[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fUucnWTOtMwEX6n6tP9bUoMxg8FhL_2htCN1qTCUG0mM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":37,"analysis":128,"fingerprints":220},"wc-transbank-webpay-plus-rest","Migración de Medio de Pago Webpay Plus SOAP a REST de Transbank para WooCommerce","2021.03.22","Andrés Reyes Galgani","https:\u002F\u002Fprofiles.wordpress.org\u002Fandresreyesdev\u002F","\u003Cp>Activa el medio de pago Transbank Webpay Plus REST en tu sitio web con WooCommerce. Este plugin tiene las siguientes mejoras:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Envía correos de respaldo al cliente y al comercio (como lo hace actualmente Webpay.cl). Esto permite que el comercio sepa al momento del pago y no deba esperar las 48 horas.\u003C\u002Fli>\n\u003Cli>Guarda el registro de la venta (todo los datos) en la orden de compra. Por tanto, es posible que el cliente lo sepa y que el comercio tenga el respaldo.\u003C\u002Fli>\n\u003Cli>Es compatible sólo con PHP 7.2, 7.3 y 7.4\u003C\u002Fli>\n\u003Cli>Funciona en servidores Apache y Nginx\u003C\u002Fli>\n\u003Cli>Mejora el código del plugin oficial Transbank.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Este plugin está basado en la versión desarrollada por \u003Ca href=\"https:\u002F\u002Ftransbankdevelopers.cl\u002Fplugin\u002Fwoocommerce\u002F\" rel=\"nofollow ugc\">Transbank Developers\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>La marca y el logotipo de Transbank, Webpay Plus, Redcompra, OnePay son marcas registradas de \u003Ca href=\"https:\u002F\u002Fwww.transbank.cl\" rel=\"nofollow ugc\">Transbank S.A.\u003C\u002Fa> y son usados para fines meramente informativos dentro del plugin. Este plugin no tiene afiliación de ningún tipo con Transbank ni sus filiales.\u003C\u002Fp>\n\u003Ch3>¿OneClic para WooCommerce? ¿Captura Diferida para WooCommerce? ¿Webpay Plus Dolar?\u003C\u002Fh3>\n\u003Cp>Si deseas \u003Cstrong>OneClick para WooCommerce\u003C\u002Fstrong>, \u003Cstrong>Captura Diferida para WooCommerce\u003C\u002Fstrong> o \u003Cstrong>Webpay Plus Dólar para WooCommerce\u003C\u002Fstrong> este no es el plugin que buscas. Para usar dichos productos de Transbank dispongo de otros plugin desarrollados que ya funcionan en más de 50 sitios web. Valores, formas de trabajo y requerimientos técnicos puedo indicarlos vía mi \u003Ca href=\"https:\u002F\u002Flink.reyes.dev\u002Fwebpay-plus-woocommerce\" rel=\"nofollow ugc\">WhatsApp aquí\u003C\u002Fa>\u003C\u002Fp>\n","Vende con las tarjetas de Webpay Plus en tu carro de compras con WooCommerce. Medio de Pago de Transbank.",0,2150,"2021-03-21T20:11:00.000Z","5.6.17","4.0","",[18,19,20,21,22],"chile","payment-gateway","transbank","webpay","woocommerce","https:\u002F\u002Fandres.reyes.dev","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-transbank-webpay-plus-rest.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"andresreyesdev",5,3600,89,30,86,"2026-04-04T17:59:23.789Z",[38,57,75,91,107],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":16,"tags":53,"homepage":54,"download_link":55,"security_score":56,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"woocommerce-khipu","Khipu for WooCommerce","4.1.5","khipu","https:\u002F\u002Fprofiles.wordpress.org\u002Fkhipu\u002F","\u003Cp>Permite el uso de khipu en WooCommerce, khipu es un medio de pago que permite pagar usando Cuentas Bancarias.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Aviso legal:\u003C\u002Fstrong> Este plugin no está afiliado ni respaldado por Automattic Inc. o por la marca WooCommerce. “WooCommerce” es una marca registrada de Automattic Inc.\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>Este plugin se conecta al servicio externo “Khipu Payment API” para crear y consultar pagos.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>¿Qué datos se envían y cuándo?\u003C\u002Fp>\n\u003Cul>\n\u003Cli>En la creación de un pago, se envían: monto, moneda, orden\u002FID interno, descripción y URL(s) de retorno\u002Fnotificación necesarias para procesar el pago.\u003C\u002Fli>\n\u003Cli>En la consulta de un pago, se solicita el estado del pago usando el identificador de pago devuelto por la API.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>¿Por qué?\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Es necesario para iniciar y confirmar transacciones de pago dentro del flujo de WooCommerce.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>¿Dónde puedo revisar las políticas?\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Términos del servicio de Khipu: https:\u002F\u002Fkhipu.com\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Política de privacidad de Khipu: https:\u002F\u002Fkhipu.com\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>¿A quién contacto en caso de dudas o problemas?\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>En caso de cualquier problema con el plugin y su configuración, puedes escribirnos a soporte@khipu.com\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Permite el uso de khipu en WooCommerce, khipu es un medio de pago que permite pagar usando Cuentas Bancarias.",300,12723,46,3,"2025-11-05T01:10:00.000Z","6.8.5","6.0",[18,42,19,22],"https:\u002F\u002Fkhipu.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoocommerce-khipu.4.1.5.zip",100,{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":11,"num_ratings":11,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":70,"tags":71,"homepage":73,"download_link":74,"security_score":56,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"ventipay","VentiPay","2.3.4","Venti","https:\u002F\u002Fprofiles.wordpress.org\u002Fventipay\u002F","\u003Cp>Acepta pagos con Venti en tiendas WooCommerce\u003C\u002Fp>\n\u003Ch3>Requisitos\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>PHP 7+\u003C\u002Fli>\n\u003Cli>WooCommerce 8.0.0\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Versionamiento\u003C\u002Fh3>\n\u003Cp>Usamos \u003Ca href=\"https:\u002F\u002Fsemver.org\" rel=\"nofollow ugc\">SemVer\u003C\u002Fa> para organizar el versionamiento, así que puedes actualizar de manera segura y regular cualquier versión menor y de patch.\u003C\u002Fp>\n\u003Ch3>Instalación\u003C\u002Fh3>\n\u003Cp>Debes instalar la última versión disponible del plugin desde el directorio de plugins de WordPress. Búscalo como “Venti” y sigue las instrucciones de instalación.\u003C\u002Fp>\n\u003Ch3>Uso\u003C\u002Fh3>\n\u003Cp>Lo primero es conseguir tu API Key. Puedes obtenerla desde el \u003Ca href=\"https:\u002F\u002Fdashboard.ventipay.com\u002F\" rel=\"nofollow ugc\">Dashboard\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Luego, en la sección Pagos de la configuración de WooCommerce, debes habilitar el método de pago “Venti”, configurar tu API Key y decidir si trabajarás en modo live o test.\u003C\u002Fp>\n\u003Ch3>Licencia\u003C\u002Fh3>\n\u003Cp>MIT\u003C\u002Fp>\n","Plugin oficial de Venti para WooCommerce",200,3546,"2025-10-03T19:26:00.000Z","6.5.8","6.5","7.0",[72,18,20,58,21],"bnpl","https:\u002F\u002Fdocs.ventipay.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fventipay.2.3.4.zip",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":11,"downloaded":83,"rating":11,"num_ratings":11,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":87,"tags":88,"homepage":16,"download_link":90,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"paysepro-for-woocommerce","Paysepro for WooCommerce","1.1","paysepro","https:\u002F\u002Fprofiles.wordpress.org\u002Fpaysepro\u002F","\u003Cp>We offer the best payments solutions in the market, so there will always be a sales channel available that suits your customer’s needs.\u003Cbr \u002F>\nWe are a Company with years of experience in the market. We are focused in providing global collecting solutions through multiple and well known payment providers. That, allows our customers to focus on selling goods and services, saving time and money by integrating a collecting system on their projects.\u003C\u002Fp>\n\u003Cp>Website:         https:\u002F\u002Fwww.paysepro.com\u003C\u002Fp>\n\u003Cp>Payment methods: https:\u002F\u002Fwww.paysepro.com\u002Fpricing\u003C\u002Fp>\n\u003Ch3>Recommendations and important notes\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Some payment methods provided by Paysepro (such as credit card payments) will confirm the payment immediately, so the payer will\u003Cbr \u002F>\nsee the payment status as “Completed”. However, other payment methods (such as local cash payment services) may take longer\u003Cbr \u002F>\nto confirm the payment. In these cases the payer will see the status “Processing”. After the payment is confirmed\u003Cbr \u002F>\nby the local payments provider, the status will internally be updated to “Completed”. Depending on your specific\u003Cbr \u002F>\nneeds, you may want to use the “Hold Stock” WooCommerce setting if you need to make sure that stock is available for payments\u003Cbr \u002F>\nthat are not notified immediately.\u003C\u002Fli>\n\u003C\u002Ful>\n","Paysepro is a platform that allows you to integrate a collecting system in any website or online business, to sell products and services worldwide.",693,"2022-02-15T11:14:00.000Z","5.9.13","3.7.0","5.6",[19,89,79,21,22],"payments","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpaysepro-for-woocommerce.zip",{"slug":92,"name":93,"version":94,"author":95,"author_profile":96,"description":97,"short_description":98,"active_installs":11,"downloaded":99,"rating":11,"num_ratings":11,"last_updated":100,"tested_up_to":101,"requires_at_least":102,"requires_php":70,"tags":103,"homepage":105,"download_link":106,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"simplepay","SimplePay WooCommerce","0.1.4","freshwork","https:\u002F\u002Fprofiles.wordpress.org\u002Ffreshwork\u002F","\u003Cp>Para usar este plugin es necesario que crees una cuenta en simplepay.cl y te registres como comercio para que puedas obtener tu código. Luego de instalar el plugin, lo único que debes hacer es ingresar este código y tu sitio ya estará recibiendo pagos.\u003C\u002Fp>\n","Este plugin te permite integrar SimplePay para que tu tienda de WooCommerce pueda aceptar todo tipo de pagos chilenos. Wbpay Plus, Webpay One Click,  &hellip;",1438,"2018-02-11T21:05:00.000Z","4.7.32","4.6",[104,18,92,20,21],"chauchas","https:\u002F\u002Fsimplepay.cl\u002Fplugins\u002Fwoocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimplepay.zip",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":115,"downloaded":116,"rating":117,"num_ratings":118,"last_updated":119,"tested_up_to":51,"requires_at_least":120,"requires_php":121,"tags":122,"homepage":126,"download_link":127,"security_score":56,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"woo-paystack","Paystack WooCommerce Payment Gateway","5.8.2","Tunbosun Ayinla","https:\u002F\u002Fprofiles.wordpress.org\u002Ftubiz\u002F","\u003Cp>Paystack makes it easy for businesses in Nigeria, Ghana, Kenya and South Africa to accept secure payments from multiple local and global payment channels. Integrate Paystack with your store today, and let your customers pay you with their choice of methods.\u003C\u002Fp>\n\u003Cp>With Paystack for WooCommerce, you can accept payments via:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Credit\u002FDebit Cards — Visa, Mastercard, Verve (NG, GH, KE), American Express (SA only)\u003C\u002Fli>\n\u003Cli>Bank transfer (Nigeria)\u003C\u002Fli>\n\u003Cli>Mobile money (Ghana)\u003C\u002Fli>\n\u003Cli>Masterpass (South Africa)\u003C\u002Fli>\n\u003Cli>EFT (South Africa)\u003C\u002Fli>\n\u003Cli>USSD (Nigeria)\u003C\u002Fli>\n\u003Cli>Visa QR (Nigeria)\u003C\u002Fli>\n\u003Cli>Many more coming soon\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Why Paystack?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Start receiving payments instantly—go from sign-up to your first real transaction in as little as 15 minutes\u003C\u002Fli>\n\u003Cli>Simple, transparent pricing—no hidden charges or fees\u003C\u002Fli>\n\u003Cli>Modern, seamless payment experience via the Paystack Checkout — \u003Ca href=\"https:\u002F\u002Fpaystack.com\u002Fdemo\u002Fcheckout\" rel=\"nofollow ugc\">Try the demo!\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Advanced fraud detection\u003C\u002Fli>\n\u003Cli>Understand your customers better through a simple and elegant dashboard\u003C\u002Fli>\n\u003Cli>Access to attentive, empathetic customer support 24\u002F7\u003C\u002Fli>\n\u003Cli>Free updates as we launch new features and payment options\u003C\u002Fli>\n\u003Cli>Clearly documented APIs to build your custom payment experiences\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Over 60,000 businesses of all sizes in Nigeria, Ghana, Kenya, and South Africa rely on Paystack’s suite of products to receive payments and make payouts seamlessly. Sign up on \u003Ca href=\"https:\u002F\u002Fpaystack.com\u002Fsignup\" rel=\"nofollow ugc\">Paystack.com\u002Fsignup\u003C\u002Fa> to get started.\u003C\u002Fp>\n\u003Ch4>Note\u003C\u002Fh4>\n\u003Cp>This plugin is meant to be used by merchants in Ghana, Kenya, Nigeria and South Africa.\u003C\u002Fp>\n\u003Ch4>Plugin Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Accept payment\u003C\u002Fstrong> via Mastercard, Visa, Verve, USSD, Mobile Money, Bank Transfer, EFT, Bank Accounts, GTB 737 & Visa QR.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Seamless integration\u003C\u002Fstrong> into the WooCommerce checkout page. Accept payment directly on your site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Refunds\u003C\u002Fstrong> from the WooCommerce order details page. Refund an order directly from the order details page\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Recurring payment\u003C\u002Fstrong> using \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-subscriptions\u002F\" rel=\"nofollow ugc\">WooCommerce Subscriptions\u003C\u002Fa> plugin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WooCommerce Subscriptions Integration\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-subscriptions\u002F\" rel=\"nofollow ugc\">WooCommerce Subscriptions\u003C\u002Fa> integration only works with \u003Cstrong>WooCommerce v2.6 and above\u003C\u002Fstrong> and \u003Cstrong>WooCommerce Subscriptions v2.0 and above\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>No subscription plans is created on Paystack. The \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fproducts\u002Fwoocommerce-subscriptions\u002F\" rel=\"nofollow ugc\">WooCommerce Subscriptions\u003C\u002Fa> plugin handles all the subscription functionality.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>If a customer pays for a subscription using a Mastercard or Visa card, their subscription will renew automatically throughout the duration of the subscription. If an automatic renewal fail their subscription will be put on-hold and they will have to login to their account to renew the subscription.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>For customers paying with a Verve card, their subscription can’t be renewed automatically, once a payment is due their subscription will be on-hold. The customer will have to login to his account to manually renew his subscription.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>If a subscription has a free trial and no signup-fee, automatic renewal is not possible for the first payment because the initial order total will be 0, after the free trial the subscription will be put on-hold. The customer will have to login to his account to renew his subscription. If a Mastercard or Visa card is used to renew the subscription subsequent renewals will be automatic throughout the duration of the subscription, if a Verve card is used automatic renewal isn’t possible.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Suggestions \u002F Feature Request\u003C\u002Fh4>\n\u003Cp>If you have suggestions or a new feature request, feel free to get in touch with me via the contact form on my website \u003Ca href=\"http:\u002F\u002Fbosun.me\u002Fget-in-touch\u002F\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>You can also follow me on Twitter! \u003Cstrong>\u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Ftubiz\" rel=\"nofollow ugc\">@tubiz\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n","Paystack for WooCommerce allows your WooCommerce store to accept secure payments from multiple local and global payment channels.",30000,432109,90,24,"2025-04-17T08:26:00.000Z","6.2","7.4",[123,19,124,125,22],"mastercard","paystack","visa","https:\u002F\u002Fpaystack.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-paystack.5.8.2.zip",{"attackSurface":129,"codeSignals":169,"taintFlows":211,"riskAssessment":212,"analyzedAt":219},{"hooks":130,"ajaxHandlers":165,"restRoutes":166,"shortcodes":167,"cronEvents":168,"entryPointCount":11,"unprotectedCount":11},[131,137,140,145,149,152,157,161],{"type":132,"name":133,"callback":134,"priority":11,"file":135,"line":136},"action","plugins_loaded","woocommerce_transbank_rest_init","wc-transbank-webpay-plus-rest.php",25,{"type":132,"name":138,"callback":139,"file":135,"line":34},"admin_init","on_transbank_rest_webpay_plugins_loaded",{"type":141,"name":142,"callback":143,"file":135,"line":144},"filter","woocommerce_payment_gateways","woocommerce_add_transbank_gateway",31,{"type":132,"name":146,"callback":147,"file":135,"line":148},"woocommerce_before_cart","closure",32,{"type":132,"name":150,"callback":147,"file":135,"line":151},"init",38,{"type":132,"name":153,"callback":154,"priority":155,"file":135,"line":156},"woocommerce_thankyou","show",1,108,{"type":132,"name":158,"callback":159,"file":135,"line":160},"admin_enqueue_scripts","enqueueScripts",113,{"type":132,"name":162,"callback":163,"priority":155,"file":135,"line":164},"woocommerce_sections_checkout","wc_transbank_message",114,[],[],[],[],{"dangerousFunctions":170,"sqlUsage":171,"outputEscaping":174,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":203},[],{"prepared":172,"raw":11,"locations":173},7,[],{"escaped":11,"rawEcho":175,"locations":176},12,[177,181,184,186,188,190,191,193,195,197,199,201],{"file":178,"line":179,"context":180},"src\\Helpers\\RedirectorHelper.php",22,"raw output",{"file":182,"line":183,"context":180},"views\\order-summary.php",8,{"file":182,"line":185,"context":180},13,{"file":182,"line":187,"context":180},17,{"file":182,"line":189,"context":180},21,{"file":182,"line":136,"context":180},{"file":182,"line":192,"context":180},29,{"file":182,"line":194,"context":180},33,{"file":182,"line":196,"context":180},37,{"file":182,"line":198,"context":180},41,{"file":182,"line":200,"context":180},45,{"file":135,"line":202,"context":180},260,[204,207],{"name":205,"version":26,"knownCves":206},"Guzzle",[],{"name":208,"version":209,"knownCves":210},"TCPDF","1.0",[],[],{"summary":213,"deductions":214},"The static analysis of \"wc-transbank-webpay-plus-rest\" v2021.03.22 reveals a generally positive security posture in terms of its direct attack surface and SQL handling. The absence of AJAX handlers, REST API routes, shortcodes, and cron events with unprotected entry points is a significant strength, limiting potential direct exploitation vectors. Furthermore, all SQL queries are confirmed to use prepared statements, mitigating the risk of SQL injection vulnerabilities in that area. The plugin also exhibits no known vulnerabilities in its history, suggesting a good track record.\n\nHowever, the analysis also highlights critical areas for concern. A striking 100% of output operations are not properly escaped. This lack of output escaping is a major security flaw, as it opens the door to Cross-Site Scripting (XSS) vulnerabilities. Any dynamic data displayed by the plugin that is not properly sanitized before being rendered in the browser could be exploited by attackers to inject malicious scripts, leading to session hijacking, credential theft, or defacement.\n\nWhile the plugin's direct attack surface is small and SQL queries are secure, the pervasive issue with output escaping presents a significant risk. The presence of bundled libraries, Guzzle and TCPDF v1.0, could also pose a risk if they are outdated and contain known vulnerabilities, though this is not explicitly stated. The vulnerability history is clean, which is positive, but it does not negate the immediate risks identified in the code analysis.",[215,217],{"reason":216,"points":183},"Unescaped output",{"reason":218,"points":49},"Bundled outdated library (TCPDF v1.0)","2026-03-17T07:07:46.862Z",{"wat":221,"direct":230},{"assetPaths":222,"generatorPatterns":225,"scriptPaths":226,"versionParams":227},[223,224],"\u002Fwp-content\u002Fplugins\u002Fwc-transbank-webpay-plus-rest\u002Fbuild\u002Fapp.js","\u002Fwp-content\u002Fplugins\u002Fwc-transbank-webpay-plus-rest\u002Fbuild\u002Fapp.css",[],[223],[228,229],"wc-transbank-webpay-plus-rest\u002Fbuild\u002Fapp.js?ver=","wc-transbank-webpay-plus-rest\u002Fbuild\u002Fapp.css?ver=",{"cssClasses":231,"htmlComments":234,"htmlAttributes":237,"restEndpoints":240,"jsGlobals":242,"shortcodeOutput":244},[232,233],"transbank_webpay_plus_rest_button","transbank_webpay_plus_rest_button_submit",[235,236],"\u003C!-- WC_Gateway_Transbank_Webpay_Plus_REST -->","\u003C!-- Migración de Medio de Pago Webpay Plus SOAP a REST de Transbank para WooCommerce -->",[238,239],"data-transbank-commerce-code","data-transbank-api-key",[241],"\u002Fwp-json\u002Fwc-transbank-webpay-plus-rest\u002Fv1\u002Fprocess-payment",[243],"window.wc_transbank_webpay_plus_rest_params",[]]