Does Affiliate AI Lite have any unpatched vulnerabilities?

No. All known vulnerabilities in Affiliate AI Lite have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Affiliate AI Lite compatible with WordPress 6.9.4?

According to WordPress.org data, Affiliate AI Lite 1.0.4 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is Affiliate AI Lite updated?

Affiliate AI Lite was last updated on Feb 20, 2026. Frequent updates are generally a positive security signal.

What is Affiliate AI Lite's security score?

Affiliate AI Lite has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Affiliate AI Lite Security & Risk Analysis

wordpress.org/plugins/affiliate-ai-lite

Amazon affiliate plugin that lets you add product boxes with your affiliate links to any page or post.

50 active installs v1.0.4 PHP + WP 6.0+ Updated Feb 20, 2026

affiaffiliateaffiliate-aiamazon-affiliateawin

A · Safe

CVEs total1

Unpatched0

Last CVENov 20, 2025

Plugin page Download

Safety Verdict

Is Affiliate AI Lite Safe to Use in 2026?

Generally Safe

Score 99/100

Affiliate AI Lite has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Nov 20, 2025Updated 1mo ago

Risk Assessment

The 'affiliate-ai-lite' plugin v1.0.4 exhibits a mixed security posture. On the positive side, it demonstrates good practices with a high percentage of SQL queries using prepared statements and a substantial number of properly escaped outputs. The absence of critical or high-severity taint analysis findings and external HTTP requests are also encouraging signs. However, there are notable areas of concern, primarily stemming from its attack surface. The presence of two AJAX handlers without authentication checks presents a significant risk, as these can potentially be triggered by unauthenticated users, leading to unintended actions or information disclosure.

The vulnerability history reveals one known medium-severity CVE, specifically Cross-site Scripting (XSS). While currently unpatched vulnerabilities are zero, the existence of past XSS issues suggests a potential for input sanitization or output escaping weaknesses that may not have been fully addressed or could re-emerge. The bundled Select2 library is a minor concern, as outdated bundled libraries can sometimes harbor vulnerabilities, though no specific issues are indicated in the provided data. Overall, the plugin has strengths in its core data handling but requires attention to its entry points and historical vulnerability patterns.

Key Concerns

Unprotected AJAX handlers
Medium severity CVE history
Bundled library (Select2)

Vulnerabilities

Affiliate AI Lite Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-11799medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affiliate AI Lite <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

Nov 20, 2025 Patched in 1.0.2 (1d)

Code Analysis

Analyzed Mar 16, 2026

Affiliate AI Lite Code Analysis

Dangerous Functions

Raw SQL Queries

29 prepared

Unescaped Output

306 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2

SQL Query Safety

94% prepared31 total queries

Output Escaping

79% escaped388 total outputs

Data Flows

All sanitized

Data Flow Analysis

5 flows

affiai_wprod_modal (admin\afx-ce.php:98)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

Affiliate AI Lite Attack Surface

Entry Points7

Unprotected2

AJAX Handlers 4

authwp_ajax_get_affiai_get_cust_imageadmin\afx-ce.php:64

noprivwp_ajax_affiai_wprod_modaladmin\afx-ce.php:65

authwp_ajax_affiai_wprod_modaladmin\afx-ce.php:66

authwp_ajax_affiai_test_amznincludes\afx-config.php:107

Shortcodes 3

[affiai] includes\afx-config.php:55

[affiai_img] includes\afx-img.php:56

[affiai_link] includes\afx-link.php:154

WordPress Hooks 30

actionadmin_enqueue_scriptsadmin\afx-ce.php:49

actionelementor/editor/before_enqueue_scriptsadmin\afx-ce.php:50

actionadmin_enqueue_scriptsadmin\afx-ce.php:53

actionelementor/editor/before_enqueue_scriptsadmin\afx-ce.php:54

actionadmin_footeradmin\afx-ce.php:57

actionelementor/editor/footeradmin\afx-ce.php:58

actionmedia_buttonsadmin\afx-ce.php:61

actionwp_before_admin_bar_renderadmin\afx-ce.php:70

actioninitadmin\afx-gt.php:321

actionadmin_initaffiliate-ai-lite.php:112

actionload-edit.phpaffiliate-ai-lite.php:132

actioninitincludes\afx-config.php:49

actionactivate_pluginincludes\afx-config.php:52

filterthe_contentincludes\afx-config.php:61

filterwidget_textincludes\afx-config.php:62

filterwoocommerce_short_descriptionincludes\afx-config.php:63

actionaffiai_cron_cleanincludes\afx-config.php:68

actionwp_enqueue_scriptsincludes\afx-config.php:74

actionadmin_noticesincludes\afx-config.php:75

actiontransition_post_statusincludes\afx-config.php:78

actionsidebar_admin_pageincludes\afx-config.php:81

actioncustomize_saveincludes\afx-config.php:82

actionadmin_initincludes\afx-config.php:88

actionsave_postincludes\afx-config.php:91

actionpost_updatedincludes\afx-config.php:92

actionadmin_initincludes\afx-config.php:95

actionadmin_menuincludes\afx-config.php:98

actionadmin_enqueue_scriptsincludes\afx-config.php:104

actionamp_post_template_cssincludes\afx-link.php:65

actionamp_post_template_cssincludes\afx-shortcode.php:107

Scheduled Events 1

affiai_cron_clean

Maintenance & Trust

Affiliate AI Lite Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 20, 2026

PHP min version

Downloads965

Community Trust

Rating0/100

Number of ratings0

Active installs50

Alternatives

Affiliate AI Lite Alternatives

ThirstyAffiliates – Affiliate Links, Link Branding, Link Tracking & Marketing Plugin

thirstyaffiliates

🔗 Affiliate link management & cloaker tool. Easily manage, shrink and track your affiliate links in WordPress. 🔥

30K 5 CVEs

AffiliateX – Amazon Affiliate Plugin

affiliatex

AffiliateX is the best WordPress Amazon Affiliate Plugin. Create professional affiliate websites with customizable WordPress Amazon Affiliate Blocks.

10K 3 CVEs

Simple URLs – Link Cloaking, Product Displays, and Affiliate Link Management

simple-urls

Simple URLs helps you to manage links, create product displays, and grow your affiliate marketing business.

4K 6 CVEs

affiliate-toolkit – Multi-Network Affiliate & Amazon Product Display

affiliate-toolkit-starter

Fast & Compatible with every WordPress Theme: With our plugin for WordPress, you can easily create and add your affiliate products to your website.

3K 13 CVEs

Shop Page WP

shop-page-wp

Create an affiliate shop page on your website. Simple to setup and add products to start making money from affiliate links on your blog.

3K 1 CVE

Developer Profile

Affiliate AI Lite Developer Profile

Rustaurius

21 plugins · 66K total installs

trust score

Avg Security Score

90/100

Avg Patch Time

716 days

View full developer profile

Detection Fingerprints

How We Detect Affiliate AI Lite

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/affiliate-ai-lite/assets/css/affx-style.css/wp-content/plugins/affiliate-ai-lite/assets/js/affx-script.js/wp-content/plugins/affiliate-ai-lite/assets/js/affx-popup.js/wp-content/plugins/affiliate-ai-lite/assets/js/affx-save.js/wp-content/plugins/affiliate-ai-lite/assets/js/affx-admin.js

Script Paths

/wp-content/plugins/affiliate-ai-lite/assets/js/affx-script.js/wp-content/plugins/affiliate-ai-lite/assets/js/affx-popup.js/wp-content/plugins/affiliate-ai-lite/assets/js/affx-save.js/wp-content/plugins/affiliate-ai-lite/assets/js/affx-admin.js

Version Parameters

affiliate-ai-lite/assets/css/affx-style.css?v=affiliate-ai-lite/assets/js/affx-script.js?v=affiliate-ai-lite/assets/js/affx-popup.js?v=affiliate-ai-lite/assets/js/affx-save.js?v=affiliate-ai-lite/assets/js/affx-admin.js?v=affiliate-ai-lite/admin/afx-gt.php?ver=affiliate-ai-lite/includes/afx-save.php?ver=affiliate-ai-lite/includes/afx-config.php?ver=affiliate-ai-lite/includes/afx-shortcode.php?ver=affiliate-ai-lite/includes/afx-link.php?ver=affiliate-ai-lite/includes/afx-img.php?ver=

HTML / DOM Fingerprints

CSS Classes

affx-popup-contentaffx-modal-headeraffx-modal-bodyaffx-modal-footer

HTML Comments

+6 more

Data Attributes

onclick="thickbox_afx()"id="affiai-modal-save"

JS Globals

AFFIAI_PLUGIN_NAMEAFFIAI_PLUGIN_URLAFFIAI_PLUGIN_VERAFFIAI_PLUGIN_OPTION_PREFIXthickbox_afx

FAQ