WP-Safety

WTC: Sözleşmeler, Kargo, SMS, İade, Form, OTP (SMS Doğrulama), Puan, Kupon Yönetimi Security & Risk Analysis

wordpress.org/plugins/wtc-checkout

WC Turkiye: Contracts, Form Fields, District/Neighborhood Select, Auto Postcode, Cargo, SMS, OTP, Points, Coupons, Return and Dashboard Management.

20 active installs v1.3.1 PHP 8.2+ WP 5.7+ Updated Mar 12, 2026
on-bilgilendirme-formufaturamesafeli-satis-sozlesmesisozlesmelertc-kimlik-no
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is WTC: Sözleşmeler, Kargo, SMS, İade, Form, OTP (SMS Doğrulama), Puan, Kupon Yönetimi Safe to Use in 2026?

Generally Safe

Score 100/100

WTC: Sözleşmeler, Kargo, SMS, İade, Form, OTP (SMS Doğrulama), Puan, Kupon Yönetimi has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 23d ago
Risk Assessment

The "wtc-checkout" plugin version 1.3.1 exhibits a generally strong security posture, particularly with its robust use of prepared statements for SQL queries and a high percentage of properly escaped outputs. The absence of known CVEs and critical taint flow issues further bolsters this positive assessment. However, a notable concern arises from one unprotected AJAX handler, which represents a direct entry point for potential attacks if not adequately secured by other means within the plugin or WordPress environment. The plugin's vulnerability history, being clear of any recorded issues, suggests a diligent approach to security by its developers, or potentially limited exposure. Despite the single unprotected AJAX handler, the plugin demonstrates good security practices overall, but this single oversight warrants attention for a complete risk mitigation.

Key Concerns

  • Unprotected AJAX handler found
Vulnerabilities
None known

WTC: Sözleşmeler, Kargo, SMS, İade, Form, OTP (SMS Doğrulama), Puan, Kupon Yönetimi Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

WTC: Sözleşmeler, Kargo, SMS, İade, Form, OTP (SMS Doğrulama), Puan, Kupon Yönetimi Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
42
338 escaped
Nonce Checks
35
Capability Checks
7
File Operations
3
External Requests
0
Bundled Libraries
1

Bundled Libraries

dompdf

Output Escaping

89% escaped380 total outputs
Data Flows
All sanitized

Data Flow Analysis

10 flows
add_name_fields (core\general\RegisterViewModel.php:23)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

WTC: Sözleşmeler, Kargo, SMS, İade, Form, OTP (SMS Doğrulama), Puan, Kupon Yönetimi Attack Surface

Entry Points11
Unprotected1

AJAX Handlers 10

authwp_ajax_wtc_update_contractsmodules\contracts\frontend\ContractDisplayService.php:28
noprivwp_ajax_wtc_update_contractsmodules\contracts\frontend\ContractDisplayService.php:29
authwp_ajax_wtc_filter_ordersmodules\dashboard\frontend\DashboardHandler.php:16
authwp_ajax_wtc_get_citiesmodules\forms\frontend\CheckoutViewModel.php:15
noprivwp_ajax_wtc_get_citiesmodules\forms\frontend\CheckoutViewModel.php:16
authwp_ajax_wtc_get_neighborhoodsmodules\forms\frontend\CheckoutViewModel.php:17
noprivwp_ajax_wtc_get_neighborhoodsmodules\forms\frontend\CheckoutViewModel.php:18
authwp_ajax_wtc_get_citiesmodules\forms\frontend\MyAccountViewModel.php:13
authwp_ajax_wtc_get_neighborhoodsmodules\forms\frontend\MyAccountViewModel.php:14
authwp_ajax_wtc_manual_point_transactionmodules\points\admin\PointsSettings.php:10

Shortcodes 1

[wtc_dashboard] modules\dashboard\frontend\DashboardHandler.php:15
WordPress Hooks 73
actionwp_enqueue_scriptscore\AssetManager.php:6
actionwp_enqueue_scriptscore\AssetManager.php:7
actionwp_enqueue_scriptscore\AssetManager.php:8
actionwp_enqueue_scriptscore\AssetManager.php:9
actionwp_enqueue_scriptscore\AssetManager.php:10
actionwp_enqueue_scriptscore\AssetManager.php:11
actionadmin_enqueue_scriptscore\AssetManager.php:12
actionadmin_enqueue_scriptscore\AssetManager.php:13
actionadmin_enqueue_scriptscore\AssetManager.php:14
actionwp_headcore\general\CartCustomizationService.php:6
filterwoocommerce_currency_symbolcore\general\CurrencyService.php:6
actionadmin_initcore\general\GeneralSettings.php:18
filterwoocommerce_min_password_strengthcore\general\PasswordStrengthService.php:11
actionwoocommerce_register_form_startcore\general\RegisterViewModel.php:7
filterwoocommerce_registration_errorscore\general\RegisterViewModel.php:8
actionwoocommerce_created_customercore\general\RegisterViewModel.php:9
actionwoocommerce_register_form_startcore\general\RegisterViewModel.php:12
filterwoocommerce_registration_errorscore\general\RegisterViewModel.php:13
actionwoocommerce_created_customercore\general\RegisterViewModel.php:14
filterwoocommerce_package_ratescore\general\ShippingVisibilityService.php:6
actionwoocommerce_checkout_update_order_reviewcore\general\ShippingVisibilityService.php:7
actionwoocommerce_update_shipping_methodcore\general\ShippingVisibilityService.php:8
actionadmin_menucore\MenuManager.php:17
actionadmin_initmodules\contracts\admin\ContractsSettings.php:10
actionadd_meta_boxesmodules\contracts\admin\OrderContractsMetaBox.php:7
actionwp_footermodules\contracts\frontend\ContractDisplayService.php:26
actionwoocommerce_checkout_processmodules\contracts\frontend\ContractDisplayService.php:27
actioninitmodules\contracts\services\ContractDownloadService.php:8
actioninitmodules\contracts\services\ContractManager.php:7
actioninitmodules\contracts\services\ContractManager.php:8
actionwoocommerce_checkout_order_processedmodules\contracts\services\ContractManager.php:9
actionwoocommerce_thankyoumodules\contracts\services\ContractManager.php:21
actionwoocommerce_view_ordermodules\contracts\services\ContractManager.php:24
actionwoocommerce_email_order_detailsmodules\contracts\services\ContractManager.php:27
filterwoocommerce_email_attachmentsmodules\contracts\services\EmailService.php:6
actionadmin_initmodules\coupons\admin\CouponSettings.php:9
actioninitmodules\coupons\frontend\CouponAccountHandler.php:16
filterquery_varsmodules\coupons\frontend\CouponAccountHandler.php:17
filterwoocommerce_account_menu_itemsmodules\coupons\frontend\CouponAccountHandler.php:19
actionadmin_initmodules\dashboard\admin\DashboardSettings.php:10
actionadmin_post_wtc_save_dashboard_stylesmodules\dashboard\admin\DashboardSettings.php:11
actionadmin_post_wtc_reset_dashboard_stylesmodules\dashboard\admin\DashboardSettings.php:12
filterwoocommerce_checkout_fieldsmodules\forms\frontend\CheckoutViewModel.php:7
filterwoocommerce_checkout_fieldsmodules\forms\frontend\CheckoutViewModel.php:8
filterwoocommerce_default_address_fieldsmodules\forms\frontend\CheckoutViewModel.php:9
filterwoocommerce_billing_fieldsmodules\forms\frontend\CheckoutViewModel.php:10
filterwoocommerce_order_get_billing_first_namemodules\forms\frontend\CheckoutViewModel.php:11
filterwoocommerce_order_get_billing_last_namemodules\forms\frontend\CheckoutViewModel.php:12
actionwoocommerce_checkout_processmodules\forms\frontend\CheckoutViewModel.php:13
actionwoocommerce_checkout_order_processedmodules\forms\frontend\CheckoutViewModel.php:14
actionwoocommerce_checkout_before_customer_detailsmodules\forms\frontend\CheckoutViewModel.php:19
actionwoocommerce_before_order_notesmodules\forms\frontend\CheckoutViewModel.php:220
filterwoocommerce_billing_fieldsmodules\forms\frontend\MyAccountViewModel.php:10
filterwoocommerce_shipping_fieldsmodules\forms\frontend\MyAccountViewModel.php:11
actionwoocommerce_after_save_address_validationmodules\forms\frontend\MyAccountViewModel.php:12
actionwoocommerce_before_edit_account_address_formmodules\forms\frontend\MyAccountViewModel.php:15
actionwoocommerce_admin_order_data_after_billing_addressmodules\forms\services\OrderDisplayService.php:6
actionwoocommerce_order_details_after_customer_detailsmodules\forms\services\OrderDisplayService.php:7
actionshow_user_profilemodules\forms\services\UserProfileService.php:16
actionedit_user_profilemodules\forms\services\UserProfileService.php:17
actionpersonal_options_updatemodules\forms\services\UserProfileService.php:18
actionedit_user_profile_updatemodules\forms\services\UserProfileService.php:19
actionadmin_initmodules\points\admin\PointsSettings.php:9
actionbefore_woocommerce_initwtc-checkout.php:33
filtercron_scheduleswtc-checkout.php:41
actionadmin_noticeswtc-checkout.php:76
actioninitwtc-checkout.php:100
actioninitwtc-checkout.php:129
actioninitwtc-checkout.php:150
actioninitwtc-checkout.php:163
actioninitwtc-checkout.php:183
actioninitwtc-checkout.php:194
filterplugin_row_metawtc-checkout.php:195
Maintenance & Trust

WTC: Sözleşmeler, Kargo, SMS, İade, Form, OTP (SMS Doğrulama), Puan, Kupon Yönetimi Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 12, 2026
PHP min version8.2
Downloads910

Community Trust

Rating0/100
Number of ratings0
Active installs20
Alternatives

WTC: Sözleşmeler, Kargo, SMS, İade, Form, OTP (SMS Doğrulama), Puan, Kupon Yönetimi Alternatives

Hezarfen – WooCommerce için Kargo Entegrasyonu – Sözleşmeler, Mahalle, İlçe, SMS

Hezarfen – WooCommerce için Kargo Entegrasyonu – Sözleşmeler, Mahalle, İlçe, SMS

hezarfen-for-woocommerce

A
100

🚀 2 bin site! Kargo takip, ücretsiz Hepsijet Entegrasyonu (1-4 desi: 89,24TL+KDV - Hezarfen Pro gerekmez), Mesafeli Sözleşmeler, NetGSM sipariş SMS

2K No CVEs
Sözleşmeler

Sözleşmeler

sozlesmeler

A
92

WordPress plugin to add legal documents like distance sales agreement to your WooCommerce store.

1K No CVEs
Link Invoice Payment for WooCommerce

Link Invoice Payment for WooCommerce

invoice-payment-for-woocommerce

A
98

Link Invoice Payment plugin is a powerful extension for WooCommerce, designed to simplify online billing. Whether for one-time or recurring invoices.

200 2 CVEs
Fatura Entegratör – Gurmehub Fatura Eklentisi

Fatura Entegratör – Gurmehub Fatura Eklentisi

fatura-entegrator

A
100

Kolay, hızlı entegre edilebilir WordPress Fatura eklentisi.

50 No CVEs
Eafatura Kargo & E-Arşiv ve E-Fatura Entegrasyonu

Eafatura Kargo & E-Arşiv ve E-Fatura Entegrasyonu

eafatura-e-arsiv-entegrasyon

A
100

Kısa açıklama: WordPress WooCommerce için Fatura ve Kargo eklentisi.

10 No CVEs
Developer Profile

WTC: Sözleşmeler, Kargo, SMS, İade, Form, OTP (SMS Doğrulama), Puan, Kupon Yönetimi Developer Profile

VerseSofts

8 plugins · 150 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect WTC: Sözleşmeler, Kargo, SMS, İade, Form, OTP (SMS Doğrulama), Puan, Kupon Yönetimi

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wtc-checkout/assets/css/wtc-checkout.css/wp-content/plugins/wtc-checkout/assets/js/wtc-checkout.js/wp-content/plugins/wtc-checkout/assets/css/checkout.css/wp-content/plugins/wtc-checkout/assets/js/checkout.js
Script Paths
/wp-content/plugins/wtc-checkout/assets/js/wtc-checkout.js/wp-content/plugins/wtc-checkout/assets/js/checkout.js
Version Parameters
wtc-checkout/assets/css/wtc-checkout.css?ver=wtc-checkout/assets/js/wtc-checkout.js?ver=wtc-checkout/assets/css/checkout.css?ver=wtc-checkout/assets/js/checkout.js?ver=

HTML / DOM Fingerprints

CSS Classes
wtc-checkout-container
HTML Comments
<!-- wtc-checkout-template-start --><!-- wtc-checkout-template-end -->
Data Attributes
data-wtc-checkout-field-iddata-wtc-checkout-form-id
JS Globals
wtc_checkout_params
FAQ

Frequently Asked Questions about WTC: Sözleşmeler, Kargo, SMS, İade, Form, OTP (SMS Doğrulama), Puan, Kupon Yönetimi