[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fZu_WVZ__cwlGU1tct48Ec9F_5ngvYuONhPFQ4Zvc2xw":3},{"slug":4,"name":5,"version":6,"author":5,"author_profile":7,"description":8,"short_description":9,"active_installs":10,"downloaded":11,"rating":12,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":141,"fingerprints":357},"pay-advantage","Pay Advantage","3.3.1","https:\u002F\u002Fprofiles.wordpress.org\u002Fpayadvantage\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.payadvantage.com.au\" rel=\"nofollow ugc\">Pay Advantage\u003C\u002Fa> is Australia’s #1 solution for accepting Visa, Mastercard, American Express, BPAY and Direct Debit.\u003C\u002Fp>\n\u003Cp>This plugin allows you to add widgets to your website so you can:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Instantly accept all \u003Ca href=\"https:\u002F\u002Fwww.payadvantage.com.au\u002Faccept-credit-card-payments\u002F\" rel=\"nofollow ugc\">major credit cards\u003C\u002Fa> including Visa, Mastercard and American Express from your site\u003C\u002Fli>\n\u003Cli>Automatically on-charge credit card processing fee’s\u003C\u002Fli>\n\u003Cli>Reduce card acceptance fraud with the latest \u003Ca href=\"https:\u002F\u002Fhelp.payadvantage.com.au\u002Fhc\u002Fen-us\u002Farticles\u002F4411360257167\" rel=\"nofollow ugc\">3D Secure v2\u002FPayer Authentication\u003C\u002Fa> system which verifies the cardholder authenticity\u003C\u002Fli>\n\u003Cli>Generate \u003Ca href=\"https:\u002F\u002Fwww.payadvantage.com.au\u002Fbpay-biller\u002F\" rel=\"nofollow ugc\">BPAY CRNs\u003C\u002Fa> allowing you to accept BPAY payments\u003C\u002Fli>\n\u003Cli>Integrates with \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\" rel=\"nofollow ugc\">WooCommerce\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Awards\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>CIO Top 10 APAC Payment Solution Companies (2019)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Easy online application with fast account approvals and next business day settlement of most payment types\u003C\u002Fli>\n\u003Cli>Australia based telephone and email support\u003C\u002Fli>\n\u003Cli>Instant online credit card payments through Visa, Mastercard and American Express\u003C\u002Fli>\n\u003Cli>Generate BPAY compatible CRN’s allowing you to accept payments through BPAY\u003C\u002Fli>\n\u003Cli>WooCommerce payments\u003C\u002Fli>\n\u003C\u002Fol>\n","Instantly accept Visa, Mastercard and American Express from your site with fast settlement to any Australian bank account.",40,3892,60,2,"2023-11-22T23:21:00.000Z","6.4.8","5.2","7.0",[19,20,21,22],"credit-cards","e-commerce","online-payments","payment-gateway","https:\u002F\u002Fwww.payadvantage.com.au\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpay-advantage.3.3.1.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":5,"profile_url":7,"plugin_count":32,"total_installs":10,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"payadvantage",1,30,84,"2026-04-04T15:13:32.485Z",[37,58,79,98,118],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":12,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":51,"tags":52,"homepage":51,"download_link":56,"security_score":57,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"cartasi-x-pay","Nexi XPay","8.3.1","Nexi Payments","https:\u002F\u002Fprofiles.wordpress.org\u002Fcartasi\u002F","\u003Cp>This module allows you to connect your e-commerce website to the XPay payment gateway.\u003Cbr \u002F>\nXPay is Nexi’s service that enables you to accept online and mobile payments easily and quickly.\u003C\u002Fp>\n\u003Cp>XPay is the payment gateway provided by Nexi, a leading group in Italy with the goal of shaping the future of digital payments.\u003C\u002Fp>\n\u003Cp>Nexi has a strong market position, managing 44 million payment cards and processing transactions totaling 186 billion euros. It has 860,000 affiliated points of sale in Italy, including over 18,000 e-commerce platforms that use the XPay payment gateway.\u003C\u002Fp>\n\u003Cp>XPay allows you to accept online payments and is compatible with all major payment circuits. It can handle all sales channels, including e-commerce and mobile.\u003C\u002Fp>\n\u003Cp>The XPay extension for WordPress\u002FWooCommerce allows you to integrate the XPay payment gateway into your website without additional implementations.\u003C\u002Fp>\n\u003Cp>The extension is regularly updated to incorporate the advancements and improvements of XPay.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>To use the extension, you need an XPay account, which you can easily obtain online at https:\u002F\u002Fecommerce.nexi.it\u002F.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>XPay Module Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Simple Payment\u003C\u002Fstrong>: Redirects the customer to Nexi’s secure payment gateway.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>XPay Build\u003C\u002Fstrong>: Entry form for card data on your site without redirections on external cash pages.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>One-Click Payment\u003C\u002Fstrong>: Allows the end customer to store their credit card data and use it for future purchases with a single click.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Recurring Payment\u003C\u002Fstrong>: Enables the merchant to tokenize the customer’s card data, allowing for recurring billing and subscriptions. To enable recurring payments, you need to install the WooCommerce Subscriptions extension.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Pay-By-Link\u003C\u002Fstrong>: Enables sending a payment link to the customer via email or social media.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Transaction Management\u003C\u002Fstrong>: Supports international payment circuits such as Visa, Mastercard, Visa Electron, V-Pay, Maestro, American Express.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Acceptance of Alternative Payment Systems\u003C\u002Fstrong>: (PayPal, Amazon Pay, Apple Pay, Google Pay, Bancomat Pay, MyBank, iDeal, Bancontact, GiroPay, etc.)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy Checkout\u003C\u002Fstrong>: Provides a simple and intuitive payment interface (Nexi checkout page with merchant logo).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Testing Area\u003C\u002Fstrong>: Allows testing the module’s functionality using dummy parameters and cards, without conducting real transactions.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multilingual Support\u003C\u002Fstrong>: Recognizes the language of the merchant’s portal and automatically sets it in the XPay checkout page.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Accounting Management\u003C\u002Fstrong>: Allows configuring the collection mode (total or partial, immediate or deferred) directly from the module.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Back-Office Operations\u003C\u002Fstrong>: Enables refund and cancellation operations directly from the CMS order management, without accessing the XPay back office.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>3D Secure 2\u003C\u002Fstrong>: Implemented by major international circuits (Visa, MasterCard, American Express), introduces new authentication methods to enhance and expedite the cardholder’s   purchasing experience.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Depending on your agreement and plugin configuration, the availability of XPay features may vary. For more information, please consult the technical specifications in the subscribed service’s developer portal. You can find the link to the technical specifications in the welcome email received upon service activation.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>For more information, please visit https:\u002F\u002Fecommerce.nexi.it.\u003C\u002Fp>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Go to the WooCommerce settings and click on “Payments.”\u003C\u002Fli>\n\u003Cli>Click on Nexi XPay to proceed with the configuration.\u003C\u002Fli>\n\u003Cli>Enable the payment method.\u003C\u002Fli>\n\u003Cli>Choose between the options Alias – MAC Key or API Key based on the subscribed service.\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable the test mode to test the module using the test credentials provided by Nexi.\u003C\u002Fli>\n\u003Cli>Click on Save.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Adding\u002FRemoving Alternative Payment Methods\u003C\u002Fstrong>\u003Cbr \u002F>\nTo add or remove alternative payment methods, you need to access the XPay back office. After making any changes, save the XPay module configuration to update the payment methods.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Bancomat Pay\u003C\u002Fstrong>\u003Cbr \u002F>\nThe plugin updates the order status through a notification sent by Nexi’s servers. If the module doesn’t receive the notification correctly, it won’t be able to update the status.\u003Cbr \u002F>\nBy default, in case of notification issues (unreachable site, errors received from the merchant’s site), the transaction is canceled, even if the payment is successfully completed. This behavior ensures that the status of Nexi transactions aligns with the order status in the CMS.\u003Cbr \u002F>\nThe option to cancel the transaction in case of failed notification is not available with the Bancomat Pay payment method. In case of notification anomalies, there might be discrepancies between the order status returned by the plugin and the actual transaction status on the Nexi side. Therefore, the following scenario may occur: the Bancomat Pay payment is successfully made with a positive outcome, but due to a notification problem, the plugin is unable to update the order status to “Processing.”\u003Cbr \u002F>\nThis payment method doesn’t support transaction refunds. In case of a refund, the merchant will need to proceed with a bank transfer or another method.\u003C\u002Fp>\n","XPay is the payment gateway provided by Nexi, a leading group in Italy with the goal of shaping the future of digital payments.",6000,110720,7,"2026-03-05T09:00:00.000Z","6.9.4","4.6","",[20,53,54,22,55],"nexi","nexi-payments","xpay","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcartasi-x-pay.8.3.1.zip",100,{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":50,"requires_php":51,"tags":72,"homepage":76,"download_link":77,"security_score":78,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"woo-instamojo","Instamojo for WooCommerce","2.0.1","Instamojo","https:\u002F\u002Fprofiles.wordpress.org\u002Finstamojo\u002F","\u003Cp>India’s emerging C2C payments & e-commerce platform.\u003C\u002Fp>\n\u003Cp>We make digital commerce universally accessible to create newer opportunities & sustainable livelihoods.\u003C\u002Fp>\n\u003Cp>We believe every business idea deserves to be on the Internet to grow. But very few can. We make it possible with technology, data, design and little bit of Mojo (​noun | mo·jo | meaning magic​).\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For any issue send us an email to support@instamojo.com and share the log file. Its location is \u003Ccode>wp-content\u002Fuploads\u002Fwc-logs\u002F\u003C\u002Fcode>.\u003Cbr \u002F>\nInside \u003Ccode>wc-logs\u003C\u002Fcode> there’s going to be file whose name starts with \u003Ccode>instamojo\u003C\u002Fcode>.\u003C\u002Fp>\n","Sell & collect payments instantly for almost anything -- directly from your WordPress website.",5000,186463,62,13,"2024-05-06T08:03:00.000Z","6.5.8",[73,20,74,22,75],"commerce","easy-payments","payments","http:\u002F\u002Fwww.instamojo.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-instamojo.2.0.1.zip",92,{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":89,"num_ratings":69,"last_updated":90,"tested_up_to":91,"requires_at_least":92,"requires_php":51,"tags":93,"homepage":51,"download_link":97,"security_score":57,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"e-transactions-wc","Up2pay e-Transactions WooCommerce Payment Gateway","3.0.9","Verifone e-commerce","https:\u002F\u002Fprofiles.wordpress.org\u002Fpaybox\u002F","\u003Cp>This module adds a Up2pay e-Transactions Payment Gateway to your Installation of WooCommerce.\u003C\u002Fp>\n\u003Cp>Up2pay e-Transactions is a Payment Services Provider in Europe, part of the Crédit Agricole Bank.\u003C\u002Fp>\n\u003Cp>plugin actions in wordpress:\u003C\u002Fp>\n\u003Cp>this plugin offers an admin panel from the order section to the settings of Woocommerce.\u003Cbr \u002F>\nit adds payment information to the orders details and changes the status of orders (upon reception of an IPN, see below.) and adds payment means on the checkout page.\u003C\u002Fp>\n\u003Cp>This plugin takes information from the order and creates a form containing the details of the payment to be made, including parameters configured in the admin panel of the module that identify the mechant.\u003C\u002Fp>\n\u003Cp>The plugin checks for availability of the Up2pay e-Transactions platform, through a call to our servers.\u003Cbr \u002F>\nIt then submits with javascript the form to the first available server.\u003C\u002Fp>\n\u003Cp>the customer is then presented with a payment page, hosted on the Up2pay e-Transactions Platform (urls above).\u003C\u002Fp>\n\u003Cp>The Up2pay e-Transactions Platform sends an Instant Payment Notification (IPN) to the server when the customer actually made the payment, indicating to the merchant the status of the payment.\u003C\u002Fp>\n\u003Cp>the plugin generates a url that can catch the IPN call from Up2pay e-Transactions’s server, filtering incoming calls to the Up2pay e-Transactions IP address.\u003C\u002Fp>\n\u003Cp>if payment is successfull, then the plugin validates the order though woocommerce.\u003C\u002Fp>\n","This plugin is a Up2pay e-Transactions payment gateway for WooCommerce 4.x",4000,76307,46,"2025-05-19T13:31:00.000Z","6.8.5","5.0.0",[20,94,95,22,96],"orders","payment","woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fe-transactions-wc.3.0.9.zip",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":57,"num_ratings":13,"last_updated":108,"tested_up_to":49,"requires_at_least":109,"requires_php":110,"tags":111,"homepage":114,"download_link":115,"security_score":116,"vuln_count":32,"unpatched_count":26,"last_vuln_date":117,"fetched_at":28},"multisafepay","MultiSafepay plugin for WooCommerce","6.12.0","MultiSafepay","https:\u002F\u002Fprofiles.wordpress.org\u002Fmultisafepayplugin\u002F","\u003Cp>\u003Cstrong>About MultiSafepay\u003C\u002Fstrong>\u003Cbr \u002F>\nMultiSafepay is a collecting payment service provider which means we take care of the agreements, technical details and\u003Cbr \u002F>\npayment collection required for each payment method. You can start selling online today and manage all your transactions\u003Cbr \u002F>\nfrom one place.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Supported Payment Methods\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Payment methods:\u003Cbr \u002F>\nBy default, any payment method you activate in your MultiSafepay account will be available to be activated in the plugin, but you can also choose to show only specific payment methods in your checkout.\u003Cbr \u002F>\nThe plugin supports all the payment methods available in your MultiSafepay account, including but not limited to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>AfterPay\u003C\u002Fli>\n\u003Cli>Alipay\u003C\u002Fli>\n\u003Cli>American Express\u003C\u002Fli>\n\u003Cli>Apple Pay\u003C\u002Fli>\n\u003Cli>Bank transfer\u003C\u002Fli>\n\u003Cli>Bancontact\u003C\u002Fli>\n\u003Cli>Belfius\u003C\u002Fli>\n\u003Cli>Dotpay\u003C\u002Fli>\n\u003Cli>E-Invoicing\u003C\u002Fli>\n\u003Cli>EPS\u003C\u002Fli>\n\u003Cli>Giropay\u003C\u002Fli>\n\u003Cli>iDEAL\u003C\u002Fli>\n\u003Cli>iDEAL+in3\u003C\u002Fli>\n\u003Cli>in3\u003C\u002Fli>\n\u003Cli>KBC\u002FCBC\u003C\u002Fli>\n\u003Cli>Klarna\u003C\u002Fli>\n\u003Cli>Maestro\u003C\u002Fli>\n\u003Cli>Mastercard\u003C\u002Fli>\n\u003Cli>Pay After Delivery\u003C\u002Fli>\n\u003Cli>PayPal\u003C\u002Fli>\n\u003Cli>Paysafecard\u003C\u002Fli>\n\u003Cli>Request to Pay\u003C\u002Fli>\n\u003Cli>SEPA Direct Debit\u003C\u002Fli>\n\u003Cli>SOFORT Banking\u003C\u002Fli>\n\u003Cli>Trustly\u003C\u002Fli>\n\u003Cli>Visa\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Giftcards:\u003Cbr \u002F>\n* Baby Cadeaubon\u003Cbr \u002F>\n* Beauty & Wellness\u003Cbr \u002F>\n* Boekenbon\u003Cbr \u002F>\n* Fashioncheque\u003Cbr \u002F>\n* Fashion Giftcard\u003Cbr \u002F>\n* Gezondheidsbon\u003Cbr \u002F>\n* GivaCard\u003Cbr \u002F>\n* Good4fun Giftcard\u003Cbr \u002F>\n* Goodcard\u003Cbr \u002F>\n* Fietsbon\u003Cbr \u002F>\n* Nationale Tuinbon\u003Cbr \u002F>\n* Parfum Cadeaukaart\u003Cbr \u002F>\n* Podium\u003Cbr \u002F>\n* Sport & Fit\u003Cbr \u002F>\n* VVV Giftcard\u003Cbr \u002F>\n* Webshop gift card\u003Cbr \u002F>\n* Wellness gift card\u003Cbr \u002F>\n* Wijncadeau\u003Cbr \u002F>\n* Winkelcheque\u003Cbr \u002F>\n* YourGift\u003C\u002Fp>\n","MultiSafepay offers the most comprehensive payment solutions. Easily integrate the payment solutions of MultiSafepay into your webshop.",2000,95866,"2026-03-11T11:41:00.000Z","6.0","7.3",[112,19,113,99,22],"bnpl","ideal","https:\u002F\u002Fdocs.multisafepay.com\u002Fdocs\u002Fwoocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultisafepay.6.12.0.zip",99,"2022-07-18 00:00:00",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":126,"downloaded":127,"rating":26,"num_ratings":26,"last_updated":128,"tested_up_to":49,"requires_at_least":129,"requires_php":130,"tags":131,"homepage":136,"download_link":137,"security_score":138,"vuln_count":139,"unpatched_count":26,"last_vuln_date":140,"fetched_at":28},"payplus-payment-gateway","PayPlus Payment Gateway","8.1.5","PayPlus Tech Team","https:\u002F\u002Fprofiles.wordpress.org\u002Fpayplus\u002F","\u003Cp>PayPlus Payment Gateway for WooCommerce\u003Cbr \u002F>\nAccept debit and credit cards on your WooCommerce store in a secure way with the ability to design your own payment page and add high functionalities to it. SSL is not required.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Supported PHP Versions:\u003C\u002Fstrong>\u003Cbr \u002F>\nThis plugin is compatible with PHP versions from 7.4 up to 8.3.\u003C\u002Fp>\n\u003Cp>Before installation:\u003Cbr \u002F>\nYou need your account credentials. For that, you have to contact PayPlus and to join the service.\u003C\u002Fp>\n\u003Cp>Plugin Disclaimer:\u003Cbr \u002F>\nPayPlus does not accept liability for any damage, loss, cost (including legal costs), expenses, indirect losses or consequential damage of any kind which may be suffered or incurred by the user from the use of this service.\u003C\u002Fp>\n\u003Cp>It is important to know that this plugin relies on third-party services.\u003Cbr \u002F>\nHowever, the third-party so mentioned is the PayPlus core engine at their servers – the providers of this plugin.\u003C\u002Fp>\n\u003Cp>By being a payment processor, just like many of its kind, it must send some transaction details to the third-party server (itself) for token generation and transaction logging statistics and connecting to invoices.\u003C\u002Fp>\n\u003Cp>It is this transfer back and forth of data between your WooCommerce and the PayPlus servers that we would like to bring to your attention clearly and plainly.\u003C\u002Fp>\n\u003Cp>The main links to PayPlus, its terms and conditions, and privacy policy are as listed:\u003Cbr \u002F>\n– Home Page: https:\u002F\u002Fwww.payplus.co.il\u003Cbr \u002F>\n– Plugin Instruction page: https:\u002F\u002Fwww.payplus.co.il\u002Fwordpress\u003Cbr \u002F>\n– Terms and Conditions: https:\u002F\u002Fwww.payplus.co.il\u002Fprivacy\u003C\u002Fp>\n\u003Cp>The above records, the transaction details, are not treated as belonging to PayPlus and are never used for any other purposes.\u003C\u002Fp>\n\u003Cp>The external files referenced by this plugin, due to WordPress policy recommendations, are all included in the plugin directory.\u003C\u002Fp>\n\u003Ch3>8.1.5  – 15-03-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Feature   – Added VAT selection prompt for partial refunds, allowing admins to choose whether the refunded amount includes VAT or is VAT-exempt.\u003C\u002Fli>\n\u003Cli>Fix       – Resolved an issue where saved payment tokens could override the PayPlus Embedded selection, causing the checkout to revert to a previously saved card instead of using newly entered card details.\u003C\u002Fli>\n\u003Cli>Fix       – Fixed token saving failure when the optional “Name for Invoice” or “Alternative ID\u002FVAT” fields were filled during PayPlus Embedded checkout.\u003C\u002Fli>\n\u003Cli>Feature   – PRUID history tracking: all payment page request UIDs are now stored with timestamps, enabling recovery of orders where the UID changed. The “Get PayPlus Data” button shows a selection popup with a “Try All” option.\u003C\u002Fli>\n\u003Cli>Feature   – Optional order total display inside PayPlus Embedded payment form for both Classic and Blocks checkout, with automatic updates on coupon\u002Fshipping changes.\u003C\u002Fli>\n\u003Cli>Tweak     – Reduced checkout order-status polling frequency to prevent excessive server load on slower sites.\u003C\u002Fli>\n\u003Cli>Fix       – Fixed Hebrew character corruption (appearing as raw Unicode escapes) in PayPlus API payloads for certain server configurations.\u003C\u002Fli>\n\u003Cli>Tweak     – PRUID history is now used by the cron job and the Orders Validator for more reliable order status recovery.\u003C\u002Fli>\n\u003Cli>Fix       – Fixed expiry field order in PayPlus Embedded for LTR locales.\u003C\u002Fli>\n\u003Cli>Fix       – The “Include Apple Pay Script” setting now correctly loads the Apple Pay script on Blocks checkout for all iframe display modes.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.1.4  – 10-03-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fix       – Fixed an issue where redirect URLs after payment could be malformed (& converted to &), potentially causing broken thank-you page loads or missing order details.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.1.3  – 25-02-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fix       – Resolved “Redirect” and “Next page iframe” display issues on the order-pay page for specific customer environments caused by an unnecessary static flag preventing proper rendering.\u003C\u002Fli>\n\u003Cli>Feature   – Added inline loader to PayPlus Embedded “Place Order” button, providing immediate visual feedback during payment processing for improved user experience. \u003C\u002Fli>\n\u003Cli>Tweak     – Addressed WordPress Plugin Check (PCP) compliance requirements.\u003C\u002Fli>\n\u003Cli>Fix       – Improved Invoice+ error message handling on the orders page to properly display API error details.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.1.2  – 24-02-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Feature   – Full PW Gift Cards integration for Blocks Checkout across all PayPlus payment methods, including correct discount handling, order totals, and debit timing.\u003C\u002Fli>\n\u003Cli>Fix       – PW Gift Cards discount now applied correctly in Iframe (next page) and Redirect modes in Blocks Checkout, consistent with Popup and Same-Page Iframe behavior.\u003C\u002Fli>\n\u003Cli>Feature   – Added option to mark the Customer Invoice Name field as required in both Classic and Blocks Checkout.\u003C\u002Fli>\n\u003Cli>Feature   – Added option to set a custom label and placeholder for the Customer Invoice Name field in both Classic and Blocks Checkout.\u003C\u002Fli>\n\u003Cli>Tweak     – PayPlus Embedded loader: when “Hide PayPlus logo when showing loader” is enabled, “Processing Payment…” (or its Hebrew translation) is now always centered in the loader and displayed clearly.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.1.1  – 23-02-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fix       – TV power-down effect in Blocks Checkout is now driven by the plugin setting rather than CSS positioning, ensuring it triggers reliably regardless of theme styles.\u003C\u002Fli>\n\u003Cli>Tweak     – Blocks Checkout popup and same-page iframe modes now open instantly — the PayPlus payment page link is fetched asynchronously after checkout submission instead of blocking the Store API response.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.1.0  – 22-02-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fix       – Improved redirect handling across all browsers with a unified solution, eliminating the need for browser-specific settings and checkboxes.\u003C\u002Fli>\n\u003Cli>Tweak     – Added translated “Payment received – redirecting…” screen that appears briefly when using fallback redirect method.\u003C\u002Fli>\n\u003Cli>Fix       – Resolved issue where changing delivery method in classic checkout would incorrectly switch the selected payment method in the payment list.\u003C\u002Fli>\n\u003Cli>Tweak     – Callback handler now processes orders in “failed” status (in addition to “pending”) since callbacks occur after order creation and payment.\u003C\u002Fli>\n\u003Cli>Added     – Optional TV power-down effect for popup iframe mode. When enabled via plugin settings, displays a classic CRT television shutdown animation before redirecting to thank you page.\u003C\u002Fli>\n\u003Cli>Fix       – Order payment method now reflects the actual payment method used (e.g., credit card, Google Pay, Bit) rather than the initially selected gateway, ensuring accuracy in WooCommerce order details and invoices.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.0.9  – 18-02-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fix       – Fixed default setting for Firefox-compatible redirect mode – polling fallback is now enabled by default as intended.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>8.0.7  – 18-02-2026\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Tweak     – Added automatic polling fallback for iframe payment redirects in both blocks and classic checkouts. This ensures reliable redirects for Firefox users and other scenarios where the iframe cannot communicate via postMessage. The system polls the server for order completion status and redirects to the thank-you page automatically.\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Fix       – Fixed EMV POS device functionality issue when only one admin user was configured.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Tweak – Improved the \u003Ccode>payPlusRemote()\u003C\u002Fcode> function to better handle \u003Ccode>$payload\u003C\u002Fcode> issues.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>Tweak – Removed outdated logs and deprecated API calls.\u003C\u002Fli>\n\u003Cli>Tweak – Optimized payment page logic to reuse existing pages when possible, reducing unnecessary API requests.\u003C\u002Fli>\n\u003Cli>Tweak – Corrected inaccurate status reporting in “Orders Reports\u002FValidator”.\u003C\u002Fli>\n\u003Cli>Tweak – Streamlined \u003Ccode>callback_response\u003C\u002Fcode> by removing redundant functions and passing data directly instead of using SQL.\u003C\u002Fli>\n\u003Cli>Added – When “Update status in IPN” is enabled, the callback function will skip status updates and related checks.\u003C\u002Fli>\n\u003Cli>Added – Disallow voucher payment for shipping – Enforce a minimum amount for non-voucher payments: voucher payments can no longer be used to pay for shipping, preventing customers from covering delivery costs with vouchers.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fpayplus-payment-gateway\u002Ftrunk\u002FCHANGELOG.md\" rel=\"nofollow ugc\">See changelog for all versions\u003C\u002Fa>.\u003C\u002Fp>\n","Accept credit\u002Fdebit card payments or other methods such as bit, Apple Pay, Google Pay in one page. Create digitally signed invoices & much more!",1000,79632,"2026-03-15T06:09:00.000Z","6.2","7.4",[132,19,133,134,135],"charges-and-refunds","subscriptions","tokenization","woocommerce-payment-gateway","https:\u002F\u002Fwww.payplus.co.il\u002Fwordpress","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpayplus-payment-gateway.8.1.5.zip",93,3,"2024-07-09 00:00:00",{"attackSurface":142,"codeSignals":242,"taintFlows":283,"riskAssessment":348,"analyzedAt":356},{"hooks":143,"ajaxHandlers":199,"restRoutes":239,"shortcodes":240,"cronEvents":241,"entryPointCount":69,"unprotectedCount":13},[144,150,154,158,163,169,173,176,180,184,189,192,196],{"type":145,"name":146,"callback":147,"file":148,"line":149},"action","admin_menu","pay_advantage_register_option_page","admin\\options-page.php",14,{"type":145,"name":151,"callback":152,"priority":116,"file":148,"line":153},"admin_enqueue_scripts","pay_advantage_options_page_load",16,{"type":145,"name":155,"callback":156,"file":157,"line":149},"plugins_loaded","pay_advantage_migration","migration\\migration.php",{"type":145,"name":159,"callback":160,"file":161,"line":162},"admin_notices","payadvantage_system_notices","payadvantage.php",83,{"type":164,"name":165,"callback":166,"priority":167,"file":161,"line":168},"filter","http_headers_useragent","payadvantage_useragent",10,120,{"type":145,"name":170,"callback":171,"file":161,"line":172},"before_woocommerce_init","closure",129,{"type":145,"name":155,"callback":174,"file":175,"line":167},"pay_advantage_gateway_handler","public\\cls-payadvantage-woocommerce.php",{"type":145,"name":177,"callback":178,"priority":116,"file":175,"line":179},"wp_enqueue_scripts","enqueue_scripts",37,{"type":164,"name":181,"callback":182,"file":175,"line":183},"woocommerce_payment_gateways","Pay_Advantage_Gateway",220,{"type":145,"name":185,"callback":186,"file":187,"line":188},"widgets_init","pay_advantage_credit_card_widget_handler","public\\widget-payadvantage-make-payment.php",68,{"type":145,"name":177,"callback":190,"priority":116,"file":187,"line":191},"register_pay_advantage_credit_card_scripts_load",128,{"type":145,"name":185,"callback":193,"file":194,"line":195},"pay_advantage_bpay_widget_handler","public\\widget-payadvantage-register-bpay.php",67,{"type":145,"name":177,"callback":197,"priority":116,"file":194,"line":198},"register_pay_advantage_bpay_scripts_load",115,[200,206,209,213,218,219,223,224,229,230,233,234,238],{"action":201,"nopriv":202,"callback":203,"hasNonce":204,"hasCapCheck":202,"file":205,"line":13},"save_pay_advantage_settings_action",false,"save_pay_advantage_settings_handler",true,"admin\\options-ajax.php",{"action":207,"nopriv":202,"callback":208,"hasNonce":202,"hasCapCheck":202,"file":205,"line":12},"pay_advantage_connect_action","pay_advantage_connect_handler",{"action":210,"nopriv":202,"callback":211,"hasNonce":202,"hasCapCheck":202,"file":205,"line":212},"pay_advantage_disconnect_action","pay_advantage_disconnect_handler",109,{"action":214,"nopriv":202,"callback":215,"hasNonce":204,"hasCapCheck":204,"file":216,"line":217},"pay_advantage_credit_card","pay_advantage_credit_card_handler","public\\ajax-payadvantage-creditcard.php",9,{"action":214,"nopriv":204,"callback":215,"hasNonce":204,"hasCapCheck":204,"file":216,"line":167},{"action":220,"nopriv":202,"callback":221,"hasNonce":204,"hasCapCheck":202,"file":222,"line":217},"pay_advantage_create_customer","pay_advantage_create_customer_handler","public\\ajax-payadvantage-customer.php",{"action":220,"nopriv":204,"callback":221,"hasNonce":204,"hasCapCheck":202,"file":222,"line":167},{"action":225,"nopriv":202,"callback":226,"hasNonce":204,"hasCapCheck":202,"file":227,"line":228},"pay_advantage_wc_mark_order_as_paid","pay_advantage_mark_order_as_paid_handler","public\\ajax-payadvantage-woocommerce.php",6,{"action":225,"nopriv":204,"callback":226,"hasNonce":204,"hasCapCheck":202,"file":227,"line":47},{"action":231,"nopriv":202,"callback":232,"hasNonce":204,"hasCapCheck":202,"file":227,"line":217},"pay_advantage_wc_mark_order_as_cancelled","pay_advantage_mark_order_as_cancelled_handler",{"action":231,"nopriv":204,"callback":232,"hasNonce":204,"hasCapCheck":202,"file":227,"line":167},{"action":235,"nopriv":202,"callback":236,"hasNonce":204,"hasCapCheck":202,"file":227,"line":237},"pay_advantage_wc_mark_order_as_failed","pay_advantage_mark_order_as_failed_handler",12,{"action":235,"nopriv":204,"callback":236,"hasNonce":204,"hasCapCheck":202,"file":227,"line":69},[],[],[],{"dangerousFunctions":243,"sqlUsage":244,"outputEscaping":246,"fileOperations":26,"externalRequests":139,"nonceChecks":47,"capabilityChecks":139,"bundledLibraries":282},[],{"prepared":26,"raw":26,"locations":245},[],{"escaped":247,"rawEcho":248,"locations":249},80,17,[250,253,255,257,259,261,263,264,266,268,270,272,274,276,277,278,280],{"file":251,"line":153,"context":252},"admin\\html\\options-html-render.php","raw output",{"file":251,"line":254,"context":252},32,{"file":251,"line":256,"context":252},192,{"file":161,"line":258,"context":252},78,{"file":175,"line":260,"context":252},45,{"file":262,"line":153,"context":252},"public\\html\\creditcard-tab-html.php",{"file":262,"line":12,"context":252},{"file":187,"line":265,"context":252},55,{"file":187,"line":267,"context":252},58,{"file":187,"line":269,"context":252},61,{"file":187,"line":271,"context":252},63,{"file":194,"line":273,"context":252},54,{"file":194,"line":275,"context":252},57,{"file":194,"line":12,"context":252},{"file":194,"line":68,"context":252},{"file":279,"line":228,"context":252},"shared\\payadvantage-utils.php",{"file":279,"line":281,"context":252},8,[],[284,306,316,330,339],{"entryPoint":285,"graph":286,"unsanitizedCount":32,"severity":305},"pay_advantage_create_customer_handler (public\\ajax-payadvantage-customer.php:15)",{"nodes":287,"edges":302},[288,293,297],{"id":289,"type":290,"label":291,"file":222,"line":292},"n0","source","$_POST",43,{"id":294,"type":295,"label":296,"file":222,"line":292},"n1","transform","→ pay_advantage_send_response()",{"id":298,"type":299,"label":300,"file":279,"line":281,"wp_function":301},"n2","sink","echo() [XSS]","echo",[303,304],{"from":289,"to":294,"sanitized":202},{"from":294,"to":298,"sanitized":202},"medium",{"entryPoint":307,"graph":308,"unsanitizedCount":32,"severity":305},"\u003Cajax-payadvantage-customer> (public\\ajax-payadvantage-customer.php:0)",{"nodes":309,"edges":313},[310,311,312],{"id":289,"type":290,"label":291,"file":222,"line":292},{"id":294,"type":295,"label":296,"file":222,"line":292},{"id":298,"type":299,"label":300,"file":279,"line":281,"wp_function":301},[314,315],{"from":289,"to":294,"sanitized":202},{"from":294,"to":298,"sanitized":202},{"entryPoint":317,"graph":318,"unsanitizedCount":26,"severity":329},"save_pay_advantage_settings_handler (admin\\options-ajax.php:7)",{"nodes":319,"edges":327},[320,323],{"id":289,"type":290,"label":321,"file":205,"line":322},"$_POST (x11)",22,{"id":294,"type":299,"label":324,"file":205,"line":325,"wp_function":326},"update_option() [Settings Manipulation]",28,"update_option",[328],{"from":289,"to":294,"sanitized":204},"low",{"entryPoint":331,"graph":332,"unsanitizedCount":32,"severity":329},"pay_advantage_connect_handler (admin\\options-ajax.php:61)",{"nodes":333,"edges":337},[334,335],{"id":289,"type":290,"label":291,"file":205,"line":188},{"id":294,"type":299,"label":324,"file":205,"line":336,"wp_function":326},69,[338],{"from":289,"to":294,"sanitized":202},{"entryPoint":340,"graph":341,"unsanitizedCount":26,"severity":329},"\u003Coptions-ajax> (admin\\options-ajax.php:0)",{"nodes":342,"edges":346},[343,345],{"id":289,"type":290,"label":344,"file":205,"line":322},"$_POST (x12)",{"id":294,"type":299,"label":324,"file":205,"line":325,"wp_function":326},[347],{"from":289,"to":294,"sanitized":204},{"summary":349,"deductions":350},"The 'pay-advantage' plugin v3.3.1 demonstrates a generally strong security posture, with no known historical vulnerabilities and good practices in SQL query handling and output escaping. The extensive use of prepared statements for all SQL queries and a high percentage of properly escaped outputs are positive indicators.  However, the plugin's attack surface presents a significant area for concern. With 13 AJAX handlers, two of which lack proper authentication checks, there is a clear risk of unauthorized actions being performed if these handlers are exploitable. While no critical taint flows were identified, the presence of flows with unsanitized paths, even if not classified as critical or high, warrants further investigation as these could potentially lead to vulnerabilities if inputs are not adequately validated or sanitized before use. The lack of known CVEs is reassuring, but the identified unprotected entry points are a notable weakness that requires immediate attention.",[351,353],{"reason":352,"points":167},"AJAX handlers without authentication",{"reason":354,"points":355},"Flows with unsanitized paths",5,"2026-03-16T22:18:22.378Z",{"wat":358,"direct":371},{"assetPaths":359,"generatorPatterns":364,"scriptPaths":365,"versionParams":366},[360,361,362,363],"\u002Fwp-content\u002Fplugins\u002Fpay-advantage\u002Fadmin\u002Fjs\u002Foptions-page.js","\u002Fwp-content\u002Fplugins\u002Fpay-advantage\u002Fpublic\u002Fcss\u002Fpayadvantage.css","\u002Fwp-content\u002Fplugins\u002Fpay-advantage\u002Fpublic\u002Fjs\u002Fcommon.js","\u002Fwp-content\u002Fplugins\u002Fpay-advantage\u002Fpublic\u002Fjs\u002Fjquery-blockui\u002Fjquery.blockUI.min.js",[],[362,363,360],[367,368,369,370],"payadvantage\u002Fadmin\u002Fjs\u002Foptions-page.js?ver=","payadvantage\u002Fpublic\u002Fcss\u002Fpayadvantage.css?ver=","payadvantage\u002Fpublic\u002Fjs\u002Fcommon.js?ver=","payadvantage\u002Fpublic\u002Fjs\u002Fjquery-blockui\u002Fjquery.blockUI.min.js?ver=",{"cssClasses":372,"htmlComments":373,"htmlAttributes":378,"restEndpoints":380,"jsGlobals":381,"shortcodeOutput":383},[],[374,375,376,377],"\u003C!-- Contains setup for the options page. Sets up javascript and calls html for viewing the options page. -->","\u003C!-- Sets up menu items in settings tab of the admin screen. -->","\u003C!-- Sets up all the scripts for the page. -->","\u003C!-- This file is for the WooCommerce payment gateway. -->",[379],"data-payadvantage-nonce",[],[382],"pay_advantage_ajax_object",[]]