WP-Safety

Pagamento Moip for WooCommerce Security & Risk Analysis

wordpress.org/plugins/woo-moip-official

Official Moip Brazil plugin built with the best development practices. Based on V2, new REST Moip’s API, providing more speed, safety and sales conver …

100 active installs v1.4.7.4 PHP 7.1+ WP 4.0+ Updated Nov 23, 2022
cartcheckoutmoipwirecardwoocommerce
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Pagamento Moip for WooCommerce Safe to Use in 2026?

Generally Safe

Score 85/100

Pagamento Moip for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago
Risk Assessment

The "woo-moip-official" plugin version 1.4.7.4 exhibits a mixed security posture. On the positive side, it demonstrates good practices by using prepared statements for all SQL queries, avoiding dangerous functions, and having no recorded vulnerabilities or CVEs. The taint analysis also shows no critical or high severity issues, indicating a generally clean code base in that regard. However, a significant concern arises from its attack surface. With six AJAX handlers, four of which lack authentication checks, there's a considerable opportunity for unauthorized actions if these handlers are exploitable. Furthermore, while the plugin has capability checks, the lack of authentication on a majority of its AJAX entry points is a notable weakness that could be exploited by attackers.

Key Concerns

  • Unprotected AJAX handlers
  • Moderate output escaping
  • Limited nonce checks
Vulnerabilities
None known

Pagamento Moip for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Pagamento Moip for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
2 prepared
Unescaped Output
50
146 escaped
Nonce Checks
1
Capability Checks
4
File Operations
2
External Requests
6
Bundled Libraries
0

SQL Query Safety

100% prepared2 total queries

Output Escaping

74% escaped196 total outputs
Data Flows
All sanitized

Data Flow Analysis

1 flows
<Utils> (src\Helper\Utils.php:0)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
4 unprotected

Pagamento Moip for WooCommerce Attack Surface

Entry Points6
Unprotected4

AJAX Handlers 6

authwp_ajax_RmSLgKecpNsrc\Controller\Checkouts.php:29
noprivwp_ajax_RmSLgKecpNsrc\Controller\Checkouts.php:30
authwp_ajax_N7yAgMU7JJsrc\Controller\Checkouts.php:31
noprivwp_ajax_N7yAgMU7JJsrc\Controller\Checkouts.php:32
authwp_ajax_GAb1rv70dVsrc\Controller\Moip_Connects.php:28
authwp_ajax_zGdGIuifWcsrc\Controller\Webhooks.php:33
WordPress Hooks 34
actionwoocommerce_checkout_processsrc\Controller\Checkouts.php:26
actionwoocommerce_cart_calculate_feessrc\Controller\Checkouts.php:33
actionwoocommerce_review_order_after_order_totalsrc\Controller\Checkouts.php:34
actionwoocommerce_checkout_create_ordersrc\Controller\Checkouts.php:35
filterwoocommerce_billing_fieldssrc\Controller\Checkouts.php:38
filterwoocommerce_shipping_fieldssrc\Controller\Checkouts.php:39
filterwoocommerce_localisation_address_formatssrc\Controller\Checkouts.php:40
filterwoocommerce_formatted_address_replacementssrc\Controller\Checkouts.php:41
filterwoocommerce_order_formatted_billing_addresssrc\Controller\Checkouts.php:42
filterwoocommerce_order_formatted_shipping_addresssrc\Controller\Checkouts.php:43
actionwoocommerce_checkout_processsrc\Controller\Checkouts.php:44
actionadmin_noticessrc\Controller\Custom_Gateways.php:65
filterdokan_query_var_filtersrc\Controller\Marketplaces_Dokan.php:30
filterdokan_get_dashboard_navsrc\Controller\Marketplaces_Dokan.php:31
actiondokan_load_custom_templatesrc\Controller\Marketplaces_Dokan.php:32
actionrest_api_initsrc\Controller\Marketplaces_Dokan.php:33
filterwcfm_menussrc\Controller\Marketplaces_Wcfm.php:31
actionbefore_wcfm_load_viewssrc\Controller\Marketplaces_Wcfm.php:32
filterwcfm_query_varssrc\Controller\Marketplaces_Wcfm.php:33
actionrest_api_initsrc\Controller\Marketplaces_Wcfm.php:34
actionadmin_footersrc\Controller\Moip_Connects.php:29
actionwoocommerce_view_ordersrc\Controller\Orders.php:19
filterwoocommerce_my_account_my_orders_actionssrc\Controller\Orders.php:20
actionwoocommerce_admin_order_data_after_billing_addresssrc\Controller\Orders.php:21
filterapiki_moip_create_ordersrc\Controller\Payment_Splits.php:24
filterplugin_row_metasrc\Controller\Settings.php:15
filterwoocommerce_payment_gatewayssrc\Controller\Settings.php:61
actioninitsrc\Core.php:26
actionadmin_initsrc\Core.php:27
actionadmin_enqueue_scriptssrc\Core.php:101
actionwp_enqueue_scriptssrc\Core.php:106
filterwp_mail_content_typesrc\View\Moip_Emails.php:22
actionadmin_noticeswoo-moip-official.php:74
actionplugins_loadedwoo-moip-official.php:90
Maintenance & Trust

Pagamento Moip for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10
Last updatedNov 23, 2022
PHP min version7.1
Downloads46K

Community Trust

Rating80/100
Number of ratings42
Active installs100
Alternatives

Pagamento Moip for WooCommerce Alternatives

Direct Checkout for WooCommerce

Direct Checkout for WooCommerce

woocommerce-direct-checkout

A
100

Formerly "WooCommerce Direct Checkout". This plugin simplifies the entire WooCommerce checkout process to improve your sales rate.

80K No CVEs
Sliding Cart for WooCommerce by FunnelKit – Skip Cart & Reach WooCommerce Checkout Faster

Sliding Cart for WooCommerce by FunnelKit – Skip Cart & Reach WooCommerce Checkout Faster

cart-for-woocommerce

A
100

FunnelKit Cart adds a beautiful sliding cart to your WooCommerce store. Let the buyers add items, edit quantity and add upsells on the side cart.

30K No CVEs
Force Authentification Before Checkout for WooCommerce

Force Authentification Before Checkout for WooCommerce

woo-force-authentification-before-checkout

A
100

Force customer to log in or register before checkout

7K No CVEs
Disable cart page for WooCommerce

Disable cart page for WooCommerce

disable-cart-page-for-woocommerce

A
92

Disable WooCommerce cart page and force customers to buy single products.

6K No CVEs
CheckoutWC Lite

CheckoutWC Lite

checkoutwc-lite

A
100

Replace your WooCommerce checkout page with a beautiful, mobile friendly, conversion optimized, Shopify like checkout template.

3K No CVEs
Developer Profile

Pagamento Moip for WooCommerce Developer Profile

Apiki

6 plugins · 1K total installs

86
trust score
Avg Security Score
88/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Pagamento Moip for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/woo-moip-official/assets/javascripts/admin/built.js/wp-content/plugins/woo-moip-official/assets/javascripts/front/built.js/wp-content/plugins/woo-moip-official/assets/stylesheets/admin/style.css/wp-content/plugins/woo-moip-official/assets/stylesheets/front/style.css
Script Paths
assets/javascripts/admin/built.jsassets/javascripts/front/built.js
Version Parameters
woo-moip-official/assets/javascripts/admin/built.js?ver=woo-moip-official/assets/javascripts/front/built.js?ver=woo-moip-official/assets/stylesheets/admin/style.css?ver=woo-moip-official/assets/stylesheets/front/style.css?ver=

HTML / DOM Fingerprints

CSS Classes
apiki-moip-official-settings-page
JS Globals
MOIPGlobalVars
REST Endpoints
/wp-json/moip-brazil-official-split/v1/wp-json/moip-brazil-official-webhooks/v1
FAQ

Frequently Asked Questions about Pagamento Moip for WooCommerce