Does Payment Gateway – 2Checkout for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Payment Gateway – 2Checkout for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Payment Gateway – 2Checkout for WooCommerce compatible with WordPress 6.7.5?

According to WordPress.org data, Payment Gateway – 2Checkout for WooCommerce 3.1.0 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Payment Gateway – 2Checkout for WooCommerce compatible with PHP 7.4+?

Payment Gateway – 2Checkout for WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Payment Gateway – 2Checkout for WooCommerce updated?

Payment Gateway – 2Checkout for WooCommerce was last updated on Mar 14, 2025. Frequent updates are generally a positive security signal.

What is Payment Gateway – 2Checkout for WooCommerce's security score?

Payment Gateway – 2Checkout for WooCommerce has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Payment Gateway – 2Checkout for WooCommerce Security & Risk Analysis

wordpress.org/plugins/woo-2checkout

2Checkout Payment Gateway for WooCommerce allow to accept online store payment from Paypal, Credit Card, MasterCard and more.

800 active installs v3.1.0 PHP 7.4+ WP 6.4+ Updated Mar 14, 2025

2checkout2checkout-for-woocommerce2checkout-payment-gatewaypayment-gatewaywoocommerce-payment-gateway

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Payment Gateway – 2Checkout for WooCommerce Safe to Use in 2026?

Generally Safe

Score 92/100

Payment Gateway – 2Checkout for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The woo-2checkout plugin v3.1.0 exhibits a mixed security posture. On the positive side, it demonstrates good practices regarding SQL queries, exclusively using prepared statements, and a high percentage of properly escaped output, suggesting an awareness of common web vulnerabilities. The absence of any recorded vulnerabilities in its history is also a strong indicator of stable and secure past development. However, significant concerns arise from the static analysis. The plugin exposes a considerable attack surface through four AJAX handlers, all of which lack authentication checks, presenting a direct path for potential attackers. Furthermore, the taint analysis reveals three high-severity flows with unsanitized paths, indicating that user-supplied data might be processed in a way that could lead to vulnerabilities like path traversal or arbitrary file inclusion if not properly handled by the underlying system. While the plugin's history is clean, these code-level issues point to potential weaknesses that could be exploited.

Key Concerns

AJAX handlers without auth checks
High severity taint flows with unsanitized paths
No nonce checks on AJAX handlers

Vulnerabilities

None known

Payment Gateway – 2Checkout for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Payment Gateway – 2Checkout for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

78 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared2 total queries

Output Escaping

94% escaped83 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

3 flows3 with unsanitized paths

http_get_var (includes\Common.php:40)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

4 unprotected

Payment Gateway – 2Checkout for WooCommerce Attack Surface

Entry Points4

Unprotected4

AJAX Handlers 4

authwp_ajax_woo-2checkout_order_pay_pageincludes\Payment_Gateway.php:168

noprivwp_ajax_woo-2checkout_order_pay_pageincludes\Payment_Gateway.php:169

authwp_ajax_woo-2checkout_order_received_pageincludes\Payment_Gateway.php:171

noprivwp_ajax_woo-2checkout_order_received_pageincludes\Payment_Gateway.php:172

WordPress Hooks 19

actionwoocommerce_update_options_payment_gateways_woo-2checkoutincludes\Payment_Gateway.php:140

actionwp_enqueue_scriptsincludes\Payment_Gateway.php:149

actionwoocommerce_api_woo-2checkout-gateway-returnincludes\Payment_Gateway.php:158

actionwoocommerce_api_woo-2checkout-ipn-responseincludes\Payment_Gateway.php:159

actionwoocommerce_api_woo-2checkout-lcn-responseincludes\Payment_Gateway.php:160

actionwoocommerce_api_woo-2checkout-ins-responseincludes\Payment_Gateway.php:161

actionwoocommerce_api_woo-2checkout-gateway-return-inlineincludes\Payment_Gateway.php:162

actionwoocommerce_receipt_woo-2checkoutincludes\Payment_Gateway.php:164

actionwoocommerce_thankyou_woo-2checkoutincludes\Payment_Gateway.php:165

actionadmin_noticesincludes\Payment_Gateway.php:476

actionadmin_noticesincludes\Payment_Gateway.php:481

actionadmin_noticesincludes\Plugin.php:59

actioninitincludes\Plugin.php:178

filterwoocommerce_payment_gatewaysincludes\Plugin.php:180

actionwoocommerce_blocks_loadedincludes\Plugin.php:182

actionbefore_woocommerce_initincludes\Plugin.php:184

filterwoocommerce_no_available_payment_methods_messageincludes\Plugin.php:188

actionwoocommerce_blocks_payment_method_type_registrationincludes\Plugin.php:401

actionplugins_loadedwoo-2checkout.php:87

Maintenance & Trust

Payment Gateway – 2Checkout for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedMar 14, 2025

PHP min version7.4

Downloads37K

Community Trust

Rating100/100

Number of ratings8

Active installs800

Alternatives

Payment Gateway – 2Checkout for WooCommerce Alternatives

Podamibe 2Checkout

podamibe-2checkout

A perfect plugin for online payment using 2Checkout.

10 No CVEs

YD Gateway 2Checkout for WooCommerce

yd-2checkout-gateway-for-woocommerce

YD Gateway 2Checkout for WooCommerce provides an easy way to take credit card payments on your online store using 2Checkout.

10 No CVEs

Invoice Gateway for WooCommerce – Invoice Payment Gateway

invoice-gateway-for-woocommerce

100

Add a WooCommerce invoice gateway to your store. An easy invoicing payment gateway solution for WooCommerce.

2K No CVEs

PayPlus Payment Gateway

payplus-payment-gateway

Accept credit/debit card payments or other methods such as bit, Apple Pay, Google Pay in one page. Create digitally signed invoices & much more!

1K 3 CVEs

Helcim Commerce for WooCommerce

helcim-commerce-for-woocommerce

100

Helcim Payment Module for WooCommerce

800 No CVEs

Developer Profile

Payment Gateway – 2Checkout for WooCommerce Developer Profile

Emran Ahmed

6 plugins · 324K total installs

trust score

Avg Security Score

92/100

Avg Patch Time

1617 days

View full developer profile

Detection Fingerprints

How We Detect Payment Gateway – 2Checkout for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/woo-2checkout/assets/css/woo-2checkout-checkout.css/wp-content/plugins/woo-2checkout/assets/css/woo-2checkout-frontend.css/wp-content/plugins/woo-2checkout/assets/js/woo-2checkout-frontend.js

Script Paths

/wp-content/plugins/woo-2checkout/assets/js/woo-2checkout-frontend.js

Version Parameters

woo-2checkout/assets/css/woo-2checkout-checkout.css?ver=woo-2checkout/assets/css/woo-2checkout-frontend.css?ver=woo-2checkout/assets/js/woo-2checkout-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

payment_method_woo-2checkout

Data Attributes

data-merchant_codedata-countrydata-langdata-currencydata-typedata-product-id+8 more

JS Globals

Woo2CheckoutFrontend

REST Endpoints

/wp-json/woo-2checkout/v1/process_payment

FAQ