Does Gallery Made Easy have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Gallery Made Easy compatible with WordPress 4.5.33?

According to WordPress.org data, Gallery Made Easy 1.3 has been tested up to WordPress 4.5.33. Check the plugin's changelog for the latest compatibility information.

How often is Gallery Made Easy updated?

Gallery Made Easy was last updated on Jul 25, 2016. Frequent updates are generally a positive security signal.

What is Gallery Made Easy's security score?

Gallery Made Easy has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Gallery Made Easy Security & Risk Analysis

wordpress.org/plugins/gallery-made-easy

Instantly create responsive image galleries within a simple and customizable interface. Just upload, add, organise and publish.

10 active installs v1.3 PHP + WP 3.0.1+ Updated Jul 25, 2016

toolw3bw3bkitwordpress-org

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Gallery Made Easy Safe to Use in 2026?

Generally Safe

Score 85/100

Gallery Made Easy has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago

Risk Assessment

The plugin 'gallery-made-easy' version 1.3 exhibits a mixed security posture. On the positive side, it shows no known vulnerabilities in its history and appears to have a very limited attack surface with no AJAX handlers, REST API routes, shortcodes, or cron events that are exposed. The plugin also exclusively uses prepared statements for its SQL queries, which is a strong security practice. However, several significant concerns are raised by the static analysis. The presence of two 'unserialize' calls is a major red flag, as unserialization of untrusted data can lead to remote code execution vulnerabilities. Furthermore, the fact that 100% of output is not properly escaped is a critical issue that could lead to cross-site scripting (XSS) vulnerabilities. The absence of nonce checks on any entry points, while the attack surface is currently zero, leaves it highly vulnerable should any new entry points be introduced without proper authorization checks. The lack of vulnerability history could indicate a well-maintained plugin, or it could mean it hasn't been thoroughly analyzed or publicly exploited yet.

Key Concerns

Presence of unserialize calls
100% of output unescaped
No nonce checks on entry points

Vulnerabilities

None known

Gallery Made Easy Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Gallery Made Easy Release Timeline

No version history available.

Code Analysis

Analyzed Mar 17, 2026

Gallery Made Easy Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$w3b_gallery = unserialize( $w3b_gallery );template\template.php:6

unserialize$gallery = unserialize( $gallery );views\metabox.php:23

Output Escaping

0% escaped14 total outputs

Attack Surface

Gallery Made Easy Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 13

actionadmin_initgallery-made-easy.php:57

actionadmin_initgallery-made-easy.php:60

actionadmin_menugallery-made-easy.php:63

actionadmin_enqueue_scriptsgallery-made-easy.php:64

actionadmin_headgallery-made-easy.php:65

actionwp_enqueue_scriptsgallery-made-easy.php:66

actionsave_postgallery-made-easy.php:76

actioninitgallery-made-easy.php:88

actionadmin_noticesgallery-made-easy.php:93

filtermce_external_pluginsgallery-made-easy.php:148

filtermce_buttonsgallery-made-easy.php:149

actionedit_form_after_titlegallery-made-easy.php:229

actionadmin_noticesgallery-made-easy.php:274

Maintenance & Trust

Gallery Made Easy Maintenance & Trust

Maintenance Signals

WordPress version tested4.5.33

Last updatedJul 25, 2016

PHP min version

Downloads2K

Community Trust

Rating100/100

Number of ratings1

Active installs10

Alternatives

Gallery Made Easy Alternatives

Simple Taxonomy WYSIWYG

simple-taxonomy-wysiwyg

A very simple plugin that will convert the taxonomy/category description textarea to a WYSIWYG (TinyMCE) form.

30 No CVEs

Simple Contacts Manager

simple-contacts-manager

A simple contact manager for your personal and business use.

20 No CVEs

Simple Posts Generator

simple-posts-generator

A straight forward Posts Generator for Developers and Testers.

10 No CVEs

Hostinger Tools

hostinger

Simplified WordPress management. Manage site info, maintenance, security, & redirects.

3.0M 1 CVE

Kirki Customizer Framework

kirki

100

The Ultimate Customizer Framework for WordPress Theme Developers

500K No CVEs

Developer Profile

Gallery Made Easy Developer Profile

Earl Evan Amante

4 plugins · 70 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Gallery Made Easy

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/gallery-made-easy/css/jquery-ui.min.css/wp-content/plugins/gallery-made-easy/css/jquery-ui.structure.min.css/wp-content/plugins/gallery-made-easy/css/jquery-ui.theme.min.css/wp-content/plugins/gallery-made-easy/css/style.css/wp-content/plugins/gallery-made-easy/js/imagesloaded.pkgd.min.js/wp-content/plugins/gallery-made-easy/js/isotope.pkgd.min.js/wp-content/plugins/gallery-made-easy/js/main.js/wp-content/plugins/gallery-made-easy/js/light-gallery/css/lightgallery.min.css+8 more

Script Paths

/wp-content/plugins/gallery-made-easy/js/imagesloaded.pkgd.min.js/wp-content/plugins/gallery-made-easy/js/isotope.pkgd.min.js/wp-content/plugins/gallery-made-easy/js/main.js/wp-content/plugins/gallery-made-easy/js/light-gallery/js/lightgallery.min.js/wp-content/plugins/gallery-made-easy/js/light-gallery/js/lg-thumbnail.min.js/wp-content/plugins/gallery-made-easy/js/light-gallery/js/lg-fullscreen.min.js+3 more

Version Parameters

gallery-made-easy/css/jquery-ui.min.css?ver=gallery-made-easy/css/jquery-ui.structure.min.css?ver=gallery-made-easy/css/jquery-ui.theme.min.css?ver=gallery-made-easy/css/style.css?ver=gallery-made-easy/js/imagesloaded.pkgd.min.js?ver=gallery-made-easy/js/isotope.pkgd.min.js?ver=gallery-made-easy/js/main.js?ver=gallery-made-easy/js/light-gallery/css/lightgallery.min.css?ver=gallery-made-easy/template/style.css?ver=gallery-made-easy/js/jquery.mousewheel.min.js?ver=gallery-made-easy/js/light-gallery/js/lightgallery.min.js?ver=gallery-made-easy/js/light-gallery/js/lg-thumbnail.min.js?ver=gallery-made-easy/js/light-gallery/js/lg-fullscreen.min.js?ver=gallery-made-easy/template/masonry.js?ver=gallery-made-easy/template/main.js?ver=gallery-made-easy/js/mce_button.js?ver=

HTML / DOM Fingerprints

CSS Classes

w3b-gallery-gallery-wrapw3b-gallery-masonry

HTML Comments

+29 more

Data Attributes

data-w3b-gallery-id

JS Globals

sgallery

Shortcode Output

[w3b_gallery]

FAQ