A month ago we noted that through monitoring we do we had noticed that one of the 1,000 most popular WordPress plugins, Instagram Gallery, had been closed. At the time we noted that a reason for the closure hadn’t been given and we didn’t find any obvious security issues. Once plugins like that one are closed we track if the plugin has been updated so that we can see if any security changes have subsequently been made. That occurred today, though it isn’t clear if that security issue being fixed was related to the closure and the plugin remains closed at the moment.

...

---

This post provides insights on a vulnerability in the WordPress plugin Instagram Gallery not discovered by us, where the discoverer hadn't provided the details needed for us to confirm the vulnerability while we were adding it to the data set for our service, so the rest of its contents are limited to subscribers of our service.

If you were using our service, you would have already been warned about this vulnerability if your website is vulnerable due to it. You can try out our service for free and then see the rest of the details of the vulnerability.

For existing customers, please log in to your account to view the rest of the contents of the post.