WP-Safety

Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider Security & Risk Analysis

wordpress.org/plugins/woo-product-slider

Display your WooCommerce products in a responsive Product Slider, Product Carousel, or Product Grid Gallery with easy customization.

20K active installs v2.8.12 PHP 7.0+ WP 5.0+ Updated Apr 15, 2026
product-carouselproduct-galleryproduct-gridproduct-tablewoocommerce-product-slider
99
A · Safe
CVEs total2
Unpatched0
Last CVEDec 28, 2022
Plugin page Download
Safety Verdict

Is Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider Safe to Use in 2026?

Generally Safe

Score 99/100

Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider has a strong security track record. Known vulnerabilities have been patched promptly. It's a solid choice for most WordPress installations.

2 known CVEsLast CVE: Dec 28, 2022Updated 1mo ago
Risk Assessment

The "woo-product-slider" plugin v2.8.10 presents a mixed security posture. While it demonstrates good practices such as 100% prepared SQL statements, a high percentage of properly escaped output, and a robust number of nonce and capability checks, there are notable concerns. The presence of 3 unprotected AJAX handlers significantly expands the attack surface, creating potential entry points for unauthorized actions. Furthermore, the use of the `unserialize` function, even if not immediately evident in taint analysis for this version, is inherently risky and can lead to deserialization vulnerabilities if untrusted data is processed. The plugin's vulnerability history, with 2 known medium severity CVEs including Cross-Site Scripting and Missing Authorization, indicates past weaknesses that require vigilant monitoring. Although currently unpatched CVEs are zero, the pattern of past vulnerabilities, particularly in authorization and input handling, suggests a need for continued scrutiny and prompt updates.

Key Concerns

  • Unprotected AJAX handlers present
  • Use of dangerous function 'unserialize'
  • Past medium severity CVEs (2)
Vulnerabilities
2 published

Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider Security Vulnerabilities

CVEs by Year

2 CVEs in 2022
2022
Patched Has unpatched

Severity Breakdown

Medium
2

2 total CVEs

CVE-2022-4629medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Product Slider for WooCommerce <= 2.6.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

Dec 28, 2022 Patched in 2.6.4 (667d)
CVE-2022-2382medium · 5.4Missing Authorization

Product Slider for WooCommerce <= 2.5.6 - Missing Authorization

Jul 26, 2022 Patched in 2.5.7 (546d)
Version History

Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider Release Timeline

v2.8.12Current
v2.8.11
v2.8.10
v2.8.9
v2.8.8
v2.8.7
v2.8.6
v2.8.5
v2.8.4
v2.8.3
v2.8.2
v2.8.1
v2.8.0
v2.7.3
v2.7.2
v2.7.1
v2.7.0
v2.6.9
v2.6.8
v2.6.7
Code Analysis
Analyzed Mar 16, 2026

Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider Code Analysis

Dangerous Functions
1
Raw SQL Queries
0
2 prepared
Unescaped Output
95
655 escaped
Nonce Checks
16
Capability Checks
18
File Operations
0
External Requests
1
Bundled Libraries
0

Dangerous Functions Found

unserialize$plugins = unserialize( $response['body'] );src\Admin\HelpPage\Help_Page.php:172

SQL Query Safety

100% prepared2 total queries

Output Escaping

87% escaped750 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

5 flows
dismiss_offer_banner (src\Admin\Notices\ShapedPlugin_Offer_Banner.php:153)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
3 unprotected

Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider Attack Surface

Entry Points13
Unprotected3

AJAX Handlers 12

authwp_ajax_wp_ajax_install_pluginsrc\Admin\Admin.php:41
authwp_ajax_sp-wps-never-show-review-noticesrc\Admin\Notices\Dashboard_Notice.php:37
authwp_ajax_shapedplugin_dismiss_offer_bannersrc\Admin\Notices\ShapedPlugin_Offer_Banner.php:35
authwp_ajax_spwps_preview_meta_boxsrc\Admin\views\models\classes\metabox.class.php:118
authwp_ajax_spwps-get-iconssrc\Admin\views\models\functions\actions.php:58
authwp_ajax_spwps-resetsrc\Admin\views\models\functions\actions.php:84
authwp_ajax_spwps-chosensrc\Admin\views\models\functions\actions.php:123
authwp_ajax_dismiss_smart_swatches_noticesrc\Includes\WooProductSlider.php:113
authwp_ajax_dismiss_wqv_noticesrc\Includes\WooProductSlider.php:114
authwp_ajax_dismiss_woo_gallery_slider_noticesrc\Includes\WooProductSlider.php:115
authwp_ajax_wpsp_export_shortcodessrc\Includes\WooProductSlider.php:120
authwp_ajax_wpsp_import_shortcodessrc\Includes\WooProductSlider.php:121

Shortcodes 1

[woo_product_slider] src\Frontend\Frontend.php:30
WordPress Hooks 46
actionbefore_woocommerce_initmain.php:73
actionadmin_enqueue_scriptssrc\Admin\Admin.php:37
filterinitsrc\Admin\Admin.php:38
actionplugins_loadedsrc\Admin\DBUpdates.php:46
actionelementor/preview/enqueue_scriptssrc\Admin\Elementor_Addons.php:64
actionelementor/preview/enqueue_stylessrc\Admin\Elementor_Addons.php:65
actionelementor/editor/before_enqueue_scriptssrc\Admin\Elementor_Addons.php:66
actionelementor/initsrc\Admin\Elementor_Addons.php:120
actionelementor/widgets/registersrc\Admin\Elementor_Addons.php:137
actioninitsrc\Admin\GutenbergBlock\Gutenberg_Init.php:37
actionenqueue_block_editor_assetssrc\Admin\GutenbergBlock\Gutenberg_Init.php:38
actionadmin_menusrc\Admin\HelpPage\Help_Page.php:65
actionadmin_print_scriptssrc\Admin\HelpPage\Help_Page.php:71
actionspwps_enqueuesrc\Admin\HelpPage\Help_Page.php:72
actionadmin_noticessrc\Admin\Notices\Dashboard_Notice.php:36
filteradmin_footer_textsrc\Admin\Notices\Dashboard_Notice.php:38
filterupdate_footersrc\Admin\Notices\Dashboard_Notice.php:39
actionadmin_noticessrc\Admin\Notices\ShapedPlugin_Offer_Banner.php:34
actionwp_enqueue_scriptssrc\Admin\views\models\classes\abstract.class.php:47
actionadd_meta_boxessrc\Admin\views\models\classes\metabox.class.php:114
actionsave_postsrc\Admin\views\models\classes\metabox.class.php:115
actionedit_attachmentsrc\Admin\views\models\classes\metabox.class.php:116
actionadmin_menusrc\Admin\views\models\classes\options.class.php:177
actionadmin_bar_menusrc\Admin\views\models\classes\options.class.php:178
actionnetwork_admin_menusrc\Admin\views\models\classes\options.class.php:182
actionafter_setup_themesrc\Admin\views\models\classes\SPF_WPSP.php:151
actioninitsrc\Admin\views\models\classes\SPF_WPSP.php:152
actionswitch_themesrc\Admin\views\models\classes\SPF_WPSP.php:153
actionadmin_enqueue_scriptssrc\Admin\views\models\classes\SPF_WPSP.php:154
actionwp_headsrc\Admin\views\models\classes\SPF_WPSP.php:155
filteradmin_body_classsrc\Admin\views\models\classes\SPF_WPSP.php:156
actionwp_loadedsrc\Frontend\Frontend.php:27
actionwp_enqueue_scriptssrc\Frontend\Frontend.php:28
actionadmin_enqueue_scriptssrc\Frontend\Frontend.php:29
actionsave_postsrc\Frontend\Frontend.php:31
filterplugin_action_linkssrc\Includes\WooProductSlider.php:91
filtermanage_sp_wps_shortcodes_posts_columnssrc\Includes\WooProductSlider.php:92
filterplugin_row_metasrc\Includes\WooProductSlider.php:93
filterpost_updated_messagessrc\Includes\WooProductSlider.php:94
actionmanage_sp_wps_shortcodes_posts_custom_columnsrc\Includes\WooProductSlider.php:103
actionactivated_pluginsrc\Includes\WooProductSlider.php:104
actionadmin_noticessrc\Includes\WooProductSlider.php:106
actionadmin_action_sp_wps_duplicate_shortcodesrc\Includes\WooProductSlider.php:108
filterpost_row_actionssrc\Includes\WooProductSlider.php:109
actionadmin_noticessrc\Includes\WooProductSlider.php:110
actionadmin_noticessrc\Includes\WooProductSlider.php:112
Maintenance & Trust

Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider Maintenance & Trust

Maintenance Signals

WordPress version tested7.0
Last updatedApr 15, 2026
PHP min version7.0
Downloads921K

Community Trust

Rating94/100
Number of ratings277
Active installs20K
Alternatives

Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider Alternatives

Product List, Product Showcase, and Product Flip Layout for WooCommerce – Product Display

Product List, Product Showcase, and Product Flip Layout for WooCommerce – Product Display

product-display

A
100

Create beautiful WooCommerce product grids, sliders, tables, carousels, and galleries with AJAX filtering, Elementor support, and responsive layouts.

10 No CVEs
Product Views for WooCommerce – Product Slider, Grid, Ticker, List & Masonry

Product Views for WooCommerce – Product Slider, Grid, Ticker, List & Masonry

gs-woocommerce-products-slider

A
92

Transform Product Displays for Better Sales! Enhance your WooCommerce store with a stunning product slider!

300 1 CVE
Product Layouts for WooCommerce

Product Layouts for WooCommerce

product-layouts

A
100

Create impressive, lightweight, responsive WooCommerce product layouts. Compatible with popular themes & page builders.

1K No CVEs
Product Carousel Slider & Grid Ultimate for WooCommerce

Product Carousel Slider & Grid Ultimate for WooCommerce

woo-product-carousel-slider-and-grid-ultimate

A
86

The most intuitive solution to make your eCommerce site visually appealing. Create & customize WooCommerce product carousel, sliders, or grids easily

7K 6 CVEs
WPB Product Slider for WooCommerce – Showcase Products & Boost Sales

WPB Product Slider for WooCommerce – Showcase Products & Boost Sales

wpb-woocommerce-product-slider

A
100

Display WooCommerce products in a responsive slider or carousel with customizable layouts to boost engagement and improve product browsing.

4K No CVEs
Developer Profile

Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider Developer Profile

ShapedPlugin LLC

18 plugins · 315K total installs

78
trust score
Avg Security Score
98/100
Avg Patch Time
361 days
View full developer profile
Detection Fingerprints

How We Detect Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/woo-product-slider/Admin/assets/css/admin.min.css/wp-content/plugins/woo-product-slider/Admin/assets/js/admin.min.js
Script Paths
/wp-content/plugins/woo-product-slider/Admin/assets/js/admin.min.js
Version Parameters
woo-product-slider/style.css?ver=woo-product-slider/script.js?ver=woo-product-slider/woo-product-slider.css?ver=

HTML / DOM Fingerprints

CSS Classes
sp-wps-admin-wrapsp-wps-tabssp-wps-tabsp-wps-tab-contentsp-wps-settingssp-wps-slider-previewsp-wps-frontend-slidersp-wps-product-item+23 more
HTML Comments
The admin-specific functionality of the plugin.The admin class handle all the backend stuffs.Class constructEnqueue all styles for the meta boxes+2 more
Data Attributes
data-plugin-name="Product Slider for WooCommerce"data-plugin-version="2.8.10"
JS Globals
SP_WPS_VERSIONSP_WPS_URL
Shortcode Output
[woo_product_slider id="
FAQ

Frequently Asked Questions about Product Slider, Product Carousel and Product Grid Gallery for WooCommerce – WooProduct Slider