Does Slider Hero with Video Background, Animation have any unpatched vulnerabilities?

No. All known vulnerabilities in Slider Hero with Video Background, Animation have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Slider Hero with Video Background, Animation compatible with WordPress 6.9.4?

According to WordPress.org data, Slider Hero with Video Background, Animation 9.1.1 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Slider Hero with Video Background, Animation compatible with PHP 5.6+?

Slider Hero with Video Background, Animation requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Slider Hero with Video Background, Animation updated?

Slider Hero with Video Background, Animation was last updated on Feb 6, 2026. Frequent updates are generally a positive security signal.

What is Slider Hero with Video Background, Animation's security score?

Slider Hero with Video Background, Animation has a WP-Safety security score of 98/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Slider Hero with Video Background, Animation Security Review

Safety Verdict

Is Slider Hero with Video Background, Animation Safe to Use in 2026?

Generally Safe

Score 98/100

Slider Hero with Video Background, Animation has a strong security track record. Known vulnerabilities have been patched promptly.

4 known CVEsLast CVE: Mar 25, 2024Updated 1mo ago

Risk Assessment

The "slider-hero" plugin exhibits a mixed security posture. While a significant portion of its code demonstrates good security practices, such as a high percentage of prepared SQL statements and properly escaped output, there are notable areas of concern. The presence of 8 unprotected AJAX handlers significantly expands the attack surface, presenting a clear entry point for malicious actors. The taint analysis revealing 4 high-severity flows with unsanitized paths is a critical red flag, indicating potential for serious vulnerabilities like Cross-Site Scripting or SQL Injection if these flows are indeed exploitable. The plugin's vulnerability history, with 4 known CVEs including one high-severity and three medium-severity, reinforces these concerns. The types of past vulnerabilities (XSS, SQLi, CSRF) align with the potential risks identified in the taint analysis. The most recent vulnerability being relatively recent (March 2024) suggests ongoing security challenges. Overall, while the plugin implements some robust security measures, the unprotected entry points and critical taint flows, coupled with a history of diverse and serious vulnerabilities, necessitate careful consideration and immediate mitigation of identified risks.

Key Concerns

Unprotected AJAX handlers present attack surface
High severity unsanitized taint flows
History of 1 high-severity CVE
History of 3 medium-severity CVEs
Bundled outdated TinyMCE library

Vulnerabilities

4

Slider Hero with Video Background, Animation Security Vulnerabilities

CVEs by Year

2 CVEs in 2021

2021

1 CVE in 2022

2022

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

High

1

Medium

3

4 total CVEs

CVE-2024-29922medium · 5.5Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Slider Hero <= 8.6.1 - Authenticated (Administrator+) Stored Cross-Site Scripting

Mar 25, 2024 Patched in 8.7.0 (8d)

CVE-2022-3074medium · 5.5Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Slider Hero <= 8.4.3 - Authenticated (Administrator+) Stored Cross-Site Scripting

Sep 5, 2022 Patched in 8.4.4 (505d)

CVE-2021-24506high · 8.8Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Slider Hero with Animation, Video Background & Intro Maker <= 8.2.6 - SQL Injection

Jul 26, 2021 Patched in 8.2.7 (911d)

CVE-2021-4424medium · 4.3Cross-Site Request Forgery (CSRF)

Slider Hero <= 8.2.0 - Cross-Site Request Forgery Bypass

Jul 5, 2021 Patched in 8.2.1 (932d)

Code Analysis

Analyzed Mar 16, 2026

Slider Hero with Video Background, Animation Code Analysis

Dangerous Functions

0

Raw SQL Queries

6

86 prepared

Unescaped Output

513

2715 escaped

Nonce Checks

31

Capability Checks

13

File Operations

19

External Requests

3

Bundled Libraries

2

Bundled Libraries

TinyMCE1.0jQuery

SQL Query Safety

93% prepared92 total queries

Output Escaping

84% escaped3228 total outputs

Data Flows

11 unsanitized

Data Flow Analysis

25 flows11 with unsanitized paths

display_page (option-tree\includes\class-ot-settings.php:227)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

8 unprotected

Slider Hero with Video Background, Animation Attack Surface

Entry Points25

Unprotected8

AJAX Handlers 23

authwp_ajax_goodbye_formclass-plugin-deactivate-feedback.php:62

authwp_ajax_add_sectionoption-tree\ot-loader.php:393

authwp_ajax_add_settingoption-tree\ot-loader.php:396

authwp_ajax_add_the_contextual_helpoption-tree\ot-loader.php:399

authwp_ajax_add_choiceoption-tree\ot-loader.php:402

authwp_ajax_add_list_item_settingoption-tree\ot-loader.php:405

authwp_ajax_add_layoutoption-tree\ot-loader.php:408

authwp_ajax_add_list_itemoption-tree\ot-loader.php:411

authwp_ajax_add_social_linksoption-tree\ot-loader.php:414

authwp_ajax_ot_google_fontoption-tree\ot-loader.php:417

authwp_ajax_gallery_updateoption-tree\ot-loader.php:423

authwp_ajax_qcld_show_arrow_itemsqc-fnc\qcld_sliderhero_ajax.php:174

authwp_ajax_qcld_show_stomp_configqc-fnc\qcld_sliderhero_ajax.php:287

authwp_ajax_qcld_hero_show_arrow_itemsqc-fnc\qcld_sliderhero_ajax.php:341

authwp_ajax_qcld_show_google_font_modelqc-fnc\qcld_sliderhero_ajax.php:422

authwp_ajax_qcld_show_google_font_variantsqc-fnc\qcld_sliderhero_ajax.php:423

authwp_ajax_qcld_show_preview_itemsqc-fnc\qcld_sliderhero_ajax_prev.php:299

authwp_ajax_qcld_show_preview_items2qc-fnc\qcld_sliderhero_ajax_prev2.php:285

authwp_ajax_show_shortcodes_sliderqc-fnc\qcld_sliderhero_helper_fnc.php:66

authwp_ajax_qcld_sliderhero_process_qc_promo_formqc-support-promo-page\class-qc-support-promo-page.php:116

authwp_ajax_qcld_recommend_support_function_ajaxqc-support-promo-page\qc-clr-recommendbot-support-plugin.php:8

authwp_ajax_qcld_sliderhero_actionsqcld-slider-main.php:67

noprivwp_ajax_qcld_sliderhero_actionsqcld-slider-main.php:69

Shortcodes 2

[hero-button] qc-fnc\qcld_sliderhero_shortcode.php:7

[qcld_hero] qcld-slider-main.php:77

WordPress Hooks 94

actionadmin_footer-plugins.phpclass-plugin-deactivate-feedback.php:61

filterwp_mail_content_typeclass-plugin-deactivate-feedback.php:97

actionplugin_row_metaclass-qc-free-plugin-upgrade-notice.php:100

actionadmin_menuclass-qc-free-plugin-upgrade-notice.php:142

actionelementor/initelementor\init.php:4

actionplugins_loadedelementor\main.php:27

actionelementor/frontend/after_enqueue_styleselementor\main.php:43

actionelementor/frontend/after_register_scriptselementor\main.php:46

actionelementor/widgets/widgets_registeredelementor\main.php:49

actionenqueue_block_assetsgutenberg\slider-hero-block\src\init.php:32

actionenqueue_block_editor_assetsgutenberg\slider-hero-block\src\init.php:65

actionadmin_headoption-tree\includes\class-ot-cleanup.php:37

actionadmin_menuoption-tree\includes\class-ot-cleanup.php:40

actionot_pre_consolidate_postsoption-tree\includes\class-ot-cleanup.php:43

actionadmin_noticesoption-tree\includes\class-ot-cleanup.php:78

actionadd_meta_boxesoption-tree\includes\class-ot-meta-box.php:55

actionsave_postoption-tree\includes\class-ot-meta-box.php:57

actionadmin_initoption-tree\includes\class-ot-post-formats.php:43

filterpre_pingoption-tree\includes\class-ot-post-formats.php:46

actionadmin_menuoption-tree\includes\class-ot-settings.php:74

actionadmin_initoption-tree\includes\class-ot-settings.php:77

actionadmin_initoption-tree\includes\class-ot-settings.php:80

actionadmin_initoption-tree\includes\class-ot-settings.php:83

actionadmin_initoption-tree\includes\class-ot-settings.php:86

actionadmin_noticesoption-tree\includes\ot-functions-admin.php:107

filtersafe_style_cssoption-tree\includes\ot-functions-admin.php:599

filterwp_kses_allowed_htmloption-tree\includes\ot-functions-admin.php:600

filterot_recognized_font_familiesoption-tree\includes\ot-functions-admin.php:2415

actionot_after_theme_options_saveoption-tree\includes\ot-functions-admin.php:5170

actionsplit_shared_termoption-tree\includes\ot-functions-admin.php:6087

actionadmin_initoption-tree\includes\ot-functions-compat.php:13

filterot_option_types_arrayoption-tree\includes\ot-functions-compat.php:14

filterot_recognized_font_stylesoption-tree\includes\ot-functions-compat.php:15

filterot_recognized_font_weightsoption-tree\includes\ot-functions-compat.php:16

filterot_recognized_font_variantsoption-tree\includes\ot-functions-compat.php:17

filterot_recognized_font_familiesoption-tree\includes\ot-functions-compat.php:18

filterot_recognized_background_repeatoption-tree\includes\ot-functions-compat.php:19

filterot_recognized_background_positionoption-tree\includes\ot-functions-compat.php:20

filterot_measurement_unit_typesoption-tree\includes\ot-functions-compat.php:21

filterot_theme_modeoption-tree\ot-loader.php:4

actionadmin_noticesoption-tree\ot-loader.php:13

actionafter_setup_themeoption-tree\ot-loader.php:34

actioninitoption-tree\ot-loader.php:290

actioninitoption-tree\ot-loader.php:294

actionadmin_headoption-tree\ot-loader.php:297

actioninitoption-tree\ot-loader.php:333

actioninitoption-tree\ot-loader.php:338

actioninitoption-tree\ot-loader.php:343

actionadmin_print_scripts-post-new.phpoption-tree\ot-loader.php:350

actionadmin_print_scripts-post.phpoption-tree\ot-loader.php:351

actionadmin_print_styles-post-new.phpoption-tree\ot-loader.php:354

actionadmin_print_styles-post.phpoption-tree\ot-loader.php:355

actionadmin_bar_menuoption-tree\ot-loader.php:360

actionadmin_initoption-tree\ot-loader.php:363

actionadmin_initoption-tree\ot-loader.php:366

actionadmin_initoption-tree\ot-loader.php:369

actionadmin_initoption-tree\ot-loader.php:372

actionadmin_initoption-tree\ot-loader.php:375

actionadmin_initoption-tree\ot-loader.php:378

actionadmin_initoption-tree\ot-loader.php:381

actionwp_enqueue_scriptsoption-tree\ot-loader.php:384

actionwp_enqueue_scriptsoption-tree\ot-loader.php:387

actionot_after_theme_options_saveoption-tree\ot-loader.php:390

filtermedia_view_settingsoption-tree\ot-loader.php:420

filtergettextoption-tree\ot-loader.php:426

actionadmin_footerqc-fnc\qcld_sliderhero_pop.php:18

actionadmin_menuqc-support-promo-page\class-qc-support-promo-page.php:32

actionadmin_enqueue_scriptsqc-support-promo-page\class-qc-support-promo-page.php:62

actionadmin_footerqcld-hero-gradient.php:37

filterot_show_pagesqcld-slider-framework.php:5

filterot_show_new_layoutqcld-slider-framework.php:6

actionadmin_initqcld-slider-framework.php:11

filterot_header_version_textqcld-slider-framework.php:13

actioninitqcld-slider-framework.php:23

filterot_theme_modeqcld-slider-main.php:37

actionadmin_menuqcld-slider-main.php:61

actionadmin_enqueue_scriptsqcld-slider-main.php:62

actionwp_loadedqcld-slider-main.php:63

actionwp_loadedqcld-slider-main.php:64

actionwp_loadedqcld-slider-main.php:65

filtermce_external_pluginsqcld-slider-main.php:85

filtermce_buttonsqcld-slider-main.php:86

actioninitqcld-slider-main.php:101

actionwp_enqueue_scriptsqcld-slider-main.php:104

actionwp_enqueue_scriptsqcld-slider-main.php:113

actionwp_enqueue_scriptsqcld-slider-main.php:257

actionwp_loadedqcld-slider-main.php:444

actioninitqcld-slider-main.php:756

actionadmin_enqueue_scriptsqcld-slider-main.php:1230

actioninitqcld-slider-main.php:1244

actioninitqcld-slider-main.php:1262

filtercustom_menu_orderqcld-slider-main.php:1301

actionactivated_pluginqcld-slider-main.php:1303

actionadmin_noticesqcld-slider-main.php:1325

Maintenance & Trust

Slider Hero with Video Background, Animation Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedFeb 6, 2026

PHP min version5.6

Downloads234K

Community Trust

Rating96/100

Number of ratings34

Active installs3K

Alternatives

Slider Hero with Video Background, Animation Alternatives

Responsive Slick Slider WordPress

responsive-slick-slider

B

71

Responsive Slick Slider is built on the top of slick js with support to unlimited banner images, text layers and videos(YouTube, Mp4, HTML5 and Vimeo) …

500 1 unpatched

Hub Tag Add-ons Elementor

hubtag-addons-elementor

A

85

Hub Tag Add-ons for Elementor features huge collection of premium, easy to use yet highly functional extensions that can be used in an Elementor page …

10 No CVEs

Slider, Gallery, and Carousel by MetaSlider – Image Slider, Video Slider

ml-slider

A

94

Slider, gallery, carousel plugin for WordPress. Build your image slider, video slider, post slider, YouTube slider, or WooCommerce product slider.

500K 12 CVEs

Prime Slider – Addons for Elementor

bdthemes-prime-slider-lite

A

95

Create responsive sliders using Elementor for hero sections, posts, logos, images, products, testimonials, and more.

100K 15 CVEs

Carousel, Slider, Photo Gallery with Lightbox, Video Slider, by WP Carousel

wp-carousel-free

A

96

Carousel, Slider, and Photo Gallery with Lightbox plugin. Create Image Carousel, Video Slider, Post Carousel, Post Grid, Product Carousel, and more.

70K 5 CVEs

Developer Profile

Slider Hero with Video Background, Animation Developer Profile

QuantumCloud

29 plugins · 26K total installs

76

trust score

Avg Security Score

96/100

Avg Patch Time

255 days

View full developer profile

Detection Fingerprints

How We Detect Slider Hero with Video Background, Animation

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/slider-hero/css/shortcode.css/wp-content/plugins/slider-hero/css/slider_hero.css/wp-content/plugins/slider-hero/js/helper.js/wp-content/plugins/slider-hero/js/admin.js/wp-content/plugins/slider-hero/css/font-awesome.min.css/wp-content/plugins/slider-hero/css/admin.css/wp-content/plugins/slider-hero/css/slider_hero_pop.css/wp-content/plugins/slider-hero/css/hero-gradient.css+14 more

Script Paths

/wp-content/plugins/slider-hero/js/qcld-tinymce-button.js

Version Parameters

slider_hero.css?ver=slider_hero.css?ver=helper.js?ver=admin.js?ver=font-awesome.min.css?ver=admin.css?ver=slider_hero_pop.css?ver=hero-gradient.css?ver=animate.css?ver=chosen.css?ver=slider_hero_button.css?ver=jquery-letterfx.css?ver=particles.js?ver=particle_app.js?ver=jquery.slider_x.js?ver=jquery.changethewords2.js?ver=jquery-letterfx.js?ver=tinymce/tinymce.min.js?ver=add_popup.js?ver=ajax.js?ver=

HTML / DOM Fingerprints

CSS Classes

qcld-hero-sliderqc-hero-slider-wrapper

JS Globals

qcld_sliderhero_admin_menu_pagesQCLD_TABLE_SLIDERSQCLD_TABLE_SLIDESQCLD_SLIDERHERO_PLUGIN_URLQCLD_SLIDERHERO_DEFAULT_IMAGESQCLD_SLIDERHERO_CSS+11 more

Shortcode Output

[qcld_hero

FAQ

Slider Hero with Video Background, Animation Security & Risk Analysis

Is Slider Hero with Video Background, Animation Safe to Use in 2026?

Generally Safe

Key Concerns

Slider Hero with Video Background, Animation Security Vulnerabilities

CVEs by Year

Severity Breakdown

Slider Hero with Video Background, Animation Code Analysis

Bundled Libraries

SQL Query Safety

Output Escaping

Data Flow Analysis

Slider Hero with Video Background, Animation Attack Surface

AJAX Handlers 23

Shortcodes 2

Slider Hero with Video Background, Animation Maintenance & Trust

Maintenance Signals

Community Trust

Slider Hero with Video Background, Animation Alternatives

Responsive Slick Slider WordPress

Hub Tag Add-ons Elementor

Slider, Gallery, and Carousel by MetaSlider – Image Slider, Video Slider

Prime Slider – Addons for Elementor

Carousel, Slider, Photo Gallery with Lightbox, Video Slider, by WP Carousel

Slider Hero with Video Background, Animation Developer Profile

How We Detect Slider Hero with Video Background, Animation

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Slider Hero with Video Background, Animation