Does AwareID – Biometric Identity Authentication have any unpatched vulnerabilities?

No. All known vulnerabilities in AwareID – Biometric Identity Authentication have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AwareID – Biometric Identity Authentication compatible with WordPress 6.6.5?

According to WordPress.org data, AwareID – Biometric Identity Authentication 3.1.1 has been tested up to WordPress 6.6.5. Check the plugin's changelog for the latest compatibility information.

How often is AwareID – Biometric Identity Authentication updated?

AwareID – Biometric Identity Authentication was last updated on Jun 19, 2025. Frequent updates are generally a positive security signal.

What is AwareID – Biometric Identity Authentication's security score?

AwareID – Biometric Identity Authentication has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AwareID – Biometric Identity Authentication Security & Risk Analysis

wordpress.org/plugins/awareid-wc-integration

Secure app logins without passwords, facilitate trusted transactions & reduce chargebacks by enabling easy biometric enrollment & authentication.

10 active installs v3.1.1 PHP + WP 5.0+ Updated Jun 19, 2025

authenticationawareidbiometricsdocument-verificationenrollment

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is AwareID – Biometric Identity Authentication Safe to Use in 2026?

Generally Safe

Score 100/100

AwareID – Biometric Identity Authentication has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9mo ago

Risk Assessment

The "awareid-wc-integration" plugin v3.1.1 exhibits a generally good security posture with strong adherence to best practices in several key areas. The absence of any known CVEs, critical or high severity taint flows, raw SQL queries, or file operations is highly commendable and indicates a mature development process. The plugin also demonstrates robust output escaping and utilizes prepared statements for SQL, further strengthening its defenses. However, a notable concern lies in the presence of two AJAX handlers that lack authentication checks. While the overall attack surface is relatively small, these unprotected entry points represent a potential avenue for unauthorized actions. The plugin's vulnerability history, being clean, suggests a commitment to security, but the identified unprotected AJAX handlers warrant immediate attention to maintain this strong track record.

Key Concerns

AJAX handlers without authentication checks

Vulnerabilities

None known

AwareID – Biometric Identity Authentication Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

AwareID – Biometric Identity Authentication Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

133 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2

Output Escaping

99% escaped134 total outputs

Data Flows

3 unsanitized

Data Flow Analysis

4 flows3 with unsanitized paths

awareid_handle_pubkey_update (awareid-admin-console.php:895)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

AwareID – Biometric Identity Authentication Attack Surface

Entry Points15

Unprotected2

AJAX Handlers 8

authwp_ajax_update_pubkey_actionawareid-admin-console.php:893

authwp_ajax_test_awareid_serverawareid-admin-console.php:978

authwp_ajax_check_stateawareid-geofencing.php:186

noprivwp_ajax_check_stateawareid-geofencing.php:187

authwp_ajax_check_button_statusawareid-verification-plugin.php:1050

noprivwp_ajax_check_button_statusawareid-verification-plugin.php:1051

noprivwp_ajax_awareid_check_email_existenceawareid-verification-plugin.php:1077

authwp_ajax_awareid_check_email_existenceawareid-verification-plugin.php:1078

REST API Routes 6

POST/wp-json/my_namespace/v1/validate-signature/awareid-verification-plugin.php:160

POST/wp-json/my_namespace/v1/add-faceawareid-verification-plugin.php:174

POST/wp-json/my_namespace/v1/check-watchlistawareid-verification-plugin.php:188

POST/wp-json/my_namespace/v1/add-documentawareid-verification-plugin.php:202

POST/wp-json/my_namespace/v1/verify-faceawareid-verification-plugin.php:216

POST/wp-json/my_namespace/v1/forward-requestawareid-verification-plugin.php:254

Shortcodes 1

[awareid_verification_form] awareid-verification-plugin.php:880

WordPress Hooks 28

actionadmin_enqueue_scriptsawareid-admin-console.php:125

actionadmin_menuawareid-admin-console.php:128

actionadmin_initawareid-admin-console.php:352

filterauthenticateawareid-geofencing.php:188

actionwoocommerce_checkout_processawareid-geofencing.php:202

actionplugins_loadedawareid-verification-plugin.php:41

actionwp_enqueue_scriptsawareid-verification-plugin.php:157

actionrest_api_initawareid-verification-plugin.php:159

actionrest_api_initawareid-verification-plugin.php:173

actionrest_api_initawareid-verification-plugin.php:187

actionrest_api_initawareid-verification-plugin.php:201

actionrest_api_initawareid-verification-plugin.php:215

actionrest_api_initawareid-verification-plugin.php:253

actiontemplate_redirectawareid-verification-plugin.php:647

actionwoocommerce_before_checkout_formawareid-verification-plugin.php:723

actionwp_footerawareid-verification-plugin.php:724

actionwp_footerawareid-verification-plugin.php:844

filterthe_contentawareid-verification-plugin.php:1133

filterget_pagesawareid-verification-plugin.php:1146

actionwoocommerce_proceed_to_checkoutawareid-verification-plugin.php:1177

actionwoocommerce_proceed_to_checkoutawareid-verification-plugin.php:1194

actiontemplate_redirectawareid-verification-plugin.php:1202

actionwoocommerce_review_order_before_submitawareid-verification-plugin.php:1298

actionwoocommerce_after_checkout_validationawareid-verification-plugin.php:1334

actionwoocommerce_checkout_order_processedawareid-verification-plugin.php:1349

filterwp_pre_insert_user_dataawareid-verification-plugin.php:1350

actionuser_registerawareid-verification-plugin.php:1386

actionwp_footerawareid-verification-plugin.php:1437

Maintenance & Trust

AwareID – Biometric Identity Authentication Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5

Last updatedJun 19, 2025

PHP min version

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

AwareID – Biometric Identity Authentication Alternatives

All-In-One Security (AIOS) – Security and Firewall

all-in-one-wp-security-and-firewall

Protect your website investment with All-In-One Security (AIOS) – a comprehensive and easy to use security plugin designed especially for WordPress.

1.0M 26 CVEs

Solid Security – Password, Two Factor Authentication, and Brute Force Protection

better-wp-security

Harden your site security with Login Security, Two-Factor Authentication (2FA), Vulnerability Scanner, Firewall, and more. Formerly iThemes Security.

700K 19 CVEs

Limit Login Attempts

limit-login-attempts

Limit rate of login attempts, including by way of cookies, for each IP. Fully customizable.

300K 3 CVEs

Two Factor

two-factor

100

Enable Two-Factor Authentication (2FA) using time-based one-time passwords (TOTP), Universal 2nd Factor (U2F), email, and backup verification codes.

100K No CVEs

WP 2FA – Two-factor authentication for WordPress

wp-2fa

Get better WordPress login security; add two-factor authentication (2FA) for all your users with this easy-to-use plugin.

100K 9 CVEs

Developer Profile

AwareID – Biometric Identity Authentication Developer Profile

jhicksaware

1 plugin · 10 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect AwareID – Biometric Identity Authentication

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/awareid-wc-integration/styles/bootstrap.min.css/wp-content/plugins/awareid-wc-integration/js/bootstrap.bundle.min.js/wp-content/plugins/awareid-wc-integration/styles/fontawesome.css/wp-content/plugins/awareid-wc-integration/js/custom-verification.js/wp-content/plugins/awareid-wc-integration/js/regula.js/wp-content/plugins/awareid-wc-integration/styles/styles.css/wp-content/plugins/awareid-wc-integration/js/main.js/wp-content/plugins/awareid-wc-integration/js/disable-checkout.js+1 more

Script Paths

js/bootstrap.bundle.min.jsjs/custom-verification.jsjs/regula.jsjs/main.jsjs/disable-checkout.jsjs/registration-verification.js

Version Parameters

awareid-wc-integration/styles/bootstrap.min.css?ver=awareid-wc-integration/js/bootstrap.bundle.min.js?ver=awareid-wc-integration/styles/fontawesome.css?ver=awareid-wc-integration/js/custom-verification.js?ver=awareid-wc-integration/js/regula.js?ver=awareid-wc-integration/styles/styles.css?ver=awareid-wc-integration/js/main.js?ver=awareid-wc-integration/js/disable-checkout.js?ver=awareid-wc-integration/js/registration-verification.js?ver=

HTML / DOM Fingerprints

CSS Classes

aware-verification-buttonawareid-verification-container

Data Attributes

data-awareid-domaindata-awareid-realmdata-awareid-public-key

JS Globals

verification_paramspluginDatauserData

REST Endpoints

/my_namespace/v1/validate-signature//my_namespace/v1/add-face/my_namespace/v1/check-watchlist/my_namespace/v1/add-document/my_namespace/v1/verify-face/my_namespace/v1/forward-request

FAQ