WP-Safety

WP Remote Site Search Security & Risk Analysis

wordpress.org/plugins/wp-remote-site-search

Search any WordPress site's data using WP REST API.

40 active installs v1.0.7 PHP + WP 4.4+ Updated Jan 19, 2026
live-searchmultisite-searchremote-site-search
100
A · Safe
CVEs total1
Unpatched0
Last CVEDec 26, 2023
Plugin page Download
Safety Verdict

Is WP Remote Site Search Safe to Use in 2026?

Generally Safe

Score 100/100

WP Remote Site Search has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Dec 26, 2023Updated 2mo ago
Risk Assessment

The "wp-remote-site-search" plugin version 1.0.7 exhibits a generally good security posture, with no critical or high severity issues identified in the static analysis or vulnerability history. The plugin effectively utilizes prepared statements for all SQL queries, a significant strength in preventing SQL injection vulnerabilities. Furthermore, the vast majority of output is properly escaped, mitigating cross-site scripting risks. However, there are a few areas for improvement that prevent a perfect score. The absence of nonce checks and capability checks on all entry points, while not currently exploited, represents a potential weakness that could be leveraged by attackers if vulnerabilities in other areas were discovered. The single known medium severity vulnerability, a Cross-site Scripting issue, and its recent discovery in late 2023, although patched, suggests a historical susceptibility that warrants ongoing vigilance. Despite these minor concerns, the plugin's adherence to secure coding practices for database interactions and output handling is commendable.

Key Concerns

  • No Nonce Checks on Entry Points
  • No Capability Checks on Entry Points
  • One past Medium severity CVE (XSS)
Vulnerabilities
1

WP Remote Site Search Security Vulnerabilities

CVEs by Year

1 CVE in 2023
2023
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2023-51397medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

WP Remote Site Search <= 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting

Dec 26, 2023 Patched in 1.0.5 (28d)
Code Analysis
Analyzed Mar 16, 2026

WP Remote Site Search Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
1
14 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

93% escaped15 total outputs
Attack Surface

WP Remote Site Search Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[wp_remote_site_search] public\includes\shortcode.class.php:27
WordPress Hooks 4
actionwp_enqueue_scriptspublic\includes\assets.class.php:30
actionwp_enqueue_scriptspublic\includes\assets.class.php:31
actionplugins_loadedpublic\includes\assets.class.php:33
actionwp_footerpublic\includes\result-template.php:10
Maintenance & Trust

WP Remote Site Search Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedJan 19, 2026
PHP min version
Downloads6K

Community Trust

Rating100/100
Number of ratings1
Active installs40
Alternatives

WP Remote Site Search Alternatives

Ajax Search Lite – Live Search & Filter

Ajax Search Lite – Live Search & Filter

ajax-search-lite

B
83

The Best Ajax Live Search and Filter for WordPress. Live suggestions, Custom Post types, Custom fields, Categories, WooCommerce & Elementor support

80K 11 CVEs
Advanced Woo Search – Product Search for WooCommerce

Advanced Woo Search – Product Search for WooCommerce

advanced-woo-search

A
96

Advanced WooCommerce product search plugin. Search inside any product field. Support for both AJAX search and search results page.

70K 5 CVEs
Advanced Product Search For WooCommerce

Advanced Product Search For WooCommerce

advanced-product-search-for-woo

A
100

Popup Cart Lite for WooCommerce for WooCommerce plugin that displays popup cart for add to cart action.

4K No CVEs
Events Search For The Events Calendar

Events Search For The Events Calendar

events-search-addon-for-the-events-calendar

A
100

Adds an AJAX-based events search bar on any page via shortcode to quickly find any upcoming event created with The Events Calendar plugin.

3K No CVEs
Predictive Search for WooCommerce

Predictive Search for WooCommerce

woocommerce-predictive-search

A
98

Predictive Search for WooCommerce gives your customers an awesome search experience delivering stunning 'live' product search results.

800 3 CVEs
Developer Profile

WP Remote Site Search Developer Profile

Pratik Chaskar

16 plugins · 14K total installs

79
trust score
Avg Security Score
100/100
Avg Patch Time
131 days
View full developer profile
Detection Fingerprints

How We Detect WP Remote Site Search

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wp-remote-site-search/public/assets/js/multisite-search.js/wp-content/plugins/wp-remote-site-search/public/assets/js/ms-trigger.js/wp-content/plugins/wp-remote-site-search/public/assets/css/style.css
Script Paths
/wp-content/plugins/wp-remote-site-search/public/assets/js/multisite-search.js/wp-content/plugins/wp-remote-site-search/public/assets/js/ms-trigger.js
Version Parameters
wp-remote-site-search/public/assets/js/multisite-search.js?ver=wp-remote-site-search/public/assets/js/ms-trigger.js?ver=wp-remote-site-search/public/assets/css/style.css?ver=

HTML / DOM Fingerprints

CSS Classes
search-wrappersearch-loadingsearch-loadererror-results-wrapsearch-results-wraprs-itemrs-link
HTML Comments
<!-- search box wrapper --><!-- search input box --><!-- results count --><!-- append searched results -->+1 more
Data Attributes
data-numberdata-object-typedata-remote-urldata-catdata-sub-catitemprop="query-input"+1 more
JS Globals
rs_search_msg
Shortcode Output
[wp_remote_site_search]
FAQ

Frequently Asked Questions about WP Remote Site Search