Does Ajax Post Filter have any unpatched vulnerabilities?

No. All known vulnerabilities in Ajax Post Filter have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Ajax Post Filter compatible with WordPress 3.4.2?

According to WordPress.org data, Ajax Post Filter 1.6 has been tested up to WordPress 3.4.2. Check the plugin's changelog for the latest compatibility information.

How often is Ajax Post Filter updated?

Ajax Post Filter was last updated on Jun 14, 2012. Frequent updates are generally a positive security signal.

What is Ajax Post Filter's security score?

Ajax Post Filter has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Ajax Post Filter Security & Risk Analysis

wordpress.org/plugins/ajax-post-filter

Filter posts with ajax

10 active installs v1.6 PHP + WP 3.1+ Updated Jun 14, 2012

ajaxdevelopmentfilterposts

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Ajax Post Filter Safe to Use in 2026?

Generally Safe

Score 85/100

Ajax Post Filter has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 13yr ago

Risk Assessment

The ajax-post-filter plugin version 1.6 exhibits a mixed security posture. On the positive side, it demonstrates good practices regarding SQL queries, output escaping, file operations, and external HTTP requests, with all analyzed code adhering to secure coding standards in these areas. The absence of known vulnerabilities or CVEs in its history is also a strong indicator of past security diligence.

However, the static analysis reveals a significant concern: three AJAX handlers are present without any authentication or capability checks. This creates a substantial attack surface that is entirely unprotected, making these handlers prime targets for unauthorized actions. While taint analysis shows no issues, the lack of security checks on these entry points is a critical oversight that could be exploited if malicious input is passed through them, even if the underlying code itself is not inherently vulnerable. The plugin's overall security is weakened by this critical gap in its access control mechanisms.

Key Concerns

AJAX handlers without authentication checks
AJAX handlers without capability checks
Large attack surface without auth checks

Vulnerabilities

None known

Ajax Post Filter Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Ajax Post Filter Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

3 unprotected

Ajax Post Filter Attack Surface

Entry Points4

Unprotected3

AJAX Handlers 3

noprivwp_ajax_affilterpostsajax-filter.php:39

authwp_ajax_affilterpostsajax-filter.php:40

noprivwp_ajax_affilterpostsajax-filter.php:42

Shortcodes 1

[ajaxFilter] ajax-filter.php:34

WordPress Hooks 1

actioninitajax-filter.php:35

Maintenance & Trust

Ajax Post Filter Maintenance & Trust

Maintenance Signals

WordPress version tested3.4.2

Last updatedJun 14, 2012

PHP min version

Downloads7K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Ajax Post Filter Alternatives

Load More Ajax Lite

load-more-ajax

100

Advanced Ajax post loading with infinite scroll, search, filtering, caching, and modern performance optimizations.

10 No CVEs

SimpleWP Post Filter Plugin for WordPress

simplewp-post-filter

SimpleWP Post Filter Plugin for WordPress: Enables filter and display posts dynamically using AJAX for a seamless experience.

10 No CVEs

Ajax Smart Filter

ajax-smart-filter

100

Ajax Smart Filter is a powerful, professional, real-time AJAX filtering plugin for WordPress.

0 No CVEs

Filtered Blogs with Ajax Pagination

filtered-blogs-with-ajax-pagination

100

Display blog posts with AJAX pagination, filters, and custom styles using shortcodes. Create multiple post blocks easily from the admin panel.

0 No CVEs

Smart Searchify

smart-searchify

Smart Searchify enhances the search functionality of your WordPress website to next level.

0 No CVEs

Developer Profile

Ajax Post Filter Developer Profile

James Irving-Swift

5 plugins · 290 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Ajax Post Filter

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ajax-post-filter/css/style.css/wp-content/plugins/ajax-post-filter/js/html5.js/wp-content/plugins/ajax-post-filter/js/af-script.js

HTML / DOM Fingerprints

CSS Classes

ajax-filtered-section

Data Attributes

data-posttypesdata-filtersdata-postsperpagedata-paginationdata-showcountdata-shownav

JS Globals

window.ajaxf

REST Endpoints

/wp-json/affilterposts

Shortcode Output

[ajaxFilter]

FAQ

Ajax Post Filter Security & Risk Analysis

Is Ajax Post Filter Safe to Use in 2026?

Generally Safe

Key Concerns

Ajax Post Filter Security Vulnerabilities

Ajax Post Filter Code Analysis

Ajax Post Filter Attack Surface

AJAX Handlers 3

Shortcodes 1

Ajax Post Filter Maintenance & Trust

Maintenance Signals

Community Trust

Ajax Post Filter Alternatives

Load More Ajax Lite

SimpleWP Post Filter Plugin for WordPress

Ajax Smart Filter

Filtered Blogs with Ajax Pagination

Smart Searchify

Ajax Post Filter Developer Profile

How We Detect Ajax Post Filter

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Ajax Post Filter