Does Genesis Columns Advanced have any unpatched vulnerabilities?

No. All known vulnerabilities in Genesis Columns Advanced have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Genesis Columns Advanced compatible with WordPress 6.1.10?

According to WordPress.org data, Genesis Columns Advanced 2.0.5 has been tested up to WordPress 6.1.10. Check the plugin's changelog for the latest compatibility information.

How often is Genesis Columns Advanced updated?

Genesis Columns Advanced was last updated on Jun 23, 2024. Frequent updates are generally a positive security signal.

What is Genesis Columns Advanced's security score?

Genesis Columns Advanced has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Genesis Columns Advanced Security & Risk Analysis

wordpress.org/plugins/genesis-columns-advanced

Adds shortcodes to easily create up to 42 different columned layouts.

10K active installs v2.0.5 PHP + WP 3.6+ Updated Jun 23, 2024

columnsgenesisgenesis-frameworkgenesiswpshortcode

A · Safe

CVEs total1

Unpatched0

Last CVEDec 29, 2022

Plugin page Download

Safety Verdict

Is Genesis Columns Advanced Safe to Use in 2026?

Generally Safe

Score 92/100

Genesis Columns Advanced has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Dec 29, 2022Updated 1yr ago

Risk Assessment

The plugin exhibits a generally good security posture with no identified critical vulnerabilities in static analysis or taint flows. The complete absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests is commendable. The presence of capability checks and the use of prepared statements for SQL are strong security practices. However, a significant concern arises from the output escaping, where 31% of outputs are not properly escaped. This leaves room for potential cross-site scripting (XSS) vulnerabilities, especially given the plugin's vulnerability history which includes past XSS issues. The fact that there are no unpatched CVEs and the last vulnerability was in late 2022 is positive, but it doesn't negate the risk posed by the unescaped output in the current version.

Key Concerns

Significant percentage of unescaped output
Past XSS vulnerability history
No nonce checks found

Vulnerabilities

Genesis Columns Advanced Security Vulnerabilities

CVEs by Year

1 CVE in 2022

2022

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2022-4706medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Genesis Columns Advanced <= 2.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

Dec 29, 2022 Patched in 2.0.4 (390d)

Code Analysis

Analyzed Mar 16, 2026

Genesis Columns Advanced Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

11 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

TinyMCE

Output Escaping

69% escaped16 total outputs

Attack Surface

Genesis Columns Advanced Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 10

actionwp_loadedgenesis-columns-advanced.php:39

actionadmin_initgenesis-columns-advanced.php:52

actionadmin_enqueue_scriptsgenesis-columns-advanced.php:54

actionwp_enqueue_scriptsgenesis-columns-advanced.php:55

filterthe_contentgenesis-columns-advanced.php:59

filterplugin_row_metagenesis-columns-advanced.php:61

filtermce_external_languagesgenesis-columns-advanced.php:78

filtermce_external_pluginsgenesis-columns-advanced.php:79

filtermce_buttonsgenesis-columns-advanced.php:80

actionadmin_print_footer_scriptsgenesis-columns-advanced.php:81

Maintenance & Trust

Genesis Columns Advanced Maintenance & Trust

Maintenance Signals

WordPress version tested6.1.10

Last updatedJun 23, 2024

PHP min version

Downloads138K

Community Trust

Rating96/100

Number of ratings25

Active installs10K

Alternatives

Genesis Columns Advanced Alternatives

Genesis Easy Columns

genesis-easy-columns

Easily add Genesis column shortcodes to your WordPress editor.

2K No CVEs

Genesis Shortcodes

genesis-shortcodes

Packages several commonly used shortcodes for the Genesis Framework.

400 No CVEs

Genesis Simple Page Sections

genesis-simple-page-sections

Easily make full width page sections in Genesis. Must be using the Genesis theme framework.

300 No CVEs

Genesis Footer Links Nofollow

genesis-footer-links-nofollow

Plugin makes all or specified links in the footer rel=nofollow. Use of Genesis Theme Framework is required.

20 No CVEs

WP Shortcodes Plugin — Shortcodes Ultimate

shortcodes-ultimate

A comprehensive collection of visual components for your site

400K 32 CVEs

Developer Profile

Genesis Columns Advanced Developer Profile

Nick Diego

5 plugins · 95K total installs

trust score

Avg Security Score

97/100

Avg Patch Time

390 days

View full developer profile

Detection Fingerprints

How We Detect Genesis Columns Advanced

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/genesis-columns-advanced/tinymce/js/plugin.js/wp-content/plugins/genesis-columns-advanced/tinymce/js/popup.js/wp-content/plugins/genesis-columns-advanced/tinymce/css/popup.css/wp-content/plugins/genesis-columns-advanced/css/gca-column-styles.css

Script Paths

tinymce/js/plugin.jstinymce/js/popup.js

Version Parameters

genesis-columns-advanced/css/gca-column-styles.css?ver=genesis-columns-advanced/tinymce/js/popup.js?ver=genesis-columns-advanced/tinymce/css/popup.css?ver=

HTML / DOM Fingerprints

CSS Classes

gca-column-stylesgenesis-columns-advanced

Data Attributes

gca_plugin

JS Globals

gca_localize_scriptstinymce

Shortcode Output

[one-half][one-third][two-thirds][one-fourth]

FAQ