Does ElasticPress have any unpatched vulnerabilities?

No. All known vulnerabilities in ElasticPress have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is ElasticPress compatible with WordPress 6.8.5?

According to WordPress.org data, ElasticPress 5.3.2 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is ElasticPress compatible with PHP 7.4+?

ElasticPress requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is ElasticPress updated?

ElasticPress was last updated on Nov 21, 2025. Frequent updates are generally a positive security signal.

What is ElasticPress's security score?

ElasticPress has a WP-Safety security score of 95/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

ElasticPress Security & Risk Analysis

wordpress.org/plugins/elasticpress

A fast and flexible search and query engine for WordPress.

8K active installs v5.3.2 PHP 7.4+ WP 6.2+ Updated Nov 21, 2025

elasticsearchfuzzyperformancerelated-postssearch

A · Safe

CVEs total4

Unpatched0

Last CVEJun 6, 2024

Plugin page Download

Safety Verdict

Is ElasticPress Safe to Use in 2026?

Generally Safe

Score 95/100

ElasticPress has a strong security track record. Known vulnerabilities have been patched promptly.

4 known CVEsLast CVE: Jun 6, 2024Updated 4mo ago

Risk Assessment

The ElasticPress plugin version 5.3.2 exhibits a mixed security posture. While it demonstrates strong practices in SQL query sanitization and output escaping, with 90% of queries using prepared statements and 98% of outputs properly escaped, significant concerns arise from its attack surface. A notable number of AJAX handlers (3 out of 4) and REST API routes (10 out of 18) lack necessary authentication or permission checks, creating potential entry points for unauthorized actions. The plugin's vulnerability history, with four past CVEs including high-severity issues like Cross-Site Request Forgery, Improper Privilege Management, and Path Traversal, indicates a recurring pattern of security weaknesses that require careful management. Although there are no currently unpatched CVEs, the historical prevalence of these vulnerability types, particularly privilege escalation and path manipulation, suggests ongoing vigilance is crucial.

Key Concerns

Unprotected AJAX handlers
Unprotected REST API routes
History of High Severity CVEs
History of Medium Severity CVEs
File operations detected
External HTTP requests detected

Vulnerabilities

ElasticPress Security Vulnerabilities

CVEs by Year

1 CVE in 2021

2021

1 CVE in 2022

2022

1 CVE in 2023

2023

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

High

Medium

4 total CVEs

CVE-2024-35684medium · 4.3Cross-Site Request Forgery (CSRF)

ElasticPress <= 5.1.0 - Cross-Site Request Forgery

Jun 6, 2024 Patched in 5.1.1 (7d)

CVE-2023-28154high · 8.3Improper Privilege Management

webpack JS package <= 5.75.0 - Sandbox Bypass

Apr 11, 2023 Patched in 4.5.1 (287d)

WF-0315f5de-7a46-4e16-b080-557ddfd180a2-elasticpresshigh · 7.5Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Moment.js <= 2.29.1 - Directory Traversal

Apr 5, 2022 Patched in 4.2.0 (658d)

CVE-2021-4405medium · 4.3Cross-Site Request Forgery (CSRF)

ElasticPress <= 3.5.3 - Cross-Site Request Forgery Bypass

Mar 1, 2021 Patched in 3.5.4 (1058d)

Code Analysis

Analyzed Mar 16, 2026

ElasticPress Code Analysis

Dangerous Functions

Raw SQL Queries

28 prepared

Unescaped Output

557 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

90% prepared31 total queries

Output Escaping

98% escaped568 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<DidYouMean> (includes\classes\Feature\DidYouMean\DidYouMean.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

13 unprotected

ElasticPress Attack Surface

Entry Points22

Unprotected13

AJAX Handlers 4

authwp_ajax_ep_load_groupsincludes\classes\Screen\StatusReport.php:35

authwp_ajax_ep_save_featureincludes\dashboard.php:35

authwp_ajax_ep_notice_dismissincludes\dashboard.php:39

authwp_ajax_ep_site_adminincludes\dashboard.php:68

REST API Routes 18

POST/wp-json/elasticpress/v1weightingincludes\classes\Feature\Search\Weighting.php:416

GET/wp-json/elasticpress/v1commentsincludes\classes\REST\Comments.php:28

PUT/wp-json/elasticpress/v1featuresincludes\classes\REST\Features.php:28

GET/wp-json/elasticpress/v1meta-keysincludes\classes\REST\MetaKeys.php:37

GET/wp-json/elasticpress/v1facets/meta/keysincludes\classes\REST\MetaKeys.php:38

GET/wp-json/elasticpress/v1meta-rangeincludes\classes\REST\MetaRange.php:37

GET/wp-json/elasticpress/v1facets/meta-range/block-previewincludes\classes\REST\MetaRange.php:38

GET/wp-json/elasticpress/v1related-posts/(?P<id>[0-9]+)includes\classes\REST\RelatedPosts.php:37

GET/wp-json/wp/v2posts/(?P<id>[0-9]+)/relatedincludes\classes\REST\RelatedPosts.php:38

GET/wp-json/elasticpress/v1pointer_searchincludes\classes\REST\SearchOrdering.php:28

GET/wp-json/elasticpress/v1pointer_previewincludes\classes\REST\SearchOrdering.php:39

POST/wp-json/elasticpress/v1syncincludes\classes\REST\Sync.php:28

GET/wp-json/elasticpress/v1syncincludes\classes\REST\Sync.php:39

DELETE/wp-json/elasticpress/v1syncincludes\classes\REST\Sync.php:49

PUT/wp-json/elasticpress/v1synonymsincludes\classes\REST\Synonyms.php:28

GET/wp-json/elasticpress/v1taxonomiesincludes\classes\REST\Taxonomies.php:36

GET/wp-json/elasticpress/v1facets/taxonomiesincludes\classes\REST\Taxonomies.php:37

GET/wp-json/elasticpress/v1tokenincludes\classes\REST\Token.php:27

WordPress Hooks 354

actionadmin_noticeselasticpress.php:41

actionplugins_loadedelasticpress.php:228

actionplugins_loadedelasticpress.php:291

actioninitelasticpress.php:301

actionadmin_bar_menuincludes\classes\AdminBar.php:23

actionwp_enqueue_scriptsincludes\classes\AdminBar.php:24

actionadmin_enqueue_scriptsincludes\classes\AdminBar.php:25

actionwp_footerincludes\classes\AdminBar.php:26

actionadmin_footerincludes\classes\AdminBar.php:27

actionsave_post_wp_templateincludes\classes\BlockTemplateUtils.php:25

actionsave_post_wp_template_partincludes\classes\BlockTemplateUtils.php:26

actionswitch_themeincludes\classes\BlockTemplateUtils.php:27

filterpre_transient_ep_wpcli_sync_interruptedincludes\classes\Command.php:77

actionep_epio_wp_cli_set_autosuggestincludes\classes\Command.php:617

actionep_sync_put_mappingincludes\classes\Command.php:795

actionep_sync_put_mappingincludes\classes\Command.php:796

actionep_index_batch_new_attemptincludes\classes\Command.php:797

filterep_hostincludes\classes\Command.php:1127

filterep_index_prefixincludes\classes\Command.php:1145

filterhttp_api_debugincludes\classes\Command.php:1623

filterhttp_headers_useragentincludes\classes\Elasticsearch.php:1275

actionsave_post_elementor_libraryincludes\classes\ElementorUtils.php:30

actionacf/render_field_settingsincludes\classes\Feature\AcfRepeater\AcfRepeater.php:83

filterep_prepare_meta_allowed_protected_keysincludes\classes\Feature\AcfRepeater\AcfRepeater.php:84

filterep_prepare_meta_dataincludes\classes\Feature\AcfRepeater\AcfRepeater.php:85

actionwp_enqueue_scriptsincludes\classes\Feature\Autosuggest\Autosuggest.php:82

filterep_post_mappingincludes\classes\Feature\Autosuggest\Autosuggest.php:83

filterep_post_sync_argsincludes\classes\Feature\Autosuggest\Autosuggest.php:84

filterep_post_fuzziness_argincludes\classes\Feature\Autosuggest\Autosuggest.php:85

filterep_weighted_query_for_post_typeincludes\classes\Feature\Autosuggest\Autosuggest.php:86

filterep_saved_weighting_configurationincludes\classes\Feature\Autosuggest\Autosuggest.php:87

filterwpincludes\classes\Feature\Autosuggest\Autosuggest.php:88

filterep_pre_sync_indexincludes\classes\Feature\Autosuggest\Autosuggest.php:89

filterep_weighting_configurationincludes\classes\Feature\Autosuggest\Autosuggest.php:454

filterep_do_intercept_requestincludes\classes\Feature\Autosuggest\Autosuggest.php:456

filterposts_pre_queryincludes\classes\Feature\Autosuggest\Autosuggest.php:458

filterep_format_request_headersincludes\classes\Feature\Autosuggest\Autosuggest.php:687

filterep_format_request_headersincludes\classes\Feature\Autosuggest\Autosuggest.php:802

actioninitincludes\classes\Feature\Comments\Comments.php:68

actioninitincludes\classes\Feature\Comments\Comments.php:69

actionwidgets_initincludes\classes\Feature\Comments\Comments.php:70

actionrest_api_initincludes\classes\Feature\Comments\Comments.php:71

actionwp_enqueue_scriptsincludes\classes\Feature\Comments\Comments.php:72

filterwidget_types_to_hide_from_legacy_widget_blockincludes\classes\Feature\Comments\Comments.php:73

filterep_elasticpress_enabledincludes\classes\Feature\Comments\Comments.php:103

filterep_post_mappingincludes\classes\Feature\DidYouMean\DidYouMean.php:59

filterep_post_formatted_argsincludes\classes\Feature\DidYouMean\DidYouMean.php:60

filterep_integrate_search_queriesincludes\classes\Feature\DidYouMean\DidYouMean.php:61

actiontemplate_redirectincludes\classes\Feature\DidYouMean\DidYouMean.php:62

actionep_suggestionsincludes\classes\Feature\DidYouMean\DidYouMean.php:63

filterep_search_fieldsincludes\classes\Feature\Documents\Documents.php:55

filterep_index_request_pathincludes\classes\Feature\Documents\Documents.php:56

filterep_post_sync_argsincludes\classes\Feature\Documents\Documents.php:57

filterep_indexable_post_statusincludes\classes\Feature\Documents\Documents.php:58

filterep_bulk_index_request_pathincludes\classes\Feature\Documents\Documents.php:59

filterpre_get_postsincludes\classes\Feature\Documents\Documents.php:60

filterep_post_mappingincludes\classes\Feature\Documents\Documents.php:61

actionep_cli_put_mappingincludes\classes\Feature\Documents\Documents.php:62

actionep_dashboard_put_mappingincludes\classes\Feature\Documents\Documents.php:63

filterep_indexable_post_typesincludes\classes\Feature\Documents\Documents.php:64

filterep_searchable_post_typesincludes\classes\Feature\Documents\Documents.php:65

filterep_autosuggest_optionsincludes\classes\Feature\Documents\Documents.php:68

filterep_term_suggest_post_statusincludes\classes\Feature\Documents\Documents.php:69

filterep_weighting_fields_for_post_typeincludes\classes\Feature\Documents\Documents.php:71

filterep_weighting_default_post_type_weightsincludes\classes\Feature\Documents\Documents.php:72

filterep_ajax_wp_query_integrationincludes\classes\Feature\Documents\Documents.php:74

filterwidget_types_to_hide_from_legacy_widget_blockincludes\classes\Feature\Facets\Facets.php:126

actionep_valid_responseincludes\classes\Feature\Facets\Facets.php:127

actionwp_enqueue_scriptsincludes\classes\Feature\Facets\Facets.php:128

actionenqueue_block_editor_assetsincludes\classes\Feature\Facets\Facets.php:129

actionep_feature_box_settings_facetsincludes\classes\Feature\Facets\Facets.php:130

filterep_post_formatted_argsincludes\classes\Feature\Facets\Facets.php:131

actionpre_get_postsincludes\classes\Feature\Facets\Facets.php:132

filterep_post_filtersincludes\classes\Feature\Facets\Facets.php:133

actionrest_api_initincludes\classes\Feature\Facets\Facets.php:134

filterep_post_filtersincludes\classes\Feature\Facets\Facets.php:173

filterep_post_formatted_argsincludes\classes\Feature\Facets\Facets.php:198

actioninitincludes\classes\Feature\Facets\Types\Date\Block.php:29

actionwp_enqueue_scriptsincludes\classes\Feature\Facets\Types\Date\Block.php:30

actionwidgets_initincludes\classes\Feature\Facets\Types\Date\FacetType.php:33

filterep_facet_query_filtersincludes\classes\Feature\Facets\Types\Date\FacetType.php:34

filterep_facets_date_script_dataincludes\classes\Feature\Facets\Types\Date\FacetType.php:35

actioninitincludes\classes\Feature\Facets\Types\Meta\Block.php:30

actionenqueue_block_editor_assetsincludes\classes\Feature\Facets\Types\Meta\Block.php:31

filterep_facet_meta_fieldsincludes\classes\Feature\Facets\Types\Meta\Block.php:76

filterep_facet_query_filtersincludes\classes\Feature\Facets\Types\Meta\FacetType.php:35

filterep_facet_wp_query_aggs_facetincludes\classes\Feature\Facets\Types\Meta\FacetType.php:36

actionep_delete_postincludes\classes\Feature\Facets\Types\Meta\FacetType.php:38

actionep_after_index_postincludes\classes\Feature\Facets\Types\Meta\FacetType.php:39

actionep_after_bulk_indexincludes\classes\Feature\Facets\Types\Meta\FacetType.php:40

actionwidgets_initincludes\classes\Feature\Facets\Types\Meta\FacetType.php:42

actioninitincludes\classes\Feature\Facets\Types\MetaRange\Block.php:29

actionenqueue_block_editor_assetsincludes\classes\Feature\Facets\Types\MetaRange\Block.php:30

actionwp_enqueue_scriptsincludes\classes\Feature\Facets\Types\MetaRange\Block.php:31

filterep_facet_query_filtersincludes\classes\Feature\Facets\Types\MetaRange\FacetType.php:33

filterep_facet_wp_query_aggs_facetincludes\classes\Feature\Facets\Types\MetaRange\FacetType.php:34

actionwidgets_initincludes\classes\Feature\Facets\Types\MetaRange\FacetType.php:35

actioninitincludes\classes\Feature\Facets\Types\PostType\Block.php:30

filterep_facet_query_filtersincludes\classes\Feature\Facets\Types\PostType\FacetType.php:32

filterep_facet_wp_query_aggs_facetincludes\classes\Feature\Facets\Types\PostType\FacetType.php:33

actioninitincludes\classes\Feature\Facets\Types\Taxonomy\Block.php:30

actionenqueue_block_editor_assetsincludes\classes\Feature\Facets\Types\Taxonomy\Block.php:31

actionwidgets_initincludes\classes\Feature\Facets\Types\Taxonomy\FacetType.php:29

filterep_facet_query_filtersincludes\classes\Feature\Facets\Types\Taxonomy\FacetType.php:30

filterep_facet_wp_query_aggs_facetincludes\classes\Feature\Facets\Types\Taxonomy\FacetType.php:31

filterep_after_update_featureincludes\classes\Feature\InstantResults\InstantResults.php:174

filterep_formatted_argsincludes\classes\Feature\InstantResults\InstantResults.php:175

filterep_post_mappingincludes\classes\Feature\InstantResults\InstantResults.php:176

filterep_post_sync_argsincludes\classes\Feature\InstantResults\InstantResults.php:177

filterep_after_sync_indexincludes\classes\Feature\InstantResults\InstantResults.php:178

filterep_saved_weighting_configurationincludes\classes\Feature\InstantResults\InstantResults.php:179

actionpre_get_postsincludes\classes\Feature\InstantResults\InstantResults.php:180

actionwp_enqueue_scriptsincludes\classes\Feature\InstantResults\InstantResults.php:181

actionwp_footerincludes\classes\Feature\InstantResults\InstantResults.php:182

filterep_do_intercept_requestincludes\classes\Feature\InstantResults\InstantResults.php:307

filterep_is_integrated_requestincludes\classes\Feature\InstantResults\InstantResults.php:308

filterep_indexable_post_statusincludes\classes\Feature\ProtectedContent\ProtectedContent.php:63

filterep_indexable_post_typesincludes\classes\Feature\ProtectedContent\ProtectedContent.php:64

filterep_post_formatted_argsincludes\classes\Feature\ProtectedContent\ProtectedContent.php:65

filterep_index_posts_argsincludes\classes\Feature\ProtectedContent\ProtectedContent.php:66

filterep_post_sync_argsincludes\classes\Feature\ProtectedContent\ProtectedContent.php:67

filterep_post_sync_argsincludes\classes\Feature\ProtectedContent\ProtectedContent.php:68

filterep_search_post_return_argsincludes\classes\Feature\ProtectedContent\ProtectedContent.php:69

filterep_skip_autosave_syncincludes\classes\Feature\ProtectedContent\ProtectedContent.php:70

filterep_pre_kill_sync_for_password_protectedincludes\classes\Feature\ProtectedContent\ProtectedContent.php:71

filterep_admin_wp_query_integrationincludes\classes\Feature\ProtectedContent\ProtectedContent.php:74

actionpre_get_postsincludes\classes\Feature\ProtectedContent\ProtectedContent.php:75

filterep_post_query_db_argsincludes\classes\Feature\ProtectedContent\ProtectedContent.php:76

filterep_set_sortincludes\classes\Feature\ProtectedContent\ProtectedContent.php:77

filterep_post_formatted_argsincludes\classes\Feature\ProtectedContent\ProtectedContent.php:78

filterep_indexable_comment_statusincludes\classes\Feature\ProtectedContent\ProtectedContent.php:82

actionpre_get_commentsincludes\classes\Feature\ProtectedContent\ProtectedContent.php:83

actionwidgets_initincludes\classes\Feature\RelatedPosts\RelatedPosts.php:176

filterwidget_types_to_hide_from_legacy_widget_blockincludes\classes\Feature\RelatedPosts\RelatedPosts.php:177

filterep_formatted_argsincludes\classes\Feature\RelatedPosts\RelatedPosts.php:178

actioninitincludes\classes\Feature\RelatedPosts\RelatedPosts.php:179

actionrest_api_initincludes\classes\Feature\RelatedPosts\RelatedPosts.php:180

actioninitincludes\classes\Feature\Search\Search.php:102

filterep_elasticpress_enabledincludes\classes\Feature\Search\Search.php:118

filterep_formatted_argsincludes\classes\Feature\Search\Search.php:119

filterep_query_post_typeincludes\classes\Feature\Search\Search.php:120

actionwp_enqueue_scriptsincludes\classes\Feature\Search\Search.php:122

filterep_formatted_argsincludes\classes\Feature\Search\Search.php:123

filterep_highlighting_tagincludes\classes\Feature\Search\Search.php:124

actionep_highlighting_pre_add_highlightincludes\classes\Feature\Search\Search.php:125

actioninitincludes\classes\Feature\Search\Search.php:127

filterep_prepare_meta_allowed_keysincludes\classes\Feature\Search\Search.php:128

actionenqueue_block_editor_assetsincludes\classes\Feature\Search\Search.php:129

filterep_post_filtersincludes\classes\Feature\Search\Search.php:130

actionpost_submitbox_misc_actionsincludes\classes\Feature\Search\Search.php:131

actionedit_postincludes\classes\Feature\Search\Search.php:132

filterep_skip_query_integrationincludes\classes\Feature\Search\Search.php:133

actionattachment_submitbox_misc_actionsincludes\classes\Feature\Search\Search.php:135

actionedit_attachmentincludes\classes\Feature\Search\Search.php:136

filterget_the_excerptincludes\classes\Feature\Search\Search.php:290

filterep_highlighting_fieldsincludes\classes\Feature\Search\Search.php:291

actioninitincludes\classes\Feature\Search\Synonyms.php:106

actionadmin_menuincludes\classes\Feature\Search\Synonyms.php:109

actionadmin_enqueue_scriptsincludes\classes\Feature\Search\Synonyms.php:110

filterep_config_mappingincludes\classes\Feature\Search\Synonyms.php:113

actionrest_api_initincludes\classes\Feature\Search\Synonyms.php:116

actionadmin_menuincludes\classes\Feature\Search\Weighting.php:36

filterep_formatted_argsincludes\classes\Feature\Search\Weighting.php:37

filterep_query_weighting_fieldsincludes\classes\Feature\Search\Weighting.php:38

actionrest_api_initincludes\classes\Feature\Search\Weighting.php:39

actionadmin_menuincludes\classes\Feature\SearchOrdering\SearchOrdering.php:97

filterparent_fileincludes\classes\Feature\SearchOrdering\SearchOrdering.php:98

filtersubmenu_fileincludes\classes\Feature\SearchOrdering\SearchOrdering.php:99

actioninitincludes\classes\Feature\SearchOrdering\SearchOrdering.php:100

actionadmin_enqueue_scriptsincludes\classes\Feature\SearchOrdering\SearchOrdering.php:101

actionposts_resultsincludes\classes\Feature\SearchOrdering\SearchOrdering.php:103

actionrest_api_initincludes\classes\Feature\SearchOrdering\SearchOrdering.php:104

filterep_sync_taxonomiesincludes\classes\Feature\SearchOrdering\SearchOrdering.php:105

filterep_weighting_fields_for_post_typeincludes\classes\Feature\SearchOrdering\SearchOrdering.php:106

filterep_weighting_configuration_for_searchincludes\classes\Feature\SearchOrdering\SearchOrdering.php:107

filterep_weighting_configuration_for_autosuggestincludes\classes\Feature\SearchOrdering\SearchOrdering.php:108

filterep_weighting_configuration_defaults_for_autosuggestincludes\classes\Feature\SearchOrdering\SearchOrdering.php:109

filterep_weighting_default_post_type_weightsincludes\classes\Feature\SearchOrdering\SearchOrdering.php:110

filterenter_title_hereincludes\classes\Feature\SearchOrdering\SearchOrdering.php:111

filterpost_updated_messagesincludes\classes\Feature\SearchOrdering\SearchOrdering.php:113

filteradmin_titleincludes\classes\Feature\SearchOrdering\SearchOrdering.php:114

actionwp_trash_postincludes\classes\Feature\SearchOrdering\SearchOrdering.php:117

actionbefore_delete_postincludes\classes\Feature\SearchOrdering\SearchOrdering.php:118

actionuntrashed_postincludes\classes\Feature\SearchOrdering\SearchOrdering.php:119

filterpost_row_actionsincludes\classes\Feature\SearchOrdering\SearchOrdering.php:120

actioninitincludes\classes\Feature\Terms\Terms.php:65

filterep_elasticpress_enabledincludes\classes\Feature\Terms\Terms.php:74

filterep_term_fuzziness_argincludes\classes\Feature\Terms\Terms.php:75

filterep_sync_insert_permissions_bypassincludes\classes\Feature\WooCommerce\Orders.php:41

filterep_prepare_meta_allowed_protected_keysincludes\classes\Feature\WooCommerce\Orders.php:42

filterep_post_sync_args_post_prepare_metaincludes\classes\Feature\WooCommerce\Orders.php:43

filterep_pc_skip_post_content_cleanupincludes\classes\Feature\WooCommerce\Orders.php:44

actionparse_queryincludes\classes\Feature\WooCommerce\Orders.php:45

actionparse_queryincludes\classes\Feature\WooCommerce\Orders.php:46

actionpre_get_postsincludes\classes\Feature\WooCommerce\Orders.php:47

filterep_admin_noticesincludes\classes\Feature\WooCommerce\Orders.php:48

filterep_woocommerce_settings_schemaincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:68

actionadmin_enqueue_scriptsincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:75

filterep_after_update_featureincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:76

filterep_after_sync_indexincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:77

filterep_saved_weighting_configurationincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:78

filterep_indexable_post_statusincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:79

filterep_indexable_post_typesincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:80

actionrest_api_initincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:81

filterep_post_sync_argsincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:82

filterep_post_mappingincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:83

actionep_woocommerce_shop_order_search_fieldsincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:84

filterep_index_posts_argsincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:85

filterposts_whereincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:86

filterep_do_intercept_requestincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:239

filterep_is_integrated_requestincludes\classes\Feature\WooCommerce\OrdersAutosuggest.php:240

actionep_formatted_argsincludes\classes\Feature\WooCommerce\Products.php:43

filterep_prepare_meta_allowed_protected_keysincludes\classes\Feature\WooCommerce\Products.php:44

filterep_sync_taxonomiesincludes\classes\Feature\WooCommerce\Products.php:45

filterep_term_suggest_post_typeincludes\classes\Feature\WooCommerce\Products.php:46

filterep_facet_include_taxonomiesincludes\classes\Feature\WooCommerce\Products.php:47

filterep_weighting_fields_for_post_typeincludes\classes\Feature\WooCommerce\Products.php:48

filterep_weighting_default_post_type_weightsincludes\classes\Feature\WooCommerce\Products.php:49

filterep_prepare_meta_dataincludes\classes\Feature\WooCommerce\Products.php:50

filterrequestincludes\classes\Feature\WooCommerce\Products.php:51

actionpre_get_postsincludes\classes\Feature\WooCommerce\Products.php:52

filterep_facet_tax_special_slug_taxonomiesincludes\classes\Feature\WooCommerce\Products.php:53

actionep_admin_noticesincludes\classes\Feature\WooCommerce\Products.php:56

actionwoocommerce_after_product_orderingincludes\classes\Feature\WooCommerce\Products.php:57

actionep_weight_settings_after_searchincludes\classes\Feature\WooCommerce\Products.php:60

filterep_feature_settings_schemaincludes\classes\Feature\WooCommerce\Products.php:61

filterep_is_decaying_enabledincludes\classes\Feature\WooCommerce\Products.php:62

actionpre_get_postsincludes\classes\Feature\WooCommerce\Products.php:447

filterwoocommerce_product_pre_search_productsincludes\classes\Feature\WooCommerce\Products.php:450

actionswitch_blogincludes\classes\Feature\WooCommerce\WooCommerce.php:98

filterep_integrate_search_queriesincludes\classes\Feature\WooCommerce\WooCommerce.php:100

actioninitincludes\classes\Features.php:37

actioninitincludes\classes\Features.php:38

filtersite_status_testsincludes\classes\HealthCheck.php:63

filtersite_status_testsincludes\classes\HealthCheck.php:70

filtercomments_clausesincludes\classes\Indexable\Comment\Comment.php:836

filtercomments_clausesincludes\classes\Indexable\Comment\Comment.php:855

actionpre_get_commentsincludes\classes\Indexable\Comment\QueryIntegration.php:64

filtercomments_pre_queryincludes\classes\Indexable\Comment\QueryIntegration.php:67

actionwp_insert_commentincludes\classes\Indexable\Comment\SyncManager.php:44

actionedit_commentincludes\classes\Indexable\Comment\SyncManager.php:45

actiontransition_comment_statusincludes\classes\Indexable\Comment\SyncManager.php:46

actiontrashed_commentincludes\classes\Indexable\Comment\SyncManager.php:48

actiondeleted_commentincludes\classes\Indexable\Comment\SyncManager.php:49

actionadded_comment_metaincludes\classes\Indexable\Comment\SyncManager.php:51

actiondeleted_comment_metaincludes\classes\Indexable\Comment\SyncManager.php:52

actionupdated_comment_metaincludes\classes\Indexable\Comment\SyncManager.php:53

actionep_update_index_settingsincludes\classes\Indexable\Comment\SyncManager.php:56

actionep_after_put_mappingincludes\classes\Indexable\Comment\SyncManager.php:57

actionep_saved_weighting_configurationincludes\classes\Indexable\Comment\SyncManager.php:58

filterposts_orderbyincludes\classes\Indexable\Post\Post.php:108

filterposts_whereincludes\classes\Indexable\Post\Post.php:123

actionupdated_postmetaincludes\classes\Indexable\Post\Post.php:550

filterep_post_formatted_args_queryincludes\classes\Indexable\Post\Post.php:2374

actionpre_get_postsincludes\classes\Indexable\Post\QueryIntegration.php:61

filterposts_pre_queryincludes\classes\Indexable\Post\QueryIntegration.php:64

actionloop_endincludes\classes\Indexable\Post\QueryIntegration.php:67

actionthe_postincludes\classes\Indexable\Post\QueryIntegration.php:70

filterfound_postsincludes\classes\Indexable\Post\QueryIntegration.php:73

actionthe_postincludes\classes\Indexable\Post\QueryIntegration.php:184

actionwp_insert_postincludes\classes\Indexable\Post\SyncManager.php:56

actionadd_attachmentincludes\classes\Indexable\Post\SyncManager.php:57

actionedit_attachmentincludes\classes\Indexable\Post\SyncManager.php:58

actionwp_media_attach_actionincludes\classes\Indexable\Post\SyncManager.php:59

actiondelete_postincludes\classes\Indexable\Post\SyncManager.php:60

actionupdated_post_metaincludes\classes\Indexable\Post\SyncManager.php:61

actionadded_post_metaincludes\classes\Indexable\Post\SyncManager.php:62

filterdelete_post_metadataincludes\classes\Indexable\Post\SyncManager.php:64

actiondeleted_post_metaincludes\classes\Indexable\Post\SyncManager.php:65

actionwp_initialize_siteincludes\classes\Indexable\Post\SyncManager.php:66

filterep_sync_insert_permissions_bypassincludes\classes\Indexable\Post\SyncManager.php:68

filterep_sync_delete_permissions_bypassincludes\classes\Indexable\Post\SyncManager.php:69

actionep_admin_noticesincludes\classes\Indexable\Post\SyncManager.php:72

actionep_admin_noticesincludes\classes\Indexable\Post\SyncManager.php:73

actionset_object_termsincludes\classes\Indexable\Post\SyncManager.php:74

actionedited_termincludes\classes\Indexable\Post\SyncManager.php:75

actiondeleted_term_relationshipsincludes\classes\Indexable\Post\SyncManager.php:76

actionep_update_index_settingsincludes\classes\Indexable\Post\SyncManager.php:79

actionep_after_put_mappingincludes\classes\Indexable\Post\SyncManager.php:80

actionep_saved_weighting_configurationincludes\classes\Indexable\Post\SyncManager.php:81

actionwp_insert_postincludes\classes\Indexable\Post\SyncManager.php:84

actiondelete_postincludes\classes\Indexable\Post\SyncManager.php:85

actionupdated_post_metaincludes\classes\Indexable\Post\SyncManager.php:86

actionadded_post_metaincludes\classes\Indexable\Post\SyncManager.php:87

actiondeleted_post_metaincludes\classes\Indexable\Post\SyncManager.php:88

actiondelete_post_metadataincludes\classes\Indexable\Post\SyncManager.php:89

filterep_post_sync_killincludes\classes\Indexable\Post\SyncManager.php:92

filterep_admin_bar_status_and_summaryincludes\classes\Indexable\Post\SyncManager.php:95

actionpost_updatedincludes\classes\Indexable\Post\SyncManager.php:98

filterep_is_integrated_requestincludes\classes\Indexable\Post\SyncManager.php:218

actionpre_get_termsincludes\classes\Indexable\Term\QueryIntegration.php:52

filterterms_pre_queryincludes\classes\Indexable\Term\QueryIntegration.php:55

filterrest_post_tag_queryincludes\classes\Indexable\Term\QueryIntegration.php:57

actioncreated_termincludes\classes\Indexable\Term\SyncManager.php:44

actionedited_termsincludes\classes\Indexable\Term\SyncManager.php:45

actionadded_term_metaincludes\classes\Indexable\Term\SyncManager.php:46

actiondeleted_term_metaincludes\classes\Indexable\Term\SyncManager.php:47

actionupdated_term_metaincludes\classes\Indexable\Term\SyncManager.php:48

actionpre_delete_termincludes\classes\Indexable\Term\SyncManager.php:49

actionpre_delete_termincludes\classes\Indexable\Term\SyncManager.php:50

actionset_object_termsincludes\classes\Indexable\Term\SyncManager.php:51

actionep_update_index_settingsincludes\classes\Indexable\Term\SyncManager.php:54

actionep_after_put_mappingincludes\classes\Indexable\Term\SyncManager.php:55

actionep_saved_weighting_configurationincludes\classes\Indexable\Term\SyncManager.php:56

filterterms_clausesincludes\classes\Indexable\Term\Term.php:238

filterterms_clausesincludes\classes\Indexable\Term\Term.php:252

filterwp_php_error_messageincludes\classes\IndexHelper.php:72

actionadmin_initincludes\classes\Installer.php:35

filteradmin_titleincludes\classes\Installer.php:36

actionep_remote_requestincludes\classes\QueryLogger.php:30

filterep_admin_noticesincludes\classes\QueryLogger.php:31

actionep_sync_start_indexincludes\classes\QueryLogger.php:33

filterep_facet_meta_range_fieldsincludes\classes\REST\MetaRange.php:79

filterep_autosuggest_contextsincludes\classes\REST\SearchOrdering.php:117

actionadmin_enqueue_scriptsincludes\classes\Screen\Features.php:31

actionrest_api_initincludes\classes\Screen\Features.php:32

filterdebug_informationincludes\classes\Screen\HealthInfo.php:22

filterdebug_informationincludes\classes\Screen\HealthInfo.php:23

actionadmin_enqueue_scriptsincludes\classes\Screen\Settings.php:52

actionadmin_initincludes\classes\Screen\Settings.php:53

actionadmin_noticesincludes\classes\Screen\Settings.php:115

actionadmin_enqueue_scriptsincludes\classes\Screen\StatusReport.php:33

actionadmin_headincludes\classes\Screen\StatusReport.php:34

actionadmin_enqueue_scriptsincludes\classes\Screen\Sync.php:34

actionrest_api_initincludes\classes\Screen\Sync.php:35

actionadmin_initincludes\classes\Screen.php:76

actionep_after_add_to_queueincludes\classes\SyncManager.php:48

actionshutdownincludes\classes\SyncManager.php:53

filterwp_redirectincludes\classes\SyncManager.php:54

actiondelete_blogincludes\classes\SyncManager.php:59

actionmake_delete_blogincludes\classes\SyncManager.php:60

actionmake_spam_blogincludes\classes\SyncManager.php:61

actionarchive_blogincludes\classes\SyncManager.php:62

actiondeactivate_blogincludes\classes\SyncManager.php:63

actionplugins_loadedincludes\classes\Upgrades.php:61

filterep_admin_noticesincludes\classes\Upgrades.php:70

actionnetwork_admin_menuincludes\dashboard.php:30

actionadmin_bar_menuincludes\dashboard.php:31

actionadmin_menuincludes\dashboard.php:34

actionadmin_enqueue_scriptsincludes\dashboard.php:36

actionadmin_initincludes\dashboard.php:37

actionadmin_initincludes\dashboard.php:38

actionadmin_noticesincludes\dashboard.php:40

actionnetwork_admin_noticesincludes\dashboard.php:41

filterplugin_action_linksincludes\dashboard.php:42

filternetwork_admin_plugin_action_linksincludes\dashboard.php:43

actionep_add_query_logincludes\dashboard.php:44

filterep_analyzer_languageincludes\dashboard.php:45

filterwp_kses_allowed_htmlincludes\dashboard.php:46

actionenqueue_block_editor_assetsincludes\dashboard.php:47

actionblock_categories_allincludes\dashboard.php:50

actionblock_categoriesincludes\dashboard.php:52

filterwpmu_blogs_columnsincludes\dashboard.php:66

actionmanage_sites_custom_columnincludes\dashboard.php:67

Maintenance & Trust

ElasticPress Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedNov 21, 2025

PHP min version7.4

Downloads1.0M

Community Trust

Rating82/100

Number of ratings29

Active installs8K

Alternatives

ElasticPress Alternatives

ElasticProbe

elasticprobe

100

A lightning fast and flexible search and query engine for WordPress.

0 No CVEs

ElasticPress Debugging Add-On

debug-bar-elasticpress

Extends the Query Monitor and Debug Bar plugins for ElasticPress queries.

900 1 CVE

Fast Fuzzy Search – WordPress & WooCommerce Live Search

fast-fuzzy-search

100

Blazing fast, typo-tolerant, AJAX-powered search for WordPress and WooCommerce. Built for conversions and optimized for massive product catalogs.

200 No CVEs

Fast Woo Order Lookup

fast-woo-order-lookup

100

Searches for orders faster on WooCommerce stores with many orders.

200 No CVEs

Init Live Search – AI-Powered, Related Posts, Slash Commands

init-live-search

100

Fast, modern live search powered by REST API — with AI-powered Related Posts Engine, slash commands, SEO-aware, ACF, Woo, and custom UI presets.

100 No CVEs

Developer Profile

ElasticPress Developer Profile

10up

23 plugins · 1.4M total installs

trust score

Avg Security Score

98/100

Avg Patch Time

546 days

View full developer profile

Detection Fingerprints

How We Detect ElasticPress

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/elasticpress/assets/css/elasticpress-admin-bar.css/wp-content/plugins/elasticpress/assets/js/elasticpress-admin-bar.js/wp-content/plugins/elasticpress/assets/css/elasticpress-backend.css/wp-content/plugins/elasticpress/assets/js/elasticpress-backend.js/wp-content/plugins/elasticpress/assets/css/elasticpress-frontend.css/wp-content/plugins/elasticpress/assets/js/elasticpress-frontend.js/wp-content/plugins/elasticpress/assets/css/elasticpress-wpdashboard.css/wp-content/plugins/elasticpress/assets/js/elasticpress-wpdashboard.js

Script Paths

/wp-content/plugins/elasticpress/assets/js/elasticpress-admin-bar.js/wp-content/plugins/elasticpress/assets/js/elasticpress-backend.js/wp-content/plugins/elasticpress/assets/js/elasticpress-frontend.js/wp-content/plugins/elasticpress/assets/js/elasticpress-wpdashboard.js

Version Parameters

elasticpress/assets/css/elasticpress-admin-bar.css?ver=elasticpress/assets/js/elasticpress-admin-bar.js?ver=elasticpress/assets/css/elasticpress-backend.css?ver=elasticpress/assets/js/elasticpress-backend.js?ver=elasticpress/assets/css/elasticpress-frontend.css?ver=elasticpress/assets/js/elasticpress-frontend.js?ver=elasticpress/assets/css/elasticpress-wpdashboard.css?ver=elasticpress/assets/js/elasticpress-wpdashboard.js?ver=

HTML / DOM Fingerprints

CSS Classes

ep-admin-bar-query-debugep-admin-bar-settingsep-admin-bar-query-overviewep-admin-bar-indexing-statusep-admin-bar-index-nowep-admin-bar-search-suggestionsep-backend-settingsep-dashboard-widget+5 more

Data Attributes

data-ep-search-placeholderdata-ep-search-submit-text

JS Globals

ep_admin_bar_stringsep_backend_stringsep_dashboard_stringsep_frontend_stringsep_wpdashboard_stringsElasticPressFrontend+2 more

REST Endpoints

/wp-json/elasticpress/v1/settings/wp-json/elasticpress/v1/index-status/wp-json/elasticpress/v1/sync-now/wp-json/elasticpress/v1/autocomplete/wp-json/elasticpress/v1/facets

Shortcode Output

[elasticpress_search_form][elasticpress_search_results][elasticpress_facets]

FAQ