Does AffiliateWP – Store Credit have any unpatched vulnerabilities?

No. All known vulnerabilities in AffiliateWP – Store Credit have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AffiliateWP – Store Credit compatible with WordPress 6.7.5?

According to WordPress.org data, AffiliateWP – Store Credit 2.6.2 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is AffiliateWP – Store Credit compatible with PHP 7.4+?

AffiliateWP – Store Credit requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is AffiliateWP – Store Credit updated?

AffiliateWP – Store Credit was last updated on Oct 24, 2024. Frequent updates are generally a positive security signal.

What is AffiliateWP – Store Credit's security score?

AffiliateWP – Store Credit has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AffiliateWP – Store Credit Security & Risk Analysis

wordpress.org/plugins/affiliatewp-store-credit

Pay AffiliateWP referrals as store credit.

500 active installs v2.6.2 PHP 7.4+ WP 5.2+ Updated Oct 24, 2024

affiliatesaffiliatewpstore-creditwoowoocommerce

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is AffiliateWP – Store Credit Safe to Use in 2026?

Generally Safe

Score 92/100

AffiliateWP – Store Credit has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The plugin "affiliatewp-store-credit" v2.6.2 exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of any known CVEs and a clean bill of health in the vulnerability history indicate a well-maintained and secure codebase over time. The static analysis further reinforces this, revealing no dangerous functions, all SQL queries using prepared statements, no file operations or external HTTP requests, and a single nonce check on an AJAX handler, which is a good practice. Capability checks are also present, adding another layer of defense.

However, a minor area for attention is the output escaping. While 85% of outputs are properly escaped, this leaves 15% potentially unescaped. This could represent a minor risk of cross-site scripting (XSS) vulnerabilities if sensitive data is being outputted without proper sanitization in those specific instances. The taint analysis showing zero flows with unsanitized paths is a very positive indicator, suggesting that even with potentially unescaped outputs, the actual risk of exploitation might be low due to the nature of the data or how it's handled within the plugin's context. Overall, this plugin appears to be secure, with the only notable concern being the small percentage of unescaped outputs.

Key Concerns

15% of outputs are not properly escaped

Vulnerabilities

None known

AffiliateWP – Store Credit Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

AffiliateWP – Store Credit Code Analysis

Dangerous Functions

Raw SQL Queries

3 prepared

Unescaped Output

23 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared3 total queries

Output Escaping

85% escaped27 total outputs

Attack Surface

AffiliateWP – Store Credit Attack Surface

Entry Points2

Unprotected0

AJAX Handlers 1

authwp_ajax_adjust_affiliate_store_creditincludes\admin\settings.php:40

Shortcodes 1

[affiliate_store_credit] includes\class-shortcode.php:9

WordPress Hooks 32

actionplugins_loadedaffiliatewp-store-credit.php:111

actionaffwp_plugins_loadedaffiliatewp-store-credit.php:113

actionadmin_initincludes\admin\class-upgrades.php:31

filteraffwp_settings_tabsincludes\admin\settings.php:19

filteraffwp_settingsincludes\admin\settings.php:20

filteraffwp_affiliate_table_columnsincludes\admin\settings.php:27

filteraffwp_affiliate_table_store_creditincludes\admin\settings.php:28

filteraffwp_affiliate_table_payout_methodincludes\admin\settings.php:29

filteraffwp_referral_table_columnsincludes\admin\settings.php:32

filteraffwp_referral_table_payout_methodincludes\admin\settings.php:33

actionaffwp_edit_affiliate_endincludes\admin\settings.php:36

actionadmin_enqueue_scriptsincludes\admin\settings.php:39

actionaffwp_update_affiliateincludes\admin\settings.php:41

actionadmin_noticesincludes\class-activation.php:69

actionaffwp_affiliate_dashboard_after_campaign_statsincludes\dashboard.php:13

actionaffwp_affiliate_dashboard_before_submitincludes\dashboard.php:14

actionaffwp_update_affiliate_profile_settingsincludes\dashboard.php:15

actionaffwp_set_referral_statusintegrations\class-base.php:17

actionaffwp_process_update_referralintegrations\class-base.php:18

actionaffwp_add_referralintegrations\class-base.php:19

actionadmin_noticesintegrations\class-edd.php:18

filteredd_wallet_activity_typeintegrations\class-edd.php:22

filteredd_wallet_activity_actionsintegrations\class-edd.php:23

filterwoocommerce_get_shop_coupon_dataintegrations\class-woocommerce.php:56

actionwoocommerce_before_calculate_totalsintegrations\class-woocommerce.php:57

actionwoocommerce_before_checkout_formintegrations\class-woocommerce.php:60

actionrender_block_woocommerce/checkout-express-payment-blockintegrations\class-woocommerce.php:61

filterwoocommerce_cart_totals_coupon_labelintegrations\class-woocommerce.php:62

actionwoocommerce_checkout_order_processedintegrations\class-woocommerce.php:65

actionwoocommerce_store_api_checkout_order_processedintegrations\class-woocommerce.php:66

filterwcs_renewal_order_createdintegrations\class-woocommerce.php:69

actionwoocommerce_subscription_renewal_payment_completeintegrations\class-woocommerce.php:70

Maintenance & Trust

AffiliateWP – Store Credit Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedOct 24, 2024

PHP min version7.4

Downloads35K

Community Trust

Rating60/100

Number of ratings4

Active installs500

Alternatives

AffiliateWP – Store Credit Alternatives

Advanced Coupons for WooCommerce Coupons & Store Credit

advanced-coupons-for-woocommerce-free

Enhance WooCommerce coupons with new coupon types, BOGO coupons, store credit, discount rules, url coupons, gift cards, loyalty program + more!

20K 2 CVEs

PW WooCommerce Gift Cards

pw-woocommerce-gift-cards

100

Sell gift cards to your WooCommerce store, in just a few minutes!

20K No CVEs

Affiliate Program Suite — SliceWP Affiliates

slicewp

SliceWP is the quickest and easiest WordPress affiliates plugin for building your affiliate program. Track affiliate commissions, easily pay your affi …

10K 5 CVEs

Affiliates Manager

affiliates-manager

Affiliates Manager plugin can help you manage an affiliate marketing program to drive more traffic and more sales to your site.

9K 12 CVEs

Coupon Affiliates – Affiliate Plugin for WooCommerce

woo-coupon-usage

The most powerful affiliate plugin for WooCommerce. Track commission, generate referral URLs, assign affiliate coupons, and display detailed stats.

5K 12 CVEs

Developer Profile

AffiliateWP – Store Credit Developer Profile

Syed Balkhi

94 plugins · 23.5M total installs

trust score

Avg Security Score

91/100

Avg Patch Time

795 days

View full developer profile

Detection Fingerprints

How We Detect AffiliateWP – Store Credit

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/affiliatewp-store-credit/assets/css/admin-edit-affiliate.css

Version Parameters

affiliatewp-store-credit/assets/css/admin-edit-affiliate.css?ver=

HTML / DOM Fingerprints

CSS Classes

affiliatewp-store-credit-requirements

Data Attributes

data-noncedata-affiliate-iddata-movementdata-adjustment

JS Globals

affiliatewp_store_credit_admin_params

FAQ