Does Affiliate have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Affiliate compatible with WordPress 6.9.4?

According to WordPress.org data, Affiliate 1.13.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Affiliate compatible with PHP 7.4+?

Affiliate requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Affiliate updated?

Affiliate was last updated on Dec 19, 2025. Frequent updates are generally a positive security signal.

What is Affiliate's security score?

Affiliate has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Affiliate Security & Risk Analysis

wordpress.org/plugins/affiliate

The Affiliate plugin is a toolbox for Affiliate Marketers.

30 active installs v1.13.0 PHP 7.4+ WP 6.5+ Updated Dec 19, 2025

affiliatekeywordlinkmarketermarketing

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Affiliate Safe to Use in 2026?

Generally Safe

Score 100/100

Affiliate has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago

Risk Assessment

Based on the static analysis and vulnerability history provided, the 'affiliate' plugin v1.13.0 exhibits a very strong security posture. The absence of any identified attack surface points (AJAX handlers, REST API routes, shortcodes, cron events) without authentication checks is particularly commendable. Furthermore, the code analysis shows a complete lack of dangerous functions, raw SQL queries, unescaped output, file operations, and external HTTP requests. The consistent use of prepared statements and proper output escaping, along with the absence of any recorded vulnerabilities (CVEs), indicates a mature development process focused on security best practices. There are no identified taint flows, which further solidifies the plugin's secure design. The lack of any vulnerability history suggests a consistent track record of security awareness and diligent coding. The plugin's strengths lie in its minimal attack surface and the rigorous security measures evident in its codebase.

Vulnerabilities

None known

Affiliate Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Affiliate Release Timeline

v1.13.0Current

v1.12.0

v1.11.0

v1.10.0

v1.9.0

v1.8.0

v1.7.2

v1.7.1

v1.7.0

v1.6.0

v1.5.0

v1.4.0

v1.3.0

v1.2.0

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

Affiliate Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Affiliate Attack Surface

Entry Points0

Unprotected0

Maintenance & Trust

Affiliate Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 19, 2025

PHP min version7.4

Downloads12K

Community Trust

Rating0/100

Number of ratings0

Active installs30

Alternatives

Affiliate Alternatives

Auto Affiliate Links

wp-auto-affiliate-links

Automatically display affiliate links in your website content so you can make more money. It is also working well for internal linking.

3K 11 CVEs

Keywords to Links Converter

links-auto-replacer

Convert your post content keywords to Links automatically, Using the same links over and over again in your posts? This is the solution.

900 No CVEs

Content Egg – Affiliate Product Importer & Price Comparison

content-egg

Import affiliate products, compare prices, sync to WooCommerce, and auto-generate SEO content with AI — all in one toolkit.

10K 3 CVEs

Simple URLs – Link Cloaking, Product Displays, and Affiliate Link Management

simple-urls

Simple URLs helps you to manage links, create product displays, and grow your affiliate marketing business.

4K 6 CVEs

Awin Publisher MasterTag

convert-a-link

100

The Awin Publisher MasterTag allows you to access and enable technology from Awin and our partners.

1K No CVEs

Developer Profile

Affiliate Developer Profile

itthinx

30 plugins · 23K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

3 days

View full developer profile

Detection Fingerprints

How We Detect Affiliate

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/affiliate/lib/core/class-affiliate.php

Version Parameters

affiliate/style.css?ver=1.13.0affiliate/script.js?ver=1.13.0

HTML / DOM Fingerprints

FAQ