Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Video Gallery – YouTube Gallery and Vimeo Gallery 2.4.1

  • Severity: medium-risk
  • Status: Fixed
  • Publication: December 5, 2024

The Video Gallery is a popular plugin for WordPress websites that allows users to display YouTube videos on their site. However, it has been found to have a security vulnerability that could allow attackers with admin permissions to inject harmful code into pages. This can only happen on certain types of installations and can be prevented by disabling a certain setting.

Detected in:

Video Gallery – YouTube Gallery and Vimeo Gallery fixed vulnerable versions:
Video Gallery – YouTube Gallery, Vimeo Gallery, Video Portfolio, Image Portfolio and Image Gallery fixed vulnerable versions:
Video Gallery – YouTube Gallery, Vimeo, Video Portfolio, Image Portfolio and Image Gallery fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.