Does All-In-One Slideshow have any unpatched vulnerabilities?

No. All known vulnerabilities in All-In-One Slideshow have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is All-In-One Slideshow compatible with WordPress 3.3.2?

According to WordPress.org data, All-In-One Slideshow 1.3.3 has been tested up to WordPress 3.3.2. Check the plugin's changelog for the latest compatibility information.

How often is All-In-One Slideshow updated?

All-In-One Slideshow was last updated on Feb 5, 2012. Frequent updates are generally a positive security signal.

What is All-In-One Slideshow's security score?

All-In-One Slideshow has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

All-In-One Slideshow Security & Risk Analysis

wordpress.org/plugins/all-in-one-slideshow

All-In-One Slideshow plugin implements jCycle, Easing and Cufon scripts into the highly customizable slideshow gallery.

100 active installs v1.3.3 PHP + WP 3.0+ Updated Feb 5, 2012

easinggalleryjcyclejquery-cycleslideshow

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is All-In-One Slideshow Safe to Use in 2026?

Generally Safe

Score 85/100

All-In-One Slideshow has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 14yr ago

Risk Assessment

The 'all-in-one-slideshow' v1.3.3 plugin exhibits a mixed security posture. On the positive side, there are no known CVEs associated with this plugin, and the static analysis indicates a lack of dangerous functions, no raw SQL queries, and no external HTTP requests. The presence of a bundled library like Select2, while not inherently a vulnerability, is a common point of interest in security audits. However, several critical concerns arise from the code analysis. The extremely low percentage of properly escaped output (4%) suggests a high risk of Cross-Site Scripting (XSS) vulnerabilities, especially considering there are 105 total outputs. Furthermore, the absence of nonce checks and capability checks, coupled with zero unprotected entry points being identified, raises questions about how access control is managed and if the limited attack surface is adequately secured. The lack of taint analysis results is also notable, making it impossible to assess risks associated with data flows.

Key Concerns

Low percentage of properly escaped output
No nonce checks
No capability checks
Bundled library (Select2)

Vulnerabilities

None known

All-In-One Slideshow Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

All-In-One Slideshow Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

101

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2

Output Escaping

4% escaped105 total outputs

Attack Surface

All-In-One Slideshow Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[aio_slideshow] all-in-one-slideshow.php:921

WordPress Hooks 7

actionwidgets_initall-in-one-slideshow.php:19

actionadmin_initall-in-one-slideshow.php:157

actionadmin_print_scriptsall-in-one-slideshow.php:163

actionadmin_menuall-in-one-slideshow.php:224

actionwp_headall-in-one-slideshow.php:1152

actionwp_print_scriptsall-in-one-slideshow.php:1209

actionwp_footerall-in-one-slideshow.php:1266

Maintenance & Trust

All-In-One Slideshow Maintenance & Trust

Maintenance Signals

WordPress version tested3.3.2

Last updatedFeb 5, 2012

PHP min version

Downloads40K

Community Trust

Rating0/100

Number of ratings0

Active installs100

Alternatives

All-In-One Slideshow Alternatives

Smart Slider 3

smart-slider-3

Responsive slider plugin to create sliders in visual editor easily. Build beautiful image slider, layer slider, video slider, post slider, and more.

800K 8 CVEs

Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery

nextgen-gallery

The most popular gallery plugin that lets you create galleries and albums in seconds.

400K 38 CVEs

Simple Lightbox

simple-lightbox

The highly customizable lightbox for WordPress

100K 1 CVE

Carousel, Slider, Photo Gallery with Lightbox, Video Slider, by WP Carousel

wp-carousel-free

Carousel, Slider, and Photo Gallery with Lightbox plugin. Create Image Carousel, Video Slider, Post Carousel, Post Grid, Product Carousel, and more.

70K 5 CVEs

Slider by Soliloquy – Responsive Image Slider for WordPress

soliloquy-lite

The best WordPress slider plugin. Drag & Drop responsive slider builder that helps you create a beautiful image slideshows with just a few clicks.

30K 2 CVEs

Developer Profile

All-In-One Slideshow Developer Profile

wptom

3 plugins · 140 total installs

trust score

Avg Security Score

90/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect All-In-One Slideshow

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/all-in-one-slideshow/css/slideshow.css/wp-content/plugins/all-in-one-slideshow/js/jquery.cycle.all.js/wp-content/plugins/all-in-one-slideshow/js/jquery.easing.1.3.js/wp-content/plugins/all-in-one-slideshow/js/slideshow.js/wp-content/plugins/all-in-one-slideshow/js/cufon-yui.js/wp-content/plugins/all-in-one-slideshow/cufon/fonts/georgia.font.js/wp-content/plugins/all-in-one-slideshow/cufon/fonts/helvetica.font.js/wp-content/plugins/all-in-one-slideshow/cufon/fonts/arial.font.js+6 more

Script Paths

/wp-content/plugins/all-in-one-slideshow/js/jquery.cycle.all.js/wp-content/plugins/all-in-one-slideshow/js/jquery.easing.1.3.js/wp-content/plugins/all-in-one-slideshow/js/slideshow.js/wp-content/plugins/all-in-one-slideshow/js/cufon-yui.js/wp-content/plugins/all-in-one-slideshow/cufon/fonts/georgia.font.js/wp-content/plugins/all-in-one-slideshow/cufon/fonts/helvetica.font.js+6 more

Version Parameters

all-in-one-slideshow/css/slideshow.css?ver=all-in-one-slideshow/js/jquery.cycle.all.js?ver=all-in-one-slideshow/js/jquery.easing.1.3.js?ver=all-in-one-slideshow/js/slideshow.js?ver=all-in-one-slideshow/js/cufon-yui.js?ver=all-in-one-slideshow/cufon/fonts/georgia.font.js?ver=all-in-one-slideshow/cufon/fonts/helvetica.font.js?ver=all-in-one-slideshow/cufon/fonts/arial.font.js?ver=all-in-one-slideshow/cufon/fonts/cufon-replace.js?ver=all-in-one-slideshow/colorpicker/css/colorpicker.css?ver=all-in-one-slideshow/colorpicker/js/jquery.js?ver=all-in-one-slideshow/colorpicker/js/colorpicker.js?ver=all-in-one-slideshow/colorpicker/js/eye.js?ver=all-in-one-slideshow/colorpicker/js/utils.js?ver=

HTML / DOM Fingerprints

CSS Classes

aioslideshow

HTML Comments

<!--
This section defines the variables that
will be used throughout the plugin
-->

<!--
This section hooks the proper functions
to the proper actions in WordPress
-->

+1 more

Data Attributes

aio-slideshow-widgetcolorpickerField

JS Globals

aio_slideshow_defaultsaio_slideshow_settingsaio_slideshow_imagesaio_slideshow_admin_page

Shortcode Output

[aio_slideshow]

FAQ