Does Wow FullText Search have any unpatched vulnerabilities?

No. All known vulnerabilities in Wow FullText Search have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Wow FullText Search compatible with WordPress 5.1.22?

According to WordPress.org data, Wow FullText Search 1.0 has been tested up to WordPress 5.1.22. Check the plugin's changelog for the latest compatibility information.

How often is Wow FullText Search updated?

Wow FullText Search was last updated on Mar 9, 2019. Frequent updates are generally a positive security signal.

What is Wow FullText Search's security score?

Wow FullText Search has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Wow FullText Search Security & Risk Analysis

wordpress.org/plugins/wow-fulltext-search

Fast fulltext search provided by Search Engine software replacing default WordPress functionality.

10 active installs v1.0 PHP + WP 4.0+ Updated Mar 9, 2019

advanced-searchbetter-searchfull-textfulltextsearch

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Wow FullText Search Safe to Use in 2026?

Generally Safe

Score 85/100

Wow FullText Search has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The "wow-fulltext-search" plugin v1.0 exhibits a mixed security posture. On the positive side, it has no known vulnerabilities or CVEs, and the code generally demonstrates good practices with a high percentage of prepared statements and output escaping. The absence of dangerous functions, file operations, and bundled libraries is also a strength. However, there are significant concerns regarding its attack surface. The presence of a single unprotected AJAX handler is a critical weakness, as it represents a direct entry point for potential attackers without any authentication or authorization checks. While the taint analysis shows no critical or high severity unsanitized paths, the one flow with an unsanitized path, even if categorized lower, warrants attention in conjunction with the unprotected AJAX handler. The limited vulnerability history is a good sign, suggesting the plugin has been relatively secure in the past, but this should not breed complacency, especially with the identified unprotected entry point.

Key Concerns

Unprotected AJAX handler
Flow with unsanitized path (low severity)
Output escaping only 63% proper

Vulnerabilities

None known

Wow FullText Search Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Wow FullText Search Code Analysis

Dangerous Functions

Raw SQL Queries

36 prepared

Unescaped Output

34 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

95% prepared38 total queries

Output Escaping

63% escaped54 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

settings_save (AdminPage.php:162)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Wow FullText Search Attack Surface

Entry Points1

Unprotected1

AJAX Handlers 1

authwp_ajax_wow_search_buildAdminInit.php:13

WordPress Hooks 14

actionadmin_print_scripts-settings_page_wow-search-pageAdminInit.php:11

actioninitwow-fulltext-search.php:41

actiondelete_postwow-fulltext-search.php:43

actionpublish_postwow-fulltext-search.php:44

actionsave_postwow-fulltext-search.php:45

actionadmin_initwow-fulltext-search.php:47

actionadmin_menuwow-fulltext-search.php:48

actionpre_get_postsWpQueryHook.php:22

filterposts_searchWpQueryHook.php:23

filterfound_postsWpQueryHook.php:25

filterposts_search_orderbyWpQueryHook.php:26

filterposts_orderbyWpQueryHook.php:27

filterpost_limitsWpQueryHook.php:28

filterposts_resultsWpQueryHook.php:29

Maintenance & Trust

Wow FullText Search Maintenance & Trust

Maintenance Signals

WordPress version tested5.1.22

Last updatedMar 9, 2019

PHP min version

Downloads1K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Wow FullText Search Alternatives

WP Fast Total Search – The Power of Indexed Search

fulltext-search

Extends the default fulltext search with relevance, jet speed and ability to search any posts, metadata, taxonomy, shortcode content and more data.

1K 8 CVEs

Full-Text Search

full-text-search

100

Replaces site search with full-text search.

200 No CVEs

Bing Custom Search for WordPress

wp-bing-search

Improve the search functionality on your site by using Bing Custom Search for WordPress.

40 No CVEs

Relevanssi – A Better Search

relevanssi

Relevanssi replaces the default search with a partial-match search that sorts results by relevance. It also indexes comments and shortcode content.

100K 17 CVEs

Ajax Search Lite – Live Search & Filter

ajax-search-lite

The Best Ajax Live Search and Filter for WordPress. Live suggestions, Custom Post types, Custom fields, Categories, WooCommerce & Elementor support

80K 11 CVEs

Developer Profile

Wow FullText Search Developer Profile

wowpress.host

2 plugins · 2K total installs

trust score

Avg Security Score

74/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Wow FullText Search

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wow-fulltext-search/AdminPage_View.js

Script Paths