[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fYMVBE10uoyBVrlI3jGtGE0JeOzGttjUDVapssYSuyAc":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":33,"analysis":110,"fingerprints":166},"vendreo-open-banking-gateway","Vendreo Open Banking Gateway","2.0.0","vendreo","https:\u002F\u002Fprofiles.wordpress.org\u002Fvendreo\u002F","\u003Cp>Vendreo are disrupting the payment processing industry, with a suite of class-leading solutions.\u003C\u002Fp>\n\u003Cp>With decades of payments experience, the Vendreo team combine their expertise and points their focus exactly where it needs to be for the online world to benefit.\u003C\u002Fp>\n\u003Cp>Vendreo’s latest payment solution. Accept Open Banking payments online through your WooCommerce store safely and securely.\u003C\u002Fp>\n\u003Cp>Note:\u003Cbr \u002F>\nThis plugin uses third party API requests and will communicate with Vendreo’s secure API to process your payments via the URL https:\u002F\u002Fapi.vendreo.com\u002Fv1\u002Frequest-payment.\u003C\u002Fp>\n\u003Cp>To view the \u003Ca href=\"https:\u002F\u002Fdocs.vendreo.com\u002F\" rel=\"nofollow ugc\">API documentation please visit\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>To view our \u003Ca href=\"https:\u002F\u002Fpay.vendreo.com\u002Fterms-and-conditions\" rel=\"nofollow ugc\">Terms And Conditions please visit\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>To view our \u003Ca href=\"https:\u002F\u002Fpay.vendreo.com\u002Fprivacy-policy\" rel=\"nofollow ugc\">Privacy Policy please visit\u003C\u002Fa>.\u003C\u002Fp>\n","Vendreo's latest payment solution. Accept Open Banking payments online through your WooCommerce store safely and securely.",0,1216,"2024-04-26T07:39:00.000Z","6.4.8","6.1.1","7.2",[18,19,20,21],"open-banking","payment-gateway","payment-processing","woocommerce","https:\u002F\u002Fgithub.com\u002Fvendreo\u002Fwoocommerce-vendreo-ob-gateway-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvendreo-open-banking-gateway.2.0.0.zip",92,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},1,30,88,"2026-04-04T11:13:14.032Z",[34,57,78,87,102],{"slug":35,"name":36,"version":37,"author":38,"author_profile":39,"description":40,"short_description":41,"active_installs":42,"downloaded":43,"rating":11,"num_ratings":11,"last_updated":44,"tested_up_to":45,"requires_at_least":46,"requires_php":47,"tags":48,"homepage":52,"download_link":53,"security_score":54,"vuln_count":55,"unpatched_count":11,"last_vuln_date":56,"fetched_at":26},"totalprocessing-card-payments","Total processing card payments for WooCommerce","7.3","totalprocessing","https:\u002F\u002Fprofiles.wordpress.org\u002Ftotalprocessing\u002F","\u003Cp>Take Payments via Total Processing’s Payment Gateway.\u003Cbr \u002F>\nAccept Payments with the aid of 300 acquiring connectors based globally via our Gateway infrastructure.\u003Cbr \u002F>\nAccess extended oversight and transaction monitoring via the Total Processing plug-in for WooCommerce with our bespoke, data rich merchant services and people-centric support resources.\u003C\u002Fp>\n\u003Cp>‘Pioneering Payments’\u003C\u002Fp>\n\u003Ch4>PAYMENT METHODS\u003C\u002Fh4>\n\u003Cp>Credit\u002FDebit cards:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>VISA\u003C\u002Fli>\n\u003Cli>MasterCard\u003C\u002Fli>\n\u003Cli>American Express\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>FEATURES\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>All Major Credit\u002FCebit Card brands accredited with the PCI DSS standard.\u003C\u002Fli>\n\u003Cli>Tokenisation and ‘Remember Me’ options at the check-out.\u003C\u002Fli>\n\u003Cli>One-click Payments.\u003C\u002Fli>\n\u003Cli>iFrame for PCI DSS Compliance.\u003C\u002Fli>\n\u003Cli>Payment in Modal popup (can turn on\u002Foff from settings)\u003C\u002Fli>\n\u003Cli>Tech and Customer Support for Full and Partial Payment Refunds.\u003C\u002Fli>\n\u003Cli>24\u002F7 Support from Teams based in the UK.\u003C\u002Fli>\n\u003Cli>Worldwide Support from our Connectors and Partners.\u003C\u002Fli>\n\u003Cli>Support for all Currencies and Alternative Payment Methods across 196 Countries.\u003C\u002Fli>\n\u003C\u002Ful>\n","Accept Credit Cards and Debit Cards on your WooCommerce store.",100,14409,"2025-10-21T13:29:00.000Z","6.8.5","5.2.0","7.4",[49,18,19,50,51],"apple-pay","payments","woocommerce-gateway","https:\u002F\u002Fwww.totalprocessing.com\u002Fwoocommerce\u002Fcards","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftotalprocessing-card-payments.7.3.zip",96,3,"2025-05-02 00:00:00",{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":11,"num_ratings":11,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":70,"tags":71,"homepage":75,"download_link":76,"security_score":77,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"bleumi-payments-for-wc-vendors-marketplace","Bleumi Payments for WC Vendors Marketplace","1.0.4","Bleumi","https:\u002F\u002Fprofiles.wordpress.org\u002Fbleumiinc\u002F","\u003Cp>Bleumi for WC Vendors Marketplace\u003C\u002Fp>\n\u003Cp>Bleumi is an all-in-one global Payment Orchestration Platform. With this extension, customers can accept Traditional (PayPal, Credit\u002FDebit Card) or Crypto Currency (USD Coin, Tether, Monerium) payments in your Woocommerce Store.\u003C\u002Fp>\n\u003Cp>This plugin adds support for split payments in Bleumi Payments (https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbleumi-payments-for-woocommerce\u002F) for WC Vendors Marketplace (https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwc-vendors\u002F) plugin.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>Copyright 2020 Bleumi, Inc.\u003C\u002Fp>\n\u003Cp>Code licensed under the MIT License.\u003C\u002Fp>\n","Accept Traditional and Crypto Currency Payments in your WooCommerce store.",10,970,"2022-02-17T11:03:00.000Z","5.8.13","5.4","7.0",[72,73,19,20,74],"accept-crypto-payments","bleumi","woocommerce-plugin","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbleumi-payments-for-wc-vendors-marketplace.1.0.4.zip",85,{"slug":79,"name":80,"version":81,"author":61,"author_profile":62,"description":82,"short_description":64,"active_installs":65,"downloaded":83,"rating":11,"num_ratings":11,"last_updated":84,"tested_up_to":68,"requires_at_least":69,"requires_php":70,"tags":85,"homepage":75,"download_link":86,"security_score":77,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"bleumi-payments-for-woocommerce","Bleumi Payments for WooCommerce","1.0.9","\u003Cp>Bleumi for WooCommerce\u003C\u002Fp>\n\u003Cp>Bleumi is an all-in-one global Payment Orchestration Platform. With this extension, customers can accept Traditional (PayPal, Credit\u002FDebit Card) or Crypto Currency (USD Coin, Tether, Monerium) payments in your Woocommerce Store.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>Copyright 2020 Bleumi, Inc.\u003C\u002Fp>\n\u003Cp>Code licensed under the MIT License.\u003C\u002Fp>\n",1232,"2022-01-13T09:09:00.000Z",[72,73,19,20,74],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbleumi-payments-for-woocommerce.1.0.9.zip",{"slug":88,"name":89,"version":90,"author":89,"author_profile":91,"description":92,"short_description":93,"active_installs":11,"downloaded":94,"rating":11,"num_ratings":11,"last_updated":95,"tested_up_to":45,"requires_at_least":96,"requires_php":47,"tags":97,"homepage":100,"download_link":101,"security_score":42,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"20bytes-payment","20bytes","1.0.0","https:\u002F\u002Fprofiles.wordpress.org\u002F20bytes\u002F","\u003Cp>20bytes Payment Gateway for WooCommerce allows you to accept cryptocurrency payments in your online store. Process transactions securely and receive payments directly to your wallet.\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to the 20bytes payment processing API (digitalengine.20bytes.com) to process cryptocurrency transactions. This connection is essential for processing payments and managing cryptocurrency transactions in your WooCommerce store.\u003C\u002Fp>\n\u003Ch4>Data Transmission\u003C\u002Fh4>\n\u003Cp>The following data is sent to digitalengine.20bytes.com:\u003Cbr \u002F>\n* Order information (amount, order ID, currency)\u003Cbr \u002F>\n* Store identification (Vendor ID)\u003Cbr \u002F>\n* Customer’s payment preference\u003Cbr \u002F>\n* Transaction details for processing\u003C\u002Fp>\n\u003Cp>No personal customer information is transmitted beyond what is necessary for payment processing.\u003C\u002Fp>\n\u003Cp>The API endpoint used is:\u003Cbr \u002F>\n* Live mode: https:\u002F\u002Fdigitalengine.20bytes.com\u002FprocessOrder\u003C\u002Fp>\n\u003Ch4>Service Provider Information\u003C\u002Fh4>\n\u003Cp>Service provided by 20bytes:\u003Cbr \u002F>\n* Terms of Service: Defined by the contract between 20bytes and the Merchant\u003Cbr \u002F>\n* Privacy Policy: https:\u002F\u002F20bytes.com\u002Fprivacy-policy.pdf\u003Cbr \u002F>\n* Service Documentation: [URL to API documentation]\u003C\u002Fp>\n\u003Ch4>Data Storage and Security\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>All API communications are encrypted using SSL\u002FTLS\u003C\u002Fli>\n\u003Cli>API keys and sensitive data are stored securely in WordPress options\u003C\u002Fli>\n\u003Cli>No customer payment data is stored locally\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Cp>The following settings are available:\u003Cbr \u002F>\n* Enable\u002FDisable – Enable or disable the payment gateway\u003Cbr \u002F>\n* Test Mode – Toggle between test and live modes\u003Cbr \u002F>\n* Vendor ID – Your unique identifier from 20bytes\u003Cbr \u002F>\n* Publishable Key – Your API key for transaction processing\u003Cbr \u002F>\n* API Version – Current version of the API being used\u003Cbr \u002F>\n* API Endpoint – The endpoint URL for processing transactions\u003C\u002Fp>\n","Accept cryptocurrency payments in your WooCommerce store through 20bytes payment processing service.",443,"2025-04-17T13:38:00.000Z","5.8",[98,99,19,20,21],"bitcoin","cryptocurrency","https:\u002F\u002F20bytes.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002F20bytes-payment.1.0.0.zip",{"slug":103,"name":104,"version":90,"author":61,"author_profile":62,"description":105,"short_description":64,"active_installs":11,"downloaded":106,"rating":11,"num_ratings":11,"last_updated":107,"tested_up_to":68,"requires_at_least":69,"requires_php":70,"tags":108,"homepage":75,"download_link":109,"security_score":77,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"bleumi-payments-for-cancel-abandoned-order","Bleumi Payments for Cancel Abandoned Order","\u003Cp>Bleumi for WooCommerce\u003C\u002Fp>\n\u003Cp>Bleumi is an all-in-one global Payment Orchestration Platform. With this extension, customers can accept Traditional (PayPal, Credit\u002FDebit Card) or Crypto Currency (USD Coin, Tether, Monerium) payments in your Woocommerce Store.\u003C\u002Fp>\n\u003Cp>This plugin adds Bleumi Payments for WooCommece (https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbleumi-payments-for-woocommerce\u002F) as a supported payment gateway in the WooCommerce Cancel Abandoned Order (https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoo-cancel-abandoned-order\u002F) plugin.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>Copyright 2020 Bleumi, Inc.\u003C\u002Fp>\n\u003Cp>Code licensed under the MIT License.\u003C\u002Fp>\n",782,"2022-01-07T08:58:00.000Z",[72,73,19,20,74],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbleumi-payments-for-cancel-abandoned-order.1.0.0.zip",{"attackSurface":111,"codeSignals":145,"taintFlows":152,"riskAssessment":153,"analyzedAt":165},{"hooks":112,"ajaxHandlers":141,"restRoutes":142,"shortcodes":143,"cronEvents":144,"entryPointCount":11,"unprotectedCount":11},[113,119,124,129,133,137],{"type":114,"name":115,"callback":116,"file":117,"line":118},"action","woocommerce_api_ob_callback","callback_handler","includes\\php\\class-woocommerce-vendreo-ob-gateway.php",26,{"type":114,"name":120,"callback":121,"priority":11,"file":122,"line":123},"plugins_loaded","vendreo_ob_woocommerce_plugin","vendreo-open-banking-gateway.php",21,{"type":125,"name":126,"callback":127,"file":122,"line":128},"filter","woocommerce_payment_gateways","vendreo_ob_add_woocommerce_gateway",31,{"type":114,"name":130,"callback":131,"file":122,"line":132},"before_woocommerce_init","vendreo_ob_declare_ob_cart_checkout_blocks_compatibility",47,{"type":114,"name":134,"callback":135,"file":122,"line":136},"woocommerce_blocks_loaded","vendreo_ob_register_order_approval_payment_method_type",48,{"type":114,"name":138,"callback":139,"file":122,"line":140},"woocommerce_blocks_payment_method_type_registration","closure",60,[],[],[],[],{"dangerousFunctions":146,"sqlUsage":147,"outputEscaping":149,"fileOperations":29,"externalRequests":29,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":151},[],{"prepared":11,"raw":11,"locations":148},[],{"escaped":11,"rawEcho":11,"locations":150},[],[],[],{"summary":154,"deductions":155},"The static analysis of vendreo-open-banking-gateway v2.0.0 indicates a generally strong security posture in terms of common attack vectors and code practices.  The plugin reports zero AJAX handlers, REST API routes, shortcodes, or cron events, leading to a remarkably small and, based on the data, seemingly protected attack surface.  Furthermore, all SQL queries utilize prepared statements, and all output is properly escaped, addressing significant potential vulnerabilities.  The absence of dangerous functions and a clean taint analysis further bolsters this positive assessment.\n\nHowever, there are a few areas that warrant attention and could indicate underlying risks. The presence of file operations and external HTTP requests, while not inherently insecure, represent potential entry points that require diligent secure coding practices to prevent exploitation.  The complete absence of nonce checks and capability checks is a notable concern. While the analysis shows no unprotected entry points, the lack of these fundamental WordPress security mechanisms means that even if future functionality is added, it might be introduced without essential safeguards. The plugin's vulnerability history is completely clean, which is excellent, but it's important to note that this might also be due to its current limited scope or the recency of its development.  A balanced conclusion would be that the plugin exhibits good foundational security practices for its current state but lacks some critical defensive layers that are standard in more mature or complex plugins.",[156,159,161,163],{"reason":157,"points":158},"File operations present",5,{"reason":160,"points":158},"External HTTP requests present",{"reason":162,"points":65},"Missing nonce checks",{"reason":164,"points":65},"Missing capability checks","2026-03-17T06:41:26.156Z",{"wat":167,"direct":172},{"assetPaths":168,"generatorPatterns":169,"scriptPaths":170,"versionParams":171},[],[],[],[],{"cssClasses":173,"htmlComments":174,"htmlAttributes":175,"restEndpoints":176,"jsGlobals":177,"shortcodeOutput":178},[],[],[],[],[],[]]