WP-Safety

SADDED By SADAD Payment Gateway Security & Risk Analysis

wordpress.org/plugins/sadded-by-sadad

This pluging of WooCommerce will enable SADDED By SADAD Payment Gateway option to your store.

30 active installs v0.5 PHP + WP 5.0+ Updated Mar 10, 2021
countriescountrypayment-gatewaypayment-gatewayswoocommerce
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is SADDED By SADAD Payment Gateway Safe to Use in 2026?

Generally Safe

Score 85/100

SADDED By SADAD Payment Gateway has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago
Risk Assessment

The plugin 'sadded-by-sadad' v0.5 exhibits a generally positive security posture based on the provided static analysis. The absence of identified AJAX handlers, REST API routes, shortcodes, and cron events without proper authentication or permission checks significantly reduces its attack surface. Furthermore, the complete absence of dangerous functions and the use of prepared statements for all SQL queries are strong indicators of good development practices.

However, several areas warrant attention. The 0 nonce checks and 0 capability checks are significant concerns, especially given the presence of file operations and external HTTP requests. This lack of verification means that these operations, if triggered by malicious input, could be performed without proper authorization. Additionally, with 5 total outputs and 60% properly escaped, 2 outputs are not properly escaped, which could lead to cross-site scripting (XSS) vulnerabilities if those outputs are not sanitized against user-controlled data.

The plugin's vulnerability history is clean, with no recorded CVEs. This suggests either a history of secure development or a lack of prior scrutiny, making the current static analysis particularly important for proactive security. In conclusion, while the plugin has strengths in its limited attack surface and SQL handling, the missing nonce and capability checks, along with unescaped output, present moderate risks that should be addressed.

Key Concerns

  • Missing nonce checks
  • Missing capability checks
  • Unescaped output
Vulnerabilities
None known

SADDED By SADAD Payment Gateway Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

SADDED By SADAD Payment Gateway Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
2
3 escaped
Nonce Checks
0
Capability Checks
0
File Operations
2
External Requests
1
Bundled Libraries
0

Output Escaping

60% escaped5 total outputs
Attack Surface

SADDED By SADAD Payment Gateway Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 7
filterwoocommerce_payment_gatewaysindex.php:23
actionplugins_loadedindex.php:30
actionadmin_noticesindex.php:39
actionwp_enqueue_scriptsindex.php:74
actionwoocommerce_api_sadded_payment_successindex.php:79
actionwoocommerce_api_sadded_payment_failureindex.php:80
filterhttps_ssl_verifyindex.php:281
Maintenance & Trust

SADDED By SADAD Payment Gateway Maintenance & Trust

Maintenance Signals

WordPress version tested5.4.19
Last updatedMar 10, 2021
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs30
Alternatives

SADDED By SADAD Payment Gateway Alternatives

Country Based Payments for WooCommerce

Country Based Payments for WooCommerce

woocommerce-country-based-payments

A
85

Choose which payment gateway will be available in country/countries.

3K No CVEs
Payment Methods by Product & Country for WooCommerce

Payment Methods by Product & Country for WooCommerce

payment-gateways-per-product-categories-for-woocommerce

A
100

Use products and countries conditional rules to show/hide gateways, increase profit margins & optimize operations for your products by restricting …

5K No CVEs
Fake Pay For WooCommerce

Fake Pay For WooCommerce

fake-pay-for-woocommerce

A
85

A simple pass-through WooCommerce payment gateway that can be used for testing orders with an admin account.

1K No CVEs
Disable Payment Methods based on cart conditions for WooCommerce

Disable Payment Methods based on cart conditions for WooCommerce

woo-conditional-payment-gateways

A
100

Enable or disable WooCommerce payment gateways based on cart conditions like the order total.

1K No CVEs
Viva Payments – Viva Wallet WooCommerce Payment Gateway

Viva Payments – Viva Wallet WooCommerce Payment Gateway

woo-payment-gateway-for-vivapayments

A
85

Woocommerce Viva Payments - Viva Wallet payment gateway plug-in.

1K No CVEs
Developer Profile

SADDED By SADAD Payment Gateway Developer Profile

sadadbahrain

1 plugin · 30 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect SADDED By SADAD Payment Gateway

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/sadded-by-sadad/sadad_payment_gateway.php

HTML / DOM Fingerprints

CSS Classes
woocommerce_sadad_missing_wc_notice
HTML Comments
<!-- WooCommerce fallback notice. --><!-- Make sure WooCommerce is active and installed. this prevents WordPress from throwing a critical error when sadad is activated but WooCommerce is deactivated or not installed or when woocommerce is beginning disabled without deactivated sadad first. --><!-- * You will need it if you want your custom credit card form, Step 4 is about it --><!-- * Custom CSS and JS, in most cases required only when you decided to go with a custom credit card form -->+2 more
Data Attributes
data-plugin-name="SADDED By SADAD"data-plugin-uri="https://sadadbahrain.com"data-plugin-description="SADDED by SADAD Bahrain for card payments"data-author="Danial Jawaid"data-author-uri="https://www.linkedin.com/in/danial-jawaid-4b527835/"
REST Endpoints
/wp-json/sadded/v1/payment_success/wp-json/sadded/v1/payment_failure
FAQ

Frequently Asked Questions about SADDED By SADAD Payment Gateway