Does Mosaic Gallery – Advanced Gallery have any unpatched vulnerabilities?

No. All known vulnerabilities in Mosaic Gallery – Advanced Gallery have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Mosaic Gallery – Advanced Gallery compatible with WordPress 6.8.5?

According to WordPress.org data, Mosaic Gallery – Advanced Gallery 1.1.7 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Mosaic Gallery – Advanced Gallery compatible with PHP 5.2.4+?

Mosaic Gallery – Advanced Gallery requires PHP 5.2.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Mosaic Gallery – Advanced Gallery updated?

Mosaic Gallery – Advanced Gallery was last updated on Feb 26, 2026. Frequent updates are generally a positive security signal.

What is Mosaic Gallery – Advanced Gallery's security score?

Mosaic Gallery – Advanced Gallery has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Mosaic Gallery – Advanced Gallery Security & Risk Analysis

wordpress.org/plugins/mosaic-gallery-advanced-gallery

Mosaic Gallery is an advanced plugin for creating stunning, responsive mosaic-style galleries with ease, offering customizable layouts and effects.

3K active installs v1.1.7 PHP 5.2.4+ WP 5.4+ Updated Feb 26, 2026

galleryimage-galleryphoto-galleryvideo-gallerywordpress-gallery-plugin

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Mosaic Gallery – Advanced Gallery Safe to Use in 2026?

Generally Safe

Score 100/100

Mosaic Gallery – Advanced Gallery has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The Mosaic Gallery Advanced Gallery plugin (v1.1.7) exhibits a mixed security posture. On the positive side, it demonstrates good practices by exclusively using prepared statements for all SQL queries and achieving a high percentage of properly escaped output. Furthermore, the absence of known CVEs and recorded vulnerabilities suggests a history of responsible development and maintenance. However, a significant concern arises from its attack surface. With 7 AJAX handlers, 5 of which lack authentication checks, there is a substantial risk of unauthorized actions being performed on the website if these handlers are reachable by unauthenticated users. The presence of 2 nonces and only 1 capability check further exacerbates this, indicating potential weaknesses in access control for these unprotected AJAX endpoints. While taint analysis revealed no critical or high severity unsanitized paths, the sheer number of unprotected entry points represents a tangible risk that could be exploited by attackers to trigger unintended functionality within the plugin.

Key Concerns

Unprotected AJAX handlers
Limited nonce/capability checks on AJAX

Vulnerabilities

None known

Mosaic Gallery – Advanced Gallery Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Mosaic Gallery – Advanced Gallery Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

193 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

85% escaped227 total outputs

Data Flows

All sanitized

Data Flow Analysis

1 flows

<admin-menu> (menu\admin-menu.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

5 unprotected

Mosaic Gallery – Advanced Gallery Attack Surface

Entry Points7

Unprotected5

AJAX Handlers 7

authwp_ajax_migy_get_categoriesajax\ajax.php:37

noprivwp_ajax_migy_get_categoriesajax\ajax.php:38

authwp_ajax_migy_get_templatesajax\ajax.php:91

noprivwp_ajax_migy_get_templatesajax\ajax.php:92

authwp_ajax_migy_get_notice_dismissincludes\gallery-functions.php:17

authwp_ajax_migy_get_filtered_productsmenu\admin-menu.php:167

noprivwp_ajax_migy_get_filtered_productsmenu\admin-menu.php:168

WordPress Hooks 18

actionadd_meta_boxesincludes\admin.php:12

actionsave_postincludes\admin.php:13

filtermanage_migy_image_gallery_posts_columnsincludes\admin.php:14

actionmanage_posts_custom_columnincludes\admin.php:15

actioninitincludes\gallery-functions.php:11

actioninitincludes\gallery-functions.php:13

actionwp_enqueue_scriptsincludes\gallery-functions.php:14

actionenqueue_block_editor_assetsincludes\gallery-functions.php:15

actionadmin_enqueue_scriptsincludes\gallery-functions.php:16

actionenqueue_block_editor_assetsincludes\template-modal.php:25

actionadmin_menumenu\admin-menu.php:2

actioninitmosaic-image-gallery.php:31

actionadmin_noticesmosaic-image-gallery.php:40

actionwp_loginmosaic-image-gallery.php:43

actionwp_logoutmosaic-image-gallery.php:44

actionadmin_footermosaic-image-gallery.php:45

actionadmin_enqueue_scriptsmosaic-image-gallery.php:46

actionadmin_footermosaic-image-gallery.php:47

Maintenance & Trust

Mosaic Gallery – Advanced Gallery Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedFeb 26, 2026

PHP min version5.2.4

Downloads37K

Community Trust

Rating80/100

Number of ratings2

Active installs3K

Alternatives

Mosaic Gallery – Advanced Gallery Alternatives

Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery

nextgen-gallery

The most popular gallery plugin that lets you create galleries and albums in seconds.

400K 37 CVEs

Photo Gallery by 10Web – Mobile-Friendly Image Gallery

photo-gallery

Photo Gallery is a powerful image gallery plugin with a list of advanced options for creating responsive image galleries with beautiful lightbox.

200K 1 unpatched

Envira Gallery – Image Photo Gallery, Albums, Video Gallery, Slideshows & More

envira-gallery-lite

Envira Gallery is a fast, easy and powerful gallery builder with lightbox, masonry and grid layouts, albums, videos, and responsive displays and more

100K 10 CVEs

Modula Image Gallery – Photo Grid & Video Gallery

modula-best-grid-gallery

Create responsive image galleries with drag-and-drop grid builder. Custom layouts, video support, AI optimization. Works with any theme.

100K 14 CVEs

Robo Gallery – Photo & Image Slider

robo-gallery

Robo Gallery is a powerful image gallery and photo gallery plugin with advanced features to create responsive galleries with a beautiful lightbox

40K 17 CVEs

Developer Profile

Mosaic Gallery – Advanced Gallery Developer Profile

Misbah WP

108 plugins · 11K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

90 days

View full developer profile

Detection Fingerprints

How We Detect Mosaic Gallery – Advanced Gallery

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/mosaic-gallery-advanced-gallery/assets/js/gallery-frontend.js/wp-content/plugins/mosaic-gallery-advanced-gallery/assets/css/gallery-frontend.css/wp-content/plugins/mosaic-gallery-advanced-gallery/assets/js/gallery-editor.js/wp-content/plugins/mosaic-gallery-advanced-gallery/assets/css/gallery-editor.css

Script Paths

/wp-content/plugins/mosaic-gallery-advanced-gallery/assets/js/gallery-frontend.js/wp-content/plugins/mosaic-gallery-advanced-gallery/assets/js/gallery-editor.js

HTML / DOM Fingerprints

CSS Classes

migy-notice-banner-wrapmigy-notice-headingmigy-main-headmigy-sub-headmigy-notice-btnmigy-buy-btnmigy-popup-overlaymigy-popup-content+5 more

Data Attributes

data-migy-gallery-id

JS Globals

migy_gallery_ajax_object

Shortcode Output

[migy_gallery

FAQ