GNTT Post Title Ticker Security & Risk Analysis

wordpress.org/plugins/gntt-post-title-ticker

This plugin will make display of all post title on any page or post or widget in your web site.plugin url:'http://market.mathgr.

10 active installs v1.0 PHP + WP 4.4.2+ Updated Mar 26, 2016
news-tickerpage-title-tickerpost-title-tickerslide-effecttitle-ticker
63
C · Use Caution
CVEs total1
Unpatched1
Last CVEMay 26, 2026
Safety Verdict

Is GNTT Post Title Ticker Safe to Use in 2026?

Use With Caution

Score 63/100

GNTT Post Title Ticker has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: May 26, 2026Updated 10yr ago
Risk Assessment

The "gntt-post-title-ticker" v1.0 plugin exhibits a generally positive security posture based on the provided static analysis. The absence of dangerous functions, SQL queries without prepared statements, and improperly escaped output are strong indicators of good development practices. Furthermore, the lack of external HTTP requests and file operations significantly reduces the potential attack surface. The analysis also indicates no known vulnerabilities or CVEs associated with this plugin, suggesting a stable and secure history.

Key Concerns

  • No nonce checks detected
  • No capability checks detected
Vulnerabilities
1 published

GNTT Post Title Ticker Security Vulnerabilities

CVEs by Year

1 CVE in 2026 · unpatched
2026
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2026-8701medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

GNTT Post Title Ticker <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes

May 26, 2026Unpatched
Version History

GNTT Post Title Ticker Release Timeline

No version history available.
Code Analysis
Analyzed Mar 17, 2026

GNTT Post Title Ticker Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0
Attack Surface

GNTT Post Title Ticker Attack Surface

Entry Points3
Unprotected0

Shortcodes 3

[title-ticker-slide] gntt-post-title-ticker.php:67
[title-ticker-fade] gntt-post-title-ticker.php:107
[title-ticker-typing] gntt-post-title-ticker.php:148
WordPress Hooks 4
actionadmin_enqueue_scriptsgntt-post-title-ticker.php:18
actionwp_enqueue_scriptsgntt-post-title-ticker.php:19
actionwp_enqueue_scriptsgntt-post-title-ticker.php:25
filterwidget_textgntt-post-title-ticker.php:151
Maintenance & Trust

GNTT Post Title Ticker Maintenance & Trust

Maintenance Signals

WordPress version tested4.4.34
Last updatedMar 26, 2016
PHP min version
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Developer Profile

GNTT Post Title Ticker Developer Profile

golzarrahman

3 plugins · 30 total installs

79
trust score
Avg Security Score
78/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect GNTT Post Title Ticker

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/gntt-post-title-ticker/css/styles.css/wp-content/plugins/gntt-post-title-ticker/js/titleticker.js
Script Paths
/wp-content/plugins/gntt-post-title-ticker/js/titleticker.js

HTML / DOM Fingerprints

CSS Classes
title-tickerslidefadetyping
Data Attributes
id='TickerSlideid='TickerFadeid='TickerTyping
Shortcode Output
<div class='title-ticker'<h3 align='center' style='background:<ul id='TickerSlide<ul id='TickerFade
FAQ

Frequently Asked Questions about GNTT Post Title Ticker