Does AutifyDigital Lloyds® Pay Now for payment have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is AutifyDigital Lloyds® Pay Now for payment compatible with WordPress 6.9.4?

According to WordPress.org data, AutifyDigital Lloyds® Pay Now for payment 2.0.7 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is AutifyDigital Lloyds® Pay Now for payment compatible with PHP 7.4+?

AutifyDigital Lloyds® Pay Now for payment requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is AutifyDigital Lloyds® Pay Now for payment updated?

AutifyDigital Lloyds® Pay Now for payment was last updated on Apr 13, 2026. Frequent updates are generally a positive security signal.

What is AutifyDigital Lloyds® Pay Now for payment's security score?

AutifyDigital Lloyds® Pay Now for payment has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AutifyDigital Lloyds® Pay Now for payment Security

Safety Verdict

Is AutifyDigital Lloyds® Pay Now for payment Safe to Use in 2026?

Generally Safe

Score 100/100

AutifyDigital Lloyds® Pay Now for payment has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The 'pay-by-link' plugin v2.0.7 demonstrates a generally strong security posture with several positive indicators. The absence of known CVEs and a clean vulnerability history are significant strengths, suggesting a well-maintained and robust codebase in terms of past security issues. The static analysis also highlights good practices such as 100% prepared statements for SQL queries and a very high percentage of properly escaped output, mitigating common web vulnerabilities. Furthermore, all identified AJAX handlers, REST API routes, and other entry points appear to have authorization checks in place, which is crucial for preventing unauthorized access and actions.

However, the analysis does reveal areas for improvement. The presence of 14 taint flows with unsanitized paths, including 10 of high severity, is a notable concern. While the output escaping is generally good, these unsanitized paths indicate potential vulnerabilities where user-supplied data might be processed without adequate cleaning, potentially leading to cross-site scripting (XSS) or other injection attacks, especially if these flows interact with external HTTP requests or file operations. The plugin also performs 9 external HTTP requests, which can be a vector for attack if not handled securely, and a single file operation, which always carries inherent risk.

In conclusion, the 'pay-by-link' plugin v2.0.7 is built on a solid foundation with strong protection against common web vulnerabilities like SQL injection and XSS through diligent output escaping and prepared statements. The lack of historical vulnerabilities is a testament to this. Nevertheless, the high number of unsanitized taint flows is a critical area that requires immediate attention and remediation to ensure the plugin's overall security is not compromised by potentially exploitable data handling practices. Addressing these specific taint issues will elevate its security posture from good to excellent.

Key Concerns

High severity taint flows with unsanitized paths
Unsanitized paths in taint flows
External HTTP requests present
File operations present

Vulnerabilities

None known

AutifyDigital Lloyds® Pay Now for payment Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

AutifyDigital Lloyds® Pay Now for payment Release Timeline

v2.0.7Current

Code Analysis

Analyzed Apr 16, 2026

AutifyDigital Lloyds® Pay Now for payment Code Analysis

Dangerous Functions

0

Raw SQL Queries

0

63 prepared

Unescaped Output

10

573 escaped

Nonce Checks

12

Capability Checks

11

File Operations

1

External Requests

9

Bundled Libraries

0

SQL Query Safety

100% prepared63 total queries

Output Escaping

98% escaped583 total outputs

Data Flows · Security

14 unsanitized

Data Flow Analysis

21 flows14 with unsanitized paths

process_refund (includes/class-pbl-refund-handler.php:13)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

AutifyDigital Lloyds® Pay Now for payment Attack Surface

Entry Points16

Unprotected0

AJAX Handlers 13

authwp_ajax_paynow_lbop_validate_apple_payincludes/class-pay-by-link.php:106

noprivwp_ajax_paynow_lbop_validate_apple_payincludes/class-pay-by-link.php:107

authwp_ajax_paynow_lbop_process_apple_payincludes/class-pay-by-link.php:108

noprivwp_ajax_paynow_lbop_process_apple_payincludes/class-pay-by-link.php:109

authwp_ajax_paynow_lbop_process_google_payincludes/class-pay-by-link.php:110

noprivwp_ajax_paynow_lbop_process_google_payincludes/class-pay-by-link.php:111

authwp_ajax_paynow_lbop_form_insertincludes/class-pbl-form-shortcode.php:38

noprivwp_ajax_paynow_lbop_form_insertincludes/class-pbl-form-shortcode.php:39

authwp_ajax_paynow_lbop_activate_licenseincludes/class-pbl-license-manager.php:54

authwp_ajax_paynow_lbop_generate_licenseincludes/class-pbl-license-manager.php:55

authwp_ajax_paynow_lbop_tracking_consentincludes/class-pbl-license-manager.php:56

authwp_ajax_paynow_lbop_dismiss_license_noticeincludes/class-pbl-license-manager.php:57

authwp_ajax_paynow_lbop_process_refundincludes/class-pbl-refund-handler.php:9

Shortcodes 3

[paynow_lbop_section] includes/class-pbl-form-shortcode.php:42

[paynow_lbop_pay_form] includes/class-pbl-form-shortcode.php:43

[paynow_lbop_payment_status] includes/class-pbl-form-shortcode.php:44

WordPress Hooks 55

actionadmin_initadmin/class-paynow-apple-pay-settings.php:7

actionadmin_initadmin/class-paynow-apple-pay-settings.php:8

actionadmin_initadmin/class-paynow-form-configuration.php:28

actionadmin_initadmin/class-paynow-form-configuration.php:29

actionadmin_initadmin/class-paynow-google-pay-settings.php:26

actionadmin_initadmin/class-paynow-google-pay-settings.php:27

actionadmin_initadmin/class-pbl-admin-email-settings-tab.php:28

actionadmin_initadmin/class-pbl-admin-email-settings-tab.php:29

actionadmin_menuadmin/class-pbl-admin-refund-page.php:12

actionadmin_enqueue_scriptsadmin/class-pbl-admin-refund-page.php:13

actioncurrent_screenadmin/class-pbl-admin-refund-page.php:14

actionadmin_enqueue_scriptsadmin/class-pbl-admin-settings.php:32

actionadmin_initadmin/class-pbl-admin-settings.php:33

actionadmin_initadmin/class-pbl-admin-settings.php:34

actionadmin_enqueue_scriptsadmin/class-pbl-admin-settings.php:35

actionadmin_enqueue_scriptsadmin/class-pbl-admin-settings.php:36

actionadmin_initadmin/class-pbl-admin-settings.php:37

actionadmin_initadmin/class-pbl-payment-status-page-settings.php:28

actionadmin_initadmin/class-pbl-payment-status-page-settings.php:29

actionadmin_initadmin/class-pbl-privacy-policy-tab.php:28

actionadmin_initadmin/class-pbl-privacy-policy-tab.php:29

actionadmin_initadmin/class-pbl-recaptcha.php:28

actionadmin_initadmin/class-pbl-recaptcha.php:29

actionadmin_initadmin/class-pbl-user-email-settings-tab.php:28

actionadmin_initadmin/class-pbl-user-email-settings-tab.php:29

filterset-screen-optionadmin/class-sp.php:32

actionadmin_menuadmin/class-sp.php:36

actionadmin_enqueue_scriptsadmin/class-sp.php:40

actionadmin_initadmin/class-sp.php:45

actionwp_enqueue_scriptsincludes/class-pay-by-link.php:98

actioninitincludes/class-pay-by-link.php:100

actioninitincludes/class-pay-by-link.php:101

actionwp_enqueue_scriptsincludes/class-pay-by-link.php:102

actionwp_enqueue_scriptsincludes/class-pay-by-link.php:103

actionwp_headincludes/class-pay-by-link.php:104

actionwp_body_openincludes/class-pay-by-link.php:105

filterhttp_api_curlincludes/class-pay-by-link.php:1042

actioninitincludes/class-pbl-form-shortcode.php:47

actionadmin_noticesincludes/class-pbl-license-manager.php:50

actionadmin_noticesincludes/class-pbl-license-manager.php:51

actionadmin_initincludes/class-pbl-license-manager.php:52

actionadmin_menuincludes/class-pbl-license-manager.php:53

actionadmin_enqueue_scriptsincludes/class-pbl-license-manager.php:58

actioninitincludes/class-pbl-license-manager.php:61

actioninitincludes/controller/class-pbl-3dsecure-iframemethod.php:14

actiontemplate_redirectincludes/controller/class-pbl-3dsecure-iframemethod.php:15

actioninitincludes/controller/class-pbl-3dsecure-method-notification.php:14

actiontemplate_redirectincludes/controller/class-pbl-3dsecure-method-notification.php:15

actioninitincludes/controller/class-pbl-3dsecure-processpayment.php:14

actiontemplate_redirectincludes/controller/class-pbl-3dsecure-processpayment.php:15

actioninitincludes/controller/class-pbl-3dsecure-status.php:14

actioninitincludes/controller/class-pbl-3dsecure-status.php:16

actiontemplate_redirectincludes/controller/class-pbl-3dsecure-status.php:17

actioninitincludes/controller/class-pbl-3dsecure-transaction-notification.php:14

actiontemplate_redirectincludes/controller/class-pbl-3dsecure-transaction-notification.php:15

Maintenance & Trust

AutifyDigital Lloyds® Pay Now for payment Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 13, 2026

PHP min version7.4

Downloads235

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

AutifyDigital Lloyds® Pay Now for payment Alternatives

Paysera Payment Gateway for WooCommerce

woo-payment-gateway-paysera

A

99

Paysera payments + delivery

7K 1 CVE

Accept PayPal Payments using Contact Form 7

contact-form-7-paypal-extension

B

78

Integrate PayPal Submit button in Contact Form 7 to Enjoy Quick Online Payments.

600 1 unpatched

Fygaro WC Plugin

fygaro

A

100

The WooCommerce Fygaro Plugin gets online payments with your Local Bank, PayPal, Yappy and Credix up and running within minutes and at the best rates!

500 No CVEs

KKiapay WooCommerce Plugin

kkiapay-woocommerce

A

92

Accept Mobile money, direct bank and credit card payments with KKiapay

500 No CVEs

Zoho Billing – Embed Payment Form

zoho-subscriptions

B

77

Embed payment forms on your WordPress pages/posts without any coding.

500 1 unpatched

Developer Profile

AutifyDigital Lloyds® Pay Now for payment Developer Profile

Autify Digital Ltd

2 plugins · 90 total installs

94

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect AutifyDigital Lloyds® Pay Now for payment

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/pay-by-link/admin/assets/css/refund-form.css/wp-content/plugins/pay-by-link/admin/assets/js/refund-form.js

Script Paths

/wp-content/plugins/pay-by-link/includes/class-pay-by-link.php/wp-content/plugins/pay-by-link/admin/class-pbl-admin-refund-page.php/wp-content/plugins/pay-by-link/admin/class-pbl-admin-settings.php/wp-content/plugins/pay-by-link/admin/templates/refund-form.php

Version Parameters

pay-by-link/admin/assets/css/refund-form.css?ver=pay-by-link/admin/assets/js/refund-form.js?ver=

HTML / DOM Fingerprints

CSS Classes

paynow-lbop-refund-form-wrapper

HTML Comments

+6 more

Data Attributes

data-transaction-iddata-remaining-amountdata-nonce

JS Globals

paynow_lbop_refund_vars

FAQ

AutifyDigital Lloyds® Pay Now for payment Security & Risk Analysis