WP-Safety

metaps PAYMENT for WooCommerce Security & Risk Analysis

wordpress.org/plugins/woo-paydesign

metaps PAYMENT gateway payment for WooCommerce.

400 active installs v1.3.1 PHP + WP 5.0.0+ Updated Jul 25, 2024
e-commerceecommercejapanesewoocommerce
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is metaps PAYMENT for WooCommerce Safe to Use in 2026?

Generally Safe

Score 92/100

metaps PAYMENT for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The "woo-paydesign" plugin v1.3.1 exhibits a generally good security posture with several positive indicators. The presence of nonce checks and capability checks on its single AJAX entry point is encouraging, and the absence of known CVEs suggests a history of responsible development. Furthermore, the plugin does not make external HTTP requests and has no shortcodes or cron events, limiting its attack surface.

However, the static analysis reveals some areas for improvement. Approximately half of the SQL queries are not using prepared statements, which could lead to SQL injection vulnerabilities if not handled carefully. Additionally, a significant portion of output is not properly escaped, potentially exposing the plugin to cross-site scripting (XSS) vulnerabilities. The taint analysis identified two flows with unsanitized paths, which, while not classified as critical or high severity, warrant further investigation as they could represent potential security weaknesses.

In conclusion, "woo-paydesign" v1.3.1 has a solid foundation with its limited attack surface and lack of historical vulnerabilities. Nonetheless, the unaddressed SQL query preparation and output escaping issues, coupled with the identified unsanitized taint flows, represent actionable security risks that should be mitigated to further strengthen the plugin's security.

Key Concerns

  • SQL queries not using prepared statements
  • Output not properly escaped
  • Flows with unsanitized paths
Vulnerabilities
None known

metaps PAYMENT for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

metaps PAYMENT for WooCommerce Code Analysis

Dangerous Functions
0
Raw SQL Queries
2
2 prepared
Unescaped Output
64
123 escaped
Nonce Checks
1
Capability Checks
3
File Operations
1
External Requests
0
Bundled Libraries
0

SQL Query Safety

50% prepared4 total queries

Output Escaping

66% escaped187 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

4 flows2 with unsanitized paths
wc_setting_paydesign_init (includes\admin\class-wc-admin-screen-paydesign.php:109)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

metaps PAYMENT for WooCommerce Attack Surface

Entry Points1
Unprotected0

AJAX Handlers 1

authwp_ajax_wc4jp_paydesign_ratedwoo-paydesign.php:59
WordPress Hooks 38
actionadmin_enqueue_scriptsincludes\admin\class-wc-admin-screen-paydesign.php:60
actionadmin_menuincludes\admin\class-wc-admin-screen-paydesign.php:61
actionadmin_noticesincludes\admin\class-wc-admin-screen-paydesign.php:62
actionadmin_initincludes\admin\class-wc-admin-screen-paydesign.php:63
actionwoocommerce_receipt_paydesign_cc_tokenincludes\gateways\paydesign\class-wc-gateway-paydesign-cc-token.php:57
actionwoocommerce_update_options_payment_gatewaysincludes\gateways\paydesign\class-wc-gateway-paydesign-cc-token.php:58
actionwp_enqueue_scriptsincludes\gateways\paydesign\class-wc-gateway-paydesign-cc-token.php:60
filterwoocommerce_payment_gatewaysincludes\gateways\paydesign\class-wc-gateway-paydesign-cc-token.php:550
filterwoocommerce_email_actionsincludes\gateways\paydesign\class-wc-gateway-paydesign-cc-token.php:590
actionwoocommerce_order_status_completedincludes\gateways\paydesign\class-wc-gateway-paydesign-cc-token.php:608
actionwoocommerce_cart_is_emptyincludes\gateways\paydesign\class-wc-gateway-paydesign-cc-token.php:633
actionwoocommerce_update_options_payment_gatewaysincludes\gateways\paydesign\class-wc-gateway-paydesign-cc.php:165
filterwoocommerce_payment_gatewaysincludes\gateways\paydesign\class-wc-gateway-paydesign-cc.php:496
filterwoocommerce_email_actionsincludes\gateways\paydesign\class-wc-gateway-paydesign-cc.php:537
actionwoocommerce_order_status_completedincludes\gateways\paydesign\class-wc-gateway-paydesign-cc.php:551
actionwoocommerce_cart_is_emptyincludes\gateways\paydesign\class-wc-gateway-paydesign-cc.php:584
actionwoocommerce_before_cartincludes\gateways\paydesign\class-wc-gateway-paydesign-cc.php:604
actionwoocommerce_update_options_payment_gatewaysincludes\gateways\paydesign\class-wc-gateway-paydesign-cs.php:183
actionwoocommerce_email_before_order_tableincludes\gateways\paydesign\class-wc-gateway-paydesign-cs.php:186
filterwoocommerce_payment_gatewaysincludes\gateways\paydesign\class-wc-gateway-paydesign-cs.php:481
actionwoocommerce_order_details_after_order_tableincludes\gateways\paydesign\class-wc-gateway-paydesign-cs.php:521
actionwoocommerce_cart_is_emptyincludes\gateways\paydesign\class-wc-gateway-paydesign-cs.php:552
filterwoocommerce_email_subject_customer_processing_orderincludes\gateways\paydesign\class-wc-gateway-paydesign-cs.php:600
filterwoocommerce_email_heading_customer_processing_orderincludes\gateways\paydesign\class-wc-gateway-paydesign-cs.php:601
actionwoocommerce_email_before_order_tableincludes\gateways\paydesign\class-wc-gateway-paydesign-cs.php:602
actionwoocommerce_update_options_payment_gatewaysincludes\gateways\paydesign\class-wc-gateway-paydesign-pe.php:98
actionwoocommerce_email_before_order_tableincludes\gateways\paydesign\class-wc-gateway-paydesign-pe.php:102
filterwoocommerce_payment_gatewaysincludes\gateways\paydesign\class-wc-gateway-paydesign-pe.php:385
actionwoocommerce_order_details_after_order_tableincludes\gateways\paydesign\class-wc-gateway-paydesign-pe.php:410
actionwoocommerce_cart_is_emptyincludes\gateways\paydesign\class-wc-gateway-paydesign-pe.php:438
filterwoocommerce_email_subject_customer_processing_orderincludes\gateways\paydesign\class-wc-gateway-paydesign-pe.php:486
filterwoocommerce_email_heading_customer_processing_orderincludes\gateways\paydesign\class-wc-gateway-paydesign-pe.php:487
actionwoocommerce_email_before_order_tableincludes\gateways\paydesign\class-wc-gateway-paydesign-pe.php:488
actionadmin_noticesincludes\gateways\paydesign\class-wc-metaps-admin-notices.php:26
filteradmin_footer_textwoo-paydesign.php:60
actionplugins_loadedwoo-paydesign.php:87
actionplugins_loadedwoo-paydesign.php:226
actionadmin_noticeswoo-paydesign.php:232
Maintenance & Trust

metaps PAYMENT for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedJul 25, 2024
PHP min version
Downloads8K

Community Trust

Rating0/100
Number of ratings0
Active installs400
Alternatives

metaps PAYMENT for WooCommerce Alternatives

Japanized for WooCommerce

Japanized for WooCommerce

woocommerce-for-japan

A
95

Essential Japanese localization toolkit for WooCommerce - adds address formats, payment methods, delivery scheduling, and legal compliance.

10K 6 CVEs
Woo Each add to cart

Woo Each add to cart

woo-each-add-to-cart

A
85

This plugin add each time you click the button.

0 No CVEs
Klarna for WooCommerce

Klarna for WooCommerce

klarna-payments-for-woocommerce

A
100

Grow your business for increased sales and enhanced shopping experiences at no extra costs.

30K 1 CVE
Conversion Tracking for WooCommerce

Conversion Tracking for WooCommerce

woocommerce-conversion-tracking

A
98

Adds various conversion tracking codes to cart, checkout, registration success and product page on WooCommerce

20K 4 CVEs
Kustom Checkout for WooCommerce

Kustom Checkout for WooCommerce

klarna-checkout-for-woocommerce

A
99

The leading checkout in the Nordics, built for higher conversion and returning shoppers. Easy to integrate, supports Klarna and all popular payment me …

10K 2 CVEs
Developer Profile

metaps PAYMENT for WooCommerce Developer Profile

shohei.tanaka

6 plugins · 11K total installs

75
trust score
Avg Security Score
94/100
Avg Patch Time
101 days
View full developer profile
Detection Fingerprints

How We Detect metaps PAYMENT for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/woo-paydesign/assets/css/common.css/wp-content/plugins/woo-paydesign/assets/css/bootstrap.min.css/wp-content/plugins/woo-paydesign/assets/css/style.css/wp-content/plugins/woo-paydesign/assets/js/common.js/wp-content/plugins/woo-paydesign/assets/js/bootstrap.min.js/wp-content/plugins/woo-paydesign/assets/js/paydesign.js
Script Paths
/wp-content/plugins/woo-paydesign/assets/js/common.js/wp-content/plugins/woo-paydesign/assets/js/bootstrap.min.js/wp-content/plugins/woo-paydesign/assets/js/paydesign.js
Version Parameters
woo-paydesign/assets/css/common.css?ver=woo-paydesign/assets/css/bootstrap.min.css?ver=woo-paydesign/assets/css/style.css?ver=woo-paydesign/assets/js/common.js?ver=woo-paydesign/assets/js/bootstrap.min.js?ver=woo-paydesign/assets/js/paydesign.js?ver=

HTML / DOM Fingerprints

CSS Classes
jp4wc_paydesign_prefix_orderjp4wc_paydesign_notice_urljp4wc_paydesign_ccjp4wc_paydesign_cc_tokenjp4wc_paydesign_csjp4wc_paydesign_pe
Data Attributes
data-target="#jp4wc_paydesign_general"data-target="#jp4wc_paydesign_payment"
FAQ

Frequently Asked Questions about metaps PAYMENT for WooCommerce