WP-Safety

Easy Search Security & Risk Analysis

wordpress.org/plugins/easy-search

Zero configuration search block for the Gutenberg Editor.

10 active installs v1.2.3 PHP 7.0+ WP 5.0+ Updated Aug 25, 2023
ajax-searchautocompletegutenbergquick-searchsearch
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Easy Search Safe to Use in 2026?

Generally Safe

Score 85/100

Easy Search has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2yr ago
Risk Assessment

The 'easy-search' plugin version 1.2.3 exhibits a generally good security posture based on the provided static analysis. It effectively utilizes prepared statements for all SQL queries and demonstrates strong output escaping, with only a minimal percentage of outputs not properly escaped. The plugin also correctly implements nonce and capability checks for its single entry point, the shortcode.

Despite these strengths, there are a few areas of minor concern. The presence of one flow with an unsanitized path in the taint analysis, even without a critical or high severity, warrants attention. While no dangerous functions or file operations were detected, and there are no known vulnerabilities in its history, the plugin does make external HTTP requests, which can sometimes introduce risks if not handled securely. The absence of any recorded vulnerabilities is positive, suggesting a proactive approach to security by the developers or a lack of significant issues found to date.

Overall, 'easy-search' v1.2.3 appears to be a relatively secure plugin. The developers have implemented several key security best practices. However, the single taint flow with an unsanitized path is a potential weakness that should be investigated to ensure it doesn't lead to any exploitable issues. The plugin's clean vulnerability history is a strong indicator of its current security level.

Key Concerns

  • Flow with unsanitized path found
  • Minor unescaped output detected
Vulnerabilities
None known

Easy Search Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Easy Search Release Timeline

v1.2.3Current
v1.2.2
v1.2.1
v1.2.0
v1.1.0
v1.0.0
Code Analysis
Analyzed Mar 17, 2026

Easy Search Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
1
38 escaped
Nonce Checks
1
Capability Checks
1
File Operations
0
External Requests
2
Bundled Libraries
0

Output Escaping

97% escaped39 total outputs
Data Flows · Security
1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths
save_authentication (surror\dashboard\includes\class-dashboard.php:109)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Easy Search Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[easy_search] includes\class-block.php:27
WordPress Hooks 3
actionwp_footerincludes\class-block.php:24
actionadmin_footerincludes\class-block.php:25
actioninitincludes\class-block.php:26
Maintenance & Trust

Easy Search Maintenance & Trust

Maintenance Signals

WordPress version tested6.2.9
Last updatedAug 25, 2023
PHP min version7.0
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Easy Search Alternatives

Advanced Product Search For WooCommerce

Advanced Product Search For WooCommerce

advanced-product-search-for-woo

A
100

Popup Cart Lite for WooCommerce for WooCommerce plugin that displays popup cart for add to cart action.

4K No CVEs
SearchIQ – The Search Solution

SearchIQ – The Search Solution

searchiq

A
96

Our FREE plugin makes your website’s search fast and more relevant. searchIQ helps you to manage content more effectively with real-time analytics.

1K 7 CVEs
Super Ajax Search

Super Ajax Search

ajax-searchwp

A
100

Feature-rich live search with thumbnails, smart excerpts, result grouping, and category filtering.

30 No CVEs
Autocomplete Search

Autocomplete Search

autocomplete-search

A
100

Add an autocomplete search feature to your WordPress site.Search across posts,pages, and WooCommerce products with a fast,AJAX-powered search box.

10 No CVEs
Contexa AI Search

Contexa AI Search

contexa-ai-search

A
100

AI-powered WooCommerce search with autocomplete, typo tolerance, and smart recommendations.

0 No CVEs
Developer Profile

Easy Search Developer Profile

surror

5 plugins · 4K total installs

84
trust score
Avg Security Score
86/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Easy Search

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/easy-search/assets/css/style.css/wp-content/plugins/easy-search/assets/js/blocks.js/wp-content/plugins/easy-search/assets/js/frontend.js/wp-content/plugins/easy-search/assets/css/editor.css
Script Paths
/wp-content/plugins/easy-search/assets/js/frontend.js/wp-content/plugins/easy-search/assets/js/blocks.js
Version Parameters
/wp-content/plugins/easy-search/assets/css/style.css?ver=/wp-content/plugins/easy-search/assets/js/blocks.js?ver=/wp-content/plugins/easy-search/assets/js/frontend.js?ver=/wp-content/plugins/easy-search/assets/css/editor.css?ver=

HTML / DOM Fingerprints

CSS Classes
easy-searcheasy-search-input-wrapeasy-search-inputeasy-search-spinnereasy-search-closeeasy-search-resulteasy-search-no-docs-foundeasy-search-no-docs-found p
HTML Comments
Easy Shrotcode Markup
Data Attributes
data-subtype
JS Globals
EasySearchVars
REST Endpoints
/wp/v2/search/
Shortcode Output
<div class="easy-search"><div class="easy-search-input-wrap"><input type="text" data-subtypeclass="easy-search-input"
FAQ

Frequently Asked Questions about Easy Search