WP-Safety

WSB Brands Security & Risk Analysis

wordpress.org/plugins/wsb-brands

Complete solution for brands (manufacturers) management in your Woocommerce shop.

50 active installs v1.2 PHP 5.6+ WP 4.6+ Updated Mar 16, 2023
brand-taxonomybrandsmanufacturerswoocommercewoocommerce-brands
85
A · Safe
CVEs total1
Unpatched0
Last CVEMar 15, 2023
Plugin page Download
Safety Verdict

Is WSB Brands Safe to Use in 2026?

Generally Safe

Score 85/100

WSB Brands has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Mar 15, 2023Updated 3yr ago
Risk Assessment

The 'wsb-brands' plugin v1.2 exhibits a mixed security posture. The static analysis shows a small attack surface, with only one shortcode as an entry point and no identified vulnerabilities in AJAX handlers or REST API routes. The use of prepared statements for all SQL queries and the presence of at least one nonce check are positive indicators of good security practices. However, a significant concern arises from the low percentage of properly escaped output (27%), suggesting a substantial risk of Cross-Site Scripting (XSS) vulnerabilities, especially if user-supplied data is not consistently sanitized before being rendered on the page. The plugin's vulnerability history, with one medium severity CVE in the past related to XSS, reinforces this concern, indicating a recurring pattern of input sanitization issues. While the plugin appears to be actively maintained with no currently unpatched vulnerabilities, the prevalence of unescaped output is a critical weakness that requires immediate attention.

Key Concerns

  • Low percentage of properly escaped output
  • Past medium severity XSS vulnerability
Vulnerabilities
1

WSB Brands Security Vulnerabilities

CVEs by Year

1 CVE in 2023
2023
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2022-47437medium · 4.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

WSB Brands <= 1.1.8 - Authenticated (Administrator+) Stored Cross-Site Scripting via $logo

Mar 15, 2023 Patched in 1.2 (314d)
Code Analysis
Analyzed Mar 16, 2026

WSB Brands Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
99
37 escaped
Nonce Checks
1
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

27% escaped136 total outputs
Attack Surface

WSB Brands Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[brands_page] includes\class-wsb-brands-shortcodes.php:28
WordPress Hooks 42
actionplugins_loadedincludes\class-wsb-brands.php:150
actioninitincludes\class-wsb-brands.php:166
actionadmin_enqueue_scriptsincludes\class-wsb-brands.php:167
actionadmin_enqueue_scriptsincludes\class-wsb-brands.php:168
actionwoocommerce_settings_tabs_wsb_brands_admin_tabincludes\class-wsb-brands.php:169
actiondo_meta_boxesincludes\class-wsb-brands.php:170
actionadd_meta_boxesincludes\class-wsb-brands.php:171
actionwoocommerce_update_productincludes\class-wsb-brands.php:172
actionwsb_brands_add_form_fieldsincludes\class-wsb-brands.php:173
actionwsb_brands_edit_form_fieldsincludes\class-wsb-brands.php:174
actionwoocommerce_product_duplicate_before_saveincludes\class-wsb-brands.php:180
filterwoocommerce_product_export_column_namesincludes\class-wsb-brands.php:185
filterwoocommerce_product_export_product_default_columnsincludes\class-wsb-brands.php:186
filterwoocommerce_product_export_product_column_wsb_brandsincludes\class-wsb-brands.php:187
actionrestrict_manage_postsincludes\class-wsb-brands.php:192
filterwoocommerce_csv_product_import_mapping_optionsincludes\class-wsb-brands.php:194
filterwoocommerce_csv_product_import_mapping_default_columnsincludes\class-wsb-brands.php:195
filterwoocommerce_product_importer_parsed_dataincludes\class-wsb-brands.php:196
filterwoocommerce_product_import_inserted_product_objectincludes\class-wsb-brands.php:197
filterpost_edit_category_parent_dropdown_argsincludes\class-wsb-brands.php:203
filterwoocommerce_sortable_taxonomiesincludes\class-wsb-brands.php:209
actionedited_wsb_brandsincludes\class-wsb-brands.php:211
actioncreated_wsb_brandsincludes\class-wsb-brands.php:212
filterwoocommerce_settings_tabs_arrayincludes\class-wsb-brands.php:213
actionwoocommerce_update_options_wsb_brands_admin_tabincludes\class-wsb-brands.php:214
filtermanage_edit-wsb_brands_columnsincludes\class-wsb-brands.php:215
actionmanage_wsb_brands_custom_columnincludes\class-wsb-brands.php:216
actionwidgets_initincludes\class-wsb-brands.php:217
actionwidgets_initincludes\class-wsb-brands.php:218
actionwoocommerce_coupon_options_usage_restrictionincludes\class-wsb-brands.php:224
actionwoocommerce_coupon_object_updated_propsincludes\class-wsb-brands.php:225
filterwoocommerce_coupon_is_validincludes\class-wsb-brands.php:230
filterwoocommerce_coupon_is_valid_for_productincludes\class-wsb-brands.php:234
filterwoocommerce_get_item_dataincludes\class-wsb-brands.php:238
actionwp_enqueue_scriptsincludes\class-wsb-brands.php:253
actionwp_enqueue_scriptsincludes\class-wsb-brands.php:254
actionwoocommerce_single_product_summaryincludes\class-wsb-brands.php:255
actionwoocommerce_before_shop_loopincludes\class-wsb-brands.php:256
filterpre_get_document_titleincludes\class-wsb-brands.php:257
filterwoocommerce_show_page_titleincludes\class-wsb-brands.php:258
filterwoocommerce_product_tabsincludes\class-wsb-brands.php:259
filterwoocommerce_structured_data_productincludes\class-wsb-brands.php:263
Maintenance & Trust

WSB Brands Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10
Last updatedMar 16, 2023
PHP min version5.6
Downloads5K

Community Trust

Rating88/100
Number of ratings7
Active installs50
Alternatives

WSB Brands Alternatives

Brands for WooCommerce

Brands for WooCommerce

unlimited-brands-for-woocommerce

A
85

Woocommerce Brands Plugin. You can assign poducts to brands. There\'s shortcode to display list of brands, as well as widget that provides filter &hellip;

10 No CVEs
Perfect Brands for WooCommerce

Perfect Brands for WooCommerce

perfect-woocommerce-brands

A
95

Perfect Brands for WooCommerce allows you to show product brands in your WooCommerce based store

50K 4 CVEs
MAS Brands for WooCommerce

MAS Brands for WooCommerce

mas-woocommerce-brands

A
92

Brands plugin for WooCommerce by MadrasThemes.

10K No CVEs
Premmerce Brands for WooCommerce

Premmerce Brands for WooCommerce

premmerce-woocommerce-brands

A
98

This plugin makes it possible to create an unlimited number of brands that can be assigned to the products for better cataloging.

2K 2 CVEs
Smart Brands for WooCommerce

Smart Brands for WooCommerce

smart-brands-for-woocommerce

A
100

Create unlimited brands to assign to your products, highlight the brands of the products you sell, and boost sales instantly!

400 No CVEs
Developer Profile

WSB Brands Developer Profile

Branko

3 plugins · 1K total installs

72
trust score
Avg Security Score
90/100
Avg Patch Time
314 days
View full developer profile
Detection Fingerprints

How We Detect WSB Brands

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wsb-brands/admin/css/wsb-brands-admin.css/wp-content/plugins/wsb-brands/admin/js/wsb-brands-admin.js
Script Paths
/wp-content/plugins/wsb-brands/admin/js/wsb-brands-admin.js
Version Parameters
wsb-brands-admin.css?ver=wsb-brands-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
wsb-brands-meta-box
Data Attributes
data-wsb-brands-admin-nonce
JS Globals
wsb_brands_admin_ajax_object
FAQ

Frequently Asked Questions about WSB Brands