>\n\u003Cli>gestpay_alter_order_id -> this can be used to add, for example, a prefix to the order ID\u003C\u002Fli>\n\u003Cli>gestpay_revert_order_id -> this must be used to revert back the order ID changed with the \u003Ccode>gestpay_alter_order_id\u003C\u002Fcode> filter\u003C\u002Fli>\n\u003Cli>gestpay_s2s_validate_payment_fields\u003C\u002Fli>\n\u003Cli>gestpay_s2s_payment_fields_error_strings\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Third Party Libraries\u003C\u002Fh3>\n\u003Cp>Questo plugin utilizza le seguenti librerie di terze parti:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>SOAP Client – Parte della libreria standard PHP, utilizzata per le comunicazioni con l’API Gestpay\u003C\u002Fli>\n\u003Cli>WooCommerce – Framework e-commerce per WordPress (GPLv3)\u003C\u002Fli>\n\u003Cli>WordPress – CMS principale (GPLv2 o successiva)\u003C\u002Fli>\n\u003Cli>jQuery – Libreria JavaScript per la manipolazione del DOM e la gestione degli eventi (MIT License)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>Questo plugin si connette ai seguenti servizi esterni:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Axerve Payment Gateway (precedentemente Gestpay)\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>– Scopo: Elaborazione dei pagamenti tramite il gateway di Banca Sella\u003Cbr \u002F>\n– Dati inviati: Informazioni sull’ordine, dati del cliente necessari per il pagamento\u003Cbr \u002F>\n– Quando: Durante il processo di pagamento e per le operazioni di gestione degli ordini\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fwww.axerve.com\u002Fprivacy-policy\u003Cbr \u002F>\n– Termini di servizio: https:\u002F\u002Fwww.axerve.com\u002Fterms-conditions\u003C\u002Fp>\n\u003Col>\n\u003Cli>icanhazip.com\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>– Scopo: Identificazione dell’indirizzo IP del server per la configurazione del gateway di pagamento\u003Cbr \u002F>\n– Dati inviati: Nessun dato viene inviato, il servizio risponde solo con l’indirizzo IP pubblico\u003Cbr \u002F>\n– Quando: Solo nell’area amministrativa durante la configurazione del plugin\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fmajor.io\u002Ficanhazip-com-faq\u002F\u003Cbr \u002F>\n– Note: Questo servizio viene utilizzato solo per aiutare gli amministratori a configurare correttamente il gateway di pagamento nel backoffice di Axerve\u003C\u002Fp>\n\u003Col>\n\u003Cli>Script JavaScript di verifica\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>– Scopo: Verifica della compatibilità del browser con il gateway di pagamento\u003Cbr \u002F>\n– Dati inviati: Informazioni sul browser dell’utente per verificare la compatibilità TLS\u003Cbr \u002F>\n– Quando: Durante il processo di pagamento\u003Cbr \u002F>\n– Domini: gestpay.net, gestpay.it, ecomm.sella.it\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fwww.axerve.com\u002Fprivacy-policy\u003C\u002Fp>\n\u003Col>\n\u003Cli>MyBank\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>– Scopo: Integrazione con il sistema di pagamento MyBank\u003Cbr \u002F>\n– Dati inviati: Informazioni necessarie per il pagamento tramite MyBank\u003Cbr \u002F>\n– Quando: Solo quando l’utente sceglie MyBank come metodo di pagamento\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fwww.mybank.eu\u002Fprivacy-policy\u002F\u003Cbr \u002F>\n– Termini di servizio: https:\u002F\u002Fwww.mybank.eu\u002Fterms-and-conditions\u002F\u003C\u002Fp>\n\u003Cp>Server di test e sviluppo\u003Cbr \u002F>\nNel codice di esempio (directory \u003Ccode>sample\u002F\u003C\u002Fcode>) sono presenti riferimenti a domini fittizi (\u003Ccode>site1.it\u003C\u002Fcode> e \u003Ccode>site2.it\u003C\u002Fcode>) utilizzati solo come esempio per dimostrare la configurazione multi-sito. Questi domini sono puramente dimostrativi e non sono utilizzati nel codice di produzione.\u003C\u002Fp>\n","Axerve Free Plugin for Woocommerce extends WooCommerce providing the payment gateway Axerve.",1000,43366,76,9,"2025-12-11T15:15:00.000Z","6.9.4","4.7",[87,18,88,19,21],"axerve","gestpay","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgestpay-for-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgestpay-for-woocommerce.20251211.zip",99,3,"2024-02-27 00:00:00",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":79,"downloaded":102,"rating":12,"num_ratings":12,"last_updated":103,"tested_up_to":84,"requires_at_least":104,"requires_php":105,"tags":106,"homepage":112,"download_link":113,"security_score":114,"vuln_count":92,"unpatched_count":12,"last_vuln_date":115,"fetched_at":26},"payplus-payment-gateway","PayPlus Payment Gateway","8.1.5","PayPlus Tech Team","https:\u002F\u002Fprofiles.wordpress.org\u002Fpayplus\u002F","\u003Cp>PayPlus Payment Gateway for WooCommerce\u003Cbr \u002F>\nAccept debit and credit cards on your WooCommerce store in a secure way with the ability to design your own payment page and add high functionalities to it. SSL is not required.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Supported PHP Versions:\u003C\u002Fstrong>\u003Cbr \u002F>\nThis plugin is compatible with PHP versions from 7.4 up to 8.3.\u003C\u002Fp>\n\u003Cp>Before installation:\u003Cbr \u002F>\nYou need your account credentials. For that, you have to contact PayPlus and to join the service.\u003C\u002Fp>\n\u003Cp>Plugin Disclaimer:\u003Cbr \u002F>\nPayPlus does not accept liability for any damage, loss, cost (including legal costs), expenses, indirect losses or consequential damage of any kind which may be suffered or incurred by the user from the use of this service.\u003C\u002Fp>\n\u003Cp>It is important to know that this plugin relies on third-party services.\u003Cbr \u002F>\nHowever, the third-party so mentioned is the PayPlus core engine at their servers – the providers of this plugin.\u003C\u002Fp>\n\u003Cp>By being a payment processor, just like many of its kind, it must send some transaction details to the third-party server (itself) for token generation and transaction logging statistics and connecting to invoices.\u003C\u002Fp>\n\u003Cp>It is this transfer back and forth of data between your WooCommerce and the PayPlus servers that we would like to bring to your attention clearly and plainly.\u003C\u002Fp>\n\u003Cp>The main links to PayPlus, its terms and conditions, and privacy policy are as listed:\u003Cbr \u002F>\n– Home Page: https:\u002F\u002Fwww.payplus.co.il\u003Cbr \u002F>\n– Plugin Instruction page: https:\u002F\u002Fwww.payplus.co.il\u002Fwordpress\u003Cbr \u002F>\n– Terms and Conditions: https:\u002F\u002Fwww.payplus.co.il\u002Fprivacy\u003C\u002Fp>\n\u003Cp>The above records, the transaction details, are not treated as belonging to PayPlus and are never used for any other purposes.\u003C\u002Fp>\n\u003Cp>The external files referenced by this plugin, due to WordPress policy recommendations, are all included in the plugin directory.\u003C\u002Fp>\n\u003Ch3>8.1.5  – 15-03-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Feature   – Added VAT selection prompt for partial refunds, allowing admins to choose whether the refunded amount includes VAT or is VAT-exempt.\u003C\u002Fli>\n\u003Cli>Fix       – Resolved an issue where saved payment tokens could override the PayPlus Embedded selection, causing the checkout to revert to a previously saved card instead of using newly entered card details.\u003C\u002Fli>\n\u003Cli>Fix       – Fixed token saving failure when the optional “Name for Invoice” or “Alternative ID\u002FVAT” fields were filled during PayPlus Embedded checkout.\u003C\u002Fli>\n\u003Cli>Feature   – PRUID history tracking: all payment page request UIDs are now stored with timestamps, enabling recovery of orders where the UID changed. The “Get PayPlus Data” button shows a selection popup with a “Try All” option.\u003C\u002Fli>\n\u003Cli>Feature   – Optional order total display inside PayPlus Embedded payment form for both Classic and Blocks checkout, with automatic updates on coupon\u002Fshipping changes.\u003C\u002Fli>\n\u003Cli>Tweak     – Reduced checkout order-status polling frequency to prevent excessive server load on slower sites.\u003C\u002Fli>\n\u003Cli>Fix       – Fixed Hebrew character corruption (appearing as raw Unicode escapes) in PayPlus API payloads for certain server configurations.\u003C\u002Fli>\n\u003Cli>Tweak     – PRUID history is now used by the cron job and the Orders Validator for more reliable order status recovery.\u003C\u002Fli>\n\u003Cli>Fix       – Fixed expiry field order in PayPlus Embedded for LTR locales.\u003C\u002Fli>\n\u003Cli>Fix       – The “Include Apple Pay Script” setting now correctly loads the Apple Pay script on Blocks checkout for all iframe display modes.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.1.4  – 10-03-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fix       – Fixed an issue where redirect URLs after payment could be malformed (& converted to &), potentially causing broken thank-you page loads or missing order details.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.1.3  – 25-02-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fix       – Resolved “Redirect” and “Next page iframe” display issues on the order-pay page for specific customer environments caused by an unnecessary static flag preventing proper rendering.\u003C\u002Fli>\n\u003Cli>Feature   – Added inline loader to PayPlus Embedded “Place Order” button, providing immediate visual feedback during payment processing for improved user experience. \u003C\u002Fli>\n\u003Cli>Tweak     – Addressed WordPress Plugin Check (PCP) compliance requirements.\u003C\u002Fli>\n\u003Cli>Fix       – Improved Invoice+ error message handling on the orders page to properly display API error details.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.1.2  – 24-02-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Feature   – Full PW Gift Cards integration for Blocks Checkout across all PayPlus payment methods, including correct discount handling, order totals, and debit timing.\u003C\u002Fli>\n\u003Cli>Fix       – PW Gift Cards discount now applied correctly in Iframe (next page) and Redirect modes in Blocks Checkout, consistent with Popup and Same-Page Iframe behavior.\u003C\u002Fli>\n\u003Cli>Feature   – Added option to mark the Customer Invoice Name field as required in both Classic and Blocks Checkout.\u003C\u002Fli>\n\u003Cli>Feature   – Added option to set a custom label and placeholder for the Customer Invoice Name field in both Classic and Blocks Checkout.\u003C\u002Fli>\n\u003Cli>Tweak     – PayPlus Embedded loader: when “Hide PayPlus logo when showing loader” is enabled, “Processing Payment…” (or its Hebrew translation) is now always centered in the loader and displayed clearly.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.1.1  – 23-02-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fix       – TV power-down effect in Blocks Checkout is now driven by the plugin setting rather than CSS positioning, ensuring it triggers reliably regardless of theme styles.\u003C\u002Fli>\n\u003Cli>Tweak     – Blocks Checkout popup and same-page iframe modes now open instantly — the PayPlus payment page link is fetched asynchronously after checkout submission instead of blocking the Store API response.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.1.0  – 22-02-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fix       – Improved redirect handling across all browsers with a unified solution, eliminating the need for browser-specific settings and checkboxes.\u003C\u002Fli>\n\u003Cli>Tweak     – Added translated “Payment received – redirecting…” screen that appears briefly when using fallback redirect method.\u003C\u002Fli>\n\u003Cli>Fix       – Resolved issue where changing delivery method in classic checkout would incorrectly switch the selected payment method in the payment list.\u003C\u002Fli>\n\u003Cli>Tweak     – Callback handler now processes orders in “failed” status (in addition to “pending”) since callbacks occur after order creation and payment.\u003C\u002Fli>\n\u003Cli>Added     – Optional TV power-down effect for popup iframe mode. When enabled via plugin settings, displays a classic CRT television shutdown animation before redirecting to thank you page.\u003C\u002Fli>\n\u003Cli>Fix       – Order payment method now reflects the actual payment method used (e.g., credit card, Google Pay, Bit) rather than the initially selected gateway, ensuring accuracy in WooCommerce order details and invoices.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.0.9  – 18-02-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fix       – Fixed default setting for Firefox-compatible redirect mode – polling fallback is now enabled by default as intended.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.0.7  – 18-02-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Tweak     – Added automatic polling fallback for iframe payment redirects in both blocks and classic checkouts. This ensures reliable redirects for Firefox users and other scenarios where the iframe cannot communicate via postMessage. The system polls the server for order completion status and redirects to the thank-you page automatically.\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Fix       – Fixed EMV POS device functionality issue when only one admin user was configured.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Tweak – Improved the \u003Ccode>payPlusRemote()\u003C\u002Fcode> function to better handle \u003Ccode>$payload\u003C\u002Fcode> issues.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>Tweak – Removed outdated logs and deprecated API calls.\u003C\u002Fli>\n\u003Cli>Tweak – Optimized payment page logic to reuse existing pages when possible, reducing unnecessary API requests.\u003C\u002Fli>\n\u003Cli>Tweak – Corrected inaccurate status reporting in “Orders Reports\u002FValidator”.\u003C\u002Fli>\n\u003Cli>Tweak – Streamlined \u003Ccode>callback_response\u003C\u002Fcode> by removing redundant functions and passing data directly instead of using SQL.\u003C\u002Fli>\n\u003Cli>Added – When “Update status in IPN” is enabled, the callback function will skip status updates and related checks.\u003C\u002Fli>\n\u003Cli>Added – Disallow voucher payment for shipping – Enforce a minimum amount for non-voucher payments: voucher payments can no longer be used to pay for shipping, preventing customers from covering delivery costs with vouchers.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fpayplus-payment-gateway\u002Ftrunk\u002FCHANGELOG.md\" rel=\"nofollow ugc\">See changelog for all versions\u003C\u002Fa>.\u003C\u002Fp>\n","Accept credit\u002Fdebit card payments or other methods such as bit, Apple Pay, Google Pay in one page. Create digitally signed invoices & much more!",79632,"2026-03-15T06:09:00.000Z","6.2","7.4",[107,108,109,110,111],"charges-and-refunds","credit-cards","subscriptions","tokenization","woocommerce-payment-gateway","https:\u002F\u002Fwww.payplus.co.il\u002Fwordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpayplus-payment-gateway.8.1.5.zip",93,"2024-07-09 00:00:00",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":124,"downloaded":125,"rating":126,"num_ratings":127,"last_updated":128,"tested_up_to":14,"requires_at_least":129,"requires_php":130,"tags":131,"homepage":134,"download_link":135,"security_score":24,"vuln_count":12,"unpatched_count":12,"last_vuln_date":25,"fetched_at":26},"wc-moneris-payment-gateway","WC Moneris Payment Gateway","3.6","akshayaswaroop","https:\u002F\u002Fprofiles.wordpress.org\u002Fakshayaswaroop\u002F","\u003Cp>Moneris is Canada’s leading processor of Debit and credit card payments. This WooCommerce extension \u003Cstrong>automatically\u003C\u002Fstrong> adds moneris payment gateway to your woocommerce website and allows you to keep the customer on your site for the checkout process.\u003C\u002Fp>\n\u003Ch4>Key Features:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>API based credit card payment method which allows a user to enter a credit card on the WooCommerce checkout page and capture payment to the Moneris account without leaving the WooCommerce website.\u003C\u002Fli>\n\u003Cli>Switch between \u003Cstrong>Sandbox\u003C\u002Fstrong> and \u003Cstrong>Live\u003C\u002Fstrong> environments.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you enjoyed this plugin then please put a review, that will encourage me to bring some more …\u003C\u002Fp>\n","A simple plugin that easily add moneris payment gateway to your WooCommerce website.",900,22531,84,5,"2025-08-13T17:29:00.000Z","4.9","",[18,132,19,117,133],"moneris","woocommerce-moneris-payment-gateway","https:\u002F\u002Fwww.wpheka.com\u002Fproduct\u002Fwc-moneris-payment-gateway","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-moneris-payment-gateway.3.6.zip",{"attackSurface":137,"codeSignals":280,"taintFlows":317,"riskAssessment":395,"analyzedAt":407},{"hooks":138,"ajaxHandlers":268,"restRoutes":276,"shortcodes":277,"cronEvents":278,"entryPointCount":279,"unprotectedCount":279},[139,145,150,154,157,160,163,166,169,172,175,178,181,184,187,190,193,196,199,202,205,208,211,214,218,222,226,230,234,238,242,245,249,253,257,261,265],{"type":140,"name":141,"callback":142,"file":143,"line":144},"action","before_woocommerce_init","closure","woo-parcelow.php",41,{"type":146,"name":147,"callback":148,"file":143,"line":149},"filter","init","wcppa_register_post_statuses",59,{"type":146,"name":151,"callback":152,"file":143,"line":153},"wc_order_statuses","wcppa_add_order_statuses",67,{"type":146,"name":147,"callback":155,"file":143,"line":156},"wcppa_register_post_statuses_1",82,{"type":146,"name":151,"callback":158,"file":143,"line":159},"wcppa_add_order_statuses_1",89,{"type":146,"name":147,"callback":161,"file":143,"line":162},"wcppa_register_post_statuses_2",104,{"type":146,"name":151,"callback":164,"file":143,"line":165},"wcppa_add_order_statuses_2",111,{"type":146,"name":147,"callback":167,"file":143,"line":168},"wcppa_register_post_statuses_5",126,{"type":146,"name":151,"callback":170,"file":143,"line":171},"wcppa_add_order_statuses_5",133,{"type":146,"name":147,"callback":173,"file":143,"line":174},"wcppa_register_post_statuses_6",148,{"type":146,"name":151,"callback":176,"file":143,"line":177},"wcppa_add_order_statuses_6",155,{"type":146,"name":147,"callback":179,"file":143,"line":180},"wcppa_register_post_statuses_7",170,{"type":146,"name":151,"callback":182,"file":143,"line":183},"wcppa_add_order_statuses_7",177,{"type":146,"name":147,"callback":185,"file":143,"line":186},"wcppa_register_post_statuses_8",192,{"type":146,"name":151,"callback":188,"file":143,"line":189},"wcppa_add_order_statuses_8",199,{"type":146,"name":147,"callback":191,"file":143,"line":192},"wcppa_register_post_statuses_9",214,{"type":146,"name":151,"callback":194,"file":143,"line":195},"wcppa_add_order_statuses_9",221,{"type":146,"name":147,"callback":197,"file":143,"line":198},"wcppa_register_post_statuses_10",237,{"type":146,"name":151,"callback":200,"file":143,"line":201},"wcppa_add_order_statuses_10",244,{"type":146,"name":147,"callback":203,"file":143,"line":204},"wcppa_register_post_statuses_12",262,{"type":146,"name":151,"callback":206,"file":143,"line":207},"wcppa_add_order_statuses_12",269,{"type":140,"name":147,"callback":209,"file":143,"line":210},"wcppa_register_paid_by_customer",293,{"type":146,"name":151,"callback":212,"file":143,"line":213},"wcppa_paid_by_customer_status",301,{"type":146,"name":215,"callback":216,"file":143,"line":217},"woocommerce_checkout_fields","wcppa_custom_override_checkout_fields",307,{"type":146,"name":219,"callback":220,"file":143,"line":221},"woocommerce_billing_fields","wcppa_custom_woocommerce_billing_fields",324,{"type":146,"name":223,"callback":224,"file":143,"line":225},"woocommerce_payment_gateways","wcppa_parcelow_add_gateway_class",348,{"type":140,"name":227,"callback":228,"file":143,"line":229},"plugins_loaded","wcppa_woocommerce_gateway_parcelow_init",367,{"type":140,"name":231,"callback":232,"file":143,"line":233},"wp_enqueue_scripts","wcppa_carrega_scripts",388,{"type":140,"name":235,"callback":236,"file":143,"line":237},"woocommerce_api_parcelow_webhook","webhook",1238,{"type":140,"name":239,"callback":240,"priority":10,"file":143,"line":241},"woocommerce_webhook_process_delivery","wcppa_my_custom_wc_webhook_process_delivery",1299,{"type":140,"name":147,"callback":243,"file":143,"line":244},"wcppa_setcookie_control",1939,{"type":140,"name":246,"callback":247,"file":143,"line":248},"wp_head","wcppa_getcookie_control",2006,{"type":140,"name":250,"callback":251,"file":143,"line":252},"woocommerce_product_options_general_product_data","cfwc_create_custom_field",2103,{"type":140,"name":254,"callback":255,"file":143,"line":256},"woocommerce_process_product_meta","cfwc_save_custom_field",2120,{"type":146,"name":258,"callback":259,"priority":10,"file":143,"line":260},"woocommerce_get_price_html","add_approximately_price",2123,{"type":146,"name":262,"callback":263,"file":143,"line":264},"woocommerce_proceed_to_checkout","filter_woocommerce_product_cross_sells_products_heading",2811,{"type":146,"name":266,"callback":263,"file":143,"line":267},"woocommerce_checkout_terms_and_conditions",2812,[269,273],{"action":270,"nopriv":271,"callback":270,"hasNonce":271,"hasCapCheck":271,"file":143,"line":272},"wcppa_carrega_ajax",false,391,{"action":270,"nopriv":274,"callback":270,"hasNonce":271,"hasCapCheck":271,"file":143,"line":275},true,392,[],[],[],2,{"dangerousFunctions":281,"sqlUsage":282,"outputEscaping":284,"fileOperations":29,"externalRequests":315,"nonceChecks":12,"capabilityChecks":12,"bundledLibraries":316},[],{"prepared":12,"raw":12,"locations":283},[],{"escaped":285,"rawEcho":286,"locations":287},109,13,[288,291,293,295,297,299,301,303,305,307,309,311,313],{"file":143,"line":289,"context":290},501,"raw output",{"file":143,"line":292,"context":290},545,{"file":143,"line":294,"context":290},577,{"file":143,"line":296,"context":290},640,{"file":143,"line":298,"context":290},685,{"file":143,"line":300,"context":290},720,{"file":143,"line":302,"context":290},766,{"file":143,"line":304,"context":290},838,{"file":143,"line":306,"context":290},1199,{"file":143,"line":308,"context":290},2630,{"file":143,"line":310,"context":290},2710,{"file":143,"line":312,"context":290},2789,{"file":143,"line":314,"context":290},2808,22,[],[318,355],{"entryPoint":319,"graph":320,"unsanitizedCount":82,"severity":354},"wcppa_carrega_ajax (woo-parcelow.php:394)",{"nodes":321,"edges":350},[322,327,333,337,342,346],{"id":323,"type":324,"label":325,"file":143,"line":326},"n0","source","$_POST (x5)",399,{"id":328,"type":329,"label":330,"file":143,"line":331,"wp_function":332},"n1","sink","wp_remote_post() [SSRF]",468,"wp_remote_post",{"id":334,"type":324,"label":335,"file":143,"line":336},"n2","$_POST (x3)",645,{"id":338,"type":329,"label":339,"file":143,"line":340,"wp_function":341},"n3","wp_remote_get() [SSRF]",664,"wp_remote_get",{"id":343,"type":324,"label":344,"file":143,"line":345},"n4","$_POST",691,{"id":347,"type":329,"label":348,"file":143,"line":300,"wp_function":349},"n5","echo() [XSS]","echo",[351,352,353],{"from":323,"to":328,"sanitized":271},{"from":334,"to":338,"sanitized":271},{"from":343,"to":347,"sanitized":271},"medium",{"entryPoint":356,"graph":357,"unsanitizedCount":394,"severity":354},"\u003Cwoo-parcelow> (woo-parcelow.php:0)",{"nodes":358,"edges":386},[359,361,362,364,365,366,367,370,374,377,380,383],{"id":323,"type":324,"label":360,"file":143,"line":326},"$_POST (x6)",{"id":328,"type":329,"label":330,"file":143,"line":331,"wp_function":332},{"id":334,"type":324,"label":363,"file":143,"line":336},"$_POST (x11)",{"id":338,"type":329,"label":339,"file":143,"line":340,"wp_function":341},{"id":343,"type":324,"label":344,"file":143,"line":345},{"id":347,"type":329,"label":348,"file":143,"line":300,"wp_function":349},{"id":368,"type":324,"label":344,"file":143,"line":369},"n6",1705,{"id":371,"type":372,"label":373,"file":143,"line":369},"n7","transform","→ wcppa_checkExistOrderNaParcelow()",{"id":375,"type":329,"label":339,"file":143,"line":376,"wp_function":341},"n8",1855,{"id":378,"type":324,"label":344,"file":143,"line":379},"n9",1758,{"id":381,"type":372,"label":382,"file":143,"line":379},"n10","→ wcppa_getInfoOrder()",{"id":384,"type":329,"label":339,"file":143,"line":385,"wp_function":341},"n11",1799,[387,388,389,390,391,392,393],{"from":323,"to":328,"sanitized":271},{"from":334,"to":338,"sanitized":271},{"from":343,"to":347,"sanitized":271},{"from":368,"to":371,"sanitized":271},{"from":371,"to":375,"sanitized":271},{"from":378,"to":381,"sanitized":271},{"from":381,"to":384,"sanitized":271},20,{"summary":396,"deductions":397},"The \"parcelow\" v3.3.8 plugin exhibits a mixed security posture.  While it avoids dangerous functions, uses prepared statements for all SQL queries, and boasts a high percentage of properly escaped output, several significant security concerns are present.  The plugin exposes two AJAX handlers with no authentication or capability checks, representing direct entry points for potential attackers.  Furthermore, the taint analysis indicates two flows with unsanitized paths, although these are not classified as critical or high severity.  The absence of any recorded vulnerabilities in its history is a positive sign, suggesting a potentially well-maintained codebase or a lack of targeted exploitation. However, this history alone does not mitigate the risks identified in the static analysis.",[398,400,403,405],{"reason":399,"points":10},"AJAX handlers without auth checks",{"reason":401,"points":402},"Taint flows with unsanitized paths",8,{"reason":404,"points":127},"No nonce checks on AJAX handlers",{"reason":406,"points":127},"No capability checks on AJAX handlers","2026-03-17T00:47:21.473Z",{"wat":409,"direct":418},{"assetPaths":410,"generatorPatterns":413,"scriptPaths":414,"versionParams":415},[411,412],"\u002Fwp-content\u002Fplugins\u002Fparcelow\u002Fassets\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fparcelow\u002Fassets\u002Fjs\u002Fscript.js",[],[412],[416,417],"parcelow\u002Fassets\u002Fcss\u002Fstyle.css?ver=","parcelow\u002Fassets\u002Fjs\u002Fscript.js?ver=",{"cssClasses":419,"htmlComments":420,"htmlAttributes":423,"restEndpoints":424,"jsGlobals":425,"shortcodeOutput":427},[],[421,422],"\u003C!-- Parcelow Payment Gateway -->","\u003C!-- END Parcelow Payment Gateway -->",[],[],[426],"parcelow_params",[]]