Does Payment Gateway for AMERIABANK have any unpatched vulnerabilities?

No. All known vulnerabilities in Payment Gateway for AMERIABANK have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Payment Gateway for AMERIABANK compatible with WordPress 6.5.8?

According to WordPress.org data, Payment Gateway for AMERIABANK 1.2.3 has been tested up to WordPress 6.5.8. Check the plugin's changelog for the latest compatibility information.

Is Payment Gateway for AMERIABANK compatible with PHP 5.6+?

Payment Gateway for AMERIABANK requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Payment Gateway for AMERIABANK updated?

Payment Gateway for AMERIABANK was last updated on Jul 18, 2024. Frequent updates are generally a positive security signal.

What is Payment Gateway for AMERIABANK's security score?

Payment Gateway for AMERIABANK has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Payment Gateway for AMERIABANK Security & Risk Analysis

wordpress.org/plugins/payment-gateway-for-ameriabank

Ողջույն։ Մենք ներկայացնում ենք Payment Gateway for AMERIABANK-ը, որը միջազգային Woocomerce հավելվածի հավելումն է։ Վերջինիս օգնությամբ Դուք կարող եք հե …

100 active installs v1.2.3 PHP 5.6+ WP 4.8+ Updated Jul 18, 2024

ameriaameriabankpayment-system

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Payment Gateway for AMERIABANK Safe to Use in 2026?

Generally Safe

Score 92/100

Payment Gateway for AMERIABANK has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The "payment-gateway-for-ameriabank" v1.2.3 plugin exhibits a mixed security posture. On the positive side, there are no known CVEs, the attack surface appears minimal with no directly exposed AJAX handlers, REST API routes, or shortcodes, and there are no flagged dangerous functions or file operations. The absence of vulnerability history is also a good sign, suggesting a lack of past exploitable issues.

However, several concerning signals emerge from the static analysis. The most significant concern is the presence of SQL queries that are not using prepared statements, indicating a high risk of SQL injection vulnerabilities. Additionally, a substantial percentage of output is not properly escaped, posing a risk of cross-site scripting (XSS) attacks. The complete lack of nonce and capability checks across all entry points is a critical oversight, leaving the plugin vulnerable to various forms of unauthorized actions and privilege escalation. The presence of 6 unsanitized taint flows, even if not classified as critical or high severity in this analysis, warrants attention as it points to potential data handling weaknesses.

In conclusion, while the plugin has a clean vulnerability history and a seemingly small attack surface, the identified technical shortcomings in SQL prepared statements, output escaping, and the complete absence of nonce and capability checks present tangible security risks. These issues require immediate attention to improve the plugin's overall security posture.

Key Concerns

100% of SQL queries use raw SQL
40% of output is not properly escaped
No nonce checks found
No capability checks found
6 unsanitized taint flows found

Vulnerabilities

None known

Payment Gateway for AMERIABANK Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Payment Gateway for AMERIABANK Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

32 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared1 total queries

Output Escaping

60% escaped53 total outputs

Data Flows

6 unsanitized

Data Flow Analysis

6 flows6 with unsanitized paths

hkd_init_ameriabank_gateway_class (includes\main.php:4)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Payment Gateway for AMERIABANK Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 23

filtercron_schedulesconsole\command.php:23

actioninitconsole\command.php:36

actionadmin_initincludes\activate.php:3

filterplugin_localeincludes\language.php:4

actionplugins_loadedincludes\main.php:3

actionwoocommerce_scheduled_subscription_paymentincludes\main.php:108

actionwoocommerce_api_delete_binding_ameriaincludes\main.php:110

actionwoocommerce_api_ameriabank_successfulincludes\main.php:118

actionwoocommerce_api_ameriabank_responseincludes\main.php:123

actionadmin_print_stylesincludes\main.php:127

filterquery_varsincludes\main.php:130

filterwoocommerce_account_menu_itemsincludes\main.php:131

actionwoocommerce_account_cards_endpointincludes\main.php:132

filterwoocommerce_admin_order_actionsincludes\main.php:140

actionadmin_headincludes\main.php:141

actionwoocommerce_order_status_changedincludes\main.php:145

actionwoocommerce_order_edit_statusincludes\main.php:146

actioncronCheckOrderAmeriaincludes\main.php:151

actionwoocommerce_thankyouincludes\thankyou.php:3

filterwoocommerce_payment_gatewayswc-hkdigital-ameriabank-gateway.php:44

actionwoocommerce_blocks_loadedwc-hkdigital-ameriabank-gateway.php:77

actionwoocommerce_blocks_payment_method_type_registrationwc-hkdigital-ameriabank-gateway.php:83

actionbefore_woocommerce_initwc-hkdigital-ameriabank-gateway.php:105

Scheduled Events 1

cronCheckOrderAmeria

Maintenance & Trust

Payment Gateway for AMERIABANK Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8

Last updatedJul 18, 2024

PHP min version5.6

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs100

Alternatives

Payment Gateway for AMERIABANK Alternatives

Payment Gateway for Idram

hk-idram-payment-gateway

Payment Gateway for Idram – միջազգային Woocomerce հավելվածի հավելում է, որը ստեղծում է հնարավորություն` հեշտությամբ ինտեգրել կայքին Իդրամ վճարային համ …

300 No CVEs

Hong Kong FPS Woo Payment

hong-kong-fps-woo-payment

Woocommerce Payment Gateway for Hong Kong Faster Payment System featuring QR Codes for quick payments.

200 No CVEs

Planet Studio Payment Gateway for ArCa

arca-payment-gateway

Accept payments from local & international customers to Armenian banks & Idram via ArCa paycenter for WooCommerce & GiveWP donation plugin.

100 1 CVE

Payment Gateway for Telcell

payment-gateway-for-telcell

Payment Gateway for Telcell-ը միջազգային WooCommerce հարթակի պլագին է, որը հնարավորություն է ստեղծում Ձեր կայքը հեշտությամբ ինտեգրել Telcell վճարային …

100 1 CVE

Payment Gateway for ACBA BANK

wc-hkdigital-acba-gateway

Payment Gateway for ACBA BANK – միջազգային Woocomerce հավելվածի հավելում է, որը ստեղծում է հնարավորություն` հեշտությամբ ինտեգրել կայքին ԱԿԲԱ ԲԱՆԿԻ վճա …

50 No CVEs

Developer Profile

Payment Gateway for AMERIABANK Developer Profile

HK Digital Agency LLC

11 plugins · 660 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

456 days

View full developer profile

Detection Fingerprints

How We Detect Payment Gateway for AMERIABANK

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/payment-gateway-for-ameriabank/assets/images/logo_ameriabank.png

HTML / DOM Fingerprints

CSS Classes

hkd_ameriabank

HTML Comments

<!---->
 * 
 * Սույն հավելման(plugin) պարունակությունը պաշպանված է հեղինակային և հարակից իրավունքների մասին Հայաստանի Հանրապետության օրենսդրությամբ:
 * Արգելվում է պարունակության  վերարտադրումը, տարածումը, նկարազարդումը, հարմարեցումը և այլ ձևերով վերափոխումը,
 * ինչպես նաև այլ եղանակներով օգտագործումը, եթե մինչև նման օգտագործումը ձեռք չի բերվել ԷՅՋԿԱ ԴԻՋԻՏԱԼ ԷՋԵՆՍԻ ՍՊԸ-ի թույլտվությունը:
 * 
 -->

Data Attributes

hkd_ameriabank_checkout_id

FAQ