Does Affilizz have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Affilizz compatible with WordPress 6.8.5?

According to WordPress.org data, Affilizz 1.15.4 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Affilizz compatible with PHP 7.3.0+?

Affilizz requires PHP 7.3.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Affilizz updated?

Affilizz was last updated on Apr 8, 2025. Frequent updates are generally a positive security signal.

What is Affilizz's security score?

Affilizz has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Affilizz Security & Risk Analysis

wordpress.org/plugins/affilizz

Affilizz allows you to manage all your affiliated content in one place regardless of your activity.

200 active installs v1.15.4 PHP 7.3.0+ WP 5.9+ Updated Apr 8, 2025

adsaffiliateaffiliationaffilizzblock

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Affilizz Safe to Use in 2026?

Generally Safe

Score 92/100

Affilizz has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The affilizz v1.15.4 plugin exhibits a mixed security posture. On the positive side, it has no known historical vulnerabilities and demonstrates good practices in SQL query sanitization (83% prepared statements) and output escaping (91%). The absence of dangerous functions and critical/high severity taint flows is also encouraging.

However, a significant concern arises from its attack surface. The plugin exposes 16 AJAX handlers, with a concerning 14 of them lacking proper authentication checks. This large number of unprotected entry points presents a substantial risk of unauthorized access and potential manipulation of plugin functionalities. While taint analysis didn't reveal critical issues, the presence of unsanitized paths in 7 out of 11 flows warrants further investigation to ensure these don't lead to exploitable vulnerabilities in conjunction with the unprotected AJAX actions.

In conclusion, while the plugin has a clean vulnerability history and good data handling practices, the substantial number of unprotected AJAX handlers is a critical weakness that significantly increases its risk profile. Addressing these unprotected endpoints should be a high priority to improve the overall security of the plugin.

Key Concerns

Large attack surface without auth
Unsanitized paths in taint flows
Missing nonce checks on AJAX

Vulnerabilities

None known

Affilizz Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Affilizz Release Timeline

v1.15.4Current

v1.15.3

v1.15.2

v1.15.1

v1.15.0

v1.14.5

v1.14.4

v1.14.3

v1.14.2

v1.14.1

v1.14.0

v1.13.2

v1.13.1

v1.13.0

Code Analysis

Analyzed Mar 16, 2026

Affilizz Code Analysis

Dangerous Functions

Raw SQL Queries

10 prepared

Unescaped Output

179 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

83% prepared12 total queries

Output Escaping

91% escaped197 total outputs

Data Flows · Security

7 unsanitized

Data Flow Analysis

11 flows7 with unsanitized paths

get_publication_contents (classes\Ajax.php:108)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

14 unprotected

Affilizz Attack Surface

Entry Points17

Unprotected14

AJAX Handlers 16

authwp_ajax_affilizz_get_publicationsclasses\Ajax.php:24

authwp_ajax_affilizz_get_publication_contentsclasses\Ajax.php:25

authwp_ajax_edit_affilizz_publication_shortcodeclasses\Ajax.php:28

authwp_ajax_find_affilizz_offers_by_urlclasses\Ajax.php:31

authwp_ajax_find_affilizz_offers_by_keywordclasses\Ajax.php:32

authwp_ajax_find_affilizz_offers_by_productclasses\Ajax.php:33

authwp_ajax_affilizz_create_offerclasses\Ajax.php:34

authwp_ajax_get_affilizz_publicationclasses\Ajax.php:37

authwp_ajax_affilizz_reset_publication_idclasses\Ajax.php:40

authwp_ajax_affilizz_check_api_keyclasses\Page\Wizard.php:22

authwp_ajax_affilizz_get_entitiesclasses\Page\Wizard.php:23

authwp_ajax_affilizz_get_mediaclasses\Page\Wizard.php:24

authwp_ajax_affilizz_get_channelsclasses\Page\Wizard.php:25

authwp_ajax_affilizz_save_paramsclasses\Page\Wizard.php:26

authwp_ajax_affilizz_render_shortcodeclasses\Shortcode\Publication.php:23

authwp_ajax_affilizz_save_shortcodeclasses\Shortcode\Publication.php:24

Shortcodes 1

[affilizz-publication] classes\Shortcode\Publication.php:20

WordPress Hooks 36

actionadmin_enqueue_scriptsclasses\Core.php:70

actioninitclasses\Core.php:73

actionadmin_footerclasses\Core.php:76

filterhttp_request_timeoutclasses\Core.php:79

actioninitclasses\Core.php:82

filteraffilizz_publications_javascript_l10nclasses\Core.php:85

actionmedia_buttonsclasses\Editor\Classic.php:17

actionadmin_footerclasses\Editor\Classic.php:18

actionprint_media_templatesclasses\Editor\Classic.php:19

actionmce_external_pluginsclasses\Editor\Classic.php:20

actionadd_meta_boxesclasses\Editor\Classic.php:23

actioninitclasses\Editor\Gutenberg.php:14

actionadmin_initclasses\Install.php:15

actionupgrader_process_completeclasses\Install.php:16

actionadmin_menuclasses\Page.php:67

filteraffilizz_editable_shortcodesclasses\Shortcode\Publication.php:27

actionaffilizz_hourly_cronclasses\Util\Cron.php:19

actionadmin_noticesclasses\Util\Cron.php:20

actionet_builder_readyclasses\Util\Divi.php:49

actionwp_enqueue_scriptsclasses\Util\Divi.php:50

actionadmin_enqueue_scriptsclasses\Util\Divi.php:51

actionwp_enqueue_scriptsclasses\Util\Divi.php:52

actionadmin_headclasses\Util\Editor.php:17

filterbody_classclasses\Util\Filters.php:17

actionwp_enqueue_scriptsclasses\Util\Filters.php:20

filteraffilizz_has_affilizz_contentclasses\Util\Filters.php:21

actionwp_headclasses\Util\Filters.php:24

actionadmin_initclasses\Util\Filters.php:27

actionenqueue_block_assetsclasses\Util\Filters.php:28

filteraffilizz_publication_content_renderclasses\Util\Filters.php:31

filterwp_kses_allowed_htmlclasses\Util\Filters.php:34

filtertiny_mce_before_initclasses\Util\Filters.php:35

actionadmin_enqueue_scriptsclasses\Util\Notices.php:17

actionenqueue_block_assetsclasses\Util\Notices.php:18

actionall_admin_noticesclasses\Util\Notices.php:21

actionall_admin_noticesclasses\Util\Notices.php:22

Scheduled Events 1

affilizz_hourly_cron

Maintenance & Trust

Affilizz Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedApr 8, 2025

PHP min version7.3.0

Downloads7K

Community Trust

Rating100/100

Number of ratings1

Active installs200

Alternatives

Affilizz Alternatives

Eldolink®

eldolink

Eldolink® is an affiliate program that allows you to monetize your traffic. Original wellness contents & products. Win big with Slimdoo®.

10 No CVEs

Advanced Ads – Ad Manager & AdSense

advanced-ads

The only complete toolkit for all ad types. Grow your revenue with AdSense, Amazon—or any affiliate network. Get pinpoint targeting and best support!

100K 8 CVEs

Pochipp

pochipp

Amazonや楽天市場から商品を検索してアフィリエイトリンクを管理できるプラグインです。

20K 2 CVEs

AffiliateX – Amazon Affiliate Plugin

affiliatex

AffiliateX is the best WordPress Amazon Affiliate Plugin. Create professional affiliate websites with customizable WordPress Amazon Affiliate Blocks.

10K 3 CVEs

Meks Easy Ads Widget

meks-easy-ads-widget

Display unlimited number of ads inside your WordPress widget.

10K 1 CVE

Developer Profile

Affilizz Developer Profile

Affilizz Team

1 plugin · 200 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Affilizz

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/affilizz/assets/dist/css/admin.css/wp-content/plugins/affilizz/assets/dist/js/admin.js/wp-content/plugins/affilizz/assets/vendor/tom-select/tom-select.complete.min.js/wp-content/plugins/affilizz/assets/dist/js/editor.js/wp-content/plugins/affilizz/assets/dist/css/editor.css/wp-content/plugins/affilizz/assets/dist/js/publications.js/wp-content/plugins/affilizz/assets/dist/css/publications.css/wp-content/plugins/affilizz/assets/dist/js/publications-script.js+1 more

Script Paths

/wp-content/plugins/affilizz/assets/dist/js/admin.js/wp-content/plugins/affilizz/assets/vendor/tom-select/tom-select.complete.min.js/wp-content/plugins/affilizz/assets/dist/js/editor.js/wp-content/plugins/affilizz/assets/dist/js/publications.js/wp-content/plugins/affilizz/assets/dist/js/publications-script.js/wp-content/plugins/affilizz/assets/dist/js/publications-style.js

Version Parameters

affilizz/assets/dist/css/admin.css?ver=affilizz/assets/dist/js/admin.js?ver=affilizz/assets/vendor/tom-select/tom-select.complete.min.js?ver=affilizz/assets/dist/js/editor.js?ver=affilizz/assets/dist/css/editor.css?ver=affilizz/assets/dist/js/publications.js?ver=affilizz/assets/dist/css/publications.css?ver=affilizz/assets/dist/js/publications-script.js?ver=affilizz/assets/dist/js/publications-style.js?ver=

HTML / DOM Fingerprints

CSS Classes

affilizz-admin-wrapperaffilizz-publications-wrapperaffilizz-editor-wrapperaffilizz-field-wrapperaffilizz-publications-contentaffilizz-publication-editor

HTML Comments

Data Attributes

data-affilizz-publication-iddata-affilizz-field-typedata-affilizz-editor-target

JS Globals

AffilizzAffilizzPublicationsAffilizzEditor

REST Endpoints

/wp-json/affilizz/v1/publications/wp-json/affilizz/v1/publications//wp-json/affilizz/v1/settings

Shortcode Output

[affilizz_publication

FAQ