WP-Safety

Autocomplete Google Address Security & Risk Analysis

wordpress.org/plugins/autocomplete-google-address

The #1 Google Address Autocomplete for WordPress. Visual point-and-click setup -- no coding needed. Works with WooCommerce, CF7, WPForms, Gravity Form …

2K active installs v5.3.2 PHP 7.2+ WP 5.4+ Updated Apr 10, 2026
address-validationcheckout-autocompletegoogle-address-autocompletemap-pickerwoocommerce-address
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Autocomplete Google Address Safe to Use in 2026?

Generally Safe

Score 100/100

Autocomplete Google Address has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

Based on the provided static analysis and vulnerability history, the 'autocomplete-google-address' plugin v4.0.0 exhibits a strong security posture with no recorded vulnerabilities or critical security flaws detected. The code analysis indicates good practices, with all SQL queries using prepared statements and a high percentage of output escaping. The presence of nonce and capability checks further enhances its security by protecting against common WordPress attacks. The absence of file operations and external HTTP requests reduces the potential for code injection and server-side vulnerabilities.

While the static analysis reveals a minimal attack surface with only one shortcode and no unprotected entry points, the lack of taint analysis data (0 flows analyzed) leaves a gap in understanding potential risks related to unsanitized user input. However, the overall lack of detected vulnerabilities and the implementation of security best practices suggest this plugin is likely secure for use. The clean vulnerability history further supports this, indicating a consistent focus on security by the developers.

Key Concerns

  • No critical taint flows detected
  • No raw SQL queries detected
  • High output escaping percentage
  • Nonce and capability checks present
  • No file operations detected
  • No external HTTP requests detected
  • No unprotected entry points
  • No known vulnerabilities (CVEs)
  • Bundled library Freemius v1.0 is outdated
  • Taint analysis data is not available
Vulnerabilities
None known

Autocomplete Google Address Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Autocomplete Google Address Release Timeline

v5.3.2Current
v5.3.1
v5.3.0
v5.2.2
v5.2.1
v5.2.0
v5.1.2
v5.1.1
v5.1.0
v5.0.0
v4.0.0
v3.0.8
v3.0.6
v3.0.5
v3.0.4
v3.0.3
v3.0.2
v3.0.1
v3.0.0
v2.0.3
Code Analysis
Analyzed Mar 16, 2026

Autocomplete Google Address Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
13
70 escaped
Nonce Checks
1
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
1

Bundled Libraries

Freemius1.0

Output Escaping

84% escaped83 total outputs
Attack Surface

Autocomplete Google Address Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[aga_form] includes\class-aga-plugin.php:209
WordPress Hooks 16
actioninitincludes\class-aga-forms.php:9
actionadd_meta_boxesincludes\class-aga-forms.php:13
actionplugins_loadedincludes\class-aga-plugin.php:155
actionadmin_enqueue_scriptsincludes\class-aga-plugin.php:172
actionadmin_enqueue_scriptsincludes\class-aga-plugin.php:173
actionadmin_menuincludes\class-aga-plugin.php:174
actionadmin_initincludes\class-aga-plugin.php:177
actioninitincludes\class-aga-plugin.php:180
actionadd_meta_boxesincludes\class-aga-plugin.php:181
actionsave_post_aga_formincludes\class-aga-plugin.php:182
filtermanage_aga_form_posts_columnsincludes\class-aga-plugin.php:183
actionmanage_aga_form_posts_custom_columnincludes\class-aga-plugin.php:184
actionwp_enqueue_scriptsincludes\class-aga-plugin.php:200
actionwp_footerincludes\class-aga-plugin.php:203
actionwp_footerincludes\class-aga-plugin.php:204
filterscript_loader_tagincludes\class-aga-plugin.php:206
Maintenance & Trust

Autocomplete Google Address Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedApr 10, 2026
PHP min version7.2
Downloads76K

Community Trust

Rating80/100
Number of ratings25
Active installs2K
Alternatives

Autocomplete Google Address Alternatives

Checkout Address AutoFill For WooCommerce

Checkout Address AutoFill For WooCommerce

checkout-address-autofill-for-woocommerce

A
85

Checkout Address AutoFill For WooCommerce is a WooCommerce add-on which allows your user to autofill both Billing and Shipping address fields in the c …

400 No CVEs
Multi-Carrier Shippo Shipping Rates & Address Validation for WooCommerce

Multi-Carrier Shippo Shipping Rates & Address Validation for WooCommerce

wc-shippo-shipping

A
100

Multi-Carrier Shippo shipping plugin for WooCommerce displays live shipping rates at cart / checkout pages, validates shipping address.

2K No CVEs
Autocomplete Location Field for Contact Form 7

Autocomplete Location Field for Contact Form 7

autocomplete-location-field-contact-form-7

A
100

Add Google Places Autocomplete address field to Contact Form 7. Enable automatic address suggestions using Google Maps API for faster and more accurat …

1K 1 CVE
Address Validation and Autocomplete for WooCommerce | Addressfinder

Address Validation and Autocomplete for WooCommerce | Addressfinder

addressfinder-woo

A
100

Prevent failed deliveries and streamline checkout with verified address autocomplete for Australian and New Zealand WooCommerce stores.

900 No CVEs
ELEX WooCommerce Address Validation & Google Address Autocomplete Plugin

ELEX WooCommerce Address Validation & Google Address Autocomplete Plugin

address-validation-address-auto-complete

A
100

Simple and easy to use address validation & google address autocomplete plugin. Uses EasyPost, UPS, USPS, AddressFinder & Google APIs.

700 No CVEs
Developer Profile

Autocomplete Google Address Developer Profile

Md Nishath Khandakar

2 plugins · 2K total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Autocomplete Google Address

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/autocomplete-google-address/admin/css/admin.css/wp-content/plugins/autocomplete-google-address/admin/js/admin.js
Script Paths
/wp-content/plugins/autocomplete-google-address/admin/js/admin.js
Version Parameters
autocomplete-google-address/admin/css/admin.css?ver=autocomplete-google-address/admin/js/admin.js?ver=

HTML / DOM Fingerprints

Data Attributes
data-noncedata-ajaxurl
JS Globals
aga_admin_data
FAQ

Frequently Asked Questions about Autocomplete Google Address