Does Smart Brands for WooCommerce have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Smart Brands for WooCommerce compatible with WordPress 6.9.4?

According to WordPress.org data, Smart Brands for WooCommerce 2.0.4 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Smart Brands for WooCommerce compatible with PHP 7.2+?

Smart Brands for WooCommerce requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Smart Brands for WooCommerce updated?

Smart Brands for WooCommerce was last updated on Dec 30, 2025. Frequent updates are generally a positive security signal.

What is Smart Brands for WooCommerce's security score?

Smart Brands for WooCommerce has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Smart Brands for WooCommerce Security & Risk Analysis

wordpress.org/plugins/smart-brands-for-woocommerce

Create unlimited brands to assign to your products, highlight the brands of the products you sell, and boost sales instantly!

400 active installs v2.0.4 PHP 7.2+ WP 5.2+ Updated Dec 30, 2025

manufacturerproduct-brand-logoswoocommerce-brandswoocommerce-brands-sliderwoocommerce-product-brands

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Smart Brands for WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Smart Brands for WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4mo ago

Risk Assessment

The plugin "smart-brands-for-woocommerce" v2.0.4 exhibits a generally strong security posture with several good practices in place. The absence of any known CVEs and a clean vulnerability history is a significant positive indicator. The code analysis reveals robust implementation of prepared statements for SQL queries, comprehensive nonce checks, and capability checks on all identified entry points, which are excellent defenses against common web vulnerabilities. The high percentage of properly escaped output further mitigates risks related to cross-site scripting (XSS).

However, the presence of the `unserialize()` function within the codebase presents a potential, albeit currently unexploited, risk. While no critical or high severity taint flows were detected, this function, if used with untrusted input, can lead to serious security vulnerabilities, including remote code execution. The plugin also makes one external HTTP request, which, depending on its target and purpose, could introduce supply chain risks or be a vector for certain attacks if not handled with care. The absence of any unpatched vulnerabilities in its history suggests diligent maintenance or a lack of past issues, which is reassuring.

In conclusion, the plugin is built on a solid foundation of secure coding practices. The primary concern lies with the `unserialize()` function, which warrants careful review and potentially refactoring to ensure it's never exposed to user-controlled data. The minimal attack surface and comprehensive checks on entry points are commendable strengths. Overall, the risk is moderate, primarily stemming from the potential misuse of a single dangerous function.

Key Concerns

Presence of unserialize() function
One external HTTP request

Vulnerabilities

None known

Smart Brands for WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Smart Brands for WooCommerce Release Timeline

v2.0.4Current

v2.0.3

v2.0.2

v2.0.1

v2.0.0

v1.1.6

v1.1.5

v1.1.4

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.8

v1.0.7

v1.0.6

v1.0.5

v1.0.4

v1.0.3

v1.0.2

v1.0.1

Code Analysis

Analyzed Mar 16, 2026

Smart Brands for WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

642 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$plugins = unserialize( $response['body'] );core\Admin\HelpPage\Help.php:173

SQL Query Safety

100% prepared2 total queries

Output Escaping

87% escaped736 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

4 flows

smart_brands_preview_meta_box (core\Admin\Framework\Classes\SPF_SMART_BRANDS_Metabox.php:531)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Smart Brands for WooCommerce Attack Surface

Entry Points8

Unprotected0

AJAX Handlers 6

authwp_ajax_smart_brands_preview_meta_boxcore\Admin\Framework\Classes\SPF_SMART_BRANDS_Metabox.php:116

authwp_ajax_csf-get-iconscore\Admin\Framework\functions\actions.php:60

authwp_ajax_csf-resetcore\Admin\Framework\functions\actions.php:84

authwp_ajax_csf-chosencore\Admin\Framework\functions\actions.php:121

authwp_ajax_sp-smart-brands-never-show-review-noticecore\Admin\Review_Notice.php:26

authwp_ajax_shapedplugin_dismiss_offer_bannercore\Admin\ShapedPlugin_Offer_Banner.php:34

Shortcodes 2

[smart_brand_for_wc] core\Frontend\Frontend.php:38

[smart_brand_for_wc] core\SmartBrands.php:147

WordPress Hooks 56

actionwoocommerce_product_duplicatecore\Admin\Admin.php:81

filtermanage_edit-sp_smart_brand_columnscore\Admin\Admin.php:83

filtermanage_sp_smart_brand_custom_columncore\Admin\Admin.php:84

filteradmin_footer_textcore\Admin\Admin.php:87

filterupdate_footercore\Admin\Admin.php:88

actionactivated_plugincore\Admin\Admin.php:90

actionafter_setup_themecore\Admin\Brands\Brands.php:29

actioninitcore\Admin\Brands\Brands.php:34

actioninitcore\Admin\Brands\Migration.php:33

actionplugins_loadedcore\Admin\DBUpdates.php:43

actionelementor/preview/enqueue_scriptscore\Admin\ElementorAddons\Element_Shortcode_Addons.php:76

actionelementor/preview/enqueue_stylescore\Admin\ElementorAddons\Element_Shortcode_Addons.php:77

actionelementor/editor/before_enqueue_scriptscore\Admin\ElementorAddons\Element_Shortcode_Addons.php:78

actionelementor/initcore\Admin\ElementorAddons\Element_Shortcode_Addons.php:131

actionelementor/widgets/registercore\Admin\ElementorAddons\Element_Shortcode_Addons.php:148

actionwp_enqueue_scriptscore\Admin\Framework\Classes\abstract.class.php:47

actionafter_setup_themecore\Admin\Framework\Classes\SPF_SMART_BRANDS.php:153

actioninitcore\Admin\Framework\Classes\SPF_SMART_BRANDS.php:154

actionswitch_themecore\Admin\Framework\Classes\SPF_SMART_BRANDS.php:155

actionadmin_enqueue_scriptscore\Admin\Framework\Classes\SPF_SMART_BRANDS.php:156

actionwp_headcore\Admin\Framework\Classes\SPF_SMART_BRANDS.php:157

filteradmin_body_classcore\Admin\Framework\Classes\SPF_SMART_BRANDS.php:158

actionadd_meta_boxescore\Admin\Framework\Classes\SPF_SMART_BRANDS_Metabox.php:113

actionsave_postcore\Admin\Framework\Classes\SPF_SMART_BRANDS_Metabox.php:114

actionedit_attachmentcore\Admin\Framework\Classes\SPF_SMART_BRANDS_Metabox.php:115

actionadmin_menucore\Admin\Framework\Classes\SPF_SMART_BRANDS_Options.php:174

actionadmin_bar_menucore\Admin\Framework\Classes\SPF_SMART_BRANDS_Options.php:175

actionnetwork_admin_menucore\Admin\Framework\Classes\SPF_SMART_BRANDS_Options.php:179

actionadmin_initcore\Admin\Framework\Classes\SPF_SMART_BRANDS_Taxonomy_Options.php:97

actioninitcore\Admin\GutenbergBlock\Shortcode.php:38

actionenqueue_block_editor_assetscore\Admin\GutenbergBlock\Shortcode.php:39

actionadmin_menucore\Admin\HelpPage\Help.php:65

actionadmin_print_scriptscore\Admin\HelpPage\Help.php:71

actionadmin_enqueue_scriptscore\Admin\HelpPage\Help.php:72

actionadmin_noticescore\Admin\Review_Notice.php:25

actionadmin_noticescore\Admin\ShapedPlugin_Offer_Banner.php:33

actionsave_postcore\Frontend\Frontend.php:41

actiontemplate_redirectcore\Frontend\Frontend.php:42

filterwoocommerce_has_block_templatecore\Frontend\Frontend.php:164

actionwoocommerce_product_meta_endcore\Frontend\Frontend.php:186

actionwoocommerce_single_product_summarycore\Frontend\Frontend.php:188

actionwoocommerce_after_shop_loop_itemcore\Frontend\Frontend.php:193

actionsp_wps_brands_after_productcore\Frontend\Frontend.php:195

actionwoocommerce_loadedcore\SmartBrands.php:82

actionwp_loadedcore\SmartBrands.php:148

actionwp_enqueue_scriptscore\SmartBrands.php:149

actionwoocommerce_initcore\SmartBrands.php:162

actionadmin_enqueue_scriptscore\SmartBrands.php:163

actionadmin_enqueue_scriptscore\SmartBrands.php:164

filtermanage_smart_brand_sc_posts_columnscore\SmartBrands.php:167

actionmanage_smart_brand_sc_posts_custom_columncore\SmartBrands.php:168

filterpost_updated_messagescore\SmartBrands.php:169

filterterm_updated_messagescore\SmartBrands.php:170

actionadmin_noticescore\SmartBrands.php:176

actionwoocommerce_initcore\SmartBrands.php:180

actionbefore_woocommerce_initsmart-brands-for-woocommerce.php:38

Maintenance & Trust

Smart Brands for WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 30, 2025

PHP min version7.2

Downloads13K

Community Trust

Rating100/100

Number of ratings4

Active installs400

Alternatives

Smart Brands for WooCommerce Alternatives

Perfect Brands for WooCommerce

perfect-woocommerce-brands

Perfect Brands for WooCommerce allows you to show product brands in your WooCommerce based store

50K 4 CVEs

MAS Brands for WooCommerce

mas-woocommerce-brands

Brands plugin for WooCommerce by MadrasThemes.

10K No CVEs

WSB Brands

wsb-brands

Complete solution for brands (manufacturers) management in your Woocommerce shop.

60 1 CVE

Easy Woocommerce Brands

easy-woocommerce-brands

Easy Woocommerce Brands plugin allow you to add brands to your WooCommerce products on your website with any WordPress theme Easy to use and 100% Fr …

50 No CVEs

YITH WooCommerce Brands Add-On

yith-woocommerce-brands-add-on

A tool to show your products’ brands, generate reliability and guarantee the quality of your products.

10K 1 CVE

Developer Profile

Smart Brands for WooCommerce Developer Profile

ShapedPlugin LLC

18 plugins · 315K total installs

trust score

Avg Security Score

98/100

Avg Patch Time

361 days

View full developer profile

Detection Fingerprints

How We Detect Smart Brands for WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/smart-brands-for-woocommerce/assets/css/smart-brands-admin.css/wp-content/plugins/smart-brands-for-woocommerce/assets/css/smart-brands-frontend.css/wp-content/plugins/smart-brands-for-woocommerce/assets/js/smart-brands-admin.js/wp-content/plugins/smart-brands-for-woocommerce/assets/js/smart-brands-frontend.js

Script Paths

/wp-content/plugins/smart-brands-for-woocommerce/assets/js/smart-brands-admin.js/wp-content/plugins/smart-brands-for-woocommerce/assets/js/smart-brands-frontend.js

Version Parameters

smart-brands-for-woocommerce/assets/css/smart-brands-admin.css?ver=smart-brands-for-woocommerce/assets/css/smart-brands-frontend.css?ver=smart-brands-for-woocommerce/assets/js/smart-brands-admin.js?ver=smart-brands-for-woocommerce/assets/js/smart-brands-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes

spsb-footer-text-star

HTML Comments

<!-- Smart Brands for WooCommerce allows you to add brands for products and gain credibility by displaying them in your WooCommerce shop. -->

+27 more

Data Attributes

data-smart-brand-id

JS Globals

smart_brand_for_wc_params

Shortcode Output

[smart_brand_for_wc[sp_smart_brands_carousel

FAQ