[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fxUW3Fw0XastyvMRA-9spj5GlaL0JgNd1uQpfRr0OMns":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":46,"crawl_stats":37,"alternatives":53,"analysis":148,"fingerprints":496},"genealogical-tree","Genealogical Tree – WordPress Family Tree","2.2.6","akdevs","https:\u002F\u002Fprofiles.wordpress.org\u002Fakdevs\u002F","\u003Cp>Genealogical Tree is a plugin for display family trees and create Ancestor Profiles. This is a perfect plugin for genealogists and family history enthusiasts to display a family information and tree on your website\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Display a family tree with unlimited family members (Up to 5th generation of descendants, and 2 generation of ancestors).\u003C\u002Fli>\n\u003Cli>1 Tree Layout.\u003C\u002Fli>\n\u003Cli>Drag, zoom in, zoom out for better viewing experience.\u003C\u002Fli>\n\u003Cli>Automatic root finder.\u003C\u002Fli>\n\u003Cli>Set any member as root.\u003C\u002Fli>\n\u003Cli>Add family member information according genealogical method.\u003C\u002Fli>\n\u003Cli>Add life events like – Burial, Adoption, Engagement, Marriage, Divorce and more.\u003C\u002Fli>\n\u003Cli>Display family member informations into member page.\u003C\u002Fli>\n\u003Cli>Show all members informations of a family listing page.\u003C\u002Fli>\n\u003Cli>Add contact information.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Pro Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Import Gedcom format (.ged) files.\u003C\u002Fli>\n\u003Cli>Export Gedcom format (.ged) files.\u003C\u002Fli>\n\u003Cli>Create unlimited family groups.\u003C\u002Fli>\n\u003Cli>Create unlimited family trees.\u003C\u002Fli>\n\u003Cli>Total 7 Tree layout with many customizable options\u003C\u002Fli>\n\u003Cli>Horizontal and Vertical view of each layout.\u003C\u002Fli>\n\u003Cli>Showing member image into tree.\u003C\u002Fli>\n\u003Cli>Showing member image into member page.\u003C\u002Fli>\n\u003Cli>Support multiple birth and death recored with different source.\u003C\u002Fli>\n\u003Cli>Support multiple spouses.\u003C\u002Fli>\n\u003Cli>Support multiple parents.\u003C\u002Fli>\n\u003Cli>Display children separately by each spouse.\u003C\u002Fli>\n\u003Cli>Load tree with ajax .\u003C\u002Fli>\n\u003Cli>Manage Sibling Order to display on tree.\u003C\u002Fli>\n\u003Cli>Manage tree style including color, border etc.\u003C\u002Fli>\n\u003Cli>Use of Google Fonts.\u003C\u002Fli>\n\u003Cli>Collapsible features on tree.\u003C\u002Fli>\n\u003Cli>Collaboration \u002F Contribution to build family tree \u002F history.\u003C\u002Fli>\n\u003Cli>Option to add multiple contact information.\u003C\u002Fli>\n\u003Cli>Option to add multiple life event information.\u003C\u002Fli>\n\u003Cli>Display pedigree tree.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contribute\u003C\u002Fh3>\n\u003Cp>This may have bugs and lack of many features. If you want to contribute on this project, you are more than welcome. Please fork the repository from \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fakdevsfr\u002Fgenealogical-tree\" rel=\"nofollow ugc\">Github\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>Getting Started with Genealogical Tree is only a matter of moments.\u003Cbr \u002F>\nCheck out the detailed \u003Ca href=\"https:\u002F\u002Fzqe.io\u002Fdocs\u002Fgenealogical-tree-documentation\u002F\" rel=\"nofollow ugc\">documentation\u003C\u002Fa> created by us to help you out to run Genealogical Tree in the best way.\u003C\u002Fp>\n\u003Ch3>LINKS\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.zqe.io\u002Fgenealogical-tree\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fzqe.io\u002Fdocs\u002Fgenealogical-tree-documentation\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fcheckout.freemius.com\u002Fmode\u002Fdialog\u002Fplugin\u002F3592\u002Fplan\u002F5774\u002F\" rel=\"nofollow ugc\">Pro Version\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Translations\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Arabic (ar) \u002F العربية\u003C\u002Fli>\n\u003Cli>German (de_DE) \u002F Deutsch\u003C\u002Fli>\n\u003Cli>Spanish (es_ES) \u002F Español\u003C\u002Fli>\n\u003Cli>Persian (fa_IR) \u002Fفارسی\u003C\u002Fli>\n\u003Cli>French (fr_FR) \u002F Français\u003C\u002Fli>\n\u003Cli>Italian (it_IT) \u002F Italiano\u003C\u002Fli>\n\u003Cli>Dutch (nl_NL) \u002F Nederlands\u003C\u002Fli>\n\u003Cli>Portuguese (pt_BR) \u002F Português do Brasil\u003C\u002Fli>\n\u003Cli>Russian (ru_RU) \u002F Русский\u003C\u002Fli>\n\u003Cli>Turkish (tr_TR) \u002F Türkçe\u003C\u002Fli>\n\u003C\u002Ful>\n","Genealogical Tree is a ultimate solution for creating and displaying family trees, family history, builds ancestor profiles on WordPress.",600,29420,82,16,"2025-12-14T10:22:00.000Z","6.7.5","4.4","7.4",[20,21,22,23,24],"ancestry","family-history","family-tree","ged","genealogy","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgenealogical-tree","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgenealogical-tree.2.2.6.zip",78,1,"2025-09-22 00:00:00","2026-03-15T15:16:48.613Z",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":37,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":29,"updated_date":43,"references":44,"days_to_patch":37},"CVE-2025-58023","genealogical-tree-authenticated-contributor-stored-cross-site-scripting","Genealogical Tree \u003C= 2.2.5 - Authenticated (Contributor+) Stored Cross-Site Scripting","The Genealogical Tree plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 2.2.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=2.2.5","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-09-26 17:30:56",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F95d06679-a603-45c4-840f-e38a7cd0c739?source=api-prod",{"slug":7,"display_name":7,"profile_url":8,"plugin_count":47,"total_installs":48,"avg_security_score":49,"avg_patch_time_days":50,"trust_score":51,"computed_at":52},2,620,89,30,86,"2026-04-04T08:31:58.240Z",[54,78,96,113,133],{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":64,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":69,"tags":70,"homepage":74,"download_link":75,"security_score":76,"vuln_count":77,"unpatched_count":77,"last_vuln_date":37,"fetched_at":30},"gedshow","GedShow","2.1.0","colinsp","https:\u002F\u002Fprofiles.wordpress.org\u002Fcolinsp\u002F","\u003Cp>GedShow is a simple WordPress plugin that allows the uploading of a gedcom file to a WordPress website. Once the plugin is installed there is a new menu item in the Admin menu panel on the website entitled Gedshow. On clicking this menu option a file upload dialog page is displayed allowing you to browse your computer for your gedcom file and then upload it. Once the gedcom file has been uploaded some of the data is extracted from it and loaded into the WordPress database. The uploaded information can then be displayed on a page using a shortcode.\u003C\u002Fp>\n\u003Cp>The first shortcode is [gedshow living=”yes”] or [gedshow living=”no”], as usual the shortcode should be typed in lowercase and surrounded by square brackets. This displays a list of all the surnames in the database with a count of the number of records who have that surname in brackets next to the surname. The surname is displayed on a button, clicking on this button then shows the first and surname of all those individuals of the surname clicked and hides the all surnames records, again the names are displayed on a button. Clicking on this new button shows the individual record of that person. Currently occupations, birth, baptism, death, burial, residence and occupation dates and places are shown. If the individual had children a ‘show tree’ button is displayed, clicking this button shows a graphical tree of the family below the marriage details. The names of the  spouse and children of the individual are links and clicking on any of these changes the display of fact to that new individuals details.\u003C\u002Fp>\n\u003Cp>The second shortcode is [surname sn=”smith” living=”yes”] or [surname sn=”smith” living=”no”]. Replace smith with the surname of your choice within double quotes (ensuring that the surname exists in your gedcom). This shortcode then displays the data as above.\u003C\u002Fp>\n\u003Cp>The third shortcode is [gs_individual id=”I1″ name=”Y” facts=”Y”] This shortcode can be placed on any page or post and will display the persons name (if Y is in the shortcode) followed by their Birth, Marriage and Death details and then any person level notes. Additional information and photos can then be added in the usual way. The reference number can be found for the person in the header of their normal Gedshow page by hovering over their name. More details on the demo site.\u003C\u002Fp>\n\u003Cp>The fourth shortcode is [gs_tree id=”I1″] This displays a 3 generation Ancestor tree for a chosen individual. The id number is found in the same was as shortcode 3 above. The shortcode can be used anywhere on a page or post. PLEASE NOTE THAT THIS SHORTCODE DOES NOT CHECK FOR LIVING INDIVIDUALS BEING DISPLAYED.\u003C\u002Fp>\n\u003Cp>The first two shortcodes can now have living yes \u002F no qualifier. So [gedshow living=”yes”] or [surname sn=”smith” living=”yes”]. If you do not add the living qualifier living=no is assumed.\u003Cbr \u002F>\n\u003Cstrong>For these new shortcodes to work you MUST re-import your gedcom file as there are database changes.\u003C\u002Fstrong> There is a new page on the demo website on using this new living qualifier.\u003C\u002Fp>\n\u003Cp>The fifth shortcode is [gs_allnames] This is for a page specifically for search engines it lists all the individuals in the database with their dates of birth and death (if known) in a simple table. It does not include living individuals.\u003C\u002Fp>\n\u003Cp>When first and surnames are shown on either the button or in the heading for individual records the sex of the individual is shown after the surname using the unicode symbols, ♂ for male and ♀ for female.\u003C\u002Fp>\n\u003Cp>The ‘Upcoming Birthdays’ widget is available in the Widgets pane as Gedshow Birthdays. It can be displayed in any widget area (ideally around 250px wide or wider) the title and number of birthdays to show is selectable in the widget dialog (default 10). Only the day and month are shown so display of Living people is not repressed.\u003C\u002Fp>\n\u003Cp>The ‘Top Surnames’ widget is available in the Widgets pane as Gedshow Surnames. This widget shows a configurable number (default 10) of the highest number of surnames  in the database.\u003C\u002Fp>\n\u003Cp>The ‘Anniversaries’ widget is available in the Widgets pane as Gedshow Anniversaries. This widget shows a configurable number (default 5) of the upcoming wedding anniversaries in the database.\u003C\u002Fp>\n\u003Cp>The ‘In Memoriam’ widget is available in the Widgets pane as Gedshow In Memoriam. This widget shows a configurable number (default 10) of the upcoming deaths in the database.\u003C\u002Fp>\n\u003Cp>Current limitations:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Only one gedcom can be uploaded, the previous one will be deleted if a new one is uploaded.\u003C\u002Fli>\n\u003Cli>UTF-16 gedcom files, native to Family Historian V6, are not supported. Export as utf-8 format gedcom for use in this plugin.\u003C\u002Fli>\n\u003Cli>Large gedcom files with >25000 individuals are unlikely to load due to webserver timeouts (this may be a smaller number on free \u002F shared webhosts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Future enhancements:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Suggestions for added functionality welcome\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgedshow.le-fever.org\u002F\" rel=\"nofollow ugc\">Demo site – Full shortcode\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fgedshow.le-fever.org\u002Fgedshow-surname\u002F\" rel=\"nofollow ugc\">Demo site – Surname shortcode\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fgedshow.le-fever.org\u002Frichard-spencer\u002F\" rel=\"nofollow ugc\">Demo site – Person story shortcode\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Users group on \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fgroups\u002F706380551130147\u002F\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Any comments \u002F feedback to \u003Ca href=\"mailto:gedshow@orba-design.com\" rel=\"nofollow ugc\">gedshow@orba-design.com\u003C\u002Fa>\u003C\u002Fp>\n","GedShow creates a shortcode to display the contents of an uploaded gedcom file to show the family history of individuals in the file.",200,7661,92,8,"2024-03-30T17:21:00.000Z","6.5.8","4.9","5.6",[71,72,21,73,24],"ancestors","family","gedcom","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgedshow.zip",85,0,{"slug":24,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":87,"num_ratings":88,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":74,"tags":92,"homepage":94,"download_link":95,"security_score":76,"vuln_count":77,"unpatched_count":77,"last_vuln_date":37,"fetched_at":30},"Genealogy","1.2.2","SuitePlugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fsuiteplugins\u002F","\u003Cp>This plugin has been adapted by  \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fsuiteplugins\" rel=\"nofollow ugc\">SuitePlugins\u003C\u002Fa> and is currently in BETA as we work to resolve open issues and improve this amazing plugin.\u003C\u002Fp>\n\u003Ch3>The Genealogy plugin for WordPress allows you to map your entire family’s relationships.\u003C\u002Fh3>\n\u003Cp>Use the plugin to create a Member for each person in your family. Assign Members parents from the people you have added.\u003C\u002Fp>\n\u003Ch4>Add information for each Member, including:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Photographs\u003C\u002Fli>\n\u003Cli>Date and location of birth\u003C\u002Fli>\n\u003Cli>Parents\u003C\u002Fli>\n\u003Cli>Spouses\u003C\u002Fli>\n\u003Cli>Date, location, and reason of death\u003C\u002Fli>\n\u003Cli>Up to 20 wives, husbands, professions, schools, religions & middle names\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>The plugin has support for:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Featured images – Upload photos to the family member and set them as Featured Image to have their picture added to the family member information table\u003C\u002Fli>\n\u003Cli>Multiple wives and husbands, including wedding time span\u003C\u002Fli>\n\u003Cli>Multiple professions, schools, religions, locations, and life events\u003C\u002Fli>\n\u003Cli>Calendar-based date picker to make it easy to select a date (as far back as 1411!)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Easy to use!\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>To add a list of family members\u003C\u002Fstrong> to a post or page: add \u003Ccode>[genealogy]\u003C\u002Fcode> to the content\u003C\u002Fp>\n\u003Cp>\u003Cstrong>To add a single family member\u003C\u002Fstrong>, add \u003Ccode>[genealogy id=#]\u003C\u002Fcode> where \u003Ccode>id\u003C\u002Fcode> is the post ID of the Family Member (such as \u003Ccode>231\u003C\u002Fcode>). You can also use \u003Ccode>[genealogy slug=\"john-smith\"]\u003C\u002Fcode> where the URL of the family member is \u003Ccode>...\u002Ffamily\u002Fjohn-smith\u002F\u003C\u002Fcode>\u003C\u002Fp>\n","\"Being revamped\" Map out your family relationships using the Genealogy plugin.",40,11226,46,3,"2016-10-07T23:19:00.000Z","4.6.30","3.1",[72,21,22,24,93],"pedigree","https:\u002F\u002Fwww.suiteplugins.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgenealogy.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":62,"downloaded":104,"rating":105,"num_ratings":106,"last_updated":107,"tested_up_to":108,"requires_at_least":109,"requires_php":74,"tags":110,"homepage":111,"download_link":112,"security_score":76,"vuln_count":77,"unpatched_count":77,"last_vuln_date":37,"fetched_at":30},"wp-family-tree","WP Family Tree","1.0.6","the_arv","https:\u002F\u002Fprofiles.wordpress.org\u002Fthe_arv\u002F","\u003Cp>WP Family Tree is a family tree generator plugin for WordPress. Each family member have their own post within\u003Cbr \u002F>\na “Family” category. In the family member posts you can specify birth dates, mother, father, etc. A complete family\u003Cbr \u002F>\ntree can be displayed on any page with the [family-tree] shortcode.\u003C\u002Fp>\n\u003Cp>The root of the tree can be specified with the root parameter: [family-tree root=’John Doe’]\u003C\u002Fp>\n\u003Cp>Specify a ‘featured image’ for the post and the image thumbnail will be used in the family memebers list and in\u003Cbr \u002F>\nthe family tree. Please see the screenshots.\u003C\u002Fp>\n\u003Cp>For support please visit the\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fwww.wpfamilytree.com\u002F\" title=\"Wordpress Family Tree Plugin\" rel=\"nofollow ugc\">WordPress Family Tree Plugin\u003C\u002Fa> homepage\u003C\u002Fp>\n\u003Cp>Released under the terms of the GNU GPL, version 3.\u003C\u002Fp>\n\u003Cp>Copyright (c) 2010-2016 Arvind Shah\u003C\u002Fp>\n\u003Cp>Any suggestions for future enhancements welcome.\u003C\u002Fp>\n","WP Family Tree is a graphical family tree generator plugin for Wordpress. Each family member have their own blog post.",29004,76,18,"2016-02-01T09:41:00.000Z","4.4.34","2.8.6",[22,24,93],"http:\u002F\u002Fwww.wpfamilytree.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-family-tree.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":77,"num_ratings":77,"last_updated":123,"tested_up_to":124,"requires_at_least":125,"requires_php":126,"tags":127,"homepage":74,"download_link":131,"security_score":132,"vuln_count":77,"unpatched_count":77,"last_vuln_date":37,"fetched_at":30},"single-sign-on-for-tng","Single Sign On For TNG","2.0.0","Colin Stearman","https:\u002F\u002Fprofiles.wordpress.org\u002Fbritcoder\u002F","\u003Cp>Single Sign On For TNG improves the user experience when WordPress and the TNG Genealogy Software are on the same server.\u003Cbr \u002F>\nUser accounts for both systems are managed through the WordPress user registration system.  This includes account creation, deletion and password change.\u003Cbr \u002F>\nLogging in and out of the users WordPress account automatically logs in and out of their account in TNG.\u003Cbr \u002F>\nThis plugin makes no attempt to visually incorporate TNG into the WordPress theme.  But TNG’s template feature allows the developer to design a visual for TNG which is consistent with that of the WordPress Site.\u003C\u002Fp>\n","Single Sign On  For TNG automates the login to the genealogy program TNG by Darrin Lithgoe.",20,1266,"2025-08-04T15:06:00.000Z","6.8.5","6.6.1","7.0",[22,24,128,129,130],"single-sign-on","the-next-generation","tng","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsingle-sign-on-for-tng.2.0.0.zip",100,{"slug":134,"name":135,"version":136,"author":137,"author_profile":138,"description":139,"short_description":140,"active_installs":141,"downloaded":142,"rating":77,"num_ratings":77,"last_updated":74,"tested_up_to":67,"requires_at_least":143,"requires_php":126,"tags":144,"homepage":74,"download_link":146,"security_score":132,"vuln_count":77,"unpatched_count":77,"last_vuln_date":37,"fetched_at":147},"famtree","FamTree","1.5.1","pvogel2","https:\u002F\u002Fprofiles.wordpress.org\u002Fpvogel2\u002F","\u003Cp>The plugin provides the FamTree Block showing configured family trees. The visualization is created in a virtual 3d scene using ThreeJS\u003Cbr \u002F>\nand can be navigated using a mouse or keyboard.\u003Cbr \u002F>\nSelecting a tree node (a person of the family tree) provides access to meta information for this person if configured.\u003C\u002Fp>\n\u003Cp>A block can be configured to visualize the configured family of a founder, this can be switched on run time if configured in the block settings.\u003C\u002Fp>\n\u003Cp>Multiple families are supported and can be configured on the FamTree options page.\u003C\u002Fp>\n\u003Cp>The source code of the plugin can be found on the related \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpvogel2\u002Ffamtree\" rel=\"nofollow ugc\">github page\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Cp>The block itself does not support access restrictions,\u003Cbr \u002F>\nthis can be achieved by using one of the several WordPress plugins available.\u003C\u002Fp>\n\u003Cp>The plugin creates a dedicated user role called ‘famtree’ with custom capabilities to read and write saved family trees.\u003C\u002Fp>\n\u003Cp>The administrator role is also expanded to include these capabilities.\u003C\u002Fp>\n\u003Cp>A FamTree options page has been added to the admin panel to configure family trees relationships and persons.\u003C\u002Fp>\n\u003Cp>These data is stored in dedicated plugin tables of the database used.\u003C\u002Fp>\n\u003Cp>All block instances use the stored informations to visualize the desired family trees.\u003C\u002Fp>\n\u003Cp>by default, only logged in users with famtree read access can see the family trees on a pubished page.\u003C\u002Fp>\n\u003Cp>The plugin can be configured to give every sites visitor access to the stored data.\u003C\u002Fp>\n","This plugin provides a block to manage and visualize family trees (Scaffolded with Create Block tool).",10,1149,"6.3",[145,21,22],"block","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffamtree.1.5.1.zip","2026-03-15T10:48:56.248Z",{"attackSurface":149,"codeSignals":349,"taintFlows":436,"riskAssessment":485,"analyzedAt":495},{"hooks":150,"ajaxHandlers":291,"restRoutes":317,"shortcodes":318,"cronEvents":347,"entryPointCount":14,"unprotectedCount":348},[151,158,162,165,167,170,173,176,178,180,183,185,189,192,195,198,201,203,206,209,212,215,218,221,224,227,230,233,234,237,240,243,246,249,251,254,257,260,263,266,268,270,272,274,277,279,282,285,288],{"type":152,"name":153,"callback":154,"priority":155,"file":156,"line":157},"action","plugins_loaded","closure",5,"genealogical-tree.php",126,{"type":152,"name":153,"callback":159,"file":160,"line":161},"anonymous","includes\\class-genealogical-tree.php",134,{"type":152,"name":163,"callback":159,"file":160,"line":164},"admin_enqueue_scripts",146,{"type":152,"name":163,"callback":159,"file":160,"line":166},147,{"type":152,"name":168,"callback":159,"file":160,"line":169},"init",148,{"type":152,"name":171,"callback":159,"file":160,"line":172},"admin_menu",149,{"type":152,"name":174,"callback":159,"file":160,"line":175},"add_meta_boxes",161,{"type":152,"name":174,"callback":159,"file":160,"line":177},162,{"type":152,"name":174,"callback":159,"file":160,"line":179},163,{"type":152,"name":181,"callback":159,"file":160,"line":182},"post_updated",166,{"type":152,"name":181,"callback":159,"file":160,"line":184},167,{"type":186,"name":187,"callback":159,"file":160,"line":188},"filter","manage-gt-member_posts_columns",170,{"type":152,"name":190,"callback":159,"file":160,"line":191},"manage_gt-member_posts_custom_column",171,{"type":186,"name":193,"callback":159,"file":160,"line":194},"manage_edit-gt-member_sortable_columns",172,{"type":186,"name":196,"callback":159,"file":160,"line":197},"manage_gt-tree_posts_columns",175,{"type":152,"name":199,"callback":159,"file":160,"line":200},"manage_gt-tree_posts_custom_column",176,{"type":152,"name":168,"callback":159,"file":160,"line":202},179,{"type":186,"name":204,"callback":159,"file":160,"line":205},"query_vars",180,{"type":152,"name":207,"callback":159,"file":160,"line":208},"user_register",183,{"type":152,"name":210,"callback":159,"file":160,"line":211},"before_delete_post",186,{"type":186,"name":213,"callback":159,"file":160,"line":214},"post_class",187,{"type":186,"name":216,"callback":159,"file":160,"line":217},"user_has_cap",190,{"type":152,"name":219,"callback":159,"file":160,"line":220},"bp_setup_nav",191,{"type":152,"name":222,"callback":159,"file":160,"line":223},"bp_template_title",192,{"type":152,"name":225,"callback":159,"file":160,"line":226},"bp_template_content",193,{"type":152,"name":228,"callback":159,"file":160,"line":229},"admin_post_process_export_post",196,{"type":152,"name":231,"callback":159,"file":160,"line":232},"admin_post_process_import_post",197,{"type":186,"name":196,"callback":159,"file":160,"line":62},{"type":152,"name":235,"callback":159,"file":160,"line":236},"manage_posts_custom_column",201,{"type":152,"name":238,"callback":159,"file":160,"line":239},"quick_edit_custom_box",204,{"type":152,"name":241,"callback":159,"file":160,"line":242},"save_post",205,{"type":152,"name":244,"callback":159,"file":160,"line":245},"admin_notices",213,{"type":186,"name":247,"callback":159,"file":160,"line":248},"parent_file",218,{"type":152,"name":244,"callback":159,"file":160,"line":250},221,{"type":152,"name":252,"callback":159,"file":160,"line":253},"create_gt-family-group",222,{"type":152,"name":255,"callback":159,"file":160,"line":256},"edited_gt-family-group",223,{"type":152,"name":258,"callback":159,"file":160,"line":259},"admin_init",224,{"type":186,"name":261,"callback":159,"file":160,"line":262},"get_terms_args",227,{"type":152,"name":264,"callback":159,"file":160,"line":265},"rest_api_init",239,{"type":152,"name":264,"callback":159,"file":160,"line":267},240,{"type":152,"name":264,"callback":159,"file":160,"line":269},241,{"type":152,"name":264,"callback":159,"file":160,"line":271},242,{"type":152,"name":168,"callback":159,"file":160,"line":273},255,{"type":152,"name":275,"callback":159,"file":160,"line":276},"wp_enqueue_scripts",256,{"type":152,"name":275,"callback":159,"file":160,"line":278},257,{"type":186,"name":280,"callback":159,"file":160,"line":281},"the_content",259,{"type":186,"name":283,"callback":159,"file":160,"line":284},"get_the_excerpt",260,{"type":152,"name":286,"callback":159,"file":160,"line":287},"pre_get_posts",261,{"type":152,"name":289,"callback":159,"file":160,"line":290},"login_form_middle",263,[292,296,299,302,304,307,310,312,315],{"action":293,"nopriv":294,"callback":159,"hasNonce":294,"hasCapCheck":294,"file":160,"line":295},"search_members",false,151,{"action":293,"nopriv":297,"callback":159,"hasNonce":294,"hasCapCheck":294,"file":160,"line":298},true,152,{"action":300,"nopriv":294,"callback":159,"hasNonce":294,"hasCapCheck":294,"file":160,"line":301},"get_posts_by_term_or_no_term",154,{"action":300,"nopriv":297,"callback":159,"hasNonce":294,"hasCapCheck":294,"file":160,"line":303},155,{"action":305,"nopriv":294,"callback":159,"hasNonce":294,"hasCapCheck":294,"file":160,"line":306},"delete_posts_by_ids",157,{"action":308,"nopriv":294,"callback":159,"hasNonce":294,"hasCapCheck":294,"file":160,"line":309},"fix_ver_upgrade_ajax",209,{"action":308,"nopriv":297,"callback":159,"hasNonce":294,"hasCapCheck":294,"file":160,"line":311},210,{"action":313,"nopriv":294,"callback":159,"hasNonce":294,"hasCapCheck":294,"file":160,"line":314},"generate_default_tree",219,{"action":313,"nopriv":297,"callback":159,"hasNonce":294,"hasCapCheck":294,"file":160,"line":316},220,[],[319,323,327,331,335,339,343],{"tag":320,"callback":321,"file":160,"line":322},"tree","tree_shortcode",265,{"tag":324,"callback":325,"file":160,"line":326},"gt-tree","gt_tree_shortcode",266,{"tag":328,"callback":329,"file":160,"line":330},"gt-tree-list","gt_tree_list_shortcode",267,{"tag":332,"callback":333,"file":160,"line":334},"gt-member","gt_member_shortcode",269,{"tag":336,"callback":337,"file":160,"line":338},"gt-members","gt_members_shortcode",270,{"tag":340,"callback":341,"file":160,"line":342},"gt-user-registration","gt_user_registration_shortcode",272,{"tag":344,"callback":345,"file":160,"line":346},"gt-user-login","gt_user_login_shortcode",273,[],9,{"dangerousFunctions":350,"sqlUsage":351,"outputEscaping":353,"fileOperations":77,"externalRequests":77,"nonceChecks":141,"capabilityChecks":355,"bundledLibraries":428},[],{"prepared":77,"raw":77,"locations":352},[],{"escaped":354,"rawEcho":355,"locations":356},742,32,[357,361,363,365,367,369,371,373,376,378,381,383,385,387,390,392,394,396,399,401,403,405,407,409,411,413,415,418,420,422,424,427],{"file":358,"line":359,"context":360},"admin\\class-genealogical-tree-admin.php",914,"raw output",{"file":358,"line":362,"context":360},1899,{"file":358,"line":364,"context":360},1902,{"file":366,"line":76,"context":360},"admin\\inc\\class-genealogical-tree-admin-family-group.php",{"file":366,"line":368,"context":360},362,{"file":366,"line":370,"context":360},364,{"file":366,"line":372,"context":360},367,{"file":374,"line":375,"context":360},"admin\\partials\\genealogical-tree-admin-settings.php",11,{"file":374,"line":377,"context":360},12,{"file":379,"line":380,"context":360},"admin\\partials\\genealogical-tree-meta-member-info.php",198,{"file":379,"line":382,"context":360},657,{"file":379,"line":384,"context":360},700,{"file":379,"line":386,"context":360},944,{"file":388,"line":389,"context":360},"public\\class-genealogical-tree-public.php",773,{"file":388,"line":391,"context":360},1046,{"file":388,"line":393,"context":360},1052,{"file":388,"line":395,"context":360},1060,{"file":397,"line":398,"context":360},"public\\Traits\\traits-genealogical-tree-ind-style.php",52,{"file":397,"line":400,"context":360},228,{"file":397,"line":402,"context":360},282,{"file":397,"line":404,"context":360},289,{"file":397,"line":406,"context":360},298,{"file":397,"line":408,"context":360},305,{"file":397,"line":410,"context":360},335,{"file":397,"line":412,"context":360},344,{"file":397,"line":414,"context":360},365,{"file":416,"line":417,"context":360},"public\\Traits\\traits-genealogical-tree-single-member-info.php",469,{"file":416,"line":419,"context":360},1037,{"file":416,"line":421,"context":360},1075,{"file":416,"line":423,"context":360},1109,{"file":425,"line":426,"context":360},"public\\Traits\\traits-genealogical-tree-style-1.php",31,{"file":425,"line":426,"context":360},[429,432],{"name":430,"version":37,"knownCves":431},"Select2",[],{"name":433,"version":434,"knownCves":435},"Freemius","1.0",[],[437,455,465,477],{"entryPoint":438,"graph":439,"unsanitizedCount":77,"severity":454},"\u003Cgenealogical-tree-handel-collaboration> (admin\\genealogical-tree-handel-collaboration.php:0)",{"nodes":440,"edges":452},[441,447],{"id":442,"type":443,"label":444,"file":445,"line":446},"n0","source","$_POST (x9)","admin\\genealogical-tree-handel-collaboration.php",62,{"id":448,"type":449,"label":450,"file":445,"line":214,"wp_function":451},"n1","sink","echo() [XSS]","echo",[453],{"from":442,"to":448,"sanitized":297},"low",{"entryPoint":456,"graph":457,"unsanitizedCount":77,"severity":454},"\u003Cclass-genealogical-tree-admin-family-group> (admin\\inc\\class-genealogical-tree-admin-family-group.php:0)",{"nodes":458,"edges":463},[459,462],{"id":442,"type":443,"label":460,"file":366,"line":461},"$_POST",130,{"id":448,"type":449,"label":450,"file":366,"line":410,"wp_function":451},[464],{"from":442,"to":448,"sanitized":297},{"entryPoint":466,"graph":467,"unsanitizedCount":77,"severity":454},"process_registration_post (public\\class-genealogical-tree-public.php:908)",{"nodes":468,"edges":475},[469,471],{"id":442,"type":443,"label":460,"file":388,"line":470},911,{"id":448,"type":449,"label":472,"file":388,"line":473,"wp_function":474},"update_option() [Settings Manipulation]",918,"update_option",[476],{"from":442,"to":448,"sanitized":297},{"entryPoint":478,"graph":479,"unsanitizedCount":77,"severity":454},"\u003Cclass-genealogical-tree-public> (public\\class-genealogical-tree-public.php:0)",{"nodes":480,"edges":483},[481,482],{"id":442,"type":443,"label":460,"file":388,"line":470},{"id":448,"type":449,"label":472,"file":388,"line":473,"wp_function":474},[484],{"from":442,"to":448,"sanitized":297},{"summary":486,"deductions":487},"The genealogical-tree plugin v2.2.6 exhibits a mixed security posture. On the positive side, it demonstrates strong practices regarding SQL queries, exclusively using prepared statements, and a high percentage (96%) of properly escaped output, indicating a good understanding of preventing common web vulnerabilities.  The presence of numerous capability checks and nonces further suggests an effort to secure the application.\n\nHowever, significant concerns arise from the large attack surface exposed by unprotected AJAX handlers. With 9 out of 9 AJAX handlers lacking authentication checks, this presents a substantial risk for unauthorized actions or data manipulation. The plugin also has a known, unpatched medium severity vulnerability (CVE) related to Cross-Site Scripting, which is a serious concern that needs immediate attention.\n\nThe vulnerability history, specifically the single unpatched medium CVE, coupled with the unprotected AJAX handlers, suggests that while some security measures are in place, there are critical oversights that could be exploited. The plugin has demonstrated a past weakness in input sanitization for XSS, and the lack of authentication on AJAX endpoints creates new avenues for similar attacks.",[488,490,493],{"reason":489,"points":348},"Unprotected AJAX handlers",{"reason":491,"points":492},"Unpatched CVE (medium severity)",15,{"reason":494,"points":88},"Bundled Freemius v1.0 library","2026-03-16T19:28:04.434Z",{"wat":497,"direct":511},{"assetPaths":498,"generatorPatterns":504,"scriptPaths":505,"versionParams":506},[499,500,501,502,503],"\u002Fwp-content\u002Fplugins\u002Fgenealogical-tree\u002Ffreemius\u002Fstart.php","\u002Fwp-content\u002Fplugins\u002Fgenealogical-tree\u002Fadmin\u002Fcss\u002Fselect2.min.css","\u002Fwp-content\u002Fplugins\u002Fgenealogical-tree\u002Fadmin\u002Fcss\u002Fgenealogical-tree-admin.css","\u002Fwp-content\u002Fplugins\u002Fgenealogical-tree\u002Fadmin\u002Fjs\u002Fselect2.full.min.js","\u002Fwp-content\u002Fplugins\u002Fgenealogical-tree\u002Fadmin\u002Fjs\u002Fgenealogical-tree-admin.js",[],[503],[507,508,509,510],"genealogical-tree\u002Fadmin\u002Fcss\u002Fselect2.min.css?ver=","genealogical-tree\u002Fadmin\u002Fcss\u002Fgenealogical-tree-admin.css?ver=","genealogical-tree\u002Fadmin\u002Fjs\u002Fselect2.full.min.js?ver=","genealogical-tree\u002Fadmin\u002Fjs\u002Fgenealogical-tree-admin.js?ver=",{"cssClasses":512,"htmlComments":514,"htmlAttributes":515,"restEndpoints":517,"jsGlobals":519,"shortcodeOutput":521},[513],"genealogical-tree-admin",[],[516],"data-genealogical-tree-settings",[518],"\u002Fwp-json\u002Fgenealogical-tree",[520],"genealogical_tree_settings",[]]