WP-Safety

Impresee’s Smart Search Bar Security & Risk Analysis

wordpress.org/plugins/visual-search

Integrates Visual and Creative Search into a WooCommerce site.

10 active installs v6.0.3 PHP 7.2+ WP 3.5+ Updated Feb 26, 2026
image-searchproduct-searchsearch-barvisual-searchwoocommerce
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Impresee’s Smart Search Bar Safe to Use in 2026?

Generally Safe

Score 100/100

Impresee’s Smart Search Bar has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago
Risk Assessment

The "visual-search" plugin v6.0.3 presents a significant security risk due to its large, unprotected attack surface. While the plugin demonstrates good practices in its handling of SQL queries, utilizing prepared statements exclusively, this strength is overshadowed by critical weaknesses in its input validation and access control mechanisms.

The static analysis reveals a substantial number of REST API routes (17 out of 17) that lack any permission callbacks, meaning they are accessible without authentication or authorization. This creates a wide open door for potential attackers to interact with plugin functionality. Furthermore, the low percentage (15%) of properly escaped output is concerning, as it increases the risk of cross-site scripting (XSS) vulnerabilities. The absence of nonce checks on AJAX handlers and capability checks throughout the code exacerbates these risks.

The plugin's vulnerability history is clean, with no recorded CVEs. This might suggest a history of good security practices or simply a lack of focused security auditing. However, the current code analysis paints a worrying picture. The presence of bundled libraries like Guzzle also warrants attention, as outdated versions can introduce known vulnerabilities. In conclusion, the "visual-search" plugin has strong foundations in SQL handling, but its lack of robust access control and output escaping on a large attack surface, combined with the lack of nonce and capability checks, makes it a high-risk plugin that requires immediate attention.

Key Concerns

  • REST API routes without permission callbacks
  • Low percentage of properly escaped output
  • No nonce checks on AJAX handlers
  • No capability checks
  • Bundled Guzzle library
Vulnerabilities
None known

Impresee’s Smart Search Bar Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Impresee’s Smart Search Bar Release Timeline

v6.0.3Current
v6.0.2
v6.0.1
v6.0.0
v5.3.10
v5.3.9
v5.3.8
v5.3.7
v5.3.6
v5.3.5
v5.3.4
v5.3.3
v5.3.2
v5.3.1
v5.3.0
v5.2.16
v5.2.15
v5.2.14
v5.2.13
v5.2.12
Code Analysis
Analyzed Mar 16, 2026

Impresee’s Smart Search Bar Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
91
16 escaped
Nonce Checks
0
Capability Checks
0
File Operations
3
External Requests
1
Bundled Libraries
1

Bundled Libraries

Guzzle

Output Escaping

15% escaped107 total outputs
Attack Surface
17 unprotected

Impresee’s Smart Search Bar Attack Surface

Entry Points19
Unprotected17

REST API Routes 17

GET/wp-json/impresee/v1/catalog-status/(?P<owner>[a-zA-Z0-9-]+)impresee-creativesearch.php:380
POST/wp-json/impresee/v1/update-catalog/(?P<owner>[a-zA-Z0-9-]+)/(?P<catalog>[a-zA-Z0-9-]+)impresee-creativesearch.php:393
GET/wp-json/impresee/v1/catalog/(?P<id>[a-zA-Z0-9-]+)impresee-creativesearch.php:407
GET/wp-json/impresee/v1/general-settings/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:422
GET/wp-json/impresee/v1/advanced-settings/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:437
GET/wp-json/impresee/v1/labels-settings/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:452
GET/wp-json/impresee/v1/search-by-text-settings/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:467
GET/wp-json/impresee/v1/theme-settings/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:482
GET/wp-json/impresee/v1/search-buttons-settings/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:497
GET/wp-json/impresee/v1/christmas-settings/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:528
GET/wp-json/impresee/v1/snippet-filename/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:543
POST/wp-json/impresee/v1/general-settings/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:572
POST/wp-json/impresee/v1/advanced-settings/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:585
POST/wp-json/impresee/v1/labels-settings/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:598
POST/wp-json/impresee/v1/search-by-text-settings/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:611
POST/wp-json/impresee/v1/theme-settings/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:624
POST/wp-json/impresee/v1/christmas-settings/(?P<store_code>[a-zA-Z0-9-]+)impresee-creativesearch.php:637

Shortcodes 2

[impreseesearch] impresee-creativesearch\includes\Presentation\Settings\SearchButtons\SearchButtonsSettings.php:40
[impreseesearchfullsearchbar] impresee-creativesearch\includes\Presentation\Settings\SearchButtons\SearchButtonsSettings.php:41
WordPress Hooks 18
actionsee_wccs_print_jsimpresee-creativesearch\includes\Presentation\Settings\Advanced\AdvancedSettings.php:31
actionsee_wccs_print_cssimpresee-creativesearch\includes\Presentation\Settings\Advanced\AdvancedSettings.php:32
actionadmin_initimpresee-creativesearch\includes\Presentation\Settings\BaseSettings.php:15
actionsee_wccs_add_css_tab_buttonsimpresee-creativesearch\includes\Presentation\Settings\SearchButtons\SearchButtonsSettings.php:38
actionsee_wccs_add_js_tab_buttonsimpresee-creativesearch\includes\Presentation\Settings\SearchButtons\SearchButtonsSettings.php:39
actionadmin_menuimpresee-creativesearch\includes\Presentation\Settings\Settings.php:59
actionsee_wccs_show_settings_pageimpresee-creativesearch\includes\Presentation\Settings\Settings.php:66
actionwp_enqueue_scriptsimpresee-creativesearch\includes\Presentation\Utils\Assets.php:14
actionadmin_enqueue_scriptsimpresee-creativesearch\includes\Presentation\Utils\Assets.php:15
actionsee_wccs_generate_snippetimpresee-creativesearch.php:169
actionadmin_noticesimpresee-creativesearch.php:174
actionbefore_woocommerce_initimpresee-creativesearch.php:185
actionplugins_loadedimpresee-creativesearch.php:191
actionrest_api_initimpresee-creativesearch.php:192
actionwoocommerce_order_status_changedimpresee-creativesearch.php:200
actionwoocommerce_checkout_order_processedimpresee-creativesearch.php:201
actionadmin_noticesimpresee-creativesearch.php:770
actionadmin_noticesimpresee-creativesearch.php:775
Maintenance & Trust

Impresee’s Smart Search Bar Maintenance & Trust

Maintenance Signals

WordPress version tested6.6.5
Last updatedFeb 26, 2026
PHP min version7.2
Downloads7K

Community Trust

Rating76/100
Number of ratings6
Active installs10
Alternatives

Impresee’s Smart Search Bar Alternatives

Ivory Search – WordPress Search Plugin

Ivory Search – WordPress Search Plugin

add-search-to-menu

A
95

Advanced WordPress custom search plugin. Provides Search Form Customizer, WooCommerce Search, AJAX Search & Live Search support!

100K 11 CVEs
FiboSearch – Ajax Search for WooCommerce

FiboSearch – Ajax Search for WooCommerce

ajax-search-for-woocommerce

A
95

The most popular WooCommerce product search plugin. Gives your users a well-designed advanced AJAX search bar with live search suggestions.

100K 4 CVEs
Relevanssi – A Better Search

Relevanssi – A Better Search

relevanssi

B
82

Relevanssi replaces the default search with a partial-match search that sorts results by relevance. It also indexes comments and shortcode content.

100K 17 CVEs
Ajax Search Lite – Live Search & Filter

Ajax Search Lite – Live Search & Filter

ajax-search-lite

A
87

The Best Ajax Live Search and Filter for WordPress. Live suggestions, Custom Post types, Custom fields, Categories, WooCommerce & Elementor support

80K 11 CVEs
Advanced Woo Search – Product Search for WooCommerce

Advanced Woo Search – Product Search for WooCommerce

advanced-woo-search

A
96

Advanced WooCommerce product search plugin. Search inside any product field. Support for both AJAX search and search results page.

70K 5 CVEs
Developer Profile

Impresee’s Smart Search Bar Developer Profile

camilaalvarez

1 plugin · 10 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Impresee’s Smart Search Bar

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/visual-search/admin/css/settings.css/wp-content/plugins/visual-search/admin/css/onboarding.css/wp-content/plugins/visual-search/public/css/creative-search.css/wp-content/plugins/visual-search/admin/js/settings.js/wp-content/plugins/visual-search/admin/js/onboarding.js/wp-content/plugins/visual-search/public/js/creative-search.js
Version Parameters
visual-search/admin/css/settings.css?ver=visual-search/admin/css/onboarding.css?ver=visual-search/public/css/creative-search.css?ver=visual-search/admin/js/settings.js?ver=visual-search/admin/js/onboarding.js?ver=visual-search/public/js/creative-search.js?ver=

HTML / DOM Fingerprints

CSS Classes
impresee-creative-search-bar
HTML Comments
<!-- Impresee Creative Search Bar -->
Data Attributes
data-impresee-search-page-iddata-impresee-base-urldata-impresee-store-url
JS Globals
impresee_creative_search_params
REST Endpoints
/wp-json/impresee-creative-search/v1/settings/wp-json/impresee-creative-search/v1/search
Shortcode Output
[impresee_creative_search_bar]
FAQ

Frequently Asked Questions about Impresee’s Smart Search Bar