[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fmNkzmc7g6bXa8cOM9k85Ap8uPGzkQ8xZSkLtu_N8PO4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":8,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":38,"analysis":129,"fingerprints":213},"payment-gateway-via-borgun-for-woocommerce","Payment gateway via Teya SecurePay for WooCommerce","1.3.41","tacticais","https:\u002F\u002Fprofiles.wordpress.org\u002Ftacticais\u002F","\u003Cp>Teya SecurePay is a simple and easily integrated payment solution for small businesses. The payment page enables merchants to process online transactions securely with minimal integration. Credit card data is  handled by Teya in a secure manner. SecurePay supports iFrame solutions as well as redirecting the card holder from the merchant’s website to Teya hosted website.\u003Cbr \u002F>\nSecurePay support 3D Secure transactions, both Mastercard SecureCode and Verified by Visa.\u003C\u002Fp>\n\u003Cp>This plugin is maintained and supported by Tactica\u003C\u002Fp>\n","Take payments in your WooCommerce store using the Teya SecurePay Gateway",1000,27830,96,4,"2026-01-22T14:48:00.000Z","6.9.4","4.4","",[20,21,22,23,24],"credit-card","gateway","saltpay","teya","woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpayment-gateway-via-borgun-for-woocommerce.1.3.41.zip",100,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},6,1470,99,30,93,"2026-04-04T02:31:04.726Z",[39,51,71,88,109],{"slug":40,"name":41,"version":42,"author":7,"author_profile":8,"description":43,"short_description":44,"active_installs":26,"downloaded":45,"rating":26,"num_ratings":46,"last_updated":47,"tested_up_to":16,"requires_at_least":17,"requires_php":48,"tags":49,"homepage":8,"download_link":50,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"payment-gateway-via-borgun-rpg-for-woocommerce","Payment gateway via Teya RPG for WooCommerce","1.0.40","\u003Cp>Teya’s Restful Payment Gateway enables merchants to accept payments in a variety of ways. After receiving Public and Private access tokens from Teya you can start accepting payments.\u003Cbr \u002F>\nTeya RPG can be used to charge cards as well as working with transactions such as cancelling and capturing authorizations, refunding transactions and getting information on transactions.\u003Cbr \u002F>\nSupports 3DSecure which is resulting in less chance of fraudulent transactions. 3DSecure is mandatory for ecommerce transactions in Europe.\u003C\u002Fp>\n\u003Cp>This plugin is maintained and supported by Tactica\u003C\u002Fp>\n","Take payments in your WooCommerce store using the Teya Restful Payment Gateway",4644,2,"2025-12-19T08:36:00.000Z","7.0",[20,21,23,24],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpayment-gateway-via-borgun-rpg-for-woocommerce.1.0.40.zip",{"slug":52,"name":53,"version":54,"author":55,"author_profile":56,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":61,"num_ratings":62,"last_updated":63,"tested_up_to":64,"requires_at_least":17,"requires_php":48,"tags":65,"homepage":69,"download_link":70,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"woo-asaas","Asaas Gateway for WooCommerce","2.7.4","Asaas","https:\u002F\u002Fprofiles.wordpress.org\u002Fasaas\u002F","\u003Cp>Use \u003Ca href=\"https:\u002F\u002Fwww.asaas.com\" rel=\"nofollow ugc\">Asaas\u003C\u002Fa> as payment method in your WooCommerce store.\u003C\u002Fp>\n\u003Cp>This plugin is an implementation of \u003Ca href=\"https:\u002F\u002Fasaasv3.docs.apiary.io\" rel=\"nofollow ugc\">Asaas API v3\u003C\u002Fa>. The checkout mechanism is completely transparent. The customer will not go out of your store to finish the order. The data are sent to Asaas service, that process the payment and return its status.\u003C\u002Fp>\n\u003Cp>For any doubt about the plugin installation and integration, please read the FAQ. If it doesn’t solve, use the plugin Support area that we will help you as soon as possible.\u003C\u002Fp>\n","Take transparent credit card and bank ticket payment checkouts on your store using Asaas.",9000,177841,78,17,"2026-03-10T00:36:00.000Z","6.7.5",[66,20,67,68,24],"asaas","payment","payment-gateway","https:\u002F\u002Fwww.asaas.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-asaas.2.7.4.zip",{"slug":72,"name":73,"version":74,"author":75,"author_profile":76,"description":77,"short_description":78,"active_installs":79,"downloaded":80,"rating":81,"num_ratings":82,"last_updated":83,"tested_up_to":16,"requires_at_least":17,"requires_php":84,"tags":85,"homepage":86,"download_link":87,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"payplug","PayPlug for WooCommerce (Official)","2.15.1","Payplug","https:\u002F\u002Fprofiles.wordpress.org\u002Fpayplug\u002F","\u003Cp>\u003Cstrong>What PayPlug does for merchants\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>PayPlug primary goal is to give you the tools you need to sell to your clients, wherever they are.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Simple set up and management\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Safety\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Optimized conversion\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Support\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Our main features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Accept payments\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Fastest set up on the market, with no technical skills required\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Plugin developed by PayPlug, configurable with just a few clicks\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Reception of online credit card payments from CB, Visa, Mastercard, without needing an extra merchant account\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Boost your sales\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Customizable payment page, optimized for mobile devices, integrated or redirected\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>One-click payment with secure card information storage\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Installment payments with Oney. Main benefits: immediately receive the complete amount of the order to enjoy a serene cash flow; Potential frauds and unpaid transactions will be managed by Oney\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Monitor your performances\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Transaction history and accounting records with one click, using the management interface\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Personalized support, in your preferred language\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Do you want to know more about our features? Visit \u003Ca href=\"https:\u002F\u002Fwww.payplug.com\u002Fonline-payment\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.payplug.com\u002Fonline-payment\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PayPlug in general\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>PayPlug is a French omnichannel payment solution dedicated to merchants. It allows you to accept credit card payments both online and in-store.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>10 000 merchants trust PayPlug for their payments\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>800 partners recommend us daily\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>PayPlug offers several plans to suit your needs and business requirements. \u003Cstrong>No set-up fees and no commitment;\u003C\u002Fstrong> you can change your offer whenever you want. More details: \u003Ca href=\"https:\u002F\u002Fwww.payplug.com\u002Fpricing\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.payplug.com\u002Fpricing\u003C\u002Fa>\u003C\u002Fp>\n","PlayPlug is a French payment solution allowing small and medium e-commerce companies to accept online payments from Visa, MasterCard and CB cards.",4000,179297,68,5,"2026-01-12T09:34:00.000Z","5.6",[20,21,67,72,24],"https:\u002F\u002Fwww.payplug.com\u002Fmodules\u002Fwoocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpayplug.2.15.1.zip",{"slug":89,"name":90,"version":91,"author":92,"author_profile":93,"description":94,"short_description":95,"active_installs":96,"downloaded":97,"rating":98,"num_ratings":82,"last_updated":99,"tested_up_to":64,"requires_at_least":100,"requires_php":101,"tags":102,"homepage":105,"download_link":106,"security_score":26,"vuln_count":107,"unpatched_count":27,"last_vuln_date":108,"fetched_at":29},"woocommerce-gateway-eway","Eway Payments for Woo","3.9.2","WooCommerce","https:\u002F\u002Fprofiles.wordpress.org\u002Fwoocommerce\u002F","\u003Cp>The Eway extension for WooCommerce allows you to take credit card payments directly on your store without redirecting your customers to a third party site to make payment. Supports \u003Cstrong>WooCommerce Subscriptions, WooCommerce Refunds API\u003C\u002Fstrong>, as well as \u003Cstrong>token payments\u003C\u002Fstrong>, which allows customers to save credit cards for future purchases. Everything happens on your site without the customer ever leaving.\u003C\u002Fp>\n\u003Cp>The Eway payment gateway for WooCommerce makes use of Eway’s brand new Rapid 3.1 API, it supports \u003Cstrong>3D Secure\u003C\u002Fstrong> and is \u003Cstrong>fully PCI compliant\u003C\u002Fstrong> as per Eway’s specifications and adds support for processing \u003Cstrong>subscription payments\u003C\u002Fstrong> as well as \u003Cstrong>token payments\u003C\u002Fstrong> allowing customers to save credit cards for future purchases.\u003C\u002Fp>\n\u003Cp>By using Eway’s Rapid 3.1 API there is a single endpoint for processing payment, meaning you only need this one extension to take payment through any of Eway’s processing countries, Eway Australia, Eway New Zealand, Eway Singapore, Eway Malaysia, and Eway Hong Kong. Eway uses complex DNS technology to ensure your payment is routed to the correct country.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Ability to host promotional flash sales in real-time\u003C\u002Fli>\n\u003Cli>Generate discount coupons for your customers to help with special promotions\u003C\u002Fli>\n\u003Cli>Product reviews from your customers\u003C\u002Fli>\n\u003Cli>Automatic up-sells and cross-sells\u003C\u002Fli>\n\u003Cli>Intuitive order management suite\u003C\u002Fli>\n\u003C\u002Ful>\n","This is the official WooCommerce extension to take credit card and subscription payments directly on your store with Eway.",3000,156348,64,"2025-10-13T02:29:00.000Z","6.0","7.4",[20,103,21,104,24],"eway","payment-request","https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Feway\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoocommerce-gateway-eway.3.9.2.zip",1,"2023-01-04 00:00:00",{"slug":110,"name":111,"version":112,"author":113,"author_profile":114,"description":115,"short_description":116,"active_installs":11,"downloaded":117,"rating":118,"num_ratings":119,"last_updated":120,"tested_up_to":16,"requires_at_least":121,"requires_php":48,"tags":122,"homepage":125,"download_link":126,"security_score":34,"vuln_count":127,"unpatched_count":27,"last_vuln_date":128,"fetched_at":29},"gestpay-for-woocommerce","Gestpay for WooCommerce","20251211","Fabrick Support","https:\u002F\u002Fprofiles.wordpress.org\u002Feasynolo\u002F","\u003Cp>Axerve Free Plugin for Woocommerce allows you to use \u003Ca href=\"https:\u002F\u002Fwww.axerve.com\u002F\" title=\"Axerve Website\" rel=\"nofollow ugc\">Axerve\u003C\u002Fa> on your WooCommerce-powered website.\u003C\u002Fp>\n\u003Cp>There are four operational modes in this plugin, which depends on Axerve version you are using:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Axerve Starter\u003C\u002Fli>\n\u003Cli>Axerve Professional\u003C\u002Fli>\n\u003Cli>Axerve Professional On Site\u003C\u002Fli>\n\u003Cli>Axerve Professional iFrame\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdocs.axerve.com\u002Fit\u002Fplugin\u002Fwoocommerce\u002F\" title=\"Axerve for WooCommerce - Usage Documentation\" rel=\"nofollow ugc\">Click here to read the full usage documentation on Axerve\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>WooCommerce Blocks Compatibility\u003C\u002Fh4>\n\u003Cp>Starting from version 20251028, the plugin is fully compatible with WooCommerce Blocks checkout. All payment methods are now supported in both classic checkout and blocks checkout modes. There is no need to disable WooCommerce Blocks checkout.\u003C\u002Fp>\n\u003Ch4>Available Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>S2S SOAP (Except callReadTrxS2S and callVerifyCardS2S)\u003C\u002Fli>\n\u003Cli>Tokenization\u003C\u002Fli>\n\u003Cli>3DS1\u003C\u002Fli>\n\u003Cli>3DS2 – Authentication\u003C\u002Fli>\n\u003Cli>3DS2 – Recurring Transactions\u003C\u002Fli>\n\u003Cli>RBA (Risk-Based Authentication)\u003C\u002Fli>\n\u003Cli>PayPal Seller Protection\u003C\u002Fli>\n\u003Cli>WooCommerce Subscriptions support (Recurring payments and subscriptions)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Available Payment Methods\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Credit Cards\u003C\u002Fli>\n\u003Cli>BANCOMAT Pay\u003C\u002Fli>\n\u003Cli>MyBank\u003C\u002Fli>\n\u003Cli>PayPal\u003C\u002Fli>\n\u003Cli>PayPal Billing Agreement\u003C\u002Fli>\n\u003Cli>PayPal Buy Now Pay Later\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Actions and filters list\u003C\u002Fh3>\n\u003Cp>Here is a list of filters and actions used in this plugin:\u003C\u002Fp>\n\u003Ch4>Actions\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>gestpay_before_processing_order\u003C\u002Fli>\n\u003Cli>gestpay_after_order_completed\u003C\u002Fli>\n\u003Cli>gestpay_after_order_failed\u003C\u002Fli>\n\u003Cli>gestpay_after_order_pending\u003C\u002Fli>\n\u003Cli>gestpay_before_order_settle\u003C\u002Fli>\n\u003Cli>gestpay_order_settle_success\u003C\u002Fli>\n\u003Cli>gestpay_order_settle_fail\u003C\u002Fli>\n\u003Cli>gestpay_before_order_refund\u003C\u002Fli>\n\u003Cli>gestpay_order_refund_success\u003C\u002Fli>\n\u003Cli>gestpay_order_refund_fail\u003C\u002Fli>\n\u003Cli>gestpay_before_order_delete\u003C\u002Fli>\n\u003Cli>gestpay_order_delete_success\u003C\u002Fli>\n\u003Cli>gestpay_order_delete_fail\u003C\u002Fli>\n\u003Cli>gestpay_after_s2s_order_failed\u003C\u002Fli>\n\u003Cli>gestpay_on_renewal_payment_failure\u003C\u002Fli>\n\u003Cli>gestpay_my_cards_template_before_table\u003C\u002Fli>\n\u003Cli>gestpay_my_cards_template_after_table\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Filters\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>gestpay_gateway_parameters\u003C\u002Fli>\n\u003Cli>gestpay_encrypt_parameters\u003C\u002Fli>\n\u003Cli>gestpay_settings_tab\u003C\u002Fli>\n\u003Cli>gestpay_my_cards_template\u003C\u002Fli>\n\u003Cli>gestpay_cvv_fancybox\u003C\u002Fli>\n\u003Cli>gestpay_gateway_cards_images\u003C\u002Fli>\n\u003Cli>gestpay_alter_order_id -> this can be used to add, for example, a prefix to the order ID\u003C\u002Fli>\n\u003Cli>gestpay_revert_order_id -> this must be used to revert back the order ID changed with the \u003Ccode>gestpay_alter_order_id\u003C\u002Fcode> filter\u003C\u002Fli>\n\u003Cli>gestpay_s2s_validate_payment_fields\u003C\u002Fli>\n\u003Cli>gestpay_s2s_payment_fields_error_strings\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Third Party Libraries\u003C\u002Fh3>\n\u003Cp>Questo plugin utilizza le seguenti librerie di terze parti:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>SOAP Client – Parte della libreria standard PHP, utilizzata per le comunicazioni con l’API Gestpay\u003C\u002Fli>\n\u003Cli>WooCommerce – Framework e-commerce per WordPress (GPLv3)\u003C\u002Fli>\n\u003Cli>WordPress – CMS principale (GPLv2 o successiva)\u003C\u002Fli>\n\u003Cli>jQuery – Libreria JavaScript per la manipolazione del DOM e la gestione degli eventi (MIT License)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>Questo plugin si connette ai seguenti servizi esterni:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Axerve Payment Gateway (precedentemente Gestpay)\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>– Scopo: Elaborazione dei pagamenti tramite il gateway di Banca Sella\u003Cbr \u002F>\n– Dati inviati: Informazioni sull’ordine, dati del cliente necessari per il pagamento\u003Cbr \u002F>\n– Quando: Durante il processo di pagamento e per le operazioni di gestione degli ordini\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fwww.axerve.com\u002Fprivacy-policy\u003Cbr \u002F>\n– Termini di servizio: https:\u002F\u002Fwww.axerve.com\u002Fterms-conditions\u003C\u002Fp>\n\u003Col>\n\u003Cli>icanhazip.com\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>– Scopo: Identificazione dell’indirizzo IP del server per la configurazione del gateway di pagamento\u003Cbr \u002F>\n– Dati inviati: Nessun dato viene inviato, il servizio risponde solo con l’indirizzo IP pubblico\u003Cbr \u002F>\n– Quando: Solo nell’area amministrativa durante la configurazione del plugin\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fmajor.io\u002Ficanhazip-com-faq\u002F\u003Cbr \u002F>\n– Note: Questo servizio viene utilizzato solo per aiutare gli amministratori a configurare correttamente il gateway di pagamento nel backoffice di Axerve\u003C\u002Fp>\n\u003Col>\n\u003Cli>Script JavaScript di verifica\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>– Scopo: Verifica della compatibilità del browser con il gateway di pagamento\u003Cbr \u002F>\n– Dati inviati: Informazioni sul browser dell’utente per verificare la compatibilità TLS\u003Cbr \u002F>\n– Quando: Durante il processo di pagamento\u003Cbr \u002F>\n– Domini: gestpay.net, gestpay.it, ecomm.sella.it\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fwww.axerve.com\u002Fprivacy-policy\u003C\u002Fp>\n\u003Col>\n\u003Cli>MyBank\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>– Scopo: Integrazione con il sistema di pagamento MyBank\u003Cbr \u002F>\n– Dati inviati: Informazioni necessarie per il pagamento tramite MyBank\u003Cbr \u002F>\n– Quando: Solo quando l’utente sceglie MyBank come metodo di pagamento\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fwww.mybank.eu\u002Fprivacy-policy\u002F\u003Cbr \u002F>\n– Termini di servizio: https:\u002F\u002Fwww.mybank.eu\u002Fterms-and-conditions\u002F\u003C\u002Fp>\n\u003Cp>Server di test e sviluppo\u003Cbr \u002F>\nNel codice di esempio (directory \u003Ccode>sample\u002F\u003C\u002Fcode>) sono presenti riferimenti a domini fittizi (\u003Ccode>site1.it\u003C\u002Fcode> e \u003Ccode>site2.it\u003C\u002Fcode>) utilizzati solo come esempio per dimostrare la configurazione multi-sito. Questi domini sono puramente dimostrativi e non sono utilizzati nel codice di produzione.\u003C\u002Fp>\n","Axerve Free Plugin for Woocommerce extends WooCommerce providing the payment gateway Axerve.",43366,76,9,"2025-12-11T15:15:00.000Z","4.7",[123,20,124,68,24],"axerve","gestpay","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgestpay-for-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgestpay-for-woocommerce.20251211.zip",3,"2024-02-27 00:00:00",{"attackSurface":130,"codeSignals":187,"taintFlows":202,"riskAssessment":203,"analyzedAt":212},{"hooks":131,"ajaxHandlers":183,"restRoutes":184,"shortcodes":185,"cronEvents":186,"entryPointCount":27,"unprotectedCount":27},[132,138,142,147,151,154,158,161,165,170,175,179],{"type":133,"name":134,"callback":135,"file":136,"line":137},"action","before_woocommerce_init","closure","borgun.php",25,{"type":133,"name":139,"callback":140,"priority":27,"file":136,"line":141},"plugins_loaded","borgun_woocommerce_init",34,{"type":143,"name":144,"callback":145,"file":136,"line":146},"filter","woocommerce_payment_gateways","borgun_woocommerce_gateway",42,{"type":133,"name":148,"callback":149,"file":136,"line":150},"woocommerce_cancelled_order","borgun_cancel_order",49,{"type":133,"name":139,"callback":152,"file":136,"line":153},"borgun_woocommerce_textdomain",66,{"type":133,"name":155,"callback":156,"file":136,"line":157},"woocommerce_blocks_loaded","borgun_woocommerce_blocks_support",105,{"type":133,"name":159,"callback":135,"file":136,"line":160},"woocommerce_blocks_payment_method_type_registration",110,{"type":133,"name":162,"callback":163,"file":136,"line":164},"wp_enqueue_scripts","borgun_woocommerce_borgun_assets",119,{"type":133,"name":166,"callback":167,"priority":168,"file":136,"line":169},"wp","borgun_woocommerce_check_borgun_response",10,133,{"type":143,"name":171,"callback":172,"file":173,"line":174},"wcml_gateway_text_keys_to_translate","borgun_text_keys_to_translate","includes\\class-wc-gateway-borgun.php",168,{"type":133,"name":176,"callback":177,"file":173,"line":178},"woocommerce_api_wc_gateway_borgun","handle_webhook_callback",172,{"type":133,"name":180,"callback":181,"priority":119,"file":173,"line":182},"before_woocommerce_pay","checkout_payment_handler",174,[],[],[],[],{"dangerousFunctions":188,"sqlUsage":189,"outputEscaping":191,"fileOperations":27,"externalRequests":107,"nonceChecks":27,"capabilityChecks":46,"bundledLibraries":201},[],{"prepared":27,"raw":27,"locations":190},[],{"escaped":192,"rawEcho":127,"locations":193},11,[194,197,199],{"file":173,"line":195,"context":196},722,"raw output",{"file":173,"line":198,"context":196},817,{"file":173,"line":200,"context":196},823,[],[],{"summary":204,"deductions":205},"The security posture of the \"payment-gateway-via-borgun-for-woocommerce\" plugin v1.3.41 appears to be strong based on the provided static analysis. There are no identified critical or high-severity issues in the code, including dangerous functions, raw SQL queries, or unsanitized taint flows. The plugin demonstrates good practices by exclusively using prepared statements for its SQL queries and employing capability checks for two instances. The absence of identified CVEs and past vulnerabilities further reinforces this positive assessment, suggesting a history of stable and secure development.\n\nHowever, a few areas warrant attention. While the attack surface is currently reported as zero, this could change with future updates, and the lack of any identified entry points might be an anomaly or indicate a very specialized function. The plugin makes one external HTTP request, which, while not inherently a vulnerability, represents a potential point of failure or an avenue for information leakage if not properly secured. Furthermore, with 14 total outputs, 21% are not properly escaped, which could lead to cross-site scripting (XSS) vulnerabilities if the unescaped output is derived from user-controlled input. The absence of nonce checks, while not directly flagged as a vulnerability in this specific analysis, is a common practice for securing actions, especially those that modify data.\n\nIn conclusion, the plugin exhibits a commendable security foundation with no critical flaws or historical vulnerabilities. The strengths lie in its SQL handling and capability checks. The primary areas for improvement and monitoring include ensuring all outputs are properly escaped and carefully managing the external HTTP request. While the current analysis shows no immediate critical risks, vigilance in these areas will maintain its secure status.",[206,208,210],{"reason":207,"points":32},"Outputs not properly escaped",{"reason":209,"points":127},"External HTTP requests detected",{"reason":211,"points":14},"Nonce checks not detected","2026-03-16T18:56:15.872Z",{"wat":214,"direct":221},{"assetPaths":215,"generatorPatterns":217,"scriptPaths":218,"versionParams":219},[216],"\u002Fwp-content\u002Fplugins\u002Fpayment-gateway-via-borgun-for-woocommerce\u002Fassets\u002Fcss\u002Fstyles.css",[],[],[220],"payment-gateway-via-borgun-for-woocommerce\u002Fassets\u002Fcss\u002Fstyles.css?ver=",{"cssClasses":222,"htmlComments":223,"htmlAttributes":224,"restEndpoints":225,"jsGlobals":226,"shortcodeOutput":227},[],[],[],[],[],[]]