WP-Safety

Flixy – Review & Product Boxes For Affiliate Pages Security & Risk Analysis

wordpress.org/plugins/flixy-review-product-boxes-for-affiliate-pages

Flixy Boxes is simple, responsive wordpress plugin for creating responsive Review/Product box. The Flixy Boxes feature lets you promote specific produ …

10 active installs v2.0 PHP + WP 4.0+ Updated Feb 18, 2022
affiliateaffiliate-toolsamazonboxestop-pick
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Flixy – Review & Product Boxes For Affiliate Pages Safe to Use in 2026?

Generally Safe

Score 85/100

Flixy – Review & Product Boxes For Affiliate Pages has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago
Risk Assessment

The plugin "flixy-review-product-boxes-for-affiliate-pages" v2.0 exhibits a generally good security posture based on the provided static analysis and vulnerability history. The absence of known CVEs and a lack of critical or high-severity findings in taint analysis are positive indicators. The code also demonstrates good practices by utilizing prepared statements for all SQL queries and implementing nonce and capability checks on its identified entry points, ensuring a controlled interaction with WordPress functionalities.

However, a significant concern arises from the low percentage of properly escaped output (11%). This indicates a substantial risk of Cross-Site Scripting (XSS) vulnerabilities, as user-supplied data or data processed by the plugin might not be adequately sanitized before being displayed to users. While the attack surface is small and appears to be protected, the lack of comprehensive output escaping is a critical weakness that could be exploited to inject malicious scripts into the site.

In conclusion, the plugin benefits from a clean vulnerability history and the secure handling of its entry points and database interactions. Nonetheless, the widespread issue with output escaping presents a clear and present danger. Prioritizing the implementation of proper output escaping mechanisms is paramount to mitigating the risk of XSS attacks and significantly improving the plugin's overall security.

Key Concerns

  • Low percentage of properly escaped output
Vulnerabilities
None known

Flixy – Review & Product Boxes For Affiliate Pages Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Flixy – Review & Product Boxes For Affiliate Pages Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
282
34 escaped
Nonce Checks
2
Capability Checks
2
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

11% escaped316 total outputs
Attack Surface

Flixy – Review & Product Boxes For Affiliate Pages Attack Surface

Entry Points3
Unprotected0

AJAX Handlers 1

authwp_ajax_fab_notify_dismiss_messageincludes\admin\core\im-fab-functions.php:619

Shortcodes 2

[HARSHAL] includes\shortcode\im-fab-shortcode.php:4
[Flixy-Boxes] includes\shortcode\im-fab-shortcode.php:5
WordPress Hooks 13
actionplugins_loadedflixy-review-product-boxes-for-affiliate-pages.php:36
actionadmin_menuflixy-review-product-boxes-for-affiliate-pages.php:43
actionadmin_enqueue_scriptsflixy-review-product-boxes-for-affiliate-pages.php:44
actionwp_enqueue_scriptsflixy-review-product-boxes-for-affiliate-pages.php:46
actionadd_meta_boxesincludes\admin\core\im-fab-functions.php:5
actionsave_postincludes\admin\core\im-fab-functions.php:279
filterredirect_post_locationincludes\admin\core\im-fab-functions.php:346
actionadmin_noticesincludes\admin\core\im-fab-functions.php:357
filtermenu_orderincludes\admin\core\im-fab-functions.php:450
actionadmin_noticesincludes\admin\core\im-fab-functions.php:508
filtermanage_edit-fab_columnsincludes\admin\core\im-fab-post-types.php:61
actionmanage_fab_posts_custom_columnincludes\admin\core\im-fab-post-types.php:62
actioninitincludes\admin\core\im-fab-post-types.php:71
Maintenance & Trust

Flixy – Review & Product Boxes For Affiliate Pages Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13
Last updatedFeb 18, 2022
PHP min version
Downloads1K

Community Trust

Rating100/100
Number of ratings3
Active installs10
Alternatives

Flixy – Review & Product Boxes For Affiliate Pages Alternatives

Advanced Ads – Ad Manager & AdSense

Advanced Ads – Ad Manager & AdSense

advanced-ads

A
88

The only complete toolkit for all ad types. Grow your revenue with AdSense, Amazon—or any affiliate network. Get pinpoint targeting and best support!

100K 8 CVEs
ThirstyAffiliates – Affiliate Links, Link Branding, Link Tracking & Marketing Plugin

ThirstyAffiliates – Affiliate Links, Link Branding, Link Tracking & Marketing Plugin

thirstyaffiliates

A
95

🔗 Affiliate link management & cloaker tool. Easily manage, shrink and track your affiliate links in WordPress. 🔥

30K 5 CVEs
AffiliateX – Amazon Affiliate Plugin

AffiliateX – Amazon Affiliate Plugin

affiliatex

A
96

AffiliateX is the best WordPress Amazon Affiliate Plugin. Create professional affiliate websites with customizable WordPress Amazon Affiliate Blocks.

10K 3 CVEs
Simple URLs – Link Cloaking, Product Displays, and Affiliate Link Management

Simple URLs – Link Cloaking, Product Displays, and Affiliate Link Management

simple-urls

A
98

Simple URLs helps you to manage links, create product displays, and grow your affiliate marketing business.

4K 6 CVEs
affiliate-toolkit – Multi-Network Affiliate & Amazon Product Display

affiliate-toolkit – Multi-Network Affiliate & Amazon Product Display

affiliate-toolkit-starter

A
96

Fast & Compatible with every WordPress Theme: With our plugin for WordPress, you can easily create and add your affiliate products to your website.

3K 13 CVEs
Developer Profile

Flixy – Review & Product Boxes For Affiliate Pages Developer Profile

Ahmad Derar

2 plugins · 100 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Flixy – Review & Product Boxes For Affiliate Pages

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/flixy-review-product-boxes-for-affiliate-pages/assets/lib/font-awesome/css/font-awesome.min.css/wp-content/plugins/flixy-review-product-boxes-for-affiliate-pages/assets/lib/font-awesome/css/all.min.css/wp-content/plugins/flixy-review-product-boxes-for-affiliate-pages/templates/fab-template-1/css/frontend.css/wp-content/plugins/flixy-review-product-boxes-for-affiliate-pages/templates/fab-template-1/css/fab-template-1-style.css/wp-content/plugins/flixy-review-product-boxes-for-affiliate-pages/templates/fab-template-2/css/fab-template-2-style.css/wp-content/plugins/flixy-review-product-boxes-for-affiliate-pages/templates/fab-template-3/css/fab-template-3-style.css/wp-content/plugins/flixy-review-product-boxes-for-affiliate-pages/templates/fab-template-4/css/fab-template-4-style.css
Version Parameters
flixy-review-product-boxes-for-affiliate-pages/assets/lib/font-awesome/css/font-awesome.min.css?ver=flixy-review-product-boxes-for-affiliate-pages/assets/lib/font-awesome/css/all.min.css?ver=flixy-review-product-boxes-for-affiliate-pages/templates/fab-template-1/css/fab-template-1-style.css?ver=flixy-review-product-boxes-for-affiliate-pages/templates/fab-template-2/css/fab-template-2-style.css?ver=flixy-review-product-boxes-for-affiliate-pages/templates/fab-template-3/css/fab-template-3-style.css?ver=flixy-review-product-boxes-for-affiliate-pages/templates/fab-template-4/css/fab-template-4-style.css?ver=

HTML / DOM Fingerprints

CSS Classes
fab-template-1-wrapperfab-template-2-wrapperfab-template-3-wrapperfab-template-4-wrapperfab-title-wrapfab-tag-wrapfab-img-wrapfab-point-wrap+1 more
Data Attributes
data-fab-id
Shortcode Output
[flixy_boxes id=[flixy_boxes template=[flixy_boxes][flixy_boxes title=
FAQ

Frequently Asked Questions about Flixy – Review & Product Boxes For Affiliate Pages