WP-Safety

AgeVerify by Inverite Security & Risk Analysis

wordpress.org/plugins/ageverify-by-inverite

Inverite AgeVerify plugin for Wordpress and WooCommerce to verify a customer's Age and Identity

10 active installs v2.1.6 PHP + WP 4.6+ Updated Sep 20, 2020
age-verificationid-verificationkyc
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is AgeVerify by Inverite Safe to Use in 2026?

Generally Safe

Score 85/100

AgeVerify by Inverite has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago
Risk Assessment

The "ageverify-by-inverite" plugin v2.1.6 exhibits a mixed security posture. On the positive side, it demonstrates good practices by avoiding dangerous functions, using prepared statements for all SQL queries, and having no recorded vulnerabilities or CVEs. The attack surface, while present with shortcodes and cron events, is relatively small and appears to be protected from direct unauthorized access based on the provided data. However, significant concerns arise from the complete lack of output escaping for all 12 identified outputs. This is a major weakness that could lead to cross-site scripting (XSS) vulnerabilities if any of the data processed by these outputs is user-controlled or sourced from an untrusted origin. Additionally, the absence of nonce and capability checks on potential entry points, though currently showing 0 unprotected entry points, represents a risk that could become exploitable if the plugin's functionality evolves or if indirectly exploitable through other means.

Key Concerns

  • Output escaping: 0% properly escaped
  • Nonce checks: 0
  • Capability checks: 0
  • Taint flows with unsanitized paths
Vulnerabilities
None known

AgeVerify by Inverite Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

AgeVerify by Inverite Release Timeline

No version history available.
Code Analysis
Analyzed Apr 16, 2026

AgeVerify by Inverite Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
12
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
1
External Requests
2
Bundled Libraries
0

Output Escaping

0% escaped12 total outputs
Data Flows · Security
2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths
ivav_after_checkout_validation (Model/IvavCheckoutTrait.php:40)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

AgeVerify by Inverite Attack Surface

Entry Points2
Unprotected0

Shortcodes 2

[ivav_profile] Model/IvavAdminSettingsTrait.php:158
[ivav_iframe] Model/IvavAdminSettingsTrait.php:159
WordPress Hooks 33
filterplugin_action_linksModel/IvavAdminSettingsTrait.php:73
actionwoocommerce_update_options_integration_wc-integration-iv-ageverifyModel/IvavAdminSettingsTrait.php:74
filterscript_loader_tagModel/IvavAdminSettingsTrait.php:89
actionwp_enqueue_scriptsModel/IvavAdminSettingsTrait.php:98
filtermanage_edit-shop_order_columnsModel/IvavAdminSettingsTrait.php:106
filtermanage_shop_order_posts_custom_columnModel/IvavAdminSettingsTrait.php:107
filterwc_order_statusesModel/IvavAdminSettingsTrait.php:108
actionadd_meta_boxesModel/IvavAdminSettingsTrait.php:110
filteredit_user_profileModel/IvavAdminSettingsTrait.php:115
filtershow_user_profileModel/IvavAdminSettingsTrait.php:116
filterbulk_actions-usersModel/IvavAdminSettingsTrait.php:119
filterhandle_bulk_actions-usersModel/IvavAdminSettingsTrait.php:126
filterbulk_actions-edit-shop_orderModel/IvavAdminSettingsTrait.php:136
filterhandle_bulk_actions-edit-shop_orderModel/IvavAdminSettingsTrait.php:143
actionwoocommerce_edit_account_formModel/IvavAdminSettingsTrait.php:155
actionwoocommerce_before_account_ordersModel/IvavAdminSettingsTrait.php:156
actionwoocommerce_order_actionsModel/IvavAdminSettingsTrait.php:162
actionwoocommerce_order_action_ivav_wc_order_manual_verify_actionModel/IvavAdminSettingsTrait.php:163
actionwoocommerce_order_action_ivav_wc_order_manual_clear_actionModel/IvavAdminSettingsTrait.php:164
actionwoocommerce_before_checkout_formModel/IvavAdminSettingsTrait.php:167
actionwoocommerce_checkout_order_processedModel/IvavAdminSettingsTrait.php:168
actionwoocommerce_before_checkout_formModel/IvavAdminSettingsTrait.php:178
actionwoocommerce_after_checkout_validationModel/IvavAdminSettingsTrait.php:180
actionwoocommerce_checkout_order_processedModel/IvavAdminSettingsTrait.php:187
actionwoocommerce_thankyouModel/IvavAdminSettingsTrait.php:194
actionwoocommerce_email_before_order_tableModel/IvavAdminSettingsTrait.php:200
actionwoocommerce_checkout_order_processedModel/IvavAdminSettingsTrait.php:206
filterwoocommerce_order_button_textModel/IvavAdminSettingsTrait.php:217
filterwoocommerce_email_classesModel/IvavAdminSettingsTrait.php:219
actionivav_send_reminderModel/IvavAdminSettingsTrait.php:220
actionivav_trigger_inverite_reminder_emailclass-wc-ageverify-reminder-email.php:15
actionplugins_loadediv-ageverify.php:21
filterwoocommerce_integrationsiv-ageverify.php:31

Scheduled Events 2

ivav_send_reminder
ivav_send_reminder
Maintenance & Trust

AgeVerify by Inverite Maintenance & Trust

Maintenance Signals

WordPress version tested5.4.19
Last updatedSep 20, 2020
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

AgeVerify by Inverite Alternatives

Identity Verification for WooCommerce

Identity Verification for WooCommerce

identity-verification-for-woocommerce

A
100

Eliminate fraud & verify customer age with real ID checks

100 No CVEs
Age Verification & Identity Verification by Token of Trust

Age Verification & Identity Verification by Token of Trust

token-of-trust

A
97

Verify age at checkout, protect pages from underage visitors, or set up advanced identity verification checks. Setup wizard gets you going in minutes.

50 1 CVE
Shuftipro KYC

Shuftipro KYC

shuftipro-kyc-identity-verification

A
92

Add Shuftipro identity verification process to WordPress websites.

40 No CVEs
Didit Verify

Didit Verify

didit-verify

A
100

Add identity verification to any WordPress page or WooCommerce checkout using Didit.

10 No CVEs
Konfirmi Plugin

Konfirmi Plugin

konfirmi

A
85

KONFIRMI allows you to easily and automatically verify your customer's age, ID, address, and other information.

10 No CVEs
Developer Profile

AgeVerify by Inverite Developer Profile

inverite

1 plugin · 10 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect AgeVerify by Inverite

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/ageverify-by-inverite/assets/css/iv-ageverify-style.css/wp-content/plugins/ageverify-by-inverite/assets/js/iv-ageverify-script.js
Script Paths
/wp-content/plugins/ageverify-by-inverite/assets/js/iv-ageverify-script.js
Version Parameters
ageverify-by-inverite/assets/css/iv-ageverify-style.css?ver=ageverify-by-inverite/assets/js/iv-ageverify-script.js?ver=

HTML / DOM Fingerprints

CSS Classes
inverite-verification-forminverite-verification-popup
Data Attributes
data-ivav-apikeydata-ivav-siteiddata-ivav-sitekeydata-ivav-envdata-ivav-hostname
JS Globals
inverite_verification_data
REST Endpoints
/wp-json/inverite/v1/verify/wp-json/inverite/v1/callback
Shortcode Output
[ivav_profile][ivav_iframe]
FAQ

Frequently Asked Questions about AgeVerify by Inverite