Does Uix Slideshow have any unpatched vulnerabilities?

No. All known vulnerabilities in Uix Slideshow have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Uix Slideshow compatible with WordPress 6.8.5?

According to WordPress.org data, Uix Slideshow 1.6.7 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Uix Slideshow compatible with PHP 5.6+?

Uix Slideshow requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Uix Slideshow updated?

Uix Slideshow was last updated on Apr 24, 2025. Frequent updates are generally a positive security signal.

What is Uix Slideshow's security score?

Uix Slideshow has a WP-Safety security score of 98/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Uix Slideshow Security & Risk Analysis

wordpress.org/plugins/uix-slideshow

This plugin is a simple way to build, organize and display slideshow into any existing WordPress theme.

10 active installs v1.6.7 PHP 5.6+ WP 4.2+ Updated Apr 24, 2025

carouselpost-typesliderslidesslideshow

A · Safe

CVEs total1

Unpatched0

Last CVENov 15, 2024

Plugin page Download

Safety Verdict

Is Uix Slideshow Safe to Use in 2026?

Generally Safe

Score 98/100

Uix Slideshow has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Nov 15, 2024Updated 11mo ago

Risk Assessment

The uix-slideshow v1.6.7 plugin demonstrates several good security practices, including a low total attack surface with no unprotected entry points and the exclusive use of prepared statements for SQL queries. The plugin also implements a reasonable number of nonce and capability checks, and a high percentage of output is properly escaped. However, a notable concern is the existence of a past high-severity vulnerability related to code injection, even though it is currently patched. This historical pattern suggests a potential for complex vulnerabilities within the plugin's code, which, despite current mitigation, warrants cautious monitoring. The presence of file operations, while not explicitly flagged as problematic in the static analysis, could be a point of interest in conjunction with past code injection issues, as file manipulation can sometimes be leveraged in such attacks.

Key Concerns

Past high severity vulnerability (Code Injection)
Some outputs not properly escaped
Bundled library (TinyMCE) potentially outdated

Vulnerabilities

Uix Slideshow Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

High

1 total CVE

CVE-2024-9839high · 7.3Improper Control of Generation of Code ('Code Injection')

Uix Slideshow <= 1.6.5 - Unauthenticated Arbitrary Shortcode Execution

Nov 15, 2024 Patched in 1.6.6 (60d)

Code Analysis

Analyzed Mar 16, 2026

Uix Slideshow Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

380 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

TinyMCE

Output Escaping

81% escaped471 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

<custom-css> (helper\tabs\custom-css.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Uix Slideshow Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[uix_slideshow_output] includes\shortcodes.php:44

WordPress Hooks 37

actionadmin_enqueue_scriptshelper\settings.php:22

actiondo_meta_boxesincludes\admin\post-type-init.php:13

actionfeatured_image_column_initincludes\admin\post-type-init.php:23

filterfeatured_image_column_post_typesincludes\admin\post-type-init.php:25

actioninitincludes\admin\post-type-init.php:49

filtermanage_edit-uix-slideshow_columnsincludes\admin\post-type-init.php:99

actionmanage_uix-slideshow_posts_custom_columnincludes\admin\post-type-init.php:126

actioncurrent_screenincludes\admin\post-type-init.php:180

filterpost_row_actionsincludes\admin\post-type-init.php:187

actionadmin_headincludes\admin\post-type-init.php:212

actionadmin_menuincludes\admin\post-type-init.php:236

filterpre_post_titleincludes\admin\post-type-init.php:253

actionadd_meta_boxesincludes\admin\uix-custom-metaboxes\init.php:85

actionsave_postincludes\admin\uix-custom-metaboxes\init.php:89

actionadmin_enqueue_scriptsincludes\admin\uix-custom-metaboxes\init.php:93

actionadmin_initincludes\admin\uix-custom-metaboxes\init.php:133

filteradmin_body_classincludes\admin\uix-custom-metaboxes\init.php:136

actionwp_headincludes\shortcodes.php:18

actionadmin_initincludes\shortcodes.php:21

filterwidget_textincludes\shortcodes.php:24

filterthe_excerptincludes\shortcodes.php:25

filtermce_buttonsincludes\shortcodes.php:29

filtermce_external_pluginsincludes\shortcodes.php:30

filtermce_external_languagesincludes\shortcodes.php:33

actionadmin_inituix-slideshow.php:37

actionadmin_enqueue_scriptsuix-slideshow.php:45

actionwp_enqueue_scriptsuix-slideshow.php:46

actionwp_enqueue_scriptsuix-slideshow.php:47

actioncurrent_screenuix-slideshow.php:48

actionadmin_inituix-slideshow.php:49

actionadmin_inituix-slideshow.php:50

actionadmin_inituix-slideshow.php:51

actionadmin_menuuix-slideshow.php:52

actionafter_setup_themeuix-slideshow.php:53

actionadmin_noticesuix-slideshow.php:444

actionadmin_noticesuix-slideshow.php:445

actionplugins_loadeduix-slideshow.php:1094

Maintenance & Trust

Uix Slideshow Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedApr 24, 2025

PHP min version5.6

Downloads10K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Uix Slideshow Alternatives

Smart Slider 3

smart-slider-3

Responsive slider plugin to create sliders in visual editor easily. Build beautiful image slider, layer slider, video slider, post slider, and more.

800K 7 CVEs

Depicter — Popup & Slider Builder

depicter

Build Stunning Slider and Popup. Exit intent Popup, Image slider carousel, video slider carousel, post slider carousel, product slider, promote popup

90K 14 CVEs

Carousel, Slider, Photo Gallery with Lightbox, Video Slider, by WP Carousel

wp-carousel-free

Carousel, Slider, and Photo Gallery with Lightbox plugin. Create Image Carousel, Video Slider, Post Carousel, Post Grid, Product Carousel, and more.

70K 5 CVEs

Slider by Soliloquy – Responsive Image Slider for WordPress

soliloquy-lite

The best WordPress slider plugin. Drag & Drop responsive slider builder that helps you create a beautiful image slideshows with just a few clicks.

30K 2 CVEs

Image Slider

image-slider-widget

Image Slider - The best and very easy slider plugin for your post, page or sidebar. 100% Responsive.

4K 5 CVEs

Developer Profile

Uix Slideshow Developer Profile

UIUX Lab

6 plugins · 540 total installs

trust score

Avg Security Score

97/100

Avg Patch Time

32 days

View full developer profile

Detection Fingerprints

How We Detect Uix Slideshow

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/uix-slideshow/includes/admin/css/style.min.css/wp-content/plugins/uix-slideshow/includes/admin/js/core.min.js/wp-content/plugins/uix-slideshow/js/uix-slideshow.min.js/wp-content/plugins/uix-slideshow/css/uix-slideshow.min.css

Script Paths

js/uix-slideshow.min.jsincludes/admin/js/core.min.js

Version Parameters

uix-slideshow/css/uix-slideshow.min.css?ver=uix-slideshow/js/uix-slideshow.min.js?ver=uix-slideshow-admin/includes/admin/css/style.min.css?ver=uix-slideshow-admin/includes/admin/js/core.min.js?ver=

HTML / DOM Fingerprints

CSS Classes

uix-slideshowcustom-slideshow-flex-dircustom-slideshow-flex-dir-prevcustom-slideshow-flex-dir-next

Data Attributes

data-animationdata-autodata-durationdata-speeddata-paging_navdata-arr_nav+4 more

JS Globals

uix_slideshow_vars

FAQ