Does AmazonFeed have any unpatched vulnerabilities?

No. All known vulnerabilities in AmazonFeed have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AmazonFeed compatible with WordPress 3.1.4?

According to WordPress.org data, AmazonFeed 2.1 has been tested up to WordPress 3.1.4. Check the plugin's changelog for the latest compatibility information.

How often is AmazonFeed updated?

AmazonFeed was last updated on Apr 14, 2011. Frequent updates are generally a positive security signal.

What is AmazonFeed's security score?

AmazonFeed has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AmazonFeed Security & Risk Analysis

wordpress.org/plugins/amazonfeed

This plugin enables you to automatically advertise products from Amazon.com which are specifically related to the topic you are writing about.

10 active installs v2.1 PHP + WP 2.3.2+ Updated Apr 14, 2011

affiliateamazonmake-moneymoneyrelated

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is AmazonFeed Safe to Use in 2026?

Generally Safe

Score 85/100

AmazonFeed has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 14yr ago

Risk Assessment

The "amazonfeed" v2.1 plugin presents a mixed security picture. On one hand, it demonstrates good practices by utilizing prepared statements for all its SQL queries and has no recorded vulnerabilities (CVEs). The attack surface also appears minimal, with no AJAX handlers, REST API routes, shortcodes, or cron events exposed, which is a positive sign for reducing potential entry points. However, the static analysis reveals significant concerns, particularly the complete lack of output escaping across 85 detected outputs. This is a major weakness that could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is directly outputted without sanitization. Additionally, the taint analysis identified two high-severity flows with unsanitized paths, suggesting potential for path traversal or similar vulnerabilities if these flows involve user-controlled input without proper validation and sanitization. The absence of nonce checks and limited capability checks (though some exist) further contribute to the risk profile, as they are crucial for preventing unauthorized actions and ensuring proper authorization.

Key Concerns

0% proper output escaping
2 high severity taint flows
0 nonce checks

Vulnerabilities

None known

AmazonFeed Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

AmazonFeed Code Analysis

Dangerous Functions

Raw SQL Queries

23 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared23 total queries

Output Escaping

0% escaped85 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

3 flows3 with unsanitized paths

<cache> (html\cache.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

AmazonFeed Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 12

actionadmin_menuamazonfeed.php:52

actionadmin_menuamazonfeed.php:53

actionadmin_noticesamazonfeed.php:54

actionsave_postamazonfeed.php:56

actionedit_postamazonfeed.php:57

actionpublish_postamazonfeed.php:58

actionwp_headamazonfeed.php:60

actionadmin_headamazonfeed.php:61

actionwidgets_initamazonfeed.php:63

actionthe_contentamazonfeed.php:71

actiondbx_post_advancedphp\amazonfeed.class.php:1697

actiondbx_page_advancedphp\amazonfeed.class.php:1698

Maintenance & Trust

AmazonFeed Maintenance & Trust

Maintenance Signals

WordPress version tested3.1.4

Last updatedApr 14, 2011

PHP min version

Downloads23K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

AmazonFeed Alternatives

Amazon Product Feeder

amazon-product-feeder

Amazon Product Feeder is a WordPress plugin which will help you to create amazon product pages on your website with your amazon affiliate link.

40 No CVEs

Pic Ignite

picignite

100

Pic Ignite is a product that offers first and foremost the ability to automatically place geo-targeted, advertising which overlays existing post image …

10 No CVEs

Advanced Ads – Ad Manager & AdSense

advanced-ads

The only complete toolkit for all ad types. Grow your revenue with AdSense, Amazon—or any affiliate network. Get pinpoint targeting and best support!

100K 8 CVEs

ThirstyAffiliates – Affiliate Links, Link Branding, Link Tracking & Marketing Plugin

thirstyaffiliates

🔗 Affiliate link management & cloaker tool. Easily manage, shrink and track your affiliate links in WordPress. 🔥

30K 5 CVEs

AffiliateX – Amazon Affiliate Plugin

affiliatex

AffiliateX is the best WordPress Amazon Affiliate Plugin. Create professional affiliate websites with customizable WordPress Amazon Affiliate Blocks.

10K 3 CVEs

Developer Profile

AmazonFeed Developer Profile

warkior

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect AmazonFeed

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/amazonfeed/css/amazonfeed.css/wp-content/plugins/amazonfeed/js/amazonfeed.js

Script Paths

/wp-content/plugins/amazonfeed/js/amazonfeed.js

Version Parameters

amazonfeed/css/amazonfeed.css?ver=amazonfeed/js/amazonfeed.js?ver=

HTML / DOM Fingerprints

CSS Classes

amazonfeed-productamazonfeed-priceamazonfeed-imageamazonfeed-title

HTML Comments

Data Attributes

data-amazonfeed-asindata-amazonfeed-keyword

JS Globals

window.amazonFeedConfigvar amazonFeedConfig

Shortcode Output

<div class="amazonfeed-product" data-amazonfeed-asin="

FAQ