[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fSl829mS7q5oHwz6koyAbR3FGLREdBWehSI5zhhlwWyI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":129,"fingerprints":276},"wp-e-commerce-call-for-price","WP e-Commerce Call for Price","1.0","themeszone","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpcommerce\u002F","\u003Cp>This is a WP e-Commerce plugin that allows you to hide the price of a specific product and replace it with a message asking your customers to call for price.\u003Cbr \u002F>\nThe plugin is easy to use and configure. There there 15 “Call for Price” icons available as well as an ability to upload custom “Call for Price” icons. Install it, Configure it and Rock it.\u003C\u002Fp>\n\u003Ch3>Donations\u003C\u002Fh3>\n\u003Cp>http:\u002F\u002Fecommercewp.com\u002Fwp-e-commerce-call-for-price\u002F\u003C\u002Fp>\n","This is a WP e-Commerce plugin that allows you to hide the price of a specific product and replace it with a message asking your customers to call for &hellip;",10,4958,60,2,"2012-04-17T21:24:00.000Z","3.4.2","3.1","",[20,21,22,23,24],"call-for-price","custom-meta","e-commerce","wp-e-commerce","wpec","http:\u002F\u002Fecommercewp.com\u002Fwp-e-commerce-call-for-price\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-e-commerce-call-for-price.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"wpcommerce",1,30,84,"2026-04-05T09:49:27.431Z",[39,61,77,93,111],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":18,"tags":54,"homepage":59,"download_link":60,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"gourl-wp-ecommerce-bitcoin-altcoin-payment-gateway-addon","GoUrl WP eCommerce – Bitcoin Altcoin Payment Gateway Addon","1.1.2","gourl","https:\u002F\u002Fprofiles.wordpress.org\u002Fgourl\u002F","\u003Cp>See \u003Ca href=\"https:\u002F\u002Fgourl.io\u002Fbitcoin-payments-wp-ecommerce.html#screenshot\" rel=\"nofollow ugc\">Screenshots\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>WordPress Plugin for WP eCommerce Features –\u003C\u002Fp>\n\u003Cul>\n\u003Cli>100% Free Open Source Plugin on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcryptoapi\u002FBitcoin-Payments-WP-eCommerce\" rel=\"nofollow ugc\">Github.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Provides a Cryptocurrency Payment Gateway for \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-e-commerce\u002F\" rel=\"ugc\">WP eCommerce 3.8.10 or higher\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Accept Bitcoin, BitcoinCash, Litecoin, Dash, Dogecoin, Speedcoin, Reddcoin, Potcoin, Feathercoin, Vertcoin, Peercoin, MonetaryUnit payments in WP eCommerce\u003C\u002Fli>\n\u003Cli>No Monthly Fee, Transaction Fee from 0%\u003C\u002Fli>\n\u003Cli>Product Prices in Bitcoin\u002FAltcoins directly and sends the amount straight to your business wallet.\u003C\u002Fli>\n\u003Cli>Product Prices in USD\u002FEUR\u002FGBP\u002Fetc. Google\u002FBitstamp\u002FPoloniex Live Exchange Rates\u003C\u002Fli>\n\u003Cli>Direct Integration on your website, no external payment pages opens (as other payment gateways offer)\u003C\u002Fli>\n\u003Cli>You will see the bitcoin\u002Faltcoin payment statistics in one common table on your website. \u003C\u002Fli>\n\u003Cli>No Chargebacks, Global, Secure. All in automatic mode.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgourl.io\u002Fview\u002Fcontact\u002FContact_Us.html\" rel=\"nofollow ugc\">Free Tech Support\u003C\u002Fa> for You\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Plugin Page: \u003Ca href=\"https:\u002F\u002Fgourl.io\u002Fbitcoin-payments-wp-ecommerce.html\" rel=\"nofollow ugc\">https:\u002F\u002Fgourl.io\u002Fbitcoin-payments-wp-ecommerce.html\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Twitter: \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002FCryptocoinAPI\" rel=\"nofollow ugc\">https:\u002F\u002Ftwitter.com\u002FCryptocoinAPI\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Github: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcryptoapi\u002FBitcoin-Payments-WP-eCommerce\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Fcryptoapi\u002FBitcoin-Payments-WP-eCommerce\u003C\u002Fa>\u003C\u002Fp>\n","Provides Bitcoin\u002FAltcoin Payment Gateway for WP eCommerce 3.8.10+ or higher. Accept Bitcoin, Bitcoin Cash, Litecoin, Dogecoin, Dash, etc Payments on Y &hellip;",40,103177,100,3,"2021-07-13T16:55:00.000Z","5.8.13","3.5",[55,56,23,57,58],"bitcoin","bitcoincash","wp-ecommerce","wpecommerce","https:\u002F\u002Fgourl.io\u002Fbitcoin-payments-wp-ecommerce.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgourl-wp-ecommerce-bitcoin-altcoin-payment-gateway-addon.zip",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":11,"downloaded":69,"rating":49,"num_ratings":34,"last_updated":18,"tested_up_to":70,"requires_at_least":71,"requires_php":18,"tags":72,"homepage":74,"download_link":75,"security_score":49,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":76},"amazing-wp-e-commerce","Amazing WP e-Commerce","1.0.1","Risto Niinemets","https:\u002F\u002Fprofiles.wordpress.org\u002Fristoniinemets\u002F","\u003Cp>Whilst developing a theme for WP e-Commerce, have you ever thought why there’s a template file for a list and a grid view, even though it is disabled in Store settings (Settings – Store – Presentation)?\u003C\u002Fp>\n\u003Cp>This plugin will enable Grid and List views and will let you to customize the grid view as it is presented in Store settings. Those settings are: Products per row, Show only images, Display Variations, Display Description, Display “Add to Cart” Button, Display “More Detail” Button.\u003C\u002Fp>\n\u003Cp>If you have ever looked into wpsc-single_product.php file then you probably have noticed the Gold Cart plugin function in there and it does nothing. Well, I have added functionality for it. With this plugin installed, you will see additional product thumbails under the main thumbnail (screenshot 1).\u003C\u002Fp>\n\u003Cp>Also it comes with a fancy extra feature: Extra Thumbnails. If your product has more than the featured image, then you can go to products page (catalog) and hover over the product thumbnail. It will load the extra images and start a slideshow.\u003C\u002Fp>\n","Enable some of the WP e-Commerce disabled features and simplify your development.",3530,"3.5.2","3.0.1",[23,24,73],"wpsc","http:\u002F\u002Fwww.wordpress.org\u002Fextend\u002Fplugins","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Famazing-wp-e-commerce.1.0.1.zip","2026-03-15T10:48:56.248Z",{"slug":78,"name":79,"version":6,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":11,"downloaded":84,"rating":85,"num_ratings":14,"last_updated":86,"tested_up_to":87,"requires_at_least":71,"requires_php":18,"tags":88,"homepage":91,"download_link":92,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"qtranslate-loves-wp-e-commerce","qTranslate loves WPEC","stereohero","https:\u002F\u002Fprofiles.wordpress.org\u002Fstereohero\u002F","\u003Cp>This is a simple and tiny plug-in which add translatable form fields for wp e-commerce taxonomies (product categores, variations and product tags).\u003C\u002Fp>\n\u003Cp>Just activate it and you’re good to go.\u003C\u002Fp>\n\u003Cp>Requires qTranslate and WP e-commerce.\u003C\u002Fp>\n","Adds translatable form fields for wp e-commerce taxonomies (product categories, variations and product tags).",2235,90,"2014-02-27T20:14:00.000Z","3.7.41",[89,90,23,24],"qtranslate","translation","http:\u002F\u002Fstereohero.se","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fqtranslate-loves-wp-e-commerce.zip",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":49,"downloaded":101,"rating":28,"num_ratings":28,"last_updated":102,"tested_up_to":103,"requires_at_least":104,"requires_php":18,"tags":105,"homepage":109,"download_link":110,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"shippingeasy-for-wp-ecommerce","ShippingEasy for WP e-Commerce","1.03","ShippingDev","https:\u002F\u002Fprofiles.wordpress.org\u002Fshippingdev\u002F","\u003Cp>ShippingEasy is a powerful online shipping platform that integrates seamlessly with your WordPress WP e-Commerce store to give you a complete end-to-end fulfillment solution. You do not need a courier account to use ShippingEasy. We have negotiated discounted shipping rates for you with our trusted courier partners. Up-to-date tracking information comes included, and is accessible by both you and your customers for full visibility and peace of mind.\u003C\u002Fp>\n\u003Cp>Send your packages anywhere in the world in just a few quick steps with ShippingEasy!\u003C\u002Fp>\n\u003Cp>Key features:\u003C\u002Fp>\n\u003Ch4>WordPress Integration\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easy to install WordPress plugin\u003C\u002Fli>\n\u003Cli>Works with any standards compliant WordPress theme\u003C\u002Fli>\n\u003Cli>Integrates with WP e-Commerce\u003C\u002Fli>\n\u003Cli>Adds restfull api connecting your store to ‘MyStores Hub’ in your account section of shippingeasy.com\u003C\u002Fli>\n\u003Cli>Adds Shippingeasy rate calculator to the\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Shipping\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Compare and book couriers in a few quick steps, no courier account necessary.\u003C\u002Fli>\n\u003Cli>Discounted rates from the world’s largest couriers.\u003C\u002Fli>\n\u003Cli>Consolidated view of all sold inventory and fulfillment in one place.\u003C\u002Fli>\n\u003Cli>Supports multiple platforms if you have more than one online store.\u003C\u002Fli>\n\u003Cli>Extensive package tracking and delivery updates give you and your customers peace of mind.\u003C\u002Fli>\n\u003Cli>International shipping options to expand your customer base.\u003C\u002Fli>\n\u003Cli>Comprehensive shipment reporting to help keep you organised.\u003C\u002Fli>\n\u003Cli>Automatically generates all labels and customs forms to save you time.\u003C\u002Fli>\n\u003Cli>Save commonly used package sizes, addresses and credit cards for speedy booking.\u003C\u002Fli>\n\u003Cli>24\u002F7 customer service with email, live chat and free phone support.\u003Cbr \u002F>\nFor more information, visit http:\u002F\u002Fwww.ShippingEasy.com\u003C\u002Fli>\n\u003C\u002Ful>\n","ShippingEasy is a powerful online shipping platform that integrates seamlessly with your WordPress WP e-Commerce store to give you a complete end-to-e &hellip;",6945,"2012-07-17T11:12:00.000Z","3.3.2","3.0",[106,22,107,108,23],"cart","shipping","shop","http:\u002F\u002Fwww.shippingeasy.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshippingeasy-for-wp-ecommerce.zip",{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":85,"downloaded":119,"rating":28,"num_ratings":28,"last_updated":120,"tested_up_to":121,"requires_at_least":122,"requires_php":18,"tags":123,"homepage":127,"download_link":128,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-dropstream","DropStream – Automated eCommerce Fulfillment","1.2.3","karlfalconer","https:\u002F\u002Fprofiles.wordpress.org\u002Fkarlfalconer\u002F","\u003Ch4>DropStream Automates Your Order Fulfillment process\u003C\u002Fh4>\n\u003Cp>DropStream is the leading provider of ecommerce fulfillment integrations, allowing merchants to automate the process of fulfilling their sales orders. DropStream automates 3 main processes:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Automatically send orders to your fulfillment center or shipping solution\u003C\u002Fli>\n\u003Cli>Automatically send tracking numbers back to WordPress, notifying shoppers that their package is on the way\u003C\u002Fli>\n\u003Cli>Automatically update product inventory levels, keeping your online store updated with accurate available quantities\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>DropStream offers two core products:\u003C\u002Fp>\n\u003Col>\n\u003Cli>DropStream (http:\u002F\u002Fgetdropstream.com\u002F)\u003C\u002Fli>\n\u003Cli>PackageBee (http:\u002F\u002Fpackagebee.com\u002F)\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Depending on your integration needs, you are able to you use one or the other. Contact DropStream to find out which product is best for you. (http:\u002F\u002Fgetdropstream.com\u002Fcontact)\u003C\u002Fp>\n\u003Ch4>See what others say about DropStream\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Cp>We were hampered by data entry work-arounds, until DropStream tore down the technical wall that stood between us and our customers.\u003Cbr \u002F>\n  — Clay Clarkson, Whole Heart Ministries\u003C\u002Fp>\n\u003Cp>DropStream is a useful capability that gives us greater flexibility in meeting our fulfillment requirements. The service was easy to set up and has been very reliable.\u003Cbr \u002F>\n  — Scott Madsen, National Imports LLC\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Get Started With Your Free 14-day Trial\u003C\u002Fh4>\n\u003Cp>DropStream is actively integrated with thousands of fulfillment providers in North America and Europe, giving you tremendous flexibility on where to send your sales orders. You can see a [list of desitnation systems: (http:\u002F\u002Fsupport.getdropstream.com\u002Fcustomer\u002Fen\u002Fportal\u002Farticles\u002F2847048-currently-supported-warehouse-systems-wmss-imss-erps-?b_id=2404)] on our website. Don’t know the system used by your fulfillment center? \u003Ca href=\"http:\u002F\u002Fgetdropstream.com\u002Fcontact\" title=\"Contact DropStream\" rel=\"nofollow ugc\">Contact us\u003C\u002Fa> and we’ll confirm whether we currently support the system or if we can add support for it for you.\u003C\u002Fp>\n","DropStream is a powerful eCommerce plugin that integrates your WordPress site with your shipping solution or third-party fulfillment provider, allowin &hellip;",9458,"2022-07-22T19:39:00.000Z","5.9.13","4.0",[22,124,125,126,23],"ecommerce","fulfillment","woocommerce","http:\u002F\u002Fgetdropstream.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-dropstream.1.2.3.zip",{"attackSurface":130,"codeSignals":185,"taintFlows":265,"riskAssessment":266,"analyzedAt":275},{"hooks":131,"ajaxHandlers":181,"restRoutes":182,"shortcodes":183,"cronEvents":184,"entryPointCount":28,"unprotectedCount":28},[132,139,143,147,151,155,159,163,166,170,173,177],{"type":133,"name":134,"callback":135,"priority":136,"file":137,"line":138},"action","plugins_loaded","init",9,"wpec-call_for_price.php",61,{"type":133,"name":140,"callback":141,"file":137,"line":142},"admin_head","override_wpsc_price_control_forms",70,{"type":133,"name":144,"callback":145,"file":137,"line":146},"wp_enqueue_scripts","load_front_end_js",71,{"type":133,"name":148,"callback":149,"file":137,"line":150},"admin_enqueue_scripts","load_back_end_js",72,{"type":133,"name":152,"callback":153,"file":137,"line":154},"wp_head","load_front_end_css",73,{"type":133,"name":156,"callback":157,"file":137,"line":158},"admin_init","overload_product_submit",74,{"type":133,"name":160,"callback":161,"file":137,"line":162},"wpsc_product_form_fields_end","show_cfp",75,{"type":133,"name":160,"callback":164,"file":137,"line":165},"hide_price",76,{"type":133,"name":167,"callback":168,"file":137,"line":169},"admin_menu","cfp_menu",81,{"type":133,"name":156,"callback":171,"file":137,"line":172},"register_cfpsettings",82,{"type":133,"name":174,"callback":175,"priority":11,"file":137,"line":176},"save_post","cfp_wpsc_admin_submit_product",675,{"type":133,"name":178,"callback":179,"file":137,"line":180},"admin_notices","show_wpec_missing_notice",693,[],[],[],[],{"dangerousFunctions":186,"sqlUsage":187,"outputEscaping":189,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":34,"bundledLibraries":264},[],{"prepared":50,"raw":28,"locations":188},[],{"escaped":28,"rawEcho":190,"locations":191},37,[192,195,197,199,201,203,205,207,209,211,213,215,217,219,221,223,225,227,229,231,233,235,237,239,241,243,245,247,248,250,251,253,254,256,258,260,262],{"file":137,"line":193,"context":194},118,"raw output",{"file":137,"line":196,"context":194},128,{"file":137,"line":198,"context":194},146,{"file":137,"line":200,"context":194},154,{"file":137,"line":202,"context":194},155,{"file":137,"line":204,"context":194},156,{"file":137,"line":206,"context":194},157,{"file":137,"line":208,"context":194},158,{"file":137,"line":210,"context":194},159,{"file":137,"line":212,"context":194},160,{"file":137,"line":214,"context":194},161,{"file":137,"line":216,"context":194},163,{"file":137,"line":218,"context":194},164,{"file":137,"line":220,"context":194},165,{"file":137,"line":222,"context":194},166,{"file":137,"line":224,"context":194},167,{"file":137,"line":226,"context":194},168,{"file":137,"line":228,"context":194},169,{"file":137,"line":230,"context":194},171,{"file":137,"line":232,"context":194},174,{"file":137,"line":234,"context":194},188,{"file":137,"line":236,"context":194},202,{"file":137,"line":238,"context":194},217,{"file":137,"line":240,"context":194},273,{"file":137,"line":242,"context":194},275,{"file":137,"line":244,"context":194},305,{"file":137,"line":246,"context":194},306,{"file":137,"line":246,"context":194},{"file":137,"line":249,"context":194},328,{"file":137,"line":249,"context":194},{"file":137,"line":252,"context":194},329,{"file":137,"line":252,"context":194},{"file":137,"line":255,"context":194},333,{"file":137,"line":257,"context":194},334,{"file":137,"line":259,"context":194},339,{"file":137,"line":261,"context":194},372,{"file":137,"line":263,"context":194},375,[],[],{"summary":267,"deductions":268},"The plugin \"wp-e-commerce-call-for-price\" v1.0 exhibits a generally positive security posture based on the static analysis provided. The absence of any identified CVEs in its history, coupled with the low complexity of its attack surface (zero AJAX, REST API, shortcodes, or cron events), suggests a history of responsible development and maintenance. The code analysis also reveals good practices in handling SQL queries, with 100% of them utilizing prepared statements, which significantly mitigates SQL injection risks. File operations and external HTTP requests are also absent, further reducing potential attack vectors.\n\nHowever, a significant concern arises from the output escaping. With 37 total outputs and 0% properly escaped, this indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities. Any user-supplied data that is displayed on the frontend without proper sanitization or escaping can be exploited by attackers to inject malicious scripts. Additionally, the lack of nonce checks on any potential entry points, while the attack surface is currently zero, means that if new entry points are added in the future without proper security measures, they would be immediately vulnerable.\n\nIn conclusion, while the plugin avoids many common pitfalls like vulnerable SQL queries or unpatched CVEs, the pervasive lack of output escaping is a critical weakness that requires immediate attention. The developers have demonstrated good practices in other areas, but this oversight leaves the plugin susceptible to XSS attacks. Addressing the output escaping issue is paramount to improving its overall security.",[269,272],{"reason":270,"points":271},"0% output escaping",15,{"reason":273,"points":274},"0 nonce checks",5,"2026-03-17T05:41:15.183Z",{"wat":277,"direct":288},{"assetPaths":278,"generatorPatterns":282,"scriptPaths":283,"versionParams":284},[279,280,281],"\u002Fwp-content\u002Fplugins\u002Fwp-e-commerce-call-for-price\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Fwp-e-commerce-call-for-price\u002Fjs\u002Ffront.js","\u002Fwp-content\u002Fplugins\u002Fwp-e-commerce-call-for-price\u002Fcss\u002Fstyle.css",[],[279,280],[285,286,287],"wp-e-commerce-call-for-price\u002Fcss\u002Fstyle.css?ver=","wp-e-commerce-call-for-price\u002Fjs\u002Fadmin.js?ver=","wp-e-commerce-call-for-price\u002Fjs\u002Ffront.js?ver=",{"cssClasses":289,"htmlComments":292,"htmlAttributes":293,"restEndpoints":295,"jsGlobals":296,"shortcodeOutput":298},[290,291],"cfp_icons","selected",[],[294],"data-cfp-id",[],[297],"cfp_selected_icon",[]]