Does Theme Blvd News Scroller Widget have any unpatched vulnerabilities?

No. All known vulnerabilities in Theme Blvd News Scroller Widget have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Theme Blvd News Scroller Widget compatible with WordPress 3.5.2?

According to WordPress.org data, Theme Blvd News Scroller Widget 1.0.9 has been tested up to WordPress 3.5.2. Check the plugin's changelog for the latest compatibility information.

How often is Theme Blvd News Scroller Widget updated?

Theme Blvd News Scroller Widget was last updated on Feb 12, 2013. Frequent updates are generally a positive security signal.

What is Theme Blvd News Scroller Widget's security score?

Theme Blvd News Scroller Widget has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Theme Blvd News Scroller Widget Security & Risk Analysis

wordpress.org/plugins/theme-blvd-news-scroller

This plugin is a simple widget with slider that rotates through posts of specified category.

300 active installs v1.0.9 PHP + WP + Updated Feb 12, 2013

postsscrollsliderthemeblvd

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Theme Blvd News Scroller Widget Safe to Use in 2026?

Generally Safe

Score 85/100

Theme Blvd News Scroller Widget has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 13yr ago

Risk Assessment

The plugin exhibits a generally strong security posture with no recorded vulnerabilities or critical taint flows. The absence of known CVEs and a lack of problematic taint analysis suggest developers have been diligent in addressing security concerns. Furthermore, the plugin relies entirely on prepared statements for its SQL queries, which is an excellent practice for preventing SQL injection vulnerabilities. However, there are notable areas for improvement. The static analysis reveals a concerningly low rate of output escaping (only 17%), indicating a significant risk of Cross-Site Scripting (XSS) vulnerabilities. Additionally, the presence of the `create_function` function, while not necessarily a vulnerability on its own, is a deprecated and potentially insecure practice that should be refactored. The complete lack of nonces and capability checks across all identified entry points is also a serious oversight, leaving the plugin open to various attacks if any new entry points are introduced or if the absence of authentication on existing ones is exploited.

Key Concerns

Low output escaping rate
Dangerous function used (create_function)
Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Theme Blvd News Scroller Widget Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Theme Blvd News Scroller Widget Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

10 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

create_functionadd_action( 'widgets_init', create_function( '', 'register_widget("TB_Widget_News_Scroller");' ) );news-scroller.php:360

Output Escaping

17% escaped60 total outputs

Attack Surface

Theme Blvd News Scroller Widget Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionplugins_loadednews-scroller.php:39

actionwp_print_stylesnews-scroller.php:49

actionwp_enqueue_scriptsnews-scroller.php:58

actionwidgets_initnews-scroller.php:360

Maintenance & Trust

Theme Blvd News Scroller Widget Maintenance & Trust

Maintenance Signals

WordPress version tested3.5.2

Last updatedFeb 12, 2013

PHP min version

Downloads26K

Community Trust

Rating100/100

Number of ratings2

Active installs300

Alternatives

Theme Blvd News Scroller Widget Alternatives

Zaki Post Slide Widget

zaki-post-slide-widget

Widget that allows you to create a simple slider of posts using the jQuery library bxSlider v4. You can choose from categories and custom post-type, s …

10 No CVEs

Tipsmoon Infinite Scroll Posts Gallery

tipsmoon-infinite-scroll-posts-gallery

This will show the infinite scroll for all your related posts at the end of the all posts of website in concerned category.

0 No CVEs

Post Grid

post-grid

Post Grid is a powerful WordPress plugin for creating customizable post grid layouts with advanced query options, allowing users to display posts dyna …

30K 2 unpatched

AnWP Post Grid and Post Carousel Slider for Elementor

anwp-post-grid-for-elementor

Easily create awesome post grids and post carousel sliders. Different widget types, powerful filters, "load more" button and many customizab …

20K No CVEs

WP Responsive Recent Post Slider/Carousel

wp-responsive-recent-post-slider

100

Display Responsive Recent Post Slider and Carousel on your site with 4 designs (Slider) and 1 designs (Carousel) using shortcode and Gutenberg block.

20K 1 CVE

Developer Profile

Theme Blvd News Scroller Widget Developer Profile

Jason

22 plugins · 8K total installs

trust score

Avg Security Score

86/100

Avg Patch Time

3363 days

View full developer profile

Detection Fingerprints

How We Detect Theme Blvd News Scroller Widget

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/theme-blvd-news-scroller/assets/style.css/wp-content/plugins/theme-blvd-news-scroller/assets/flexslider.js

Script Paths

/wp-content/plugins/theme-blvd-news-scroller/assets/flexslider.js

Version Parameters

themeblvd_news_scrollerflexslider

HTML / DOM Fingerprints

CSS Classes

tb-news_scroller_widget

Data Attributes

data-widget-iddata-post-id

JS Globals

jQuery

Shortcode Output

<div class="tb-news-scroller"><ul class="slides">

FAQ