WP-Safety

Automatic Galleries Security & Risk Analysis

wordpress.org/plugins/simple-media-taxonomy-galleries

Create automatic galleries in posts based on media categories or tags. Saves time by automatically creating WordPress galleries using custom categori …

10 active installs v2.1 PHP + WP + Updated Jun 5, 2019
categoriesmediaphototagstaxonomies
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Automatic Galleries Safe to Use in 2026?

Generally Safe

Score 85/100

Automatic Galleries has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6yr ago
Risk Assessment

The "simple-media-taxonomy-galleries" v2.1 plugin exhibits a generally strong security posture based on the provided static analysis. The absence of dangerous functions, SQL injection vulnerabilities due to prepared statements, file operations, and external HTTP requests are significant strengths. Furthermore, the presence of nonce and capability checks on entry points indicates a good understanding of WordPress security best practices. The taint analysis also reveals no critical or high severity unsanitized flows, which is highly encouraging.

However, a notable concern arises from the output escaping. With only 38% of the 34 total outputs properly escaped, there is a significant risk of cross-site scripting (XSS) vulnerabilities. This is the primary weakness identified in the code analysis and represents a potential attack vector if user-supplied data or dynamic content is not sufficiently sanitized before being displayed to users.

The plugin's vulnerability history is spotless, with no recorded CVEs. This, coupled with the positive static analysis findings, suggests that the developers have been diligent in maintaining a secure codebase. Nevertheless, the output escaping issue warrants attention to maintain this excellent track record and ensure comprehensive security.

Key Concerns

  • Significant portion of outputs not properly escaped
Vulnerabilities
None known

Automatic Galleries Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Automatic Galleries Release Timeline

No version history available.
Code Analysis
Analyzed Mar 16, 2026

Automatic Galleries Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
21
13 escaped
Nonce Checks
2
Capability Checks
4
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

38% escaped34 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

2 flows
print_tr (simple-media-galleries-tags.php:244)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Automatic Galleries Attack Surface

Entry Points3
Unprotected0

AJAX Handlers 2

authwp_ajax_add_media_tag_bulk_trsimple-media-galleries-tags.php:69
authwp_ajax_save_media_tag_bulksimple-media-galleries-tags.php:70

Shortcodes 1

[smt_gallery] simple-media-galleries.php:34
WordPress Hooks 10
actionadmin_menusimple-media-galleries-admin.php:28
actionadmin_initsimple-media-galleries-admin.php:29
actionadmin_noticessimple-media-galleries-tags.php:71
actionadmin_enqueue_scriptssimple-media-galleries-tags.php:72
actionadmin_footersimple-media-galleries-tags.php:104
actionparse_requestsimple-media-galleries.php:89
actiontemplate_redirectsimple-media-galleries.php:196
filterget_the_termssimple-media-galleries.php:219
actioninitsimple-media-galleries.php:246
filterthe_postssimple-media-galleries.php:271
Maintenance & Trust

Automatic Galleries Maintenance & Trust

Maintenance Signals

WordPress version tested5.2.24
Last updatedJun 5, 2019
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

Automatic Galleries Alternatives

Attachment Taxonomies

Attachment Taxonomies

attachment-taxonomies

A
100

This plugin adds categories and tags to the WordPress media library - lightweight and developer-friendly.

1K No CVEs
Enhanced Media Library

Enhanced Media Library

enhanced-media-library

A
92

This plugin would be handy for those who need to manage a lot of media files.

70K 1 CVE
Media Library Assistant

Media Library Assistant

media-library-assistant

B
76

Enhances the Media Library; powerful gallery and list shortcodes, full taxonomy support, IPTC/EXIF/XMP/PDF processing, bulk/quick edit.

70K 29 CVEs
WP Required Taxonomies – Categories and Tags Mandatory

WP Required Taxonomies – Categories and Tags Mandatory

required-taxonomies

A
92

Force users to select a taxonomy term when publishing posts. For example, make category or tags required

1K No CVEs
Term Taxonomy Converter

Term Taxonomy Converter

term-taxonomy-converter

A
99

Copy or convert terms between taxonomies.

500 1 CVE
Developer Profile

Automatic Galleries Developer Profile

A. Jones

5 plugins · 3K total installs

76
trust score
Avg Security Score
96/100
Avg Patch Time
121 days
View full developer profile
Detection Fingerprints

How We Detect Automatic Galleries

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/simple-media-taxonomy-galleries/simple-media-galleries.js/wp-content/plugins/simple-media-taxonomy-galleries/simple-media-galleries.css
Script Paths
/wp-content/plugins/simple-media-taxonomy-galleries/simple-media-galleries.js
Version Parameters
simple-media-taxonomy-galleries/simple-media-galleries.css?ver=simple-media-taxonomy-galleries/simple-media-galleries.js?ver=

HTML / DOM Fingerprints

CSS Classes
smt-gallery
JS Globals
simple_media_gallery_optionssmt_gallery_plugin_url
Shortcode Output
[smt_gallery]
FAQ

Frequently Asked Questions about Automatic Galleries