Does Advanced Classifieds & Directory Pro have any unpatched vulnerabilities?

No. All known vulnerabilities in Advanced Classifieds & Directory Pro have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Advanced Classifieds & Directory Pro compatible with WordPress 6.9.4?

According to WordPress.org data, Advanced Classifieds & Directory Pro 3.3.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Advanced Classifieds & Directory Pro compatible with PHP 5.6.20+?

Advanced Classifieds & Directory Pro requires PHP 5.6.20 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Advanced Classifieds & Directory Pro updated?

Advanced Classifieds & Directory Pro was last updated on Dec 22, 2025. Frequent updates are generally a positive security signal.

What is Advanced Classifieds & Directory Pro's security score?

Advanced Classifieds & Directory Pro has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Advanced Classifieds & Directory Pro Security & Risk Analysis

wordpress.org/plugins/advanced-classifieds-and-directory-pro

Build any kind of directory site: classifieds, cars, bikes & other vehicles dealers site, pets, real estate portal, yellow pages, etc...

2K active installs v3.3.0 PHP 5.6.20+ WP 6.3+ Updated Dec 22, 2025

business-directoryclassifiedsdirectorylistingsreal-estate

A · Safe

CVEs total4

Unpatched0

Last CVEDec 24, 2025

Plugin page Download

Safety Verdict

Is Advanced Classifieds & Directory Pro Safe to Use in 2026?

Generally Safe

Score 92/100

Advanced Classifieds & Directory Pro has a strong security track record. Known vulnerabilities have been patched promptly.

4 known CVEsLast CVE: Dec 24, 2025Updated 3mo ago

Risk Assessment

The advanced-classifieds-and-directory-pro plugin v3.3.0 presents a mixed security posture. While it demonstrates good practices in areas like output escaping and the use of prepared statements for SQL queries, significant concerns arise from its attack surface and past vulnerability history. The plugin has 24 unprotected AJAX handlers, which is a considerable entry point for attackers. Despite the absence of critical taint flows in the static analysis, the high number of flows with unsanitized paths (19 out of 28) suggests potential weaknesses in input validation. This, combined with the presence of dangerous functions like unserialize, could lead to security issues if not handled with extreme care.

The plugin's vulnerability history is a significant red flag. With 4 known CVEs, including two high and two medium severity vulnerabilities, it indicates a pattern of exploitable flaws. The common types of vulnerabilities (CSRF, RFI, Missing Authorization) are particularly worrying as they can lead to serious compromises. Although there are currently no unpatched vulnerabilities, the history suggests that the plugin may be prone to developing new ones. The most recent vulnerability was in late 2025, which might indicate a recurring issue or a recent discovery that has since been addressed. Overall, while some security measures are in place, the substantial unprotected attack surface and a history of impactful vulnerabilities necessitate caution.

Key Concerns

Unprotected AJAX handlers
Flows with unsanitized paths
Unpatched CVEs (historically significant)
High and Medium severity CVEs (historically significant)
Dangerous function: unserialize
Bundled outdated library: Freemius v1.0

Vulnerabilities

Advanced Classifieds & Directory Pro Security Vulnerabilities

CVEs by Year

1 CVE in 2019

2019

2 CVEs in 2024

2024

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

High

Medium

4 total CVEs

CVE-2025-68580medium · 4.3Cross-Site Request Forgery (CSRF)

Advanced Classifieds & Directory Pro <= 3.2.9 - Cross-Site Request Forgery

Dec 24, 2025 Patched in 3.3.0 (14d)

CVE-2024-37501high · 8.8Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

Advanced Classifieds & Directory Pro <= 3.1.3 - Authenticated (Contributor+) Local File Inclusion

Jul 4, 2024 Patched in 3.2.1 (8d)

CVE-2024-2222medium · 4.3Missing Authorization

Advanced Classifieds & Directory Pro <= 3.0.0 - Missing Authorization to Arbitrary Attachment Deletion

Mar 19, 2024 Patched in 3.1.2 (22d)

WF-3fda31fa-efc9-44b9-99ba-9e3e23aa2ee0-advanced-classifieds-and-directory-prohigh · 8.8Missing Authorization

Freemius SDK <= 2.2.3 - Missing Authorization to Arbitrary Options Update

Feb 25, 2019 Patched in 1.6.3 (1793d)

Code Analysis

Analyzed Mar 16, 2026

Advanced Classifieds & Directory Pro Code Analysis

Dangerous Functions

Raw SQL Queries

4 prepared

Unescaped Output

256

1935 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$images = unserialize( $post_meta['images'][0] );admin\templates\listings\listing-images.php:23

unserialize$images = unserialize( $post_meta['images'][0] );includes\helpers\html.php:274

unserialize<?php if ( $can_show_images ) : $images = unserialize( $post_meta['images'][0] ); ?>public\templates\deprecated\listing\acadp-public-listing-display.php:71

unserialize$images = unserialize( $post_meta['images'][0] );public\templates\deprecated\user\acadp-public-edit-listing-display.php:260

unserialize$images = unserialize( $post_meta['images'][0] );public\templates\listing\images.php:12

unserialize$images = unserialize( $post_meta['images'][0] );public\templates\listings\layout-grid.php:61

unserialize$images = unserialize( $post_meta['images'][0] );public\templates\listings\layout-list.php:56

unserialize$images = unserialize( $post_meta['images'][0] );public\templates\listings\layout-map.php:57

unserialize$images = unserialize( $post_meta['images'][0] );public\templates\user\listing-form.php:262

unserialize$images = unserialize( $post_meta['images'][0] );public\templates\user\manage-listings.php:68

unserialize$images = unserialize( $post_meta['images'][0] );widgets\templates\listings\layout-grid.php:36

unserialize$images = unserialize( $post_meta['images'][0] );widgets\templates\listings\layout-list.php:37

unserialize$images = unserialize( $post_meta['images'][0] );widgets\templates\listings\layout-map.php:38

Bundled Libraries

Freemius1.0

SQL Query Safety

67% prepared6 total queries

Output Escaping

88% escaped2191 total outputs

Data Flows

19 unsanitized

Data Flow Analysis

25 flows19 with unsanitized paths

acadp_is_human (includes\helpers\functions.php:1272)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

24 unprotected

Advanced Classifieds & Directory Pro Attack Surface

Entry Points46

Unprotected24

AJAX Handlers 24

authwp_ajax_acadp_delete_attachmentincludes\init.php:167

authwp_ajax_acadp_custom_fields_listingsincludes\init.php:183

authwp_ajax_acadp_get_child_termsincludes\init.php:302

noprivwp_ajax_acadp_get_child_termsincludes\init.php:303

authwp_ajax_acadp_public_dropdown_termsincludes\init.php:304

noprivwp_ajax_acadp_public_dropdown_termsincludes\init.php:305

authwp_ajax_acadp_set_cookieincludes\init.php:306

noprivwp_ajax_acadp_set_cookieincludes\init.php:307

authwp_ajax_acadp_custom_fields_searchincludes\init.php:338

noprivwp_ajax_acadp_custom_fields_searchincludes\init.php:339

authwp_ajax_acadp_public_add_remove_favoritesincludes\init.php:345

noprivwp_ajax_acadp_public_add_remove_favoritesincludes\init.php:346

authwp_ajax_acadp_public_report_abuseincludes\init.php:347

noprivwp_ajax_acadp_public_report_abuseincludes\init.php:348

authwp_ajax_acadp_public_send_contact_emailincludes\init.php:349

noprivwp_ajax_acadp_public_send_contact_emailincludes\init.php:350

authwp_ajax_acadp_public_custom_fields_listingsincludes\init.php:382

noprivwp_ajax_acadp_public_custom_fields_listingsincludes\init.php:383

authwp_ajax_acadp_public_image_uploadincludes\init.php:384

noprivwp_ajax_acadp_public_image_uploadincludes\init.php:385

authwp_ajax_acadp_public_delete_attachment_listingsincludes\init.php:386

noprivwp_ajax_acadp_public_delete_attachment_listingsincludes\init.php:387

authwp_ajax_acadp_checkout_format_total_amountincludes\init.php:392

noprivwp_ajax_acadp_checkout_format_total_amountincludes\init.php:393

Shortcodes 22

[acadp_categories] public\categories.php:31

[acadp_category] public\categories.php:32

[acadp_listings] public\listings.php:31

[acadp_locations] public\locations.php:31

[acadp_location] public\locations.php:32

[acadp_checkout] public\payments.php:31

[acadp_payment_errors] public\payments.php:32

[acadp_payment_receipt] public\payments.php:33

[acadp_payment_history] public\payments.php:34

[acadp_login] public\registration.php:31

[acadp_logout] public\registration.php:32

[acadp_register] public\registration.php:33

[acadp_user_account] public\registration.php:34

[acadp_forgot_password] public\registration.php:35

[acadp_password_reset] public\registration.php:36

[acadp_search_form] public\search.php:31

[acadp_search] public\search.php:32

[acadp_user_listings] public\user.php:31

[acadp_user_dashboard] public\user.php:32

[acadp_listing_form] public\user.php:33

[acadp_manage_listings] public\user.php:34

[acadp_favourite_listings] public\user.php:35

WordPress Hooks 127

actionafter_uninstallacadp.php:134

filterrequestadmin\payments.php:340

filterwp_mail_content_typeincludes\helpers\email.php:29

actioninitincludes\init.php:148

actionwp_loadedincludes\init.php:162

actionadmin_enqueue_scriptsincludes\init.php:163

actionadmin_enqueue_scriptsincludes\init.php:164

actionadmin_initincludes\init.php:165

actionadmin_menuincludes\init.php:166

filterdisplay_post_statesincludes\init.php:169

filteruse_block_editor_for_post_typeincludes\init.php:171

filtergutenberg_can_edit_post_typeincludes\init.php:172

actioninitincludes\init.php:177

actionadmin_menuincludes\init.php:180

actionpost_submitbox_misc_actionsincludes\init.php:181

actionadd_meta_boxesincludes\init.php:182

actionsave_postincludes\init.php:184

actiontransition_post_statusincludes\init.php:185

actionrestrict_manage_postsincludes\init.php:186

actionmanage_acadp_listings_posts_custom_columnincludes\init.php:187

actionbefore_delete_postincludes\init.php:188

actionadmin_action_acadp_duplicate_listingincludes\init.php:189

actionadmin_noticesincludes\init.php:190

filterparent_fileincludes\init.php:192

filterparse_queryincludes\init.php:193

filtermanage_edit-acadp_listings_columnsincludes\init.php:194

filterpost_row_actionsincludes\init.php:195

filterquick_edit_show_taxonomyincludes\init.php:196

actioninitincludes\init.php:202

actionadmin_menuincludes\init.php:203

filterparent_fileincludes\init.php:205

filtermanage_edit-acadp_locations_columnsincludes\init.php:206

filtermanage_edit-acadp_locations_sortable_columnsincludes\init.php:207

filtermanage_acadp_locations_custom_columnincludes\init.php:208

actioninitincludes\init.php:213

actionadmin_menuincludes\init.php:214

actionacadp_categories_add_form_fieldsincludes\init.php:215

actioncreated_acadp_categoriesincludes\init.php:216

actionacadp_categories_edit_form_fieldsincludes\init.php:217

actionedited_acadp_categoriesincludes\init.php:218

filterparent_fileincludes\init.php:220

filtermanage_edit-acadp_categories_columnsincludes\init.php:221

filtermanage_edit-acadp_categories_sortable_columnsincludes\init.php:222

filtermanage_acadp_categories_custom_columnincludes\init.php:223

actioninitincludes\init.php:228

actionadmin_menuincludes\init.php:231

actionadd_meta_boxesincludes\init.php:232

actionsave_postincludes\init.php:233

actionrestrict_manage_postsincludes\init.php:234

actionparse_tax_queryincludes\init.php:235

actionpre_get_postsincludes\init.php:236

actionmanage_acadp_fields_posts_custom_columnincludes\init.php:237

filterparent_fileincludes\init.php:239

filterparse_queryincludes\init.php:240

filtermanage_edit-acadp_fields_columnsincludes\init.php:241

filterpost_row_actionsincludes\init.php:242

actioninitincludes\init.php:248

actionadmin_menuincludes\init.php:251

actionadmin_footer-edit.phpincludes\init.php:252

actionrestrict_manage_postsincludes\init.php:253

actionmanage_acadp_payments_posts_custom_columnincludes\init.php:254

actionload-edit.phpincludes\init.php:255

actionadmin_noticesincludes\init.php:256

filterparent_fileincludes\init.php:258

filterparse_queryincludes\init.php:259

filtermanage_edit-acadp_payments_columnsincludes\init.php:260

filtermanage_edit-acadp_payments_sortable_columnsincludes\init.php:261

actionadmin_initincludes\init.php:268

actionadmin_menuincludes\init.php:269

actionadmin_initincludes\init.php:276

actionadmin_menuincludes\init.php:277

actiontemplate_redirectincludes\init.php:292

actioninitincludes\init.php:293

actioninitincludes\init.php:294

actionwpincludes\init.php:295

actionwp_loadedincludes\init.php:296

actionacadp_enqueue_block_editor_assetsincludes\init.php:297

actionwp_enqueue_scriptsincludes\init.php:298

actionwp_enqueue_scriptsincludes\init.php:299

actionwp_print_scriptsincludes\init.php:300

actionwp_headincludes\init.php:301

filterwpseo_titleincludes\init.php:310

filterwpseo_metadescincludes\init.php:311

filterwpseo_canonicalincludes\init.php:312

filterwpseo_opengraph_urlincludes\init.php:313

filterwp_titleincludes\init.php:315

filterdocument_title_partsincludes\init.php:316

filterforce_sslincludes\init.php:318

filterthe_titleincludes\init.php:319

filtersingle_post_titleincludes\init.php:320

filterterm_linkincludes\init.php:321

filteroption_acadp_general_settingsincludes\init.php:322

filteroption_acadp_page_settingsincludes\init.php:323

filteracadp_load_templateincludes\init.php:324

actionthe_contentincludes\init.php:344

filterpost_thumbnail_htmlincludes\init.php:352

actionwp_logoutincludes\init.php:359

actionlogin_form_registerincludes\init.php:360

actionlogin_form_lostpasswordincludes\init.php:361

actionlogin_form_rpincludes\init.php:362

actionlogin_form_resetpassincludes\init.php:363

actioninitincludes\init.php:365

actionlogin_form_registerincludes\init.php:366

actionlogin_form_lostpasswordincludes\init.php:367

actionlogin_form_rpincludes\init.php:368

actionlogin_form_resetpassincludes\init.php:369

filterauthenticateincludes\init.php:371

filterwp_login_failedincludes\init.php:372

filterlogin_redirectincludes\init.php:373

filterretrieve_password_messageincludes\init.php:374

actioninitincludes\init.php:380

actionparse_requestincludes\init.php:381

actioninitincludes\init.php:412

actionenqueue_block_editor_assetsincludes\init.php:413

filterblock_categories_allincludes\init.php:416

filterblock_categoriesincludes\init.php:418

actionwidgets_initincludes\init.php:429

filtermap_meta_capincludes\init.php:455

actionwpincludes\init.php:467

actionacadp_hourly_scheduled_eventsincludes\init.php:468

filterposts_orderbypublic\categories.php:387

filterposts_orderbypublic\listings.php:384

filterposts_orderbypublic\locations.php:378

filterposts_orderbypublic\search.php:501

filterposts_wherepublic\search.php:514

filterposts_orderbypublic\user.php:382

filterposts_orderbypublic\user.php:1410

Scheduled Events 1

acadp_hourly_scheduled_events

Maintenance & Trust

Advanced Classifieds & Directory Pro Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 22, 2025

PHP min version5.6.20

Downloads189K

Community Trust

Rating94/100

Number of ratings96

Active installs2K

Alternatives

Advanced Classifieds & Directory Pro Alternatives

Directorist: AI-Powered Business Directory, Listings & Classified Ads

directorist

Build any type of directory website such as a business directory, job directory, classifieds directory, and more with this WordPress directory plugin.

20K 2 unpatched

Classified Listing – AI-Powered Classified ads & Business Directory Plugin

classified-listing

A Classified ads and Business Directory plugin for WordPress, to create classified listing, real estate directory, local business directory, and more.

10K 15 CVEs

GeoDirectory – WP Business Directory Plugin and Classified Listings Directory

geodirectory

A superb WordPress Business Directory plugin to create a local business directory, classified ads directory, or job listings board.

10K 16 CVEs

Listdom: AI-powered Business Directory with Classifieds Ads Listings

listdom

Build any WordPress directory or classifieds site with AI. 80+ skins, search builder, user profile, frontend dashboard, Google Maps & reCAPTCHA.

1K 3 CVEs

Listdomer Core – Core of Listdomer Theme

listdomer-core

100

Listdomer Core plugin adds some awesome functionality to Webilia Listdomer Theme.

500 No CVEs

Developer Profile

Advanced Classifieds & Directory Pro Developer Profile

pluginsware

1 plugin · 2K total installs

trust score

Avg Security Score

92/100

Avg Patch Time

459 days

View full developer profile

Detection Fingerprints

How We Detect Advanced Classifieds & Directory Pro

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/css/acf-select2.css/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/css/owl.carousel.min.css/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/css/slick.css/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/css/theme.css/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/css/custom.css/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/js/acf-select2.js/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/js/jquery.validate.min.js/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/js/owl.carousel.min.js+12 more

Generator Patterns

Advanced Classifieds and Directory Pro

Script Paths

/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/js/acf-select2.js/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/js/jquery.validate.min.js/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/js/owl.carousel.min.js/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/js/slick.js/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/js/custom.js/wp-content/plugins/advanced-classifieds-and-directory-pro/public/assets/js/map.js+8 more

Version Parameters

advanced-classifieds-and-directory-pro/public/assets/css/acf-select2.css?ver=advanced-classifieds-and-directory-pro/public/assets/css/owl.carousel.min.css?ver=advanced-classifieds-and-directory-pro/public/assets/css/slick.css?ver=advanced-classifieds-and-directory-pro/public/assets/css/theme.css?ver=advanced-classifieds-and-directory-pro/public/assets/css/custom.css?ver=advanced-classifieds-and-directory-pro/public/assets/js/acf-select2.js?ver=advanced-classifieds-and-directory-pro/public/assets/js/jquery.validate.min.js?ver=advanced-classifieds-and-directory-pro/public/assets/js/owl.carousel.min.js?ver=advanced-classifieds-and-directory-pro/public/assets/js/slick.js?ver=advanced-classifieds-and-directory-pro/public/assets/js/custom.js?ver=advanced-classifieds-and-directory-pro/public/assets/js/map.js?ver=advanced-classifieds-and-directory-pro/public/assets/js/listing.js?ver=advanced-classifieds-and-directory-pro/admin/assets/css/admin.css?ver=advanced-classifieds-and-directory-pro/admin/assets/js/admin.js?ver=advanced-classifieds-and-directory-pro/admin/assets/js/settings.js?ver=advanced-classifieds-and-directory-pro/admin/assets/js/listing.js?ver=advanced-classifieds-and-directory-pro/admin/assets/js/fields.js?ver=advanced-classifieds-and-directory-pro/admin/assets/js/categories.js?ver=advanced-classifieds-and-directory-pro/admin/assets/js/locations.js?ver=advanced-classifieds-and-directory-pro/admin/assets/js/badges.js?ver=

HTML / DOM Fingerprints

CSS Classes

acadp-listing-details-containeracadp-listing-titleacadp-listing-priceacadp-listing-descriptionacadp-listing-locationacadp-listing-authoracadp-listing-dateacadp-listing-gallery+15 more

HTML Comments

ACADP: Add New Listing ButtonACADP: Listing Detail Fields StartACADP: Listing Detail Fields EndACADP: Add Listing Form Start+9 more

Data Attributes

data-acadp-listing-iddata-acadp-field-iddata-acadp-category-iddata-acadp-location-iddata-acadp-badge-iddata-acadp-map-lat+9 more

JS Globals

ACADP_AJAX_URLACADP_SEARCH_PARAMSACADP_MAP_SETTINGSACADP_LISTING_SETTINGSACADP_FIELD_TYPESACADP_TAXONOMIES+1 more

REST Endpoints

/wp-json/acadp/v1/listings/wp-json/acadp/v1/categories/wp-json/acadp/v1/locations/wp-json/acadp/v1/fields/wp-json/acadp/v1/badges/wp-json/acadp/v1/settings

Shortcode Output

[acadp_listings][acadp_listing_details][acadp_add_listing][acadp_search]

FAQ

Advanced Classifieds & Directory Pro Security & Risk Analysis

Is Advanced Classifieds & Directory Pro Safe to Use in 2026?

Generally Safe

Key Concerns

Advanced Classifieds & Directory Pro Security Vulnerabilities

CVEs by Year

Severity Breakdown

Advanced Classifieds & Directory Pro Code Analysis

Dangerous Functions Found

Bundled Libraries

SQL Query Safety

Output Escaping

Data Flow Analysis

Advanced Classifieds & Directory Pro Attack Surface

AJAX Handlers 24

Shortcodes 22

Scheduled Events 1

Advanced Classifieds & Directory Pro Maintenance & Trust

Maintenance Signals

Community Trust

Advanced Classifieds & Directory Pro Alternatives

Directorist: AI-Powered Business Directory, Listings & Classified Ads

Classified Listing – AI-Powered Classified ads & Business Directory Plugin

GeoDirectory – WP Business Directory Plugin and Classified Listings Directory

Listdom: AI-powered Business Directory with Classifieds Ads Listings

Listdomer Core – Core of Listdomer Theme

Advanced Classifieds & Directory Pro Developer Profile

How We Detect Advanced Classifieds & Directory Pro

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Advanced Classifieds & Directory Pro