Does Pretty Search Permalinks have any unpatched vulnerabilities?

No. All known vulnerabilities in Pretty Search Permalinks have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Pretty Search Permalinks compatible with WordPress 6.9.4?

According to WordPress.org data, Pretty Search Permalinks 1.3 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Pretty Search Permalinks compatible with PHP 7.4+?

Pretty Search Permalinks requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Pretty Search Permalinks updated?

Pretty Search Permalinks was last updated on Feb 23, 2026. Frequent updates are generally a positive security signal.

What is Pretty Search Permalinks's security score?

Pretty Search Permalinks has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Pretty Search Permalinks Security & Risk Analysis

wordpress.org/plugins/wp-seo-search

Rewrites default search query URLs into clean and readable permalinks.

100 active installs v1.3 PHP 7.4+ WP 5.4+ Updated Feb 23, 2026

clean-urlspermalinkpretty-urlssearchsearch-permalinks

A · Safe

CVEs total1

Unpatched0

Last CVEDec 20, 2025

Plugin page Download

Safety Verdict

Is Pretty Search Permalinks Safe to Use in 2026?

Generally Safe

Score 99/100

Pretty Search Permalinks has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Dec 20, 2025Updated 1mo ago

Risk Assessment

The "wp-seo-search" v1.3 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of dangerous functions, raw SQL queries, unescaped output, file operations, and external HTTP requests are all positive indicators. The presence of a nonce check is also a good practice. However, the lack of capability checks on entry points is a significant concern, as it implies that any authenticated user could potentially trigger functionalities, regardless of their role or permissions. This, combined with the historical vulnerability data indicating a past medium-severity CSRF issue, suggests a need for vigilance. While there are no currently unpatched CVEs, the past vulnerability highlights that the plugin has had security flaws, and the absence of role-based access control on its entry points could be a vector for future exploits, especially if new vulnerabilities are discovered.

Key Concerns

No capability checks on entry points
Past medium severity vulnerability (CSRF)

Vulnerabilities

Pretty Search Permalinks Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-67626medium · 4.3Cross-Site Request Forgery (CSRF)

SEO Search <= 1.1 - Cross-Site Request Forgery

Dec 20, 2025 Patched in 1.2 (68d)

Code Analysis

Analyzed Mar 16, 2026

Pretty Search Permalinks Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

5 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped5 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

wpseosearch_settings (wp-seo-search.php:24)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Pretty Search Permalinks Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionload-options-permalink.phpwp-seo-search.php:20

actioninitwp-seo-search.php:49

actiontemplate_redirectwp-seo-search.php:66

filterplugin_row_metawp-seo-search.php:106

Maintenance & Trust

Pretty Search Permalinks Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 23, 2026

PHP min version7.4

Downloads6K

Community Trust

Rating100/100

Number of ratings3

Active installs100

Alternatives

Pretty Search Permalinks Alternatives

Greek Multi Tool – Greeklish Slugs, Permalinks & Transliteration

greek-multi-tool

The only lightweight plugin you need for Greek WordPress sites. Auto-convert Greeklish slugs, optimize permalinks, and enhance search without bloat.

1K 2 CVEs

Search Fixer

search-fixer

Search Fixer makes "pretty" search links work properly. A pretty search link usually looks like this:

200 No CVEs

Permalinks to Category/Permalinks

permalinks-to-categorypermalinks

The plugin automatically redirects users who have accessed a blog post link without the category to the one which has the category and therefore avoid …

100 No CVEs

Custom Base Terms

custom-base-terms

Modifique las estructuras personalizadas en las URLs para autor, búsqueda, comentarios, página y feed.

80 1 CVE

SEO Search Permalink

seo-search-permalink

Change default search URLs to SEO-friendly URLs, which may enhance your SERP rankings and increase your site traffic. The default URL ?s=keyword will …

30 1 unpatched

Developer Profile

Pretty Search Permalinks Developer Profile

Angel Costa

1 plugin · 100 total installs

trust score

Avg Security Score

99/100

Avg Patch Time

68 days

View full developer profile

Detection Fingerprints

How We Detect Pretty Search Permalinks

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

regular-text

Data Attributes

name="wpseosearch_base"id="wpseosearch_base"

FAQ