Does Jssor Slider by jssor.com have any unpatched vulnerabilities?

No. All known vulnerabilities in Jssor Slider by jssor.com have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Jssor Slider by jssor.com compatible with WordPress 5.0.25?

According to WordPress.org data, Jssor Slider by jssor.com 3.1.24 has been tested up to WordPress 5.0.25. Check the plugin's changelog for the latest compatibility information.

How often is Jssor Slider by jssor.com updated?

Jssor Slider by jssor.com was last updated on Jan 15, 2019. Frequent updates are generally a positive security signal.

What is Jssor Slider by jssor.com's security score?

Jssor Slider by jssor.com has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Jssor Slider by jssor.com Security & Risk Analysis

wordpress.org/plugins/jssor-slider

Responsive Touch Slideshow/Slider/Gallery/Carousel/Banner

300 active installs v3.1.24 PHP + WP 4.1+ Updated Jan 15, 2019

wordpress-banner-rotatorwordpress-carouselwordpress-gallerywordpress-sliderwordpress-slideshow

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Jssor Slider by jssor.com Safe to Use in 2026?

Generally Safe

Score 85/100

Jssor Slider by jssor.com has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

The jssor-slider plugin v3.1.24 exhibits a generally good security posture with several positive indicators. The absence of known CVEs and common vulnerability types in its history is a strong sign of stability. Furthermore, the plugin demonstrates good practices regarding SQL queries with a high percentage of prepared statements and a substantial majority of properly escaped outputs. The presence of numerous nonce and capability checks suggests an effort to secure various functionalities. However, a significant concern arises from the single unprotected AJAX handler identified in the attack surface. This represents a direct entry point that could be exploited without proper authentication or authorization, potentially leading to unauthorized actions or data manipulation if further vulnerabilities exist within that handler.

Despite the positive aspects, the single AJAX endpoint lacking authentication is a critical weakness. While the taint analysis did not reveal critical or high severity flows, the presence of one flow with unsanitized paths warrants attention, as it could be a vector for vulnerabilities if exploited in conjunction with other weaknesses. The plugin's moderate number of file operations and external HTTP requests also represent potential, albeit lower, risk areas that could be exacerbated by other vulnerabilities. Overall, the plugin is well-maintained in terms of historical vulnerabilities and internal code practices, but the unprotected AJAX handler requires immediate remediation to address a clear security gap.

Key Concerns

Unprotected AJAX handler found
Taint flow with unsanitized paths

Vulnerabilities

None known

Jssor Slider by jssor.com Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Jssor Slider by jssor.com Code Analysis

Dangerous Functions

Raw SQL Queries

6 prepared

Unescaped Output

56 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

46% prepared13 total queries

Output Escaping

79% escaped71 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

5 flows1 with unsanitized paths

<class-jssor-slider-admin-controller> (interface\api\class-jssor-slider-admin-controller.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Jssor Slider by jssor.com Attack Surface

Entry Points2

Unprotected1

AJAX Handlers 1

authwp_ajax_jssor_slider_actionjssor-slider.php:165

Shortcodes 1

[jssor-slider] jssor-slider.php:162

WordPress Hooks 9

filterpre_set_site_transient_update_pluginsincludes\bll\class-jssor-slider-update.php:67

filterplugins_apiincludes\bll\class-jssor-slider-update.php:70

actionadmin_enqueue_scriptsinterface\admin\class-jssor-slider-admin-page.php:102

actionadmin_enqueue_scriptsinterface\admin\class-jssor-slider-admin-page.php:103

actionadmin_noticesinterface\admin\class-jssor-slider-admin-page.php:104

actionadmin_noticesjssor-slider.php:35

actionadmin_menujssor-slider.php:163

actiontemplate_redirectjssor-slider.php:164

actionupgrader_process_completejssor-slider.php:167

Maintenance & Trust

Jssor Slider by jssor.com Maintenance & Trust

Maintenance Signals

WordPress version tested5.0.25

Last updatedJan 15, 2019

PHP min version

Downloads31K

Community Trust

Rating84/100

Number of ratings5

Active installs300

Alternatives

Jssor Slider by jssor.com Alternatives

MK Slider

mk-slider

Wordpress Slider for posts & pages. Supports shortcode and sidebar widget to display slideshow.

100 No CVEs

Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery

nextgen-gallery

The most popular gallery plugin that lets you create galleries and albums in seconds.

400K 38 CVEs

Photo Gallery by 10Web – Mobile-Friendly Image Gallery

photo-gallery

Photo Gallery is a powerful image gallery plugin with a list of advanced options for creating responsive image galleries with beautiful lightbox.

200K 61 CVEs

Envira Gallery – Image Photo Gallery, Albums, Video Gallery, Slideshows & More

envira-gallery-lite

Envira Gallery is a fast, easy and powerful gallery builder with lightbox, masonry and grid layouts, albums, videos, and responsive displays and more

100K 10 CVEs

Modula Image Gallery – Photo Grid & Video Gallery

modula-best-grid-gallery

Create responsive image galleries with drag-and-drop grid builder. Custom layouts, video support, AI optimization. Works with any theme.

100K 14 CVEs

Developer Profile

Jssor Slider by jssor.com Developer Profile

jssor.com

1 plugin · 300 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Jssor Slider by jssor.com

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/jssor-slider/includes/framework/jssor-slider-condition.php/wp-content/plugins/jssor-slider/interface/admin/class-jssor-slider-admin-page.php/wp-content/plugins/jssor-slider/interface/admin/js/wp.jssor.slider.admin.init.js/wp-content/plugins/jssor-slider/public/content/slideo.editor/css/slideo.editor.min.css/wp-content/plugins/jssor-slider/public/script/wp.jssor.push.server.init.js/wp-content/plugins/jssor-slider/jssor-slider-dispatcher.php/wp-content/plugins/jssor-slider/jssor-slider.php

Script Paths

wp.jssor.slider.admin.init.jswp.jssor.push.server.init.jsslideo.editor.min.css

Version Parameters

jssor-slider-admin-init-script?ver=jssor-slideo-eidtor-css?ver=

HTML / DOM Fingerprints

CSS Classes

jssor-slider-admin-contentjssor-slider-admin-dashboard-wrapjssor-slider-admin-form-fieldjssor-slider-admin-grid-containerjssor-slider-admin-headerjssor-slider-admin-main-contentjssor-slider-admin-pagejssor-slider-admin-sidebar+2 more

HTML Comments

Data Attributes

data-jssor-slider-optionsdata-jssor-slider-widgetid="jssor_1"

JS Globals

WP_JSSOR_SLIDER_DEBUGWP_JSSOR_SLIDER_DIAGNOSTICWP_JSSOR_SLIDER_BUILD_ENABLEDWP_JSSOR_SLIDER_URLWP_JSSOR_SLIDER_VERSIONWP_JSSOR_SLIDER_PLUGIN_NAME

Shortcode Output

[jssor-slider]

FAQ