Does SmartPayLive have any unpatched vulnerabilities?

No. All known vulnerabilities in SmartPayLive have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is SmartPayLive compatible with WordPress 5.7.15?

According to WordPress.org data, SmartPayLive 1.0.1 has been tested up to WordPress 5.7.15. Check the plugin's changelog for the latest compatibility information.

Is SmartPayLive compatible with PHP 5.6+?

SmartPayLive requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is SmartPayLive updated?

SmartPayLive was last updated on Unknown. Frequent updates are generally a positive security signal.

What is SmartPayLive's security score?

SmartPayLive has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SmartPayLive Security & Risk Analysis

wordpress.org/plugins/smartpaylive

This is the official WooCommerce extension to receive payments using the SmartPayLive payment gateway.

0 active installs v1.0.1 PHP 5.6+ WP 4.4+ Updated Unknown

instant-eftinternet-bankingpayment-gatewaysouth-africawoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is SmartPayLive Safe to Use in 2026?

Generally Safe

Score 100/100

SmartPayLive has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs

Risk Assessment

The smartpaylive plugin v1.0.1 exhibits a generally strong security posture based on the provided static analysis. The absence of any detected AJAX handlers, REST API routes, shortcodes, or cron events with security checks is a positive sign, indicating a limited attack surface that is also properly secured at the entry point level. Furthermore, the code demonstrates good practices in its handling of SQL queries, with 100% utilizing prepared statements, and proper output escaping for all identified outputs. The file operation and external HTTP request are isolated, and the lack of reported vulnerabilities historically suggests a mature and well-maintained codebase.

However, there are a few areas that warrant attention. The presence of two flows with unsanitized paths in the taint analysis, even without a critical or high severity rating, represents a potential weakness. While not currently exploited, these could become points of vulnerability if the plugin's functionality evolves or if external input is not strictly controlled. The complete absence of nonce checks and capability checks across all entry points, while currently moot due to the zero entry points, indicates a potential for future security gaps if new entry points are introduced without these essential WordPress security mechanisms. Overall, the plugin is well-built with secure core practices, but the taint analysis findings and the lack of built-in authorization checks on potential future entry points suggest a need for continued vigilance.

Key Concerns

Flows with unsanitized paths (2)
No nonce checks
No capability checks

Vulnerabilities

None known

SmartPayLive Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

SmartPayLive Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

12 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped12 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

wc_callback (includes\class-wc-gateway-smartpaylive.php:262)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

SmartPayLive Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 2

filterwoocommerce_payment_gatewayssmartpaylive.php:26

actionplugins_loadedsmartpaylive.php:34

Maintenance & Trust

SmartPayLive Maintenance & Trust

Maintenance Signals

WordPress version tested5.7.15

Last updatedUnknown

PHP min version5.6

Downloads807

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

SmartPayLive Alternatives

PayJustNow for WooCommerce

payjustnow-for-woocommerce

100

Buy now, pay later, interest-free! PayJustNow splits your purchase into 3 easy, zero-interest instalments in South Africa.

900 No CVEs

Bob Pay

bob-pay

100

A WooCommerce plugin that enables you to use Bob Pay as a payment method.

200 No CVEs

Float Payment Gateway

float-gateway

Take credit card payments on your store using the Float API.

100 1 CVE

LayUp payment gateway plugin for woocommerce

woo-layup-payment-gateway

100

The Official LayUp payment gateway plugin for woocommerce.

60 No CVEs

Debitsuccess

debitsuccess

Accept all major credit cards directly on your WooCommerce site in a seamless and secure checkout environment with Debitsuccess Commerce.

10 No CVEs

Developer Profile

SmartPayLive Developer Profile

Overflow Business Holdings

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect SmartPayLive

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/smartpaylive/assets/js/smartpaylive.js/wp-content/plugins/smartpaylive/assets/css/smartpaylive.css

Script Paths

/wp-content/plugins/smartpaylive/assets/js/smartpaylive.js

Version Parameters

smartpaylive/assets/css/smartpaylive.css?ver=smartpaylive/assets/js/smartpaylive.js?ver=

HTML / DOM Fingerprints

FAQ