WP-Safety

Affiliates WP e-Commerce Integration Security & Risk Analysis

wordpress.org/plugins/affiliates-wp-e-commerce

This integrates the Affiliates plugins with the WP e-Commerce shopping cart.

10 active installs v2.1.2 PHP + WP 3.5.1+ Updated May 5, 2014
adsadvertisingaffiliateaffiliate-marketingaffiliate-plugin
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Affiliates WP e-Commerce Integration Safe to Use in 2026?

Generally Safe

Score 85/100

Affiliates WP e-Commerce Integration has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 12yr ago
Risk Assessment

The 'affiliates-wp-e-commerce' v2.1.2 plugin exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events with unprotected entry points is a significant strength, indicating a minimal attack surface. Furthermore, the code's adherence to prepared statements for all SQL queries and the presence of nonce and capability checks are excellent security practices. The lack of any reported vulnerabilities, including CVEs, further bolsters its security profile, suggesting a history of secure development or diligent patching.

While the static analysis shows a high percentage of properly escaped output (70%), the remaining 30% represents a potential area of concern, though the absence of taint flows suggests these are likely low-risk. The 10 total output points are not substantial enough to warrant a high deduction given the lack of identified critical or high-severity issues in taint analysis. Overall, this plugin appears to be a secure choice, with its main area for potential improvement lying in ensuring 100% output escaping consistency.

Key Concerns

  • Output escaping not 100% consistent
Vulnerabilities
None known

Affiliates WP e-Commerce Integration Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Affiliates WP e-Commerce Integration Release Timeline

v2.1.2Current
v2.1.1
v2.1.0
Code Analysis
Analyzed Mar 17, 2026

Affiliates WP e-Commerce Integration Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
18 prepared
Unescaped Output
3
7 escaped
Nonce Checks
1
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared18 total queries

Output Escaping

70% escaped10 total outputs
Attack Surface

Affiliates WP e-Commerce Integration Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 11
actioninitincludes\class-affiliates-wpec-admin.php:34
actionaffiliates_admin_menuincludes\class-affiliates-wpec-admin.php:41
filteraffiliates_footerincludes\class-affiliates-wpec-admin.php:42
actioninitincludes\class-affiliates-wpec-handler.php:31
filterwpsc_transaction_result_reportincludes\class-affiliates-wpec-handler.php:40
actionwpsc_transaction_results_shutdownincludes\class-affiliates-wpec-handler.php:47
actionwpsc_edit_order_statusincludes\class-affiliates-wpec-handler.php:52
actionwpsc_payment_successfulincludes\class-affiliates-wpec-handler.php:53
actionwpsc_payment_failedincludes\class-affiliates-wpec-handler.php:54
actionwpsc_payment_incompleteincludes\class-affiliates-wpec-handler.php:55
actionadmin_noticesincludes\class-affiliates-wpec.php:80
Maintenance & Trust

Affiliates WP e-Commerce Integration Maintenance & Trust

Maintenance Signals

WordPress version tested3.9.40
Last updatedMay 5, 2014
PHP min version
Downloads5K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Affiliates WP e-Commerce Integration Alternatives

Affiliates Ecwid Light

Affiliates Ecwid Light

affiliates-ecwid-light

A
85

This plugin integrates Affiliates with Ecwid.

10 No CVEs
Affiliates eShop Integration Light

Affiliates eShop Integration Light

affiliates-eshop-light

A
85

This plugin integrates Affiliates with eShop.

10 No CVEs
Affiliates Jigoshop Integration Light

Affiliates Jigoshop Integration Light

affiliates-jigoshop-light

A
85

This plugin integrates Affiliates with Jigoshop.

10 No CVEs
Affiliates Ready! Ecommerce Integration Light

Affiliates Ready! Ecommerce Integration Light

affiliates-ready-light

A
85

This plugin integrates Affiliates with Ready! Ecommerce Shopping Cart.

10 No CVEs
AffiliateX – Amazon Affiliate Plugin

AffiliateX – Amazon Affiliate Plugin

affiliatex

A
96

AffiliateX is the best WordPress Amazon Affiliate Plugin. Create professional affiliate websites with customizable WordPress Amazon Affiliate Blocks.

10K 3 CVEs
Developer Profile

Affiliates WP e-Commerce Integration Developer Profile

itthinx

30 plugins · 23K total installs

97
trust score
Avg Security Score
96/100
Avg Patch Time
3 days
View full developer profile
Detection Fingerprints

How We Detect Affiliates WP e-Commerce Integration

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/affiliates-wp-e-commerce/includes/js/admin.js/wp-content/plugins/affiliates-wp-e-commerce/includes/js/frontend.js/wp-content/plugins/affiliates-wp-e-commerce/includes/css/admin.css/wp-content/plugins/affiliates-wp-e-commerce/includes/css/frontend.css
Script Paths
/wp-content/plugins/affiliates-wp-e-commerce/includes/js/admin.js/wp-content/plugins/affiliates-wp-e-commerce/includes/js/frontend.js
Version Parameters
affiliates-wp-e-commerce/includes/js/admin.js?ver=affiliates-wp-e-commerce/includes/js/frontend.js?ver=affiliates-wp-e-commerce/includes/css/admin.css?ver=affiliates-wp-e-commerce/includes/css/frontend.css?ver=

HTML / DOM Fingerprints

CSS Classes
affwp-wpec-admin-meta-boxaffwp-wpec-admin-formaffwp-wpec-frontend-meta-boxaffwp-wpec-frontend-form
Data Attributes
data-affwp-wpec-id
JS Globals
affwp_wpec_admin_paramsaffwp_wpec_frontend_params
FAQ

Frequently Asked Questions about Affiliates WP e-Commerce Integration