Does WP Fastest Site Search have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is WP Fastest Site Search compatible with WordPress 6.9.4?

According to WordPress.org data, WP Fastest Site Search 5.4.18 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is WP Fastest Site Search compatible with PHP 7.1+?

WP Fastest Site Search requires PHP 7.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is WP Fastest Site Search updated?

WP Fastest Site Search was last updated on Apr 13, 2026. Frequent updates are generally a positive security signal.

What is WP Fastest Site Search's security score?

WP Fastest Site Search has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

WP Fastest Site Search Security & Risk Analysis

wordpress.org/plugins/wp-fastest-site-search

Replace the default search with ExpertRec's powerful and fully customizable WordPress search plugin.

100 active installs v5.4.18 PHP 7.1+ WP 5.6+ Updated Apr 13, 2026

advanced-searchajax-searchsite-searchvoice-searchwoocommerce-search

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is WP Fastest Site Search Safe to Use in 2026?

Generally Safe

Score 100/100

WP Fastest Site Search has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The wp-fastest-site-search plugin exhibits a generally good security posture, with no known vulnerabilities or critical taint flows detected. The code analysis reveals that all output is properly escaped, which is a significant strength. Furthermore, the plugin does not bundle any libraries, reducing the risk of using outdated or vulnerable third-party code. The absence of known CVEs and a clear vulnerability history further contributes to its positive security profile.

However, there are notable areas for concern. The plugin has a substantial attack surface, with 66 entry points identified, one of which lacks permission callbacks. This unprotected REST API route is a significant risk, as it could potentially be exploited by unauthenticated users. Additionally, the complete absence of nonce checks and capability checks across its code signals a potential for privilege escalation or unauthorized actions if other weaknesses are discovered or introduced. While the plugin uses prepared statements for a majority of its SQL queries, the presence of raw SQL without preparation for some queries could lead to SQL injection vulnerabilities.

In conclusion, while the plugin demonstrates good practices in output escaping and a clean vulnerability history, the unprotected REST API endpoint, lack of authorization checks (nonces and capabilities), and some raw SQL queries represent significant security weaknesses that need to be addressed to improve its overall security posture.

Key Concerns

REST API route without permission callbacks
No nonce checks
No capability checks
SQL queries without prepared statements

Vulnerabilities

None known

WP Fastest Site Search Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

WP Fastest Site Search Release Timeline

v5.4.18Current

v5.4.17

v5.4.16

v5.4.15

v5.4.14

v5.4.13

v5.4.12

v5.4.11

v5.4.10

v5.4.9

v5.4.8

v5.4.7

v5.4.6

v5.4.5

v5.4.4

v5.4.2

v5.4.1

v5.4.0

v5.3.9

v5.3.8

Code Analysis

Analyzed Mar 16, 2026

WP Fastest Site Search Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

51 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

40% prepared5 total queries

Output Escaping

100% escaped51 total outputs

Attack Surface

1 unprotected

WP Fastest Site Search Attack Surface

Entry Points66

Unprotected1

REST API Routes 65

GET/wp-json/expertrec/v1/get_debughooks\expertrecsearch-rest.php:1549

GET/wp-json/expertrec/v1/get_sentryhooks\expertrecsearch-rest.php:1559

GET/wp-json/expertrec/v1/set_sentryhooks\expertrecsearch-rest.php:1569

GET/wp-json/expertrec/v1/set_debughooks\expertrecsearch-rest.php:1578

GET/wp-json/expertrec/v1/reset_debughooks\expertrecsearch-rest.php:1588

GET/wp-json/expertrec/v1/reset_sentryhooks\expertrecsearch-rest.php:1598

GET/wp-json/expertrec/v1/get_inithooks\expertrecsearch-rest.php:1608

GET/wp-json/expertrec/v1/set_inithooks\expertrecsearch-rest.php:1618

GET/wp-json/expertrec/v1/reset_inithooks\expertrecsearch-rest.php:1628

GET/wp-json/expertrec/v1/get_ai_uihooks\expertrecsearch-rest.php:1638

GET/wp-json/expertrec/v1/set_ai_uihooks\expertrecsearch-rest.php:1648

GET/wp-json/expertrec/v1/reset_ai_uihooks\expertrecsearch-rest.php:1658

GET/wp-json/expertrec/v1/get_readonly_modehooks\expertrecsearch-rest.php:1668

GET/wp-json/expertrec/v1/set_readonly_modehooks\expertrecsearch-rest.php:1678

GET/wp-json/expertrec/v1/reset_readonly_modehooks\expertrecsearch-rest.php:1688

GET/wp-json/expertrec/v1/get_logging_enabledhooks\expertrecsearch-rest.php:1698

GET/wp-json/expertrec/v1/set_logging_enabledhooks\expertrecsearch-rest.php:1708

GET/wp-json/expertrec/v1/reset_logging_enabledhooks\expertrecsearch-rest.php:1718

GET/wp-json/expertrec/v1/get_api_logging_enabledhooks\expertrecsearch-rest.php:1728

GET/wp-json/expertrec/v1/set_api_logging_enabledhooks\expertrecsearch-rest.php:1738

GET/wp-json/expertrec/v1/reset_api_logging_enabledhooks\expertrecsearch-rest.php:1748

GET/wp-json/expertrec/v1/get_index_statushooks\expertrecsearch-rest.php:1758

GET/wp-json/expertrec/v1/get_cpanel_confighooks\expertrecsearch-rest.php:1768

POST/wp-json/expertrec/v1/startindexhooks\expertrecsearch-rest.php:1778

GET/wp-json/expertrec/v1/get_last_successfull_synchooks\expertrecsearch-rest.php:1788

GET/wp-json/expertrec/v1/expertrec_get_metakeys_to_indexhooks\expertrecsearch-rest.php:1798

GET/wp-json/expertrec/v1/expertrec_get_product_attribute_to_indexhooks\expertrecsearch-rest.php:1808

GET/wp-json/expertrec/v1/get_layouthooks\expertrecsearch-rest.php:1818

GET/wp-json/expertrec/v1/expertrec_hook_existing_boxstatushooks\expertrecsearch-rest.php:1828

GET/wp-json/expertrec/v1/expertrec_get_indexvariantshooks\expertrecsearch-rest.php:1838

GET/wp-json/expertrec/v1/expertrec_set_indexvariantshooks\expertrecsearch-rest.php:1848

GET/wp-json/expertrec/v1/expertrec_reset_indexvariantshooks\expertrecsearch-rest.php:1858

GET/wp-json/expertrec/v1/expertrec_siteid_writeapikeyhooks\expertrecsearch-rest.php:1868

GET/wp-json/expertrec/v1/get_expertrec_enginehooks\expertrecsearch-rest.php:1878

GET/wp-json/expertrec/v1/expertrec_is_woocommercehooks\expertrecsearch-rest.php:1887

GET/wp-json/expertrec/v1/expertrec_is_expiredhooks\expertrecsearch-rest.php:1897

GET/wp-json/expertrec/v1/expertrec_islinkedhooks\expertrecsearch-rest.php:1907

GET/wp-json/expertrec/v1/expertrec_update_optionshooks\expertrecsearch-rest.php:1917

GET/wp-json/expertrec/v1/expertrec_notify_deactivationhooks\expertrecsearch-rest.php:1927

GET/wp-json/expertrec/v1/expertrec_get_indexstatshooks\expertrecsearch-rest.php:1937

GET/wp-json/expertrec/v1/expertrec_isaccount_createdhooks\expertrecsearch-rest.php:1947

GET/wp-json/expertrec/v1/expertrec_get_lastsynchooks\expertrecsearch-rest.php:1957

GET/wp-json/expertrec/v1/expertrec_index_categorydatahooks\expertrecsearch-rest.php:1967

GET/wp-json/expertrec/v1/expertrec_get_optionshooks\expertrecsearch-rest.php:1977

GET/wp-json/expertrec/v1/expertrec_get_category_flaghooks\expertrecsearch-rest.php:1987

POST/wp-json/expertrec/v1/site_infohooks\expertrecsearch-rest.php:1999

POST/wp-json/expertrec/v1/endindexhooks\expertrecsearch-rest.php:2009

POST/wp-json/expertrec/v1/continueindexhooks\expertrecsearch-rest.php:2019

POST/wp-json/expertrec/v1/update_speed_cphooks\expertrecsearch-rest.php:2029

POST/wp-json/expertrec/v1/expertrec_update_doctype_CPhooks\expertrecsearch-rest.php:2039

POST/wp-json/expertrec/v1/expertrec_update_metakeys_to_indexhooks\expertrecsearch-rest.php:2049

POST/wp-json/expertrec/v1/expertrec_update_attribute_indexhooks\expertrecsearch-rest.php:2059

POST/wp-json/expertrec/v1/expertrec_set_user_contactdetailhooks\expertrecsearch-rest.php:2069

POST/wp-json/expertrec/v1/expertrec_signup_clickedhooks\expertrecsearch-rest.php:2079

POST/wp-json/expertrec/v1/crawl_statushooks\expertrecsearch-rest.php:2089

POST/wp-json/expertrec/v1/recrawlhooks\expertrecsearch-rest.php:2099

POST/wp-json/expertrec/v1/stopcrawlhooks\expertrecsearch-rest.php:2109

POST/wp-json/expertrec/v1/expertrec_login_responsehooks\expertrecsearch-rest.php:2119

POST/wp-json/expertrec/v1/expertrec_update_confighooks\expertrecsearch-rest.php:2129

POST/wp-json/expertrec/v1/expertrec_layout_submithooks\expertrecsearch-rest.php:2139

POST/wp-json/expertrec/v1/update_layouthooks\expertrecsearch-rest.php:2149

POST/wp-json/expertrec/v1/expertrec_send_otphooks\expertrecsearch-rest.php:2159

POST/wp-json/expertrec/v1/expertrec_resend_otphooks\expertrecsearch-rest.php:2169

POST/wp-json/expertrec/v1/expertrec_verify_otphooks\expertrecsearch-rest.php:2179

POST/wp-json/expertrec/v1/woo_add_to_carthooks\expertrecsearch-rest.php:2189

Shortcodes 1

[expertrec_search_bar] includes\class-expertrecsearch.php:68

WordPress Hooks 27

actionwp_headexpertrecsearch.php:90

filterget_search_formexpertrecsearch.php:95

actionbefore_woocommerce_initexpertrecsearch.php:128

filterplugin_action_linksincludes\class-expertrecsearch-admin.php:23

actioner/indexingincludes\class-expertrecsearch-logger.php:67

actioner/generalincludes\class-expertrecsearch-logger.php:68

actioner/subsequent_updateincludes\class-expertrecsearch-logger.php:69

actioner/debugincludes\class-expertrecsearch-logger.php:71

actioner/initincludes\class-expertrecsearch-logger.php:75

actioner/api_communicationincludes\class-expertrecsearch-logger.php:80

actionadmin_menuincludes\class-expertrecsearch.php:34

actionadmin_initincludes\class-expertrecsearch.php:35

actionadmin_enqueue_scriptsincludes\class-expertrecsearch.php:37

actionplugins_loadedincludes\class-expertrecsearch.php:62

actionrest_api_initincludes\class-expertrecsearch.php:65

actionrest_api_initincludes\class-expertrecsearch.php:66

actioninitincludes\class-expertrecsearch.php:69

actionadmin_enqueue_scriptsincludes\class-expertrecsearch.php:76

actionwoocommerce_product_set_stock_statusincludes\class-expertrecsearch.php:85

actionwp_after_insert_postincludes\class-expertrecsearch.php:90

actionwoocommerce_update_productincludes\class-expertrecsearch.php:91

actiontransition_post_statusincludes\class-expertrecsearch.php:92

actionwoocommerce_rest_insert_product_objectincludes\class-expertrecsearch.php:94

actionwoocommerce_rest_delete_product_objectincludes\class-expertrecsearch.php:95

actionfuture_to_publishincludes\class-expertrecsearch.php:96

actionpmxi_saved_postincludes\class-expertrecsearch.php:97

actiontrashed_postincludes\class-expertrecsearch.php:98

Maintenance & Trust

WP Fastest Site Search Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 13, 2026

PHP min version7.1

Downloads42K

Community Trust

Rating100/100

Number of ratings27

Active installs100

Alternatives

WP Fastest Site Search Alternatives

Audible Site Search

audible-site-search

100

Audible Site Search adds voice-powered search and AJAX search suggestions to your WordPress site.

90 No CVEs

Ivory Search – WordPress Search Plugin

add-search-to-menu

Advanced WordPress custom search plugin. Provides Search Form Customizer, WooCommerce Search, AJAX Search & Live Search support!

100K 11 CVEs

FiboSearch – Ajax Search for WooCommerce

ajax-search-for-woocommerce

The most popular WooCommerce product search plugin. Gives your users a well-designed advanced AJAX search bar with live search suggestions.

100K 4 CVEs

WP Extended Search

wp-extended-search

100

Extend search functionality to search in selected post meta, taxonomies, post types, and all authors.

20K 1 CVE

Advance Product Search- Voice & Ajax Search for WooCommerce

th-advance-product-search

Advanced Product Search boosts your store search with instant AJAX results, live suggestions, and smart category filtering, helping customers find pro …

10K 3 CVEs

Developer Profile

WP Fastest Site Search Developer Profile

ExpertRec

1 plugin · 100 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect WP Fastest Site Search

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/wp-fastest-site-search/assets/css/expertrecsearch-admin.css/wp-content/plugins/wp-fastest-site-search/assets/js/expertrecsearch-admin.js

Script Paths

/wp-content/plugins/wp-fastest-site-search/includes/class-expertrecsearch-loader.php/wp-content/plugins/wp-fastest-site-search/public/class-expertrecsearch-public.php/wp-content/plugins/wp-fastest-site-search/includes/class-expertrecsearch.php/wp-content/plugins/wp-fastest-site-search/hooks/expertrecsearch-rest.php/wp-content/plugins/wp-fastest-site-search/includes/class-expertrecsearch-client.php

Version Parameters

expertrecsearch-admin.css?ver=expertrecsearch-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

expertrecsearch-admin-wrap

HTML Comments

Data Attributes

data-site-iddata-plugin-version

JS Globals

expertrec_admin_objectexpertrec_public_object

REST Endpoints

/wp-json/expertrecsearch/v1/settings/wp-json/expertrecsearch/v1/sync

FAQ