WP-Safety

Payment Gateway GiveWP Asoriba BusinessPay Security & Risk Analysis

wordpress.org/plugins/payment-gateway-givewp-asoriba-businesspay

BusinessPay is a Ghanaian Payment Gateway Add-on for the GiveWP plugin.

0 active installs v1.2 PHP + WP 5.0+ Updated Unknown
businesspaydonationgivegivewppaymentgateway
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Payment Gateway GiveWP Asoriba BusinessPay Safe to Use in 2026?

Generally Safe

Score 100/100

Payment Gateway GiveWP Asoriba BusinessPay has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs
Risk Assessment

The security posture of the 'payment-gateway-givewp-asoriba-businesspay' plugin v1.2 appears to be generally strong in some areas, but concerning in others. The absence of known CVEs and the use of prepared statements for all SQL queries are positive indicators of good development practices. However, the static analysis reveals significant weaknesses. A low percentage of properly escaped output (32%) suggests a high risk of Cross-Site Scripting (XSS) vulnerabilities. Furthermore, the taint analysis indicates that all analyzed flows have unsanitized paths, with no critical or high severity issues found this time, but this pattern is concerning and suggests potential vulnerabilities if data is not handled carefully. The lack of nonce checks on any entry points, despite having 1 capability check, is also a significant security gap.

Key Concerns

  • Low output escaping percentage
  • Taint analysis shows unsanitized paths
  • No nonce checks on entry points
Vulnerabilities
None known

Payment Gateway GiveWP Asoriba BusinessPay Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Payment Gateway GiveWP Asoriba BusinessPay Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
13
6 escaped
Nonce Checks
0
Capability Checks
1
File Operations
0
External Requests
2
Bundled Libraries
0

Output Escaping

32% escaped19 total outputs
Data Flows
4 unsanitized

Data Flow Analysis

4 flows4 with unsanitized paths
businesspay_render_frontend_form_notices (includes\class-give-businesspay.php:31)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Payment Gateway GiveWP Asoriba BusinessPay Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 15
actioninitclass-businesspay-givewp.php:87
filtergive_payment_gatewaysincludes\class-give-businesspay.php:21
filtergive_get_settings_gatewaysincludes\class-give-businesspay.php:23
filtergive_get_sections_gatewaysincludes\class-give-businesspay.php:24
actiongive_donation_form_before_cc_formincludes\class-give-businesspay.php:25
actiongive_payment_mode_after_gatewaysincludes\class-give-businesspay.php:26
actiongive_payment_mode_topincludes\class-give-businesspay.php:27
actiongive_pre_formincludes\class-give-businesspay.php:28
actiongive_after_cc_fieldsincludes\class-give-businesspay.php:266
actionadmin_noticesincludes\give-businesspay-activation.php:15
actionadmin_noticesincludes\give-businesspay-activation.php:31
actionadmin_initincludes\give-businesspay-activation.php:73
filterplugin_row_metaincludes\give-businesspay-activation.php:152
actionplugins_loadedpayment-gateway-givewp-asoriba-businesspay.php:22
filterpage_templatepayment-gateway-givewp-asoriba-businesspay.php:25
Maintenance & Trust

Payment Gateway GiveWP Asoriba BusinessPay Maintenance & Trust

Maintenance Signals

WordPress version tested6.2.9
Last updatedUnknown
PHP min version
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Payment Gateway GiveWP Asoriba BusinessPay Alternatives

GiveWP Donation Widgets for Elementor

GiveWP Donation Widgets for Elementor

givewp-donation-widgets-for-elementor

A
100

A GiveWP add-on which allows you to embed any GiveWP shortcode into your Elementor-powered pages.

7K No CVEs
Give – Paystack Gateway

Give – Paystack Gateway

paystack-for-give

A
100

Fundraise with Paystack and GiveWP.

1K No CVEs
Give – Divi Donation Modules

Give – Divi Donation Modules

give-donation-modules-for-divi

A
91

A GiveWP add-on which allows you to embed any GiveWP shortcode into your Divi-powered pages.

600 1 CVE
LSX PayFast Gateway for Give

LSX PayFast Gateway for Give

lsx-give-payfast-gateway

A
85

PayFast payment gateway for Give.

200 No CVEs
Give – Double the Donation

Give – Double the Donation

give-double-the-donation

A
100

Empower your GiveWP donors to have their company match their donations with the most powerful Company Matching platform: Double the Donation.

100 No CVEs
Developer Profile

Payment Gateway GiveWP Asoriba BusinessPay Developer Profile

C-Metric

5 plugins · 550 total installs

91
trust score
Avg Security Score
95/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Payment Gateway GiveWP Asoriba BusinessPay

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/payment-gateway-givewp-asoriba-businesspay/images/Asoriba_logo.png

HTML / DOM Fingerprints

CSS Classes
visa_master_businesspaybusinesspay_error
Data Attributes
id="businesspay_error"name="give_businesspay_mobile"id="give_businesspay_mobile"
JS Globals
window.setTimeoutjQuery
Shortcode Output
BusinessPay Thank youDonation Thank you
FAQ

Frequently Asked Questions about Payment Gateway GiveWP Asoriba BusinessPay