Does TC Post Carousel have any unpatched vulnerabilities?

No. All known vulnerabilities in TC Post Carousel have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is TC Post Carousel compatible with WordPress 4.5.33?

According to WordPress.org data, TC Post Carousel 1.0 has been tested up to WordPress 4.5.33. Check the plugin's changelog for the latest compatibility information.

How often is TC Post Carousel updated?

TC Post Carousel was last updated on Sep 27, 2016. Frequent updates are generally a positive security signal.

What is TC Post Carousel's security score?

TC Post Carousel has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

TC Post Carousel Security & Risk Analysis

wordpress.org/plugins/tc-post-carousel

View live Demos »

10 active installs v1.0 PHP + WP 3.2+ Updated Sep 27, 2016

post-carouselpost-carousel-wordpressresponsive-carousel

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is TC Post Carousel Safe to Use in 2026?

Generally Safe

Score 85/100

TC Post Carousel has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The tc-post-carousel plugin v1.0 exhibits a generally positive security posture with no known vulnerabilities and a clean history. The static analysis reveals a minimal attack surface, with only one shortcode identified and no unprotected entry points. The absence of dangerous functions, file operations, external HTTP requests, and a lack of raw SQL queries are all strong indicators of secure coding practices. The plugin also does not appear to rely on bundled libraries, which can often be a source of vulnerabilities. However, there are notable areas for improvement. A significant concern is the low percentage of properly escaped output (8%). This suggests a high risk of Cross-Site Scripting (XSS) vulnerabilities, as user-supplied or dynamically generated content may not be adequately sanitized before being displayed to users. Additionally, the complete absence of nonce checks and capability checks is concerning, even with the limited attack surface. While there are no unprotected entry points currently, these checks are fundamental for securing WordPress actions and preventing unauthorized operations.

Key Concerns

Low output escaping rate
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

TC Post Carousel Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

TC Post Carousel Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

8% escaped13 total outputs

Attack Surface

TC Post Carousel Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[tc-post-carousel] public\view.php:43

WordPress Hooks 6

actionwp_footerpublic\view.php:40

actionwp_footerpublic\view.php:112

actionwp_enqueue_scriptstc-post-carousel.php:29

actionadmin_enqueue_scriptstc-post-carousel.php:36

actionactivated_plugintc-post-carousel.php:56

actionadmin_menutc-post-carousel.php:82

Maintenance & Trust

TC Post Carousel Maintenance & Trust

Maintenance Signals

WordPress version tested4.5.33

Last updatedSep 27, 2016

PHP min version

Downloads2K

Community Trust

Rating70/100

Number of ratings2

Active installs10

Alternatives

TC Post Carousel Alternatives

Blog Designer Pack – Blog, Post Grid, Post Slider, Post Carousel, Category Post, News

blog-designer-pack

News & Blog plugin for post grid, post slider, post carousel, post filter, masonry, ticker & list category posts using shortcode, Elementor & Divi.

30K 3 CVEs

Ultimate Post Kit Addons for Elementor

ultimate-post-kit

Build your blogs and news sites with a feature-rich Elementor addon, offering 100+ elements for engaging layouts.

30K 2 CVEs

AnWP Post Grid and Post Carousel Slider for Elementor

anwp-post-grid-for-elementor

Easily create awesome post grids and post carousel sliders. Different widget types, powerful filters, "load more" button and many customizab …

20K No CVEs

Post Slider and Post Carousel with Post Vertical Scrolling Widget – A Responsive Post Slider

post-slider-and-carousel

Post Slider and Post Carousel display WordPress post in slider and carousel layouts with shortcode and Latest/Recent vertical post scrolling widget.

10K 1 CVE

Carousel, Recent Post Slider and Banner Slider

spice-post-slider

100

Display your blog posts with a responsive, customizable slider that works smoothly on all devices.

8K 1 CVE

Developer Profile

TC Post Carousel Developer Profile

themesCode

4 plugins · 250 total installs

trust score

Avg Security Score

88/100

Avg Patch Time

176 days

View full developer profile

Detection Fingerprints

How We Detect TC Post Carousel

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/tc-post-carousel/assets/css/tc-post-carousel.css/wp-content/plugins/tc-post-carousel/vendors/owl-carousel/owl.carousel.css/wp-content/plugins/tc-post-carousel/assets/css/tc-admin.css

Script Paths

/wp-content/plugins/tc-post-carousel/vendors/owl-carousel/owl.carousel.min.js

Version Parameters

tc-post-carousel/assets/css/tc-post-carousel.css?ver=tc-post-carousel/vendors/owl-carousel/owl.carousel.min.js?ver=

HTML / DOM Fingerprints

CSS Classes

tc-post-carouseltc-post-container1post-one-boxitem-post-onetc-post-titletc-post-texttc-post-btntc-pc-theme+4 more

Data Attributes

data-tc_post_carousel_stylingdata-tc_post_carousel_basicsdata-tc_post_carousel_advanced

JS Globals

tc_post_carousel_get_option

Shortcode Output

<div class="tc-post-container1"><div class="tc-post-carousel"><div class="post-one-box"><div class="item-post-one">

FAQ