Does Yext AI Search have any unpatched vulnerabilities?

No. All known vulnerabilities in Yext AI Search have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Yext AI Search compatible with WordPress 6.9.4?

According to WordPress.org data, Yext AI Search 1.0.6 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Yext AI Search compatible with PHP 7.4+?

Yext AI Search requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Yext AI Search updated?

Yext AI Search was last updated on Dec 8, 2025. Frequent updates are generally a positive security signal.

What is Yext AI Search's security score?

Yext AI Search has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Yext AI Search Security & Risk Analysis

wordpress.org/plugins/yext-ai-search

Add the world's best search experience to your website in minutes.

30 active installs v1.0.6 PHP 7.4+ WP 5.8+ Updated Dec 8, 2025

autocompleterelevant-searchsearchsite-searchyext

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Yext AI Search Safe to Use in 2026?

Generally Safe

Score 100/100

Yext AI Search has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The "yext-ai-search" v1.0.6 plugin exhibits a generally strong security posture based on the provided static analysis. The plugin has no known vulnerabilities (CVEs) and demonstrates good coding practices by utilizing prepared statements for all SQL queries and performing output escaping on a significant majority of its outputs. The attack surface is relatively small with no unprotected entry points identified in the static analysis.

However, there are a few areas that warrant attention. The lack of nonce checks on AJAX handlers is a notable concern, as it could potentially lead to cross-site request forgery (CSRF) vulnerabilities if any of these handlers perform sensitive actions. While there are no identified critical or high severity taint flows, the absence of any taint analysis data means that potential vulnerabilities in this area cannot be definitively ruled out. The plugin also makes file operations, which could be a risk if not handled with proper input validation and sanitization.

Overall, the plugin appears to be well-developed with a focus on security. The absence of past vulnerabilities is a positive sign. The primary areas for improvement lie in implementing nonce checks for AJAX actions and ensuring all file operations are secured. Further, a comprehensive taint analysis would provide more definitive assurance.

Key Concerns

Missing nonce checks on AJAX handlers
No taint analysis performed
File operations present without specific security context

Vulnerabilities

None known

Yext AI Search Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Yext AI Search Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

187 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

75% escaped250 total outputs

Attack Surface

Yext AI Search Attack Surface

Entry Points2

Unprotected0

REST API Routes 2

POST/wp-json/yext/v1settingsincludes\classes\Admin\Settings.php:205

POST/wp-json/yext/v1activatedincludes\classes\Admin\Settings.php:225

WordPress Hooks 25

actioninitincludes\blocks.php:19

actionenqueue_block_assetsincludes\blocks.php:20

filterblock_categories_allincludes\blocks.php:22

actionadmin_initincludes\classes\Admin\Fields\Type\AbstractField.php:166

filteryext_sanitize_settingsincludes\classes\Admin\Fields\Type\AbstractField.php:167

actionadmin_menuincludes\classes\Admin\Settings.php:160

actionrest_api_initincludes\classes\Admin\Settings.php:161

actionadmin_initincludes\classes\Admin\Settings.php:162

actionadmin_initincludes\classes\Admin\Tabs\Tab.php:58

filterget_search_formincludes\classes\Components\SearchBar.php:53

filterrender_blockincludes\classes\Components\SearchBar.php:54

actionadmin_noticesincludes\classes\Install.php:34

filtertheme_page_templatesincludes\classes\Templates\AbstractTemplate.php:41

filterwp_insert_post_dataincludes\classes\Templates\AbstractTemplate.php:44

filtertemplate_includeincludes\classes\Templates\AbstractTemplate.php:48

actioninitincludes\core.php:28

actioninitincludes\core.php:29

actionwp_enqueue_scriptsincludes\core.php:30

actionwp_enqueue_scriptsincludes\core.php:31

actionadmin_enqueue_scriptsincludes\core.php:32

actionadmin_enqueue_scriptsincludes\core.php:33

actionadmin_enqueue_scriptsincludes\core.php:34

actionadmin_noticesincludes\core.php:35

filtermce_cssincludes\core.php:38

filterscript_loader_tagincludes\core.php:40

Maintenance & Trust

Yext AI Search Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 8, 2025

PHP min version7.4

Downloads4K

Community Trust

Rating0/100

Number of ratings0

Active installs30

Alternatives

Yext AI Search Alternatives

Yext Answers Site Search

yext-answers

This plugin is no longer being maintained. If you are looking to add Answers to your Wordpress site, please use our new plugin: https://wordpress.

20 No CVEs

SearchIQ – The Search Solution

searchiq

Our FREE plugin makes your website’s search fast and more relevant. searchIQ helps you to manage content more effectively with real-time analytics.

1K 7 CVEs

HeyDay – Search More

heyday-search

Boost engagement and conversions by keeping users on your site with HeyDay Search More’s enhanced search suggestions and real-time product discovery.

0 No CVEs

Keyspider Site Search Plugin for WordPress

keyspider-search

Relevant, intelligent, and fully customizable site search for your WordPress website.

0 No CVEs

WP Search with Algolia

wp-search-with-algolia

100

Use the power of Algolia AI Search & Discovery to enhance your website's search. Enable AI-powered Autocomplete and InstantSearch for fast, a …

7K No CVEs

Developer Profile

Yext AI Search Developer Profile

Yext

4 plugins · 880 total installs

trust score

Avg Security Score

83/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Yext AI Search

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/yext-ai-search/dist/js/blocks.js/wp-content/plugins/yext-ai-search/dist/blocks/editor-style.css

Script Paths

https://assets.sitescdn.net/answers-search-bar/v1/answers.css

Version Parameters

yext-ai-search/dist/js/blocks.js?ver=yext-ai-search/dist/blocks/editor-style.css?ver=

HTML / DOM Fingerprints

CSS Classes

yext-activated-noticeyext-logoyext-settings__buttonyext-settings__button--primary

Data Attributes

data-dismissible

JS Globals

YEXT

FAQ