WP-Safety

Apptivo eCommerce Security & Risk Analysis

wordpress.org/plugins/apptivo-ecommerce

Create, display, and collect payment for your products online. A complete eCommerce solution integrated with Apptivo.

10 active installs v3.0.0 PHP + WP 4.6+ Updated Nov 20, 2025
apptivoe-commerceecommerceintegrationpaypal
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Apptivo eCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Apptivo eCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago
Risk Assessment

The Apptivo E-commerce plugin v3.0.0 presents a mixed security posture. On the positive side, it demonstrates good practices by utilizing prepared statements for all SQL queries and properly escaping a high percentage of its output. The absence of known CVEs and vulnerabilities in its history is also a significant strength, suggesting a generally secure development history. However, there are notable areas of concern that warrant attention.

The primary risk stems from a substantial attack surface, particularly with 30 AJAX handlers, 13 of which lack authentication checks. While taint analysis did not reveal critical or high severity flows, the presence of 10 flows with unsanitized paths indicates potential avenues for exploitation if malicious input is not adequately handled at these entry points. The use of the dangerous 'ini_set' function, although only once, also raises a slight flag, as it can be abused to alter PHP configurations in unintended ways.

Overall, the plugin's strengths lie in its robust database interaction and output handling. The lack of historical vulnerabilities further builds confidence. Nevertheless, the significant number of unprotected AJAX endpoints and the presence of unsanitized paths in taint flows represent clear security weaknesses that could be exploited. Addressing these specific concerns would significantly improve the plugin's overall security. Users should remain vigilant and ensure the plugin is kept updated, although the current history is promising.

Key Concerns

  • Unprotected AJAX handlers
  • Flows with unsanitized paths
  • Use of dangerous function 'ini_set'
Vulnerabilities
None known

Apptivo eCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Apptivo eCommerce Release Timeline

v3.0.0Current
v2.0.3
v2.0.2
v2.0.1
v2.0.0
v1.1.1
v1.1
v1.0.1
v1.0
Code Analysis
Analyzed Apr 16, 2026

Apptivo eCommerce Code Analysis

Dangerous Functions
1
Raw SQL Queries
0
37 prepared
Unescaped Output
224
1474 escaped
Nonce Checks
18
Capability Checks
6
File Operations
16
External Requests
3
Bundled Libraries
0

Dangerous Functions Found

ini_setini_set('memory_limit','-1');apptivo-define.php:12

SQL Query Safety

100% prepared37 total queries

Output Escaping

87% escaped1698 total outputs
Data Flows · Security
10 unsanitized

Data Flow Analysis

17 flows10 with unsanitized paths
apptivo_ecommerce_settings (admin/admin-settings.php:1170)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
13 unprotected

Apptivo eCommerce Attack Surface

Entry Points44
Unprotected13

AJAX Handlers 30

authwp_ajax_apptivo_ecommerce_check_apikeyadmin/admin-settings.php:3
noprivwp_ajax_apptivo_ecommerce_check_apikeyadmin/admin-settings.php:4
authwp_ajax_apptivo_ecommerce_update_apikeyadmin/admin-settings.php:20
noprivwp_ajax_apptivo_ecommerce_update_apikeyadmin/admin-settings.php:21
authwp_ajax_apptivo_ecommerce_upload_theme_templateadmin/admin-settings.php:59
noprivwp_ajax_apptivo_ecommerce_upload_theme_templateadmin/admin-settings.php:60
authwp_ajax_apptivo_ecommerce_check_apikeyadmin/admin-settings.php:1178
authwp_ajax_apptivo_ecommerce_products_sortingapptivo_ecommerce_actions.php:8
noprivwp_ajax_apptivo_ecommerce_products_sortingapptivo_ecommerce_actions.php:9
authwp_ajax_apptivo_ecommerce_count_product_imagesapptivo_ecommerce_actions.php:12
authwp_ajax_apptivo_ecommerce_captcha_refreshapptivo_ecommerce_actions.php:225
noprivwp_ajax_apptivo_ecommerce_captcha_refreshapptivo_ecommerce_actions.php:226
authwp_ajax_apptivo_ecommerce_update_shipping_methodapptivo_ecommerce_actions.php:248
noprivwp_ajax_apptivo_ecommerce_update_shipping_methodapptivo_ecommerce_actions.php:249
authwp_ajax_apptivo_ecommerce_update_order_reviewapptivo_ecommerce_actions.php:280
noprivwp_ajax_apptivo_ecommerce_update_order_reviewapptivo_ecommerce_actions.php:281
authwp_ajax_apptivo_ecommerce_update_shipping_taxapptivo_ecommerce_actions.php:328
noprivwp_ajax_apptivo_ecommerce_update_shipping_taxapptivo_ecommerce_actions.php:329
authwp_ajax_apptivo_ecommerce_add_to_cartapptivo_ecommerce_actions.php:362
noprivwp_ajax_apptivo_ecommerce_add_to_cartapptivo_ecommerce_actions.php:363
authwp_ajax_apptivo_ecommerce-checkoutapptivo_ecommerce_actions.php:695
noprivwp_ajax_apptivo_ecommerce-checkoutapptivo_ecommerce_actions.php:696
authwp_ajax_apptivo_ecommerce-confirm-checkoutapptivo_ecommerce_actions.php:713
noprivwp_ajax_apptivo_ecommerce-confirm-checkoutapptivo_ecommerce_actions.php:714
authwp_ajax_apptivo_ecommerce-paypal-checkoutapptivo_ecommerce_actions.php:731
noprivwp_ajax_apptivo_ecommerce-paypal-checkoutapptivo_ecommerce_actions.php:732
authwp_ajax_apptivo_ecommerce_pwd_reset_actionapptivo_ecommerce_actions.php:750
noprivwp_ajax_apptivo_ecommerce_pwd_reset_actionapptivo_ecommerce_actions.php:751
authwp_ajax_apptivo_ecommerce_pwd_change_actionapptivo_ecommerce_actions.php:798
noprivwp_ajax_apptivo_ecommerce_pwd_change_actionapptivo_ecommerce_actions.php:799

Shortcodes 14

[apptivo_ecommerce_cart] shortcodes/shortcodes-init.php:17
[apptivo_ecommerce_secure_checkout] shortcodes/shortcodes-init.php:18
[apptivo_ecommerce_checkout] shortcodes/shortcodes-init.php:19
[apptivo_ecommerce_logout] shortcodes/shortcodes-init.php:20
[apptivo_ecommerce_register] shortcodes/shortcodes-init.php:21
[apptivo_ecommerce_login] shortcodes/shortcodes-init.php:22
[apptivo_ecommerce_my_account] shortcodes/shortcodes-init.php:23
[apptivo_ecommerce_edit_address] shortcodes/shortcodes-init.php:24
[apptivo_ecommerce_change_password] shortcodes/shortcodes-init.php:25
[apptivo_ecommerce_thankyou] shortcodes/shortcodes-init.php:26
[apptivo_ecommerce_featured_products] shortcodes/shortcodes-init.php:28
[apptivo_ecommerce_products_by_category] shortcodes/shortcodes-init.php:30
[apptivo_ecommerce_recent_products] shortcodes/shortcodes-init.php:31
[apptivo_ecommerce_products_by_price] shortcodes/shortcodes-init.php:32
WordPress Hooks 82
actionadmin_initadmin/admin-init.php:19
actionadmin_menuadmin/admin-init.php:42
filtermce_buttonsadmin/admin-init.php:93
filtermce_external_pluginsadmin/admin-init.php:94
actionadmin_enqueue_scriptsadmin/admin-init.php:100
actionmenu_orderadmin/admin-init.php:121
actioncustom_menu_orderadmin/admin-init.php:127
actionadmin_headadmin/admin-init.php:152
filterpost_row_actionsadmin/admin-init.php:163
filterpage_row_actionsadmin/admin-init.php:164
filteritem_cat_row_actionsadmin/admin-init.php:172
filterbulk_actions-edit-item_catadmin/admin-init.php:182
filterbulk_actions-edit-itemadmin/admin-init.php:183
actionadmin_initadmin/admin-install.php:23
filtermanage_edit-item_cat_columnsadmin/admin-post-types.php:8
filtermanage_item_cat_custom_columnadmin/admin-post-types.php:9
filtermanage_edit-item_cat_sortable_columnsadmin/admin-post-types.php:22
filtermanage_edit-item_columnsadmin/admin-post-types.php:32
actionmanage_item_posts_custom_columnadmin/admin-post-types.php:65
filtermanage_edit-item_sortable_columnsadmin/admin-post-types.php:155
filterrequestadmin/admin-post-types.php:169
filterattachment_fields_to_editadmin/admin-post-types.php:215
filterattachment_fields_to_saveadmin/admin-post-types.php:216
actionadmin_enqueue_scriptsadmin/admin-taxonomies.php:5
actioncreated_termadmin/admin-taxonomies.php:25
actionedited_termadmin/admin-taxonomies.php:26
actionadd_meta_boxesadmin/metaboxes/metaboxes-init.php:16
actionsave_postadmin/metaboxes/metaboxes-init.php:50
actionadmin_noticesadmin/metaboxes/metaboxes-init.php:67
actionapptivo_ecommerce_process_item_metaadmin/metaboxes/metaboxes-product_data.php:108
actionadmin_noticesapptivo-define.php:2265
actioninitapptivo_ecommerce.php:105
actioninitapptivo_ecommerce.php:163
actiontemplate_redirectapptivo_ecommerce.php:235
actionwpapptivo_ecommerce.php:318
actioninitapptivo_ecommerce_actions.php:420
actioninitapptivo_ecommerce_actions.php:467
actioninitapptivo_ecommerce_actions.php:515
actioninitapptivo_ecommerce_actions.php:578
actioninitapptivo_ecommerce_actions.php:857
filtergettextapptivo_ecommerce_taxonomy.php:103
actionadmin_headapptivo_ecommerce_taxonomy.php:117
filterpost_updated_messagesapptivo_ecommerce_taxonomy.php:130
actionapptivo_ecommerce_before_main_contentapptivo_ecommerce_template_actions.php:3
actionapptivo_ecommerce_after_main_contentapptivo_ecommerce_template_actions.php:4
actionapptivo_ecommerce_breadcrumbapptivo_ecommerce_template_actions.php:5
actionapptivo_ecommerce_breadcrumb_contentapptivo_ecommerce_template_actions.php:6
actionapptivo_ecommerce_add_to_cart_and_view_details_btnapptivo_ecommerce_template_actions.php:7
actionapptivo_ecommerce_paginationapptivo_ecommerce_template_actions.php:8
actionapptivo_ecommerce_sidebarapptivo_ecommerce_template_actions.php:10
actionapptivo_ecommerce_show_product_imagesapptivo_ecommerce_template_actions.php:12
actionapptivo_ecommerce_product_thumbnailsapptivo_ecommerce_template_actions.php:13
actionapptivo_ecommerce_single_product_summaryapptivo_ecommerce_template_actions.php:14
actionapptivo_ecommerce_single_product_summaryapptivo_ecommerce_template_actions.php:15
actionapptivo_ecommerce_simple_add_to_cartapptivo_ecommerce_template_actions.php:16
actionapptivo_ecommerce_add_to_cart_formapptivo_ecommerce_template_actions.php:17
actionapptivo_ecommerce_productdescriptionapptivo_ecommerce_template_actions.php:18
actionapptivo_ecommerce_before_checkout_formapptivo_ecommerce_template_actions.php:20
actionapptivo_ecommerce_before_authorize_checkout_formapptivo_ecommerce_template_actions.php:21
actionapptivo_ecommerce_order_reviewapptivo_ecommerce_template_actions.php:22
actionapptivo_ecommerce_checkout_order_reviewapptivo_ecommerce_template_actions.php:23
filterwp_page_menu_argsapptivo_ecommerce_template_actions.php:27
filterwp_list_pages_excludesapptivo_ecommerce_template_actions.php:28
actionwp_footerapptivo_ecommerce_template_actions.php:129
filtertemplate_includeapptivo_ecommerce_templates.php:6
actionwp_headapptivo_ecommerce_templates.php:8
actionafter_setup_themeapptivo_ecommerce_templates.php:10
filterbody_classapptivo_ecommerce_templates.php:16
filterwp_redirectclasses/apptivo_ecommerce.class.php:31
actionplugins_loadedclasses/apptivo_ecommerce.class.php:33
actionapptivo_ecommerce_checkout_billingclasses/checkout.class.php:19
actionapptivo_ecommerce_checkout_shippingclasses/checkout.class.php:20
actionapptivo_ecommerce_paypal_checkout_shippingclasses/checkout.class.php:21
actionapptivo_ecommerce_login_accountclasses/checkout.class.php:22
actionapptivo_ecommerce_google_paypal_registerclasses/checkout.class.php:23
actionapptivo_ecommerce_update_options_payment_gatewaysclasses/gateways/gateway-google-checkout.php:15
actionapptivo_ecommerce_update_options_payment_gatewaysclasses/gateways/gateway-paypal.php:16
filterapptivo_ecommerce_payment_gatewaysclasses/gateways/gateway-paypal.php:122
actionapptivo_ecommerce_update_options_payment_gatewaysclasses/gateways/gateway-secure-checkout.php:22
filterapptivo_ecommerce_payment_gatewaysclasses/gateways/gateway-secure-checkout.php:163
actionapptivo_ecommerce_registerclasses/register.class.php:11
actionwidgets_initwidgets/widgets-init.php:20
Maintenance & Trust

Apptivo eCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedNov 20, 2025
PHP min version
Downloads8K

Community Trust

Rating60/100
Number of ratings2
Active installs10
Alternatives

Apptivo eCommerce Alternatives

Shopping Cart & eCommerce Store

Shopping Cart & eCommerce Store

wp-easycart

A
88

A FREE WordPress eCommerce & WordPress Shopping Cart plugin that can sell products, subscriptions, downloads, services, donations, and much more o …

4K 22 CVEs
sleekStore lite

sleekStore lite

sleekstore

A
85

sleekStore - instant way to start sales and launch online store powered by WordPress. Functional, convenient, hyper-flexlible.

20 No CVEs
Ultraleet Woocommerce Erply Integration

Ultraleet Woocommerce Erply Integration

ultraleet-wc-erply-integration

A
85

Enables integration between your Woocommerce shop and Erply POS account.

0 No CVEs
WooCommerce PayPal Payments

WooCommerce PayPal Payments

woocommerce-paypal-payments

A
100

PayPal's latest payment processing solution. Accept PayPal, Pay Later, credit/debit cards, alternative digital wallets and bank accounts.

800K 1 CVE
Klarna for WooCommerce

Klarna for WooCommerce

klarna-payments-for-woocommerce

A
100

Grow your business for increased sales and enhanced shopping experiences at no extra costs.

30K 1 CVE
Developer Profile

Apptivo eCommerce Developer Profile

Apptivo

3 plugins · 50 total installs

70
trust score
Avg Security Score
87/100
Avg Patch Time
253 days
View full developer profile
Detection Fingerprints

How We Detect Apptivo eCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ

Frequently Asked Questions about Apptivo eCommerce