WP-Safety

Virtuaria PagBank Split Security & Risk Analysis

wordpress.org/plugins/virtuaria-pagbank-split

Monte facilmente um marketplace, dropshipping ou similar com este plugin. Split de Pagamento, Gestão de Sellers / Comissões e Relatórios

40 active installs v1.2.1 PHP 7.4+ WP 4.7+ Updated Nov 3, 2025
marketplacepagbankpagsegurosplitwoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Virtuaria PagBank Split Safe to Use in 2026?

Generally Safe

Score 100/100

Virtuaria PagBank Split has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago
Risk Assessment

The Virtuaria PagSeguro Split plugin v1.2.1 demonstrates a strong security posture with several positive attributes. The code analysis reveals a commendable reliance on prepared statements for all SQL queries, a significant defense against SQL injection. Furthermore, the plugin exhibits excellent output escaping practices, with nearly all outputs properly sanitized, mitigating cross-site scripting (XSS) risks. The presence of nonce checks on all AJAX handlers and capability checks on the identified entry points indicates a good understanding of WordPress security best practices for controlling access and preventing unauthorized actions. The plugin also avoids file operations and external HTTP requests, reducing its attack surface in those areas. The vulnerability history is completely clean, with no recorded CVEs, suggesting a history of secure development and proactive maintenance.

However, there is one area of concern flagged by the taint analysis. A single flow with an unsanitized path, classified as high severity, warrants attention. While the overall attack surface is small and all identified entry points have authorization checks, this specific unsanitized path represents a potential weakness. The absence of known vulnerabilities is a significant strength, but this single taint flow suggests that even with good general practices, specific flaws can still exist. In conclusion, Virtuaria PagSeguro Split v1.2.1 is generally well-secured, with a robust approach to common web vulnerabilities. The primary focus for improvement should be to investigate and remediate the high-severity unsanitized path identified in the taint analysis to ensure a truly comprehensive security profile.

Key Concerns

  • High severity taint flow with unsanitized path
Vulnerabilities
None known

Virtuaria PagBank Split Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Virtuaria PagBank Split Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
28 prepared
Unescaped Output
2
189 escaped
Nonce Checks
12
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
1

Bundled Libraries

DataTables

SQL Query Safety

100% prepared28 total queries

Output Escaping

99% escaped191 total outputs
Data Flows
1 unsanitized

Data Flow Analysis

4 flows1 with unsanitized paths
<class-virtuaria-receivers> (includes\class-virtuaria-receivers.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Virtuaria PagBank Split Attack Surface

Entry Points1
Unprotected0

AJAX Handlers 1

authwp_ajax_virtuaria_pagbank_release_custodyincludes\class-virtuaria-pagbank-custody.php:41
WordPress Hooks 77
actionadmin_noticesclass-virtuaria-pagbank-split.php:54
actionadmin_noticesclass-virtuaria-pagbank-split.php:58
actioninitclass-virtuaria-pagbank-split.php:62
actionplugins_loadedclass-virtuaria-pagbank-split.php:186
actionadmin_enqueue_scriptsincludes\class-virtuaria-pagbank-custody.php:36
actionwoocommerce_admin_order_actions_endincludes\class-virtuaria-pagbank-custody.php:46
actionadmin_menuincludes\class-virtuaria-pagbank-shipping.php:39
actionadmin_enqueue_scriptsincludes\class-virtuaria-pagbank-shipping.php:40
actionadmin_initincludes\class-virtuaria-pagbank-shipping.php:41
actionadmin_initincludes\class-virtuaria-pagbank-shipping.php:42
filterwoocommerce_package_ratesincludes\class-virtuaria-pagbank-shipping.php:43
actionwoocommerce_after_shipping_rateincludes\class-virtuaria-pagbank-shipping.php:44
filtervirtuaria_split_receivers_paymentincludes\class-virtuaria-pagbank-shipping.php:45
actionvirtuaria_pagseguro_save_split_settingsincludes\class-virtuaria-pagbank-split-settings.php:20
actionadmin_menuincludes\class-virtuaria-pagbank-split-settings.php:21
actionadd_meta_boxes_shop_orderincludes\class-virtuaria-pagbank-split-settings.php:24
filtervirtuaria_pagseguro_allow_refundincludes\class-virtuaria-pagbank-split-settings.php:25
filtervirtuaria_pagseguro_disable_discountincludes\class-virtuaria-pagbank-split-settings.php:36
actionafter_virtuaria_pix_validate_textincludes\class-virtuaria-pagbank-split-settings.php:43
actionadmin_enqueue_scriptsincludes\class-virtuaria-receiver-report.php:35
actionadmin_menuincludes\class-virtuaria-receiver-report.php:36
actioninitincludes\class-virtuaria-receivers.php:30
actionadmin_menuincludes\class-virtuaria-receivers.php:31
filtersetup_global_menuincludes\class-virtuaria-receivers.php:32
actionadmin_initincludes\class-virtuaria-receivers.php:33
actionedit_user_profileincludes\class-virtuaria-receivers.php:34
actionedit_user_profile_updateincludes\class-virtuaria-receivers.php:35
actionsave_post_productincludes\class-virtuaria-receivers.php:36
actiondokan_new_product_addedincludes\class-virtuaria-receivers.php:37
filterpre_get_postsincludes\class-virtuaria-receivers.php:38
filterviews_edit-productincludes\class-virtuaria-receivers.php:39
filterwoocommerce_is_purchasableincludes\class-virtuaria-receivers.php:40
filterwoocommerce_variation_is_purchasableincludes\class-virtuaria-receivers.php:41
filtervirtuaria_pagseguro_split_chargesincludes\class-virtuaria-receivers.php:42
filtervirtuaria_pagseguro_split_subscription_chargesincludes\class-virtuaria-receivers.php:43
filtermanage_edit-product_columnsincludes\class-virtuaria-receivers.php:44
actionmanage_product_posts_custom_columnincludes\class-virtuaria-receivers.php:45
actionadmin_head-edit.phpincludes\class-virtuaria-receivers.php:46
actionwoocommerce_single_product_summaryincludes\class-virtuaria-receivers.php:47
actionwoocommerce_after_order_itemmetaincludes\class-virtuaria-receivers.php:48
actionadd_meta_boxesincludes\class-virtuaria-receivers.php:49
actionsave_post_productincludes\class-virtuaria-receivers.php:50
actionquick_edit_custom_boxincludes\class-virtuaria-receivers.php:51
actionadmin_footerincludes\class-virtuaria-receivers.php:52
actionadmin_initincludes\class-virtuaria-receivers.php:53
actionadmin_initincludes\class-virtuaria-receivers.php:54
actionadmin_initincludes\class-virtuaria-receivers.php:55
actioninitincludes\class-virtuaria-receivers.php:56
actionshow_user_profileincludes\class-virtuaria-receivers.php:57
actionwp_loginincludes\class-virtuaria-receivers.php:58
actionadmin_initincludes\class-virtuaria-receivers.php:59
actionvirtuaria_receiver_report_before_contentincludes\class-virtuaria-receivers.php:60
actionvirtuaria_receiver_report_before_contentincludes\class-virtuaria-receivers.php:61
actionpre_get_postsincludes\class-virtuaria-receivers.php:62
actionafter_update_receiver_profileincludes\class-virtuaria-receivers.php:63
actionwoocommerce_after_cart_item_nameincludes\class-virtuaria-receivers.php:64
filterwoocommerce_checkout_cart_item_quantityincludes\class-virtuaria-receivers.php:65
filterwoocommerce_order_item_nameincludes\class-virtuaria-receivers.php:66
actioninitincludes\class-virtuaria-receivers.php:67
actionsave_post_productincludes\class-virtuaria-receivers.php:68
actioninitincludes\class-virtuaria-receivers.php:69
filterquery_varsincludes\class-virtuaria-receivers.php:70
filtertemplate_includeincludes\class-virtuaria-receivers.php:71
actioninitincludes\class-virtuaria-receivers.php:73
actionadmin_enqueue_scriptsincludes\class-virtuaria-receivers.php:74
actionunistall_virtuaria_pagbank_splitincludes\class-virtuaria-receivers.php:80
actionwoocommerce_order_status_changedincludes\class-virtuaria-seller-mails.php:28
actioninitincludes\class-virtuaria-seller-review-page.php:42
filterquery_varsincludes\class-virtuaria-seller-review-page.php:43
filtertemplate_includeincludes\class-virtuaria-seller-review-page.php:44
actionwp_enqueue_scriptsincludes\class-virtuaria-seller-review-page.php:45
actioninstall_virtuaria_pagbank_splitincludes\class-virtuaria-transactions-dao.php:26
actionvirtuaria_split_receivers_infoincludes\class-virtuaria-transactions-report.php:39
actionvirtuaria_pagseguro_succesfull_create_orderincludes\class-virtuaria-transactions-report.php:40
actionadmin_menuincludes\class-virtuaria-transactions-report.php:41
actionadmin_enqueue_scriptsincludes\class-virtuaria-transactions-report.php:42
actionwoocommerce_checkout_order_createdincludes\class-virtuaria-transactions-report.php:43
Maintenance & Trust

Virtuaria PagBank Split Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedNov 3, 2025
PHP min version7.4
Downloads2K

Community Trust

Rating100/100
Number of ratings2
Active installs40
Alternatives

Virtuaria PagBank Split Alternatives

PagBank / PagSeguro Connect para WooCommerce

PagBank / PagSeguro Connect para WooCommerce

pagbank-connect

A
99

PagBank com PIX, Cartão de Crédito, Boleto, Recorrência + Envio Fácil e com Menos Taxas no PagSeguro. Autenticação 3D: menos chargeback + aprovações.

4K 1 CVE
PagBank for WooCommerce

PagBank for WooCommerce

pagbank-for-woocommerce

A
100

Aceite pagamentos via cartão de crédito, boleto e Pix no checkout do WooCommerce através do PagBank.

4K No CVEs
Split Pay – Stripe Connect Split Payments & Multi-Vendor Marketplace for WooCommerce

Split Pay – Stripe Connect Split Payments & Multi-Vendor Marketplace for WooCommerce

bsd-woo-stripe-connect-split-pay

A
100

Split payments made in WooCommerce stores between multiple Stripe Connected Accounts and a Stripe Platform Account.

100 No CVEs
Dokan: AI Powered WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy

Dokan: AI Powered WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy

dokan-lite

B
83

Transform your WooCommerce site into a multivendor marketplace with Dokan – an AI powered & advanced WooCommerce marketplace solution

40K 7 CVEs
WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible

WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible

wc-frontend-manager

A
88

Vendor frontend store/shop manager for WC Marketplace, WC Vendors, WC Product Vendors & Dokan with Bookings, Listings & Subscriptions compatib &hellip;

20K 8 CVEs
Developer Profile

Virtuaria PagBank Split Developer Profile

Virtuaria

10 plugins · 2K total installs

91
trust score
Avg Security Score
95/100
Avg Patch Time
22 days
View full developer profile
Detection Fingerprints

How We Detect Virtuaria PagBank Split

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/virtuaria-pagbank-split/assets/css/admin.css/wp-content/plugins/virtuaria-pagbank-split/assets/js/admin.js/wp-content/plugins/virtuaria-pagbank-split/assets/css/frontend.css/wp-content/plugins/virtuaria-pagbank-split/assets/js/frontend.js
Script Paths
/wp-content/plugins/virtuaria-pagbank-split/assets/js/admin.js/wp-content/plugins/virtuaria-pagbank-split/assets/js/frontend.js
Version Parameters
virtuaria-pagbank-split/assets/css/admin.css?ver=virtuaria-pagbank-split/assets/js/admin.js?ver=virtuaria-pagbank-split/assets/css/frontend.css?ver=virtuaria-pagbank-split/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
virtuaria-pagbank-split-admin-notice
Data Attributes
data-split-serial
JS Globals
virtuaria_pagbank_split_admin_params
FAQ

Frequently Asked Questions about Virtuaria PagBank Split