Does Slivery Extender have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Slivery Extender compatible with WordPress 6.8.5?

According to WordPress.org data, Slivery Extender 1.0.3 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Slivery Extender compatible with PHP 5.6+?

Slivery Extender requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Slivery Extender updated?

Slivery Extender was last updated on Nov 28, 2025. Frequent updates are generally a positive security signal.

What is Slivery Extender's security score?

Slivery Extender has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Slivery Extender Security & Risk Analysis

wordpress.org/plugins/slivery-extender

For using this plugin you can use themes customizer quicker & more easily.

1K active installs v1.0.3 PHP 5.6+ WP + Updated Nov 28, 2025

kirkisilvery-extender

A · Safe

CVEs total1

Unpatched0

Last CVEFeb 26, 2024

Download

Safety Verdict

Is Slivery Extender Safe to Use in 2026?

Generally Safe

Score 99/100

Slivery Extender has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

1 known CVELast CVE: Feb 26, 2024Updated 5mo ago

Risk Assessment

The slivery-extender v1.0.3 plugin presents a mixed security posture. On one hand, the static analysis reveals excellent security practices within the analyzed code. There are no identified dangerous functions, all SQL queries utilize prepared statements, and output escaping appears to be correctly implemented. Furthermore, file operations and external HTTP requests are absent, minimizing common attack vectors. However, a significant concern arises from the vulnerability history, which indicates a past critical vulnerability related to Code Injection. While the plugin currently shows no unpatched CVEs, the existence of a past critical issue, especially one as severe as code injection, raises questions about the overall robustness of the security controls and the thoroughness of sanitization in previous versions or potentially in areas not covered by the static analysis. The limited attack surface, with only one shortcode and no unprotected AJAX or REST API endpoints, is a positive aspect.

Key Concerns

Known past critical vulnerability
Missing nonce checks
Missing capability checks

Vulnerabilities

1 published

Slivery Extender Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

High

1 total CVE

CVE-2024-27191high · 8.8Improper Control of Generation of Code ('Code Injection')

Slivery Extender <= 1.0.2 - Authenticated(Contributor+) Remote Code Execution via shortcode

Feb 26, 2024 Patched in 1.0.3 (732d)

Version History

Slivery Extender Release Timeline

No version history available.

Code Analysis

Analyzed Mar 16, 2026

Slivery Extender Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

Slivery Extender Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[themesection] inc\customize_option\SFT_admin_side.php:39

WordPress Hooks 1

actioninitinc\customizer.php:3

Maintenance & Trust

Slivery Extender Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedNov 28, 2025

PHP min version5.6

Downloads20K

Community Trust

Rating0/100

Number of ratings0

Active installs1K

Alternatives

Slivery Extender Alternatives

Customize Kirki Variants

customize-kirki-variants

Allow customize variants (font weights) for Kirki Typography field, Load All/Multiple font style.

50 No CVEs

Developer Profile

Slivery Extender Developer Profile

inpersttion

17 plugins · 1K total installs

trust score

Avg Security Score

93/100

Avg Patch Time

732 days

View full developer profile

Detection Fingerprints

How We Detect Slivery Extender

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

Shortcode Output

[themesection section="goldy_mex_featuredimage_slider"][themesection section="goldy_mex_featured_section"][themesection section="goldy_mex_our_portfolio_section"][themesection section="goldy_mex_about_section"]

FAQ