Does Authorized Store Seal have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Authorized Store Seal compatible with WordPress 4.7.33?

According to WordPress.org data, Authorized Store Seal 1.0.0 has been tested up to WordPress 4.7.33. Check the plugin's changelog for the latest compatibility information.

How often is Authorized Store Seal updated?

Authorized Store Seal was last updated on Aug 9, 2016. Frequent updates are generally a positive security signal.

What is Authorized Store Seal's security score?

Authorized Store Seal has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Authorized Store Seal Security & Risk Analysis

wordpress.org/plugins/authorized-store-seal

Authorized Store is a retailer/brand vetting service. The Seal and Certificate identify your e-store as “ Authorized” for all brands carried.

10 active installs v1.0.0 PHP + WP 4.4+ Updated Aug 9, 2016

authorizedauthorized-retailerauthorized-storemerchant-sealtrust-seal

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Authorized Store Seal Safe to Use in 2026?

Generally Safe

Score 85/100

Authorized Store Seal has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The "authorized-store-seal" v1.0.0 plugin exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices by utilizing prepared statements for all SQL queries and shows a commitment to using nonces and capability checks for some entry points. The absence of critical or high-severity taint flows and a clean vulnerability history are also strong indicators of a well-developed plugin.

However, significant concerns arise from the static analysis. The presence of an unprotected AJAX handler represents a direct attack vector. Furthermore, a substantial portion of the plugin's output is not properly escaped, which could lead to Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not handled with sufficient sanitization before being displayed. The plugin's reliance on external HTTP requests also introduces potential risks, although the analysis doesn't detail the nature of these requests.

In conclusion, while the plugin's SQL handling and lack of historical vulnerabilities are commendable, the unprotected AJAX endpoint and the high rate of unescaped output present notable security weaknesses that require immediate attention. Addressing these specific code-level issues would significantly improve the plugin's overall security.

Key Concerns

Unprotected AJAX handler
High percentage of unescaped output

Vulnerabilities

None known

Authorized Store Seal Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Authorized Store Seal Release Timeline

No version history available.

Code Analysis

Analyzed Mar 17, 2026

Authorized Store Seal Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

176

53 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

23% escaped229 total outputs

Data Flows · Security

2 unsanitized

Data Flow Analysis

3 flows2 with unsanitized paths

cminds_system_info_content (package\cminds-free.php:2357)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Authorized Store Seal Attack Surface

Entry Points6

Unprotected1

AJAX Handlers 1

authwp_ajax_cm-submit-uninstall-reasonpackage\cminds-free.php:109

Shortcodes 5

[authorizedstore] authorizedstore.php:55

[cminds_free_ads] package\cminds-free.php:50

[cminds_free_author] package\cminds-free.php:51

[cminds_free_registration] package\cminds-free.php:52

[cminds_free_guide] package\cminds-free.php:53

WordPress Hooks 32

actionwp_enqueue_scriptsauthorizedstore.php:48

actionwp_headauthorizedstore.php:49

actionwp_footerauthorizedstore.php:50

actionadmin_menuauthorizedstore.php:52

actionplugins_loadedauthorizedstore.php:53

actionwidgets_initauthorizedstore.php:56

actionplugins_loadedauthorizedstore.php:196

actionadmin_initpackage\cminds-api.php:116

actionadmin_initpackage\cminds-api.php:117

actionadmin_initpackage\cminds-api.php:120

actionadmin_initpackage\cminds-api.php:121

actionadmin_initpackage\cminds-api.php:122

actionadmin_noticespackage\cminds-api.php:123

actionupgrader_pre_downloadpackage\cminds-api.php:129

filterpre_set_site_transient_update_pluginspackage\cminds-api.php:130

filterplugins_apipackage\cminds-api.php:131

actionhttp_api_curlpackage\cminds-api.php:143

filterpre_set_site_transient_update_pluginspackage\cminds-api.php:294

actionhttp_api_curlpackage\cminds-api.php:616

actionactivated_pluginpackage\cminds-free.php:27

actionadmin_initpackage\cminds-free.php:28

actionadmin_initpackage\cminds-free.php:29

actionadmin_menupackage\cminds-free.php:30

actionadmin_enqueue_scriptspackage\cminds-free.php:31

actionadmin_enqueue_scriptspackage\cminds-free.php:32

actioncminds_download_sysinfopackage\cminds-free.php:45

actioninitpackage\cminds-free.php:47

actioninitpackage\cminds-free.php:48

filterplugin_row_metapackage\cminds-free.php:55

actionadmin_footerpackage\cminds-free.php:116

filterwp_mail_content_typepackage\cminds-free.php:229

filterwp_mail_content_typepackage\cminds-free.php:1856

Maintenance & Trust

Authorized Store Seal Maintenance & Trust

Maintenance Signals

WordPress version tested4.7.33

Last updatedAug 9, 2016

PHP min version

Downloads2K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Authorized Store Seal Alternatives

TrustedSite

trustedsite

100

Trust badges to increase sales.

20K No CVEs

KolorWeb Access Admin Notification: extreme rescue for unauthorized admin logins

kolorweb-access-admin-notification

Extreme rescue for unauthorized admin logins.

70 No CVEs

Safe.Shop

safeshop

Safe.Shop allows you to shop online with confidence around the world. We certify online shops according to the Global Code of Conduct which means that …

10 No CVEs

WishList Member: Show All Levels

wishlist-member-show-all-levels

Provides a shortcode that outputs all levels a member is allowed to access.

10 No CVEs

Layaway Invoice

layaway-invoice

Layaway Plugin enables partial payments. This free version will allow (3) layaway invoice to be created. In order to upgrade to the full version, plea …

0 No CVEs

Developer Profile

Authorized Store Seal Developer Profile

CreativeMindsSolutions

19 plugins · 22K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

535 days

View full developer profile

Detection Fingerprints

How We Detect Authorized Store Seal

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/authorized-store-seal/showads.js/wp-content/plugins/authorized-store-seal/cm-tiny-adblock-detector.js

HTML / DOM Fingerprints

CSS Classes

show-only-when-adblockhide-only-when-adblock

Shortcode Output

[authorizedstore][cminds_free_author

FAQ