WP-Safety

TH Reviews Bar Security & Risk Analysis

wordpress.org/plugins/th-reviews-bar

The "TH Reviews Bar" plugin is a very simple way, to show your reviews on your site or blog post. It's have a responsive design and is …

0 active installs v1.0.2 PHP 5.4+ WP 5.3+ Updated Apr 7, 2021
customerpanelreviewssidebarsite
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is TH Reviews Bar Safe to Use in 2026?

Generally Safe

Score 85/100

TH Reviews Bar has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago
Risk Assessment

The 'th-reviews-bar' plugin v1.0.2 exhibits a generally strong security posture based on the provided static analysis. The absence of external HTTP requests, file operations, and any SQL queries not using prepared statements are positive indicators. Additionally, the presence of nonce and capability checks, along with proper output escaping on a significant majority of outputs, suggests good development practices were followed.

However, the analysis does reveal a potential area for concern. While the attack surface appears small with only one shortcode and no unprotected entry points, the fact that 70% of outputs are properly escaped means that 30% are not. This leaves a potential window for Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is involved in these unescaped outputs, although the taint analysis did not identify any such flows. The plugin's vulnerability history being entirely clear is a positive sign, indicating a lack of publicly disclosed security flaws. In conclusion, while the plugin has several strengths, the unescaped outputs warrant attention and potential further investigation to ensure no user input can be leveraged for malicious purposes.

Key Concerns

  • Unescaped output (30%)
Vulnerabilities
None known

TH Reviews Bar Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

TH Reviews Bar Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
25
57 escaped
Nonce Checks
1
Capability Checks
3
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

70% escaped82 total outputs
Attack Surface

TH Reviews Bar Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[thrb] inc\thrb-shortcode.php:25
WordPress Hooks 16
actionplugins_loadedinc\thrb-admin.php:37
actionadmin_enqueue_scriptsinc\thrb-admin.php:40
actionadmin_menuinc\thrb-help.php:30
actionadmin_initinc\thrb-post-metabox.php:25
actionsave_postinc\thrb-post-metabox.php:84
actionadmin_initinc\thrb-setting.php:73
actionadmin_menuinc\thrb-setting.php:151
actioninitinc\thrb-types.php:26
actioninitinc\thrb-types.php:29
filterpost_updated_messagesinc\thrb-types.php:78
actionmanage_thrb_posts_custom_columninc\thrb-types.php:122
filtermanage_thrb_posts_columnsinc\thrb-types.php:138
actionwp_enqueue_scriptsinc\thrb-user.php:25
actionwp_enqueue_scriptsinc\thrb-user.php:33
actionwidgets_initinc\thrb-widget.php:171
actioninitth-reviews-bar.php:36
Maintenance & Trust

TH Reviews Bar Maintenance & Trust

Maintenance Signals

WordPress version tested5.7.15
Last updatedApr 7, 2021
PHP min version5.4
Downloads5K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

TH Reviews Bar Alternatives

TargetBay Product and Site Reviews

TargetBay Product and Site Reviews

targetbay-product-and-site-reviews

A
92

Generate tons of product reviews for your WooCommerce site with TargetBay

30 No CVEs
Review Deck

Review Deck

review-deck

A
100

Manage and display customer reviews using shortcodes. Includes form, list, slider, masonry, column, summary, and floating widget display options.

10 No CVEs
Customer Reviews for WooCommerce

Customer Reviews for WooCommerce

customer-reviews-woocommerce

A
88

Customer Reviews for WooCommerce plugin helps you get more sales with social proof. Set up automated review reminders and increase conversion rate.

80K 19 CVEs
WP Social Ninja – Embed Social Feeds, User Reviews & Chat Widgets

WP Social Ninja – Embed Social Feeds, User Reviews & Chat Widgets

wp-social-reviews

A
96

Add Facebook feeds, Instagram feeds, TikTok feeds, Facebook reviews, WhatsApp Chat, Messenger chat, Testimonial, and others using a single dashboard.

30K 3 CVEs
Disable Bloat for WordPress & WooCommerce

Disable Bloat for WordPress & WooCommerce

disable-dashboard-for-woocommerce

A
92

All-in-One solution to speed up your WordPress & WooCommerce. Remove unnecessary features and make your site faster and cleaner.

10K No CVEs
Developer Profile

TH Reviews Bar Developer Profile

Triopsi

7 plugins · 60 total installs

90
trust score
Avg Security Score
94/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect TH Reviews Bar

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/th-reviews-bar/assets/css/front-admin.css/wp-content/plugins/th-reviews-bar/assets/js/logic-form.js/wp-content/plugins/th-reviews-bar/assets/js/admin-form.js/wp-content/plugins/th-reviews-bar/assets/css/front-style.css
Script Paths
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.css
Version Parameters
th-reviews-bar/assets/css/front-admin.css?ver=th-reviews-bar/assets/js/logic-form.js?ver=th-reviews-bar/assets/js/admin-form.js?ver=th-reviews-bar/assets/css/front-style.css?ver=

HTML / DOM Fingerprints

CSS Classes
thrb-css
Data Attributes
thrb_settings_cdn_awesome
Shortcode Output
[thrb]
FAQ

Frequently Asked Questions about TH Reviews Bar