Does Payconiq have any unpatched vulnerabilities?

No. All known vulnerabilities in Payconiq have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Payconiq compatible with WordPress 6.7.5?

According to WordPress.org data, Payconiq 1.0.4 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Payconiq compatible with PHP 5.6.20+?

Payconiq requires PHP 5.6.20 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Payconiq updated?

Payconiq was last updated on Apr 3, 2025. Frequent updates are generally a positive security signal.

What is Payconiq's security score?

Payconiq has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Payconiq Security & Risk Analysis

wordpress.org/plugins/wc-payconiq

To bring the ease of use of a Payconiq payment to the webshop, we developed a payment gateway integration for Payconiq in WooCommerce.

200 active installs v1.0.4 PHP 5.6.20+ WP 5.2+ Updated Apr 3, 2025

gatewaypayconiqpaymentwcwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Payconiq Safe to Use in 2026?

Generally Safe

Score 92/100

Payconiq has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The wc-payconiq plugin version 1.0.4 presents a concerning security posture due to a significant number of unprotected AJAX endpoints. While the plugin demonstrates good practices in other areas, such as using prepared statements for all SQL queries and a reasonable rate of output escaping, the lack of authentication checks on its four identified AJAX handlers is a critical weakness. This means any user, including unauthenticated ones, could potentially trigger these handlers, leading to unauthorized actions or information disclosure.

The static analysis revealed no dangerous functions, SQL injection vulnerabilities, or file operation issues, which are positive indicators. Furthermore, the absence of any recorded vulnerabilities in its history suggests a generally stable codebase. However, the presence of unprotected AJAX handlers outweighs these strengths, creating a substantial attack surface. The single nonce check and capability check, while present, do not cover all the identified entry points, exacerbating the risk.

In conclusion, while wc-payconiq has a clean vulnerability history and good internal code practices like prepared statements, the unprotected AJAX endpoints are a significant security flaw. This warrants immediate attention to implement proper authentication and authorization checks to mitigate potential exploitation. The plugin's overall security posture is compromised by this specific oversight.

Key Concerns

Unprotected AJAX handlers
Large attack surface without auth
Output escaping not fully covered

Vulnerabilities

None known

Payconiq Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Payconiq Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

14 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

82% escaped17 total outputs

Attack Surface

4 unprotected

Payconiq Attack Surface

Entry Points4

Unprotected4

AJAX Handlers 4

authwp_ajax_payconiq_check_payconiq_order_statusconfig\payconiq-config.php:25

noprivwp_ajax_payconiq_check_payconiq_order_statusconfig\payconiq-config.php:26

authwp_ajax_payconiq_check_order_statusconfig\payconiq-config.php:27

noprivwp_ajax_payconiq_check_order_statusconfig\payconiq-config.php:28

WordPress Hooks 6

actionbefore_woocommerce_initconfig\payconiq-config.php:18

filterwoocommerce_payment_gatewaysconfig\payconiq-config.php:21

actionwoocommerce_blocks_loadedconfig\payconiq-config.php:23

actionwp_loadedconfig\payconiq-config.php:29

actionwoocommerce_blocks_payment_method_type_registrationconfig\payconiq-config.php:55

actionwoocommerce_admin_order_data_after_billing_addressmodel\gateway-payconiq.php:123

Maintenance & Trust

Payconiq Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedApr 3, 2025

PHP min version5.6.20

Downloads3K

Community Trust

Rating100/100

Number of ratings1

Active installs200

Alternatives

Payconiq Alternatives

WC Moneris Payment Gateway

wc-moneris-payment-gateway

100

A simple plugin that easily add moneris payment gateway to your WooCommerce website.

900 No CVEs

SkipCash Payment Gateway

skipcash-payment-gateway

SkipCash payment gateway for WooCommerce.

300 No CVEs

MANGOPAY for WooCommerce

mangopay-woocommerce

100

Official WooCommerce Payment gateway for the MANGOPAY payment solution dedicated to marketplaces.

90 No CVEs

Payment Gateway Based Fees and Discounts for WooCommerce

checkout-fees-for-woocommerce

Set fees and discounts for WooCommerce payment gateways.

30K 1 CVE

Paystack WooCommerce Payment Gateway

woo-paystack

100

Paystack for WooCommerce allows your WooCommerce store to accept secure payments from multiple local and global payment channels.

30K No CVEs

Developer Profile

Payconiq Developer Profile

Payconiq

1 plugin · 200 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Payconiq

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wc-payconiq/assets/images/payconiq_mark.svg

HTML / DOM Fingerprints

HTML Comments

Data Attributes

data-payconiq-mobile-link

JS Globals

payconiq_payment_gateway_params

REST Endpoints

/wp-json/payconiq/v1/payment

FAQ