[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f4wvo9nmpkFrNOYWtf0BgobOfZEtnwKQ4D1UjcLb3nTI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":124,"fingerprints":223},"woo-halkbank-payment-gateway","Halk Bank Payment Gateway For Woocommerce  – not functional after 15.03.2024","1.2.1","m1tk00","https:\u002F\u002Fprofiles.wordpress.org\u002Fm1tk00\u002F","\u003Cblockquote>\n\u003Cp>\u003Cstrong>Notice of Code Deprecation\u003C\u002Fstrong>\u003Cbr \u002F>\n  Due to change in the hash version, we regret to inform you that the code within this plugin will no longer be functional after 15.03.2024.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Requires: WooCommerce 2.1+\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>This plugin allows your store to make payments via Halk Bank payment service.\u003C\u002Fp>\n","Implements the Halk bank payment gateway.",100,3501,9,"2024-03-07T16:25:00.000Z","6.4.8","3.8","5.2.4",[19,20,21,22],"gateway","manual-payment","payment-gateway","woocommerce","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoo-halkbank-payment-gateway\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoo-halkbank-payment-gateway.1.2.1.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},2,140,30,84,"2026-04-04T14:49:03.046Z",[37,58,76,92,106],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":56,"download_link":57,"security_score":11,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"advance-bank-payment-transfer-gateway","Advance Bank Payment Transfer Gateway","1.0.0","Ramesh Kumar","https:\u002F\u002Fprofiles.wordpress.org\u002Fdeveloperramesh\u002F","\u003Cblockquote>\n\u003Cp>\u003Cstrong>Requires: WooCommerce 2.1+\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>This plugin clones the Direct Bank Transfer gateway to create another offline payment method. This can be used to create a testing payment method if you use the Advance Bank Transfer gateway.\u003Cbr \u002F>\nFor example, this could be used for manual invoices or other offline payment methods.\u003C\u002Fp>\n\u003Cp>Upload the Bank Payment Receipt is require on the checkout page before submit the page, When an order is submitted the order will be placed “on-hold” after reviewing order by admin then order status will be changed.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcapsquery.com\u002F\" rel=\"nofollow ugc\"> Visit Our Website \u003C\u002Fa>\u003C\u002Fp>\n","Short Description: This plugin clones the Direct Bank Transfer gateway to create another offline payment method. License: GPLv2 or later",1000,24215,90,10,"2026-01-08T13:10:00.000Z","6.8.5","5.8","7.4",[54,20,55,21,22],"bank-transfer","offline-payment","https:\u002F\u002Fgithub.com\u002Fdeveloper-ramesh","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvance-bank-payment-transfer-gateway.1.0.0.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":11,"num_ratings":31,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":71,"tags":72,"homepage":74,"download_link":75,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"wc-paybox-payment-gateway","Payment Gateway for Paybox on Woocommerce","1.0","adielbm","https:\u002F\u002Fprofiles.wordpress.org\u002Fadiel987654554\u002F","\u003Cp>Payment Gateway for Paybox by Israel Discount Bank.\u003C\u002Fp>\n","Payment Gateway for Paybox by Israel Discount Bank.",300,1941,"2021-03-03T05:35:00.000Z","5.7.15","4.6","5.6",[19,20,73,21,22],"paybox","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwc-paybox-payment-gateway.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":26,"num_ratings":26,"last_updated":74,"tested_up_to":15,"requires_at_least":86,"requires_php":87,"tags":88,"homepage":89,"download_link":90,"security_score":11,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":91},"qr-pay-gateway","QR Payments Gateway","1.1.9","Suresh Ramasamy","https:\u002F\u002Fprofiles.wordpress.org\u002Fsureshramasamy\u002F","\u003Cp>QR Payments For Woocommerce Payment Gateway for the following e-wallets\u003Cbr \u002F>\n– Touch N Go\u003Cbr \u002F>\n– DuitNow\u003Cbr \u002F>\n– Grab\u003Cbr \u002F>\n– Shopee Pay\u003Cbr \u002F>\n– Boost\u003C\u002Fp>\n\u003Cp>This plugin is compatible with WooCommerce HPOS\u003C\u002Fp>\n\u003Cp>Please do take note that this plugin is a manual upload, no api to payment gateway, you are required to use your own QR code.\u003C\u002Fp>\n\u003Ch4>More Details\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>For Support Kindly Email to support@equilibrium.my\u003C\u002Fli>\n\u003C\u002Ful>\n","QR Payments For Woocommerce Payment Gateway for the following e-wallets",60,2730,"6.4","8.0",[19,20,21,22],"https:\u002F\u002Fwww.equilibrium.my\u002Fqr-pay-gateway\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fqr-pay-gateway.1.1.9.zip","2026-03-15T10:48:56.248Z",{"slug":93,"name":94,"version":95,"author":7,"author_profile":8,"description":96,"short_description":97,"active_installs":98,"downloaded":99,"rating":11,"num_ratings":100,"last_updated":101,"tested_up_to":102,"requires_at_least":16,"requires_php":74,"tags":103,"homepage":104,"download_link":105,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"nlb-payment-gateway-for-woocommerce","NLB Payment Gateway For Woocommerce","2.0.1","\u003Cblockquote>\n\u003Cp>\u003Cstrong>Requires: WooCommerce 2.1+\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>This plugin allows your store to make payments via NLB payment service.\u003C\u002Fp>\n\u003Cp>If the transaction is successful the order status will be changed to “processing”. If the payment charge failed the order status will be changed to “cancelled”. If something is wrong with the connection between your server and the NLB server the order status will be changed to “on-hold”. After successful transaction the customer is redirected to the default WP thank you page.\u003C\u002Fp>\n","Implements the Tebank payment gateway.",40,3235,6,"2020-01-15T13:40:00.000Z","5.3.21",[19,20,21,22],"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fnlb-payment-gateway-for-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnlb-payment-gateway-for-woocommerce.2.0.1.zip",{"slug":107,"name":108,"version":109,"author":110,"author_profile":111,"description":112,"short_description":113,"active_installs":48,"downloaded":114,"rating":26,"num_ratings":26,"last_updated":115,"tested_up_to":116,"requires_at_least":117,"requires_php":52,"tags":118,"homepage":121,"download_link":122,"security_score":11,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":123},"bangladeshi-bank-payment-method","Bangladeshi Bank Payment Method","1.0.6","Raisul Islam Shagor","https:\u002F\u002Fprofiles.wordpress.org\u002Fshagor447\u002F","\u003Cp>This plugin adds a secure \u003Cstrong>Bank Payment with Receipt Upload\u003C\u002Fstrong> option to your WooCommerce store, specially designed for merchants and customers in Bangladesh.\u003Cbr \u002F>\nInstead of just entering a transaction ID, customers can \u003Cstrong>upload a screenshot or photo of their bank payment receipt\u003C\u002Fstrong> (e.g., mobile banking confirmation) directly on the checkout page. The uploaded image is securely stored and displayed in the order details for easy manual verification by the store admin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Perfect for businesses that require visual proof of payment before processing orders.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Accept bank transfer payments from any Bangladeshi bank (City Bank, IFIC BANK, UCB Bank, Islami Bank etc.).\u003Cbr \u002F>\n* Customers upload a \u003Cstrong>payment receipt image\u003C\u002Fstrong> (PNG\u002FJPG) during checkout.\u003Cbr \u002F>\n* Automatic file validation (max 1MB, only images allowed).\u003Cbr \u002F>\n* Uploaded receipt is visible in the \u003Cstrong>WooCommerce order details\u003C\u002Fstrong> in the admin dashboard.\u003Cbr \u002F>\n* Displays your bank account details clearly on the checkout page.\u003Cbr \u002F>\n* Fully compatible with WooCommerce emails, order statuses, and cart flow.\u003Cbr \u002F>\n* You can change your bank icon, it will make it visually clear and easier for customers to understand.\u003Cbr \u002F>\n* No sensitive data stored — secure and lightweight.\u003C\u002Fp>\n\u003Ch3>Update Notice\u003C\u002Fh3>\n\u003Cp>= 1.0.6 =\u003Cbr \u002F>\nVersion 1.0.6 has been released as a stable version.\u003C\u002Fp>\n","WooCommerce gateway for Bangladeshi businesses allowing customers to upload bank payment receipts at checkout.",253,"2025-12-19T12:37:00.000Z","6.9.4","6.0",[119,120,20,21,22],"bangladesh-bank-transfer","bangladeshi-bank-payment-gateway","https:\u002F\u002Fraisul.dev\u002Fprojects\u002Fbangladeshi-bank-payment-method-for-woocommerce-plugin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbangladeshi-bank-payment-method.1.0.6.zip","2026-03-15T14:54:45.397Z",{"attackSurface":125,"codeSignals":147,"taintFlows":189,"riskAssessment":209,"analyzedAt":222},{"hooks":126,"ajaxHandlers":143,"restRoutes":144,"shortcodes":145,"cronEvents":146,"entryPointCount":26,"unprotectedCount":26},[127,133,138],{"type":128,"name":129,"callback":130,"file":131,"line":132},"action","wp_footer","add_3d_container_to_footer","classes\\class-wc-halk-payment-gateway.php",43,{"type":134,"name":135,"callback":136,"priority":48,"file":131,"line":137},"filter","woocommerce_update_order_review_fragments","refresh_form",44,{"type":134,"name":139,"callback":140,"file":141,"line":142},"woocommerce_payment_gateways","wc_halk_add_to_gateways","halk-bank-payment-woocommerce.php",41,[],[],[],[],{"dangerousFunctions":148,"sqlUsage":149,"outputEscaping":151,"fileOperations":26,"externalRequests":187,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":188},[],{"prepared":26,"raw":26,"locations":150},[],{"escaped":152,"rawEcho":153,"locations":154},7,16,[155,158,160,161,163,165,167,169,171,173,175,177,179,181,183,185],{"file":131,"line":156,"context":157},249,"raw output",{"file":131,"line":159,"context":157},317,{"file":131,"line":159,"context":157},{"file":131,"line":162,"context":157},320,{"file":131,"line":164,"context":157},321,{"file":131,"line":166,"context":157},322,{"file":131,"line":168,"context":157},323,{"file":131,"line":170,"context":157},324,{"file":131,"line":172,"context":157},325,{"file":131,"line":174,"context":157},326,{"file":131,"line":176,"context":157},327,{"file":131,"line":178,"context":157},328,{"file":131,"line":180,"context":157},329,{"file":131,"line":182,"context":157},330,{"file":131,"line":184,"context":157},331,{"file":131,"line":186,"context":157},335,1,[],[190],{"entryPoint":191,"graph":192,"unsanitizedCount":207,"severity":208},"\u003Cclass-wc-halk-payment-gateway> (classes\\class-wc-halk-payment-gateway.php:0)",{"nodes":193,"edges":204},[194,199],{"id":195,"type":196,"label":197,"file":131,"line":198},"n0","source","$_GET (x3)",159,{"id":200,"type":201,"label":202,"file":131,"line":170,"wp_function":203},"n1","sink","echo() [XSS]","echo",[205],{"from":195,"to":200,"sanitized":206},false,3,"low",{"summary":210,"deductions":211},"The static analysis of woo-halkbank-payment-gateway v1.2.1 reveals a plugin with a seemingly small attack surface and good practices in certain areas. Notably, there are no detected AJAX handlers, REST API routes, shortcodes, or cron events, which significantly limits the potential entry points for attackers. The plugin also demonstrates strong adherence to secure coding by using prepared statements for all SQL queries and avoiding file operations and external HTTP requests in its primary functionality. The absence of known vulnerabilities in its history is a positive indicator. \n\nHowever, there are significant concerns. The very low percentage of properly escaped output (30%) suggests a high likelihood of cross-site scripting (XSS) vulnerabilities. The taint analysis also shows a flow with an unsanitized path, indicating a potential for sensitive data to be mishandled or exposed, even though it's not categorized as critical or high. The lack of nonce checks and capability checks is a major weakness, as it means that actions performed by the plugin, if any are triggered through indirect means, are not protected against cross-site request forgery (CSRF) or unauthorized access by less privileged users. The plugin's limited disclosed entry points might mask potential risks within its core functions that are not automatically scanned as direct entry points.\n\nIn conclusion, while the plugin has a small perceived attack surface and uses prepared statements effectively, the significant issues with output escaping and the absence of crucial security checks like nonces and capability checks introduce substantial risks. The unsanitized taint flow further compounds these concerns. The vulnerability history is clean, but this does not mitigate the immediate risks identified in the static analysis.",[212,215,217,220],{"reason":213,"points":214},"Low output escaping percentage",8,{"reason":216,"points":152},"Taint flow with unsanitized path",{"reason":218,"points":219},"No nonce checks",5,{"reason":221,"points":219},"No capability checks","2026-03-16T20:50:43.233Z",{"wat":224,"direct":230},{"assetPaths":225,"generatorPatterns":227,"scriptPaths":228,"versionParams":229},[226],"\u002Fwp-content\u002Fplugins\u002Fwoo-halkbank-payment-gateway\u002Fassets\u002Fjs\u002Fhalkbank-payment-gateway.js",[],[226],[],{"cssClasses":231,"htmlComments":232,"htmlAttributes":233,"restEndpoints":234,"jsGlobals":235,"shortcodeOutput":236},[],[],[],[],[],[]]