Does Testimonial – Responsive Testimonials Showcase have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Testimonial – Responsive Testimonials Showcase compatible with WordPress 6.9.4?

According to WordPress.org data, Testimonial – Responsive Testimonials Showcase 4.5 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

What is Testimonial – Responsive Testimonials Showcase's security score?

Testimonial – Responsive Testimonials Showcase has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Testimonial – Responsive Testimonials Showcase Security & Risk Analysis

wordpress.org/plugins/testimonial-by-weblizar

Testimonial is the Responsive Testimonials Showcase Plugin for WordPress built to display testimonials, reviews or quotes in multiple ways on any page …

30 active installs v4.5 PHP + WP + Updated Feb 23, 2026

star-ratingstestimonial-shortcodetestimonial-showcasetestimonial-slidertestimonials

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Testimonial – Responsive Testimonials Showcase Safe to Use in 2026?

Generally Safe

Score 100/100

Testimonial – Responsive Testimonials Showcase has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 2mo ago

Risk Assessment

The testimonial-by-weblizar plugin v4.5 exhibits a generally strong security posture based on the provided static analysis. The plugin demonstrates good practices by having no identified dangerous functions, no file operations, and no external HTTP requests, significantly reducing common attack vectors. The high percentage of properly escaped output (99%) is also a positive indicator of secure coding. Furthermore, the absence of any known vulnerabilities (CVEs) in its history suggests a well-maintained and tested plugin. The plugin also implements nonce and capability checks on its single entry point, a shortcode, which is a good security measure.

However, a notable concern lies within the SQL query handling. The analysis indicates one SQL query that is not using prepared statements, presenting a potential risk of SQL injection. While the taint analysis shows no unsanitized flows, this raw SQL query remains a weakness that could be exploited if data input controlling this query is not adequately sanitized at the point of input or if the context in which it's used is vulnerable. The absence of any taint flows is positive, but the single un-prepared SQL query warrants attention as it's a common vulnerability type.

Key Concerns

SQL query not using prepared statements

Vulnerabilities

None known

Testimonial – Responsive Testimonials Showcase Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Testimonial – Responsive Testimonials Showcase Release Timeline

v4.5Current

v4.4

v4.3

v4.2

v4.1

v4.0

v3.9

v3.8

v3.7

v3.6

v3.5

v3.4

v3.3

v3.2

v3.1

v3.0

v2.9

v2.8

v2.7

v2.6

Code Analysis

Analyzed Mar 16, 2026

Testimonial – Responsive Testimonials Showcase Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

150 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

0% prepared1 total queries

Output Escaping

99% escaped152 total outputs

Attack Surface

Testimonial – Responsive Testimonials Showcase Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[RTS] public\public.php:21

WordPress Hooks 12

actionadd_meta_boxesadmin\admin.php:15

actionadmin_enqueue_scriptsadmin\admin.php:18

actionsave_postadmin\admin.php:21

filterenter_title_hereadmin\admin.php:24

filtermanage_testimonial_posts_columnsadmin\admin.php:27

actionmanage_testimonial_posts_custom_columnadmin\admin.php:28

actionadmin_noticesadmin\admin.php:31

actionmedia_buttonsadmin\admin.php:33

actionadmin_footeradmin\admin.php:34

actionplugins_loadedpublic\public.php:15

actioninitpublic\public.php:18

actionwp_enqueue_scriptspublic\public.php:24

Maintenance & Trust

Testimonial – Responsive Testimonials Showcase Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 23, 2026

PHP min version

Downloads16K

Community Trust

Rating100/100

Number of ratings2

Active installs30

Alternatives

Testimonial – Responsive Testimonials Showcase Alternatives

Testimonial – Testimonial Slider and Showcase Plugin

testimonial-slider-and-showcase

Display customer testimonials beautifully with responsive slider and grid layouts. Build trust and boost conversions with this WordPress testimonial p …

30K 2 CVEs

Solid Testimonials – Testimonial Slider, Video Testimonials & Customer Reviews

gs-testimonial

Showcase and automate customer reviews with ease - sliders, grids, filters, and more to boost trust and sales.

2K 6 CVEs

Review & testimonial widgets

trustmary

Add reviews to your website with Trustmary’s review and testimonial widgets: Google Review Widget, Facebook Review Widget, Tripadvisor Review Widget, …

1K 1 CVE

Video Testimonial slider

video-testimonial-slider

Video Testimonial Slider plugin for WordPress website. Using plugin to display client Review and Testimonial with video popup through shortcode.

40 No CVEs

Testimonial & Review

testimonial-review

100

Testimonial Review plugin is a simple tool to display your customer's feedback on your WordPress website.

10 No CVEs

Developer Profile

Testimonial – Responsive Testimonials Showcase Developer Profile

Weblizar - WordPress Themes & Plugin

26 plugins · 56K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

952 days

View full developer profile

Detection Fingerprints

How We Detect Testimonial – Responsive Testimonials Showcase

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/testimonial-by-weblizar/assets/css/banner.css/wp-content/plugins/testimonial-by-weblizar/assets/js/testimonial-slider-admin.js/wp-content/plugins/testimonial-by-weblizar/assets/css/testimonial-slider-admin.css/wp-content/plugins/testimonial-by-weblizar/assets/css/testimonial-slider-public.css/wp-content/plugins/testimonial-by-weblizar/assets/js/testimonial-slider-public.js

Script Paths

/wp-content/plugins/testimonial-by-weblizar/admin/admin.php/wp-content/plugins/testimonial-by-weblizar/admin/inc/wl-rts-testimonial-admin.php/wp-content/plugins/testimonial-by-weblizar/includes/wl-rts-helper.php/wp-content/plugins/testimonial-by-weblizar/public/public.php

Version Parameters

testimonial-by-weblizar/assets/css/banner.css?ver=testimonial-by-weblizar/assets/js/testimonial-slider-admin.js?ver=testimonial-by-weblizar/assets/css/testimonial-slider-admin.css?ver=testimonial-by-weblizar/assets/css/testimonial-slider-public.css?ver=testimonial-by-weblizar/assets/js/testimonial-slider-public.js?ver=

HTML / DOM Fingerprints

CSS Classes

wb_plugin_featurewb_plugin_feature_bannerdefault_patternpattern_wb-col-md-6wb-col-sm-12boxribbon+6 more

Data Attributes

id="WLTESTI"id="Wl_Tm_ME"id="wl_tm_insert"

JS Globals

window.send_to_editor

Shortcode Output

[RTS id=

FAQ