Does Claudio Sanches – Moip for WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Claudio Sanches – Moip for WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Claudio Sanches – Moip for WooCommerce compatible with WordPress 5.5.18?

According to WordPress.org data, Claudio Sanches – Moip for WooCommerce 2.3.1 has been tested up to WordPress 5.5.18. Check the plugin's changelog for the latest compatibility information.

How often is Claudio Sanches – Moip for WooCommerce updated?

Claudio Sanches – Moip for WooCommerce was last updated on Aug 10, 2020. Frequent updates are generally a positive security signal.

What is Claudio Sanches – Moip for WooCommerce's security score?

Claudio Sanches – Moip for WooCommerce has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Claudio Sanches – Moip for WooCommerce Security & Risk Analysis

wordpress.org/plugins/woocommerce-moip

Adds Moip gateway to the WooCommerce plugin

30 active installs v2.3.1 PHP + WP 3.8+ Updated Aug 10, 2020

checkoutmoipwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Claudio Sanches – Moip for WooCommerce Safe to Use in 2026?

Generally Safe

Score 85/100

Claudio Sanches – Moip for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The "woocommerce-moip" v2.3.1 plugin demonstrates a generally good security posture with several positive indicators. Notably, there are no known CVEs, and the plugin utilizes prepared statements for all its SQL queries, which is a strong defense against SQL injection. The presence of a nonce check on its entry points and the absence of file operations or bundled libraries also contribute to a more secure foundation. However, there are areas that warrant attention. A significant concern is the 45% of output that is not properly escaped, potentially opening the door for cross-site scripting (XSS) vulnerabilities if user-supplied data is not handled with sufficient care before being displayed to users. Additionally, the presence of two flows with unsanitized paths in the taint analysis, although not currently classified as critical or high severity, suggests potential risks related to file or path manipulation if these flows are exploited in conjunction with other weaknesses. The absence of capability checks on the AJAX handlers is also a weakness, as it implies that any authenticated user, regardless of their role or permissions, could potentially trigger these handlers, which could be exploited if the handlers themselves have vulnerabilities.

Key Concerns

Output escaping is insufficient (45% unescaped)
Taint analysis shows unsanitized paths
AJAX handlers lack capability checks

Vulnerabilities

None known

Claudio Sanches – Moip for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Claudio Sanches – Moip for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

36 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

55% escaped66 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

transparent_checkout_thankyou_page (includes\class-wc-moip-gateway.php:1068)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Claudio Sanches – Moip for WooCommerce Attack Surface

Entry Points2

Unprotected0

AJAX Handlers 2

authwp_ajax_woocommerce_moip_transparent_checkoutincludes\class-wc-moip-ajax.php:15

noprivwp_ajax_woocommerce_moip_transparent_checkoutincludes\class-wc-moip-ajax.php:16

WordPress Hooks 14

actionwoocommerce_api_wc_moip_gatewayincludes\class-wc-moip-gateway.php:68

actionvalid_moip_ipn_requestincludes\class-wc-moip-gateway.php:69

actionwoocommerce_receipt_moipincludes\class-wc-moip-gateway.php:70

actionwp_enqueue_scriptsincludes\class-wc-moip-gateway.php:71

actionwoocommerce_thankyou_moipincludes\class-wc-moip-gateway.php:76

actionadmin_noticesincludes\class-wc-moip-gateway.php:117

actionadmin_noticesincludes\class-wc-moip-gateway.php:122

actionadmin_noticesincludes\class-wc-moip-gateway.php:128

actionadmin_noticesincludes\class-wc-moip-gateway.php:134

actioninitwoocommerce-moip.php:53

filterwoocommerce_payment_gatewayswoocommerce-moip.php:59

actionadmin_noticeswoocommerce-moip.php:61

actionplugins_loadedwoocommerce-moip.php:130

actioninitwoocommerce-moip.php:149

Maintenance & Trust

Claudio Sanches – Moip for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested5.5.18

Last updatedAug 10, 2020

PHP min version

Downloads22K

Community Trust

Rating100/100

Number of ratings10

Active installs30

Alternatives

Claudio Sanches – Moip for WooCommerce Alternatives

Pagamento Moip for WooCommerce

woo-moip-official

Official Moip Brazil plugin built with the best development practices. Based on V2, new REST Moip’s API, providing more speed, safety and sales conver …

100 No CVEs

Checkout Field Editor (Checkout Manager) for WooCommerce

woo-checkout-field-editor-pro

Checkout Field Editor (Checkout Manager) for WooCommerce – The best WooCommerce checkout manager plugin to manage WooCommerce checkout fields.

500K 3 CVEs

Checkout Field Manager (Checkout Manager) for WooCommerce

woocommerce-checkout-manager

Checkout Field Manager (Checkout Manager) for WooCommerce is the most advanced plugin to customize checkout fields on your WooCommerce checkout page.

90K 5 CVEs

Flexible Checkout Fields for WooCommerce – WooCommerce Checkout Manager

flexible-checkout-fields

The best WooCommerce checkout manager. Edit, remove or add checkout fields. Customize WooCommerce checkout with this checkout field customizer.

80K 2 CVEs

Direct Checkout for WooCommerce

woocommerce-direct-checkout

100

Formerly "WooCommerce Direct Checkout". This plugin simplifies the entire WooCommerce checkout process to improve your sales rate.

80K No CVEs

Developer Profile

Claudio Sanches – Moip for WooCommerce Developer Profile

Claudio Sanches

17 plugins · 134K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

831 days

View full developer profile

Detection Fingerprints

How We Detect Claudio Sanches – Moip for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/woocommerce-moip/assets/images/moip.png/wp-content/plugins/woocommerce-moip/assets/js/checkout.js/wp-content/plugins/woocommerce-moip/assets/js/transparent-checkout.js/wp-content/plugins/woocommerce-moip/assets/css/checkout.css/wp-content/plugins/woocommerce-moip/assets/css/transparent-checkout.css

Script Paths

/wp-content/plugins/woocommerce-moip/assets/js/checkout.js/wp-content/plugins/woocommerce-moip/assets/js/transparent-checkout.js

Version Parameters

woocommerce-moip/assets/js/checkout.js?ver=woocommerce-moip/assets/js/transparent-checkout.js?ver=woocommerce-moip/assets/css/checkout.css?ver=woocommerce-moip/assets/css/transparent-checkout.css?ver=

HTML / DOM Fingerprints

CSS Classes

moip-transparent-checkoutmoip-transparent-checkout-form

HTML Comments

+12 more

Data Attributes

data-moip-logindata-moip-tokendata-moip-keydata-moip-apidata-moip-sandboxdata-moip-debug+40 more

JS Globals

moip_paramsmoip_transparent_checkout

REST Endpoints

/wp-json/wc-moip-gateway/

FAQ