Album Gallery Security & Risk Analysis

The 'new-album-gallery' v1.7.1 plugin exhibits a mixed security posture. On the positive side, the static analysis reveals a limited attack surface with all identified entry points (AJAX handlers and shortcodes) protected by at least one type of check (nonce or capability). The code demonstrates strong adherence to secure coding practices, with 100% of SQL queries using prepared statements and a very high rate of output escaping (96%). There are no observed dangerous functions, file operations, or external HTTP requests, further contributing to a secure foundation.

However, the plugin's vulnerability history presents a significant concern. With three known CVEs, including one high and two medium severity vulnerabilities, and a recent patch in February 2025, it indicates a pattern of past security flaws. The common types of vulnerabilities like Deserialization of Untrusted Data, Missing Authorization, and Cross-Site Request Forgery suggest recurring security weaknesses that have required external intervention. While the current version might be patched, the historical data points to potential underlying architectural issues or a development process that has historically overlooked certain security aspects.

The taint analysis, while showing no critical or high severity unsanitized flows, does report two flows with unsanitized paths. Although these did not reach critical levels in the analysis, they represent potential areas where malicious input could be processed without adequate sanitization, which, when combined with the plugin's history, warrants careful consideration.