WP-Safety

GS YouTube Gallery – Video Feed, Channel Playlist & YouTube Slider Security & Risk Analysis

wordpress.org/plugins/gs-youtube-gallery

Create a Stunning & Responsive Video Gallery for Channel or Playlist Videos.

80 active installs v3.0.1 PHP 5.6+ WP 4.3+ Updated Feb 26, 2026
youtube-channelyoutube-feedyoutube-galleryyoutube-playlistyoutube-videos
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is GS YouTube Gallery – Video Feed, Channel Playlist & YouTube Slider Safe to Use in 2026?

Generally Safe

Score 100/100

GS YouTube Gallery – Video Feed, Channel Playlist & YouTube Slider has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The gs-youtube-gallery plugin v3.0.1 exhibits a generally good security posture with a strong adherence to secure coding practices, as evidenced by its high percentage of prepared SQL statements and properly escaped output. The plugin's vulnerability history of zero known CVEs further suggests a track record of security diligence. However, concerns arise from the attack surface analysis, specifically the presence of 5 unprotected AJAX handlers out of 9 total. This presents a significant entry point for potential unauthenticated attacks.

The taint analysis highlights 3 flows with unsanitized paths, all classified as high severity. This indicates that user-supplied data within these flows might not be sufficiently validated or sanitized before being processed, potentially leading to vulnerabilities if exploited. While the plugin does not have a history of documented vulnerabilities, the presence of high-severity taint flows in a static analysis is a notable weakness that requires attention.

In conclusion, gs-youtube-gallery v3.0.1 demonstrates strengths in its general coding practices and lack of past vulnerabilities. Nevertheless, the significant number of unprotected AJAX endpoints and the critical taint analysis findings represent the primary security concerns, necessitating immediate review and remediation.

Key Concerns

  • Unprotected AJAX handlers
  • High severity unsanitized taint flows
Vulnerabilities
None known

GS YouTube Gallery – Video Feed, Channel Playlist & YouTube Slider Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

GS YouTube Gallery – Video Feed, Channel Playlist & YouTube Slider Code Analysis

Dangerous Functions
0
Raw SQL Queries
1
24 prepared
Unescaped Output
3
185 escaped
Nonce Checks
6
Capability Checks
10
File Operations
1
External Requests
5
Bundled Libraries
0

SQL Query Safety

96% prepared25 total queries

Output Escaping

98% escaped188 total outputs
Data Flows
3 unsanitized

Data Flow Analysis

5 flows3 with unsanitized paths
delete_shortcodes (includes\shortcode-builder\builder.php:649)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
5 unprotected

GS YouTube Gallery – Video Feed, Channel Playlist & YouTube Slider Attack Surface

Entry Points10
Unprotected5

AJAX Handlers 9

authwp_ajax_gsyt_create_shortcodeincludes\shortcode-builder\builder.php:22
authwp_ajax_gsyt_clone_shortcodeincludes\shortcode-builder\builder.php:23
authwp_ajax_gsyt_get_shortcodeincludes\shortcode-builder\builder.php:24
authwp_ajax_gsyt_update_shortcodeincludes\shortcode-builder\builder.php:25
authwp_ajax_gsyt_delete_shortcodesincludes\shortcode-builder\builder.php:26
authwp_ajax_gsyt_temp_save_shortcode_settingsincludes\shortcode-builder\builder.php:27
authwp_ajax_gsyt_get_shortcodesincludes\shortcode-builder\builder.php:28
authwp_ajax_gsyt_get_shortcode_prefincludes\shortcode-builder\builder.php:30
authwp_ajax_gsyt_save_shortcode_prefincludes\shortcode-builder\builder.php:31

Shortcodes 1

[gs_ytgal] includes\shortcode.php:10
WordPress Hooks 34
actionwp_footerincludes\asset-generator\gs-asset-generator-base.php:27
actionpost_updatedincludes\asset-generator\gs-asset-generator-base.php:28
actionsave_postincludes\asset-generator\gs-asset-generator-base.php:29
filterwidget_update_callbackincludes\asset-generator\gs-asset-generator-base.php:30
actionupdate_option_sidebars_widgetsincludes\asset-generator\gs-asset-generator-base.php:31
actiongsp_shortcode_createdincludes\asset-generator\gs-asset-generator-base.php:32
actiongsp_shortcode_updatedincludes\asset-generator\gs-asset-generator-base.php:33
actiongsp_shortcode_deletedincludes\asset-generator\gs-asset-generator-base.php:34
actiongsp_preference_updateincludes\asset-generator\gs-asset-generator-base.php:35
actionadmin_noticesincludes\functions.php:54
actionadmin_menuincludes\gs-common-pages\gs-plugins-common-pages.php:16
actionadmin_enqueue_scriptsincludes\gs-common-pages\gs-plugins-common-pages.php:17
actioninitincludes\gs-common-pages\gs-youtube-common-pages.php:7
actionadmin_initincludes\hooks.php:11
actionplugins_loadedincludes\hooks.php:12
actionin_admin_headerincludes\hooks.php:13
filterplugin_row_metaincludes\hooks.php:14
actionwp_headincludes\hooks.php:15
actionplugins_loadedincludes\init.php:10
actionplugins_loadedincludes\plugin.php:44
actionplugins_loadedincludes\scripts.php:25
actionwp_enqueue_scriptsincludes\scripts.php:26
actionadmin_enqueue_scriptsincludes\scripts.php:27
actionadmin_headincludes\scripts.php:28
actionwp_footerincludes\scripts.php:29
actionwp_footerincludes\scripts.php:331
actionadmin_menuincludes\shortcode-builder\builder.php:17
filteradmin_enqueue_scriptsincludes\shortcode-builder\builder.php:18
actionadmin_enqueue_scriptsincludes\shortcode-builder\builder.php:19
actionwp_enqueue_scriptsincludes\shortcode-builder\builder.php:20
actiontemplate_includeincludes\shortcode-builder\builder.php:33
actionshow_admin_barincludes\shortcode-builder\builder.php:34
actioninitincludes\template-loader.php:26
actionplugins_loadedincludes\youtube-db.php:13
Maintenance & Trust

GS YouTube Gallery – Video Feed, Channel Playlist & YouTube Slider Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedFeb 26, 2026
PHP min version5.6
Downloads8K

Community Trust

Rating100/100
Number of ratings5
Active installs80
Alternatives

GS YouTube Gallery – Video Feed, Channel Playlist & YouTube Slider Alternatives

Video Gallery – YouTube Playlist, Channel Gallery by YotuWP

Video Gallery – YouTube Playlist, Channel Gallery by YotuWP

yotuwp-easy-youtube-embed

A
86

Modern responsive YouTube video gallery helps your website getting noticed from visitors, increase the reach and stand out from the competitors.

20K 5 CVEs
Feeds for YouTube (YouTube video, channel, and gallery plugin)

Feeds for YouTube (YouTube video, channel, and gallery plugin)

feeds-for-youtube

A
95

The Feeds for YouTube plugin allows you to display customizable YouTube feeds from any YouTube channel.

100K 4 CVEs
Automatic YouTube Gallery

Automatic YouTube Gallery

automatic-youtube-gallery

A
100

Build dynamic video galleries by simply adding a YouTube USERNAME, CHANNEL, PLAYLIST, SEARCH KEYWORDS, or a custom list of video URLs.

9K 1 CVE
Aklamator – Youtube Your Blog

Aklamator – Youtube Your Blog

aklamator-youtube-your-blog

A
85

Show videos from youtube channel on your blog easily. Just paste one YouTube link and we will show widget with all your channel videos.

10 No CVEs
Embed Plus for YouTube Gallery, Livestream and Lazy Loading with Facades

Embed Plus for YouTube Gallery, Livestream and Lazy Loading with Facades

youtube-embed-plus

A
100

A multi-featured plugin to embed YouTube in WordPress. Embed a video, YouTube channel gallery, playlist, or YouTube livestream. Defer JavaScript too!

100K 1 CVE
Developer Profile

GS YouTube Gallery – Video Feed, Channel Playlist & YouTube Slider Developer Profile

GS Plugins

19 plugins · 41K total installs

78
trust score
Avg Security Score
98/100
Avg Patch Time
173 days
View full developer profile
Detection Fingerprints

How We Detect GS YouTube Gallery – Video Feed, Channel Playlist & YouTube Slider

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/gs-youtube-gallery/assets/css/gsyt-public.css/wp-content/plugins/gs-youtube-gallery/assets/css/gs-bootstrap-grid.min.css/wp-content/plugins/gs-youtube-gallery/assets/css/gs-swiper.min.css/wp-content/plugins/gs-youtube-gallery/assets/css/gsyt-font.css/wp-content/plugins/gs-youtube-gallery/assets/css/gs-magnific-popup.css/wp-content/plugins/gs-youtube-gallery/assets/js/gsyt-public.js/wp-content/plugins/gs-youtube-gallery/assets/js/gs-magnific-popup.min.js/wp-content/plugins/gs-youtube-gallery/assets/js/gs-swiper.min.js
Script Paths
/wp-content/plugins/gs-youtube-gallery/includes/asset-generator/gs-yt-asset-generator.php
Version Parameters
/wp-content/plugins/gs-youtube-gallery/assets/css/gsyt-public.css?ver=/wp-content/plugins/gs-youtube-gallery/assets/css/gs-bootstrap-grid.min.css?ver=/wp-content/plugins/gs-youtube-gallery/assets/css/gs-swiper.min.css?ver=/wp-content/plugins/gs-youtube-gallery/assets/css/gsyt-font.css?ver=/wp-content/plugins/gs-youtube-gallery/assets/css/gs-magnific-popup.css?ver=/wp-content/plugins/gs-youtube-gallery/assets/js/gsyt-public.js?ver=/wp-content/plugins/gs-youtube-gallery/assets/js/gs-magnific-popup.min.js?ver=/wp-content/plugins/gs-youtube-gallery/assets/js/gs-swiper.min.js?ver=

HTML / DOM Fingerprints

CSS Classes
gsyt_gallerygs-ytgal-namegs-ytgal-link
HTML Comments
Protect direct access
Data Attributes
data-id
JS Globals
gsYTAssetGenerator
Shortcode Output
[gs_ytgal id=
FAQ

Frequently Asked Questions about GS YouTube Gallery – Video Feed, Channel Playlist & YouTube Slider