
AdFever for WordPress Security & Risk Analysis
wordpress.org/plugins/adfever-for-wordpressPlugin de Comparaison de Prix AdFever pour Worpdress
Is AdFever for WordPress Safe to Use in 2026?
Generally Safe
Score 85/100AdFever for WordPress has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The "adfever-for-wordpress" v1.4 plugin demonstrates a mixed security posture. On the positive side, it has no known vulnerabilities (CVEs), no dangerous functions, and all its SQL queries utilize prepared statements, indicating good practices in database interaction. It also performs capability checks on at least one entry point, further bolstering its defense. However, several concerns arise from the static analysis. The plugin exhibits a low percentage of properly escaped output (6%), suggesting a significant risk of cross-site scripting (XSS) vulnerabilities. Additionally, two unsanitized path flows were detected in the taint analysis, which could potentially lead to directory traversal or file inclusion vulnerabilities if exploited. The presence of two shortcodes as entry points, while not inherently insecure, increases the potential attack surface, especially when coupled with the output escaping issues.
While the vulnerability history is clean, this does not negate the risks identified in the static analysis. The lack of documented vulnerabilities could be due to a lack of thorough auditing or exploitation attempts rather than inherent security. The outdated jQuery v1.3.2 library is a concerning weakness, as older versions of jQuery are known to have several security vulnerabilities. In conclusion, the plugin has strengths in its database handling and lack of direct exploit history, but the significant output escaping issues, unsanitized path flows, and outdated bundled library present considerable security risks that require attention.
Key Concerns
- Low output escaping percentage
- Unsanitized path flows detected
- Bundled outdated jQuery v1.3.2
AdFever for WordPress Security Vulnerabilities
AdFever for WordPress Release Timeline
AdFever for WordPress Code Analysis
Bundled Libraries
Output Escaping
Data Flow Analysis
AdFever for WordPress Attack Surface
Shortcodes 2
WordPress Hooks 37
Maintenance & Trust
AdFever for WordPress Maintenance & Trust
Maintenance Signals
Community Trust
AdFever for WordPress Alternatives
WooCommerce
woocommerce
Everything you need to launch an online store in days and keep it growing for years. From your first sale to millions in revenue, Woo is with you.
ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution
shopengine
WooCommerce builder for Elementor and Gutenberg. It offers product templates, product sliders, shopping cart, quick view, Woo wishlist, product filter …
Product Feed PRO for WooCommerce by AdTribes – Product Feeds for WooCommerce
woo-product-feed-pro
Most popular WooCommerce product feed plugin supporting Google shopping feed, meta/facebook feed, bing product feed & more.
Menu Cart for WooCommerce
woocommerce-menu-bar-cart
Automatically displays a shopping cart in your menu bar. Works with WooCommerce and Easy Digital Downloads (EDD)
Product Feed Manager for WooCommerce – CTX Feed – Support 220+ Shopping & Social Channels
webappick-product-feed-for-woocommerce
Create WooCommerce product feeds for Google Shopping, Facebook, TikTok & 220+ channels. 2026 compliant. 6 formats. Trusted by 70,000+ stores.
AdFever for WordPress Developer Profile
2 plugins · 20 total installs
How We Detect AdFever for WordPress
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/adfever-for-wordpress/inc/js/thickbox-ext.js/wp-content/plugins/adfever-for-wordpress/inc/js/thickbox-ext.jsadfever-for-wordpress/inc/js/thickbox-ext.js?ver=