Does Payment Gateway for PhonePe and for Woocommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Payment Gateway for PhonePe and for Woocommerce compatible with WordPress 7.0?

According to WordPress.org data, Payment Gateway for PhonePe and for Woocommerce 1.0.11 has been tested up to WordPress 7.0. Check the plugin's changelog for the latest compatibility information.

Is Payment Gateway for PhonePe and for Woocommerce compatible with PHP 7.4+?

Payment Gateway for PhonePe and for Woocommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is Payment Gateway for PhonePe and for Woocommerce's security score?

Payment Gateway for PhonePe and for Woocommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Payment Gateway for PhonePe and for Woocommerce Security & Risk Analysis

wordpress.org/plugins/payment-gateway-for-phonepe-and-for-woocommerce

Accept payments through UPI, Cards, and Net Banking — developed by an official PhonePe Partner.

800 active installs v1.0.11 PHP 7.4+ WP 5.0+ Updated Apr 16, 2026

paymentsphonepeupiwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Payment Gateway for PhonePe and for Woocommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Payment Gateway for PhonePe and for Woocommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The plugin exhibits a generally good security posture with some notable areas for improvement. The code analysis reveals a small attack surface with only two entry points, one of which lacks authentication checks. This unprotected AJAX handler is a significant concern, as it could potentially be exploited by unauthenticated users. However, the plugin demonstrates strong adherence to secure coding practices in other areas, such as using prepared statements for all SQL queries and a high percentage of properly escaped output. The complete absence of recorded vulnerabilities and CVEs is a positive indicator, suggesting a history of responsible development and maintenance. While the lack of known vulnerabilities is reassuring, the presence of an unprotected AJAX endpoint remains a critical weakness that requires immediate attention to mitigate potential risks.

Key Concerns

Unprotected AJAX handler
Flow with unsanitized paths
File operations present
External HTTP requests present

Vulnerabilities

None known

Payment Gateway for PhonePe and for Woocommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Payment Gateway for PhonePe and for Woocommerce Release Timeline

v1.0.11Current

v1.0.10

v1.0.9

v1.0.8

v1.0.7

v1.0.6

v1.0.5

v1.0.4

v1.0.3

v1.0.2

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

Payment Gateway for PhonePe and for Woocommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

65 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

89% escaped73 total outputs

Data Flows · Security

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

pgppw_phonepe_process_payment (includes\class-pgppw-gateway.php:461)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Payment Gateway for PhonePe and for Woocommerce Attack Surface

Entry Points2

Unprotected1

AJAX Handlers 2

authwp_ajax_easy_phonepe_send_deactivationadmin\class-pgppw-admin.php:13

authwp_ajax_pgppw_handle_review_actionincludes\class-pgppw-gateway.php:40

WordPress Hooks 16

actionadmin_footeradmin\class-pgppw-admin.php:11

actionadmin_enqueue_scriptsadmin\class-pgppw-admin.php:12

actionadmin_noticesincludes\class-pgppw-gateway.php:39

actionadmin_enqueue_scriptsincludes\class-pgppw-gateway.php:41

filtersafe_style_cssincludes\class-pgppw-gateway.php:42

actionwoocommerce_api_pgppw_webhookincludes\class-pgppw-webhook.php:14

filterwoocommerce_payment_gatewaysincludes\class-pgppw.php:18

filterplugin_row_metaincludes\class-pgppw.php:21

filterwoocommerce_available_payment_gatewaysincludes\class-pgppw.php:22

actionwp_enqueue_scriptsincludes\class-pgppw.php:23

actionwp_enqueue_scriptsincludes\class-pgppw.php:24

actionadmin_enqueue_scriptsincludes\class-pgppw.php:55

actionbefore_woocommerce_initpayment-gateway-for-phonepe-and-for-woocommerce.php:64

actionwoocommerce_blocks_loadedpayment-gateway-for-phonepe-and-for-woocommerce.php:71

actionwoocommerce_blocks_payment_method_type_registrationpayment-gateway-for-phonepe-and-for-woocommerce.php:77

actionadmin_initpayment-gateway-for-phonepe-and-for-woocommerce.php:89

Maintenance & Trust

Payment Gateway for PhonePe and for Woocommerce Maintenance & Trust

Maintenance Signals

WordPress version tested7.0

Last updatedApr 16, 2026

PHP min version7.4

Downloads6K

Community Trust

Rating100/100

Number of ratings1

Active installs800

Alternatives

Payment Gateway for PhonePe and for Woocommerce Alternatives

PhonePe Payment Solutions

phonepe-payment-solutions

100

Using this plugin you can accept payments through PhonePe. After activating this plugin, you can see the PhonePe option linked to the checkout page of …

20K 1 CVE

Razorpay Payment Links for WooCommerce

rzp-woocommerce

100

The easiest and most secure solution to collect payments with WooCommerce. Allow customers to securely pay via Razorpay (Credit/Debit Cards, NetBankin …

1K No CVEs

Knit Pay UPI – Paytm for Business, PhonePe Business, BharatPe, HDFC

knit-pay-upi

100

Knit Pay UPI simplifies UPI QR code integration for your website and updates the payment status as soon as your customer completes the transaction.

300 No CVEs

Integrate PhonePe with WooCommerce

wc-phonepe

Allows customers to use PhonePe payment gateway with the WooCommerce Plugin.

200 No CVEs

FM: QR Code Gateway for WooCommerce

fm-qr-code-gateway

100

Accept UPI payments via QR code in WooCommerce. Customers enter Transaction ID at checkout. Lightweight & easy to configure.

30 No CVEs

Developer Profile

Payment Gateway for PhonePe and for Woocommerce Developer Profile

Easy Payment

6 plugins · 11K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

38 days

View full developer profile

Detection Fingerprints

How We Detect Payment Gateway for PhonePe and for Woocommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/payment-gateway-for-phonepe-and-for-woocommerce/admin/feedback/css/deactivation-feedback-modal.css/wp-content/plugins/payment-gateway-for-phonepe-and-for-woocommerce/admin/feedback/js/deactivation-feedback-modal.js

Script Paths

/wp-content/plugins/payment-gateway-for-phonepe-and-for-woocommerce/admin/feedback/js/deactivation-feedback-modal.js

Version Parameters

payment-gateway-for-phonepe-and-for-woocommerce/admin/feedback/css/deactivation-feedback-modal.css?ver=payment-gateway-for-phonepe-and-for-woocommerce/admin/feedback/js/deactivation-feedback-modal.js?ver=payment-gateway-for-phonepe-and-for-woocommerce/css/pgppw-admin.css?ver=payment-gateway-for-phonepe-and-for-woocommerce/js/pgppw-admin.js?ver=

HTML / DOM Fingerprints

Data Attributes

easy_pgppw_for_woocommerce_redirect

JS Globals

phonepe_feedback_form_ajax_data

FAQ