Does Shader Grid have any unpatched vulnerabilities?

No. All known vulnerabilities in Shader Grid have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Shader Grid compatible with WordPress 6.9.4?

According to WordPress.org data, Shader Grid 1.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Shader Grid compatible with PHP 8.0+?

Shader Grid requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Shader Grid updated?

Shader Grid was last updated on Feb 13, 2026. Frequent updates are generally a positive security signal.

What is Shader Grid's security score?

Shader Grid has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Shader Grid Security & Risk Analysis

wordpress.org/plugins/shader-grid

Powerful and extremely customizable responsive infinite image/video grid with WebGL shaders and lightbox support.

0 active installs v1.0 PHP 8.0+ WP 6.0+ Updated Feb 13, 2026

gallery-pluginimage-galleryresponsive-galleryvideo-gallerywordpress-gallery-plugin

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Shader Grid Safe to Use in 2026?

Generally Safe

Score 100/100

Shader Grid has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The shader-grid v1.0 plugin demonstrates a generally strong security posture with several good practices in place. Notably, all SQL queries utilize prepared statements, and all output is properly escaped, mitigating common injection and cross-site scripting (XSS) vulnerabilities. The absence of file operations and external HTTP requests further reduces the attack surface. The plugin also includes nonce and capability checks on some of its entry points.

However, a significant concern arises from the presence of two AJAX handlers that lack authentication checks. These unprotected entry points represent potential attack vectors that could be exploited if they handle user-supplied data or perform sensitive actions. While taint analysis and vulnerability history show no immediate critical or high-risk issues, the unprotected AJAX handlers are a clear weakness that needs immediate attention.

In conclusion, shader-grid v1.0 has a solid foundation of secure coding practices. The lack of known vulnerabilities and the use of prepared statements and output escaping are commendable. Nevertheless, the two unprotected AJAX handlers introduce a notable risk that detracts from an otherwise secure profile. Addressing these unprotected entry points should be the priority to further harden the plugin's security.

Key Concerns

Unprotected AJAX handlers

Vulnerabilities

None known

Shader Grid Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Shader Grid Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

59 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped59 total outputs

Attack Surface

2 unprotected

Shader Grid Attack Surface

Entry Points7

Unprotected2

AJAX Handlers 6

noprivwp_ajax_fwdsg_set_cssphp\FWDSG.php:65

authwp_ajax_fwdsg_set_cssphp\FWDSG.php:66

noprivwp_ajax_fwdsg_update_presetsphp\FWDSG.php:68

authwp_ajax_fwdsg_update_presetsphp\FWDSG.php:69

noprivwp_ajax_fwdsg_update_galleriesphp\FWDSG.php:71

authwp_ajax_fwdsg_update_galleriesphp\FWDSG.php:72

Shortcodes 1

[fwdsg] php\FWDSG.php:61

WordPress Hooks 9

actionadmin_menuphp\FWDSG.php:55

actionadmin_enqueue_scriptsphp\FWDSG.php:56

actionwp_enqueue_scriptsphp\FWDSG.php:57

actionwpphp\FWDSG.php:75

actionwoocommerce_before_single_product_summaryphp\FWDSG.php:103

filterwoocommerce_single_product_image_thumbnail_htmlphp\FWDSG.php:104

filterwoocommerce_single_product_image_gallery_classesphp\FWDSG.php:105

actioninitshader-grid.php:40

actionadmin_initshader-grid.php:41

Maintenance & Trust

Shader Grid Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 13, 2026

PHP min version8.0

Downloads123

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Shader Grid Alternatives

Modula Image Gallery – Photo Grid & Video Gallery

modula-best-grid-gallery

Create responsive image galleries with drag-and-drop grid builder. Custom layouts, video support, AI optimization. Works with any theme.

100K 14 CVEs

Photo Gallery by 10Web – Mobile-Friendly Image Gallery

photo-gallery

Photo Gallery is a powerful image gallery plugin with a list of advanced options for creating responsive image galleries with beautiful lightbox.

200K 1 unpatched

Robo Gallery – Photo & Image Slider

robo-gallery

Robo Gallery is a powerful image gallery and photo gallery plugin with advanced features to create responsive galleries with a beautiful lightbox

40K 17 CVEs

Pixel Gallery Addons for Elementor – Easy Grid, Creative Gallery, Drag and Drop Grid, Custom Grid Layout, Portfolio Gallery

pixel-gallery

Best Addon for Elementor WordPress Plugin with 60+ Most Popular Elements that need your everyday website page building.

5K 1 CVE

Mosaic Gallery – Advanced Gallery

mosaic-gallery-advanced-gallery

100

Mosaic Gallery is an advanced plugin for creating stunning, responsive mosaic-style galleries with ease, offering customizable layouts and effects.

3K No CVEs

Developer Profile

Shader Grid Developer Profile

FWD

7 plugins · 80 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Shader Grid

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/shader-grid/css/fwdsg-dialog.css/wp-content/plugins/shader-grid/css/fwdsg_gallery.css/wp-content/plugins/shader-grid/css/fwdsg_tooltip.css/wp-content/plugins/shader-grid/css/fwdsg_header.css/wp-content/plugins/shader-grid/js/FWDSG.js/wp-content/plugins/shader-grid/js/FWDSGMessage.js/wp-content/plugins/shader-grid/js/FWDSGTooltip.js/wp-content/plugins/shader-grid/js/FWDSGDialog.js+6 more

Script Paths

/wp-content/plugins/shader-grid/js/FWDSG.js/wp-content/plugins/shader-grid/js/FWDSGMessage.js/wp-content/plugins/shader-grid/js/FWDSGTooltip.js/wp-content/plugins/shader-grid/js/FWDSGDialog.js/wp-content/plugins/shader-grid/js/fwdsg_gallery.js/wp-content/plugins/shader-grid/js/fwdsg_tooltip.js+4 more

Version Parameters

shader-grid/css/fwdsg-dialog.css?ver=shader-grid/css/fwdsg_gallery.css?ver=shader-grid/css/fwdsg_tooltip.css?ver=shader-grid/css/fwdsg_header.css?ver=shader-grid/js/FWDSG.js?ver=shader-grid/js/FWDSGMessage.js?ver=shader-grid/js/FWDSGTooltip.js?ver=shader-grid/js/FWDSGDialog.js?ver=shader-grid/js/fwdsg_gallery.js?ver=shader-grid/js/fwdsg_tooltip.js?ver=shader-grid/js/fwdsg_header.js?ver=shader-grid/js/fwdsg_data.js?ver=shader-grid/js/fwdsg_manager.js?ver=shader-grid/js/fwdsg_shortcode.js?ver=

HTML / DOM Fingerprints

CSS Classes

fwdsg-gallery-containerfwdsg-gallery-itemfwdsg-gallery-thumbnailfwdsg-gallery-image

HTML Comments

Data Attributes

data-fwdsg-preset-namedata-fwdsg-gallery-namedata-fwdsg-gallery-id

JS Globals

fwdsgPresetsArfwdsgGalleriesNamesArfwdsgGalleries_ar

REST Endpoints

/wp-json/fwdsg/v1/presets/wp-json/fwdsg/v1/galleries

Shortcode Output

[fwdsg][fwdsg preset_name="example_preset" gallery_name="example_gallery"]

FAQ