WP-Safety

Pronamic Pay doneren met Mollie Security & Risk Analysis

wordpress.org/plugins/pronamic-pay-doneren-met-mollie

A modern WordPress block-based plugin for creating flexible and customizable donation forms powered by Mollie.

0 active installs v1.4.0 PHP 8.2+ WP 6.6+ Updated Jan 27, 2026
donationformmolliepaymentpronamic
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Pronamic Pay doneren met Mollie Safe to Use in 2026?

Generally Safe

Score 100/100

Pronamic Pay doneren met Mollie has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The 'pronamic-pay-doneren-met-mollie' v1.4.0 plugin demonstrates a generally strong security posture with many good practices in place. The extensive use of prepared statements for SQL queries and a high percentage of properly escaped outputs are positive indicators. Furthermore, the complete absence of known CVEs and a clean vulnerability history suggest diligent maintenance and development. However, the presence of the `unserialize` function is a significant concern, as it can lead to remote code execution if used with untrusted input. The taint analysis revealing one high-severity flow with unsanitized paths, despite the limited number of flows analyzed, warrants attention. While the total attack surface appears minimal and appears to be protected by authentication, the potential risks associated with unserialization and the identified taint flow are the primary areas of concern.

Key Concerns

  • Unsanitized path flow with high severity taint
  • Dangerous function: unserialize used
Vulnerabilities
None known

Pronamic Pay doneren met Mollie Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Pronamic Pay doneren met Mollie Code Analysis

Dangerous Functions
1
Raw SQL Queries
6
96 prepared
Unescaped Output
142
508 escaped
Nonce Checks
4
Capability Checks
15
File Operations
0
External Requests
3
Bundled Libraries
0

Dangerous Functions Found

unserialize$schedule = unserialize( $data->schedule ); // phpcs:ignore WordPress.PHP.DiscouragedPHPFunctions.sepackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_DBStore.php:397

SQL Query Safety

94% prepared102 total queries

Output Escaping

78% escaped650 total outputs
Data Flows
4 unsanitized

Data Flow Analysis

5 flows4 with unsanitized paths
display_table (packages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler_Abstract_ListTable.php:736)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Pronamic Pay doneren met Mollie Attack Surface

Entry Points1
Unprotected0

REST API Routes 1

GET/wp-json/pronamic-pay/v1/gateways/(?P<config_id>\d+)/adminpackages\wp-pay\core\src\GatewayPostType.php:178
WordPress Hooks 163
actioninitpackages\pronamic\wp-datetime\pronamic-datetime.php:38
actioninitpackages\pronamic\wp-money\pronamic-money.php:38
actionchange_localepackages\pronamic\wp-money\pronamic-money.php:39
actioninitpackages\pronamic\wp-pronamic-forms\pronamic-forms.php:33
actionplugins_loadedpackages\woocommerce\action-scheduler\action-scheduler.php:36
actionplugins_loadedpackages\woocommerce\action-scheduler\action-scheduler.php:39
actioninitpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler.php:196
actioninitpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler.php:197
actioninitpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler.php:198
actioninitpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler.php:199
actioninitpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler.php:200
actioninitpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler.php:202
actionaction_scheduler/migration_completepackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler.php:261
actionaction_scheduler_canceled_actionpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:67
actionaction_scheduler_begin_executepackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:68
actionaction_scheduler_after_executepackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:69
actionaction_scheduler_failed_executionpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:70
actionaction_scheduler_failed_actionpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:71
actionaction_scheduler_unexpected_shutdownpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:72
actionaction_scheduler_reset_actionpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:73
actionaction_scheduler_execution_ignoredpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:74
actionaction_scheduler_failed_fetch_actionpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:75
actionaction_scheduler_failed_to_schedule_next_instancepackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:76
actionaction_scheduler_bulk_cancel_actionspackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:77
actionaction_scheduler_stored_actionpackages\woocommerce\action-scheduler\classes\abstracts\ActionScheduler_Logger.php:84
actionwoocommerce_admin_status_content_action-schedulerpackages\woocommerce\action-scheduler\classes\ActionScheduler_AdminView.php:56
actionwoocommerce_system_status_reportpackages\woocommerce\action-scheduler\classes\ActionScheduler_AdminView.php:57
filterwoocommerce_admin_status_tabspackages\woocommerce\action-scheduler\classes\ActionScheduler_AdminView.php:58
actionadmin_menupackages\woocommerce\action-scheduler\classes\ActionScheduler_AdminView.php:61
actionadmin_noticespackages\woocommerce\action-scheduler\classes\ActionScheduler_AdminView.php:62
actioncurrent_screenpackages\woocommerce\action-scheduler\classes\ActionScheduler_AdminView.php:63
filteraction_scheduler_store_classpackages\woocommerce\action-scheduler\classes\ActionScheduler_DataController.php:190
filteraction_scheduler_logger_classpackages\woocommerce\action-scheduler\classes\ActionScheduler_DataController.php:191
actiondeactivate_pluginpackages\woocommerce\action-scheduler\classes\ActionScheduler_DataController.php:192
actionaction_scheduler/progress_tickpackages\woocommerce\action-scheduler\classes\ActionScheduler_DataController.php:197
actionshutdownpackages\woocommerce\action-scheduler\classes\ActionScheduler_FatalErrorMonitor.php:45
actionaction_scheduler_before_executepackages\woocommerce\action-scheduler\classes\ActionScheduler_FatalErrorMonitor.php:46
actionaction_scheduler_after_executepackages\woocommerce\action-scheduler\classes\ActionScheduler_FatalErrorMonitor.php:47
actionaction_scheduler_execution_ignoredpackages\woocommerce\action-scheduler\classes\ActionScheduler_FatalErrorMonitor.php:48
actionaction_scheduler_failed_executionpackages\woocommerce\action-scheduler\classes\ActionScheduler_FatalErrorMonitor.php:49
actionaction_scheduler/created_tablepackages\woocommerce\action-scheduler\classes\ActionScheduler_ListTable.php:554
filtercron_schedulespackages\woocommerce\action-scheduler\classes\ActionScheduler_QueueRunner.php:72
actionshutdownpackages\woocommerce\action-scheduler\classes\ActionScheduler_QueueRunner.php:95
actionaction_scheduler_initpackages\woocommerce\action-scheduler\classes\ActionScheduler_RecurringActionScheduler.php:28
actionpre_get_commentspackages\woocommerce\action-scheduler\classes\ActionScheduler_WPCommentCleaner.php:44
actionwp_count_commentspackages\woocommerce\action-scheduler\classes\ActionScheduler_WPCommentCleaner.php:45
actioncomment_feed_wherepackages\woocommerce\action-scheduler\classes\ActionScheduler_WPCommentCleaner.php:46
actionload-tools_page_action-schedulerpackages\woocommerce\action-scheduler\classes\ActionScheduler_WPCommentCleaner.php:49
actionload-woocommerce_page_wc-statuspackages\woocommerce\action-scheduler\classes\ActionScheduler_WPCommentCleaner.php:50
actionadmin_noticespackages\woocommerce\action-scheduler\classes\ActionScheduler_WPCommentCleaner.php:109
actionaction_scheduler_deleted_actionpackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_DBLogger.php:112
actionaction_scheduler/created_tablepackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_HybridStore.php:75
filtercomments_clausespackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:129
actionaction_scheduler_before_process_queuepackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:254
actionaction_scheduler_after_process_queuepackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:255
actionpre_get_commentspackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:259
actionwp_count_commentspackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:260
actioncomment_feed_wherepackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:261
actionwp_insert_commentpackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:264
actionwp_set_comment_statuspackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpCommentLogger.php:265
filterwp_insert_post_datapackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpPostStore.php:81
filterpre_wp_unique_post_slugpackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpPostStore.php:82
filterpre_wp_unique_post_slugpackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpPostStore.php:518
filterwp_insert_post_datapackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpPostStore.php:1006
filterpre_wp_unique_post_slugpackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpPostStore.php:1007
filteraction_scheduler_migration_dependencies_metpackages\woocommerce\action-scheduler\classes\data-stores\ActionScheduler_wpPostStore.php:1094
actionadmin_noticespackages\woocommerce\action-scheduler\classes\migration\Controller.php:176
filteraction_scheduler_store_classpackages\woocommerce\action-scheduler\classes\migration\Controller.php:190
filteraction_scheduler_logger_classpackages\woocommerce\action-scheduler\classes\migration\Controller.php:191
actioninitpackages\woocommerce\action-scheduler\classes\migration\Controller.php:192
actionwp_loadedpackages\woocommerce\action-scheduler\classes\migration\Controller.php:193
actionload-tools_page_action-schedulerpackages\woocommerce\action-scheduler\classes\migration\Controller.php:196
actionload-woocommerce_page_wc-statuspackages\woocommerce\action-scheduler\classes\migration\Controller.php:197
actionaction_scheduler_before_schema_updatepackages\woocommerce\action-scheduler\classes\schema\ActionScheduler_LoggerSchema.php:35
actionaction_scheduler_before_schema_updatepackages\woocommerce\action-scheduler\classes\schema\ActionScheduler_StoreSchema.php:40
actionaction_scheduler_deleted_actionpackages\woocommerce\action-scheduler\classes\WP_CLI\Action\Delete_Command.php:40
actionaction_scheduler_execution_ignoredpackages\woocommerce\action-scheduler\classes\WP_CLI\Action\Run_Command.php:42
actionaction_scheduler_after_executepackages\woocommerce\action-scheduler\classes\WP_CLI\Action\Run_Command.php:43
actionaction_scheduler_failed_executionpackages\woocommerce\action-scheduler\classes\WP_CLI\Action\Run_Command.php:44
actionaction_scheduler_failed_validationpackages\woocommerce\action-scheduler\classes\WP_CLI\Action\Run_Command.php:45
actionaction_scheduler_before_executepackages\woocommerce\action-scheduler\classes\WP_CLI\ActionScheduler_WPCLI_QueueRunner.php:87
actionaction_scheduler_after_executepackages\woocommerce\action-scheduler\classes\WP_CLI\ActionScheduler_WPCLI_QueueRunner.php:88
actionaction_scheduler_failed_executionpackages\woocommerce\action-scheduler\classes\WP_CLI\ActionScheduler_WPCLI_QueueRunner.php:89
actionaction_scheduler/migrate_action_dry_runpackages\woocommerce\action-scheduler\classes\WP_CLI\Migration_Command.php:137
actionaction_scheduler/no_action_to_migratepackages\woocommerce\action-scheduler\classes\WP_CLI\Migration_Command.php:144
actionaction_scheduler/migrate_action_failedpackages\woocommerce\action-scheduler\classes\WP_CLI\Migration_Command.php:151
actionaction_scheduler/migrate_action_incompletepackages\woocommerce\action-scheduler\classes\WP_CLI\Migration_Command.php:158
actionaction_scheduler/migrated_actionpackages\woocommerce\action-scheduler\classes\WP_CLI\Migration_Command.php:167
actionaction_scheduler/migration_batch_startingpackages\woocommerce\action-scheduler\classes\WP_CLI\Migration_Command.php:176
actionaction_scheduler/migration_batch_completepackages\woocommerce\action-scheduler\classes\WP_CLI\Migration_Command.php:183
filterpronamic_pay_modulespackages\wp-pay\core\pronamic-pay-core.php:39
actionadmin_menupackages\wp-pay\core\src\Admin\AdminAboutPage.php:50
actionadmin_headpackages\wp-pay\core\src\Admin\AdminAboutPage.php:51
actionpronamic_pay_installpackages\wp-pay\core\src\Admin\AdminAboutPage.php:53
actionpost_edit_form_tagpackages\wp-pay\core\src\Admin\AdminGatewayPostType.php:51
actionadd_meta_boxespackages\wp-pay\core\src\Admin\AdminGatewayPostType.php:53
actionafter_delete_postpackages\wp-pay\core\src\Admin\AdminGatewayPostType.php:57
filterdisplay_post_statespackages\wp-pay\core\src\Admin\AdminGatewayPostType.php:59
filterpost_updated_messagespackages\wp-pay\core\src\Admin\AdminGatewayPostType.php:61
filterdebug_informationpackages\wp-pay\core\src\Admin\AdminHealth.php:40
filtersite_status_testspackages\wp-pay\core\src\Admin\AdminHealth.php:41
actionadmin_initpackages\wp-pay\core\src\Admin\AdminModule.php:87
actionadmin_menupackages\wp-pay\core\src\Admin\AdminModule.php:88
actionload-post.phppackages\wp-pay\core\src\Admin\AdminModule.php:90
actionadmin_enqueue_scriptspackages\wp-pay\core\src\Admin\AdminModule.php:92
filterparent_filepackages\wp-pay\core\src\Admin\AdminModule.php:94
actionload-edit.phppackages\wp-pay\core\src\Admin\AdminPaymentBulkActions.php:28
actionadmin_noticespackages\wp-pay\core\src\Admin\AdminPaymentBulkActions.php:59
filterrequestpackages\wp-pay\core\src\Admin\AdminPaymentPostType.php:54
filterlist_table_primary_columnpackages\wp-pay\core\src\Admin\AdminPaymentPostType.php:58
actionload-post.phppackages\wp-pay\core\src\Admin\AdminPaymentPostType.php:62
actionadmin_noticespackages\wp-pay\core\src\Admin\AdminPaymentPostType.php:64
actionadd_meta_boxespackages\wp-pay\core\src\Admin\AdminPaymentPostType.php:66
filterpost_row_actionspackages\wp-pay\core\src\Admin\AdminPaymentPostType.php:68
filterdefault_hidden_columnspackages\wp-pay\core\src\Admin\AdminPaymentPostType.php:70
filterpost_updated_messagespackages\wp-pay\core\src\Admin\AdminPaymentPostType.php:72
actionadmin_initpackages\wp-pay\core\src\Admin\AdminSettings.php:39
filterrequestpackages\wp-pay\core\src\Admin\AdminSubscriptionPostType.php:52
filterlist_table_primary_columnpackages\wp-pay\core\src\Admin\AdminSubscriptionPostType.php:57
actionload-post.phppackages\wp-pay\core\src\Admin\AdminSubscriptionPostType.php:61
actionadmin_noticespackages\wp-pay\core\src\Admin\AdminSubscriptionPostType.php:63
actionadd_meta_boxespackages\wp-pay\core\src\Admin\AdminSubscriptionPostType.php:65
filterpost_row_actionspackages\wp-pay\core\src\Admin\AdminSubscriptionPostType.php:67
actionpre_get_postspackages\wp-pay\core\src\Admin\AdminSubscriptionPostType.php:69
filterremovable_query_argspackages\wp-pay\core\src\Admin\AdminSubscriptionPostType.php:71
filterpost_updated_messagespackages\wp-pay\core\src\Admin\AdminSubscriptionPostType.php:73
actionadmin_initpackages\wp-pay\core\src\Admin\AdminTour.php:42
actionadmin_initpackages\wp-pay\core\src\Admin\AdminTour.php:43
actioninitpackages\wp-pay\core\src\Admin\Install.php:42
actioninitpackages\wp-pay\core\src\GatewayPostType.php:39
actionrest_api_initpackages\wp-pay\core\src\GatewayPostType.php:44
actioninitpackages\wp-pay\core\src\Payments\PaymentPostType.php:32
actioninitpackages\wp-pay\core\src\Payments\PaymentPostType.php:33
filtercomments_clausespackages\wp-pay\core\src\Payments\PaymentsModule.php:48
filterpronamic_payment_redirect_urlpackages\wp-pay\core\src\Payments\PaymentsModule.php:51
actionpronamic_payment_status_updatepackages\wp-pay\core\src\Payments\PaymentsModule.php:54
actionrest_api_initpackages\wp-pay\core\src\Payments\PaymentsModule.php:57
actionpronamic_pay_payment_status_checkpackages\wp-pay\core\src\Payments\StatusChecker.php:28
actionpronamic_payment_status_updatepackages\wp-pay\core\src\Payments\StatusChecker.php:31
actiontrashed_postpackages\wp-pay\core\src\Payments\StatusChecker.php:32
actiondelete_postpackages\wp-pay\core\src\Payments\StatusChecker.php:33
actionplugins_loadedpackages\wp-pay\core\src\Plugin.php:254
actioninitpackages\wp-pay\core\src\Plugin.php:255
actioninitpackages\wp-pay\core\src\Plugin.php:258
actionwp_loadedpackages\wp-pay\core\src\Plugin.php:261
actionwp_loadedpackages\wp-pay\core\src\Plugin.php:262
filterpronamic_datetime_default_formatpackages\wp-pay\core\src\Plugin.php:265
actioninitpackages\wp-pay\core\src\Settings.php:35
actioninitpackages\wp-pay\core\src\Subscriptions\SubscriptionPostType.php:34
actioninitpackages\wp-pay\core\src\Subscriptions\SubscriptionPostType.php:35
actionpronamic_pay_webhook_log_paymentpackages\wp-pay\core\src\Webhooks\WebhookLogger.php:30
filterpronamic_pay_gatewayspackages\wp-pay-gateways\mollie\pronamic-pay-mollie.php:46
actionadmin_initpackages\wp-pay-gateways\mollie\src\Admin.php:24
actionadmin_menupackages\wp-pay-gateways\mollie\src\Admin.php:31
actionadd_meta_boxespackages\wp-pay-gateways\mollie\src\Admin.php:36
actionadd_meta_boxespackages\wp-pay-gateways\mollie\src\Admin.php:37
actionshow_user_profilepackages\wp-pay-gateways\mollie\src\Admin.php:53
actionedit_user_profilepackages\wp-pay-gateways\mollie\src\Admin.php:57
actionpronamic_payment_status_updatepackages\wp-pay-gateways\mollie\src\Gateway.php:100
filterpronamic_payment_provider_url_molliepackages\wp-pay-gateways\mollie\src\Integration.php:74
actioninitpronamic-pay-doneren-met-mollie.php:41
filterpronamic_pay_modulespronamic-pay-doneren-met-mollie.php:77
filterpronamic_pay_gatewayspronamic-pay-doneren-met-mollie.php:86

Scheduled Events 1

pronamic_pay_license_check
Maintenance & Trust

Pronamic Pay doneren met Mollie Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedJan 27, 2026
PHP min version8.2
Downloads659

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Pronamic Pay doneren met Mollie Alternatives

Paytium: Mollie payment forms & donations

Paytium: Mollie payment forms & donations

paytium

A
94

Mollie forms for payments and donations. With iDEAL | WERO , PayPal, Credit/Debet cards, subscriptions and recurring payments!

3K 13 CVEs
Pronamic Pay with Mollie for Ninja Forms

Pronamic Pay with Mollie for Ninja Forms

pronamic-pay-with-mollie-for-ninja-forms

A
100

Connect Mollie to Ninja Forms with Pronamic Pay. This free plugin is all that you need to start selling with Ninja Forms.

10 No CVEs
Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions

Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions

wp-full-stripe-free

A
92

🚀 Create Stripe payment forms for WordPress. Accept credit cards, Apple Pay, donations, subscriptions & more. Easy setup, no coding needed!

10K 5 CVEs
Payment Forms for Paystack

Payment Forms for Paystack

payment-forms-for-paystack

A
97

Create forms with multiple input fields and have your users pay before submission. Form submission results are available on your dashboard.

3K 3 CVEs
WP Easy Pay – Payment and Donation form Builder for Square

WP Easy Pay – Payment and Donation form Builder for Square

wp-easy-pay

A
97

Integrate Square with WordPress easily, quickly, and securely. The Square Payment Form Builder for WordPress to accept Subscriptions, Donations and On &hellip;

1K 4 CVEs
Developer Profile

Pronamic Pay doneren met Mollie Developer Profile

Pronamic

15 plugins · 5K total installs

99
trust score
Avg Security Score
98/100
Avg Patch Time
6 days
View full developer profile
Detection Fingerprints

How We Detect Pronamic Pay doneren met Mollie

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/pronamic-pay-doneren-met-mollie/assets/css/pronamic-pay-mollie.css/wp-content/plugins/pronamic-pay-doneren-met-mollie/assets/js/pronamic-pay-mollie.js
Script Paths
/wp-content/plugins/pronamic-pay-doneren-met-mollie/assets/js/pronamic-pay-mollie.js
Version Parameters
pronamic-pay-doneren-met-mollie/assets/css/pronamic-pay-mollie.css?ver=pronamic-pay-doneren-met-mollie/assets/js/pronamic-pay-mollie.js?ver=

HTML / DOM Fingerprints

CSS Classes
pronamic-pay-mollie
Data Attributes
data-pronamic-pay-mollie-payment-method-selector
JS Globals
pronamic_pay_mollie_settings
Shortcode Output
[pronamic_pay_mollie_payment_methods]
FAQ

Frequently Asked Questions about Pronamic Pay doneren met Mollie