Does Payamito Core have any unpatched vulnerabilities?

No. All known vulnerabilities in Payamito Core have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Payamito Core compatible with WordPress 5.8.13?

According to WordPress.org data, Payamito Core 1.0.0 has been tested up to WordPress 5.8.13. Check the plugin's changelog for the latest compatibility information.

Is Payamito Core compatible with PHP 7.0+?

Payamito Core requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Payamito Core updated?

Payamito Core was last updated on Jan 8, 2022. Frequent updates are generally a positive security signal.

What is Payamito Core's security score?

Payamito Core has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Payamito Core Security & Risk Analysis

wordpress.org/plugins/payamito-core

افزونه هسته پیامیتو

0 active installs v1.0.0 PHP 7.0+ WP 4.0+ Updated Jan 8, 2022

sms-payamito

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Payamito Core Safe to Use in 2026?

Generally Safe

Score 85/100

Payamito Core has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The static analysis of payamito-core v1.0.0 indicates a strong security posture in terms of direct code vulnerabilities. The plugin reports zero AJAX handlers, REST API routes, shortcodes, or cron events, which significantly minimizes its attack surface. Furthermore, the code signals are very positive, showing no dangerous functions, no unescaped output, no file operations, and no external HTTP requests. Crucially, all SQL queries utilize prepared statements, and there's a recorded capability check, indicating thoughtful access control. The complete absence of taint analysis findings further reinforces this positive assessment. The vulnerability history is also clean, with no recorded CVEs, suggesting a history of secure development or very limited previous exposure.

However, the complete lack of certain security mechanisms, such as nonce checks on AJAX handlers (though there are no AJAX handlers), and the absence of REST API routes with permission callbacks, while indicative of a small attack surface, also means there's no explicit evidence of these common security controls being implemented in practice. The analysis shows only one capability check, which might be sufficient given the minimal entry points, but it's worth noting if the plugin were to expand its functionality. Overall, the plugin appears to be developed with security in mind, but its current minimal feature set makes it difficult to fully assess certain robust security implementations that would be expected in more complex plugins.

In conclusion, payamito-core v1.0.0 demonstrates a commendable commitment to secure coding practices, particularly regarding input sanitization and database interaction, and a very small attack surface. The lack of any historical vulnerabilities further bolsters its perceived security. While the current analysis presents a very low-risk profile, this is largely due to the plugin's apparent simplicity. Future development should maintain these high standards and ensure robust security measures are implemented as functionality grows.

Vulnerabilities

None known

Payamito Core Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Payamito Core Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped1 total outputs

Attack Surface

Payamito Core Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

actionplugins_loadedadmin\class-payamito-admin.php:54

actionadmin_enqueue_scriptsincludes\class-payamito.php:165

actionadmin_enqueue_scriptsincludes\class-payamito.php:166

actionwp_enqueue_scriptsincludes\class-payamito.php:180

actionwp_enqueue_scriptsincludes\class-payamito.php:181

Maintenance & Trust

Payamito Core Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13

Last updatedJan 8, 2022

PHP min version7.0

Downloads775

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Payamito Core Alternatives

افزونه پیامک ایزی دیجتال دانلود ( EDD ) payamito sms easy digital download

payamito-easy-digital-downloads-sms

100

افزونه ارسال پیامک پیامیتو

10 No CVEs

Developer Profile

Payamito Core Developer Profile

payamito

2 plugins · 10 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Payamito Core

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/payamito-core/admin/css/payamito-admin.css/wp-content/plugins/payamito-core/admin/js/payamito-admin.js

Script Paths

/wp-content/plugins/payamito-core/admin/js/payamito-admin.js

Version Parameters

payamito-admin.css?ver=payamito-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

payamito-admin-css

Data Attributes

data-plugin-name="payamito"data-plugin-version="1.0.0"

JS Globals

Payamito_Admin

FAQ