WP PayMobile Content Locker Security & Risk Analysis
wordpress.org/plugins/wp-paymobile-content-lockerWP PayMobile is a new monetization method for your website. Get payments by SMS / Phone Call for revealing content.
Is WP PayMobile Content Locker Safe to Use in 2026?
Generally Safe
Score 85/100WP PayMobile Content Locker has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The wp-paymobile-content-locker v1.3 plugin exhibits several concerning security practices despite having no recorded historical vulnerabilities. The static analysis reveals a critical lack of input sanitization and capability checks, particularly highlighted by two high-severity taint flows with unsanitized paths. Furthermore, the absence of nonce checks on any entry points (even though none are explicitly marked as unprotected in the 'attack surface' section, the general lack of checks is worrying) and the low percentage of properly escaped output (18%) create significant opportunities for cross-site scripting (XSS) and other injection attacks. While the plugin doesn't utilize dangerous functions or make external HTTP requests, and its SQL queries show some use of prepared statements, these strengths are overshadowed by the fundamental weaknesses in handling user input and enforcing permissions. The lack of vulnerability history is positive but can also be misleading if not accompanied by robust security practices, which are clearly lacking here.
Key Concerns
- High severity taint flows with unsanitized paths
- No nonce checks implemented
- Low percentage of properly escaped output
- No capability checks implemented
- Some SQL queries not using prepared statements
WP PayMobile Content Locker Security Vulnerabilities
WP PayMobile Content Locker Code Analysis
SQL Query Safety
Output Escaping
Data Flow Analysis
WP PayMobile Content Locker Attack Surface
Shortcodes 2
WordPress Hooks 4
Maintenance & Trust
WP PayMobile Content Locker Maintenance & Trust
Maintenance Signals
Community Trust
WP PayMobile Content Locker Alternatives
WC – APG SMS Notifications
woocommerce-apg-sms-notifications
Add to your WooCommerce store SMS notifications to your customers when order status changed.
Alpha SMS
alpha-sms
Connect your WordPress and WooCommerce store to Alpha SMS for OTP verification and order notifications in Bangladesh.
ReadMore ReadLess
readmore-readless
ReadMore ReadLess will hide content on page. Clicking on readmore will show complete page without refreshing the page.
OTP Content Protect
otp-content-protect
The easiest way to protect WordPress content with an OTP. Secure posts and pages with a one-time password—no user registration required.
Super Social Content Locker Lite
super-social-content-locker-lite
GROW YOUR SOCIAL MEDIA FOLLOWERS NOW WITH SUPER SOCIAL CONTENT LOCKER!
WP PayMobile Content Locker Developer Profile
1 plugin · 10 total installs
How We Detect WP PayMobile Content Locker
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/wp-paymobile-content-locker/lock.pngHTML / DOM Fingerprints
paygol<!-- PayGol JavaScript --><!-- PayGol Form -->name="pg_frm"action="https://www.paygol.com/pay"name="pg_serviceid"name="pg_currency"name="pg_name"name="pg_custom"+4 more[wp_paymobile_popup][wp_paymobile_ipn]