WP-Safety

Dadevarzan WordPress Gallery Security & Risk Analysis

wordpress.org/plugins/dadevarzan-wp-gallery

Dadevarzan Gallery Post Type

100 active installs v1.2.3 PHP 7.2+ WP 4.4.0+ Updated May 31, 2022
dadehvarzandadevarzangallerywordpresswp
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Dadevarzan WordPress Gallery Safe to Use in 2026?

Generally Safe

Score 85/100

Dadevarzan WordPress Gallery has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 3yr ago
Risk Assessment

The static analysis of dadevarzan-wp-gallery v1.2.3 indicates a strong security posture in several key areas. The absence of any identified dangerous functions, raw SQL queries, unescaped output, file operations, or external HTTP requests is highly commendable. Furthermore, the plugin demonstrates good practices by not utilizing potentially vulnerable bundled libraries and by having zero identified flows with unsanitized paths during taint analysis. The lack of any recorded CVEs, both historically and currently, also suggests a mature and secure development process.

However, a significant concern arises from the complete absence of security checks like nonce checks and capability checks, coupled with zero AJAX handlers, REST API routes, shortcodes, or cron events that would typically require such protections. While this might imply a very limited attack surface, it also means that any *potential* entry points, however few, are entirely unprotected from unauthorized access. This lack of any authentication or authorization mechanisms on the (albeit small) attack surface is a notable weakness that could be exploited if new entry points were to be introduced without proper security considerations in future updates. Therefore, while the current implementation appears robust and free of known vulnerabilities, the complete absence of protective checks presents a potential risk for future development.

In conclusion, dadevarzan-wp-gallery v1.2.3 exhibits excellent secure coding practices regarding data handling and external interactions. The vulnerability history is clean, indicating reliability. The primary weakness lies in the complete lack of any authorization or nonce checks on its extremely limited attack surface. This suggests a potential for future vulnerabilities if the plugin evolves without incorporating these fundamental security measures. For its current state, the plugin is secure, but future development needs careful oversight regarding its security architecture.

Key Concerns

  • No nonce checks implemented
  • No capability checks implemented
Vulnerabilities
None known

Dadevarzan WordPress Gallery Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Dadevarzan WordPress Gallery Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0
Attack Surface

Dadevarzan WordPress Gallery Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 6
actionplugins_loadeddadevarzan-wp-gallery.php:26
actioninitdadevarzan-wp-gallery.php:27
actioninitdadevarzan-wp-gallery.php:28
actioninitdadevarzan-wp-gallery.php:29
actioninitdadevarzan-wp-gallery.php:30
actionplugins_loadeddadevarzan-wp-gallery.php:31
Maintenance & Trust

Dadevarzan WordPress Gallery Maintenance & Trust

Maintenance Signals

WordPress version tested6.0.0
Last updatedMay 31, 2022
PHP min version7.2
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs100
Alternatives

Dadevarzan WordPress Gallery Alternatives

Dadevarzan WordPress Common

Dadevarzan WordPress Common

dadevarzan-common

A
99

Dadevarzan Common Plugin

700 1 CVE
Dadevarzan Common for Woocommerce

Dadevarzan Common for Woocommerce

dadevarzan-woo-common

A
85

Dadevarzan custom shortcodes and common functionalites for Woocommerce.

200 No CVEs
Dadevarzan WordPress Tender

Dadevarzan WordPress Tender

dadevarzan-wp-tender

A
85

Dadevarzan Tender Post Type

90 No CVEs
Dadevarzan WordPress Video

Dadevarzan WordPress Video

dadevarzan-wp-video

A
85

Dadevarzan Video Post Type

90 No CVEs
Dadevarzan WordPress Personnel

Dadevarzan WordPress Personnel

dadevarzan-wp-personnel

A
85

Dadevarzan Personnel Post Type

60 No CVEs
Developer Profile

Dadevarzan WordPress Gallery Developer Profile

Dadevarzan

19 plugins · 2K total installs

91
trust score
Avg Security Score
87/100
Avg Patch Time
7 days
View full developer profile
Detection Fingerprints

How We Detect Dadevarzan WordPress Gallery

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/dadevarzan-wp-gallery/admin/js/ace.js/wp-content/plugins/dadevarzan-wp-gallery/admin/js/editor.js/wp-content/plugins/dadevarzan-wp-gallery/admin/js/main.js/wp-content/plugins/dadevarzan-wp-gallery/admin/css/style.css/wp-content/plugins/dadevarzan-wp-gallery/frontend/css/style.css/wp-content/plugins/dadevarzan-wp-gallery/frontend/js/gallery-frontend.js
Script Paths
/wp-content/plugins/dadevarzan-wp-gallery/admin/js/ace.js/wp-content/plugins/dadevarzan-wp-gallery/admin/js/editor.js/wp-content/plugins/dadevarzan-wp-gallery/admin/js/main.js/wp-content/plugins/dadevarzan-wp-gallery/frontend/js/gallery-frontend.js
Version Parameters
dadevarzan-wp-gallery/admin/js/ace.js?ver=dadevarzan-wp-gallery/admin/js/editor.js?ver=dadevarzan-wp-gallery/admin/js/main.js?ver=dadevarzan-wp-gallery/admin/css/style.css?ver=dadevarzan-wp-gallery/frontend/css/style.css?ver=dadevarzan-wp-gallery/frontend/js/gallery-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
dadevarzan-gallery
Data Attributes
data-acf-field-key="field_5981b8a844bac"
JS Globals
dadevarzan_wp_gallery
REST Endpoints
/wp-json/wp/v2/gallery
FAQ

Frequently Asked Questions about Dadevarzan WordPress Gallery