WP-Safety

SX Bootstrap Carousel Security & Risk Analysis

wordpress.org/plugins/sx-bootstrap-carousel

The Carousel plugin is a component for cycling through elements, like a carousel (slideshow).

10 active installs v1.0.0 PHP + WP 3.3.6+ Updated Mar 2, 2016
bootstrapcarouselimageslider
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is SX Bootstrap Carousel Safe to Use in 2026?

Generally Safe

Score 85/100

SX Bootstrap Carousel has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10yr ago
Risk Assessment

The sx-bootstrap-carousel plugin v1.0.0 exhibits a generally positive security posture based on the provided static analysis. The plugin has no recorded vulnerabilities or CVEs, indicating a history of secure development or a lack of extensive security auditing. Furthermore, it demonstrates good practices by avoiding dangerous functions, performing file operations, or making external HTTP requests. SQL queries are also exclusively handled with prepared statements, which is a significant strength.

However, there are notable areas for improvement. The most concerning aspect is the low percentage of properly escaped output (24%). This leaves the plugin vulnerable to Cross-Site Scripting (XSS) attacks, especially since it has an entry point via a shortcode and no explicit capability checks or nonce verification are evident in the static analysis. The absence of taint analysis results is also a gap, preventing a comprehensive understanding of data flow vulnerabilities.

In conclusion, while the plugin benefits from a clean vulnerability history and the secure handling of database queries and external interactions, the significant lack of output escaping poses a tangible XSS risk. Addressing this would substantially improve its security. The absence of nonce and capability checks on its single entry point is also a concern that should be investigated further.

Key Concerns

  • Low output escaping (24%)
  • No nonce checks on entry points
  • No capability checks on entry points
  • No taint analysis performed
Vulnerabilities
None known

SX Bootstrap Carousel Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

SX Bootstrap Carousel Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
53
17 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

24% escaped70 total outputs
Attack Surface

SX Bootstrap Carousel Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[sx-carousel] sxbc-frontend.php:29
WordPress Hooks 12
actionplugins_loadedsx-bootstrap-carousel.php:18
actioninitsx-bootstrap-carousel.php:23
actioninitsx-bootstrap-carousel.php:62
actionafter_setup_themesx-bootstrap-carousel.php:78
filtermanage_sxbc_posts_columnssxbc-admin.php:48
actionmanage_sxbc_posts_custom_columnsxbc-admin.php:49
actionadd_meta_boxessxbc-admin.php:74
actionsave_postsxbc-admin.php:87
actionload-post.phpsxbc-admin.php:154
actionload-post-new.phpsxbc-admin.php:155
actionadmin_menusxbc-settings.php:59
actionadmin_initsxbc-settings.php:60
Maintenance & Trust

SX Bootstrap Carousel Maintenance & Trust

Maintenance Signals

WordPress version tested4.4.34
Last updatedMar 2, 2016
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

SX Bootstrap Carousel Alternatives

Agnosia Bootstrap Carousel by AuSoft

Agnosia Bootstrap Carousel by AuSoft

agnosia-bootstrap-carousel

A
85

This plugin lets you use the [gallery] shortcode to show a Bootstrap Carousel.

100 No CVEs
Smart Slider 3

Smart Slider 3

smart-slider-3

A
89

Responsive slider plugin to create sliders in visual editor easily. Build beautiful image slider, layer slider, video slider, post slider, and more.

800K 8 CVEs
Slider, Gallery, and Carousel by MetaSlider – Image Slider, Video Slider

Slider, Gallery, and Carousel by MetaSlider – Image Slider, Video Slider

ml-slider

A
94

Slider, gallery, carousel plugin for WordPress. Build your image slider, video slider, post slider, YouTube slider, or WooCommerce product slider.

500K 12 CVEs
Carousel Slider

Carousel Slider

carousel-slider

A
97

Create SEO friendly Image, Logo, Video, Post, WooCommerce Product Carousel, and Slider.

30K 6 CVEs
Ultimate Responsive Image Slider

Ultimate Responsive Image Slider

ultimate-responsive-image-slider

A
100

Create stunning responsive sliders in minutes. Drag-and-drop builder, unlimited sliders, mobile-friendly & SEO optimized!

30K 1 CVE
Developer Profile

SX Bootstrap Carousel Developer Profile

RedWeb.tn

3 plugins · 30 total installs

87
trust score
Avg Security Score
90/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect SX Bootstrap Carousel

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/sx-bootstrap-carousel/css/sxbc-frontend.css/wp-content/plugins/sx-bootstrap-carousel/js/sxbc-frontend.js
Script Paths
/wp-content/plugins/sx-bootstrap-carousel/js/sxbc-frontend.js
Version Parameters
sx-bootstrap-carousel/css/sxbc-frontend.css?ver=sx-bootstrap-carousel/js/sxbc-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
sxbc_carouselsxbc-item
HTML Comments
<!-- SX Bootstrap Carousel --><!-- sxbc-frontend.php --><!-- First content - the carousel indicators --><!-- Carousel Content -->
Data Attributes
data-ridedata-intervaldata-targetdata-slide-toid="sxbc-item-background: url('+3 more
Shortcode Output
[sx-carousel]<div class="carousel slide"<ol class="carousel-indicators"><li data-target="#sxbc_
FAQ

Frequently Asked Questions about SX Bootstrap Carousel