I suggest disabling the slider. But the chances of this being exploited in the wild is probably not big, given that the slider is a niche product.
But, it is disturbing that the Developer does not respond in a timely matter to this.
@Zed, maybe you can look into it?