Does GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools have any unpatched vulnerabilities?

No. All known vulnerabilities in GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools compatible with WordPress 6.8.5?

According to WordPress.org data, GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools 4.3.3 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools Security & Risk Analysis

wordpress.org/plugins/getgenie

GPT-4o powered AI content writer with 37+ templates, chatbot, AI image, NLP keyword research, SEO analysis for WordPress, Gutenberg & Elementor.

70K active installs v4.3.3 PHP 7.4+ WP + Updated Mar 11, 2026

aiai-content-writergpt4okeyword-researchseo-plugin

A · Safe

CVEs total4

Unpatched0

Last CVEMar 12, 2026

Plugin page Download

Safety Verdict

Is GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools Safe to Use in 2026?

Generally Safe

Score 95/100

GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools has a strong security track record. Known vulnerabilities have been patched promptly.

4 known CVEsLast CVE: Mar 12, 2026Updated 23d ago

Risk Assessment

The static analysis of GetGenie v4.3.3 reveals a mixed security posture. On the positive side, the plugin demonstrates good practices by exclusively using prepared statements for SQL queries and properly escaping a high percentage of its outputs. It also implements a reasonable number of nonce and capability checks, indicating an awareness of common WordPress security mechanisms.

However, significant concerns arise from the plugin's attack surface. A substantial portion of its entry points, specifically 11 out of 16 (including all 11 REST API routes and 0 AJAX handlers without auth checks), lack proper permission callbacks. This exposes these endpoints to potential unauthorized access and manipulation. While no critical or high-severity taint flows were identified, the absence of taint analysis data (0 flows analyzed) limits the ability to fully assess the risk of data manipulation or injection through these exposed entry points. The presence of file operations and external HTTP requests, while not inherently insecure, warrants careful review in conjunction with the unprotected entry points.

The vulnerability history, with 4 past medium-severity CVEs, predominantly categorized as Authorization Bypass and Missing Authorization, strongly reinforces the concern about unprotected entry points. Although there are no currently unpatched vulnerabilities, the recurring nature of authorization-related issues suggests a persistent weakness in how access controls are implemented. The last reported vulnerability in 2026-03-12 (likely a typo and should be in the past) implies that these issues have been addressed, but the historical pattern is a significant flag. In conclusion, while GetGenie v4.3.3 has strengths in its handling of SQL and output escaping, the large number of unprotected REST API routes and AJAX handlers presents a critical risk that must be addressed to prevent potential authorization bypasses and unauthorized access.

Key Concerns

REST API routes without permission callbacks
AJAX handlers without auth checks
Past medium severity authorization bypass vulnerabilities
Past medium severity missing authorization vulnerabilities

Vulnerabilities

GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools Security Vulnerabilities

CVEs by Year

4 CVEs in 2026

2026

Patched Has unpatched

Severity Breakdown

Medium

4 total CVEs

CVE-2026-2257medium · 6.4Authorization Bypass Through User-Controlled Key

GetGenie <= 4.3.2 - Insecure Direct Object Reference to Authenticated (Author+) Stored Cross-Site Scripting via REST API

Mar 12, 2026 Patched in 4.3.3 (1d)

CVE-2026-2879medium · 5.4Authorization Bypass Through User-Controlled Key

GetGenie <= 4.3.2 - Insecure Direct Object Reference to Authenticated (Author+) Arbitrary Post Overwrite/Deletion

Mar 12, 2026 Patched in 4.3.3 (1d)

CVE-2026-1003medium · 4.3Missing Authorization

GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools <= 4.3.0 - Missing Authorization to Authenticated (Author+) Arbitrary Post Deletion

Jan 15, 2026 Patched in 4.3.1 (1d)

CVE-2026-24356medium · 4.3Missing Authorization

GetGenie <= 4.3.0 - Missing Authorization

Jan 5, 2026 Patched in 4.3.1 (30d)

Code Analysis

Analyzed Mar 16, 2026

GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

73 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

94% escaped78 total outputs

Attack Surface

11 unprotected

GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools Attack Surface

Entry Points16

Unprotected11

AJAX Handlers 5

authwp_ajax_lease_auth_tokenapp\Api\LeaseToken.php:11

noprivwp_ajax_lease_auth_tokenapp\Api\LeaseToken.php:12

authwp_ajax_genie-noticesapp\ProLabel\GenieNotice.php:472

authwp_ajax_getgenie_rating_never_show_messageapp\ProLabel\GenieRating.php:153

authwp_ajax_getgenie_rating_ask_me_later_messageapp\ProLabel\GenieRating.php:154

REST API Routes 11

POST/wp-json/getgenie/v1admin-configapp\Api\AdminConfig.php:23

GET/wp-json/getgenie/v1admin-configapp\Api\AdminConfig.php:31

GET/wp-json/getgenie/v1feedbackapp\Api\Feedback.php:15

GET/wp-json/getgenie/v1/geniechat(?P<action>[\w-]+)app\Api\GetGenieChat.php:15

GET/wp-json/getgenie/v1/history(?P<action>[\w-]+)app\Api\History.php:16

GET/wp-json/getgenie/v1/license(?P<action>[\w-]+)app\Api\License.php:15

GET/wp-json/getgenie/v1/parser(?P<param1>[\w-]+)/(?P<param2>[\w-]+)app\Api\Parser.php:15

GET/wp-json/getgenie/v1/store(?P<post_id>[\d]+)/(?P<key>[\w-]+)app\Api\Store.php:15

GET/wp-json/getgenie/v1subscription_upgrade_urlsapp\Api\SubscriptionUpgradeUrl.php:15

GET/wp-json/getgenie/v1genie-image/uploadapp\Api\UploadImage.php:14

GET/wp-json/getgenie/v1limit_usage_statsapp\Api\UsageLimitStats.php:15

WordPress Hooks 44

actionrest_api_initapp\Api\AdminConfig.php:22

actionrest_api_initapp\Api\AdminConfig.php:30

actionrest_api_initapp\Api\Feedback.php:14

actionrest_api_initapp\Api\GetGenieChat.php:14

actionrest_api_initapp\Api\History.php:14

actionrest_api_initapp\Api\License.php:14

actionrest_api_initapp\Api\Parser.php:14

actionrest_api_initapp\Api\Store.php:14

actionrest_api_initapp\Api\SubscriptionUpgradeUrl.php:14

actionrest_api_initapp\Api\UploadImage.php:13

actionrest_api_initapp\Api\UsageLimitStats.php:14

actionadmin_headapp\ProLabel\GenieBanner.php:34

actioncurrent_screenapp\ProLabel\GenieNotice.php:328

actionadmin_noticesapp\ProLabel\GenieNotice.php:330

actionadmin_noticesapp\ProLabel\GenieNotice.php:339

actionadmin_headapp\ProLabel\GenieNotice.php:473

actionadmin_headapp\ProLabel\GenieRating.php:175

actionadmin_footerapp\ProLabel\GenieRating.php:198

actionwp_dashboard_setupapp\ProLabel\GenieStories.php:52

actionwp_loadedapp\ProLabel\ProLabelInit.php:15

actioninitapp\Providers\EnqueueProvider.php:10

actionadmin_enqueue_scriptsapp\Providers\EnqueueProvider.php:15

actionenqueue_block_editor_assetsapp\Providers\EnqueueProvider.php:17

actionadmin_enqueue_scriptsapp\Providers\EnqueueProvider.php:18

actionadmin_enqueue_scriptsapp\Providers\EnqueueProvider.php:20

actionelementor/editor/after_enqueue_scriptsapp\Providers\EnqueueProvider.php:21

actionwp_enqueue_scriptsapp\Providers\EnqueueProvider.php:22

actionelementor/editor/after_enqueue_scriptsapp\Providers\EnqueueProvider.php:23

actionadmin_print_scripts-post-new.phpapp\Providers\EnqueueProvider.php:25

actionadmin_print_scripts-post.phpapp\Providers\EnqueueProvider.php:26

actioncurrent_screenapp\Providers\EnqueueProvider.php:27

actionmedia_buttonsapp\Providers\EnqueueProvider.php:43

actionadmin_bar_menuapp\Providers\SideMenuProvider.php:12

actionadmin_menuapp\Providers\SideMenuProvider.php:42

actioninitapp\Services\GetGenieChat\Cpt.php:13

actioninitapp\Services\History\Cpt.php:13

actionactivated_plugingetgenie.php:53

filterfluent_crm_asset_listed_slugsgetgenie.php:55

actionelementor/editor/after_enqueue_scriptsgetgenie.php:142

actionelementor/editor/after_enqueue_scriptsgetgenie.php:143

actionadmin_headgetgenie.php:144

actionwp_enqueue_scriptsgetgenie.php:146

actionwp_enqueue_scriptsgetgenie.php:150

actioninitgetgenie.php:314

Maintenance & Trust

GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedMar 11, 2026

PHP min version7.4

Downloads732K

Community Trust

Rating96/100

Number of ratings117

Active installs70K

Alternatives

GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools Alternatives

Emplibot – AI Content Writer with Keyword Research, Infographics, and Linking | SEO Optimized | Fully Automated

emplibot

Automated keyword research, automated blogging, with internal and external links, engaging infographics, unique featured images, and more.

100 1 CVE

Ladder SEO

ladder-seo

100

Ladder SEO is a powerful all-in-one SEO automation plugin designed to simplify search engine optimization for WordPress.

0 No CVEs

Easy GPT for WP | AI Content Generator

easy-gpt-for-wp

100

Generate SEO content for WordPress with GPT models from OpenAI, DeepSeek and Gemini. Includes auto updates, translations, moderation, Yoast & WooC …

90 No CVEs

Antimanual – Automate manual tasks with 24/7 AI Agent (Article Writer, AI Chatbot, Auto Posting, Auto Reply, FAQ Generator, Bulk Rewriter, Docs Generator etc)

antimanual

100

AI-powered WordPress plugin with smart chatbot, auto-posting, docs generator, bulk rewrite, FAQ generator, forum AI, and search. OpenAI & Gemini.

80 No CVEs

RepublishAI – WordPress SEO Plugin that Grows Organic Traffic on Autopilot

ai-agent-for-seo-content-republish-ai

100

The WordPress SEO plugin that grows organic traffic on autopilot. AI Agents research, write, and publish SEO content automatically.

40 No CVEs

Developer Profile

GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools Developer Profile

Roxnor

15 plugins · 3.0M total installs

trust score

Avg Security Score

91/100

Avg Patch Time

118 days

View full developer profile

Detection Fingerprints

How We Detect GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/getgenie/assets/dist/admin/js/elementor.js

Version Parameters

getgenie/assets/dist/admin/js/elementor.js?ver=

HTML / DOM Fingerprints

Data Attributes

data-getgenie-editor-panel-script

JS Globals

getgenie_blogwizard_store_objectsgetgenie_templatesgenei_editor_scriptgenie_header_script_datablog_wizard_datablogwizard_objects+2 more

REST Endpoints

/wp-json/getgenie/v1/geniechat//wp-json/getgenie/v1/parser//wp-json/getgenie/v1/limit_usage_stats//wp-json/getgenie/v1/store//wp-json/getgenie/v1/license//wp-json/getgenie/v1/feedback//wp-json/getgenie/v1/history//wp-json/v1/webview/

FAQ