Does Virtuaria PagBank / PagSeguro para Woocommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Virtuaria PagBank / PagSeguro para Woocommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Virtuaria PagBank / PagSeguro para Woocommerce compatible with WordPress 6.8.5?

According to WordPress.org data, Virtuaria PagBank / PagSeguro para Woocommerce 3.6.4 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Virtuaria PagBank / PagSeguro para Woocommerce compatible with PHP 7.4+?

Virtuaria PagBank / PagSeguro para Woocommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is Virtuaria PagBank / PagSeguro para Woocommerce's security score?

Virtuaria PagBank / PagSeguro para Woocommerce has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Virtuaria PagBank / PagSeguro para Woocommerce Security & Risk Analysis

wordpress.org/plugins/virtuaria-pagseguro

Crédito, Pix e Boleto na sua loja virtual. Mais segurança, menos chargebacks com 3DS. Descontos nas taxas do PagBank.

1K active installs v3.6.4 PHP 7.4+ WP 4.7+ Updated Dec 15, 2025

boletocartaopagbankpagseguropix

A · Safe

CVEs total1

Unpatched0

Last CVENov 28, 2025

Plugin page Download

Safety Verdict

Is Virtuaria PagBank / PagSeguro para Woocommerce Safe to Use in 2026?

Generally Safe

Score 99/100

Virtuaria PagBank / PagSeguro para Woocommerce has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Nov 28, 2025Updated 3mo ago

Risk Assessment

The virtuaria-pagseguro plugin version 3.6.4 exhibits a mixed security posture. On the positive side, it demonstrates strong adherence to secure coding practices with 100% of SQL queries using prepared statements and an impressive 98% of output properly escaped. The absence of critical or high severity taint analysis findings and dangerous functions suggests a generally well-written codebase concerning these areas.

However, there are notable areas of concern, primarily stemming from the attack surface. The plugin exposes eight AJAX handlers, two of which lack authentication checks. This is a significant vulnerability as it allows unauthenticated users to potentially trigger these actions, which could lead to unintended consequences depending on the functionality of these handlers. While the plugin has had a past medium severity vulnerability related to missing authorization, the current static analysis showing unprotected AJAX endpoints raises a red flag that this type of issue could reoccur or be exploited.

In conclusion, while the plugin has strengths in data handling and output sanitization, the presence of unprotected AJAX endpoints represents a clear and present risk that requires immediate attention. The historical vulnerability also warrants caution. Addressing the unprotected AJAX handlers should be the top priority to improve the plugin's overall security.

Key Concerns

Unprotected AJAX handlers found
Past medium vulnerability: Missing Authorization

Vulnerabilities

Virtuaria PagBank / PagSeguro para Woocommerce Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-62151medium · 5.3Missing Authorization

Virtuaria PagBank / PagSeguro para Woocommerce <= 3.6.3 - Missing Authorization

Nov 28, 2025 Patched in 3.6.4 (22d)

Code Analysis

Analyzed Mar 16, 2026

Virtuaria PagBank / PagSeguro para Woocommerce Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

379 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared2 total queries

Output Escaping

98% escaped386 total outputs

Data Flows

All sanitized

Data Flow Analysis

5 flows

get_current_order_total (includes\class-virtuaria-pagseguro-events.php:162)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

Virtuaria PagBank / PagSeguro para Woocommerce Attack Surface

Entry Points8

Unprotected2

AJAX Handlers 8

authwp_ajax_fetch_payment_orderincludes\class-virtuaria-pagseguro-events.php:27

noprivwp_ajax_fetch_payment_orderincludes\class-virtuaria-pagseguro-events.php:28

authwp_ajax_virt_pagseguro_3ds_order_totalincludes\class-virtuaria-pagseguro-events.php:37

noprivwp_ajax_virt_pagseguro_3ds_order_totalincludes\class-virtuaria-pagseguro-events.php:41

authwp_ajax_virt_pagseguro_3ds_errorincludes\class-virtuaria-pagseguro-events.php:46

noprivwp_ajax_virt_pagseguro_3ds_errorincludes\class-virtuaria-pagseguro-events.php:50

authwp_ajax_duopay_fallback_refund_orderincludes\class-virtuaria-pagseguro-gateway-duopay.php:379

authwp_ajax_choose_duopay_credit_totalincludes\class-virtuaria-pagseguro-gateway-duopay.php:384

WordPress Hooks 88

actionadmin_menuincludes\class-virtuaria-marketing-page.php:18

actionadmin_footerincludes\class-virtuaria-marketing-page.php:19

actionpagseguro_pix_check_paymentincludes\class-virtuaria-pagseguro-events.php:29

actionpagseguro_process_update_order_statusincludes\class-virtuaria-pagseguro-events.php:30

filtercron_schedulesincludes\class-virtuaria-pagseguro-events.php:55

actionvirtuaria_pagseguro_pix_confirm_paymentincludes\class-virtuaria-pagseguro-events.php:56

actionwoocommerce_email_after_order_tableincludes\class-virtuaria-pagseguro-gateway-duopay.php:243

actionwp_enqueue_scriptsincludes\class-virtuaria-pagseguro-gateway-duopay.php:249

actionwp_enqueue_scriptsincludes\class-virtuaria-pagseguro-gateway-duopay.php:253

actionadmin_initincludes\class-virtuaria-pagseguro-gateway-duopay.php:280

filterwoocommerce_billing_fieldsincludes\class-virtuaria-pagseguro-gateway-duopay.php:286

actionwoocommerce_process_shop_order_metaincludes\class-virtuaria-pagseguro-gateway-duopay.php:324

actionvirtuaria_pagseguro_before_credit_card_fieldsincludes\class-virtuaria-pagseguro-gateway-duopay.php:354

actionwp_enqueue_scriptsincludes\class-virtuaria-pagseguro-gateway-duopay.php:359

actionwoocommerce_checkout_update_order_reviewincludes\class-virtuaria-pagseguro-gateway-duopay.php:363

actionadmin_enqueue_scriptsincludes\class-virtuaria-pagseguro-gateway-duopay.php:374

actionwoocommerce_api_wc_virtuaria_pagseguro_gatewayincludes\class-virtuaria-pagseguro-handle-notifications.php:52

actionadmin_menuincludes\class-virtuaria-pagseguro-settings.php:25

actionin_admin_footerincludes\class-virtuaria-pagseguro-settings.php:26

actionadmin_enqueue_scriptsincludes\class-virtuaria-pagseguro-settings.php:27

actionwp_enqueue_scriptsincludes\class-virtuaria-pagseguro-settings.php:28

actioninitincludes\class-virtuaria-pagseguro-settings.php:29

filterwoocommerce_pagseguro_virt_iconincludes\class-virtuaria-pagseguro-settings.php:30

actionvirtuaria_pagseguro_settings_updatedincludes\class-virtuaria-pagseguro-settings.php:31

actionadmin_initincludes\class-virtuaria-pagseguro-token.php:38

actionadmin_initincludes\class-virtuaria-pagseguro-token.php:39

actionadmin_initincludes\class-virtuaria-pagseguro-token.php:40

actionadmin_noticesincludes\class-virtuaria-pagseguro-token.php:42

actionadmin_initincludes\class-virtuaria-pagseguro-token.php:43

actionadmin_initincludes\class-virtuaria-pagseguro-token.php:44

actionadmin_noticesincludes\class-virtuaria-pagseguro-token.php:66

actionadmin_noticesincludes\class-virtuaria-pagseguro-token.php:85

actionadmin_noticesincludes\class-virtuaria-pagseguro-token.php:106

actionwp_enqueue_scriptsincludes\class-wc-virtuaria-pagseguro-gateway-credit.php:178

actionadmin_initincludes\class-wc-virtuaria-pagseguro-gateway-credit.php:183

filterwoocommerce_billing_fieldsincludes\class-wc-virtuaria-pagseguro-gateway-credit.php:189

actionwoocommerce_process_shop_order_metaincludes\class-wc-virtuaria-pagseguro-gateway-credit.php:200

actionwoocommerce_process_shop_order_metaincludes\class-wc-virtuaria-pagseguro-gateway-credit.php:209

actionwoocommerce_single_product_summaryincludes\class-wc-virtuaria-pagseguro-gateway-credit.php:214

actionwoocommerce_after_shop_loop_item_titleincludes\class-wc-virtuaria-pagseguro-gateway-credit.php:218

filterwoocommerce_available_variationincludes\class-wc-virtuaria-pagseguro-gateway-credit.php:223

actionwoocommerce_email_after_order_tableincludes\class-wc-virtuaria-pagseguro-gateway-pix.php:151

actionwp_enqueue_scriptsincludes\class-wc-virtuaria-pagseguro-gateway-pix.php:157

actionwoocommerce_process_shop_order_metaincludes\class-wc-virtuaria-pagseguro-gateway-pix.php:167

actionwoocommerce_process_shop_order_metaincludes\class-wc-virtuaria-pagseguro-gateway-pix.php:177

filterwoocommerce_billing_fieldsincludes\class-wc-virtuaria-pagseguro-gateway-pix.php:182

filtervirtuaria_pagseguro_disable_discountincludes\class-wc-virtuaria-pagseguro-gateway-pix.php:187

filterwoocommerce_gateway_titleincludes\class-wc-virtuaria-pagseguro-gateway-pix.php:193

actionafter_virtuaria_pix_validate_textincludes\class-wc-virtuaria-pagseguro-gateway-pix.php:199

actionafter_virtuaria_pix_validate_textincludes\class-wc-virtuaria-pagseguro-gateway-pix.php:203

actionwoocommerce_process_shop_order_metaincludes\class-wc-virtuaria-pagseguro-gateway-pix.php:214

actionwoocommerce_email_after_order_tableincludes\class-wc-virtuaria-pagseguro-gateway-ticket.php:142

filterwoocommerce_billing_fieldsincludes\class-wc-virtuaria-pagseguro-gateway-ticket.php:149

actionwoocommerce_process_shop_order_metaincludes\class-wc-virtuaria-pagseguro-gateway-ticket.php:160

actionpagseguro_ticket_check_paymentincludes\class-wc-virtuaria-pagseguro-gateway-ticket.php:165

filtervirtuaria_pagseguro_disable_discountincludes\class-wc-virtuaria-pagseguro-gateway-ticket.php:169

filterwoocommerce_gateway_titleincludes\class-wc-virtuaria-pagseguro-gateway-ticket.php:175

actionafter_virtuaria_ticket_textincludes\class-wc-virtuaria-pagseguro-gateway-ticket.php:181

actionafter_virtuaria_ticket_textincludes\class-wc-virtuaria-pagseguro-gateway-ticket.php:185

actionwoocommerce_email_after_order_tableincludes\class-wc-virtuaria-pagseguro-gateway.php:262

actionwoocommerce_email_after_order_tableincludes\class-wc-virtuaria-pagseguro-gateway.php:268

actionwp_enqueue_scriptsincludes\class-wc-virtuaria-pagseguro-gateway.php:274

actionwp_enqueue_scriptsincludes\class-wc-virtuaria-pagseguro-gateway.php:278

actionwoocommerce_process_shop_order_metaincludes\class-wc-virtuaria-pagseguro-gateway.php:288

actionwoocommerce_process_shop_order_metaincludes\class-wc-virtuaria-pagseguro-gateway.php:298

actionadmin_initincludes\class-wc-virtuaria-pagseguro-gateway.php:303

filterwoocommerce_billing_fieldsincludes\class-wc-virtuaria-pagseguro-gateway.php:309

filtervirtuaria_pagseguro_disable_discountincludes\class-wc-virtuaria-pagseguro-gateway.php:314

filterwoocommerce_gateway_titleincludes\class-wc-virtuaria-pagseguro-gateway.php:322

actionafter_virtuaria_pix_validate_textincludes\class-wc-virtuaria-pagseguro-gateway.php:329

actionafter_virtuaria_ticket_textincludes\class-wc-virtuaria-pagseguro-gateway.php:333

actionafter_virtuaria_pix_validate_textincludes\class-wc-virtuaria-pagseguro-gateway.php:337

actionafter_virtuaria_ticket_textincludes\class-wc-virtuaria-pagseguro-gateway.php:343

actionwoocommerce_process_shop_order_metaincludes\class-wc-virtuaria-pagseguro-gateway.php:355

actionwoocommerce_single_product_summaryincludes\class-wc-virtuaria-pagseguro-gateway.php:360

actionwoocommerce_after_shop_loop_item_titleincludes\class-wc-virtuaria-pagseguro-gateway.php:364

filterwoocommerce_available_variationincludes\class-wc-virtuaria-pagseguro-gateway.php:369

actionwoocommerce_email_after_order_tableincludes\traits\trait-virtuaria-pagseguro-common.php:247

filterwoocommerce_new_order_note_dataincludes\traits\trait-virtuaria-pagseguro-pix.php:223

filterwoocommerce_new_order_note_dataincludes\traits\trait-virtuaria-pagseguro-ticket.php:196

actionadmin_noticesvirtuaria-pagseguro.php:70

actionafter_setup_themevirtuaria-pagseguro.php:73

actionbefore_woocommerce_initvirtuaria-pagseguro.php:74

filterwoocommerce_payment_gatewaysvirtuaria-pagseguro.php:77

actionwoocommerce_blocks_loadedvirtuaria-pagseguro.php:78

actionadmin_noticesvirtuaria-pagseguro.php:80

actionwoocommerce_blocks_payment_method_type_registrationvirtuaria-pagseguro.php:274

actionplugins_loadedvirtuaria-pagseguro.php:352

Scheduled Events 5

pagseguro_process_update_order_status

pagseguro_pix_check_payment

virtuaria_pagseguro_pix_confirm_payment

pagseguro_ticket_check_payment

Maintenance & Trust

Virtuaria PagBank / PagSeguro para Woocommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedDec 15, 2025

PHP min version7.4

Downloads25K

Community Trust

Rating96/100

Number of ratings25

Active installs1K

Alternatives

Virtuaria PagBank / PagSeguro para Woocommerce Alternatives

PagBank / PagSeguro Connect para WooCommerce

pagbank-connect

PagBank com PIX, Cartão de Crédito, Boleto, Recorrência + Envio Fácil e com Menos Taxas no PagSeguro. Autenticação 3D: menos chargeback + aprovações.

4K 1 CVE

iPag Pagamentos Digitais

ipag-woocommerce

100

Facilite pagamentos online com segurança e rapidez, integrando sua loja ao nosso gateway e PSP.

100 No CVEs

Click2pay para WooCommerce | PIX, Cartão de Crédito e Boleto Bancário

click2pay-pagamentos

Ofereça a seus clientes pagamentos via Pix, assinatura recorrente, cartão de crédito ou boleto bancário, com as melhores tarifas!

40 No CVEs

Cielo For Tutor Lms

cielo-for-tutor-lms

100

Payment Gateway for Cielo on Tutor LMS.

0 No CVEs

PagBank for WooCommerce

pagbank-for-woocommerce

100

Aceite pagamentos via cartão de crédito, boleto e Pix no checkout do WooCommerce através do PagBank.

4K No CVEs

Developer Profile

Virtuaria PagBank / PagSeguro para Woocommerce Developer Profile

Virtuaria

10 plugins · 2K total installs

trust score

Avg Security Score

95/100

Avg Patch Time

22 days

View full developer profile

Detection Fingerprints

How We Detect Virtuaria PagBank / PagSeguro para Woocommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/virtuaria-pagseguro/assets/js/pagseguro-main.js/wp-content/plugins/virtuaria-pagseguro/assets/css/pagseguro-main.css/wp-content/plugins/virtuaria-pagseguro/assets/js/pagseguro-checkout.js/wp-content/plugins/virtuaria-pagseguro/assets/css/pagseguro-checkout.css/wp-content/plugins/virtuaria-pagseguro/assets/js/pagseguro-admin.js/wp-content/plugins/virtuaria-pagseguro/assets/css/pagseguro-admin.css

Script Paths

/wp-content/plugins/virtuaria-pagseguro/assets/js/pagseguro-main.js/wp-content/plugins/virtuaria-pagseguro/assets/js/pagseguro-checkout.js/wp-content/plugins/virtuaria-pagseguro/assets/js/pagseguro-admin.js

Version Parameters

virtuaria-pagseguro/assets/js/pagseguro-main.js?ver=virtuaria-pagseguro/assets/css/pagseguro-main.css?ver=virtuaria-pagseguro/assets/js/pagseguro-checkout.js?ver=virtuaria-pagseguro/assets/css/pagseguro-checkout.css?ver=virtuaria-pagseguro/assets/js/pagseguro-admin.js?ver=virtuaria-pagseguro/assets/css/pagseguro-admin.css?ver=

HTML / DOM Fingerprints

CSS Classes

virtuaria-pagseguro-checkout

HTML Comments

+2 more

Data Attributes

data-virtuaria-pagseguro-settingsdata-virtuaria-pagseguro-checkout

JS Globals

virtuaria_pagseguro_paramsvirtuariaPagseguro

REST Endpoints

/wp-json/virtuaria-pagseguro/v1/settings/wp-json/virtuaria-pagseguro/v1/payment

Shortcode Output

[virtuaria_pagseguro_checkout]

FAQ