ACME Amazing Search Security & Risk Analysis
wordpress.org/plugins/acme-amazing-searchAcme Amazing Search is a simple google style ultra fast search engine that allows you to search anything inside WordPress.
Is ACME Amazing Search Safe to Use in 2026?
Generally Safe
Score 85/100ACME Amazing Search has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The plugin 'acme-amazing-search' v2.0.13 exhibits a mixed security posture. On the positive side, it demonstrates strong practices regarding SQL query handling, exclusively using prepared statements and has no recorded vulnerability history, suggesting a generally stable and secure codebase. The absence of external HTTP requests and critical taint flows is also reassuring.
However, significant concerns arise from its attack surface and a lack of robust access controls. The presence of one unprotected AJAX handler is a direct entry point that could be exploited if it handles user-supplied data without proper sanitization or authorization. Furthermore, the complete absence of nonce checks and capability checks across its entry points indicates a broader systemic weakness in securing actions performed by the plugin.
While the vulnerability history is clean, this should not lead to complacency given the identified code-level risks. The unescaped output percentage is also a notable concern, potentially leading to cross-site scripting (XSS) vulnerabilities. The overall assessment is that while the plugin has some good foundational security practices, the unprotected AJAX handler and the lack of security checks create exploitable weaknesses that need immediate attention.
Key Concerns
- Unprotected AJAX handler
- Missing nonce checks
- Missing capability checks
- Low output escaping percentage
ACME Amazing Search Security Vulnerabilities
ACME Amazing Search Code Analysis
SQL Query Safety
Output Escaping
ACME Amazing Search Attack Surface
AJAX Handlers 1
Shortcodes 1
WordPress Hooks 16
Scheduled Events 1
Maintenance & Trust
ACME Amazing Search Maintenance & Trust
Maintenance Signals
Community Trust
ACME Amazing Search Alternatives
Ivory Search – WordPress Search Plugin
add-search-to-menu
Advanced WordPress custom search plugin. Provides Search Form Customizer, WooCommerce Search, AJAX Search & Live Search support!
FiboSearch – Ajax Search for WooCommerce
ajax-search-for-woocommerce
The most popular WooCommerce product search plugin. Gives your users a well-designed advanced AJAX search bar with live search suggestions.
Smart WooCommerce Search
smart-woocommerce-search
Ideal Product Search plugin for WooCommerce shops that enhances users' experience with a live search feature.
Jetpack Search
jetpack-search
Easily add cloud-powered instant search and filters to your website or WooCommerce store with advanced algorithms that boost your search results based …
Advanced Product Search For WooCommerce
advanced-product-search-for-woo
Popup Cart Lite for WooCommerce for WooCommerce plugin that displays popup cart for add to cart action.
ACME Amazing Search Developer Profile
3 plugins · 430 total installs
How We Detect ACME Amazing Search
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/acme-amazing-search/css/acme-amazing-search-admin.css/wp-content/plugins/acme-amazing-search/js/acme-amazing-search-admin.js/wp-content/plugins/acme-amazing-search/js/acme-amazing-search-admin.jsacme-amazing-search-admin.css?ver=acme-amazing-search-admin.js?ver=HTML / DOM Fingerprints
<!-- BEGIN ACME AMAZING SEARCH SHORTCODE --><!-- END ACME AMAZING SEARCH SHORTCODE -->data-ajax-urldata-search-results-limitaas_search_params<div class="aas-search-form-wrapper"><input type="text" class="aas-search-input" placeholder="Search..." /><button class="aas-search-button">Search</button><div class="aas-search-results"></div>