[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fgo5CPy0IOybwndXtT-NejnA2kS_qhjSKIftlEV6L-wo":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":5,"active_installs":10,"downloaded":11,"rating":12,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":61,"crawl_stats":36,"alternatives":67,"analysis":162,"fingerprints":323},"payhere-payment-gateway","PayHere Payment Gateway","2.4.4","PayHere","https:\u002F\u002Fprofiles.wordpress.org\u002Fpayhere\u002F","\u003Cp>PayHere is a Sri Lankan Payment Gateway Service that enables you to accept payments online from your customers via Visa, MasterCard, Amex, eZcash, mCash & Internet Banking services. You can install this plugin to list PayHere as a payment method in your WooCommerce store.\u003C\u002Fp>\n",2000,53267,90,8,"2026-01-27T11:42:00.000Z","6.9.4","6.4","",[19,20,21,22],"online","payhere","payments","sri-lanka","https:\u002F\u002Fwww.payhere.lk","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpayhere-payment-gateway.2.4.4.zip",98,2,0,"2026-01-13 17:29:40","2026-03-15T15:16:48.613Z",[31,47],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":38,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":28,"updated_date":43,"references":44,"days_to_patch":46},"CVE-2025-15475","payhere-payment-gateway-plugin-for-woocommerce-missing-authorization-to-unauthenticated-order-status-modification","PayHere Payment Gateway Plugin for WooCommerce \u003C= 2.3.9 - Missing Authorization to Unauthenticated Order Status Modification","The PayHere Payment Gateway Plugin for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to an improper validation logic in the check_payhere_response function in all versions up to, and including, 2.3.9. This makes it possible for unauthenticated attackers to change the status of pending WooCommerce orders to paid\u002Fcompleted\u002Fon hold.",null,"\u003C=2.3.9","2.4.0","medium",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2026-01-23 19:59:05",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fe0c92241-0bef-4f87-8478-4d805435f09d?source=api-prod",10,{"id":48,"url_slug":49,"title":50,"description":51,"plugin_slug":4,"theme_slug":36,"affected_versions":52,"patched_in_version":53,"severity":39,"cvss_score":40,"cvss_vector":54,"vuln_type":55,"published_date":56,"updated_date":57,"references":58,"days_to_patch":60},"CVE-2023-6064","payhere-payment-gateway-information-disclosure-via-log-files","PayHere Payment Gateway \u003C= 2.2.11 - Information Disclosure via Log Files","The PayHere Payment Gateway plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.2.11 via the payhere_log() function. This makes it possible for unauthenticated attackers to extract sensitive data from the log files generated by the plugin.","\u003C=2.2.11","2.2.12","CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:N\u002FA:N","Exposure of Sensitive Information to an Unauthorized Actor","2023-12-07 00:00:00","2024-02-06 16:35:43",[59],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F089ffe9a-e222-4630-b889-2b1e527dac6f?source=api-prod",62,{"slug":20,"display_name":7,"profile_url":8,"plugin_count":26,"total_installs":62,"avg_security_score":63,"avg_patch_time_days":64,"trust_score":65,"computed_at":66},2020,99,36,87,"2026-04-04T11:09:49.713Z",[68,80,98,115,138],{"slug":69,"name":70,"version":71,"author":7,"author_profile":8,"description":72,"short_description":73,"active_installs":74,"downloaded":75,"rating":27,"num_ratings":27,"last_updated":76,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":77,"homepage":17,"download_link":78,"security_score":79,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"payhere-payment-gateway-beta","PayHere Payment Gateway – Beta","2.5.3","\u003Cp>This is a beta version of the PayHere Payment Gateway and is recommended for use in a development environment.\u003C\u002Fp>\n\u003Cp>When a customer proceeds to checkout and completes a purchase, this plugin transmits necessary data—including order and customer information—to PayHere in order to finalize the payment. This data transmission is required for payment processing and occurs only when a customer initiates a transaction. For more information, please refer to the links below:\u003Cbr \u002F>\n– \u003Cstrong>PayHere Service\u003C\u002Fstrong>: \u003Ca href=\"https:\u002F\u002Fwww.payhere.lk\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.payhere.lk\u002F\u003C\u002Fa>\u003Cbr \u002F>\n– \u003Cstrong>PayHere Terms of Use\u003C\u002Fstrong>: \u003Ca href=\"https:\u002F\u002Fwww.payhere.lk\u002Flegal\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.payhere.lk\u002Flegal\u002F\u003C\u002Fa>\u003Cbr \u002F>\n– \u003Cstrong>PayHere Privacy Policy\u003C\u002Fstrong>: \u003Ca href=\"https:\u002F\u002Fwww.payhere.lk\u002Fprivacy\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.payhere.lk\u002Fprivacy\u003C\u002Fa>\u003C\u002Fp>\n","PayHere Payment Gateway Plugin for WooCommerce",20,737,"2026-01-22T06:06:00.000Z",[19,20,21,22],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpayhere-payment-gateway-beta.2.5.3.zip",100,{"slug":81,"name":82,"version":83,"author":81,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":89,"num_ratings":26,"last_updated":90,"tested_up_to":91,"requires_at_least":92,"requires_php":93,"tags":94,"homepage":96,"download_link":97,"security_score":79,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"mintpay","Mintpay","2.2.0","https:\u002F\u002Fprofiles.wordpress.org\u002Fmintpay\u002F","\u003Cp>Mintpay, Sri Lanka’s first buy now, pay later platform offers 0% interest and no hidden fees.\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>Mintpay WordPress plugin uses the Mintpay API service for processing payments. Please follow the below links for more information.\u003C\u002Fp>\n\u003Cp>Website: https:\u002F\u002Fmintpay.lk\u002F\u003Cbr \u002F>\nTerms & Conditions: https:\u002F\u002Fapp.mintpay.lk\u002Fterms\u002F\u003Cbr \u002F>\nPrivacy Policy: https:\u002F\u002Fapp.mintpay.lk\u002Fprivacy\u002F\u003C\u002Fp>\n","Mintpay, Sri Lanka's first buy now, pay later platform offers 0% interest and no hidden fees.",600,8493,60,"2025-05-28T10:30:00.000Z","6.6.5","4.6","7.0",[95,81,19,21,22],"bnpl","https:\u002F\u002Fmintpay.lk","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmintpay.2.2.0.zip",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":27,"downloaded":106,"rating":27,"num_ratings":27,"last_updated":107,"tested_up_to":108,"requires_at_least":109,"requires_php":110,"tags":111,"homepage":17,"download_link":113,"security_score":114,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"pics-payment-gateway","Pics Payment Gateway","1.0.0","vtssupport","https:\u002F\u002Fprofiles.wordpress.org\u002Fvtssupport\u002F","\u003Cp>Pics is a Sri Lankan Payment Gateway Service that enables you to accept payments online from your customers via Visa, MasterCard, Amex, eZcash, mCash & Internet Banking services. You can install this plugin to list Pics as a payment method in your WooCommerce store.\u003C\u002Fp>\n","Pics Payment Gateway Plugin for WooCommerce",784,"2020-12-08T11:40:00.000Z","5.5.18","3.0.1","5.4.2",[19,21,112,22],"pics","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpics-payment-gateway.zip",85,{"slug":116,"name":117,"version":118,"author":119,"author_profile":120,"description":121,"short_description":122,"active_installs":123,"downloaded":124,"rating":125,"num_ratings":126,"last_updated":127,"tested_up_to":15,"requires_at_least":128,"requires_php":129,"tags":130,"homepage":135,"download_link":136,"security_score":63,"vuln_count":26,"unpatched_count":27,"last_vuln_date":137,"fetched_at":29},"surecart","SureCart – Ecommerce Made Easy For Selling Physical Products, Digital Downloads, Subscriptions, Donations, & Payments","4.0.3","SureCart","https:\u002F\u002Fprofiles.wordpress.org\u002Fsurecart\u002F","\u003Cp>\u003Cstrong>The New Way To Sell Anything On WordPress!\u003C\u002Fstrong>\u003Cbr \u002F>\n★★★★★\u003C\u002Fp>\n\u003Cp>Say goodbye to old, bloated & complex ecommerce plugins that are hard to use, require expensive add-ons for basic features, and slow down your website.\u003C\u002Fp>\n\u003Cp>WordPress users have been waiting for something different!\u003C\u002Fp>\n\u003Cp>Meet \u003Ca href=\"https:\u002F\u002Fsurecart.com\u002F\" rel=\"nofollow ugc\">SureCart\u003C\u002Fa> — the modern, intuitive ecommerce plugin you’ve been looking for.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FbiTedATyVPg?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fsurecart.com\u002Fwhats-new\u002F\" rel=\"nofollow ugc\">What’s New\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fsurecart.com\u002Fdocs\u002F\" rel=\"nofollow ugc\">Docs\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002F@SureCartOfficial\u002F\" rel=\"nofollow ugc\">Video Tutorials\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fsurecart.com\u002Fsupport\u002Fopen-a-ticket\u002F\" rel=\"nofollow ugc\">Get Help\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fgroups\u002Fsurecrafted\" rel=\"nofollow ugc\">Community\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Who Is SureCart For?\u003C\u002Fh3>\n\u003Cp>Each year we send all of our users a survey, so here are the 2024 results of who is using SureCart.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Agencies:\u003C\u002Fstrong> Instead of passing on higher priced ecommerce projects due to the complexities, web agencies tell us that they are taking on more online store clients because SureCart is easy to set up and manage, and their clients love it\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Physical Product Stores:\u003C\u002Fstrong> Sellers love how easy it is to set up an online store, manage order fulfillment, and generate higher AOV with cart abandonment recovery, order bumps, and post purchase upsells\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Selling Subscriptions:\u003C\u002Fstrong> Mostly coaching programs, course creators, membership websites, and SaaS companies that want advanced subscription management and retention features\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Selling Services:\u003C\u002Fstrong> Mostly web agencies, legal services, local businesses that sell via subscriptions, installment plans, and use setup fees\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Digital Downloads:\u003C\u002Fstrong> Ebooks, printables, creative work, and we are seeing an increase in WordPress software developers who are using our licensing system\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Donations:\u003C\u002Fstrong> Charities and causes that want to have flexible donation forms, but also be able to sell additional products\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Traditional Storefront\u003C\u002Fh3>\n\u003Cp>Wanting to add a traditional online store to your websites?\u003C\u002Fp>\n\u003Cp>This is where you have a shop page to showcase all of your products, product pages, cart, then checkout?\u003C\u002Fp>\n\u003Cp>SureCart has all the features for selling products this way on your website. These include product variations, product collection, coupons, inventory tracking, shipping calculations, product fulfillment, product returns, and customer area.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FuIBCcIX8S54?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>Product Pricing Options\u003C\u002Fh3>\n\u003Cp>No other ecommerce plugin offers this depth of options on how to price your products.\u003C\u002Fp>\n\u003Cp>SureCart’s unique approach to let you offer more than one price for a single product is a big reason why SureCart merchants sell more products.\u003C\u002Fp>\n\u003Cp>Some of the pricing options include one-time payments, subscription payments, installment plans, free trials, paid trials, setup fees, setup discounts, and name your own price.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FvHOamau4BWw?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>Most Advanced Subscription Plugin For WordPress\u003C\u002Fh3>\n\u003Cp>Selling subscriptions is easy to do, many form plugins, LMS plugins, membership plugins, ecommerce plugins do this.\u003C\u002Fp>\n\u003Cp>But they only assist in selling the subscription and offer little to manage and retain the subscriber! That is where the profit is in selling subscriptions.\u003C\u002Fp>\n\u003Cp>If you are using anything other than SureCart to sell subscriptions, you are likely paying higher payment processor fees and having higher churn.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Using SureCart Means Lower Fees\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>If you are selling subscriptions on Stripe using form plugins, membership plugins, online course plugins, SaaS platforms like ThriveCart, or any of these ways to sell subscriptions with Stripe…\u003C\u002Fp>\n\u003Cp>You (the merchant) pay an extra 0.5% – 0.8% of every subscription transaction to Stripe? \u003Ca href=\"https:\u002F\u002Fstripe.com\u002Fbilling\u002Fpricing\" rel=\"nofollow ugc\">See Stripe Pricing\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>When you use SureCart you avoid all of these Stripe fees on subscriptions because we manage the subscription, we handle the invoices, and we can handle the auto payment retries.\u003Cbr \u002F>\nThis can save you huge amounts of money.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Please Note:\u003C\u002Fstrong> Subscriptions are portable! We migrate WooCommerce merchants with active subscribers each week. It’s seamless, and the subscriber does not need to resubscribe.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Better Subscription Management & Retention With SureCart\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>SureCart has a suite of tools to \u003Ca href=\"https:\u002F\u002Fsurecart.com\u002Ffeatures\u002Fsubscriptions\u002F\" rel=\"nofollow ugc\">manage subscriptions\u003C\u002Fa> and reduce churn.\u003C\u002Fp>\n\u003Cp>Selling subscriptions, the biggest source of churn is from failed payments. SureCart will automatically recover failed payments from your subscribers to keep them subscribed.\u003C\u002Fp>\n\u003Cp>Your second source of churn is subscribers wanting to cancel. With SureCart’s \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=9Bx4u4DV4_Q\" rel=\"nofollow ugc\">Subscription Saver\u003C\u002Fa> feature, you will have fewer cancelations and greater insights into why people cancel.\u003C\u002Fp>\n\u003Cp>Additional features include subscription upgrades with proration, subscription downgrades, customers can change the payment method, you can reactivate a canceled subscription, you can pause a subscription, subscribers can change their form of payment to a different payment method, change payment dates, advanced email reminders before payments, and more.\u003C\u002Fp>\n\u003Cp>These management and retention options are just not available elsewhere!\u003C\u002Fp>\n\u003Ch3>The Best WooCommerce Alternative\u003C\u002Fh3>\n\u003Cp>SureCart is the \u003Ca href=\"https:\u002F\u002Fwpastra.com\u002Fcomparison\u002Fshopify-vs-woocommerce-vs-surecart\u002F\" rel=\"nofollow ugc\">WooCommerce alternative\u003C\u002Fa> WordPress users have been asking for!\u003C\u002Fp>\n\u003Cp>We highly respect WooCommerce and how it has paved the way for adding an online store to WordPress. But it’s not ideal for everyone.\u003C\u002Fp>\n\u003Cp>It would cost you \u003Cstrong>$2,849 per year, per store\u003C\u002Fstrong>, in WooCommerce add-ons to get the same features SureCart offers out of the box! And your store would be more prone to plugin conflicts, security vulnerabilities, constant updates required for each plugin, and a potentially slower website.\u003C\u002Fp>\n\u003Cp>(These are reasons told to us by SureCart merchants that switched from WooCommerce)\u003C\u002Fp>\n\u003Cp>There are cases where using WooCommerce may be the only choice for your store due to their deep ecosystem of paid add-ons and payment gateways if you have very specific requirements.\u003C\u002Fp>\n\u003Cp>Where SureCart’s approach is different. Everything is built in, no add-on required. Everything is made easier, your site will run faster, we are there to support you, you are never alone.\u003C\u002Fp>\n\u003Ch3>SureCart Features\u003C\u002Fh3>\n\u003Cp>These are just some of the key features SureCart users love.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Multiple Payment Processors, Express Checkout ApplePay & GooglePay:\u003C\u002Fstrong>\u003Cbr \u002F>\nEasily connect to Stripe, PayPal, and Mollie with support for 135+ currencies, 45+ countries, and dozens of payment methods including cards, wallets, bank debits, and more. You can use multiple processors on a single checkout form. Also, you can optionally accept ApplePay or GooglePay express checkout options.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Powerful Payment Options:\u003C\u002Fstrong>\u003Cbr \u002F>\nOne-time payments, subscriptions, subscriptions with free trials, setup fees, payment plans (installments), pay what you want, donations. SureCart covers most ways you may want to be paid, all included for free.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Most Complete Subscription Payments System:\u003C\u002Fstrong>\u003Cbr \u002F>\nThere is a lot more to subscriptions than simply rebilling on an interval. SureCart’s subscription engine is second to none. With our extensive subscription payments options, you can sell your subscriptions how you want. But SureCart goes beyond other ecommerce platforms by offering prorated upgrades or downgrades. So if you are offering a monthly subscription or an annual subscription and your buyer wants to upgrade, SureCart can prorate the upgrade.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Order Bumps & Upsell Funnels:\u003C\u002Fstrong>\u003Cbr \u002F>\nSureCart merchants have more profitable stores due to a full suite of revenue optimization features. Generate more revenue with one-click order bumps, post purchase \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=97gSH-KPFZU&t=25s\" rel=\"nofollow ugc\">one-click upsells\u003C\u002Fa>, and cart abandonment recovery.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Affiliate Platform:\u003C\u002Fstrong>\u003Cbr \u002F>\nGenerate more sales by adding an affiliate program. Easily launch an affiliate program in just a few minutes. You can customize each aspect of your affiliate program, including lifetime commissions, custom affiliate rates, affiliate coupons, and more.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Self Service Customer Area (Subscription Upgrades \u002F Downgrades):\u003C\u002Fstrong>\u003Cbr \u002F>\nWith our highly customizable customer area, you can have full control on what a customer sees and is able to do. For example, you can let your customers change their personal details, password, access secure digital downloads, update credit cards on file, upgrade a subscription, downgrade a subscription. All with a beautiful and modern user experience.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Customizable Shopping Experience:\u003C\u002Fstrong>\u003Cbr \u002F>\nCustomize product pages, shop pages, cart, and customer dashboard using an intuitive and powerful drag and drop editor that utilizes the WordPress block editor.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Flexible Checkout Form Builder:\u003C\u002Fstrong>\u003Cbr \u002F>\nCreate a completely custom checkout form. In fact, create as many as you like. There is no other ecommerce platform with this much customizability. Simply drag and drop fields, price choosers, donation choosers, check boxes, and other parts to create the perfect checkout form.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Coupon Discounts:\u003C\u002Fstrong>\u003Cbr \u002F>\nIncentivizing buyers with a coupon discount is a great way to increase sales. You can easily create unlimited coupons as well as automatically add coupons with a URL parameter.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Secure digital file delivery:\u003C\u002Fstrong>\u003Cbr \u002F>\nSelling digital downloads? This could be software, printables, ebooks, you name it and SureCart can deliver it securely to your buyers.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Slide-out Cart:\u003C\u002Fstrong>\u003Cbr \u002F>\nIf you want to sell your products or services using a traditional cart allowing buyers to add items then checkout, you will love SureCart’s beautiful and lightning fast slide-out cart.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Complete EU Compliance:\u003C\u002Fstrong>\u003Cbr \u002F>\nIf you are an EU-based merchant, you know there are very strict requirements regarding VAT, how you display the prices inclusive of VAT, what information is on invoices, how invoices need to be numbered, etc. SureCart has you covered.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Integrate & Automate:\u003C\u002Fstrong>\u003Cbr \u002F>\nThe most important part of an ecommerce platform is how it integrates with other plugins and external platforms. SureCart offers integrations with many WordPress plugins, so you can use SureCart for all of your ecommerce.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Seamless Scaling:\u003C\u002Fstrong>\u003Cbr \u002F>\nWith other ecommerce plugins, if you get an influx of buyers for that big sale or promotion, unless you have high-powered and high cost hosting, your website will be slow or worse, it will crash. Since SureCart is platform based, when you get an influx of new buyers, you have nothing to worry about because we take care of the scaling for you.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Real-time VAT & Sales Tax Calculations:\u003C\u002Fstrong>\u003Cbr \u002F>\nOther ecommerce platforms let you integrate with expensive tax calculation services, usually costing $50 per month and up. Not with SureCart, we are fully integrated with TaxJar, and we pay for the calculations, so you don’t have to. And the setup is a breeze.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>What Is Unique About SureCart?\u003C\u002Fh3>\n\u003Cp>SureCart was made to give WordPress users a better option for selling on their website. Currently most merchants use WooCommerce, which was made over 10 years ago for building big commerce stores like Amazon, Walmart, etc.\u003C\u002Fp>\n\u003Cp>SureCart takes a different approach entirely. Made from the ground up to be ultra-high performance, look visually stunning, and be so easy to use that the most non-techie user will have no problem.\u003C\u002Fp>\n\u003Cp>Everything can be visually customized to create a truly unique ecommerce experience.\u003C\u002Fp>\n\u003Cp>SureCart also solves the technician problems that you run into with ecommerce plugins. They have performance problems or caching issues or something, it’s always something. Not with SureCart, we do all the heavy lifting on our servers to guarantee you a smooth operation, headache free, developer free.\u003C\u002Fp>\n\u003Ch3>The SureCart Difference\u003C\u002Fh3>\n\u003Cp>SureCart is fundamentally different from other WordPress ecommerce plugins that you may have tried, so it’s important to understand the differences.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Platform Based\u003C\u002Fstrong>\u003Cbr \u002F>\nThere are two parts to SureCart, the platform, which is the Ecommerce engine, and the plugin.\u003C\u002Fp>\n\u003Cp>The platform is built with the same technology that Shopify, Basecamp, GitHub, Twitter, Stripe and more use. These are all multi-billion dollar companies.\u003C\u002Fp>\n\u003Cp>The plugin connects to the platform in real-time, taking all the load away from your website and onto our platform that was built and optimized for Ecommerce.\u003C\u002Fp>\n\u003Cp>This way you get everything you want with none of the stuff you don’t want. SureCart will not slow down your website, it won’t bloat your database, it’s less likely to have plugin conflicts, and it’s made to work with your caching setup. But the real benefit here is you get assurance and peace of mind because you don’t have to worry about security, storage, or backups.\u003C\u002Fp>\n\u003Ch3>SureCart Integrations\u003C\u002Fh3>\n\u003Ch3>Page Builders\u003C\u002Fh3>\n\u003Cp>SureCart works with all WordPress page builders, including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Elementor\u003C\u002Fli>\n\u003Cli>Bricks Builder\u003C\u002Fli>\n\u003Cli>Spectra Website Builder\u003C\u002Fli>\n\u003Cli>Divi Builder\u003C\u002Fli>\n\u003Cli>Beaver Builder\u003C\u002Fli>\n\u003Cli>Thrive Architect\u003C\u002Fli>\n\u003Cli>Gutenberg\u003C\u002Fli>\n\u003Cli>Oxygen Builder\u003C\u002Fli>\n\u003Cli>And others\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>WooCommerce Themes\u003C\u002Fh3>\n\u003Cp>SureCart works with any theme, including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Astra Theme\u003C\u002Fli>\n\u003Cli>Avada\u003C\u002Fli>\n\u003Cli>Blocksy\u003C\u002Fli>\n\u003Cli>Divi Theme\u003C\u002Fli>\n\u003Cli>Flatsome\u003C\u002Fli>\n\u003Cli>GeneratePress\u003C\u002Fli>\n\u003Cli>Kadence Theme\u003C\u002Fli>\n\u003Cli>Neve\u003C\u002Fli>\n\u003Cli>OceanWP\u003C\u002Fli>\n\u003Cli>Spectra One Theme\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>WordPress Plugins\u003C\u002Fh3>\n\u003Cp>SureCart has 2 types of integrations. The first are natively available directly in the plugin and include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>BuddyBoss\u003C\u002Fli>\n\u003Cli>SureMembers\u003C\u002Fli>\n\u003Cli>Presto Player\u003C\u002Fli>\n\u003Cli>TutorLMS\u003C\u002Fli>\n\u003Cli>LearnDash\u003C\u002Fli>\n\u003Cli>LifterLMS\u003C\u002Fli>\n\u003Cli>MemberPress\u003C\u002Fli>\n\u003Cli>AffiliateWP\u003C\u002Fli>\n\u003Cli>Thrive Automator\u003C\u002Fli>\n\u003Cli>And more are coming\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The second type of integrations are done with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsuretriggers\u002F\" rel=\"ugc\">Ottokit\u003C\u002Fa>, which is like Zapier for WordPress. Ottokit integrates with over 500 apps and services. These will require you to add the Ottokit plugin to your website to integrate with:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>ActiveCampaign\u003C\u002Fli>\n\u003Cli>ConvertKit\u003C\u002Fli>\n\u003Cli>FluentCRM\u003C\u002Fli>\n\u003Cli>Google Sheets\u003C\u002Fli>\n\u003Cli>GoHighLevel\u003C\u002Fli>\n\u003Cli>Klaviyo\u003C\u002Fli>\n\u003Cli>MailChimp\u003C\u002Fli>\n\u003Cli>MailGun\u003C\u002Fli>\n\u003Cli>Restrict Content Pro\u003C\u002Fli>\n\u003Cli>SendinBlue\u003C\u002Fli>\n\u003Cli>Slack\u003C\u002Fli>\n\u003Cli>The Events Calendar\u003C\u002Fli>\n\u003Cli>Twilio\u003C\u002Fli>\n\u003Cli>Webhooks\u003C\u002Fli>\n\u003Cli>WhatsApp\u003C\u002Fli>\n\u003Cli>Zoom\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsuretriggers.com\u002Fintegrations\u002F\" rel=\"nofollow ugc\">See the full list\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Join The SureCart Facebook Group\u003C\u002Fh3>\n\u003Cp>Join our \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fgroups\u002Fsurecrafted\" rel=\"nofollow ugc\">Facebook group community\u003C\u002Fa>: Learn the tricks and techniques that other SureCart users are using to grow their business. Also, get exciting insider information on upcoming feature releases.\u003C\u002Fp>\n\u003Ch3>Want to contribute to the plugin?\u003C\u002Fh3>\n\u003Cp>You may now contribute to the plugin on Github: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsurecart\u002Fsurecart-wp-plugin\" rel=\"nofollow ugc\">SureCart WordPress Plugin on Github\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fsurecart.com\u002Fterms\" rel=\"nofollow ugc\">Terms And Conditions\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fsurecart.com\u002Fprivacy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa>\u003C\u002Fp>\n","Make ecommerce easy with a simple to use, all-in-one platform, that anyone can set up in just a few minutes!",90000,3056918,96,257,"2026-03-12T19:24:00.000Z","6.7","7.4",[131,132,21,133,134],"ecommerce","online-store","stripe","subscriptions","https:\u002F\u002Fsurecart.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsurecart.4.0.3.zip","2024-08-28 00:00:00",{"slug":139,"name":140,"version":141,"author":142,"author_profile":143,"description":144,"short_description":145,"active_installs":146,"downloaded":147,"rating":148,"num_ratings":149,"last_updated":150,"tested_up_to":15,"requires_at_least":151,"requires_php":129,"tags":152,"homepage":158,"download_link":159,"security_score":63,"vuln_count":160,"unpatched_count":27,"last_vuln_date":161,"fetched_at":29},"woo-payment-gateway-paysera","Paysera Payment Gateway for WooCommerce","3.11.1","paysera","https:\u002F\u002Fprofiles.wordpress.org\u002Fpaysera\u002F","\u003Ch4>Paysera payments + delivery\u003C\u002Fh4>\n\u003Cp>With this one plugin you will receive everything your e-shop needs in one place – payment gateway to accept online payments and delivery options via all popular couriers displayed on your website.\u003C\u002Fp>\n\u003Cp>In order to receive full benefits of both Paysera Payment and Delivery plugins, please use the outlined links to access our detailed how-to instructions.\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>Paysera Payments\u003Cbr \u002F>\nThis service included in the plugin enables you to accept online payments via cards, SMS, or the most popular banks in your country. It is used by thousands of online merchants across Europe, and is easy to integrate and manage.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.paysera.com\u002Fv2\u002Fen\u002Fpayment-gateway-checkout\" rel=\"nofollow ugc\">Read more about Paysera Checkout >\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fdevelopers.paysera.com\u002Fen\u002Fcheckout\u002Fbasic\" rel=\"nofollow ugc\">Instructions >\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Paysera Delivery\u003Cbr \u002F>\nThis service, that is also included in this plugin displays different delivery companies that your buyers can choose from when ordering your products. No need to sign separate agreements with couriers or overcome several different integrations – we have done it for you. Enjoy low delivery prices and quick support when needed.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.paysera.com\u002Fv2\u002Fen\u002Fcheckout-delivery-service\" rel=\"nofollow ugc\">Read more about Paysera Delivery >\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fdevelopers.paysera.com\u002Fen\u002Fdelivery\u002F\" rel=\"nofollow ugc\">Instructions >\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Features and benefits\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>One plugin for integration of different payment methods: cards, SMS, online banking, more.\u003C\u002Fli>\n\u003Cli>One plugin for integration of different courier services: Omniva, Venipak, LP Express, and others.\u003C\u002Fli>\n\u003Cli>Integration takes up to 5 min (if you are already a Paysera client).\u003C\u002Fli>\n\u003Cli>One agreement for all the couriers and all banks.\u003C\u002Fli>\n\u003Cli>Easy to manage: turn couriers and payment methods ON and OFF as you like.\u003C\u002Fli>\n\u003Cli>Everything in one place – Paysera system: see all the deliveries by different couriers, receive payments via different banks and payment methods in the same system.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Logging\u003C\u002Fh4>\n\u003Cp>To keep track of the plugin’s errors, default log level for payment and delivery is set to ‘Error’.\u003Cbr \u002F>\nThe logs can be viewed and downloaded from the plugin ‘Extra Settings’ page. To download the zip, php zip extension is required.\u003Cbr \u002F>\nLog files can be deleted from the ‘WooCommerce -> Status -> Logs’ page. Available logging levels are:\u003Cbr \u002F>\n – None: it disables logging and no logs are saved.\u003Cbr \u002F>\n – Error: only plugin errors are saved.\u003Cbr \u002F>\n – Info: plugin errors and related debug information are saved.\u003C\u002Fp>\n\u003Ch4>Fees\u003C\u002Fh4>\n\u003Cp>For information regarding Paysera fees please visit:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.paysera.com\u002Fv2\u002Fen\u002Ffees\u002Fcheckout-delivery\" rel=\"nofollow ugc\">Paysera Delivery fees >\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.paysera.com\u002Fv2\u002Fen\u002Ffees\u002Fpayment-gateway-fees\" rel=\"nofollow ugc\">Paysera Checkout fees >\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>Paysera Client Support in English is available 24\u002F7!\u003Cbr \u002F>\n+44 20 80996963\u003Cbr \u002F>\nsupport@paysera.com\u003C\u002Fp>\n\u003Cp>During working hours support is available in 12 languages.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.paysera.lt\u002Fv2\u002Fen\u002Fcontacts\" rel=\"nofollow ugc\">Contact us >\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>For the latest news about the Paysera services – follow us on \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fpaysera.international\u002F\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fpaysera\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa>.\u003Cbr \u002F>\nGet notifications about our operational status – subscribe to our \u003Ca href=\"https:\u002F\u002Fpaysera.freshstatus.io\u002F\" rel=\"nofollow ugc\">status page\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>About Paysera\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.paysera.com\u002Fv2\u002Fen\u002Fpaysera-account\" rel=\"nofollow ugc\">Paysera\u003C\u002Fa> is a global fintech company providing financial and related services to clients from all over the world since 2004.\u003C\u002Fp>\n\u003Cp>Explore other Paysera services:\u003Cbr \u002F>\n – \u003Ca href=\"https:\u002F\u002Fwww.paysera.com\u002Fv2\u002Fen\u002Ffees\u002Fcurrency-conversion-calculator#\u002F\" rel=\"nofollow ugc\">currency exchange\u003C\u002Fa> at competitive rates;\u003Cbr \u002F>\n – instant euro and cheap \u003Ca href=\"https:\u002F\u002Fwww.paysera.com\u002Fv2\u002Fen-GB\u002Finternational-transfers\" rel=\"nofollow ugc\">international transfers\u003C\u002Fa>;\u003Cbr \u002F>\n – LT, BG, and RO \u003Ca href=\"https:\u002F\u002Fwww.paysera.com\u002Fv2\u002Fen\u002Fblog\u002Fiban-account\" rel=\"nofollow ugc\">IBANs\u003C\u002Fa> for business and private clients;\u003Cbr \u002F>\n – \u003Ca href=\"https:\u002F\u002Fwww.paysera.com\u002Fv2\u002Fen\u002Fpayment-card-visa\" rel=\"nofollow ugc\">visa cards\u003C\u002Fa> that are compatible with \u003Ca href=\"https:\u002F\u002Fwww.paysera.com\u002Fv2\u002Fen\u002Fblog\u002Fgooglepay-samsungpay\" rel=\"nofollow ugc\">Google Play\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwww.paysera.com\u002Fv2\u002Fen\u002Fapple-pay\" rel=\"nofollow ugc\">Apple Pay\u003C\u002Fa>, and so much more.\u003C\u002Fp>\n\u003Cp>All the main services can be easily managed via the \u003Ca href=\"https:\u002F\u002Fwww.paysera.com\u002Fv2\u002Fen-GB\u002Fmobile-application\" rel=\"nofollow ugc\">Paysera mobile app\u003C\u002Fa>, which is available to download from the \u003Ca href=\"https:\u002F\u002Fapps.apple.com\u002Fus\u002Fapp\u002Fpaysera-mobile-wallet\u002Fid737308884\" rel=\"nofollow ugc\">App Store\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplay.google.com\u002Fstore\u002Fapps\u002Fdetails?id=lt.lemonlabs.android.paysera\" rel=\"nofollow ugc\">Google Play\u003C\u002Fa>, and \u003Ca href=\"https:\u002F\u002Fappgallery.huawei.com\u002F#\u002Fapp\u002FC103007513\" rel=\"nofollow ugc\">Huawei AppGallery\u003C\u002Fa>.\u003C\u002Fp>\n","Paysera payments + delivery",7000,174507,58,16,"2026-03-02T11:36:00.000Z","4.0",[153,154,155,156,157],"international-payments","online-payment","payment","payment-gateway","shipping","https:\u002F\u002Fwww.paysera.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-payment-gateway-paysera.3.11.1.zip",1,"2025-12-04 00:00:00",{"attackSurface":163,"codeSignals":277,"taintFlows":304,"riskAssessment":305,"analyzedAt":322},{"hooks":164,"ajaxHandlers":262,"restRoutes":273,"shortcodes":274,"cronEvents":275,"entryPointCount":276,"unprotectedCount":276},[165,171,175,179,184,188,193,197,201,204,208,210,213,216,219,222,224,226,229,230,232,235,238,241,244,247,250,253,258],{"type":166,"name":167,"callback":168,"file":169,"line":170},"action","before_woocommerce_init","payhere_declare_cart_checkout_blocks_compatibility","block\\class-payhere-block-loader.php",29,{"type":166,"name":172,"callback":173,"file":169,"line":174},"woocommerce_blocks_payment_method_type_registration","closure",46,{"type":166,"name":176,"callback":177,"file":169,"line":178},"woocommerce_blocks_loaded","payhere_register_order_approval_payment_method_type",55,{"type":166,"name":180,"callback":181,"file":182,"line":183},"woocommerce_receipt_payhere","receipt_page","gateway\\class-wcgatewaypayhere.php",217,{"type":166,"name":185,"callback":186,"priority":46,"file":182,"line":187},"woocommerce_thankyou","remove_order_from_thankyou",218,{"type":189,"name":190,"callback":191,"priority":46,"file":182,"line":192},"filter","the_title","order_received_title",221,{"type":189,"name":194,"callback":195,"priority":46,"file":182,"line":196},"woocommerce_thankyou_order_received_text","change_woo_order_received_text",223,{"type":166,"name":198,"callback":173,"file":199,"line":200},"admin_notices","includes\\class-payhere.php",103,{"type":166,"name":198,"callback":202,"file":199,"line":203},"woocommerce_inactive_notice",121,{"type":166,"name":205,"callback":206,"file":199,"line":207},"admin_enqueue_scripts","anonymous",194,{"type":166,"name":205,"callback":206,"file":199,"line":209},195,{"type":189,"name":211,"callback":206,"file":199,"line":212},"plugin_action_links",197,{"type":166,"name":214,"callback":206,"file":199,"line":215},"plugins_loaded",199,{"type":166,"name":217,"callback":206,"file":199,"line":218},"init",214,{"type":189,"name":220,"callback":206,"file":199,"line":221},"query_vars",216,{"type":189,"name":223,"callback":206,"file":199,"line":183},"woocommerce_account_menu_items",{"type":166,"name":225,"callback":206,"file":199,"line":187},"woocommerce_account_saved-cards_endpoint",{"type":166,"name":227,"callback":206,"file":199,"line":228},"wp_enqueue_scripts",220,{"type":166,"name":227,"callback":206,"file":199,"line":192},{"type":166,"name":214,"callback":206,"file":199,"line":231},237,{"type":189,"name":233,"callback":206,"file":199,"line":234},"woocommerce_payment_gateways",239,{"type":189,"name":236,"callback":206,"file":199,"line":237},"woocommerce_register_shop_order_post_statuses",240,{"type":189,"name":239,"callback":206,"file":199,"line":240},"wc_order_statuses",242,{"type":189,"name":242,"callback":206,"file":199,"line":243},"wc_order_is_editable",244,{"type":166,"name":245,"callback":206,"file":199,"line":246},"add_meta_boxes",248,{"type":189,"name":248,"callback":206,"file":199,"line":249},"wcs_view_subscription_actions",250,{"type":189,"name":251,"callback":206,"file":199,"line":252},"user_has_cap",251,{"type":166,"name":254,"callback":255,"priority":74,"file":256,"line":257},"admin_menu","plugin_menu","includes\\class-phcustomerlistoptions.php",45,{"type":166,"name":214,"callback":259,"file":260,"line":261},"payhere_check_upgrade","payhere-payment-gateway.php",93,[263,267,270],{"action":264,"nopriv":265,"callback":206,"hasNonce":265,"hasCapCheck":265,"file":199,"line":266},"payhere_remove_card",false,222,{"action":268,"nopriv":265,"callback":206,"hasNonce":265,"hasCapCheck":265,"file":199,"line":269},"payhere_charge",246,{"action":271,"nopriv":265,"callback":206,"hasNonce":265,"hasCapCheck":265,"file":199,"line":272},"payhere_capture",247,[],[],[],3,{"dangerousFunctions":278,"sqlUsage":279,"outputEscaping":282,"fileOperations":27,"externalRequests":276,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":303},[],{"prepared":280,"raw":27,"locations":281},4,[],{"escaped":283,"rawEcho":284,"locations":285},185,7,[286,289,291,293,295,297,300],{"file":182,"line":287,"context":288},395,"raw output",{"file":182,"line":290,"context":288},998,{"file":182,"line":292,"context":288},1001,{"file":182,"line":294,"context":288},1039,{"file":182,"line":296,"context":288},1041,{"file":298,"line":299,"context":288},"public\\class-payhere-public.php",156,{"file":301,"line":302,"context":288},"public\\partials\\checkout-form-auth.php",34,[],[],{"summary":306,"deductions":307},"The PayHere Payment Gateway plugin, version 2.4.4, exhibits a mixed security posture.  On the positive side, the plugin demonstrates good practices in its handling of SQL queries, exclusively using prepared statements, and a high percentage of properly escaped output, which mitigates common injection and cross-site scripting vulnerabilities.  The absence of dangerous functions and file operations is also a strength.  However, significant concerns arise from the static analysis, particularly the presence of three AJAX handlers that lack any authentication checks. This creates a substantial attack surface that could be exploited by unauthenticated users to trigger potentially sensitive actions within the plugin. The complete absence of nonce and capability checks further exacerbates this risk, making these AJAX endpoints vulnerable to unauthorized access.  While the plugin has a history of medium-severity vulnerabilities, specifically related to missing authorization and exposure of sensitive information, the fact that these are currently unpatched (indicated by the vulnerability history mentioning future dates for resolution, which is unusual and might represent simulated data) is a critical concern that requires immediate attention.  Despite the good practices in SQL and output handling, the unprotected entry points and historical vulnerability patterns suggest a need for significant security improvements to ensure the plugin's robust protection.",[308,311,313,315,317,320],{"reason":309,"points":310},"Unprotected AJAX handlers",15,{"reason":312,"points":13},"Missing nonce checks",{"reason":314,"points":13},"Missing capability checks",{"reason":316,"points":46},"Medium severity CVEs (unpatched)",{"reason":318,"points":319},"Vulnerability type: Missing Authorization",5,{"reason":321,"points":319},"Vulnerability type: Exposure of Sensitive Information","2026-03-16T18:29:59.077Z",{"wat":324,"direct":333},{"assetPaths":325,"generatorPatterns":328,"scriptPaths":329,"versionParams":330},[326,327],"\u002Fwp-content\u002Fplugins\u002Fpayhere-payment-gateway\u002Fpublic\u002Fcss\u002Fpayhere-payment-gateway-public.css","\u002Fwp-content\u002Fplugins\u002Fpayhere-payment-gateway\u002Fpublic\u002Fjs\u002Fpayhere-payment-gateway-public.js",[],[327],[331,332],"payhere-payment-gateway\u002Fpublic\u002Fcss\u002Fpayhere-payment-gateway-public.css?ver=","payhere-payment-gateway\u002Fpublic\u002Fjs\u002Fpayhere-payment-gateway-public.js?ver=",{"cssClasses":334,"htmlComments":338,"htmlAttributes":339,"restEndpoints":343,"jsGlobals":344,"shortcodeOutput":347},[335,336,337],"image-selection-wrapper","add-media","remove-media",[],[340,341,342],"id=\"image-selection-wrapper\"","name=\"woocommerce_payhere_gateway[logo_url]\"","id=\"woocommerce_payhere_gateway[logo_url]\"",[],[345,346],"window.wp.media","window.send_to_editor",[]]