Does Category Family Tree have any unpatched vulnerabilities?

No. All known vulnerabilities in Category Family Tree have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Category Family Tree compatible with WordPress 3.9.40?

According to WordPress.org data, Category Family Tree 1.0 has been tested up to WordPress 3.9.40. Check the plugin's changelog for the latest compatibility information.

How often is Category Family Tree updated?

Category Family Tree was last updated on Jun 23, 2014. Frequent updates are generally a positive security signal.

What is Category Family Tree's security score?

Category Family Tree has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Category Family Tree Security & Risk Analysis

wordpress.org/plugins/category-family-tree

Show Category ancestors and sub categories on the sidebar

40 active installs v1.0 PHP + WP 2.8+ Updated Jun 23, 2014

category-treeparent-categoryrelated-categoryrelated-postsub-category

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Category Family Tree Safe to Use in 2026?

Generally Safe

Score 85/100

Category Family Tree has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago

Risk Assessment

The "category-family-tree" v1.0 plugin exhibits a surprisingly clean static analysis report, with no identified entry points, dangerous functions, or SQL injection vulnerabilities. The absence of external HTTP requests and file operations further contributes to a seemingly low-risk profile. However, the critical finding of 0% output escaping across 15 outputs is a significant concern. This indicates that any data rendered by the plugin is likely to be exposed to cross-site scripting (XSS) attacks. The complete lack of capability checks and nonce checks, while not explicitly leading to vulnerabilities in this analysis, suggests a potential for privilege escalation or unauthorized actions if any unforeseen entry points were to be discovered or introduced in future versions.

Key Concerns

0% output escaping
No capability checks
No nonce checks

Vulnerabilities

None known

Category Family Tree Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Category Family Tree Release Timeline

No version history available.

Code Analysis

Analyzed Mar 16, 2026

Category Family Tree Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped15 total outputs

Attack Surface

Category Family Tree Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 1

actionwidgets_initindex.php:144

Maintenance & Trust

Category Family Tree Maintenance & Trust

Maintenance Signals

WordPress version tested3.9.40

Last updatedJun 23, 2014

PHP min version

Downloads4K

Community Trust

Rating100/100

Number of ratings1

Active installs40

Alternatives

Category Family Tree Alternatives

Inline Related Posts

intelly-related-posts

Inline Related Posts AUTOMATICALLY inserts related posts INSIDE your content, capturing immediately the reader's attention.

100K 7 CVEs

VK All in One Expansion Unit

vk-all-in-one-expansion-unit

This plug-in is an integrated plug-in with a variety of features that make it powerful your web site.

100K 10 CVEs

YARPP – Yet Another Related Posts Plugin

yet-another-related-posts-plugin

The best WordPress plugin for displaying related posts. Simple and flexible, with a powerful proven algorithm and inbuilt caching.

100K 8 CVEs

Contextual Related Posts

contextual-related-posts

Keep visitors on your site longer with intelligent, fast-loading, contextually related posts. Block, shortcode, custom post type and widget ready.

60K 8 CVEs

Category Family Tree Developer Profile

nasznjoka

1 plugin · 40 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Category Family Tree

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

cat-family-tree

Data Attributes

id="cat-family-tree-widget"

FAQ