[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f0PFh7S8UvVrFhAjDKJHUGYuRC83XR8hPtO9P7QZ6t3g":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":49,"crawl_stats":38,"alternatives":56,"analysis":114,"fingerprints":262},"phonepe-payment-solutions","PhonePe Payment Solutions","3.0.4","PhonePe","https:\u002F\u002Fprofiles.wordpress.org\u002Fphonepemerchantpgplugin\u002F","\u003Cp>Using this plugin you can accept payments through PhonePe. After activating this plugin, you can see the PhonePe option linked to the checkout page of woocommerce site. On configuring with the provided Merchant credentials, you can enable this plugin in Preprod\u002FProduction environment.\u003C\u002Fp>\n\u003Ch3>Compatibilities and Dependencies\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress v5.4.1 or higher\u003C\u002Fli>\n\u003Cli>WooCommerce v4.14 or higher\u003C\u002Fli>\n\u003Cli>PHP v8.2 or higher (For lower PHP versions, please download plugin version v2.0.11 from the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fphonepe-payment-solutions\u002Fadvanced\u002F\" rel=\"ugc\">Advanced View\u003C\u002Fa> section.)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Getting Started\u003C\u002Fh3>\n\u003Cp>New to PhonePe Payment Gateway? Follow the below steps to access PhonePe Merchant Dashboard.\u003C\u002Fp>\n\u003Ch3>Registration and Login\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Check your registered email ID for an email from no-reply@phonepe.com with the subject line: “PhonePe dashboard access – “. This email contains a link to the login page.\u003C\u002Fli>\n\u003Cli>Click the link and enter your registered Email ID or phone number.\u003C\u002Fli>\n\u003Cli>You can log in using either the OTP option or by setting up a password via the Forgot Password option.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Note: PhonePe will provide Merchant ID, Client ID, and Client Secret for both test and live modes. No money is deducted from your account in test mode.\u003Cbr \u002F>\nIf you haven’t registered yet, you can \u003Ca href=\"https:\u002F\u002Fbusiness.phonepe.com\u002Fregister?utm_source=plugin_website_woocommerce\" rel=\"nofollow ugc\">sign up\u003C\u002Fa> here.\u003C\u002Fp>\n\u003Ch3>Plugin Installation\u003C\u002Fh3>\n\u003Cp>There are 2 ways of installing the PhonePe payment gateway plugin:-\u003Cbr \u002F>\ni)  Download the plugin repository from https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fphonepe-payment-solutions\u002F\u003Cbr \u002F>\n            OR\u003Cbr \u002F>\nii) Install the plugin directly from the WordPress dashboard\u003C\u002Fp>\n\u003Cp>Note: In case you have installed the plugin directly from the wordpress dashboard, skip to Configuration. In case you have downloaded the repository from here, follow the steps below to complete the installation.\u003C\u002Fp>\n\u003Ch3>Steps after downloading the plugin\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Unzip and open the downloaded folder.\u003C\u002Fli>\n\u003Cli>Upload all plugin files in “wp-content\u002Fplugins\u002F” directory\u003C\u002Fli>\n\u003Cli>Install and activate the plugin from WordPress admin panel\u003C\u002Fli>\n\u003Cli>Visit the WooCommerce > Settings page to configure PhonePe Payment Solutions\u003C\u002Fli>\n\u003Cli>Your PhonePe Payment Gateway plugin is now setup. You can now accept payments through PhonePe.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>Activate the Plugin\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Log into your WordPress admin and activate the PhonePe Payment Solutions plugin in the WordPress Plugin Manager.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Configure WooCommerce Settings\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Log into your WooCommerce Webstore account.\u003C\u002Fli>\n\u003Cli>Navigate to Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Checkout\u002FPayment Gateways tab.\u003C\u002Fli>\n\u003Cli>Scroll down to the Checkout page and go to the PhonePe Payment Solutions settings under Gateway Display.\u003C\u002Fli>\n\u003Cli>Click on PhonePe Payment Solutions to edit the settings.\u003C\u002Fli>\n\u003Cli>If PhonePe is not listed, ensure the plugin is activated in the WordPress Plugin Manager.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Enter Credentials Based on Plugin Version\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>For Plugin Version 3.0.1 and Later:\u003C\u002Fp>\n\u003Cp>Fill in the following credentials.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Enable – Check the box to enable PhonePe payments.\u003C\u002Fli>\n\u003Cli>Client Id – Staging\u002FProduction Client ID provided by PhonePe.\u003C\u002Fli>\n\u003Cli>API Key – Staging\u002FProduction Client Secret provided by PhonePe.\u003C\u002Fli>\n\u003Cli>Client Version – Staging\u002FProduction client version provided by PhonePe\u003C\u002Fli>\n\u003Cli>Environment – Select the environment type (Staging\u002FProduction).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>For Plugin Version 2.0.11 and Earlier:\u003C\u002Fp>\n\u003Cp>Fill in the following credentials.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Enable – Enable check box\u003C\u002Fli>\n\u003Cli>Merchant ID – Staging\u002FProduction MID provided by PhonePe\u003C\u002Fli>\n\u003Cli>Salt Key – Staging\u002FProduction Key provided by PhonePe\u003C\u002Fli>\n\u003Cli>Salt Key Index – Staging\u002FProduction provided by PhonePe\u003C\u002Fli>\n\u003Cli>Environment – Select environment type\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Your PhonePe payment gateway is now enabled, and you can start accepting payments through PhonePe.\u003Cbr \u002F>\nNeed Help?\u003Cbr \u002F>\nIf you encounter any integration issues, please create a support ticket from your \u003Ca href=\"https:\u002F\u002Fbusiness.phonepe.com\u002Fdashboard\" rel=\"nofollow ugc\">PhonePe Merchant Dashboard\u003C\u002Fa> for assistance.\u003C\u002Fp>\n","Using this plugin you can accept payments through PhonePe. After activating this plugin, you can see the PhonePe option linked to the checkout page of &hellip;",20000,147617,52,11,"2025-08-04T10:04:00.000Z","6.7.5","","8.2",[20,21,22,23,24],"paywithphonepe","phonepe","phonepe-payments","phonepe-plugin","phonepe-woocommerce","https:\u002F\u002Fgithub.com\u002FPhonePe\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fphonepe-payment-solutions.3.0.4.zip",100,1,0,"2023-03-13 00:00:00","2026-03-15T15:16:48.613Z",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2022-45835","phonepe-payment-solutions-authenticated-subscriber-server-side-request-forgery","PhonePe Payment Solutions \u003C= 1.0.15 - Authenticated (Subscriber+) Server-Side Request Forgery","The PhonePe Payment Solutions plugin for WordPress is vulnerable to Server-Side Request Forgery in versions up to, and including, 1.0.15. This can allow authenticated attackers with subscriber-level privileges to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.",null,"\u003C=1.0.15","2.0.0","medium",5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:N\u002FI:L\u002FA:N","Server-Side Request Forgery (SSRF)","2024-01-22 19:56:02",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F8f24f7e2-2516-4f4d-955f-f3f6001cbce7?source=api-prod",316,{"slug":50,"display_name":7,"profile_url":8,"plugin_count":51,"total_installs":52,"avg_security_score":53,"avg_patch_time_days":48,"trust_score":54,"computed_at":55},"phonepemerchantpgplugin",2,20070,93,74,"2026-04-05T03:12:51.797Z",[57,79,98],{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":76,"download_link":77,"security_score":78,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"wc-phonepe","Integrate PhonePe with WooCommerce","1.2.1","Sarankumar","https:\u002F\u002Fprofiles.wordpress.org\u002Fsarankumar\u002F","\u003Cp>This plugin help shop owners to accept payments through the PhonePe payment gateway.\u003C\u002Fp>\n\u003Cp>It uses a seamless integration, allowing the customer to pay on your website.\u003C\u002Fp>\n\u003Cp>Use this \u003Ca href=\"https:\u002F\u002Fdemo.sevengits.com\u002Fphonepe-woocommerce\u002F\" rel=\"nofollow ugc\">Demo link\u003C\u002Fa> to see how it works!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>With this plugin, you can simplifying Desktop Checkout with QR\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>For users making web payments on a desktop, PhonePe ease the process by using a QR code. Once users select PhonePe, instead of asking for their VPA, PhonePe shows a dynamic QR code. This code can be scanned using any UPI app to complete the payment.\u003Cbr \u002F>\n\u003Cstrong>Test Mode Credentials\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Merchant Id : PGTESTPAYUAT\u003C\u002Fp>\n\u003Cp>SaltKey : 099eb0cd-02cf-4e2a-8aca-3e6c6aff0399\u003C\u002Fp>\n\u003Cp>SaltKey Index : 1\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Test Card Details\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Debit Card\u003C\u002Fstrong>\u003Cbr \u002F>\n“card_number”: “4622943126146407”,\u003Cbr \u002F>\n“card_type”: “DEBIT_CARD”,\u003Cbr \u002F>\n“card_issuer”: “VISA”,\u003Cbr \u002F>\n“expiry_month”: 12,\u003Cbr \u002F>\n“expiry_year”: 2023,\u003Cbr \u002F>\n“cvv”: “936”\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Credit Card\u003C\u002Fstrong>\u003Cbr \u002F>\n“card_number”: “4208585190116667”,\u003Cbr \u002F>\n“card_type”: “CREDIT_CARD”,\u003Cbr \u002F>\n“card_issuer”: “VISA”,\u003Cbr \u002F>\n“expiry_month”: 06,\u003Cbr \u002F>\n“expiry_year”: 2027,\u003Cbr \u002F>\n“cvv”: “508”\u003C\u002Fp>\n\u003Cp>👍\u003Cbr \u002F>\nNote: The OTP to be used on the Bank Page: 123456\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How to verify Net Banking Flow\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Always use “bankId”: “SBIN” for testing purposes in the request payload of PAY API.\u003C\u002Fp>\n\u003Cp>Username: test\u003Cbr \u002F>\nPassword: test\u003Cbr \u002F>\nand click “Submit” on the next screen.\u003C\u002Fp>\n\u003Cp>🚧\u003Cbr \u002F>\nNote: For testing transactions, the lower amount limit is defined as Rs.1\u002F- and the upper amount limit is defined as Rs.1000\u002F-. Please make sure your transaction requests are within these limits.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WHY PHONEPE?\u003C\u002Fstrong>\u003Cbr \u002F>\n– Trusted by 304 million Registered Users\u003Cbr \u002F>\n– Accepted in over 12,000 Towns in India\u003Cbr \u002F>\n– Accepted at over 20 Million Stores and more\u003C\u002Fp>\n\u003Cp>\u003Cem>Use the official PhonePe \u003Ca href=\"https:\u002F\u002Fwww.phonepe.com\u002Fbusiness-solutions\u002Fregister\u002F\" rel=\"nofollow ugc\">registration link\u003C\u002Fa> to enable lightning-fast payments on your WooCommerce website!\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Upon registering on PhonePe, you will receive your SaltKey, Merchant ID, and SaltKey Index via email.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Disclaimer: PhonePe, PhonePe’s logo and all terms and logos marked with a ™ or ®, are Trademarks or registered Trademarks of \u003Ca href=\"https:\u002F\u002Fwww.phonepe.com\u002F\" rel=\"nofollow ugc\">PhonePe\u003C\u002Fa>. All other Trademarks and logos or registered Trademarks and logos found on the plugin or mentioned herein belong to their respective owners.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Order Approval for Woocommerce \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Forder-approval-woocommerce\u002F\" title=\"order approval for woocommerce free\" rel=\"ugc\">free\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fsevengits.com\u002Fplugin\u002Forder-approval-woocommerce-pro\u002F\" title=\"order approval for woocommerce pro\" rel=\"nofollow ugc\">pro\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fdemo.sevengits.com\u002Forder-approval-woocommerce\u002F\" title=\"order approval for woocommerce demo\" rel=\"nofollow ugc\">demo\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Dokan Order Approval \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fdokan-order-approval\u002F\" title=\"dokan order approval free\" rel=\"ugc\">free\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fsevengits.com\u002Fplugin\u002Fdokan-order-approval-pro\u002F\" title=\"dokan order approval pro\" rel=\"nofollow ugc\">pro\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fdemo.sevengits.com\u002Fdokan-order-approval\u002F\" title=\"dokan order approval demo\" rel=\"nofollow ugc\">demo\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Order Approval for MultiVendorX \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Forder-approval-for-multivendorx\u002F\" title=\"Order Approval for MultiVendorX free\" rel=\"ugc\">free\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fsevengits.com\u002Fplugin\u002Forder-approval-for-multivendorx-pro\u002F\" title=\"Order Approval for MultiVendorX pro\" rel=\"nofollow ugc\">pro\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fdemo.sevengits.com\u002Forder-approval-for-multivendorx-pro\u002F\" title=\"Order Approval for MultiVendorX demo\" rel=\"nofollow ugc\">demo\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Order approval for WCFM \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Forder-approval-for-wcfm\u002F\" title=\"Order approval for WCFM free\" rel=\"ugc\">free\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fsevengits.com\u002Fplugin\u002Forder-approval-for-wcfm-pro\u002F\" title=\"Order approval for WCFM pro\" rel=\"nofollow ugc\">pro\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fdemo.sevengits.com\u002Forder-approval-for-wcfm-pro\u002F\" title=\"Order approval for WCFM demo\" rel=\"nofollow ugc\">demo\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Checkout Location Picker for WooCommerce \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsg-checkout-location-picker\u002F\" title=\"Checkout Location Picker for WooCommerce free\" rel=\"ugc\">free\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fsevengits.com\u002Fplugin\u002Fsg-checkout-location-picker-pro\u002F\" title=\"Checkout Location Picker for WooCommerce pro\" rel=\"nofollow ugc\">pro\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fdemo.sevengits.com\u002Fsg-checkout-location-picker\u002F\" title=\"Checkout Location Picker for WooCommerce demo\" rel=\"nofollow ugc\">demo\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Chikkili- Google Pay India for Woocommerce \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fchikkili-google-pay-for-woocommerce\u002F\" title=\"Chikkili- Google Pay India for Woocommerce free\" rel=\"ugc\">free\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fsevengits.com\u002Fplugin\u002Fchikkili-google-pay-for-woocommerce-pro\u002F\" title=\" Chikkili- Google Pay India for Woocommerce pro\" rel=\"nofollow ugc\">pro\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fdemo.sevengits.com\u002Fchikkili-google-pay-for-woocommerce\u002F\" title=\" Chikkili- Google Pay India for Woocommerce demo\" rel=\"nofollow ugc\">demo\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Map to Address \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmap-to-address\u002F\" title=\"Map to Address free\" rel=\"ugc\">free\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fsevengits.com\u002Fplugin\u002Fmap-to-address-pro\u002F\" title=\"map to address  plugin pro\" rel=\"nofollow ugc\">pro\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fdemo.sevengits.com\u002Fmap-to-address-pro\u002F\" title=\"Reverse Geocoding  plugin demo\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Allows customers to use PhonePe payment gateway with the WooCommerce Plugin.",200,17317,60,4,"2024-01-25T07:13:00.000Z","6.4.8","3.0","5.4",[21,23,24,74,75],"upi","upi-payment","https:\u002F\u002Fsevengits.com\u002Fplugin\u002Fphonepe","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-phonepe.1.2.1.zip",85,{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":27,"num_ratings":28,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":92,"tags":93,"homepage":96,"download_link":97,"security_score":27,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"payment-gateway-for-phonepe-and-for-woocommerce","Payment Gateway for PhonePe and for Woocommerce","1.0.11","Easy Payment","https:\u002F\u002Fprofiles.wordpress.org\u002Feasypayment\u002F","\u003Cp>🚀 Payment Gateway for PhonePe and for Woocommerce allows you to accept payments through PhonePe UPI, Wallet, Cards, and Net Banking, providing customers with a quick and secure checkout experience. \u003Cstrong>Developed by an Official PhonePe Partner\u003C\u002Fstrong>, this plugin ensures high performance and reliability.\u003C\u002Fp>\n\u003Ch4>Key Features:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Multiple Payment Options: Accept payments via UPI, Wallet, Cards, and Net Banking.  \u003C\u002Fli>\n\u003Cli>Seamless Checkout: Smooth, mobile-optimized checkout experience.  \u003C\u002Fli>\n\u003Cli>Secure Transactions: PCI DSS compliance with end-to-end encryption.  \u003C\u002Fli>\n\u003Cli>Real-Time Order Updates: Instant order status synchronization.  \u003C\u002Fli>\n\u003Cli>Fast Integration: Easy setup without coding skills.  \u003C\u002Fli>\n\u003Cli>PhonePe Sign-up: Highlighted PhonePe sign-up option for new customers.  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Why Choose PhonePe?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Increase Conversions: Fast UPI payments reduce cart abandonment rates.  \u003C\u002Fli>\n\u003Cli>Trusted & Secure: One of India’s most trusted payment methods.  \u003C\u002Fli>\n\u003Cli>Quick Settlements: Receive payments faster with low transaction fees.  \u003C\u002Fli>\n\u003Cli>Wide Reach: Accept payments from millions of PhonePe users.  \u003C\u002Fli>\n\u003Cli>Exclusive Benefits for PhonePe Merchants: Enjoy special offers for PhonePe business account holders.  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>PhonePe is supported for transactions within India and in INR currency only.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to the official PhonePe payment gateway APIs to process payments, verify transaction statuses, and manage refunds for WooCommerce orders.\u003C\u002Fp>\n\u003Cp>It sends the following data to PhonePe:\u003Cbr \u002F>\n– Merchant ID, order ID, and transaction ID when initiating or verifying payments\u003Cbr \u002F>\n– Payment amount and UPI intent when the customer proceeds with checkout\u003Cbr \u002F>\n– Refund request details including merchant refund ID and amount (if applicable)\u003C\u002Fp>\n\u003Cp>The plugin communicates with the following API endpoints:\u003Cbr \u002F>\n– https:\u002F\u002Fapi.phonepe.com\u002Fapis\u002Fidentity-manager\u003Cbr \u002F>\n– https:\u002F\u002Fapi.phonepe.com\u002Fpg\u002Fv1\u002Fstatus\u002F{merchantId}\u002F{transactionId}\u003Cbr \u002F>\n– https:\u002F\u002Fapi.phonepe.com\u002Fcheckout\u002Fv2\u002Forder\u002F{merchantOrderId}\u002Fstatus\u003Cbr \u002F>\n– https:\u002F\u002Fapi.phonepe.com\u002Fpayments\u002Fv2\u002Frefund\u002F{merchantRefundId}\u002Fstatus\u003Cbr \u002F>\n– https:\u002F\u002Fapi-preprod.phonepe.com\u002Fapis\u002Fpg-sandbox (Sandbox\u002Ftesting environment)\u003C\u002Fp>\n\u003Cp>All data transfers are securely handled over HTTPS. The plugin does not store or retain any personal user data.\u003C\u002Fp>\n\u003Cp>External Service Provider: PhonePe\u003Cbr \u002F>\n– Website: https:\u002F\u002Fwww.phonepe.com\u003Cbr \u002F>\n– Merchant Registration: https:\u002F\u002Feasypaymentplugins.com\u002Fphonepe-signup\u003Cbr \u002F>\n– Terms of Service: https:\u002F\u002Fwww.phonepe.com\u002Ftermsandconditions.html\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fwww.phonepe.com\u002Fprivacy-policy.html\u003C\u002Fp>\n","Accept payments through UPI, Cards, and Net Banking — developed by an official PhonePe Partner.",800,5301,"2026-02-04T11:01:00.000Z","6.9.4","5.0","7.4",[94,21,74,95],"payments","woocommerce","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpayment-gateway-for-phonepe-and-for-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpayment-gateway-for-phonepe-and-for-woocommerce.1.0.11.zip",{"slug":99,"name":100,"version":101,"author":7,"author_profile":8,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":29,"num_ratings":29,"last_updated":106,"tested_up_to":107,"requires_at_least":101,"requires_php":108,"tags":109,"homepage":25,"download_link":113,"security_score":78,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"phonepe-checkout-solutions","PhonePe Express Checkout","1.2.0","\u003Cp>Accelerate your business growth with our all new faster and effortless – Express checkout, which is optimized to provide high order conversion.\u003C\u002Fp>\n\u003Ch4>WHAT IS PHONEPE CHECKOUT ?\u003C\u002Fh4>\n\u003Cp>Offer a Fast and Efficient checkout experience for our merchant partners and their consumers. The checkout will help consumers complete order placement effortlessly, seamlessly and in no time, which will further accelerate the Growth of our merchant partners. The PhonePe Checkout button can be added either on the Product Page and\u002For the Cart Page.\u003C\u002Fp>\n\u003Ch4>The Express Advantage\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>40% Increase in Conversions – Sell more & amplify conversions by reducing customer drop offs during the payment process.\u003C\u002Fli>\n\u003Cli>40%  Reduction in RTO Orders – Get access to trustworthy shoppers with millions of verified addresses & phone numbers, resulting in reduced return orders. \u003C\u002Fli>\n\u003Cli>2x Faster Checkout – No OTPs or passwords required! Millions of addresses & payment details are saved for an express checkout\u003C\u002Fli>\n\u003Cli>Plug & Play – Get started within a few minutes with our no-code solution. It’s that easy!\u003C\u002Fli>\n\u003C\u002Ful>\n","Boost sales & unlock express growth for your business!",70,2977,"2023-01-25T11:06:00.000Z","6.1.10","5.6",[110,111,112,21,95],"checkout","express","payment","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fphonepe-checkout-solutions.zip",{"attackSurface":115,"codeSignals":232,"taintFlows":248,"riskAssessment":249,"analyzedAt":261},{"hooks":116,"ajaxHandlers":209,"restRoutes":210,"shortcodes":229,"cronEvents":230,"entryPointCount":231,"unprotectedCount":231},[117,123,127,133,137,139,143,147,151,155,159,162,166,170,174,178,182,185,188,192,196,201,205,208],{"type":118,"name":119,"callback":120,"priority":29,"file":121,"line":122},"action","plugins_loaded","ppex_woocommerce_phonepe_init","index.php",47,{"type":118,"name":124,"callback":125,"file":121,"line":126},"the_content","phonepe_show_message",64,{"type":128,"name":129,"callback":130,"priority":131,"file":121,"line":132},"filter","the_title","woo_title_order_received",10,171,{"type":118,"name":134,"callback":135,"file":121,"line":136},"admin_notices","closure",349,{"type":118,"name":134,"callback":135,"file":121,"line":138},353,{"type":128,"name":140,"callback":141,"priority":131,"file":121,"line":142},"sanitize_option_woocommerce_phonepe_settings","ppex_preprocess_phonepe_payment_fields",377,{"type":118,"name":144,"callback":145,"file":121,"line":146},"woocommerce_update_options_payment_gateways","process_admin_options",382,{"type":128,"name":148,"callback":149,"file":121,"line":150},"woocommerce_payment_gateways","add_phonepe_gateway_to_payment_options",503,{"type":118,"name":152,"callback":153,"file":121,"line":154},"before_woocommerce_init","ppex_declare_cart_checkout_blocks_compatibility",510,{"type":118,"name":156,"callback":157,"file":121,"line":158},"woocommerce_blocks_loaded","ppex_register_order_approval_payment_method_type",520,{"type":118,"name":160,"callback":135,"file":121,"line":161},"woocommerce_blocks_payment_method_type_registration",531,{"type":128,"name":163,"callback":164,"priority":131,"file":121,"line":165},"plugin_row_meta","ppex_plugin_row_meta",566,{"type":118,"name":167,"callback":168,"file":121,"line":169},"admin_menu","ppex_settings_add_plugin_page",581,{"type":128,"name":171,"callback":172,"file":121,"line":173},"woocommerce_is_rest_api_request","simulate_as_not_rest",648,{"type":118,"name":175,"callback":176,"file":121,"line":177},"rest_api_init","register_routes",682,{"type":118,"name":179,"callback":180,"priority":131,"file":121,"line":181},"woocommerce_order_item_add_action_buttons","wc_order_item_add_action_buttons_callback",717,{"type":118,"name":167,"callback":183,"file":121,"line":184},"phonepe_support_menu_item",872,{"type":118,"name":167,"callback":186,"file":121,"line":187},"phonepe_support_submenu_items",895,{"type":118,"name":189,"callback":190,"file":121,"line":191},"restrict_manage_posts","dashboard_status",1074,{"type":118,"name":193,"callback":194,"priority":131,"file":121,"line":195},"phonepe_check_status_and_reschedule","phonepe_run_reschedule_callback",1108,{"type":128,"name":197,"callback":198,"priority":131,"file":199,"line":200},"script_loader_tag","defer_js_scripts","PPEX_WC_PG_Client.php",17,{"type":118,"name":202,"callback":203,"priority":131,"file":199,"line":204},"wp_enqueue_scripts","enqueue_fingerprint_js",18,{"type":128,"name":197,"callback":198,"priority":131,"file":206,"line":207},"PPEX_WC_PG_V2_Client.php",16,{"type":118,"name":202,"callback":203,"priority":131,"file":206,"line":200},[],[211,219,224],{"namespace":212,"route":213,"methods":214,"callback":216,"permissionCallback":217,"file":121,"line":218},"wp-phonepe\u002Fv1","callback",[215],"POST","handle_callback","__return_true",651,{"namespace":220,"route":213,"methods":221,"callback":222,"permissionCallback":217,"file":121,"line":223},"wp-phonepe\u002Fv2",[215],"handle_pg_v2_callback",661,{"namespace":212,"route":225,"methods":226,"callback":227,"permissionCallback":217,"file":121,"line":228},"check-pending-status",[215],"check_pending_status",671,[],[],3,{"dangerousFunctions":233,"sqlUsage":234,"outputEscaping":236,"fileOperations":42,"externalRequests":246,"nonceChecks":29,"capabilityChecks":29,"bundledLibraries":247},[],{"prepared":51,"raw":29,"locations":235},[],{"escaped":237,"rawEcho":231,"locations":238},37,[239,242,244],{"file":121,"line":240,"context":241},391,"raw output",{"file":121,"line":243,"context":241},398,{"file":121,"line":245,"context":241},957,6,[],[],{"summary":250,"deductions":251},"The phonepe-payment-solutions plugin v3.0.4 exhibits a mixed security posture. While it demonstrates good practices by utilizing prepared statements for all SQL queries and a high percentage of properly escaped output, several critical security concerns are present. The plugin exposes a significant attack surface with 3 REST API routes that lack permission callbacks, meaning any unauthenticated user could potentially interact with these endpoints. Furthermore, the absence of nonce checks and capability checks across all identified entry points is a major weakness, leaving the plugin vulnerable to various attacks if these endpoints can be manipulated.\n\nThe vulnerability history indicates a past medium-severity Server-Side Request Forgery (SSRF) vulnerability, which was addressed. However, the presence of this past vulnerability, coupled with the current lack of robust authentication and authorization checks on its entry points, suggests a potential for future similar or more severe issues. The taint analysis showing zero unsanitized paths is positive, but this may be overshadowed by the attack surface vulnerabilities if data flowing into these endpoints is not properly validated.\n\nIn conclusion, while the plugin has some positive security attributes like prepared SQL statements, the significant and unprotected attack surface via REST API routes, combined with the lack of nonce and capability checks, presents a notable risk. The past SSRF vulnerability further underscores the need for more stringent security controls on its entry points. Users should be cautious and ensure robust access controls are in place at the WordPress level if utilizing this plugin.",[252,255,257,259],{"reason":253,"points":254},"3 unprotected REST API routes",15,{"reason":256,"points":131},"0 Nonce checks on entry points",{"reason":258,"points":131},"0 Capability checks on entry points",{"reason":260,"points":131},"1 past medium CVE","2026-03-16T17:33:40.838Z",{"wat":263,"direct":278},{"assetPaths":264,"generatorPatterns":270,"scriptPaths":271,"versionParams":272},[265,266,267,268,269],"\u002Fwp-content\u002Fplugins\u002Fphonepe-payment-solutions\u002Fassets\u002Fcss\u002Fphonepe-payment-solutions.css","\u002Fwp-content\u002Fplugins\u002Fphonepe-payment-solutions\u002Fassets\u002Fjs\u002Fphonepe-payment-solutions.js","\u002Fwp-content\u002Fplugins\u002Fphonepe-payment-solutions\u002Fassets\u002Fcss\u002Fcommon.css","\u002Fwp-content\u002Fplugins\u002Fphonepe-payment-solutions\u002Fassets\u002Fjs\u002Fcommon.js","\u002Fwp-content\u002Fplugins\u002Fphonepe-payment-solutions\u002Fassets\u002Fjs\u002Fpayment-validation.js",[],[266,268,269],[273,274,275,276,277],"\u002Fwp-content\u002Fplugins\u002Fphonepe-payment-solutions\u002Fassets\u002Fcss\u002Fphonepe-payment-solutions.css?ver=","\u002Fwp-content\u002Fplugins\u002Fphonepe-payment-solutions\u002Fassets\u002Fjs\u002Fphonepe-payment-solutions.js?ver=","\u002Fwp-content\u002Fplugins\u002Fphonepe-payment-solutions\u002Fassets\u002Fcss\u002Fcommon.css?ver=","\u002Fwp-content\u002Fplugins\u002Fphonepe-payment-solutions\u002Fassets\u002Fjs\u002Fcommon.js?ver=","\u002Fwp-content\u002Fplugins\u002Fphonepe-payment-solutions\u002Fassets\u002Fjs\u002Fpayment-validation.js?ver=",{"cssClasses":279,"htmlComments":283,"htmlAttributes":292,"restEndpoints":294,"jsGlobals":295,"shortcodeOutput":297},[280,281,282],"phonepe_response","phonepe-box","phonepe-input-box",[284,285,286,287,288,289,290,291],"\u003C!-- Plugin Name: PhonePe Payment Solutions -->","\u003C!-- Plugin URI: https:\u002F\u002Fgithub.com\u002FPhonePe\u002F -->","\u003C!-- Description: Using this plugin you can accept payments through PhonePe. After activating this plugin, you can see the PhonePe option linked to the checkout page of woocommerce site. On configuring with the provided Merchant credentials, you can enable this plugin in Preprod\u002FProd environment. -->","\u003C!-- Version: 3.0.4 -->","\u003C!-- 3.0.3 -->","\u003C!-- Author: PhonePe -->","\u003C!-- Requires PHP: 8.2 -->","\u003C!-- Gateway class -->",[293],"aria-label=\"Plugin Additional Links\"",[],[296],"jQuery",[]]