WP-Safety

Slider Path for Elementor Security & Risk Analysis

wordpress.org/plugins/slider-path

Extend the ability of Elementor Website Builder

800 active installs v3.0.0 PHP 7.0+ WP 4.7.0+ Updated Jan 23, 2023
addonselementorelementor-addonelementor-addonselementor-widget
64
C · Use Caution
CVEs total1
Unpatched1
Last CVEMar 31, 2025
Plugin page Download
Safety Verdict

Is Slider Path for Elementor Safe to Use in 2026?

Use With Caution

Score 64/100

Slider Path for Elementor has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: Mar 31, 2025Updated 3yr ago
Risk Assessment

The "slider-path" v3.0.0 plugin exhibits a mixed security posture. While it demonstrates good practices in areas like SQL query sanitization and output escaping, significant concerns arise from its unprotected entry points. The static analysis reveals two AJAX handlers that lack authorization checks, directly contributing to the plugin's known vulnerability history. The taint analysis, while not showing critical or high severity flows, did identify unsanitized paths, which, when combined with the unprotected AJAX handlers, could potentially lead to unintended behavior or data leakage.

The plugin's vulnerability history, particularly the presence of an unpatched medium severity vulnerability attributed to missing authorization, is a significant red flag. This pattern suggests a recurring issue with how the plugin handles user permissions, making it a target for privilege escalation or unauthorized actions. The use of a bundled library, Select2, without information on its version or patch status, adds a potential layer of risk if it's outdated and contains known vulnerabilities.

In conclusion, while the plugin has strengths in its SQL and output handling, the lack of authorization on its AJAX endpoints and the existing unpatched vulnerability create a considerable security risk. These factors necessitate immediate attention and patching to mitigate potential exploitation.

Key Concerns

  • Unprotected AJAX handlers
  • Unpatched medium severity CVE
  • Flows with unsanitized paths
  • Missing capability checks
Vulnerabilities
1

Slider Path for Elementor Security Vulnerabilities

CVEs by Year

1 CVE in 2025 · unpatched
2025
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2025-31529medium · 4.3Missing Authorization

Slider Path for Elementor <= 3.0.0 - Missing Authorization

Mar 31, 2025Unpatched
Code Analysis
Analyzed Mar 16, 2026

Slider Path for Elementor Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
8
291 escaped
Nonce Checks
1
Capability Checks
0
File Operations
0
External Requests
2
Bundled Libraries
1

Bundled Libraries

Select2

Output Escaping

97% escaped299 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

3 flows2 with unsanitized paths
import_element (includes\classes\class-hooks.php:32)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Slider Path for Elementor Attack Surface

Entry Points2
Unprotected2

AJAX Handlers 2

authwp_ajax_populate_import_popupincludes\classes\class-hooks.php:24
authwp_ajax_import_elementincludes\classes\class-hooks.php:25
WordPress Hooks 21
actioninitincludes\classes\class-hooks.php:14
actionadmin_menuincludes\classes\class-hooks.php:15
actionadmin_initincludes\classes\class-hooks.php:16
actionelementor/elements/categories_registeredincludes\classes\class-hooks.php:17
actionpb_settings_before_sliderpath_elements_activeincludes\classes\class-hooks.php:19
actionpb_settings_before_sliderpath_elements_ext_activeincludes\classes\class-hooks.php:20
actionpb_settings_fields_areaincludes\classes\class-hooks.php:21
actionsliderpath_update_dataincludes\classes\class-hooks.php:22
actionadmin_enqueue_scriptsincludes\classes\class-hooks.php:250
actionadmin_menuincludes\classes\class-pb-settings.php:30
actionadmin_initincludes\classes\class-pb-settings.php:35
actionadmin_noticesincludes\classes\class-pb-settings.php:36
filterwhitelist_optionsincludes\classes\class-pb-settings.php:38
actionwp_enqueue_scriptsslider-path.php:73
actionadmin_enqueue_scriptsslider-path.php:83
actionelementor/editor/after_enqueue_stylesslider-path.php:84
actioninitslider-path.php:85
actionplugins_loadedslider-path.php:86
actionelementor/widgets/widgets_registeredslider-path.php:87
actionelementor/frontend/before_enqueue_stylesslider-path.php:88
actionelementor/frontend/after_register_scriptsslider-path.php:89

Scheduled Events 1

sliderpath_update_data
Maintenance & Trust

Slider Path for Elementor Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10
Last updatedJan 23, 2023
PHP min version7.0
Downloads5K

Community Trust

Rating100/100
Number of ratings1
Active installs800
Alternatives

Slider Path for Elementor Alternatives

ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor

ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor

elementskit-lite

A
89

Join millions who empower their websites with ElementsKit Elementor Addons. Get templates, & 100+ widgets like header-footer, mega menu, custom widget

2.0M 22 CVEs
Essential Addons for Elementor – Popular Elementor Templates & Widgets

Essential Addons for Elementor – Popular Elementor Templates & Widgets

essential-addons-for-elementor-lite

B
76

Elementor addon offering 110+ widgets and templates — Elementor Gallery, Slider, Form, Post Grid, Menu, Accordion, WooCommerce & more.

2.0M 56 CVEs
Ultimate Addons for Elementor

Ultimate Addons for Elementor

header-footer-elementor

A
96

Powerful Elementor addon with advanced Elementor widgets, templates, WooCommerce widgets & Header-Footer builder to build professional websites fa &hellip;

2.0M 12 CVEs
Premium Addons for Elementor – Powerful Elementor Templates & Widgets

Premium Addons for Elementor – Powerful Elementor Templates & Widgets

premium-addons-for-elementor

A
95

Elementor Carousel, Mega Menu, Posts List/Slider, Media Gallery, WooCommerce Widgets, Display Conditions, Premade Templates & more.

700K 35 CVEs
Royal Addons for Elementor – Addons and Templates Kit for Elementor

Royal Addons for Elementor – Addons and Templates Kit for Elementor

royal-elementor-addons

C
50

Elementor templates, Header footer builder, Elementor Post Grid, Woocommerce Grid builder, Slider, Forms, Gallery, Nav menu addons, Elementor widgets.

600K 1 unpatched
Developer Profile

Slider Path for Elementor Developer Profile

Rashid

6 plugins · 4K total installs

85
trust score
Avg Security Score
87/100
Avg Patch Time
8 days
View full developer profile
Detection Fingerprints

How We Detect Slider Path for Elementor

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/slider-path/assets/front/css/sliderpath_bootstrap.css/wp-content/plugins/slider-path/assets/front/css/sliderpath_owl.css/wp-content/plugins/slider-path/assets/front/css/pb-core-styles.css/wp-content/plugins/slider-path/assets/front/css/main.css/wp-content/plugins/slider-path/assets/front/js/sliderpath_owl.js/wp-content/plugins/slider-path/assets/front/js/sliderscript.js/wp-content/plugins/slider-path/assets/admin/css/style.css/wp-content/plugins/slider-path/assets/front/js/script.js+1 more
Script Paths
/wp-content/plugins/slider-path/assets/front/js/sliderpath_owl.js/wp-content/plugins/slider-path/assets/front/js/sliderscript.js/wp-content/plugins/slider-path/assets/front/js/script.js
Version Parameters
sliderpath_bootstrap?ver=sliderpath_owl?ver=pb-core-styles?ver=main?ver=sliderpath_owl?ver=sliderscript?ver=style?ver=script?ver=medical?ver=

HTML / DOM Fingerprints

CSS Classes
sliderpath-admin
FAQ

Frequently Asked Questions about Slider Path for Elementor