WP-Safety

WP Tools Divi Blog Carousel Security & Risk Analysis

wordpress.org/plugins/wp-tools-divi-blog-carousel

A divi blog carousel module to create a slide-show with blog items.

60 active installs v1.5.1 PHP 7.4+ WP 4.9.8+ Updated Apr 8, 2025
dividivi-moduleimage-carousel
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is WP Tools Divi Blog Carousel Safe to Use in 2026?

Generally Safe

Score 100/100

WP Tools Divi Blog Carousel has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 12mo ago
Risk Assessment

The static analysis of wp-tools-divi-blog-carousel v1.5.1 reveals a seemingly robust security posture regarding known entry points and critical code vulnerabilities. There are no identified AJAX handlers, REST API routes, shortcodes, or cron events, meaning the plugin has a minimal attack surface. Furthermore, the analysis indicates no dangerous functions are used, SQL queries are all prepared, and no taint analysis found unsanitized paths. The absence of any recorded vulnerabilities in its history is also a positive sign.

However, a significant concern arises from the complete lack of output escaping. With 10 total outputs and 0% properly escaped, this presents a high risk of Cross-Site Scripting (XSS) vulnerabilities. Any data displayed to users that originates from user input or is not meticulously sanitized before output could be exploited. The absence of capability checks and nonce checks on the zero identified entry points (though there are zero unprotected) also means that if new entry points were introduced, they might lack fundamental security measures.

In conclusion, while the plugin's architecture appears to avoid common pitfalls like raw SQL and dangerous functions, the pervasive issue of unescaped output is a critical weakness. The vulnerability history is clean, which is promising, but the static analysis highlights a significant, actionable risk that needs immediate attention to prevent potential XSS attacks. Addressing the output escaping would greatly strengthen the plugin's security.

Key Concerns

  • 0% output escaping
  • No capability checks
  • No nonce checks
Vulnerabilities
None known

WP Tools Divi Blog Carousel Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

WP Tools Divi Blog Carousel Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
1 prepared
Unescaped Output
10
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
1

Bundled Libraries

Freemius1.0

SQL Query Safety

100% prepared1 total queries

Output Escaping

0% escaped10 total outputs
Attack Surface

WP Tools Divi Blog Carousel Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 5
actionet_builder_readysrc\Loader.php:59
actiondivi_extensions_initsrc\Loader.php:60
actionwp_enqueue_scriptssrc\Loader.php:62
actionadmin_menusrc\Loader.php:66
actionwp_print_stylessrc\Loader.php:83
Maintenance & Trust

WP Tools Divi Blog Carousel Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedApr 8, 2025
PHP min version7.4
Downloads4K

Community Trust

Rating0/100
Number of ratings0
Active installs60
Alternatives

WP Tools Divi Blog Carousel Alternatives

Divi Carousel Lite – 17+ Carousel Module

Divi Carousel Lite – 17+ Carousel Module

carousels-slider-for-divi

A
100

Divi Carousel Lite, the ultimate Divi Builder plugin with 17+ modules like image carousel, testimonial carousel, logo carousel, team carousel, and mor …

10K No CVEs
Image Carousel Module for Divi

Image Carousel Module for Divi

image-carousel-divi

A
100

This plugin add an image carousel module to the Divi theme.

9K No CVEs
Image Carousel For Divi

Image Carousel For Divi

image-carousel-for-divi

A
100

A divi image carousel module to create a slide-show with images.

1K No CVEs
Supreme Modules Lite – Divi Theme, Extra Theme and Divi Builder

Supreme Modules Lite – Divi Theme, Extra Theme and Divi Builder

supreme-modules-for-divi

A
95

Divi Supreme lite plugin enhances the experience and features found on Divi and extend with custom creative modules to help you build amazing websites …

200K 3 CVEs
Divi Torque Lite – Divi Theme, Divi Builder & Extra Theme

Divi Torque Lite – Divi Theme, Divi Builder & Extra Theme

addons-for-divi

A
99

The Divi Torque plugin you install after Divi builder! Packed with 70+ stunning modules like Post Grid, Filterable Gallery, Google Reviews, and more.

50K 2 CVEs
Developer Profile

WP Tools Divi Blog Carousel Developer Profile

wptools

15 plugins · 6K total installs

93
trust score
Avg Security Score
99/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect WP Tools Divi Blog Carousel

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wp-tools-divi-blog-carousel/resources/slick/slick.min.js/wp-content/plugins/wp-tools-divi-blog-carousel/resources/slick/slick.css/wp-content/plugins/wp-tools-divi-blog-carousel/resources/slick/slick-theme.css/wp-content/plugins/wp-tools-divi-blog-carousel/resources/css/style.css/wp-content/plugins/wp-tools-divi-blog-carousel/resources/js/script.js
Script Paths
/wp-content/plugins/wp-tools-divi-blog-carousel/resources/slick/slick.min.js/wp-content/plugins/wp-tools-divi-blog-carousel/resources/js/script.js
Version Parameters
wp-tools-divi-blog-carousel/resources/slick/slick.min.js?ver=wp-tools-divi-blog-carousel/resources/slick/slick.css?ver=wp-tools-divi-blog-carousel/resources/slick/slick-theme.css?ver=wp-tools-divi-blog-carousel/resources/css/style.css?ver=wp-tools-divi-blog-carousel/resources/js/script.js?ver=

HTML / DOM Fingerprints

FAQ

Frequently Asked Questions about WP Tools Divi Blog Carousel