WP-Safety

Slider by BestWebSoft Security & Risk Analysis

wordpress.org/plugins/slider-bws

The best responsive slider plugin for your WordPress website. Create beautifully animated slides just in a few clicks.

500 active installs v1.1.2 PHP + WP 5.6+ Updated Jun 12, 2025
best-sliderimage-carouselresponsive-sliderslider-pluginvideo-slider
99
A · Safe
CVEs total1
Unpatched0
Last CVEMar 28, 2025
Plugin page Download
Safety Verdict

Is Slider by BestWebSoft Safe to Use in 2026?

Generally Safe

Score 99/100

Slider by BestWebSoft has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Mar 28, 2025Updated 9mo ago
Risk Assessment

The 'slider-bws' plugin version 1.1.2 exhibits a mixed security posture. On the positive side, it demonstrates good practices by implementing a high percentage of prepared statements for SQL queries and proper output escaping. The plugin also utilizes nonces and capability checks, and importantly, has no currently unpatched CVEs, with its single past medium vulnerability being addressed. The attack surface is relatively contained with no directly exposed REST API routes and all identified AJAX handlers having authentication checks.

Key Concerns

  • Taint analysis shows 5 high severity flows with unsanitized paths
  • Uses unserialize() function, a common source of vulnerabilities
  • 3 high severity taint flows with unsanitized paths
  • Taint analysis shows 2 high severity flows with unsanitized paths
  • Medium severity vulnerability history
Vulnerabilities
1

Slider by BestWebSoft Security Vulnerabilities

CVEs by Year

1 CVE in 2025
2025
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2025-31099medium · 4.9Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Slider by BestWebSoft <= 1.1.0 - Authenticated (Administrator+) SQL Injection

Mar 28, 2025 Patched in 1.1.1 (7d)
Code Analysis
Analyzed Mar 16, 2026

Slider by BestWebSoft Code Analysis

Dangerous Functions
3
Raw SQL Queries
16
62 prepared
Unescaped Output
24
637 escaped
Nonce Checks
28
Capability Checks
3
File Operations
2
External Requests
6
Bundled Libraries
0

Dangerous Functions Found

unserialize$options = unserialize( $slider_single_setting );includes\class-sldr-settings.php:53
unserialize$slider_single_settings = unserialize( $slider_single_setting );slider-bws.php:1146
unserialize$slider_category_settings = unserialize( $slider_category_setting );slider-bws.php:1268

SQL Query Safety

79% prepared78 total queries

Output Escaping

96% escaped661 total outputs
Data Flows
8 unsanitized

Data Flow Analysis

16 flows8 with unsanitized paths
sldr_shortcode_metabox (slider-bws.php:749)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Slider by BestWebSoft Attack Surface

Entry Points6
Unprotected0

AJAX Handlers 5

authwp_ajax_bws_submit_request_feature_actionbws_menu\class-bws-settings.php:1466
authwp_ajax_bws_submit_uninstall_reason_actionbws_menu\deactivation-form.php:433
authwp_ajax_sldr_media_checkslider-bws.php:1849
authwp_ajax_sldr_delete_imageslider-bws.php:1851
authwp_ajax_sldr_add_from_mediaslider-bws.php:1852

Shortcodes 1

[print_sldr] slider-bws.php:1856
WordPress Hooks 26
filterload_textdomain_mofilebws_menu\bws_functions.php:43
filtermce_external_pluginsbws_menu\bws_functions.php:1296
filtermce_buttonsbws_menu\bws_functions.php:1297
actionadmin_initbws_menu\bws_functions.php:1584
actionadmin_enqueue_scriptsbws_menu\bws_functions.php:1585
actionadmin_headbws_menu\bws_functions.php:1586
actionadmin_footerbws_menu\bws_functions.php:1587
actionadmin_noticesbws_menu\bws_functions.php:1589
actionwp_enqueue_scriptsbws_menu\bws_functions.php:1591
filterposts_orderbyincludes\class-sldr-media-table.php:59
filterposts_joinincludes\class-sldr-media-table.php:60
actionadmin_menuslider-bws.php:1828
actioninitslider-bws.php:1830
actionadmin_initslider-bws.php:1831
actionplugins_loadedslider-bws.php:1833
actionadmin_enqueue_scriptsslider-bws.php:1835
actionwp_enqueue_scriptsslider-bws.php:1836
filterplugin_row_metaslider-bws.php:1839
filterplugin_action_linksslider-bws.php:1840
actionadmin_noticesslider-bws.php:1842
filterset-screen-optionslider-bws.php:1844
actionprint_media_templatesslider-bws.php:1847
filterbws_shortcode_button_contentslider-bws.php:1854
filterwidget_textslider-bws.php:1858
actionsldr_display_sliderslider-bws.php:1861
filtertemplate_homepage_sliderslider-bws.php:1862
Maintenance & Trust

Slider by BestWebSoft Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedJun 12, 2025
PHP min version
Downloads16K

Community Trust

Rating100/100
Number of ratings3
Active installs500
Alternatives

Slider by BestWebSoft Alternatives

Several Images Slider Widget

Several Images Slider Widget

several-images-slider-widget

A
100

This plugin will add Several Images Slider Widget. In this Widget you can set single or multiple images slider with link to all slides.

200 No CVEs
Xpro Slider For Beaver Builder – Lite

Xpro Slider For Beaver Builder – Lite

multi-layer-slider-beaver-builder-elementor

A
92

The Most Powerful and Easy To Use Slider for Beaver Builder

500 No CVEs
Ovation Elements

Ovation Elements

ovation-elements

A
99

Transform your site with captivating sliders. Perfect for beginners and advanced users. Create and customize with our ultimate slider plugin.

10K 1 CVE
Slider for Photos Images Videos

Slider for Photos Images Videos

media-slider

A
99

Create responsive image and video sliders with thumbnails, navigation, autoplay, and carousel layouts for your site.

3K 1 CVE
Responsive Full Width Background Slider

Responsive Full Width Background Slider

responsive-full-width-background-slider

A
85

Awesome Responsive Full Width Background Slider Plugin for full screen slide show in background of your WordPress site.

2K No CVEs
Developer Profile

Slider by BestWebSoft Developer Profile

bestweblayout

32 plugins · 17K total installs

78
trust score
Avg Security Score
98/100
Avg Patch Time
1944 days
View full developer profile
Detection Fingerprints

How We Detect Slider by BestWebSoft

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/slider-bws/slider-bws-public.css/wp-content/plugins/slider-bws/js/slider-bws-public.js/wp-content/plugins/slider-bws/js/owl.carousel.min.js/wp-content/plugins/slider-bws/js/owl.carousel.css/wp-content/plugins/slider-bws/js/magnific-popup.css/wp-content/plugins/slider-bws/js/jquery.magnific-popup.min.js/wp-content/plugins/slider-bws/js/bws_frontend.js/wp-content/plugins/slider-bws/css/owl.carousel.css+3 more
Script Paths
/wp-content/plugins/slider-bws/slider-bws-public.css/wp-content/plugins/slider-bws/js/slider-bws-public.js/wp-content/plugins/slider-bws/js/owl.carousel.min.js/wp-content/plugins/slider-bws/js/owl.carousel.css/wp-content/plugins/slider-bws/js/magnific-popup.css/wp-content/plugins/slider-bws/js/jquery.magnific-popup.min.js+1 more
Version Parameters
slider-bws/slider-bws-public.css?ver=slider-bws/js/slider-bws-public.js?ver=slider-bws/js/owl.carousel.min.js?ver=slider-bws/js/owl.carousel.css?ver=slider-bws/js/magnific-popup.css?ver=slider-bws/js/jquery.magnific-popup.min.js?ver=slider-bws/js/bws_frontend.js?ver=slider-bws/css/owl.carousel.css?ver=slider-bws/css/magnific-popup.css?ver=slider-bws/css/slider-bws-public.css?ver=slider-bws/css/bws-frontend.css?ver=

HTML / DOM Fingerprints

CSS Classes
bws-sliderslider-bws-containerbws-slider-contentbws-slider-elementbws-slider-wrapperbws-slider-itembws-slider-navigationbws-slider-pagination+5 more
HTML Comments
<!-- BEGIN slider-bws --><!-- END slider-bws --><!-- slider-bws-wrapper --><!-- slider-bws-item -->+2 more
Data Attributes
data-slider-iddata-slider-settings
JS Globals
sldr_frontendbws_slider_obj
Shortcode Output
[slider-bws]
FAQ

Frequently Asked Questions about Slider by BestWebSoft