WP-Safety

Brand Carousel Security & Risk Analysis

wordpress.org/plugins/brand-carousel

Responsive Brand Carousel/Image Carousel. Easily display brand logos or images in a clean, mobile-friendly carousel.

0 active installs v1.0.1 PHP 7.0+ WP 5.0+ Updated Nov 29, 2025
brand-carouselbrand-sliderimage-carousellogo-sliderresponsive-carousel
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Brand Carousel Safe to Use in 2026?

Generally Safe

Score 100/100

Brand Carousel has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago
Risk Assessment

The 'brand-carousel' plugin v1.0.1 exhibits a generally positive security posture with good practices observed in the static analysis. It demonstrates strong adherence to secure coding by exclusively using prepared statements for its single SQL query, and a high percentage of its outputs are properly escaped. The absence of file operations, external HTTP requests, and known vulnerabilities in its history are all favorable indicators.

However, there are a few areas that warrant attention. The plugin has a total of one entry point (a shortcode) but lacks any nonce checks. While there's a single capability check, the absence of nonce checks on the shortcode handler could potentially expose it to certain types of attacks if it were to process user-supplied data without proper validation and authorization. The taint analysis shows no flows, which is good, but this may also be due to the limited scope of analysis or the specific nature of the plugin's functionality.

Overall, 'brand-carousel' v1.0.1 appears to be a relatively safe plugin, especially given its clean vulnerability history and secure SQL practices. The primary concern is the potential for attacks related to the shortcode's lack of nonce verification, which could be a weakness if the shortcode interacts with user-controllable data. Further investigation into the shortcode's implementation would be beneficial to fully assess its security.

Key Concerns

  • Shortcode lacks nonce checks
Vulnerabilities
None known

Brand Carousel Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Brand Carousel Release Timeline

v1.0.1Current
Code Analysis
Analyzed Mar 17, 2026

Brand Carousel Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
1 prepared
Unescaped Output
6
20 escaped
Nonce Checks
0
Capability Checks
1
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared1 total queries

Output Escaping

77% escaped26 total outputs
Attack Surface

Brand Carousel Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[brand-carousel] Classes\RBCS_Short_Codes.php:15
WordPress Hooks 11
actionplugins_loadedbrand-carousel.php:46
actioncarbon_fields_register_fieldsClasses\RBCS_Carbon_Fields.php:27
actionafter_setup_themeClasses\RBCS_Carbon_Fields.php:28
actioninitClasses\RBCS_Custom_Posts.php:16
filtermanage_rbcs_carousels_posts_columnsClasses\RBCS_Custom_Posts.php:17
actionmanage_rbcs_carousels_posts_custom_columnClasses\RBCS_Custom_Posts.php:18
actionadmin_initClasses\RBCS_Custom_Posts.php:19
filterenter_title_hereClasses\RBCS_Custom_Posts.php:20
filterposts_searchClasses\RBCS_Custom_Posts.php:100
actionwp_enqueue_scriptsClasses\RBCS_Enqueue_Scripts.php:17
actionadmin_enqueue_scriptsClasses\RBCS_Enqueue_Scripts.php:18
Maintenance & Trust

Brand Carousel Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedNov 29, 2025
PHP min version7.0
Downloads844

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Brand Carousel Alternatives

WP Logo Showcase Responsive Slider and Carousel

WP Logo Showcase Responsive Slider and Carousel

wp-logo-showcase-responsive-slider-slider

A
100

WP Logo Showcase Responsive Slider and Carousel allows you to display logos of clients, sponsors, brands, or partners in a professional and responsive …

30K No CVEs
Awesome Logo Carousel Block

Awesome Logo Carousel Block

awesome-logo-carousel-block

A
99

Awesome Logo Carousel Block allows you to create interactive client logos carousel with Gutenberg Block Editor.

5K 1 CVE
Owl Carousel WP

Owl Carousel WP

owl-carousel-wp

B
70

Owl Carousel WP is an easy plugin to add carousel in WordPress sites.This plugin is responsive and works using shortcode .

1K 1 unpatched
Logo Showcase with Logo Carousel, Logo Slider & Logo Grid

Logo Showcase with Logo Carousel, Logo Slider & Logo Grid

hm-logo-showcase

A
100

Easiest logo slider plugin to create, display and manage your clients, partners, supporters, and sponsors logos on your WordPress site.

200 No CVEs
PAJ Featured Image Owl Carousel / Slider

PAJ Featured Image Owl Carousel / Slider

paj-featured-image-owl-carousel

A
85

Responsive feature image Carousel slider for posts and pages, use with shortcode or SiteOrigin Widgets Bundle by SiteOrigin.

70 No CVEs
Developer Profile

Brand Carousel Developer Profile

Ferdaus Alom

4 plugins · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Brand Carousel

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/brand-carousel/assets/css/slick-theme.css/wp-content/plugins/brand-carousel/assets/css/slick.css/wp-content/plugins/brand-carousel/assets/js/slick.min.js/wp-content/plugins/brand-carousel/assets/js/rbcs-main.js/wp-content/plugins/brand-carousel/assets/css/carbon-fields-theme.css
Script Paths
/wp-content/plugins/brand-carousel/assets/js/rbcs-main.js
Version Parameters
brand-carousel/assets/css/slick.css?ver=brand-carousel/assets/js/slick.min.js?ver=brand-carousel/assets/js/rbcs-main.js?ver=

HTML / DOM Fingerprints

Shortcode Output
<!-- wp:shortcode -->[brand-carousel]<!-- /wp:shortcode -->
FAQ

Frequently Asked Questions about Brand Carousel