Does AffiliateImporterBg have any unpatched vulnerabilities?

No. All known vulnerabilities in AffiliateImporterBg have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AffiliateImporterBg compatible with WordPress 4.7.32?

According to WordPress.org data, AffiliateImporterBg 1.0 has been tested up to WordPress 4.7.32. Check the plugin's changelog for the latest compatibility information.

How often is AffiliateImporterBg updated?

AffiliateImporterBg was last updated on Feb 18, 2017. Frequent updates are generally a positive security signal.

What is AffiliateImporterBg's security score?

AffiliateImporterBg has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AffiliateImporterBg Security Review

Safety Verdict

Is AffiliateImporterBg Safe to Use in 2026?

Generally Safe

Score 85/100

AffiliateImporterBg has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The "affiliateimporterbg" v1.0 plugin presents a mixed security posture. On one hand, it boasts a clean vulnerability history with no known CVEs and exhibits good practices in SQL query preparation, with a high percentage of queries utilizing prepared statements. The plugin also avoids bundled libraries, reducing the risk of outdated components. However, significant concerns arise from the static analysis. The presence of the `unserialize` function is a critical danger signal, especially when combined with the complete absence of nonce checks and capability checks. This opens a substantial door for potential remote code execution vulnerabilities if user-controlled data is ever passed to `unserialize` without proper validation. The taint analysis further exacerbates this concern, revealing a high number of flows with unsanitized paths, including four high-severity flows, indicating that data might be processed in insecure ways. While the attack surface appears small in terms of entry points, the lack of fundamental security checks on what little there is, coupled with dangerous function usage and unsanitized data flows, creates a precarious security environment.

Key Concerns

Dangerous function 'unserialize' found
High number of unsanitized taint flows (12)
4 high severity taint flows
No nonce checks found
No capability checks found
Output escaping only 52% properly

Vulnerabilities

None known

AffiliateImporterBg Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

AffiliateImporterBg Code Analysis

Dangerous Functions

7

Raw SQL Queries

10

29 prepared

Unescaped Output

51

55 escaped

Nonce Checks

0

Capability Checks

0

File Operations

8

External Requests

5

Bundled Libraries

0

Dangerous Functions Found

unserialize$this->accountData = unserialize($result->data);src\Dnolbon\AffiliateImporter\Account\AccountAbstract.php:35

unserialize$additionalMeta = unserialize($product->getAdditionalMeta());src\Dnolbon\AffiliateImporter\Prices\PriceFormula.php:315

unserialize$fData = unserialize($result->formula);src\Dnolbon\AffiliateImporter\Prices\PriceFormulaFactory.php:27

unserialize$value = unserialize($value);src\Dnolbon\AffiliateImporter\Products\Product.php:227

unserialize$additional = unserialize($additional);src\Dnolbon\AffiliateImporter\Products\Product.php:344

unserialize$additionalMeta = unserialize($product->getAdditionalMeta());src\Dnolbon\AffiliateImporter\Products\Products.php:81

unserializereturn ($str === serialize(false) || @unserialize($str) !== false);src\Dnolbon\AffiliateImporter\Utils\Utils.php:45

SQL Query Safety

74% prepared39 total queries

Output Escaping

52% escaped106 total outputs

Data Flows

12 unsanitized

Data Flow Analysis

13 flows12 with unsanitized paths

process (src\Dnolbon\AffiliateImporter\Ajax\ProductImport.php:25)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

AffiliateImporterBg Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 13

actionload-aeimporter_page_aeidn-addscreenoptions.php:2

actionload-aeimporter_page_aeidn-statsscreenoptions.php:12

actionadmin_noticessrc\Dnolbon\AffiliateImporter\AffiliateImporterAbstract.php:553

actionwoocommerce_product_add_to_cart_urlsrc\Dnolbon\AffiliateImporter\WordpressStats.php:15

actionwpsrc\Dnolbon\AffiliateImporter\WordpressStats.php:17

actionwoocommerce_add_to_cartsrc\Dnolbon\AffiliateImporter\WordpressStats.php:18

actionmanage_shop_order_posts_custom_columnsrc\Dnolbon\WooCommerce\Orders\OrdersColumnActionAbstract.php:20

actionadmin_enqueue_scriptssrc\Dnolbon\WooCommerce\Orders\OrdersListAbstract.php:17

actionadmin_footer-edit.phpsrc\Dnolbon\WooCommerce\Products\ProductsListAbstract.php:23

actionload-edit.phpsrc\Dnolbon\WooCommerce\Products\ProductsListAbstract.php:24

actionadmin_noticessrc\Dnolbon\WooCommerce\Products\ProductsListAbstract.php:25

actionadmin_enqueue_scriptssrc\Dnolbon\WooCommerce\Products\ProductsListAbstract.php:26

filterpost_row_actionssrc\Dnolbon\WooCommerce\Products\ProductsRowActionAbstract.php:20

Maintenance & Trust

AffiliateImporterBg Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.32

Last updatedFeb 18, 2017

PHP min version

Downloads3K

Community Trust

Rating20/100

Number of ratings1

Active installs10

Alternatives

AffiliateImporterBg Alternatives

AffiliateImporterAI

affiliateimporteral

A

85

This plugin allows you to import the products directly from AliExpress in your Wordpress WooCommerce store and earn a commission!

20 No CVEs

AffiliateImporterAm

affiliateimporteram

A

85

This plugin allows you to import the products directly from Amazon in your Wordpress WooCommerce store and earn a commission!

10 No CVEs

Google for WooCommerce

google-listings-and-ads

A

99

Native integration with Google that allows merchants to easily display their products across Google’s network.

900K 1 CVE

Kliken: Ads + Pixel for Meta

kliken-ads-pixel-for-meta

A

100

Drive Sales on Facebook and Instagram in 5 minutes—upload your catalog, implement the Meta Pixel & Conversions API, and grow via Meta Advantage+ now.

50K No CVEs

Pixel Manager for WooCommerce – Conversion Tracking, Google Ads, GA4, TikTok, Dynamic Remarketing

woocommerce-google-adwords-conversion-tracking-tag

A

95

Conversion tracking for WooCommerce. Google Ads, GA4, Meta/Facebook Pixel, TikTok & more. Recover 30% more conversions with server-side tracking!

50K 4 CVEs

Developer Profile

AffiliateImporterBg Developer Profile

Roman

4 plugins · 50 total installs

84

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect AffiliateImporterBg

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/affiliateimporterbg/templates/style.css/wp-content/plugins/affiliateimporterbg/templates/script.js

Script Paths

/wp-content/plugins/affiliateimporterbg/templates/script.js

Version Parameters

affiliateimporterbg/style.css?ver=affiliateimporterbg/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

affiliate-importer-banggoodaffiliateimporterbg-dashboardaffiliateimporterbg-add-productaffiliateimporterbg-scheduleaffiliateimporterbg-statsaffiliateimporterbg-settingsaffiliateimporterbg-backupaffiliateimporterbg-status+1 more

Data Attributes

data-affiliate-name="Banggood"

JS Globals

window.DnolbonAffiliateImporterwindow.affiliateImporterAjax

REST Endpoints

/wp-json/affiliateimporter/v1/product/import/wp-json/affiliateimporter/v1/product/update/wp-json/affiliateimporter/v1/product/info/wp-json/affiliateimporter/v1/product/load-details/wp-json/affiliateimporter/v1/product/description-editor/wp-json/affiliateimporter/v1/product/schedule-import/wp-json/affiliateimporter/v1/product/select-image/wp-json/affiliateimporter/v1/product/upload-image/wp-json/affiliateimporter/v1/price-formula/add/wp-json/affiliateimporter/v1/price-formula/edit/wp-json/affiliateimporter/v1/price-formula/del/wp-json/affiliateimporter/v1/price-formula/get/wp-json/affiliateimporter/v1/blacklist/add/wp-json/affiliateimporter/v1/blacklist/remove/wp-json/affiliateimporter/v1/order/info/wp-json/affiliateimporter/v1/export/settings/wp-json/affiliateimporter/v1/unschedule/wp-json/affiliateimporter/v1/woocommerce/redirect

FAQ

AffiliateImporterBg Security & Risk Analysis