Does TS Pay have any unpatched vulnerabilities?

No. All known vulnerabilities in TS Pay have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is TS Pay compatible with WordPress 6.9.4?

According to WordPress.org data, TS Pay 1.1.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is TS Pay compatible with PHP 7.4+?

TS Pay requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is TS Pay updated?

TS Pay was last updated on Dec 25, 2025. Frequent updates are generally a positive security signal.

What is TS Pay's security score?

TS Pay has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

TS Pay Security & Risk Analysis

wordpress.org/plugins/tspay

Seamlessly integrate SSLCommerz with Tutor LMS for secure, multi-currency course payments via cards, mobile banking, and more.

20 active installs v1.1.0 PHP 7.4+ WP 5.3+ Updated Dec 25, 2025

bkashpaymentssslcommerztutortutor-lms

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is TS Pay Safe to Use in 2026?

Generally Safe

Score 100/100

TS Pay has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The plugin "tspay" v1.1.0 exhibits a strong security posture based on the provided static analysis. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events suggests a minimal attack surface. Furthermore, the code signals indicate robust development practices, with no dangerous functions detected, all SQL queries utilizing prepared statements, and all output properly escaped. The lack of recorded vulnerabilities and CVEs in its history also points to a well-maintained and secure plugin. However, the presence of external HTTP requests, while not inherently a vulnerability, warrants attention as it introduces a potential dependency on external systems that could be compromised or unavailable, indirectly impacting the plugin's security or functionality. Additionally, the absence of nonce and capability checks, while not posing an immediate risk due to the limited attack surface, represents a missed opportunity to implement standard WordPress security layers that could provide defense in depth should new entry points be introduced in future versions.

Key Concerns

External HTTP requests detected
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

TS Pay Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

TS Pay Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

20 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped20 total outputs

Attack Surface

TS Pay Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 5

filtertutor_gateways_with_classintegration\Init.php:38

filtertutor_payment_gateways_with_classintegration\Init.php:39

filtertutor_payment_gatewaysintegration\Init.php:40

filterinitintegration\Init.php:41

actionplugins_loadedtspay.php:64

Maintenance & Trust

TS Pay Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 25, 2025

PHP min version7.4

Downloads250

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

TS Pay Alternatives

Bangladeshi Payments Mobile – QR Code & Transaction Reports

bangladeshi-payments-mobile

100

Accept Mobile Payments in Bangladesh – WooCommerce Gateway for bKash, Nagad, Rocket & Upay with QR Code & Transaction Reports.

1K No CVEs

Lesson Bookmark for Tutor LMS

lesson-bookmark-tutor-lms

Lesson Bookmark allows you to add lessons in the list of your favorite lessons and to display the favorites with [tllb_display_favorites]

400 No CVEs

Reviews for Tutor LMS

reviews-tutor-lms

The Reviews for Tutor LMS plugin is an addon for Tutor LMS that allows you to manage course reviews.

300 No CVEs

Custom User Registration Fields for Tutor LMS

custom-user-registration-fields-tutor-lms

100

Add Custom User Registration Fields for Tutor LMS.

200 No CVEs

Experience API for TutorLMS by GrassBlade

grassblade-xapi-tutorlms

100

Experience API for TutorLMS plugin adds xAPI, SCORM, and cmi5 support to Tutor LMS by integrating with the GrassBlade xAPI Companion plugin.

200 No CVEs

Developer Profile

TS Pay Developer Profile

HasinHayder

4 plugins · 440 total installs

trust score

Avg Security Score

93/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect TS Pay

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Script Paths

/wp-content/plugins/tspay/assets/js/tspay.js/wp-content/plugins/tspay/assets/css/tspay.css

Version Parameters

tspay/assets/js/tspay.js?ver=tspay/assets/css/tspay.css?ver=

HTML / DOM Fingerprints

CSS Classes

tspay-payment-gatewaytspay-gateway-option

Data Attributes

data-tspay-payment-method

JS Globals

tspay_params

Shortcode Output

[tspay_payment_gateway]

FAQ