Does AffiliateImporterAm have any unpatched vulnerabilities?

No. All known vulnerabilities in AffiliateImporterAm have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AffiliateImporterAm compatible with WordPress 4.7.32?

According to WordPress.org data, AffiliateImporterAm 1.0.6 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

How often is AffiliateImporterAm updated?

AffiliateImporterAm was last updated on Mar 19, 2017. Frequent updates are generally a positive security signal.

What is AffiliateImporterAm's security score?

AffiliateImporterAm has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AffiliateImporterAm Security & Risk Analysis

wordpress.org/plugins/affiliateimporteram

This plugin allows you to import the products directly from Amazon in your Wordpress WooCommerce store and earn a commission!

10 active installs v1.0.6 PHP + WP 4.6+ Updated Mar 19, 2017

adsaffilateamazonimporterwoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is AffiliateImporterAm Safe to Use in 2026?

Generally Safe

Score 85/100

AffiliateImporterAm has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The "affiliateimporteram" v1.0.6 plugin exhibits a concerning security posture, primarily due to a large, unprotected attack surface. All 22 identified AJAX handlers lack authentication checks, meaning any authenticated user could potentially trigger these actions, leading to unauthorized operations. Furthermore, the presence of 7 dangerous function calls, specifically "unserialize", combined with 16 unsanitized path taint flows of high severity, indicates a significant risk of remote code execution or data manipulation if these vulnerabilities can be exploited. The low percentage of properly escaped outputs (44%) also raises concerns about potential Cross-Site Scripting (XSS) vulnerabilities.

While the plugin has no recorded vulnerability history, this is not indicative of a secure product given the critical flaws found in the static analysis. The lack of capability checks and only a single nonce check across the entire plugin further exacerbate the risks associated with the unprotected AJAX endpoints. The plugin's strengths are minimal in the context of security, with no bundled libraries to maintain and a moderate use of prepared statements for SQL queries. However, these strengths are overshadowed by the critical security weaknesses, making this plugin a high-risk addition to any WordPress site.

Key Concerns

22 AJAX handlers without auth checks
6 High severity taint flows
7 Dangerous functions (unserialize)
16 Flows with unsanitized paths
Only 1 nonce check
0 Capability checks
44% Properly escaped outputs

Vulnerabilities

None known

AffiliateImporterAm Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

AffiliateImporterAm Code Analysis

Dangerous Functions

Raw SQL Queries

25 prepared

Unescaped Output

146

113 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$settings = unserialize($results);layout\status.php:11

unserialize$fields = unserialize($results[0]->data);src\AIDN\Abstract\Account.php:112

unserialize$this->$field = unserialize($value);src\AIDN\Goods\Goods.php:52

unserialize$this->$key = unserialize($val);src\AIDN\Goods\Goods.php:254

unserializereturn ($str === serialize(false) || @unserialize($str) !== false);src\AIDN\Goods\Goods.php:275

unserialize$f_data = unserialize($results[0]->formula);src\AIDN\Prices\PriceFormula.php:48

unserialize$f_data = unserialize($row->formula);src\AIDN\Prices\PriceFormula.php:164

SQL Query Safety

61% prepared41 total queries

Output Escaping

44% escaped259 total outputs

Data Flows

16 unsanitized

Data Flow Analysis

19 flows16 with unsanitized paths

importGoods (src\AIDN\Utils\Ajax.php:341)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

22 unprotected

AffiliateImporterAm Attack Surface

Entry Points22

Unprotected22

AJAX Handlers 22

authwp_ajax_aidn_product_infosrc\AIDN\Utils\Ajax.php:11

authwp_ajax_aidn_order_infosrc\AIDN\Utils\Ajax.php:12

authwp_ajax_aidn_export_settingssrc\AIDN\Utils\Ajax.php:14

authwp_ajax_aidn_edit_goodssrc\AIDN\Utils\Ajax.php:16

authwp_ajax_aidn_select_imagesrc\AIDN\Utils\Ajax.php:17

authwp_ajax_aidn_load_detailssrc\AIDN\Utils\Ajax.php:18

authwp_ajax_aidn_import_goodssrc\AIDN\Utils\Ajax.php:19

authwp_ajax_aidn_blacklistsrc\AIDN\Utils\Ajax.php:21

authwp_ajax_aidn_unblacklistsrc\AIDN\Utils\Ajax.php:22

authwp_ajax_aidn_unshedulesrc\AIDN\Utils\Ajax.php:23

authwp_ajax_aidn_load_and_import_goodssrc\AIDN\Utils\Ajax.php:25

authwp_ajax_aidn_update_goodssrc\AIDN\Utils\Ajax.php:26

authwp_ajax_aidn_schedule_import_goodssrc\AIDN\Utils\Ajax.php:28

authwp_ajax_aidn_upload_imagesrc\AIDN\Utils\Ajax.php:29

authwp_ajax_aidn_description_editorsrc\AIDN\Utils\Ajax.php:31

authwp_ajax_aidn_price_formula_getsrc\AIDN\Utils\Ajax.php:33

authwp_ajax_aidn_price_formula_addsrc\AIDN\Utils\Ajax.php:34

authwp_ajax_aidn_price_formula_editsrc\AIDN\Utils\Ajax.php:35

authwp_ajax_aidn_price_formula_delsrc\AIDN\Utils\Ajax.php:36

noprivwp_ajax_aiedn_load_infosrc\AIDN\Utils\Ajax.php:45

authwp_ajax_aidn_redirectsrc\Dnolbon\Aidn\Wordpress\WordpressStats.php:8

noprivwp_ajax_aeidn_redirectsrc\Dnolbon\Aidn\Wordpress\WordpressStats.php:9

WordPress Hooks 36

actionadmin_noticesAffiliateImporterAm.php:66

actionadmin_menuAffiliateImporterAm.php:76

actionadmin_enqueue_scriptsAffiliateImporterAm.php:77

actionadmin_initAffiliateImporterAm.php:89

filterhttp_api_transportsinclude.php:451

filtercron_schedulesschedule.php:13

actionaidn_schedule_post_eventschedule.php:84

actionaidn_update_price_eventschedule.php:203

actionload-amimporter_page_aidn-addscreenoptions.php:2

actionload-amimporter_page_aidn-statsscreenoptions.php:12

actionaidn_print_api_setting_pagesrc\AIDN\Abstract\Configurator.php:19

actionaidn_print_api_setting_pagesrc\AIDN\Abstract\Configurator.php:21

filteraidn_get_dashboard_columnssrc\AIDN\Abstract\Configurator.php:26

filteraidn_get_dashboard_sortable_columnssrc\AIDN\Abstract\Configurator.php:27

filteraidn_dashboard_column_defaultsrc\AIDN\Abstract\Configurator.php:28

actionaidn_befor_dashboard_rendersrc\AIDN\Abstract\Configurator.php:30

actionaidn_dashboard_rendersrc\AIDN\Abstract\Configurator.php:33

actionaidn_after_dashboard_rendersrc\AIDN\Abstract\Configurator.php:35

actionaidn_print_api_setting_pagesrc\AIDN\Abstract\Configurator.php:37

actionadmin_enqueue_scriptssrc\AIDN\WooCommerce\OrderList.php:10

actionmanage_shop_order_posts_custom_columnsrc\AIDN\WooCommerce\OrderList.php:11

actionadmin_footer-edit.phpsrc\AIDN\WooCommerce\ProductList.php:14

actionload-edit.phpsrc\AIDN\WooCommerce\ProductList.php:15

actionadmin_noticessrc\AIDN\WooCommerce\ProductList.php:16

filterpost_row_actionssrc\AIDN\WooCommerce\ProductList.php:17

actionadmin_enqueue_scriptssrc\AIDN\WooCommerce\ProductList.php:18

actionadmin_initsrc\AIDN\WooCommerce\ProductList.php:19

actionwpsrc\Dnolbon\Aidn\Wordpress\Frontend.php:8

actionwoocommerce_add_to_cartsrc\Dnolbon\Aidn\Wordpress\Frontend.php:10

actionwoocommerce_product_add_to_cart_urlsrc\Dnolbon\Aidn\Wordpress\WordpressStats.php:10

actionwpsrc\Dnolbon\Aidn\Wordpress\WordpressStats.php:12

actionwoocommerce_add_to_cartsrc\Dnolbon\Aidn\Wordpress\WordpressStats.php:13

actionaidn_tr_getLocalizedUrlsrc\Dnolbon\Aidn\Wordpress\WordpressTranslates.php:20

actionaidn_tr_getLocalizedTextsrc\Dnolbon\Aidn\Wordpress\WordpressTranslates.php:21

actionaidn_tr_getLocalizedAttributessrc\Dnolbon\Aidn\Wordpress\WordpressTranslates.php:22

actionadmin_footersrc\Dnolbon\Aidn\Wordpress\WpListTable.php:139

Scheduled Events 3

aidn_update_price_event

aidn_schedule_post_event

aidn_update_price_event

Maintenance & Trust

AffiliateImporterAm Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedMar 19, 2017

PHP min version

Downloads4K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

AffiliateImporterAm Alternatives

AffiliateImporterAI

affiliateimporteral

This plugin allows you to import the products directly from AliExpress in your Wordpress WooCommerce store and earn a commission!

20 No CVEs

AffiliateImporterBg

affiliateimporterbg

This plugin allows you to import the products directly from Banggood in your Wordpress WooCommerce store and earn a commission!

10 No CVEs

Zonify – Amazon Product Importer for WooCommerce

zonify

100

Import Amazon products into WooCommerce and optionally redirect customers to Amazon using affiliate links.

100 No CVEs

Quick Product Importer

quick-product-importer

100

Import products from Amazon, Flipkart, Meesho, and other e-commerce sites automatically without API. Light version with single import.

10 No CVEs

Storage for Woo via S3-Compatible

storage-for-woo-via-s3-compatible

100

Enable secure cloud storage and delivery of your WooCommerce digital products through S3-Compatible storage.

0 No CVEs

Developer Profile

AffiliateImporterAm Developer Profile

Roman

4 plugins · 50 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect AffiliateImporterAm

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/affiliateimporteram/assets/css/dnolbon.css/wp-content/plugins/affiliateimporteram/assets/css/style.css/wp-content/plugins/affiliateimporteram/assets/css/font-awesome.min.css/wp-content/plugins/affiliateimporteram/assets/js/datetimepicker/jquery.datetimepicker.css/wp-content/plugins/affiliateimporteram/assets/js/lighttabs/lighttabs.css/wp-content/plugins/affiliateimporteram/assets/js/script.js/wp-content/plugins/affiliateimporteram/assets/js/datetimepicker/jquery.datetimepicker.js/wp-content/plugins/affiliateimporteram/assets/js/lighttabs/lighttabs.js+1 more

Script Paths

assets/js/script.jsassets/js/datetimepicker/jquery.datetimepicker.jsassets/js/lighttabs/lighttabs.jsassets/js/DnolbonColumns.js

Version Parameters

affiliateimporteram/assets/css/dnolbon.css?ver=affiliateimporteram/assets/css/style.css?ver=affiliateimporteram/assets/css/font-awesome.min.css?ver=affiliateimporteram/assets/js/datetimepicker/jquery.datetimepicker.css?ver=affiliateimporteram/assets/js/lighttabs/lighttabs.css?ver=affiliateimporteram/assets/js/script.js?ver=affiliateimporteram/assets/js/datetimepicker/jquery.datetimepicker.js?ver=affiliateimporteram/assets/js/lighttabs/lighttabs.js?ver=affiliateimporteram/assets/js/DnolbonColumns.js?ver=

HTML / DOM Fingerprints

JS Globals

WPURLS

FAQ