Does Gallery Shortcode Style to Head have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Gallery Shortcode Style to Head compatible with WordPress 4.1.42?

According to WordPress.org data, Gallery Shortcode Style to Head 2.4 has been tested up to WordPress 4.1.42. Check the plugin's changelog for the latest compatibility information.

How often is Gallery Shortcode Style to Head updated?

Gallery Shortcode Style to Head was last updated on Apr 2, 2015. Frequent updates are generally a positive security signal.

What is Gallery Shortcode Style to Head's security score?

Gallery Shortcode Style to Head has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Gallery Shortcode Style to Head Security & Risk Analysis

wordpress.org/plugins/gallery-shortcode-style-to-head

Moves the gallery shortcode styles to the head so it doesn't break XHTML validation; allows disabling or modifying the default gallery styles.

100 active installs v2.4 PHP + WP 3.3+ Updated Apr 2, 2015

cssgalleryshortcodestylexhtml

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Gallery Shortcode Style to Head Safe to Use in 2026?

Generally Safe

Score 85/100

Gallery Shortcode Style to Head has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago

Risk Assessment

The plugin 'gallery-shortcode-style-to-head' version 2.4 presents a generally positive security posture, with no recorded vulnerabilities, critical taint flows, or dangerous function usage. The use of prepared statements for all SQL queries is a significant strength, indicating a good practice for preventing SQL injection. However, a notable concern arises from the output escaping. With 33% of outputs properly escaped, it suggests that two-thirds of the plugin's outputs are not being sanitized, potentially exposing it to cross-site scripting (XSS) vulnerabilities if user-supplied data is involved in these unsanitized outputs. The absence of nonce checks and capability checks, while not immediately indicative of a vulnerability given the limited entry points and lack of known issues, represents a potential weakness if the plugin's functionality were to be expanded or if the entry points were to become more complex.

Key Concerns

Low output escaping percentage
No nonce checks on entry points
No capability checks on entry points

Vulnerabilities

None known

Gallery Shortcode Style to Head Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Gallery Shortcode Style to Head Release Timeline

v2.4Current

v2.3

v2.2

v2.1

v2.0

v1.3

v1.2

v1.1

v1.0

Code Analysis

Analyzed Mar 16, 2026

Gallery Shortcode Style to Head Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

4 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

33% escaped12 total outputs

Attack Surface

Gallery Shortcode Style to Head Attack Surface

Entry Points2

Unprotected0

Shortcodes 2

[gallery] gallery-shortcode-style-to-head.php:255

[gallery] trunk\gallery-shortcode-style-to-head.php:255

WordPress Hooks 8

actioninitgallery-shortcode-style-to-head.php:39

actionadmin_initgallery-shortcode-style-to-head.php:45

actionwp_headgallery-shortcode-style-to-head.php:247

actiontemplate_redirectgallery-shortcode-style-to-head.php:258

actioninittrunk\gallery-shortcode-style-to-head.php:39

actionadmin_inittrunk\gallery-shortcode-style-to-head.php:45

actionwp_headtrunk\gallery-shortcode-style-to-head.php:247

actiontemplate_redirecttrunk\gallery-shortcode-style-to-head.php:258

Maintenance & Trust

Gallery Shortcode Style to Head Maintenance & Trust

Maintenance Signals

WordPress version tested4.1.42

Last updatedApr 2, 2015

PHP min version

Downloads12K

Community Trust

Rating100/100

Number of ratings1

Active installs100

Alternatives

Gallery Shortcode Style to Head Alternatives

Gallery Image Captions (GIC)

gallery-image-captions

Gallery Image Captions (GIC) allows you to customise WordPress gallery image captions.

100 No CVEs

Side by Side

side-by-side

This plugin allows you to put two images next to each other. When you move your mouse over them, the line that separates them will move with it!

30 No CVEs

EL-Gallery

el-gallery

EL-Gallery is an elegant untra-lightweight javascript & css gallery replacement for Wordpress.

10 No CVEs

Simple Custom CSS and JS

custom-css-js

100

Easily add Custom CSS or JS to your website with an awesome editor.

700K 1 CVE

Simple Custom CSS Plugin

simple-custom-css

Add Custom CSS to your WordPress site without any hassles.

100K No CVEs

Developer Profile

Gallery Shortcode Style to Head Developer Profile

Matt Martz

12 plugins · 5K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Gallery Shortcode Style to Head

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/gallery-shortcode-style-to-head/gallery-shortcode-style-to-head.php

HTML / DOM Fingerprints

CSS Classes

gallerygallery-itemgallery-icongallery-caption

HTML Comments

<!-- Gallery Shortcode S

Data Attributes

gallery-columns-gallery-size-

Shortcode Output

<div id="gallery-class='gallery-item'>class='gallery-iconclass='wp-caption-text gallery-caption'

FAQ