CarQuery API Vehicle Data Security & Risk Analysis
wordpress.org/plugins/carquery-apiUse simple short codes to display auto-populating dropdowns for vehicle Year, Make, Model, and trim on your site from CarQuery API database.
Is CarQuery API Vehicle Data Safe to Use in 2026?
Generally Safe
Score 85/100CarQuery API Vehicle Data has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The carquery-api plugin version 1.6 exhibits a strong security posture based on the provided static analysis. The absence of dangerous functions, SQL queries without prepared statements, and the complete output escaping indicate excellent coding practices. Furthermore, the lack of file operations, external HTTP requests, and the thorough use of capability checks and nonce checks (where applicable, though none are directly reported as entry points) significantly reduce the potential for common web vulnerabilities. The plugin's vulnerability history is also clean, with no recorded CVEs, suggesting a history of stable and secure development.
While the static analysis reveals no immediate vulnerabilities or concerning code signals, the presence of 5 shortcodes represents a potential attack surface. Although the report states 0 unprotected entry points, the sheer number of shortcodes, without explicit details on their authorization checks, warrants a closer look. In the absence of any known vulnerabilities in its history, the overall risk for carquery-api v1.6 appears to be low. However, the presence of multiple shortcodes without explicit mention of their security implementation remains a minor area of consideration for future audits.
Key Concerns
- Multiple shortcodes present potential attack surface
CarQuery API Vehicle Data Security Vulnerabilities
CarQuery API Vehicle Data Code Analysis
CarQuery API Vehicle Data Attack Surface
Shortcodes 5
WordPress Hooks 2
Maintenance & Trust
CarQuery API Vehicle Data Maintenance & Trust
Maintenance Signals
Community Trust
CarQuery API Vehicle Data Alternatives
VikRentCar Car Rental Management System
vikrentcar
Robust Car Rental Management System for any kind of vechicles. The most reliable booking solution for managing vehicles rentals through your website.
Rapid Car Check Vehicle Data
free-vehicle-data-uk
Add instant vehicle lookup to your website in minutes with the Rapid Car Check WordPress plugin – a fast, simple way to enable number plate searches w …
RentSyst – CRM solution for fleet management
rentsyst
RentSyst - this plugin is suitable for the car rental business, which is designed to organize, optimize and simplify the work of the company.
Autocerfa Connector
stock-car-listing-from-autocerfa
Now you can display all stock cars on your own website from autocerfa in a few minutes.
Automotive Inventory Importer – Sync Car Dealer Feeds
automotive-feed-import
Automatically update your car inventory on your website. No manual entry needed. Stop wasting hours uploading cars one by one.
CarQuery API Vehicle Data Developer Profile
1 plugin · 100 total installs
How We Detect CarQuery API Vehicle Data
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/carquery-api/js/carquery.0.3.4.jsHTML / DOM Fingerprints
id="cq-year"id="cq-make"id="cq-model"id="cq-trim"id="cq-show-data"id="car-model-data"+30 morevar carquery = new CarQuery();<select name="cq-year" id="cq-year"></select><input id="cq-show-data" type="button" value="Show Data"/>
<div id="car-model-data"> </div><select name="cq-make" id="cq-make"></select><select name="cq-model" id="cq-model"></select>