Client Testimonials Feedback Security & Risk Analysis
wordpress.org/plugins/client-testimonials-feedbackUse this plugin to get client testimonial feedback slider and listing in your wordpress.
Is Client Testimonials Feedback Safe to Use in 2026?
Generally Safe
Score 85/100Client Testimonials Feedback has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The client-testimonials-feedback v2.2 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of dangerous functions, all SQL queries utilizing prepared statements, and the presence of a nonce check are positive indicators. Furthermore, the plugin has no recorded vulnerabilities, including critical or high severity CVEs, which suggests a history of secure development and maintenance.
However, there are areas for concern. The low percentage of properly escaped output (21%) is a significant risk. This indicates that user-supplied data might be rendered directly into the page without sufficient sanitization, potentially leading to cross-site scripting (XSS) vulnerabilities. While the static analysis found no critical taint flows, the widespread unescaped output presents a substantial attack surface for reflected or stored XSS if malicious input can reach these output points.
In conclusion, while the plugin benefits from a clean vulnerability history and good practices around SQL and nonce handling, the critical issue of unescaped output presents a notable risk that could be exploited. Addressing the output escaping should be the primary focus for improving the plugin's security.
Key Concerns
- Low output escaping percentage
Client Testimonials Feedback Security Vulnerabilities
Client Testimonials Feedback Code Analysis
Output Escaping
Data Flow Analysis
Client Testimonials Feedback Attack Surface
Shortcodes 1
WordPress Hooks 8
Maintenance & Trust
Client Testimonials Feedback Maintenance & Trust
Maintenance Signals
Community Trust
Client Testimonials Feedback Alternatives
Strong Testimonials
strong-testimonials
An easy-to-use testimonial plugin to collect and show customer feedback in WordPress
Testimonial Grid and Testimonial Slider plus Carousel with Rotator Widget
wp-testimonial-with-widget
A quick, easy way to add and display responsive, clean client's testimonial on your website using a shortcode, widget or Gutenberg block.
Super Testimonial – Testimonial & Customer Review Slider Plugin for WordPress
super-testimonial
Testimonials are easy to use the plugin that allows users to add Testimonials to the sidebar, as a widget, or to embed testimonials into a Page or Pos …
Elfsight Testimonials Slider
elfsight-testimonials-slider
Level up your website credibility with trustworthy testimonials
Video Testimonial slider
video-testimonial-slider
Video Testimonial Slider plugin for WordPress website. Using plugin to display client Review and Testimonial with video popup through shortcode.
Client Testimonials Feedback Developer Profile
1 plugin · 0 total installs
How We Detect Client Testimonials Feedback
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/client-testimonials-feedback/include/css/testimonial-slick.css/wp-content/plugins/client-testimonials-feedback/include/css/styles.css/wp-content/plugins/client-testimonials-feedback/include/js/testimonial-slick.js/wp-content/plugins/client-testimonials-feedback/include/js/functions.js/wp-content/plugins/client-testimonials-feedback/include/js/testimonial-slick.js/wp-content/plugins/client-testimonials-feedback/include/js/functions.js/wp-content/plugins/client-testimonials-feedback/include/js/color-picker.jsHTML / DOM Fingerprints
testimonial-settingdata-default-color[client-testimonial-feedback]