WP-Safety

Our Team Members – Team Members WordPress Plugin Security & Risk Analysis

wordpress.org/plugins/our-team-members

Our Team Members WordPress Plugin can show a nice team members grid with their names, photos, bios, titles, abilities, social media icons, and more.

600 active installs v2.4 PHP + WP 5.0+ Updated Mar 13, 2026
our-teamteam-member-showcaseteam-member-wordpress-pluginteam-membersteam-plugin-wordpress
99
A · Safe
CVEs total1
Unpatched0
Last CVEMar 27, 2025
Plugin page Download
Safety Verdict

Is Our Team Members – Team Members WordPress Plugin Safe to Use in 2026?

Generally Safe

Score 99/100

Our Team Members – Team Members WordPress Plugin has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Mar 27, 2025Updated 22d ago
Risk Assessment

The "our-team-members" v2.4 plugin exhibits a mixed security posture. On the positive side, all SQL queries are properly prepared, and there are no identified taint flows or file operations. The plugin also implements nonce checks and uses the prepared statement method for its SQL queries, which are good security practices. However, several areas raise significant concerns. The presence of one AJAX handler without authentication checks, coupled with a complete lack of capability checks for any entry points, creates a substantial attack surface vulnerable to unauthorized access. Furthermore, a concerning 31% of output escaping is not properly handled, indicating a potential for cross-site scripting (XSS) vulnerabilities. The plugin's vulnerability history, while currently showing no unpatched CVEs, does include a past medium-severity vulnerability related to missing authorization, reinforcing the identified weakness in its authorization checks. The use of `unserialize` is also a red flag, as it can be dangerous if not handled with extreme care and sanitization. While the lack of critical or high-severity taint flows and unpatched CVEs is encouraging, the combination of an exposed AJAX handler, absent capability checks, and insufficient output escaping presents a notable risk.

Key Concerns

  • AJAX handler without auth checks
  • No capability checks on entry points
  • 31% of outputs not properly escaped
  • Use of unserialize function
  • Past medium severity vulnerability (Missing Auth)
Vulnerabilities
1

Our Team Members – Team Members WordPress Plugin Security Vulnerabilities

CVEs by Year

1 CVE in 2025
2025
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2025-30802medium · 4.3Missing Authorization

Our Team Members <= 2.2 - Missing Authorization to Authenticated (Subscriber+) Information Disclosure

Mar 27, 2025 Patched in 2.3 (8d)
Code Analysis
Analyzed Mar 16, 2026

Our Team Members – Team Members WordPress Plugin Code Analysis

Dangerous Functions
1
Raw SQL Queries
0
0 prepared
Unescaped Output
166
76 escaped
Nonce Checks
3
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
2

Dangerous Functions Found

unserializereturn unserialize ( $string );admin\framework\functions\helpers.php:89

Bundled Libraries

jQuerySelect2

Output Escaping

31% escaped242 total outputs
Attack Surface
1 unprotected

Our Team Members – Team Members WordPress Plugin Attack Surface

Entry Points3
Unprotected1

AJAX Handlers 1

authwp_ajax_wpsf-get-iconsadmin\framework\functions\actions.php:43

Shortcodes 2

[wpb-our-team-members] inc\wpb_shortcode.php:14
[wpb-otm-shortcode] inc\wpb_shortcode.php:74
WordPress Hooks 33
actionadmin_footeradmin\framework\functions\actions.php:62
actioncustomize_controls_print_footer_scriptsadmin\framework\functions\actions.php:63
actionadmin_enqueue_scriptsadmin\framework\functions\enqueue.php:60
filterwpsf_sanitize_textadmin\framework\functions\sanitize.php:17
filterwpsf_sanitize_textareaadmin\framework\functions\sanitize.php:33
filterwpsf_sanitize_checkboxadmin\framework\functions\sanitize.php:57
filterwpsf_sanitize_switcheradmin\framework\functions\sanitize.php:58
filterwpsf_sanitize_image_selectadmin\framework\functions\sanitize.php:85
filterwpsf_sanitize_groupadmin\framework\functions\sanitize.php:101
filterwpsf_sanitize_titleadmin\framework\functions\sanitize.php:116
filterwpsf_sanitize_cleanadmin\framework\functions\sanitize.php:131
filterwpsf_validate_emailadmin\framework\functions\validate.php:31
filterwpsf_validate_numericadmin\framework\functions\validate.php:48
filterwpsf_validate_requiredadmin\framework\functions\validate.php:65
actioninitadmin\framework\wpsf-framework.php:73
actionelementor/initinc\map.php:236
actionelementor/widgets/widgets_registeredinc\map.php:237
actionelementor/frontend/after_register_scriptsinc\map.php:238
actionelementor/frontend/after_register_stylesinc\map.php:239
actionelementor/frontend/after_enqueue_stylesinc\map.php:240
actioninitinc\wpb_cpt.php:12
actioninitinc\wpb_cpt.php:84
actioninitinc\wpb_cpt.php:188
actionadmin_footerinc\wpb_cpt.php:228
filtermanage_edit-wpb_team_member_category_columnsinc\wpb_cpt.php:249
filtermanage_wpb_team_member_category_custom_columninc\wpb_cpt.php:250
filtermanage_edit-wpb_otm_shortcode_columnsinc\wpb_functions.php:137
actionmanage_wpb_otm_shortcode_posts_custom_columninc\wpb_functions.php:138
filterposts_orderbyinc\wpb_functions.php:192
actionwp_enqueue_scriptsinc\wpb_scripts.php:24
actioninitmain.php:75
actionplugins_loadedmain.php:77
actionwpsf_framework_loadedmain.php:79
Maintenance & Trust

Our Team Members – Team Members WordPress Plugin Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 13, 2026
PHP min version
Downloads15K

Community Trust

Rating86/100
Number of ratings3
Active installs600
Alternatives

Our Team Members – Team Members WordPress Plugin Alternatives

Kento Team

Kento Team

kento-team

A
85

Group or team members for your company.

10 No CVEs
Team Builder – Team Member Showcase With Grid and slider, Compatible With Elementor, Gutenberg

Team Builder – Team Member Showcase With Grid and slider, Compatible With Elementor, Gutenberg

team-builder

A
100

Team Plugin comes with 6 Design Layout with Add unlimited Team Members. Grid Team and slider layout with Drag & Drop Builder, Easily add and delet &hellip;

7K No CVEs
Team Members – Multi Language Supported Team Plugin

Team Members – Multi Language Supported Team Plugin

team-showcase-supreme

A
98

Multi-language supported Team Members - Team with Slide is the best plugins to display unlimited team in Carouse and Grid view.

7K 2 CVEs
JWD Teams

JWD Teams

jwd-teams

A
85

Create unlimited Team Showcases and display them through a generated shortcode. Easily.

60 No CVEs
RWC Team Members – Make your team shine

RWC Team Members – Make your team shine

rwc-team-members

A
100

Showcase your team's talent and expertise with ease. Grids, slider, pop-up and filters - all in one shortcode. Get started today!

30 No CVEs
Developer Profile

Our Team Members – Team Members WordPress Plugin Developer Profile

WPBean

25 plugins · 40K total installs

91
trust score
Avg Security Score
96/100
Avg Patch Time
20 days
View full developer profile
Detection Fingerprints

How We Detect Our Team Members – Team Members WordPress Plugin

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/our-team-members/assets/css/style.css/wp-content/plugins/our-team-members/assets/css/responsive.css/wp-content/plugins/our-team-members/assets/js/main.js/wp-content/plugins/our-team-members/assets/js/isotope.pkgd.min.js/wp-content/plugins/our-team-members/assets/js/wow.min.js
Script Paths
/wp-content/plugins/our-team-members/assets/js/main.js/wp-content/plugins/our-team-members/assets/js/isotope.pkgd.min.js/wp-content/plugins/our-team-members/assets/js/wow.min.js
Version Parameters
our-team-members/assets/css/style.css?ver=our-team-members/assets/css/responsive.css?ver=our-team-members/assets/js/main.js?ver=our-team-members/assets/js/isotope.pkgd.min.js?ver=our-team-members/assets/js/wow.min.js?ver=

HTML / DOM Fingerprints

CSS Classes
wpb-otm-single-teamwpb-otm-contentwpb-otm-social-iconwpb-otm-member-infowpb-otm-profile-socialwpb-otm-team-wrapwpb-otm-single-wrapwpb-otm-thumbnail+3 more
HTML Comments
<!-- Our Team Members Plugin --><!-- Start Our Team Members --><!-- End Our Team Members -->
Data Attributes
data-wow-durationdata-wow-delay
JS Globals
WPB_OTMwpb_otm_data
Shortcode Output
[our_team_member][our_team_members]
FAQ

Frequently Asked Questions about Our Team Members – Team Members WordPress Plugin