WP-Safety

YITH Slider for page builders Security & Risk Analysis

wordpress.org/plugins/yith-slider-for-page-builders

"YITH Slider for page builders" will add cool block oriented sliders to your website. Works with Gutenberg Block Editor.

2K active installs v1.0.11 PHP 7.4+ WP 5.9+ Updated Mar 22, 2024
blockelementorgutenbergproteosliders
63
C · Use Caution
CVEs total1
Unpatched1
Last CVEDec 24, 2025
Plugin page Download
Safety Verdict

Is YITH Slider for page builders Safe to Use in 2026?

Use With Caution

Score 63/100

YITH Slider for page builders has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: Dec 24, 2025Updated 2yr ago
Risk Assessment

The yith-slider-for-page-builders plugin v1.0.11 exhibits a generally good security posture with robust output escaping and a limited attack surface. The plugin demonstrates strong adherence to best practices with a high percentage of properly escaped outputs and a significant number of nonce and capability checks. This suggests a proactive approach to securing user-generated content and preventing common web vulnerabilities.

However, the static analysis reveals two flows with unsanitized paths, which is a concern. While no critical or high-severity taint flows were identified, unsanitized paths can potentially lead to vulnerabilities if not handled correctly within the plugin's logic. Furthermore, the vulnerability history indicates one known medium-severity CVE that is currently unpatched, specifically related to Missing Authorization. This suggests a recurring weakness in authorization checks that requires immediate attention.

In conclusion, while the plugin has strengths in output sanitization and a controlled attack surface, the presence of unsanitized paths and an unpatched medium-severity CVE highlight areas for improvement. Addressing the unpatched vulnerability and investigating the unsanitized paths are crucial steps to enhance the plugin's overall security and mitigate potential risks.

Key Concerns

  • Unpatched medium severity CVE
  • Flows with unsanitized paths
Vulnerabilities
1

YITH Slider for page builders Security Vulnerabilities

CVEs by Year

1 CVE in 2025 · unpatched
2025
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2025-68581medium · 4.3Missing Authorization

YITH Slider for page builders <= 1.0.11 - Missing Authorization

Dec 24, 2025Unpatched
Code Analysis
Analyzed Mar 16, 2026

YITH Slider for page builders Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
1 prepared
Unescaped Output
10
128 escaped
Nonce Checks
4
Capability Checks
3
File Operations
0
External Requests
0
Bundled Libraries
0

SQL Query Safety

50% prepared2 total queries

Output Escaping

93% escaped138 total outputs
Data Flows
2 unsanitized

Data Flow Analysis

3 flows2 with unsanitized paths
yith_slider_for_page_builders_include_admin_css (include\sliders.php:11)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

YITH Slider for page builders Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[yith-slider] templates\shortcodes\yith-slider.php:191
WordPress Hooks 20
actioninitinclude\block\slider-block.php:133
actionadd_meta_boxesinclude\class-yith-sliders-metabox.php:39
actionsave_postinclude\class-yith-sliders-metabox.php:40
actionsave_postinclude\class-yith-sliders-metabox.php:41
actionadmin_enqueue_scriptsinclude\sliders.php:42
actionenqueue_block_editor_assetsinclude\sliders.php:45
actionafter_setup_themeinclude\sliders.php:108
filtergutenberg_can_edit_post_typeinclude\sliders.php:131
filteruse_block_editor_for_postinclude\sliders.php:134
actioninitinclude\sliders.php:279
actioninitinclude\sliders.php:339
actionadd_meta_boxesinclude\sliders.php:365
actionsave_postinclude\sliders.php:546
filtermanage_yith_slider_posts_columnsinclude\sliders.php:563
filtermanage_yith_slider_posts_columnsinclude\sliders.php:589
actionmanage_yith_slider_posts_custom_columninclude\sliders.php:609
actiontrashed_postinclude\sliders.php:612
actionadmin_initinclude\sliders.php:634
actionadmin_action_yith_slider_duplicate_slideinclude\sliders.php:714
actionwp_enqueue_scriptsyith-slider-for-page-builders.php:58
Maintenance & Trust

YITH Slider for page builders Maintenance & Trust

Maintenance Signals

WordPress version tested6.4.8
Last updatedMar 22, 2024
PHP min version7.4
Downloads61K

Community Trust

Rating100/100
Number of ratings3
Active installs2K
Alternatives

YITH Slider for page builders Alternatives

Starter Templates – AI-Powered Templates for Elementor & Gutenberg

Starter Templates – AI-Powered Templates for Elementor & Gutenberg

astra-sites

A
89

The growing library of 300+ ready-to-use templates that work with all WordPress themes including Astra, Hello, OceanWP, GeneratePress and more

2.0M 7 CVEs
Content Views – Post Grid & Filter, Recent Posts, Category Posts … (Shortcode, Gutenberg Blocks, and Widgets for Elementor)

Content Views – Post Grid & Filter, Recent Posts, Category Posts … (Shortcode, Gutenberg Blocks, and Widgets for Elementor)

content-views-query-and-display-post-page

A
96

Easy to show posts, pages, custom posts in customizable grid, list, slider, accordion... Available as Widgets (for Elementor), Shortcode, and Blocks.

100K 4 CVEs
ShopLentor – All-in-One WooCommerce Growth & Store Enhancement Plugin

ShopLentor – All-in-One WooCommerce Growth & Store Enhancement Plugin

woolentor-addons

B
77

ShopLentor – More than a WooCommerce builder. A complete growth plugin to boost conversions, UX, and sales for your store.

90K 24 CVEs
UiCore Animate – Free Animations, Transitions, and Interactions Addon for Elementor & Gutenberg blocks

UiCore Animate – Free Animations, Transitions, and Interactions Addon for Elementor & Gutenberg blocks

uicore-animate

A
100

UiCore Animate adds page transitions, smooth scroll, and engaging animations to Elementor and Gutenberg blocks, for smoother, engaging experiences.

40K No CVEs
WDesignKit – Elementor & Gutenberg Starter Templates, Patterns, Cloud Workspace & Widget Builder

WDesignKit – Elementor & Gutenberg Starter Templates, Patterns, Cloud Workspace & Widget Builder

wdesignkit

A
96

3000+ Elementor Templates, Gutenberg Templates, Widgets Builder for Elementor, Gutenberg & Bricks, Cloud Workspace & Figma Files, 160+ Widgets Library

30K 3 CVEs
Developer Profile

YITH Slider for page builders Developer Profile

YITHEMES

33 plugins · 1.1M total installs

77
trust score
Avg Security Score
97/100
Avg Patch Time
411 days
View full developer profile
Detection Fingerprints

How We Detect YITH Slider for page builders

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/yith-slider-for-page-builders/assets/third-party/slick.min.js/wp-content/plugins/yith-slider-for-page-builders/assets/third-party/slick.css/wp-content/plugins/yith-slider-for-page-builders/assets/slider-style.css/wp-content/plugins/yith-slider-for-page-builders/assets/slider-admin-css.css/wp-content/plugins/yith-slider-for-page-builders/assets/slider-admin-js.js/wp-content/plugins/yith-slider-for-page-builders/assets/slider-gutenberg-js.js
Version Parameters
yith-slider-for-page-builders/assets/slider-style.css?ver=yith-slider-for-page-builders/assets/slider-admin-css.css?ver=yith-slider-for-page-builders/assets/slider-admin-js.js?ver=yith-slider-for-page-builders/assets/slider-gutenberg-js.js?ver=

HTML / DOM Fingerprints

CSS Classes
yith-slider-for-page-builders-block
Data Attributes
data-slider-heightdata-slider-bg-colordata-slider-bg-image
JS Globals
yith_slider_for_page_builders_localized_array
Shortcode Output
[yith_slider]
FAQ

Frequently Asked Questions about YITH Slider for page builders