Does Fade Slider have any unpatched vulnerabilities?

No. All known vulnerabilities in Fade Slider have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Fade Slider compatible with WordPress 6.9.4?

According to WordPress.org data, Fade Slider 2.6 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is Fade Slider updated?

Fade Slider was last updated on Feb 28, 2026. Frequent updates are generally a positive security signal.

What is Fade Slider's security score?

Fade Slider has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Fade Slider Security & Risk Analysis

wordpress.org/plugins/fade-slider

A modern, responsive Bootstrap 5.3 carousel slider plugin with smooth fade/slide animations, works perfectly on all devices and themes.

100 active installs v2.6 PHP + WP 5.0+ Updated Feb 28, 2026

bootstrap-5-3-carouselbootstrap-slidercarouselfade-sliderslider

A · Safe

CVEs total1

Unpatched0

Last CVEJul 14, 2025

Download

Safety Verdict

Is Fade Slider Safe to Use in 2026?

Generally Safe

Score 99/100

Fade Slider has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Jul 14, 2025Updated 1mo ago

Risk Assessment

The fade-slider plugin version 2.6 exhibits a generally strong security posture, particularly in its handling of SQL queries and file operations, which are absent or properly secured. The plugin demonstrates good practices by implementing nonce and capability checks on its entry points, and the vast majority of output is properly escaped. Taint analysis revealed no unsanitized flows, indicating a low risk of direct code injection or manipulation through user input.

However, the presence of one past medium-severity Cross-Site Scripting (XSS) vulnerability, even though currently patched, warrants attention. The fact that the last reported vulnerability was in the future (2025-07-14) is likely a data anomaly, but it emphasizes the importance of staying vigilant. While the current static analysis shows no immediate critical or high risks, the history of an XSS vulnerability suggests that user-supplied data might not always be perfectly neutralized, even if the current version appears to have addressed this.

Overall, fade-slider v2.6 is a reasonably secure plugin with commendable practices in critical areas. The primary area for improvement lies in continuously ensuring that all forms of user input are robustly validated and escaped to prevent any recurrence of past vulnerabilities. The plugin's strengths in secure coding practices outweigh its minor historical concerns, but ongoing vigilance is advised.

Key Concerns

Past medium XSS vulnerability
85% output escaping, 15% unescaped

Vulnerabilities

Fade Slider Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-49956medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Fade Slider <= 2.5 - Reflected Cross-Site Scripting

Jul 14, 2025 Patched in 2.6 (236d)

Code Analysis

Analyzed Mar 16, 2026

Fade Slider Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

192 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

85% escaped225 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

fadeslider_ajax (admin\fadeslider_admin.php:366)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Fade Slider Attack Surface

Entry Points2

Unprotected0

AJAX Handlers 1

authwp_ajax_fadeslider_ajaxadmin\fadeslider_admin.php:365

Shortcodes 1

[display_fade_slider] public\fadeslider_public.php:24

WordPress Hooks 10

actiondo_meta_boxesadmin\fadeslider_admin.php:3

actioninitadmin\fadeslider_admin.php:9

actioninitadmin\fadeslider_admin.php:46

actionadmin_enqueue_scriptsadmin\fadeslider_admin.php:66

actionadmin_initadmin\fadeslider_admin.php:85

actionsave_postadmin\fadeslider_admin.php:242

actionadmin_headadmin\fadeslider_admin.php:513

filterpost_updated_messagesadmin\fadeslider_admin.php:528

actionadmin_menufadeslider_init.php:35

actionwp_enqueue_scriptspublic\fadeslider_public.php:3

Maintenance & Trust

Fade Slider Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 28, 2026

PHP min version

Downloads5K

Community Trust

Rating100/100

Number of ratings3

Active installs100

Alternatives

Fade Slider Alternatives

Advanced Bootstrap Carousel

advanced-bootstrap-carousel

Advanced Bootstrap Carousel is a light weighted responsive slider plugin.

300 No CVEs

WP Bootstrap Carousel by IT Pixelz

wp-bootstrap-carousel-by-it-pixelz

Bootstrap responsive carousel slider, just install in clicks and get ready your bootstrap slider for your website.

50 No CVEs

Slider Bootstrap Carousel

slider-bootstrap-carousel

Slider Bootstrap Carousel 4 for WordPress with image link and categories.

20 No CVEs

Bootstrap Slider By themescode

bootstrap-slider-by-themescode

Twitter Bootstrap based professional WordPress carousel slider plugin on click installation.use the shortcode where want to use

10 No CVEs

TC Bootstrap Carousel

tc-bootstrap-carousel

Twitter Bootstrap based professional WordPress carousel plugin on click installation.use the shortcode where want to use

10 No CVEs

Developer Profile

Fade Slider Developer Profile

Anandaraj Balu

3 plugins · 110 total installs

trust score

Avg Security Score

90/100

Avg Patch Time

236 days

View full developer profile

Detection Fingerprints

How We Detect Fade Slider

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/fade-slider/admin/css/fadeslider-admin_style.css/wp-content/plugins/fade-slider/public/css/fadeslider_style.css/wp-content/plugins/fade-slider/public/js/fadeslider_public.js

Script Paths

/wp-content/plugins/fade-slider/admin/js/fadeslider-admin_js.js

Version Parameters

fade-slider/admin/js/fadeslider-admin_js.js?ver=fade-slider/public/css/fadeslider_style.css?ver=fade-slider/public/js/fadeslider_public.js?ver=

HTML / DOM Fingerprints

CSS Classes

fadeslider-shortcodefadeslider-optionsfade-form-controlfadeslider-wrapperfade-slider-containercarousel-fadecarousel-itemactive+3 more

HTML Comments

+4 more

Data Attributes

data-bs-ridedata-bs-intervaldata-bs-wrapdata-bs-keyboarddata-bs-touchdata-bs-pause+13 more

JS Globals

ajax_var

Shortcode Output

[display_fade_slider id=fade_slider_template('[display_fade_slider id=

FAQ