This is shocking it’s a vulnerability a year old and obviously it would be very easy to validate and fix. So I guess that this developer is no longer around. Is there any other alternative plugin that can do this job
@mayy3321
I faced the same problem and ended up replacing this plugin with a similar one called Ultimate Before After Image Slider & Gallery – BEAF. https://ww.wp.xz.cn/plugins/beaf-before-and-after-gallery/
Although the free version is limited, I was able to replicate my before/after sliders and create a two-column gallery. Here’s a demo of this plugin: https://themefic.com/plugins/beaf/
Hope that helps!
Hi everyone,
I sincerely apologize for the oversight regarding the security vulnerabilities in the plugin. We take your concerns very seriously.
The issues with the shortcode attributes and potential Stored Cross-Site Scripting attacks have been addressed. The plugin has been fully reviewed by the WordPress plugin team, and the latest version 1.7.1 is now available. I strongly encourage you to update the plugin to ensure your sites remain secure.
Thank you for your patience and understanding.
Best regards,
