WP-Safety

Easy Genesis (formerly Genesis Simple Customizations) Security & Risk Analysis

wordpress.org/plugins/genesis-simple-customizations

Easily make many customizations and setting changes to your Genesis-powered site, without having to write custom code.

300 active installs v2.3 PHP + WP 4.0+ Updated Apr 7, 2016
customizationcustomizegenesisgenesiswpstudiopress
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Easy Genesis (formerly Genesis Simple Customizations) Safe to Use in 2026?

Generally Safe

Score 85/100

Easy Genesis (formerly Genesis Simple Customizations) has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9yr ago
Risk Assessment

The genesis-simple-customizations plugin version 2.3 exhibits a mixed security posture. While it demonstrates good practices such as using prepared statements for all SQL queries and performing some nonce and capability checks, significant concerns arise from its attack surface. The analysis reveals two AJAX handlers, both lacking authentication checks, presenting a clear and direct vulnerability for attackers to exploit. This unprotected entry point is a critical weakness. The output escaping is also a concern, with only 30% of outputs properly escaped, increasing the risk of Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is not handled carefully within these unescaped outputs.

The plugin's vulnerability history is currently clean, with no recorded CVEs. This, combined with the absence of critical or high severity taint flows, suggests that past versions have been relatively secure or have not been targeted for complex exploits. However, the presence of unprotected AJAX handlers is a tangible risk that is not mitigated by the clean historical record alone. The plugin's strengths lie in its SQL hygiene and absence of malicious code signals. Nevertheless, the exposed AJAX endpoints and insufficient output escaping significantly overshadow these positives, demanding immediate attention.

Key Concerns

  • AJAX handlers without auth checks
  • Insufficient output escaping (30% proper)
Vulnerabilities
None known

Easy Genesis (formerly Genesis Simple Customizations) Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Easy Genesis (formerly Genesis Simple Customizations) Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
19
8 escaped
Nonce Checks
2
Capability Checks
1
File Operations
1
External Requests
0
Bundled Libraries
0

Output Escaping

30% escaped27 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
egwp_process_import_export (genesis-simple-customizations.php:568)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

Easy Genesis (formerly Genesis Simple Customizations) Attack Surface

Entry Points2
Unprotected2

AJAX Handlers 2

authwp_ajax_egwp_set_current_tabgenesis-simple-customizations.php:44
noprivwp_ajax_egwp_set_current_tabgenesis-simple-customizations.php:45
WordPress Hooks 65
actioninitgenesis-simple-customizations.php:22
actionadmin_menugenesis-simple-customizations.php:26
actionadmin_initgenesis-simple-customizations.php:30
actionadmin_initgenesis-simple-customizations.php:34
actionadmin_noticesgenesis-simple-customizations.php:38
filteresc_attrgenesis-simple-customizations.php:49
actiongenesis_initgenesis-simple-customizations.php:58
actiongenesis_metagenesis-simple-customizations.php:59
actionwp_headgenesis-simple-customizations.php:60
actiongenesis_before_postgenesis-simple-customizations.php:63
actiongenesis_before_entrygenesis-simple-customizations.php:64
actiongenesis_beforegenesis-simple-customizations.php:66
actionupdate_option_active_pluginsgenesis-simple-customizations.php:89
actionupdate_option_active_pluginsgenesis-simple-customizations.php:92
actionupdate_option_active_pluginsgenesis-simple-customizations.php:95
actionupdate_option_active_pluginsgenesis-simple-customizations.php:98
filteredit_post_linkgenesis-simple-customizations.php:645
actiongenesis_before_content_sidebar_wrapgenesis-simple-customizations.php:655
actiongenesis_before_content_sidebar_wrapgenesis-simple-customizations.php:658
actiongenesis_before_content_sidebar_wrapgenesis-simple-customizations.php:661
actiongenesis_before_loopgenesis-simple-customizations.php:664
actiongenesis_before_loopgenesis-simple-customizations.php:667
actiongenesis_before_loopgenesis-simple-customizations.php:670
actiongenesis_before_content_sidebar_wrapgenesis-simple-customizations.php:679
actiongenesis_before_content_sidebar_wrapgenesis-simple-customizations.php:682
actiongenesis_before_content_sidebar_wrapgenesis-simple-customizations.php:685
actiongenesis_before_loopgenesis-simple-customizations.php:688
actiongenesis_before_loopgenesis-simple-customizations.php:691
actiongenesis_before_loopgenesis-simple-customizations.php:694
filtergenesis_search_textgenesis-simple-customizations.php:699
filtergenesis_search_button_textgenesis-simple-customizations.php:702
actionwp_enqueue_scriptsgenesis-simple-customizations.php:705
filterthe_content_more_linkgenesis-simple-customizations.php:708
filterget_the_content_more_linkgenesis-simple-customizations.php:709
actiongenesis_after_entry_contentgenesis-simple-customizations.php:712
actiongenesis_after_post_contentgenesis-simple-customizations.php:713
filtergenesis_post_infogenesis-simple-customizations.php:716
filtergenesis_post_metagenesis-simple-customizations.php:719
filtergenesis_footer_creds_textgenesis-simple-customizations.php:725
filtergenesis_footer_outputgenesis-simple-customizations.php:726
filtergenesis_title_commentsgenesis-simple-customizations.php:729
filteradd_genesis_author_boxes_to_allgenesis-simple-customizations.php:732
filtergenesis_no_comments_textgenesis-simple-customizations.php:735
filtergenesis_comments_closed_textgenesis-simple-customizations.php:738
filtergenesis_title_pingsgenesis-simple-customizations.php:741
filtergenesis_author_box_gravatar_sizegenesis-simple-customizations.php:744
filtergenesis_comment_list_argsgenesis-simple-customizations.php:747
filtercomment_author_says_textgenesis-simple-customizations.php:750
filtergenesis_comment_awaiting_moderationgenesis-simple-customizations.php:753
filtergenesis_pre_load_favicongenesis-simple-customizations.php:759
filteravatar_defaultsgenesis-simple-customizations.php:762
filtergenesis_breadcrumb_argsgenesis-simple-customizations.php:766
filtergenesis_footer_backtotop_textgenesis-simple-customizations.php:778
actiongenesis_loopgenesis-simple-customizations.php:781
filtergenesis_nav_itemsgenesis-simple-customizations.php:784
filterwp_nav_menu_itemsgenesis-simple-customizations.php:785
filtergenesis_nav_itemsgenesis-simple-customizations.php:788
filterwp_nav_menu_itemsgenesis-simple-customizations.php:789
actiongenesis_entry_footergenesis-simple-customizations.php:792
filtergenesis_next_link_textgenesis-simple-customizations.php:816
filtergenesis_prev_link_textgenesis-simple-customizations.php:822
actiongenesis_after_headergenesis-simple-customizations.php:865
filterget_the_author_genesis_author_box_singlegenesis-simple-customizations.php:1039
filterget_the_author_genesis_author_box_archivegenesis-simple-customizations.php:1040
filterimage_size_names_choosegenesis-simple-customizations.php:1120
Maintenance & Trust

Easy Genesis (formerly Genesis Simple Customizations) Maintenance & Trust

Maintenance Signals

WordPress version tested4.4.34
Last updatedApr 7, 2016
PHP min version
Downloads22K

Community Trust

Rating100/100
Number of ratings6
Active installs300
Alternatives

Easy Genesis (formerly Genesis Simple Customizations) Alternatives

Easy Genesis – Pages Extension

Easy Genesis – Pages Extension

easy-genesis-pages

A
85

An extension for the Easy Genesis plugin that allows you to universally remove titles across your pages, and display the featured image (if there is o …

10 No CVEs
Genesis Simple Hero Image

Genesis Simple Hero Image

genesis-simple-hero-image

A
85

This plugin adds a hero image to your Genesis theme.

20 No CVEs
Genesis eNews Extended

Genesis eNews Extended

genesis-enews-extended

A
100

Creates a new widget to easily add mailing lists integration to a Genesis website. Works with FeedBurner, MailChimp, AWeber, FeedBlitz, ConvertKit and …

40K No CVEs
Genesis Simple Hooks

Genesis Simple Hooks

genesis-simple-hooks

A
100

This plugin creates a new Genesis settings page that allows you to insert code (HTML, Shortcodes, and PHP), and attach it to any of the 50+ action hoo …

20K No CVEs
Genesis Connect for WooCommerce

Genesis Connect for WooCommerce

genesis-connect-woocommerce

A
100

This plugin allows you to seamlessly integrate WooCommerce with the Genesis Framework and Genesis child themes.

10K No CVEs
Developer Profile

Easy Genesis (formerly Genesis Simple Customizations) Developer Profile

Doug Yuen

4 plugins · 810 total installs

84
trust score
Avg Security Score
85/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Easy Genesis (formerly Genesis Simple Customizations)

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/genesis-simple-customizations/includes/admin.css/wp-content/plugins/genesis-simple-customizations/includes/admin.js
Version Parameters
genesis-simple-customizations/includes/admin.css?ver=genesis-simple-customizations/includes/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
egwp-toolbar
HTML Comments
BASIC SECURITYBACK-END HOOKSADD MENU BUTTONS DURING ADMIN MENU RENDERINGREGISTER META SETTINGS FIELDS, SCRIPTS, CSS+16 more
JS Globals
egwp_version
FAQ

Frequently Asked Questions about Easy Genesis (formerly Genesis Simple Customizations)