WP-Safety

Fast WordPress Search Security & Risk Analysis

wordpress.org/plugins/fast-wordpress-search

Faster and Relevance WordPress Search result with low resource consuming

10 active installs v0.6 PHP + WP 2.8+ Updated Mar 10, 2011
better-searchfast-searchrelevance-searchsearch
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Fast WordPress Search Safe to Use in 2026?

Generally Safe

Score 85/100

Fast WordPress Search has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 15yr ago
Risk Assessment

The 'fast-wordpress-search' plugin v0.6 presents a mixed security posture. On the positive side, it has a remarkably small attack surface with no reported AJAX handlers, REST API routes, shortcodes, or cron events accessible without authentication. Furthermore, there is no recorded vulnerability history, suggesting a generally stable and secure development track record. However, the static analysis reveals significant concerns, particularly the presence of five instances of the `create_function` function, which is deprecated and notoriously insecure due to its ability to execute arbitrary code. Additionally, a low rate of proper output escaping (27%) indicates a potential for cross-site scripting (XSS) vulnerabilities if user-supplied data is not sufficiently sanitized before being displayed to the user. While taint analysis found no immediate flows, the combination of insecure coding practices and potential for unescaped output warrants caution. The lack of critical vulnerabilities in its history is a good sign, but the identified code signals suggest areas that require immediate attention to maintain a strong security posture.

Key Concerns

  • Use of create_function
  • Low percentage of properly escaped output
  • SQL queries not always using prepared statements
Vulnerabilities
None known

Fast WordPress Search Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Fast WordPress Search Code Analysis

Dangerous Functions
5
Raw SQL Queries
3
2 prepared
Unescaped Output
8
3 escaped
Nonce Checks
2
Capability Checks
2
File Operations
3
External Requests
0
Bundled Libraries
0

Dangerous Functions Found

create_functionadd_action("admin_footer-{$this->plugin['hook']}", create_function('', 'echo "<script src=\"'.pluginfwp-search.php:246
create_functioncreate_function('', 'global $fwp_search; if(!is_object($fwp_search))$fwp_search=new fwp_search(); adfwp-search.php:586
create_functioncreate_function('$l', 'return array_merge(array("<a href=\"options-general.php?page=fwp-search.php\"fwp-search.php:589
create_functioncreate_function('', 'foreach ( array("options", "plugin", "code") as $pn ) delete_option("fwp_searchfwp-search.php:592
create_functioncreate_function('','$g="";$g.="\n<script type=\"text/javascript\">\nvar codepress_path=\"'.includes_fwp-search.php:595

SQL Query Safety

40% prepared5 total queries

Output Escaping

27% escaped11 total outputs
Attack Surface

Fast WordPress Search Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 9
actionwp_headfwp-search.php:241
actionloop_endfwp-search.php:242
actionadmin_print_scriptsfwp-search.php:244
actionadmin_print_stylesfwp-search.php:245
actioninitfwp-search.php:562
actionadmin_menufwp-search.php:585
filterplugin_links_fwp-search/fwp-search.phpfwp-search.php:588
actiondeactivate_fwp-search/fwp-search.phpfwp-search.php:591
actionadmin_footer-settings_page_fwp-searchfwp-search.php:594
Maintenance & Trust

Fast WordPress Search Maintenance & Trust

Maintenance Signals

WordPress version tested3.1.4
Last updatedMar 10, 2011
PHP min version
Downloads3K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Fast WordPress Search Alternatives

Relevanssi – A Better Search

Relevanssi – A Better Search

relevanssi

B
82

Relevanssi replaces the default search with a partial-match search that sorts results by relevance. It also indexes comments and shortcode content.

100K 17 CVEs
Ajax Search Lite – Live Search & Filter

Ajax Search Lite – Live Search & Filter

ajax-search-lite

B
83

The Best Ajax Live Search and Filter for WordPress. Live suggestions, Custom Post types, Custom fields, Categories, WooCommerce & Elementor support

80K 11 CVEs
ACF: Better Search

ACF: Better Search

acf-better-search

A
99

This plugin adds to default WordPress search engine the ability to search by content from selected fields of Advanced Custom Fields plugin.

40K 1 CVE
WP Search with Algolia

WP Search with Algolia

wp-search-with-algolia

A
100

Use the power of Algolia AI Search & Discovery to enhance your website's search. Enable AI-powered Autocomplete and InstantSearch for fast, a &hellip;

7K No CVEs
Better Search – Relevant search results for WordPress

Better Search – Relevant search results for WordPress

better-search

B
83

Better Search replaces the default WordPress search with a better search engine that gives contextual results sorted by relevance.

5K 8 CVEs
Developer Profile

Fast WordPress Search Developer Profile

Ivan Kristianto

4 plugins · 3K total installs

85
trust score
Avg Security Score
87/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Fast WordPress Search

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ

Frequently Asked Questions about Fast WordPress Search