Does Simple Payment Module for Divi have any unpatched vulnerabilities?

No. All known vulnerabilities in Simple Payment Module for Divi have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Simple Payment Module for Divi compatible with WordPress 6.6.5?

According to WordPress.org data, Simple Payment Module for Divi 1.1.14 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

Is Simple Payment Module for Divi compatible with PHP 5.4+?

Simple Payment Module for Divi requires PHP 5.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Simple Payment Module for Divi updated?

Simple Payment Module for Divi was last updated on Oct 7, 2024. Frequent updates are generally a positive security signal.

What is Simple Payment Module for Divi's security score?

Simple Payment Module for Divi has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Simple Payment Module for Divi Security & Risk Analysis

wordpress.org/plugins/wpz-payments-free

A payment module for Divi that supports both Stripe and PayPal!

50 active installs v1.1.14 PHP 5.4+ WP 5.0+ Updated Oct 7, 2024

diviecommercepaymentpaypalstripe

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Simple Payment Module for Divi Safe to Use in 2026?

Generally Safe

Score 92/100

Simple Payment Module for Divi has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The "wpz-payments-free" v1.1.14 plugin exhibits a mixed security posture. While it has no known critical vulnerabilities or recent security issues, and a high percentage of its outputs are properly escaped, several aspects of its code analysis raise concerns. The presence of AJAX handlers without authentication checks represents a significant potential attack surface, as these entry points could be exploited by unauthenticated users to perform unintended actions. Additionally, the plugin performs SQL queries without using prepared statements, which, although only one is present, introduces a risk of SQL injection vulnerabilities if that query handles user-supplied data unsafely.

Although the plugin's vulnerability history is clean, this does not entirely negate the risks identified in the static analysis. The lack of known CVEs could be due to a lack of past scrutiny or successful avoidance of exploitable flaws. However, the identified unprotected AJAX endpoints and the unparameterized SQL query are concrete weaknesses that should be addressed. The plugin demonstrates good practices in output escaping and doesn't appear to have critical taint flows or dangerous functions, which are positive indicators. Overall, while not critically flawed, the plugin has areas requiring immediate attention to improve its security.

Key Concerns

3 AJAX handlers without auth checks
1 SQL query not using prepared statements

Vulnerabilities

None known

Simple Payment Module for Divi Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Simple Payment Module for Divi Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

217 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared1 total queries

Output Escaping

93% escaped233 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

admin_page (wpz-payments.php:676)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

3 unprotected

Simple Payment Module for Divi Attack Surface

Entry Points5

Unprotected3

AJAX Handlers 5

authwp_ajax_wpz_payments_notice_hideincludes\admin\notices\admin-notices.php:25

authwp_ajax_divi_payment_module_initincludes\PaymentModule.php:63

noprivwp_ajax_divi_payment_module_initincludes\PaymentModule.php:64

authwp_ajax_wpz_payments_preflightwpz-payments.php:103

noprivwp_ajax_wpz_payments_preflightwpz-payments.php:104

WordPress Hooks 21

actionadmin_enqueue_scriptsincludes\admin\addons\addons.php:22

actionadmin_noticesincludes\admin\notices\admin-notices.php:24

actionadmin_enqueue_scriptsincludes\admin\notices\admin-notices.php:26

filteret_pb_set_style_selectorincludes\modules\PaymentModule\PaymentModule.php:360

filteret_builder_option_template_is_activeincludes\modules\PaymentModule\PaymentModule.php:3262

filteret_global_assets_listincludes\PaymentModule.php:67

actionadmin_menuwpz-payments.php:91

actiondivi_extensions_initwpz-payments.php:102

actioninitwpz-payments.php:105

actionadmin_initwpz-payments.php:106

filteret_builder_should_load_frameworkwpz-payments.php:110

actionwpwpz-payments.php:112

filteret_builder_should_load_frameworkwpz-payments.php:115

actionwpwpz-payments.php:116

actionload-plugins.phpwpz-payments.php:121

actionadmin_enqueue_scriptswpz-payments.php:122

filterwp_untrash_post_statuswpz-payments.php:124

filtermap_meta_capwpz-payments.php:198

actionedit_post_wpz-paymentwpz-payments.php:217

filtermanage_wpz-payment_posts_columnswpz-payments.php:218

actionmanage_wpz-payment_posts_custom_columnwpz-payments.php:219

Maintenance & Trust

Simple Payment Module for Divi Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedOct 7, 2024

PHP min version5.4

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs50

Alternatives

Simple Payment Module for Divi Alternatives

Contact Form 7 – PayPal & Stripe Add-on

contact-form-7-paypal-add-on

Easily add PayPal and Stripe to Contact Form 7. Accept credit card payments with Stripe & PayPal on your site today. Offical PayPal & Stripe Partner.

8K 5 CVEs

WP Express Checkout (Fast Payments via PayPal & Stripe)

wp-express-checkout

Allows you to accept fast and secure payments for products and services via a payment popup window, supporting both the new PayPal and Stripe Checkout …

2K 2 CVEs

WooCommerce PayPal Payments

woocommerce-paypal-payments

100

PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.

800K 1 CVE

PrettyLinks – Affiliate Links, Link Branding, Link Tracking, Marketing and Stripe Payments Plugin

pretty-link

🌠 The best WordPress link management, branding, tracking, sharing and payments plugin. Easily make pretty & trackable shortlinks. 🔗

300K 8 CVEs

SureCart – Ecommerce Made Easy For Selling Physical Products, Digital Downloads, Subscriptions, Donations, & Payments

surecart

Make ecommerce easy with a simple to use, all-in-one platform, that anyone can set up in just a few minutes!

90K 2 CVEs

Developer Profile

Simple Payment Module for Divi Developer Profile

WP Zone

21 plugins · 40K total installs

trust score

Avg Security Score

91/100

Avg Patch Time

124 days

View full developer profile

Detection Fingerprints

How We Detect Simple Payment Module for Divi

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wpz-payments-free/css/admin.min.css

Version Parameters

wpz-payments-free/css/admin.min.css?ver=

HTML / DOM Fingerprints

CSS Classes

ags-settings-addons-errorags-settings-addons-listags-settings-addonags-settings-addon-infoags-settings-addon-badges-wrapperags-settings-addon-badgeags-settings-addon-imgags-settings-addon-btn+1 more

Data Attributes

ags-settings-addons-errorags-settings-addons-listags-settings-addonags-settings-addon-infoags-settings-addon-badges-wrapperags-settings-addon-badge+3 more

FAQ