Does news ticker benaceur have any unpatched vulnerabilities?

No. All known vulnerabilities in news ticker benaceur have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is news ticker benaceur compatible with WordPress 6.9.4?

According to WordPress.org data, news ticker benaceur 3.4.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is news ticker benaceur updated?

news ticker benaceur was last updated on Dec 7, 2025. Frequent updates are generally a positive security signal.

What is news ticker benaceur's security score?

news ticker benaceur has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

news ticker benaceur Security & Risk Analysis

wordpress.org/plugins/news-ticker-benaceur

This plugin allow you to display the latest posts or latest comments in a bar with twenty seven beautiful animations and effects...

1K active installs v3.4.2 PHP + WP 3.0+ Updated Dec 7, 2025

latest-commentslatest-news-animationlatest-postsnews-postnews-ticker

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is news ticker benaceur Safe to Use in 2026?

Generally Safe

Score 100/100

news ticker benaceur has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3mo ago

Risk Assessment

The news-ticker-benaceur plugin v3.4.2 exhibits a mixed security posture. While the plugin demonstrates good practices in several areas, such as the complete absence of raw SQL queries and external HTTP requests, and a lack of known critical vulnerabilities, there are significant concerns that warrant attention. The presence of an unprotected AJAX handler represents a primary attack vector. Furthermore, a low percentage of properly escaped output suggests a high potential for cross-site scripting (XSS) vulnerabilities, as user-supplied data may be rendered directly in the browser without adequate sanitization.

The static analysis highlights a total of two entry points, with one being unprotected, which is a notable risk. The lack of reported CVEs is positive, indicating a history of relative security, but this should not be a sole basis for complacency given the observed code quality issues. The vulnerability history not showing any recorded issues could be due to the plugin not being widely targeted or thoroughly audited in the past.

In conclusion, while the absence of serious vulnerabilities in its history and the use of prepared statements are strengths, the unprotected AJAX handler and the low rate of output escaping present considerable risks. These areas require immediate remediation to improve the plugin's overall security.

Key Concerns

1 unprotected AJAX handler
22% of output properly escaped

Vulnerabilities

None known

news ticker benaceur Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

news ticker benaceur Code Analysis

Dangerous Functions

Raw SQL Queries

4 prepared

Unescaped Output

667

187 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

100% prepared4 total queries

Output Escaping

22% escaped854 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<ie-setts> (includes\ie-setts.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

news ticker benaceur Attack Surface

Entry Points2

Unprotected1

AJAX Handlers 1

authwp_ajax_ntb__prefix_get_imageincludes\global.php:40

Shortcodes 1

[wp_news_ticker_benaceur_short_code] includes\global.php:28

WordPress Hooks 16

actionadmin_head-settings_page_news_ticker_benaceurincludes\global.php:17

actionadmin_noticesincludes\global.php:18

actionwp_headincludes\global.php:19

actionwp_loadedincludes\global.php:20

actionwp_headincludes\global.php:21

actioninitincludes\global.php:23

actionadmin_menuincludes\global.php:24

actionadmin_initincludes\global.php:25

actionadmin_initincludes\global.php:26

actionadmin_bar_menuincludes\global.php:29

actionadmin_initincludes\global.php:31

actionwp_ntb_msg_updateincludes\global.php:32

actioninitincludes\global.php:33

actionwp_enqueue_scriptsincludes\global.php:35

actionwp_news_ticker_benaceur_anim_scriptsincludes\global.php:37

actionadmin_enqueue_scriptsincludes\global.php:39

Maintenance & Trust

news ticker benaceur Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 7, 2025

PHP min version

Downloads59K

Community Trust

Rating100/100

Number of ratings25

Active installs1K

Alternatives

news ticker benaceur Alternatives

Ten News Ticker

ten-news-ticker

100

Customizable WordPress news ticker with 10 themes and multiple animations to dynamically display recent posts from any category.

0 No CVEs

Ditty – Responsive News Tickers, Sliders, and Lists

ditty-news-ticker

Ditty offers a range of content display options, including its signature news ticker and customizable layouts.

30K 14 CVEs

Smart Post Show – Post Grid, Post Carousel & Slider, and List Category Posts

post-carousel

Display posts, pages, and taxonomies in beautiful carousel, slider, and grid layouts with advanced filtering. Customizable, Developer-friendly.

20K 4 CVEs

T4B News Ticker – Responsive News Scroller, Slider, and Animations

t4b-news-ticker

100

T4B News Ticker is a flexible and user-friendly news ticker plugin for WordPress, designed to create horizontal news tickers with 4 unique animations.

7K No CVEs

Latest Posts

latest-posts

Latest posts widget to display recent posts from category.

5K No CVEs

Developer Profile

news ticker benaceur Developer Profile

Benaceur

3 plugins · 2K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

13 days

View full developer profile

Detection Fingerprints

How We Detect news ticker benaceur

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/news-ticker-benaceur/style.css/wp-content/plugins/news-ticker-benaceur/js/custom.js/wp-content/plugins/news-ticker-benaceur/js/slick.min.js/wp-content/plugins/news-ticker-benaceur/js/countdown.js/wp-content/plugins/news-ticker-benaceur/js/countdown.min.js/wp-content/plugins/news-ticker-benaceur/css/countdown.css/wp-content/plugins/news-ticker-benaceur/css/slick.css/wp-content/plugins/news-ticker-benaceur/css/slick-theme.css+4 more

Script Paths

/wp-content/plugins/news-ticker-benaceur/js/custom.js/wp-content/plugins/news-ticker-benaceur/js/slick.min.js/wp-content/plugins/news-ticker-benaceur/js/countdown.js/wp-content/plugins/news-ticker-benaceur/js/countdown.min.js/wp-content/plugins/news-ticker-benaceur/js/jquery.mousewheel.min.js/wp-content/plugins/news-ticker-benaceur/js/mwheelIntent.js+1 more

Version Parameters

news-ticker-benaceur/style.css?ver=news-ticker-benaceur/js/custom.js?ver=news-ticker-benaceur/js/slick.min.js?ver=news-ticker-benaceur/js/countdown.js?ver=news-ticker-benaceur/js/countdown.min.js?ver=news-ticker-benaceur/css/countdown.css?ver=news-ticker-benaceur/css/slick.css?ver=news-ticker-benaceur/css/slick-theme.css?ver=news-ticker-benaceur/css/jquery.jscrollpane.css?ver=news-ticker-benaceur/js/jquery.mousewheel.min.js?ver=news-ticker-benaceur/js/mwheelIntent.js?ver=news-ticker-benaceur/js/jquery.jscrollpane.min.js?ver=

HTML / DOM Fingerprints

CSS Classes

ntb_carouselntb_text_effectsntb_tickerntb_title_containerntb_description_container

HTML Comments

Data Attributes

data-ntb-settings

JS Globals

wp_news_ticker_benaceurntb_custom_settings

REST Endpoints

/wp-json/news-ticker-benaceur/v1/get_posts/wp-json/news-ticker-benaceur/v1/get_comments

Shortcode Output

[wp_news_ticker_benaceur_short_code]

FAQ