WP-Safety

Affiliates Referral for WC Security & Risk Analysis

wordpress.org/plugins/affiliates-referrals-for-woocommerce

This Plugin Helps you add referral rates to individual affiliates integrating with woocommerce product purchase.

10 active installs v1.0.0 PHP + WP + Updated Jun 8, 2016
affiliateaffiliate-campaignaffiliate-marketingaffiliate-pluginaffiliate-program
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Affiliates Referral for WC Safe to Use in 2026?

Generally Safe

Score 85/100

Affiliates Referral for WC has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago
Risk Assessment

The "affiliates-referrals-for-woocommerce" v1.0.0 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of a significant attack surface, including unprotected AJAX handlers, REST API routes, shortcodes, and cron events, is a positive indicator. Furthermore, the code signals show responsible use of SQL prepared statements and the presence of nonce and capability checks, all contributing to a more secure foundation.

The primary concern identified in the static analysis is the low percentage of properly escaped output. With only 25% of the 12 identified outputs being properly escaped, there is a significant risk of cross-site scripting (XSS) vulnerabilities. This is particularly concerning as user-provided data could potentially be rendered without proper sanitization, leading to malicious script execution.

The vulnerability history is remarkably clean, with no recorded CVEs, which suggests a proactive approach to security by the developers or a lack of targeted attacks. While this is a positive sign, it does not entirely negate the risks identified in the code analysis, especially the output escaping issue. In conclusion, the plugin has strong architectural security elements, but the unescaped output represents a tangible risk that warrants attention.

Key Concerns

  • Low percentage of properly escaped output
Vulnerabilities
None known

Affiliates Referral for WC Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Affiliates Referral for WC Release Timeline

No version history available.
Code Analysis
Analyzed Apr 16, 2026

Affiliates Referral for WC Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
5 prepared
Unescaped Output
9
3 escaped
Nonce Checks
3
Capability Checks
2
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared5 total queries

Output Escaping

25% escaped12 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

2 flows
aff_wc_admin_integration (includes/affiliates-referrals-woocommerce-integration.php:116)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Affiliates Referral for WC Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 12
actionadmin_noticesincludes/aff-wc-referral-list.php:21
actionadmin_noticesincludes/aff-wc-referral-list.php:23
actionadmin_noticesincludes/aff-wc-referral-list.php:31
actionadmin_noticesincludes/aff-wc-referral-list.php:33
actionadmin_menuincludes/aff-wc-referral-list.php:103
actionadmin_noticesincludes/affiliates-referrals-woocommerce-integration.php:49
actionwoocommerce_order_status_completedincludes/affiliates-referrals-woocommerce-integration.php:92
filterpost_type_linkincludes/affiliates-referrals-woocommerce-integration.php:93
actionadmin_menuincludes/affiliates-referrals-woocommerce-integration.php:94
actionadmin_noticesincludes/affiliates-referrals-woocommerce-integration.php:134
actionadmin_noticesincludes/affiliates-referrals-woocommerce-integration.php:136
actionadmin_noticesincludes/affiliates-referrals-woocommerce-integration.php:139
Maintenance & Trust

Affiliates Referral for WC Maintenance & Trust

Maintenance Signals

WordPress version tested4.5.33
Last updatedJun 8, 2016
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Affiliates Referral for WC Alternatives

AffiliateX – Amazon Affiliate Plugin

AffiliateX – Amazon Affiliate Plugin

affiliatex

A
96

AffiliateX is the best WordPress Amazon Affiliate Plugin. Create professional affiliate websites with customizable WordPress Amazon Affiliate Blocks.

10K 3 CVEs
Affiliates Manager

Affiliates Manager

affiliates-manager

A
95

Affiliates Manager plugin can help you manage an affiliate marketing program to drive more traffic and more sales to your site.

9K 12 CVEs
YITH WooCommerce Affiliates

YITH WooCommerce Affiliates

yith-woocommerce-affiliates

A
99

YITH WooCommerce Affiliates allows you to create affiliate profiles and grant your affiliates earnings each time someone purchases from their link.

7K 1 CVE
FluentAffiliate – Affiliate Program Management Suite, Affiliates Manager

FluentAffiliate – Affiliate Program Management Suite, Affiliates Manager

fluent-affiliate

A
100

The Ultimate all-in-one affiliate program management plugin for WordPress.

1K No CVEs
Affilia – Affiliate Program & Referral Tracking for WordPress

Affilia – Affiliate Program & Referral Tracking for WordPress

affiliaa-affiliate-program-with-mlm

A
100

Launch a powerful, self-hosted affiliate program for WordPress. Track referrals, manage affiliates, and boost sales for WooCommerce, EDD, and Contact …

600 No CVEs
Developer Profile

Affiliates Referral for WC Developer Profile

Sumesh S

1 plugin · 10 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Affiliates Referral for WC

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/affiliates-referrals-for-woocommerce/assets/css/style.css/wp-content/plugins/affiliates-referrals-for-woocommerce/assets/js/script.js/wp-content/plugins/affiliates-referrals-for-woocommerce/assets/images/icon.png
Script Paths
/wp-content/plugins/affiliates-referrals-for-woocommerce/assets/js/script.js

HTML / DOM Fingerprints

CSS Classes
notice-successnotice-erroraffiliates-admin-referralsaffiliates-admin-hitsaffiliates-admin-hits-affiliate
Data Attributes
name="options"action=""for="affiliate_list"for="referral-rate"
FAQ

Frequently Asked Questions about Affiliates Referral for WC