WP-Safety

Easy Testimonials Carousel Security & Risk Analysis

wordpress.org/plugins/easy-testimonials-carousel

Easy Testimonials Carousel

10 active installs v1.7 PHP 8.0+ WP 6.0+ Updated Dec 15, 2025
carouselcustomer-reviewssocial-prooftestimonial-slidertestimonials
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Easy Testimonials Carousel Safe to Use in 2026?

Generally Safe

Score 100/100

Easy Testimonials Carousel has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago
Risk Assessment

The "easy-testimonials-carousel" plugin v1.7 exhibits a mixed security posture. While it demonstrates good practices such as using prepared statements for all SQL queries and a high percentage of properly escaped output, there are notable areas of concern. The plugin exposes two AJAX handlers without authentication checks, creating a potential attack surface for unauthenticated users. Additionally, the presence of the `unserialize()` function, even if not immediately evident in taint analysis, is a known dangerous function that can lead to serious vulnerabilities if not handled with extreme care and proper input validation. The lack of any recorded vulnerability history, while positive, does not guarantee future security and should be viewed in conjunction with the identified code signals.

Key Concerns

  • AJAX handlers without authentication
  • Use of unserialize() function
Vulnerabilities
None known

Easy Testimonials Carousel Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Easy Testimonials Carousel Release Timeline

v1.7Current
v1.6
v1.5
v1.4
v1.3
v1.2
v1.1
Code Analysis
Analyzed Apr 16, 2026

Easy Testimonials Carousel Code Analysis

Dangerous Functions
1
Raw SQL Queries
0
0 prepared
Unescaped Output
17
653 escaped
Nonce Checks
47
Capability Checks
4
File Operations
2
External Requests
1
Bundled Libraries
1

Dangerous Functions Found

unserialize$unserialized_data = unserialize(trim($meta_value));easy-testimonials-carousel.php:2314

Bundled Libraries

Select2

Output Escaping

97% escaped670 total outputs
Data Flows · Security
3 unsanitized

Data Flow Analysis

5 flows3 with unsanitized paths
zl_handle_import (easy-testimonials-carousel.php:2155)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Easy Testimonials Carousel Attack Surface

Entry Points8
Unprotected2

AJAX Handlers 6

authwp_ajax_save_active_tabeasy-testimonials-carousel.php:998
noprivwp_ajax_save_active_tabeasy-testimonials-carousel.php:999
authwp_ajax_inline-saveeasy-testimonials-carousel.php:1519
authwp_ajax_zl_fetch_testimonialseasy-testimonials-carousel.php:2031
noprivwp_ajax_zl_fetch_testimonialseasy-testimonials-carousel.php:2032
authwp_ajax_zletc_handle_deactivation_formincludes/deactivation-feedback.php:14

Shortcodes 2

[easy_testimonials] easy-testimonials-carousel.php:1940
[frontend_submission_form] easy-testimonials-carousel.php:2693
WordPress Hooks 18
filterplugin_row_metaeasy-testimonials-carousel.php:45
actionwp_enqueue_scriptseasy-testimonials-carousel.php:109
actionadmin_enqueue_scriptseasy-testimonials-carousel.php:169
actioniniteasy-testimonials-carousel.php:253
actionadd_meta_boxeseasy-testimonials-carousel.php:276
actionafter_setup_themeeasy-testimonials-carousel.php:282
actionadmin_headeasy-testimonials-carousel.php:1007
actionsave_posteasy-testimonials-carousel.php:1430
actionsave_post_zl_testimonialseasy-testimonials-carousel.php:1494
filtermanage_zl_shortc_setting_posts_columnseasy-testimonials-carousel.php:1534
actionmanage_zl_shortc_setting_posts_custom_columneasy-testimonials-carousel.php:1542
actionadmin_headeasy-testimonials-carousel.php:1548
actionadd_meta_boxeseasy-testimonials-carousel.php:1953
actionadmin_menueasy-testimonials-carousel.php:1998
actionadmin_initeasy-testimonials-carousel.php:2119
actioniniteasy-testimonials-carousel.php:2479
actionadmin_initeasy-testimonials-carousel.php:2491
actionwpeasy-testimonials-carousel.php:2687
Maintenance & Trust

Easy Testimonials Carousel Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 15, 2025
PHP min version8.0
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Easy Testimonials Carousel Alternatives

Solid Testimonials – Testimonial Slider, Video Testimonials & Customer Reviews

Solid Testimonials – Testimonial Slider, Video Testimonials & Customer Reviews

gs-testimonial

A
97

Showcase and automate customer reviews with ease - sliders, grids, filters, and more to boost trust and sales.

2K 6 CVEs
Reviewfic – The Ultimate Testimonial Slider, Carousel, Grid Plugin

Reviewfic – The Ultimate Testimonial Slider, Carousel, Grid Plugin

reviewfic

A
92

Showcase testimonials, customer reviews, or quotes on your website. Easily display reviews across posts, pages, custom templates, widgets, and more.

10 No CVEs
Real Testimonials – Testimonial Slider, Collect Customer Reviews and Video Testimonials

Real Testimonials – Testimonial Slider, Collect Customer Reviews and Video Testimonials

testimonial-free

A
98

A Customizable Testimonial plugin to Automate Collecting, Filtering, and Publishing Customer Reviews. Testimonial Slider, Grid & More to Grow Sales

40K 3 CVEs
Testimonial Slider, Grid & Carousel

Testimonial Slider, Grid & Carousel

testimonial-awesome

A
92

Create and display Testimonial slider, testimonial grid & testimonial carousel under. Easy to create. Easy to customize.

200 No CVEs
Ace Testimonials Slider

Ace Testimonials Slider

ace-testimonials-slider

A
100

A sleek, responsive, and highly customizable WordPress plugin to showcase client testimonials and customer reviews in a beautiful slider format.

0 No CVEs
Developer Profile

Easy Testimonials Carousel Developer Profile

Maulik Vora

6 plugins · 10K total installs

79
trust score
Avg Security Score
100/100
Avg Patch Time
123 days
View full developer profile
Detection Fingerprints

How We Detect Easy Testimonials Carousel

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/easy-testimonials-carousel/assets/slick/slick.css/wp-content/plugins/easy-testimonials-carousel/assets/slick/slick-theme.css/wp-content/plugins/easy-testimonials-carousel/assets/css/font-awesome.css/wp-content/plugins/easy-testimonials-carousel/assets/css/testimonial-style.css/wp-content/plugins/easy-testimonials-carousel/assets/slick/slick.min.js/wp-content/plugins/easy-testimonials-carousel/assets/js/solid.min.js/wp-content/plugins/easy-testimonials-carousel/assets/js/extraSlickOptions.js/wp-content/plugins/easy-testimonials-carousel/assets/js/testimonial-slider.js+11 more
Script Paths
jqueryjquery-migrateslick-jssolid-jsextra-slick-optionscustom-slider+6 more
Version Parameters
easy-testimonials-carousel/assets/slick/slick.css?ver=easy-testimonials-carousel/assets/slick/slick-theme.css?ver=easy-testimonials-carousel/assets/css/font-awesome.css?ver=easy-testimonials-carousel/assets/css/testimonial-style.css?ver=easy-testimonials-carousel/assets/slick/slick.min.js?ver=easy-testimonials-carousel/assets/js/solid.min.js?ver=easy-testimonials-carousel/assets/js/extraSlickOptions.js?ver=easy-testimonials-carousel/assets/js/testimonial-slider.js?ver=easy-testimonials-carousel/assets/css/font-family-css/easy-testimonials-carousel/assets/js/codemirror.min.js?ver=easy-testimonials-carousel/assets/js/css.min.js?ver=easy-testimonials-carousel/assets/css/codemirror.min.css?ver=easy-testimonials-carousel/assets/css/testimonial-admin.css?ver=easy-testimonials-carousel/assets/js/toaster-js.js?ver=easy-testimonials-carousel/assets/css/toaster-css.css?ver=easy-testimonials-carousel/assets/css/jquery-ui.css?ver=easy-testimonials-carousel/assets/css/select2.min.css?ver=easy-testimonials-carousel/assets/js/select2.min.js?ver=easy-testimonials-carousel/assets/js/zl-script.js?ver=

HTML / DOM Fingerprints

CSS Classes
zl-testimonial-sliderzl-testimonial-itemtestimonial-titletestimonial-contenttestimonial-designationtestimonial-avatartestimonial-author-nametestimonial-author-designation+1 more
HTML Comments
<!-- view details link at plugin author area starts --><!-- view details link at plugin author area ends -->
Data Attributes
data-post_iddata-active_tabdata-security
JS Globals
zl_script_data
FAQ

Frequently Asked Questions about Easy Testimonials Carousel