Gallery Bank Vulnerabilities
The Gallery Bank WordPress plugin has 5 known security vulnerabilities, including 1 critical. The most recent was disclosed on June 9, 2022. Check whether your site runs an affected version below.
View Gallery Bank on WordPress.orgSummary
Latest vulnerability disclosed on June 9, 2022.
Recommendation
WPSentry recommends extreme caution
Only run Gallery Bank if it is updated to the latest patched release. This plugin has a history of 1 critical, potentially exploitable vulnerability. If you already use it, update immediately — or consider a safer alternative.
Is your site affected?
Run a free external scan to detect Gallery Bank and 35+ other WordPress security checks — no login or plugin required.
Known Gallery Bank vulnerabilities
- medium
Gallery Bank – WordPress Photo Gallery Plugin <= 4.0.50 - Stored Cross-Site Scripting via Media Upload
Affected versions: <=4.0.50Disclosed June 9, 2022 - medium
Gallery Bank – WordPress Photo Gallery Plugin <= 4.0.50 - Stored Cross-Site Scripting via Gallery Description
Affected versions: <=4.0.50Disclosed June 9, 2022 - high
Gallery Bank – WordPress Photo Gallery Plugin <= 3.0.229 - SQL Injection
Affected versions: <3.0.330Disclosed August 21, 2015 - high
Gallery Bank – WordPress Photo Gallery <= 3.0.101 - SQL Injection
Affected versions: <=3.0.101Disclosed February 21, 2015 - critical
Gallery Bank – WordPress Photo Gallery Plugin < 3.0.61 - Arbitrary File Upload
Affected versions: <3.0.61Disclosed November 25, 2014
How to stay protected
Update promptly
Keep Gallery Bank on its latest release — most vulnerabilities are fixed in newer versions.
Scan regularly
Run an external scan after every update to catch outdated or vulnerable software early.
Monitor continuously
Enable monitoring to get alerted the moment a new issue affects your stack.