Slogan Rotator Security & Risk Analysis
wordpress.org/plugins/slogan-rotatorShow a different slogan every time the visitor refreshes the page.
Is Slogan Rotator Safe to Use in 2026?
Generally Safe
Score 85/100Slogan Rotator has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The 'slogan-rotator' plugin version 1.0.1 exhibits a generally positive security posture, primarily due to the absence of known vulnerabilities and a lack of dangerous code patterns. The analysis shows no critical or high-severity taint flows, no direct SQL queries (all use prepared statements), no file operations, and no external HTTP requests, all of which are good security practices. However, there are significant concerns related to output escaping and the absence of nonces and capability checks. With 0% of its outputs being properly escaped, the plugin is susceptible to Cross-Site Scripting (XSS) vulnerabilities. The lack of nonce checks on its single shortcode entry point also presents a risk of Cross-Site Request Forgery (CSRF) attacks. While the vulnerability history is clean, the current code analysis reveals exploitable weaknesses that could be leveraged by attackers. Therefore, despite the lack of historical issues, the current state of the code necessitates immediate attention to mitigate the identified XSS and potential CSRF risks.
Key Concerns
- Unescaped output detected
- Missing nonce checks on shortcode
- Missing capability checks on shortcode
Slogan Rotator Security Vulnerabilities
Slogan Rotator Code Analysis
Output Escaping
Slogan Rotator Attack Surface
Shortcodes 1
WordPress Hooks 3
Maintenance & Trust
Slogan Rotator Maintenance & Trust
Maintenance Signals
Community Trust
Slogan Rotator Alternatives
Post Rotation
post-rotation
Set the rotation interval or the allowed time without new posts... and automatically an older post becomes the latest one!
Saeid Simple Text Rotator
saeid-simple-text-rotator
Saeid Simple Text Rotator uses jQuery Super Simple Text Rotator by Pete R. on a simple shortcode to rotate your texts!
Total Slider
total-slider
Transform your experience with sliders forever. A beautiful, true WYSIWYG interface designed to blend seamlessly with the WordPress core.
Elementor Website Builder – More Than Just a Page Builder
elementor
The Elementor Website Builder has it all: drag and drop page builder, pixel perfect design, mobile responsive editing, and more. Get started now!
LiteSpeed Cache
litespeed-cache
All-in-one unbeatable acceleration & PageSpeed improvement: caching, image/CSS/JS optimization...
Slogan Rotator Developer Profile
12 plugins · 11K total installs
How We Detect Slogan Rotator
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/slogan-rotator/assets/autosize.jquery.js/wp-content/plugins/slogan-rotator/assets/jquery.js/wp-content/plugins/slogan-rotator/assets/sr.cssplugins/slogan-rotator/assets/jquery.jsplugins/slogan-rotator/assets/autosize.jquery.jsslogan-rotator/assets/jquery.js?ver=1.0.0slogan-rotator/assets/autosize.jquery.js?ver=1.0.0slogan-rotator/assets/sr.css?ver=1.0.0HTML / DOM Fingerprints
sloganrotator_textareaid="sloganrotator_settings[slogans]"[slogan-rotator]