Does AZEXO Store Locator have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is AZEXO Store Locator compatible with WordPress 5.2.24?

According to WordPress.org data, AZEXO Store Locator 1.4 has been tested up to WordPress 5.2.24. Check the plugin's changelog for the latest compatibility information.

How often is AZEXO Store Locator updated?

AZEXO Store Locator was last updated on Jun 22, 2020. Frequent updates are generally a positive security signal.

What is AZEXO Store Locator's security score?

AZEXO Store Locator has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AZEXO Store Locator Security & Risk Analysis

wordpress.org/plugins/azexo-store-locator

Store locator plugin with easy to use mobile version.

10 active installs v1.4 PHP + WP 4.4+ Updated Jun 22, 2020

bracheslocationsstore-finderstore-locatorstores

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is AZEXO Store Locator Safe to Use in 2026?

Generally Safe

Score 85/100

AZEXO Store Locator has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago

Risk Assessment

The azexo-store-locator plugin v1.4 exhibits a mixed security posture. On the positive side, it demonstrates strong practices regarding SQL queries, utilizing prepared statements exclusively, and generally good output escaping. The absence of known CVEs and external HTTP requests further contributes to its perceived stability. However, a significant concern arises from the large attack surface, particularly the high number of AJAX handlers that lack authentication checks. This presents a direct pathway for unauthenticated attackers to interact with potentially sensitive plugin functionalities. Additionally, the taint analysis reveals two high-severity flows with unsanitized paths, indicating potential for vulnerabilities that could be exploited through user-controlled input, even if these have not yet manifested as publicly known CVEs. While the lack of historical vulnerabilities is encouraging, it does not negate the risks identified in the static analysis. Overall, the plugin has solid coding fundamentals but requires immediate attention to its unauthenticated AJAX endpoints and the identified taint flows to improve its security.

Key Concerns

9 AJAX handlers without auth checks
2 high severity unsanitized taint flows
Bundled library (DataTables)

Vulnerabilities

None known

AZEXO Store Locator Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

AZEXO Store Locator Release Timeline

No version history available.

Code Analysis

Analyzed Apr 16, 2026

AZEXO Store Locator Code Analysis

Dangerous Functions

Raw SQL Queries

8 prepared

Unescaped Output

160 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

DataTables

SQL Query Safety

100% prepared8 total queries

Output Escaping

92% escaped174 total outputs

Data Flows · Security

5 unsanitized

Data Flow Analysis

5 flows5 with unsanitized paths

azt_get_items (azexo-store-locator.php:252)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

9 unprotected

AZEXO Store Locator Attack Surface

Entry Points10

Unprotected9

AJAX Handlers 9

authwp_ajax_azt_save_fieldsazexo-store-locator.php:218

authwp_ajax_azt_get_itemsazexo-store-locator.php:250

authwp_ajax_azt_add_update_itemazexo-store-locator.php:302

authwp_ajax_azt_duplicate_itemazexo-store-locator.php:360

authwp_ajax_azt_delete_itemazexo-store-locator.php:369

authwp_ajax_azt_save_settingsazexo-store-locator.php:378

authwp_ajax_azt_items_importazexo-store-locator.php:397

authwp_ajax_azt_geocodingazexo-store-locator.php:530

authwp_ajax_azt_items_removeazexo-store-locator.php:572

Shortcodes 1

[azexo-map] azexo-store-locator.php:677

WordPress Hooks 32

actiontgmpa_registerazexo-store-locator.php:21

actionwp_enqueue_scriptsazexo-store-locator.php:32

actionadmin_enqueue_scriptsazexo-store-locator.php:49

actionadmin_menuazexo-store-locator.php:68

actionazt_get_frontend_objectazexo-store-locator.php:229

actioninitazexo-store-locator.php:608

actioninitazh.php:3

actionwp_enqueue_scriptsazh.php:44

actioninittgm/class-tgm-plugin-activation.php:268

filterload_textdomain_mofiletgm/class-tgm-plugin-activation.php:269

actioninittgm/class-tgm-plugin-activation.php:272

actionadmin_menutgm/class-tgm-plugin-activation.php:421

actionadmin_headtgm/class-tgm-plugin-activation.php:422

filterinstall_plugin_complete_actionstgm/class-tgm-plugin-activation.php:425

filterupdate_plugin_complete_actionstgm/class-tgm-plugin-activation.php:426

actionadmin_noticestgm/class-tgm-plugin-activation.php:429

actionadmin_inittgm/class-tgm-plugin-activation.php:430

actionadmin_enqueue_scriptstgm/class-tgm-plugin-activation.php:431

actionload-plugins.phptgm/class-tgm-plugin-activation.php:436

actionswitch_themetgm/class-tgm-plugin-activation.php:439

actionswitch_themetgm/class-tgm-plugin-activation.php:442

actionadmin_inittgm/class-tgm-plugin-activation.php:447

actionswitch_themetgm/class-tgm-plugin-activation.php:452

actionload_textdomain_mofiletgm/class-tgm-plugin-activation.php:475

filterupgrader_source_selectiontgm/class-tgm-plugin-activation.php:881

actionplugins_loadedtgm/class-tgm-plugin-activation.php:2104

filtertgmpa_table_data_itemstgm/class-tgm-plugin-activation.php:2228

filterupgrader_source_selectiontgm/class-tgm-plugin-activation.php:2969

actionadmin_inittgm/class-tgm-plugin-activation.php:3139

actionupgrader_process_completetgm/class-tgm-plugin-activation.php:3234

filterupgrader_post_installtgm/class-tgm-plugin-activation.php:3293

filterupgrader_post_installtgm/class-tgm-plugin-activation.php:3438

Maintenance & Trust

AZEXO Store Locator Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24

Last updatedJun 22, 2020

PHP min version

Downloads1K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

AZEXO Store Locator Alternatives

Store Locator for WordPress📍

storelocator

100

Create a store locator for your website in minutes. Add all the store locations in google sheets and embed map on your website.

1K No CVEs

PTI Store Locator

pti-store-locator

100

Display multiple store or branch locations on Google Maps with search, filters, and customizable info windows.

0 No CVEs

Store Locator for WordPress Posts

wp-post-store-locator

This is a wordpress store locator plugin for posts. We can setup stores for individual posts/products.

0 No CVEs

WP Store Locator

wp-store-locator

An easy to use location management system that enables users to search for nearby physical stores.

50K 2 CVEs

Store Locator WordPress

agile-store-locator

Agile Store Locator is a premium store finder plugin designed to offer you immediate access to all the best stores in your local area.

10K 8 CVEs

Developer Profile

AZEXO Store Locator Developer Profile

azexo

12 plugins · 150 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect AZEXO Store Locator

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/azexo-store-locator/css/dashboard.css/wp-content/plugins/azexo-store-locator/js/infobox.js/wp-content/plugins/azexo-store-locator/js/markerclusterer.js/wp-content/plugins/azexo-store-locator/js/richmarker.js/wp-content/plugins/azexo-store-locator/js/air-datepicker.js/wp-content/plugins/azexo-store-locator/css/air-datepicker.css/wp-content/plugins/azexo-store-locator/js/jquery.dataTables.js/wp-content/plugins/azexo-store-locator/js/jquery.simplemodal.js+3 more

Script Paths

/wp-content/plugins/azexo-store-locator/js/infobox.js/wp-content/plugins/azexo-store-locator/js/markerclusterer.js/wp-content/plugins/azexo-store-locator/js/richmarker.js/wp-content/plugins/azexo-store-locator/js/air-datepicker.js/wp-content/plugins/azexo-store-locator/js/jquery.dataTables.js/wp-content/plugins/azexo-store-locator/js/jquery.simplemodal.js+3 more

Version Parameters

azexo-store-locator/css/dashboard.css?ver=azexo-store-locator/js/infobox.js?ver=azexo-store-locator/js/markerclusterer.js?ver=azexo-store-locator/js/richmarker.js?ver=azexo-store-locator/js/air-datepicker.js?ver=azexo-store-locator/css/air-datepicker.css?ver=azexo-store-locator/js/jquery.dataTables.js?ver=azexo-store-locator/js/jquery.simplemodal.js?ver=azexo-store-locator/js/liquid.js?ver=azexo-store-locator/js/dashboard.js?ver=azexo-store-locator/js/wp.js?ver=

HTML / DOM Fingerprints

CSS Classes

azt-map-credits

Data Attributes

data-gmap_api_key

JS Globals

azt

FAQ