WP-Safety

WPC AJAX Search for WooCommerce Security & Risk Analysis

wordpress.org/plugins/wpc-ajax-search

WPC AJAX Search is an interaction search popup for WooCommerce.

1K active installs v2.5.1 PHP + WP 4.0+ Updated Mar 15, 2026
ajaxsearchwoocommercewpc
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is WPC AJAX Search for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

WPC AJAX Search for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 19d ago
Risk Assessment

The "wpc-ajax-search" v2.5.1 plugin exhibits a generally good security posture, with a high percentage of properly escaped outputs and a strong adherence to using prepared statements for SQL queries. The absence of recorded vulnerabilities in its history is a positive indicator. However, several areas warrant attention. The presence of one AJAX handler without authentication checks represents a direct entry point for potential unauthorized actions. Furthermore, the use of the "unserialize" function, even without critical taint flows identified, carries inherent risks if the serialized data originates from untrusted sources. While the current lack of known vulnerabilities is reassuring, the identified code signals suggest a need for vigilance, particularly concerning the unprotected AJAX endpoint.

Key Concerns

  • AJAX handler without auth check
  • Dangerous function unserialize used
Vulnerabilities
None known

WPC AJAX Search for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

WPC AJAX Search for WooCommerce Code Analysis

Dangerous Functions
3
Raw SQL Queries
1
4 prepared
Unescaped Output
33
261 escaped
Nonce Checks
12
Capability Checks
2
File Operations
5
External Requests
3
Bundled Libraries
1

Dangerous Functions Found

unserialize$plugins = unserialize( $response['body'] );includes\dashboard\wpc-dashboard.php:101
unserialize$plugins = unserialize( $response['body'] );includes\dashboard\wpc-dashboard.php:179
unserialize$plugins = unserialize( $response['body'] );includes\kit\wpc-kit.php:98

Bundled Libraries

jQuery

SQL Query Safety

80% prepared5 total queries

Output Escaping

89% escaped294 total outputs
Data Flows
All sanitized

Data Flow Analysis

6 flows
ajax_export (includes\dashboard\wpc-dashboard.php:215)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
1 unprotected

WPC AJAX Search for WooCommerce Attack Surface

Entry Points13
Unprotected1

AJAX Handlers 9

authwp_ajax_wpc_get_pluginsincludes\dashboard\wpc-dashboard.php:9
authwp_ajax_wpc_get_suggestionincludes\dashboard\wpc-dashboard.php:10
authwp_ajax_wpc_exportincludes\dashboard\wpc-dashboard.php:11
authwp_ajax_wpc_importincludes\dashboard\wpc-dashboard.php:12
authwp_ajax_wpc_get_essential_kitincludes\kit\wpc-kit.php:22
authwp_ajax_wpcas_add_rulewpc-ajax-search.php:95
authwp_ajax_wpcas_add_conditionwpc-ajax-search.php:96
authwp_ajax_wpcas_add_combinedwpc-ajax-search.php:97
authwp_ajax_wpcas_search_termwpc-ajax-search.php:98

Shortcodes 4

[wpcas_search_form] wpc-ajax-search.php:126
[wpcas_categories] wpc-ajax-search.php:127
[wpcas_products] wpc-ajax-search.php:128
[wpcas_posts] wpc-ajax-search.php:129
WordPress Hooks 27
actionadmin_enqueue_scriptsincludes\dashboard\wpc-dashboard.php:7
actionadmin_menuincludes\dashboard\wpc-dashboard.php:8
actionbefore_woocommerce_initincludes\hpos.php:7
actionadmin_enqueue_scriptsincludes\kit\wpc-kit.php:20
actionadmin_menuincludes\kit\wpc-kit.php:21
actionadmin_initincludes\log\wpc-log.php:6
actionplugins_loadedwpc-ajax-search.php:39
actionadmin_noticeswpc-ajax-search.php:43
actioninitwpc-ajax-search.php:69
actionwp_enqueue_scriptswpc-ajax-search.php:70
filterwp_nav_menu_itemswpc-ajax-search.php:71
actionwp_footerwpc-ajax-search.php:72
actionadmin_enqueue_scriptswpc-ajax-search.php:75
actionadmin_initwpc-ajax-search.php:76
filterpre_update_optionwpc-ajax-search.php:77
actionadmin_menuwpc-ajax-search.php:78
filterplugin_action_linkswpc-ajax-search.php:79
filterplugin_row_metawpc-ajax-search.php:80
filterpre_get_postswpc-ajax-search.php:83
filterpre_get_postswpc-ajax-search.php:87
actionwc_ajax_wpcas_loadwpc-ajax-search.php:91
actionwc_ajax_wpcas_searchwpc-ajax-search.php:92
actionwpcas_product_actionswpc-ajax-search.php:102
actionwpcas_product_actionswpc-ajax-search.php:106
actionwpcas_product_actionswpc-ajax-search.php:110
filterwpcsm_locationswpc-ajax-search.php:114
filterwpcas_disable_nonce_checkwpc-ajax-search.php:117
Maintenance & Trust

WPC AJAX Search for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 15, 2026
PHP min version
Downloads22K

Community Trust

Rating100/100
Number of ratings2
Active installs1K
Alternatives

WPC AJAX Search for WooCommerce Alternatives

Ivory Search – WordPress Search Plugin

Ivory Search – WordPress Search Plugin

add-search-to-menu

A
95

Advanced WordPress custom search plugin. Provides Search Form Customizer, WooCommerce Search, AJAX Search & Live Search support!

100K 11 CVEs
FiboSearch – Ajax Search for WooCommerce

FiboSearch – Ajax Search for WooCommerce

ajax-search-for-woocommerce

A
96

The most popular WooCommerce product search plugin. Gives your users a well-designed advanced AJAX search bar with live search suggestions.

100K 3 CVEs
WPC AJAX Add to Cart for WooCommerce

WPC AJAX Add to Cart for WooCommerce

wpc-ajax-add-to-cart

A
100

It is a highly effective plugin for helping online stores cut down the site’s loading time, improve the user experience, and increase sales.

10K No CVEs
Smart WooCommerce Search

Smart WooCommerce Search

smart-woocommerce-search

A
100

Ideal Product Search plugin for WooCommerce shops that enhances users' experience with a live search feature.

6K 1 CVE
Jetpack Search

Jetpack Search

jetpack-search

A
100

Easily add cloud-powered instant search and filters to your website or WooCommerce store with advanced algorithms that boost your search results based …

5K No CVEs
Developer Profile

WPC AJAX Search for WooCommerce Developer Profile

WPClever

71 plugins · 441K total installs

87
trust score
Avg Security Score
99/100
Avg Patch Time
68 days
View full developer profile
Detection Fingerprints

How We Detect WPC AJAX Search for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wpc-ajax-search/assets/feather/feather.css/wp-content/plugins/wpc-ajax-search/assets/libs/perfect-scrollbar/css/perfect-scrollbar.min.css/wp-content/plugins/wpc-ajax-search/assets/libs/perfect-scrollbar/css/custom-theme.css/wp-content/plugins/wpc-ajax-search/assets/libs/perfect-scrollbar/js/perfect-scrollbar.jquery.min.js/wp-content/plugins/wpc-ajax-search/assets/libs/placeholderTypewriter/placeholderTypewriter.js/wp-content/plugins/wpc-ajax-search/assets/css/frontend.css/wp-content/plugins/wpc-ajax-search/assets/js/frontend.js
Script Paths
wpc-ajax-search/assets/feather/feather.csswpc-ajax-search/assets/libs/perfect-scrollbar/css/perfect-scrollbar.min.csswpc-ajax-search/assets/libs/perfect-scrollbar/css/custom-theme.csswpc-ajax-search/assets/libs/perfect-scrollbar/js/perfect-scrollbar.jquery.min.jswpc-ajax-search/assets/libs/placeholderTypewriter/placeholderTypewriter.jswpc-ajax-search/assets/css/frontend.css+1 more
Version Parameters
wpc-ajax-search/assets/feather/feather.css?ver=wpc-ajax-search/assets/libs/perfect-scrollbar/css/perfect-scrollbar.min.css?ver=wpc-ajax-search/assets/libs/perfect-scrollbar/css/custom-theme.css?ver=wpc-ajax-search/assets/libs/perfect-scrollbar/js/perfect-scrollbar.jquery.min.js?ver=wpc-ajax-search/assets/libs/placeholderTypewriter/placeholderTypewriter.js?ver=wpc-ajax-search/assets/css/frontend.css?ver=wpc-ajax-search/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
wpcas-wrapwpcas-search-formwpcas-categorieswpcas-productswpcas-postswpcas-search-form-categorieswpcas-search-form-productswpcas-search-form-posts
HTML Comments
WPC AJAX Search for WooCommerceWPCleverWPCAS Settings
Data Attributes
data-wpc-ajax-searchdata-placeholderdata-search-typedata-search-post-typesdata-show-thumbnaildata-show-price+9 more
JS Globals
wpcas_frontend_paramsWPCleverWpcas
REST Endpoints
/wp-json/wpcas/v1/search/wp-json/wpcas/v1/categories/wp-json/wpcas/v1/products/wp-json/wpcas/v1/posts
Shortcode Output
[wpcas_search_form][wpcas_categories][wpcas_products][wpcas_posts]
FAQ

Frequently Asked Questions about WPC AJAX Search for WooCommerce