The WP Easy Gallery plugin for WordPress has a security vulnerability that allows attackers with certain levels of access to manipulate the database and potentially access sensitive information. This is due to a lack of proper protection in the code.