[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f1MLy1YBaOxXct_agmX-j01CLF001TRWp_R_DCbCD8WI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":33,"analysis":129,"fingerprints":257},"wc-ozow-gateway","Ozow Gateway for WooCommerce","1.3.3","ozowpayments","https:\u002F\u002Fprofiles.wordpress.org\u002Fozowpayments\u002F","\u003Cp>Ozow is one of South Africa’s fastest growing fintechs changing the finance landscape by creating cashless and contactless payment solutions that speak to the heart of your customer’s needs.\u003Cbr \u002F>\nThe Ozow extension for WooCommerce enables you to accept payments via one of South Africa’s most popular payment gateways.\u003C\u002Fp>\n\u003Ch3>Ozow Service Usage\u003C\u002Fh3>\n\u003Ch4>This plugin relies on the following Ozow service(s):\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Description: Ozow is a payment processing service used for handling payment status, refunds and tokenization.\u003C\u002Fli>\n\u003Cli>Service URL: https:\u002F\u002Fapi.ozow.com\u002F\u003C\u002Fli>\n\u003Cli>Terms of Use: https:\u002F\u002Fozow.com\u002Fterms-and-conditions\u003C\u002Fli>\n\u003Cli>Privacy Policy: https:\u002F\u002Fozow.com\u002Fprivacy-policy\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please be aware that by using this plugin, certain data may be transmitted to Ozow as outlined in their terms of use and privacy policy.\u003C\u002Fp>\n","This is the WooCommerce extension to receive instant EFT payments from customers using the South African Ozow payments provider.",700,4273,0,"2026-02-11T12:47:00.000Z","6.9.4","6.6","",[19,20,21],"online-refund","payment-request","woocommerce","https:\u002F\u002Fozow.com\u002Fintegrations\u002Fwoo-commerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-ozow-gateway.1.3.3.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},1,30,94,"2026-04-05T09:49:42.625Z",[34,55,75,93,112],{"slug":35,"name":36,"version":37,"author":38,"author_profile":39,"description":40,"short_description":41,"active_installs":42,"downloaded":43,"rating":44,"num_ratings":45,"last_updated":46,"tested_up_to":15,"requires_at_least":47,"requires_php":48,"tags":49,"homepage":53,"download_link":54,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"woocommerce-payfast-gateway","WooCommerce Payfast Gateway","1.7.5","WooCommerce","https:\u002F\u002Fprofiles.wordpress.org\u002Fwoocommerce\u002F","\u003Cp>Give customers more flexibility and increase your bottom line with Payfast — one of South Africa’s most popular payment gateways.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Fast, \u003Cstrong>super-secure\u003C\u002Fstrong> payments from almost anywhere in the world.\u003C\u002Fli>\n\u003Cli>Compatible with \u003Cstrong>subscriptions\u003C\u002Fstrong>, \u003Cstrong>deposits\u003C\u002Fstrong>, and \u003Cstrong>pre-orders\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Get started\u003C\u002Fh4>\n\u003Cp>This extension requires a Payfast merchant account. \u003Ca href=\"https:\u002F\u002Fpayfast.io\u002Fgateway-aggregator-selector\u002F\" rel=\"nofollow ugc\">Sign up for free\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>How does it work?\u003C\u002Fh4>\n\u003Cp>At checkout, customers are automatically taken to Payfast to pay for their orders. Once payment is complete, Payfast redirects them to your store to continue shopping.\u003C\u002Fp>\n\u003Ch4>Fast, super-secure, and scalable\u003C\u002Fh4>\n\u003Cp>Pay it safe, every time. Payfast is trusted by \u003Cstrong>more than 100,000\u003C\u002Fstrong> South African businesses, with security that exceeds industry standards. It’s PCI DSS-compliant and also supports 18+ popular payment methods. In a nutshell, WooCommerce Payfast Gateway is the fastest, smartest, and safest way to accept payments online.\u003C\u002Fp>\n\u003Ch4>Boost your bottom line\u003C\u002Fh4>\n\u003Cp>Payfast is compatible with \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-subscriptions\u002F\" rel=\"nofollow ugc\">WooCommerce Subscriptions\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-pre-orders\u002F\" rel=\"nofollow ugc\">WooCommerce Pre-Orders\u003C\u002Fa>, giving your shoppers the ultimate flexibility. \u003Cstrong>Convert more customers\u003C\u002Fstrong> by letting them make deposits, order in advance, or subscribe to your products and services. You win each way!\u003C\u002Fp>\n","Give customers more flexibility and increase your bottom line with Payfast — one of South Africa’s most popular payment gateways.",30000,871750,60,7,"2026-02-24T19:05:00.000Z","6.7","7.4",[50,51,52,20,21],"automattic","credit-card","payfast","https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fpayfast-payment-gateway\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoocommerce-payfast-gateway.1.7.5.zip",{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":65,"num_ratings":66,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":48,"tags":70,"homepage":73,"download_link":74,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"clover-payments-for-woocommerce","Clover Payments for WooCommerce","2.3.1","Clover eCommerce","https:\u002F\u002Fprofiles.wordpress.org\u002Fcloverecommerce\u002F","\u003Cp>The WordPress plugin from Clover allows a merchant using a WordPress based app like WooCommerce\u003Cbr \u002F>\nto securely collect card information from buyers and process the payment using their Clover merchant account.\u003C\u002Fp>\n\u003Cp>The payment extension uses iframes to collect card information. Card details are the tokenized by directly\u003Cbr \u002F>\ncommunicating with a Clover’s servers. The payment is processed using this token and the card details are never saved on WordPress or the merchant’s servers. Therefore, this plug-in does not contribute to the PCI scope of a merchant’s eCommerce site.\u003C\u002Fp>\n\u003Cp>The plug-in is free for merchants to use and transactions processed using this plugin will be charged under the merchant’s Clover account.\u003C\u002Fp>\n\u003Ch3>Privacy Statement\u003C\u002Fh3>\n\u003Cp>Clover’s privacy statement can be found \u003Ca href=\"https:\u002F\u002Fwww.clover.com\u002Fprivacy-policy\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Feature list\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Authorize only\u003C\u002Fli>\n\u003Cli>Capture\u003C\u002Fli>\n\u003Cli>Charge (Authorize and Capture)\u003C\u002Fli>\n\u003Cli>Apple Pay\u003C\u002Fli>\n\u003Cli>Refund\u003C\u002Fli>\n\u003Cli>Void\u003C\u002Fli>\n\u003Cli>PCI Compliance through iFrames\u003C\u002Fli>\n\u003Cli>Multi-Lingual Support for Canadian French\u003C\u002Fli>\n\u003Cli>Payment option with the ‘Pay Now’ link sent via email\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Prerequisites\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Clover Merchant or Sandbox account\u003C\u002Fli>\n\u003Cli>If you are currently not a Clover merchant or do not have a Clover Sandbox account, you will need to sign up for one at Clover.com prior to using the Payment extension. You can then use this extension to send transactions to your Sandbox or Production accounts.\u003C\u002Fli>\n\u003Cli>We recommend that you test your plugin integration with your Clover sandbox account prior to sending transactions to your production\u002Flive\u003Cbr \u002F>\naccount(s).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Direct all questions to wordpress@clover.com\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdocs.clover.com\u002Fdocs\u002Fwoocommerce\" rel=\"nofollow ugc\">Clover Documentation\u003C\u002Fa>\u003C\u002Fp>\n","The Clover Payments plugin enables merchants that use WooCommerce to process online card payments using Clover.",3000,42488,34,16,"2026-02-05T04:14:00.000Z","6.8.5","6.1",[71,72,51,20,21],"apple-pay","clover","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclover-payments-for-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fclover-payments-for-woocommerce.2.3.1.zip",{"slug":76,"name":77,"version":78,"author":38,"author_profile":39,"description":79,"short_description":80,"active_installs":63,"downloaded":81,"rating":82,"num_ratings":83,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":48,"tags":87,"homepage":90,"download_link":91,"security_score":24,"vuln_count":29,"unpatched_count":13,"last_vuln_date":92,"fetched_at":26},"woocommerce-gateway-eway","Eway Payments for Woo","3.9.2","\u003Cp>The Eway extension for WooCommerce allows you to take credit card payments directly on your store without redirecting your customers to a third party site to make payment. Supports \u003Cstrong>WooCommerce Subscriptions, WooCommerce Refunds API\u003C\u002Fstrong>, as well as \u003Cstrong>token payments\u003C\u002Fstrong>, which allows customers to save credit cards for future purchases. Everything happens on your site without the customer ever leaving.\u003C\u002Fp>\n\u003Cp>The Eway payment gateway for WooCommerce makes use of Eway’s brand new Rapid 3.1 API, it supports \u003Cstrong>3D Secure\u003C\u002Fstrong> and is \u003Cstrong>fully PCI compliant\u003C\u002Fstrong> as per Eway’s specifications and adds support for processing \u003Cstrong>subscription payments\u003C\u002Fstrong> as well as \u003Cstrong>token payments\u003C\u002Fstrong> allowing customers to save credit cards for future purchases.\u003C\u002Fp>\n\u003Cp>By using Eway’s Rapid 3.1 API there is a single endpoint for processing payment, meaning you only need this one extension to take payment through any of Eway’s processing countries, Eway Australia, Eway New Zealand, Eway Singapore, Eway Malaysia, and Eway Hong Kong. Eway uses complex DNS technology to ensure your payment is routed to the correct country.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Ability to host promotional flash sales in real-time\u003C\u002Fli>\n\u003Cli>Generate discount coupons for your customers to help with special promotions\u003C\u002Fli>\n\u003Cli>Product reviews from your customers\u003C\u002Fli>\n\u003Cli>Automatic up-sells and cross-sells\u003C\u002Fli>\n\u003Cli>Intuitive order management suite\u003C\u002Fli>\n\u003C\u002Ful>\n","This is the official WooCommerce extension to take credit card and subscription payments directly on your store with Eway.",156348,64,5,"2025-10-13T02:29:00.000Z","6.7.5","6.0",[51,88,89,20,21],"eway","gateway","https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Feway\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoocommerce-gateway-eway.3.9.2.zip","2023-01-04 00:00:00",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":101,"downloaded":102,"rating":24,"num_ratings":103,"last_updated":104,"tested_up_to":68,"requires_at_least":105,"requires_php":48,"tags":106,"homepage":108,"download_link":109,"security_score":110,"vuln_count":103,"unpatched_count":13,"last_vuln_date":111,"fetched_at":26},"wc-peach-payments-gateway","Peach Payments Gateway","4.0","peachpayments","https:\u002F\u002Fprofiles.wordpress.org\u002Fpeachpayments\u002F","\u003Cp>A payment gateway integration between WooCommerce and Peach Payments.\u003C\u002Fp>\n\u003Ch3>Introduction\u003C\u002Fh3>\n\u003Cp>Accept payments from customers using a variety of \u003Ca href=\"https:\u002F\u002Fdeveloper.peachpayments.com\u002Fdocs\u002Fpp-payment-methods\" rel=\"nofollow ugc\">payment methods\u003C\u002Fa>, including card, EFT, BNPL (buy now, pay later), QR code, wallet, voucher, mobile money, and alternative credit.\u003C\u002Fp>\n\u003Ch3>Overview\u003C\u002Fh3>\n\u003Cp>Peach Payments is a leading payment service provider in multiple countries servicing some of the largest companies in Africa. Our mission is to make online payments simple and seamless across Africa.\u003C\u002Fp>\n\u003Cp>Explore all \u003Ca href=\"https:\u002F\u002Fwww.peachpayments.com\u002F\" rel=\"nofollow ugc\">Peach Payments\u003C\u002Fa> features and how to configure Peach Payments for \u003Ca href=\"https:\u002F\u002Fdeveloper.peachpayments.com\u002Fdocs\u002Fwoocommerce\" rel=\"nofollow ugc\">WooCommerce\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Enterprise-grade security (3-D Secure enabled and PCI compliant)\u003C\u002Fli>\n\u003Cli>Mobile-optimised user experience\u003C\u002Fli>\n\u003Cli>Industry-leading conversion rates\u003C\u002Fli>\n\u003Cli>Supports multiple currencies\u003C\u002Fli>\n\u003Cli>Secure card storage\u003C\u002Fli>\n\u003Cli>Fully supports WooCommerce Subscriptions, if purchased separately\u003C\u002Fli>\n\u003Cli>Our modern Dashboard enables you to easily connect your e-commerce platform to Peach Payments, view and refund transactions, and test integrations and payment methods using our fully isolated sandbox environment.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>It’s free, and always will be\u003C\u002Fh4>\n\u003Cp>We are firm believers in open source, which is why we’re releasing this module for free, forever.\u003C\u002Fp>\n\u003Ch4>Actively developed\u003C\u002Fh4>\n\u003Cp>This module is actively developed, new features and enhancements are added based on your feedback.\u003C\u002Fp>\n\u003Ch4>Testing\u003C\u002Fh4>\n\u003Cp>Visit the Peach Payments documentation hub for details on how to test the payment extension \u003Ca href=\"https:\u002F\u002Fdeveloper.peachpayments.com\u002Fdocs\u002Fwoocommerce#configure-the-plugin\" rel=\"nofollow ugc\">WooCommerce\u003C\u002Fa> and for test cards and credentials \u003Ca href=\"https:\u002F\u002Fdeveloper.peachpayments.com\u002Fdocs\u002Freference-test-and-go-live\" rel=\"nofollow ugc\">Test and go live procedure 🚀\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Sign up with Peach Payments\u003C\u002Fh4>\n\u003Cp>Contact Peach Payments at \u003Ca href=\"mailto:sales@peachpayments.com\" rel=\"nofollow ugc\">sales@peachpayments.com\u003C\u002Fa> to set up a merchant account for your company or website.\u003Cbr \u002F>\nPeach Payments is there to assist you in the application process with the respective banks. Note: The merchant account application process may take up to four weeks depending on the bank. Get in touch as soon as possible to avoid delays going live.\u003C\u002Fp>\n","A payment gateway integration between WooCommerce and Peach Payments.",1000,49482,2,"2026-03-10T12:18:00.000Z","6.8",[51,20,107,21],"payments","http:\u002F\u002Fwoothemes.com\u002Fproducts\u002Fpeach-payments\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-peach-payments-gateway.4.0.0.zip",98,"2026-01-16 00:00:00",{"slug":113,"name":114,"version":115,"author":116,"author_profile":117,"description":118,"short_description":119,"active_installs":120,"downloaded":121,"rating":13,"num_ratings":13,"last_updated":122,"tested_up_to":123,"requires_at_least":124,"requires_php":17,"tags":125,"homepage":17,"download_link":127,"security_score":128,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"paymennt-card-payment","Paymennt","3.1.1","paymennt","https:\u002F\u002Fprofiles.wordpress.org\u002Fpaymennt\u002F","\u003Cp>Paymennt provides simple, fast and reliable card payment method for the woocommerce stores. It enables Drop-in Frames and Hosted Checkout mode of card payment.\u003C\u002Fp>\n\u003Ch4>Why choose Paymennt?\u003C\u002Fh4>\n\u003Cp>Secure payments: Paymennt is PCI Level 1 compliant, and implements world class fraud detection.\u003C\u002Fp>\n\u003Cp>Paymennt has no setup fees, no monthly fees, no hidden costs, just pay for what you use, and nothing you don’t. No hidden fees even if you take a break from transactions.\u003C\u002Fp>\n\u003Cp>Paymennt boasts seamless and robust tech support to its merchants. No waiting in line to get in touch with us.\u003C\u002Fp>\n\u003Ch3>External Service\u003C\u002Fh3>\n\u003Cp>This plugin uses an external service: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpaymennt\u002Fpaymennt-php\" rel=\"nofollow ugc\">paymennt-php\u003C\u002Fa> solely developed by Paymennt. It serves as wrapper to access the Paymennt APIs.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpaymennt\u002Fpaymennt-php\u002Fblob\u002Fmain\u002FLICENSE\" rel=\"nofollow ugc\">Terms of use and\u002For privacy policies\u003C\u002Fa>\u003C\u002Fp>\n","Take credit card payments on your woocommerce store using Paymennt.",300,2426,"2024-03-10T11:56:00.000Z","6.0.11","5.7",[51,126,20,21],"payment","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpaymennt-card-payment.3.1.1.zip",85,{"attackSurface":130,"codeSignals":197,"taintFlows":209,"riskAssessment":246,"analyzedAt":256},{"hooks":131,"ajaxHandlers":193,"restRoutes":194,"shortcodes":195,"cronEvents":196,"entryPointCount":13,"unprotectedCount":13},[132,138,142,146,151,155,159,163,168,172,177,181,185,189],{"type":133,"name":134,"callback":135,"file":136,"line":137},"action","woocommerce_update_options_payment_gateways","process_admin_options","classes\\class-wc-gateway-ozow.php",69,{"type":133,"name":139,"callback":140,"file":136,"line":141},"woocommerce_api_wc_gateway_ozow","ozowpay_process_response",71,{"type":133,"name":143,"callback":144,"file":145,"line":45},"current_screen","ozowpay_add_custom_order_actions_to_edit_order_page","includes\\ozowpay-wc-gateway-resend-payment-link-function.php",{"type":147,"name":148,"callback":149,"file":145,"line":150},"filter","woocommerce_order_actions","ozowpay_add_custom_resend_payment_link_order_action_button",11,{"type":133,"name":152,"callback":153,"file":145,"line":154},"woocommerce_order_action_ozowpay_resend_payment_link_to_phone","ozowpay_resend_payment_link_to_phone_order_action_callback",57,{"type":133,"name":156,"callback":157,"file":145,"line":158},"woocommerce_order_action_ozowpay_resend_payment_link_to_email_address","ozow_resend_payment_link_to_email_address_order_action_callback",58,{"type":133,"name":160,"callback":161,"file":145,"line":162},"admin_notices","ozowpay_custom_admin_notices",185,{"type":133,"name":164,"callback":165,"priority":13,"file":166,"line":167},"plugins_loaded","ozowpay_init","woocommerce-gateway-ozow.php",29,{"type":147,"name":169,"callback":170,"file":166,"line":171},"woocommerce_payment_gateways","ozowpay_wc_add_gateway_class",40,{"type":147,"name":173,"callback":174,"priority":175,"file":166,"line":176},"woocommerce_valid_order_statuses_for_payment","add_on_hold_to_valid_order_statuses",10,42,{"type":147,"name":178,"callback":179,"file":166,"line":180},"option_woocommerce_ozow_settings","ozowpay_wc_decode_gateway_settings",43,{"type":133,"name":182,"callback":183,"file":166,"line":184},"woocommerce_blocks_loaded","ozowpay_wc_blocks_support",81,{"type":133,"name":186,"callback":187,"file":166,"line":188},"woocommerce_blocks_payment_method_type_registration","closure",86,{"type":133,"name":190,"callback":191,"file":166,"line":192},"before_woocommerce_init","ozowpay_wc_declare_feature_compatibility",112,[],[],[],[],{"dangerousFunctions":198,"sqlUsage":199,"outputEscaping":201,"fileOperations":13,"externalRequests":207,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":208},[],{"prepared":13,"raw":13,"locations":200},[],{"escaped":202,"rawEcho":29,"locations":203},38,[204],{"file":136,"line":205,"context":206},103,"raw output",4,[],[210,229],{"entryPoint":211,"graph":212,"unsanitizedCount":29,"severity":228},"ozowpay_custom_admin_notices (includes\\ozowpay-wc-gateway-resend-payment-link-function.php:167)",{"nodes":213,"edges":225},[214,219],{"id":215,"type":216,"label":217,"file":145,"line":218},"n0","source","$_REQUEST",179,{"id":220,"type":221,"label":222,"file":145,"line":223,"wp_function":224},"n1","sink","echo() [XSS]",181,"echo",[226],{"from":215,"to":220,"sanitized":227},false,"medium",{"entryPoint":230,"graph":231,"unsanitizedCount":103,"severity":228},"\u003Cozowpay-wc-gateway-resend-payment-link-function> (includes\\ozowpay-wc-gateway-resend-payment-link-function.php:0)",{"nodes":232,"edges":243},[233,235,239,241],{"id":215,"type":216,"label":217,"file":145,"line":234},21,{"id":220,"type":221,"label":236,"file":145,"line":237,"wp_function":238},"wp_redirect() [Open Redirect]",150,"wp_redirect",{"id":240,"type":216,"label":217,"file":145,"line":218},"n2",{"id":242,"type":221,"label":222,"file":145,"line":223,"wp_function":224},"n3",[244,245],{"from":215,"to":220,"sanitized":227},{"from":240,"to":242,"sanitized":227},{"summary":247,"deductions":248},"The 'wc-ozow-gateway' plugin version 1.3.3 demonstrates a generally positive security posture, with no known CVEs and a strong adherence to secure coding practices such as prepared statements for SQL queries and proper output escaping. The absence of direct file operations and a limited number of external HTTP requests are also positive indicators. However, the static analysis reveals two flows with unsanitized paths, which, despite not being classified as critical or high severity in the taint analysis, represent a potential area of concern if these paths involve user-controlled input that is not sufficiently validated before being used in sensitive operations.  The complete lack of nonce checks and capability checks across all potential entry points (though the attack surface is currently zero) suggests a potential weakness that could be exploited if new entry points are introduced in future versions without proper security considerations.\n\nThe plugin's vulnerability history is clean, showing no past issues, which is a strong testament to its development quality. This, combined with the current code analysis, suggests a developer who is attentive to security. However, the presence of unsanitized paths and the complete absence of authorization checks are points that warrant attention. While the current attack surface is negligible, the lack of foundational security checks like nonces and capability checks creates a risk for future development where an attack surface might emerge. The overall security is good, but these specific code signals indicate areas where further hardening would be beneficial.",[249,252,254],{"reason":250,"points":251},"Flows with unsanitized paths",8,{"reason":253,"points":83},"No nonce checks",{"reason":255,"points":83},"No capability checks","2026-03-16T19:21:11.076Z",{"wat":258,"direct":267},{"assetPaths":259,"generatorPatterns":262,"scriptPaths":263,"versionParams":264},[260,261],"\u002Fwp-content\u002Fplugins\u002Fwc-ozow-gateway\u002Fassets\u002Fcss\u002Fozow-checkout.css","\u002Fwp-content\u002Fplugins\u002Fwc-ozow-gateway\u002Fassets\u002Fjs\u002Fozow-checkout.js",[],[261],[265,266],"wc-ozow-gateway\u002Fassets\u002Fcss\u002Fozow-checkout.css?ver=","wc-ozow-gateway\u002Fassets\u002Fjs\u002Fozow-checkout.js?ver=",{"cssClasses":268,"htmlComments":270,"htmlAttributes":271,"restEndpoints":272,"jsGlobals":273,"shortcodeOutput":275},[269],"ozow-checkout-form",[],[],[],[274],"window.ozowPayCheckout",[]]