WP-Safety

Logo Carousel – Responsive Logo Slider, Logo Showcase, and Clients Logo Gallery Security & Risk Analysis

wordpress.org/plugins/logo-carousel-free

Add, display, and manage clients, partners, sponsors, and brand logos with multiple slideshows on your site. Customizable – No coding required!

20K active installs v3.6.10 PHP 7.0+ WP 5.0+ Updated Dec 26, 2025
display-logologo-carousellogo-gallerylogo-showcaselogo-slider
99
A · Safe
CVEs total2
Unpatched0
Last CVENov 22, 2021
Plugin page Download
Safety Verdict

Is Logo Carousel – Responsive Logo Slider, Logo Showcase, and Clients Logo Gallery Safe to Use in 2026?

Generally Safe

Score 99/100

Logo Carousel – Responsive Logo Slider, Logo Showcase, and Clients Logo Gallery has a strong security track record. Known vulnerabilities have been patched promptly.

2 known CVEsLast CVE: Nov 22, 2021Updated 3mo ago
Risk Assessment

The logo-carousel-free plugin v3.6.10 presents a mixed security posture. On the positive side, it demonstrates good practices in its handling of SQL queries and output escaping, with 100% of SQL queries using prepared statements and a high percentage of outputs being properly escaped. The absence of critical or high severity taint flows is also encouraging, suggesting that direct injection vulnerabilities are less likely. However, several areas raise concerns. The presence of two AJAX handlers without authentication checks creates a significant attack surface that could be exploited by unauthenticated users to trigger unintended actions. The use of the `unserialize` function, even if not directly tied to a taint flow in this analysis, is a known security risk and requires careful handling of serialized data. Furthermore, the plugin's history includes two medium severity vulnerabilities, one related to improper authorization and another to cross-site scripting, indicating past weaknesses that, while currently patched, warrant vigilance. The last vulnerability being in 2021 suggests a period of inactivity, but the nature of past issues suggests potential for similar vulnerabilities if input validation or authorization checks are not meticulously maintained.

Key Concerns

  • AJAX handlers without authentication checks
  • Use of unserialize function
  • Past medium severity vulnerabilities (x2)
Vulnerabilities
2

Logo Carousel – Responsive Logo Slider, Logo Showcase, and Clients Logo Gallery Security Vulnerabilities

CVEs by Year

2 CVEs in 2021
2021
Patched Has unpatched

Severity Breakdown

Medium
2

2 total CVEs

CVE-2021-24739medium · 4.3Improper Authorization

Logo Carousel <= 3.4.1 - Unauthorised Private Post Access

Nov 22, 2021 Patched in 3.4.2 (792d)
CVE-2021-24738medium · 5.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Logo Carousel <= 3.4.1 - Contributor+ Stored Cross-Site Scripting

Nov 22, 2021 Patched in 3.4.2 (792d)
Code Analysis
Analyzed Mar 16, 2026

Logo Carousel – Responsive Logo Slider, Logo Showcase, and Clients Logo Gallery Code Analysis

Dangerous Functions
1
Raw SQL Queries
0
14 prepared
Unescaped Output
86
711 escaped
Nonce Checks
13
Capability Checks
9
File Operations
0
External Requests
1
Bundled Libraries
0

Dangerous Functions Found

unserialize$plugins = unserialize( $response['body'] );includes\free\loader.php:170

SQL Query Safety

100% prepared14 total queries

Output Escaping

89% escaped797 total outputs
Data Flows
All sanitized

Data Flow Analysis

4 flows
dismiss_offer_banner (admin\views\notices\offer-banner.php:154)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Logo Carousel – Responsive Logo Slider, Logo Showcase, and Clients Logo Gallery Attack Surface

Entry Points9
Unprotected2

AJAX Handlers 8

authwp_ajax_shapedplugin_dismiss_offer_banneradmin\views\notices\offer-banner.php:36
authwp_ajax_sp-lcfree-never-show-review-noticeadmin\views\notices\review.php:32
authwp_ajax_splcp_preview_meta_boxadmin\views\sp-framework\classes\metabox-options.class.php:116
authwp_ajax_splogocarousel-get-iconsadmin\views\sp-framework\functions\actions.php:56
authwp_ajax_splogocarousel-resetadmin\views\sp-framework\functions\actions.php:80
authwp_ajax_splogocarousel-chosenadmin\views\sp-framework\functions\actions.php:117
authwp_ajax_lcp_export_shortcodesmain.php:165
authwp_ajax_lcp_import_shortcodesmain.php:166

Shortcodes 1

[logocarousel] public\views\shortcoderender.php:47
WordPress Hooks 55
actioninitadmin\GutenbergBlock\class-logo-carousel-free-gutenberg-block-init.php:27
actionenqueue_block_editor_assetsadmin\GutenbergBlock\class-logo-carousel-free-gutenberg-block-init.php:28
actionelementor/preview/enqueue_scriptsadmin\Logo_Carousel_Free_Element_Shortcode_Block.php:61
actionelementor/preview/enqueue_stylesadmin\Logo_Carousel_Free_Element_Shortcode_Block.php:62
actionelementor/editor/before_enqueue_scriptsadmin\Logo_Carousel_Free_Element_Shortcode_Block.php:63
actionelementor/initadmin\Logo_Carousel_Free_Element_Shortcode_Block.php:115
actionelementor/widgets/registeradmin\Logo_Carousel_Free_Element_Shortcode_Block.php:132
actionelementor/preview/enqueue_scriptsadmin\Logo_Carousel_Free_Element_Shortcode_Block_Deprecated.php:61
actionelementor/preview/enqueue_stylesadmin\Logo_Carousel_Free_Element_Shortcode_Block_Deprecated.php:62
actionelementor/editor/before_enqueue_scriptsadmin\Logo_Carousel_Free_Element_Shortcode_Block_Deprecated.php:63
actionelementor/initadmin\Logo_Carousel_Free_Element_Shortcode_Block_Deprecated.php:115
actionelementor/widgets/registeradmin\Logo_Carousel_Free_Element_Shortcode_Block_Deprecated.php:132
actionadmin_noticesadmin\views\notices\offer-banner.php:35
actionadmin_noticesadmin\views\notices\review.php:31
actionadmin_enqueue_scriptsadmin\views\scripts.php:43
actionwp_enqueue_scriptsadmin\views\sp-framework\classes\abstract.class.php:46
actionadmin_menuadmin\views\sp-framework\classes\admin-options.class.php:175
actionadmin_bar_menuadmin\views\sp-framework\classes\admin-options.class.php:176
actionnetwork_admin_menuadmin\views\sp-framework\classes\admin-options.class.php:180
actionadd_meta_boxesadmin\views\sp-framework\classes\metabox-options.class.php:113
actionsave_postadmin\views\sp-framework\classes\metabox-options.class.php:114
actionedit_attachmentadmin\views\sp-framework\classes\metabox-options.class.php:115
actionafter_setup_themeadmin\views\sp-framework\classes\setup.class.php:142
actioninitadmin\views\sp-framework\classes\setup.class.php:143
actionswitch_themeadmin\views\sp-framework\classes\setup.class.php:144
actionadmin_enqueue_scriptsadmin\views\sp-framework\classes\setup.class.php:145
filteradmin_footer_textadmin\views\sp-framework\classes\setup.class.php:504
filterupdate_footeradmin\views\sp-framework\classes\setup.class.php:505
filterenter_title_hereadmin\views\sp-framework\functions\helpers.php:76
actioninitclass\logo.php:46
filterinitclass\shortcode.php:27
filterpost_updated_messagesclass\shortcode.php:28
actionplugins_loadedincludes\class-logo-carousel-free-updates.php:52
actionadmin_menuincludes\free\loader.php:61
actionadmin_menuincludes\free\loader.php:62
actionadmin_print_scriptsincludes\free\loader.php:65
actionadmin_menuincludes\free\loader.php:67
actionadmin_menuincludes\free\loader.php:68
actionmanage_sp_logo_carousel_posts_columnsincludes\functions.php:31
actionmanage_sp_logo_carousel_posts_custom_columnincludes\functions.php:51
actionadd_meta_boxesincludes\functions.php:62
filteradmin_footer_textincludes\functions.php:81
actionadmin_action_sp_lc_shortcode_duplicateincludes\functions.php:159
filterpost_row_actionsincludes\functions.php:176
filterwidget_textincludes\functions.php:193
filterwp_revisions_to_keepincludes\updates\update-3.4.9.php:28
filterplugin_row_metamain.php:145
filtermanage_sp_lc_shortcodes_posts_columnsmain.php:146
actionafter_setup_thememain.php:155
actionwp_loadedmain.php:156
actionwp_enqueue_scriptsmain.php:157
actionadmin_enqueue_scriptsmain.php:158
actionmanage_sp_lc_shortcodes_posts_custom_columnmain.php:159
actionactivated_pluginmain.php:160
actionsave_postmain.php:161
Maintenance & Trust

Logo Carousel – Responsive Logo Slider, Logo Showcase, and Clients Logo Gallery Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 26, 2025
PHP min version7.0
Downloads722K

Community Trust

Rating94/100
Number of ratings161
Active installs20K
Alternatives

Logo Carousel – Responsive Logo Slider, Logo Showcase, and Clients Logo Gallery Alternatives

WP Logo Showcase Responsive Slider and Carousel

WP Logo Showcase Responsive Slider and Carousel

wp-logo-showcase-responsive-slider-slider

A
100

WP Logo Showcase Responsive Slider and Carousel allows you to display logos of clients, sponsors, brands, or partners in a professional and responsive &hellip;

30K No CVEs
Logo Carousel Slider

Logo Carousel Slider

logo-carousel-slider

C
63

It allows you to easily create logo carousel/slider to display logos of clients, partners, sponsors, affiliates etc.

7K 1 unpatched
Logo Slider and Showcase

Logo Slider and Showcase

wp-logo-showcase

A
100

Logo Slider and Showcase plugin is fully Responsive and Mobile Friendly to display your partner logo in slider and grid views.

7K 1 CVE
Logo Showcase – Responsive Logo Carousel, Logo Slider & Logo Grid

Logo Showcase – Responsive Logo Carousel, Logo Slider & Logo Grid

logo-showcase-with-slick-slider

A
99

Create clients, partners or sponsors responsive Logo Slider, Logo Carousel or Logo Grid. Display unlimited Logo Showcase with shortcode and settings.

5K 3 CVEs
Logo Showcase Ultimate – Logo Carousel, Logo Slider & Logo Grid

Logo Showcase Ultimate – Logo Carousel, Logo Slider & Logo Grid

logo-showcase-ultimate

A
94

Ultimate logo showcase plugin to create responsive logo carousel, logo slider & logo grid and display unlimited clients, partners, sponsors logos

4K 3 CVEs
Developer Profile

Logo Carousel – Responsive Logo Slider, Logo Showcase, and Clients Logo Gallery Developer Profile

ShapedPlugin LLC

18 plugins · 315K total installs

77
trust score
Avg Security Score
97/100
Avg Patch Time
385 days
View full developer profile
Detection Fingerprints

How We Detect Logo Carousel – Responsive Logo Slider, Logo Showcase, and Clients Logo Gallery

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/logo-carousel-free/public/assets/css/swiper-bundle.min.css/wp-content/plugins/logo-carousel-free/public/assets/css/font-awesome.min.css/wp-content/plugins/logo-carousel-free/public/assets/css/style.css/wp-content/plugins/logo-carousel-free/public/assets/css/fontello.css
Script Paths
/wp-content/plugins/logo-carousel-free/public/assets/js/swiper-bundle.min.js
Version Parameters
logo-carousel-free/public/assets/css/swiper-bundle.min.css?ver=logo-carousel-free/public/assets/css/font-awesome.min.css?ver=logo-carousel-free/public/assets/css/style.css?ver=logo-carousel-free/public/assets/css/fontello.css?ver=logo-carousel-free/public/assets/js/swiper-bundle.min.js?ver=

HTML / DOM Fingerprints

CSS Classes
sp-lc-carousel-wrappersp-lc-logo-itemsp_lc_shortcodesp-lc-dotssp-lc-arrowssp-lc-navigation
HTML Comments
<!-- SP LC Shortcode Render Start --><!-- SP LC Shortcode Render End --><!-- SP LC Pro Offer Banner --><!-- SP LC Free Gutenberg Block -->
Data Attributes
data-sp-lc-iddata-sp-lc-options
JS Globals
sp_lc_settingsSP_LC_Frontend
REST Endpoints
/wp-json/logo-carousel-free/v1/settings
Shortcode Output
[logo-carousel[logo_carousel
FAQ

Frequently Asked Questions about Logo Carousel – Responsive Logo Slider, Logo Showcase, and Clients Logo Gallery