Does Yet Another Simple Gallery have any unpatched vulnerabilities?

No. All known vulnerabilities in Yet Another Simple Gallery have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Yet Another Simple Gallery compatible with WordPress 3.4.2?

According to WordPress.org data, Yet Another Simple Gallery 1.3 has been tested up to WordPress 3.4.2. Check the plugin's changelog for the latest compatibility information.

How often is Yet Another Simple Gallery updated?

Yet Another Simple Gallery was last updated on Aug 4, 2012. Frequent updates are generally a positive security signal.

What is Yet Another Simple Gallery's security score?

Yet Another Simple Gallery has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Yet Another Simple Gallery Security & Risk Analysis

wordpress.org/plugins/yet-another-simple-gallery

Yasg is short for Yet Another Simple Gallery. It cannot get any simpler than that - imho.

40 active installs v1.3 PHP + WP 3.2.1+ Updated Aug 4, 2012

galleryimagesphotosthumbs-galleryyasg

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Yet Another Simple Gallery Safe to Use in 2026?

Generally Safe

Score 85/100

Yet Another Simple Gallery has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 13yr ago

Risk Assessment

The "yet-another-simple-gallery" plugin v1.3 exhibits a generally good security posture based on the static analysis. It has a very small attack surface with only one shortcode as an entry point and no unprotected AJAX handlers or REST API routes. Furthermore, it avoids dangerous functions, file operations, and external HTTP requests, which are common sources of vulnerabilities. The use of prepared statements for all SQL queries is also a significant strength, mitigating risks of SQL injection.

Key Concerns

Output not properly escaped
No nonce checks
No capability checks

Vulnerabilities

None known

Yet Another Simple Gallery Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Yet Another Simple Gallery Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped1 total outputs

Attack Surface

Yet Another Simple Gallery Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[gallery] yasg.php:109

WordPress Hooks 2

actionwp_print_scriptsyasg.php:104

actionwp_headyasg.php:105

Maintenance & Trust

Yet Another Simple Gallery Maintenance & Trust

Maintenance Signals

WordPress version tested3.4.2

Last updatedAug 4, 2012

PHP min version

Downloads16K

Community Trust

Rating44/100

Number of ratings5

Active installs40

Alternatives

Yet Another Simple Gallery Alternatives

Lightbox with PhotoSwipe

lightbox-photoswipe

100

Integration of PhotoSwipe (http://photoswipe.com) for WordPress.

20K No CVEs

Social Photo Fetcher

facebook-photo-fetcher

Allows you to automatically create Wordpress photo galleries from Facebook albums. Simple to use and highly customizable.

1K 1 unpatched

WoowGallery

woowgallery

100

Fastest, easiest to use multifunctional image gallery plugin. Create Featured Posts Gallery, Dynamic Content Gallery, Albums!

1K No CVEs

Responsive Lightbox2

responsive-lightbox2

Add responsive lightbox effect to your images, pop up photos and photo gallery in lightbox

300 2 CVEs

GPP Slideshow

gpp-slideshow

A minimalist slideshow plugin that creates a new gallery post type. Add slideshows to widgets, posts, pages and gallery posts.

200 1 unpatched

Developer Profile

Yet Another Simple Gallery Developer Profile

Kermit524

1 plugin · 40 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Yet Another Simple Gallery

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/yet-another-simple-gallery/yasg.css/wp-content/plugins/yet-another-simple-gallery/yasg.js/wp-content/plugins/yet-another-simple-gallery/images/prev.png/wp-content/plugins/yet-another-simple-gallery/images/next.png

Script Paths

/wp-content/plugins/yet-another-simple-gallery/yasg.js

HTML / DOM Fingerprints

CSS Classes

yasg_galleryHoldermainImgHolderlightboxmain_imgimg_captiongallery_thumbsnavArrowsarrow+4 more

HTML Comments

Data Attributes

id="galleryHolder_id="prev_id="navHolder_id="nav_id="next_

JS Globals

yasg_thumb_widthyasg_thumb_heightyasg_full_widthyasg_full_heightyasg_spacing

Shortcode Output

<div class="yasg_galleryHolder"<div class="mainImgHolder"<a href="<img class="main_img"

FAQ