Tailored Swiper Carousel Security & Risk Analysis

wordpress.org/plugins/tailored-swiper-carousel

WordPress plugin which adds a Gutenberg image carousel block. Great for creating big hero banners & carousels. This plugin uses Swiper JS, and r …

0 active installs v1.2.1 PHP + WP 4.6+ Updated Apr 20, 2021
bannercarouselgutenberghero
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Tailored Swiper Carousel Safe to Use in 2026?

Generally Safe

Score 85/100

Tailored Swiper Carousel has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5yr ago
Risk Assessment

The tailored-swiper-carousel plugin v1.2.1 presents a generally good security posture based on the provided static analysis and vulnerability history. The plugin demonstrates strong adherence to secure coding practices by having no AJAX handlers, REST API routes, shortcodes, or cron events, thereby minimizing its attack surface. Furthermore, it avoids dangerous functions, file operations, and external HTTP requests, all of which are positive indicators. The use of prepared statements for all SQL queries is a significant strength, eliminating the risk of SQL injection vulnerabilities.

However, the analysis does reveal some areas of concern. A significant portion of output (40%) is not properly escaped. While there are no critical taint flows or dangerous functions identified, unescaped output can still lead to Cross-Site Scripting (XSS) vulnerabilities if the plugin handles user-supplied data that is then displayed without proper sanitization. The absence of nonce checks and capability checks on any potential entry points (though none were found) is a general weakness, as these are fundamental WordPress security mechanisms. The lack of any recorded vulnerabilities, while positive, might also indicate a limited scope of historical analysis or a very mature and stable plugin. The absence of bundled libraries is also a plus.

In conclusion, tailored-swiper-carousel v1.2.1 appears to be a relatively secure plugin due to its minimal attack surface and strong practices around SQL queries. The primary risk lies in the unescaped output. The absence of historical vulnerabilities is a good sign but doesn't entirely negate the need for vigilance regarding the identified code signals.

Key Concerns

  • Significant portion of output not properly escaped
  • No nonce checks found
  • No capability checks found
Vulnerabilities
None known

Tailored Swiper Carousel Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Tailored Swiper Carousel Release Timeline

v1.2.1Current
Code Analysis
Analyzed Apr 16, 2026

Tailored Swiper Carousel Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
2
3 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

60% escaped5 total outputs
Attack Surface

Tailored Swiper Carousel Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 7
actionwp_enqueue_scriptsblocks/banner-carousel/carousel.php:27
actionenqueue_block_editor_assetsblocks/banner-carousel/carousel.php:28
actioninitblocks/banner-carousel/carousel.php:29
actionplugins_loadedblocks/banner-carousel/carousel.php:31
actionwp_enqueue_scriptsindex.php:21
actionadmin_noticesindex.php:22
filteracf/settings/load_jsonindex.php:24
Maintenance & Trust

Tailored Swiper Carousel Maintenance & Trust

Maintenance Signals

WordPress version tested5.7.15
Last updatedApr 20, 2021
PHP min version
Downloads896

Community Trust

Rating0/100
Number of ratings0
Active installs0
Developer Profile

Tailored Swiper Carousel Developer Profile

Anthony

7 plugins · 300 total installs

86
trust score
Avg Security Score
88/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Tailored Swiper Carousel

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/tailored-swiper-carousel/swiper/swiper-bundle.min.js/wp-content/plugins/tailored-swiper-carousel/swiper/swiper-bundle.min.css/wp-content/plugins/tailored-swiper-carousel/blocks/banner-carousel/carousel.js/wp-content/plugins/tailored-swiper-carousel/blocks/banner-carousel/carousel.css
Script Paths
/wp-content/plugins/tailored-swiper-carousel/swiper/swiper-bundle.min.js/wp-content/plugins/tailored-swiper-carousel/blocks/banner-carousel/carousel.js
Version Parameters
tailored-swiper-carousel/swiper/swiper-bundle.min.js?ver=tailored-swiper-carousel/swiper/swiper-bundle.min.css?ver=tailored-swiper-carousel/blocks/banner-carousel/carousel.js?ver=tailored-swiper-carousel/blocks/banner-carousel/carousel.css?ver=

HTML / DOM Fingerprints

CSS Classes
wp-block-banner-carouselswiper-containerswiper-wrapperswiper-slideswiper-paginationswiper-button-prevswiper-button-nexttailored-swiper-carousel+2 more
HTML Comments
<!-- swiper-slide --><!-- swiper-wrapper --><!-- swiper-container --><!-- wp-block-carousel-offers -->
Data Attributes
data-swiper-slide-indexdata-swiper-autoplay
JS Globals
tailored_banner_carousel
Shortcode Output
<div class="wp-block wp-block-banner-carousel<div class="swiper-container"<div class="swiper-wrapper"<div class="swiper-slide"
FAQ

Frequently Asked Questions about Tailored Swiper Carousel