Does Product Brand have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Product Brand compatible with WordPress 5.9.13?

According to WordPress.org data, Product Brand 1.1.4 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

How often is Product Brand updated?

Product Brand was last updated on Feb 7, 2022. Frequent updates are generally a positive security signal.

What is Product Brand's security score?

Product Brand has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Product Brand Security & Risk Analysis

wordpress.org/plugins/ns-product-brand

Add product brand to your WooCommerce products!

20 active installs v1.1.4 PHP + WP 4.5+ Updated Feb 7, 2022

brandbrandsproduct-brandwoocommerce-brandwoocommerce-product

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Product Brand Safe to Use in 2026?

Generally Safe

Score 85/100

Product Brand has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The ns-product-brand plugin v1.1.4 exhibits a concerning security posture due to its unprotected entry points. While the code analysis reveals no direct usage of dangerous functions, raw SQL queries, or file operations, the presence of two AJAX handlers without authentication or capability checks represents a significant attack surface. The taint analysis indicates that all identified flows involve unsanitized paths, though thankfully, none are classified as critical or high severity. This suggests a potential for information disclosure or manipulation if these paths are reachable and exploitable.

The plugin's lack of any recorded vulnerabilities in its history is a positive indicator, implying that developers may have a generally good understanding of security or that the plugin hasn't been heavily scrutinized or targeted. However, this historical absence of known vulnerabilities should not be interpreted as a guarantee of current security, especially given the clear issues found in the static analysis. The low percentage of properly escaped output is another area of concern, increasing the risk of Cross-Site Scripting (XSS) vulnerabilities.

In conclusion, while the plugin benefits from a clean vulnerability history and absence of dangerous functions, the unprotected AJAX endpoints and a high proportion of unsanitized flows in the taint analysis are serious weaknesses. The low rate of output escaping further compounds these risks. Immediate attention should be paid to securing the AJAX handlers and improving output sanitization.

Key Concerns

Unprotected AJAX handlers
Flows with unsanitized paths
Low percentage of properly escaped output
No nonce checks on entry points
No capability checks on entry points

Vulnerabilities

None known

Product Brand Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Product Brand Release Timeline

v1.1.4Current

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.6

v1.0.5

v1.0.4

v1.0.3

v1.0.2

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

Product Brand Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

6 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

18% escaped33 total outputs

Data Flows · Security

3 unsanitized

Data Flow Analysis

3 flows3 with unsanitized paths

pe_deactivation_ajax_function (plugineye\plugineye-ajax\plugineye_on_deactivation_function.php:5)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

Product Brand Attack Surface

Entry Points2

Unprotected2

AJAX Handlers 2

authwp_ajax_pe_deactivation_ajax_functionplugineye\plugineye-ajax\plugineye_on_deactivation_function.php:2

noprivwp_ajax_pe_deactivation_ajax_functionplugineye\plugineye-ajax\plugineye_on_deactivation_function.php:3

WordPress Hooks 21

actionadmin_menuns-admin-options\ns-admin-options-setup.php:7

actionadmin_enqueue_scriptsns-admin-options\ns-admin-options-setup.php:13

actionadmin_initns-product-brand-option.php:20

actioninitns-product-brand.php:118

actionbrand_add_form_fieldsns-product-brand.php:120

actioncreated_brandns-product-brand.php:136

actionbrand_edit_form_fieldsns-product-brand.php:144

actionedited_brandns-product-brand.php:168

actioncreate_brandns-product-brand.php:169

actionwoocommerce_product_meta_endns-product-brand.php:179

actionwoocommerce_archive_descriptionns-product-brand.php:199

filtermanage_edit-brand_columnsns-product-brand.php:212

filtermanage_brand_custom_columnns-product-brand.php:228

actionplugins_loadedns-product-brand.php:242

filterplugin_action_linksplugineye\plugineye-class.php:96

actionadmin_menuplugineye\plugineye-class.php:113

actionadmin_enqueue_scriptsplugineye\plugineye-class.php:125

actionadmin_enqueue_scriptsplugineye\plugineye-class.php:136

actionactivated_pluginplugineye\plugineye-class.php:147

actionin_admin_footerplugineye\plugineye-class.php:401

actionactivated_pluginplugineye\plugineye-class.php:440

Maintenance & Trust

Product Brand Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedFeb 7, 2022

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

Product Brand Alternatives

Smart Brands for WooCommerce

smart-brands-for-woocommerce

100

Create unlimited brands to assign to your products, highlight the brands of the products you sell, and boost sales instantly!

400 No CVEs

GS Brands for WooCommerce

gs-woo-brands

Display WooCommerce product brands in Grid, Slider & more layouts with GS Brands for WooCommerce. Flexible, responsive & easy to use.

30 1 CVE

Perfect Brands for WooCommerce

perfect-woocommerce-brands

Perfect Brands for WooCommerce allows you to show product brands in your WooCommerce based store

50K 4 CVEs

MAS Brands for WooCommerce

mas-woocommerce-brands

Brands plugin for WooCommerce by MadrasThemes.

10K No CVEs

Premmerce Brands for WooCommerce

premmerce-woocommerce-brands

This plugin makes it possible to create an unlimited number of brands that can be assigned to the products for better cataloging.

2K 2 CVEs

Developer Profile

Product Brand Developer Profile

NsThemes

24 plugins · 4K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Product Brand

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ns-product-brand/assets/css/admin.css/wp-content/plugins/ns-product-brand/assets/css/front.css/wp-content/plugins/ns-product-brand/assets/js/admin.js/wp-content/plugins/ns-product-brand/assets/js/front.js

Script Paths

/wp-content/plugins/ns-product-brand/assets/js/admin.js/wp-content/plugins/ns-product-brand/assets/js/front.js

Version Parameters

/wp-content/plugins/ns-product-brand/assets/css/admin.css?ver=/wp-content/plugins/ns-product-brand/assets/css/front.css?ver=/wp-content/plugins/ns-product-brand/assets/js/admin.js?ver=/wp-content/plugins/ns-product-brand/assets/js/front.js?ver=

HTML / DOM Fingerprints

CSS Classes

ns_image_showct_tax_media_buttonct_tax_media_removecustom_media_urlimage-taxattributes

Data Attributes

id="ns_image_show"id="brand-image-id"class="custom_media_url"id="ct_tax_media_button"id="ct_tax_media_remove"id="brand-image-wrapper"+3 more

JS Globals

ct_tax_media_buttonct_tax_media_remove

Shortcode Output

<div class="attributes">Brands :

FAQ