The FooGallery plugin for WordPress has a security issue that allows attackers to insert harmful code into web pages. This can happen if a user clicks on a link and is tricked into doing so. The problem affects all versions up to 2.4.29 and is caused by not properly filtering and protecting the ‘foogallery_id’ parameter.