Does Team Up have any unpatched vulnerabilities?

No. All known vulnerabilities in Team Up have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Team Up compatible with WordPress 5.9.13?

According to WordPress.org data, Team Up 0.2.3.2 has been tested up to WordPress 5.9.13. Check the plugin's changelog for the latest compatibility information.

How often is Team Up updated?

Team Up was last updated on Sep 8, 2025. Frequent updates are generally a positive security signal.

What is Team Up's security score?

Team Up has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Team Up Security & Risk Analysis

wordpress.org/plugins/team-up

Manage Team Members with this easy-to-use plugin

10 active installs v0.2.3.2 PHP + WP 4.1+ Updated Sep 8, 2025

about-usmembersteamteam-membersteams

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Team Up Safe to Use in 2026?

Generally Safe

Score 100/100

Team Up has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 6mo ago

Risk Assessment

The "team-up" plugin version 0.2.3.2 exhibits a mixed security posture. On the positive side, it demonstrates good practices by using prepared statements for all SQL queries and avoiding dangerous functions, file operations, and external HTTP requests. The absence of known vulnerabilities in its history is also a positive indicator, suggesting a potentially stable codebase.

However, significant security concerns arise from the static analysis. A substantial portion of the plugin's attack surface is unprotected. Specifically, all 5 identified AJAX handlers lack authentication checks, creating a high risk for unauthorized actions. While the plugin has a single nonce check, it's insufficient to protect the numerous unprotected entry points. Furthermore, only 14% of output operations are properly escaped, which could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is directly reflected in the output without proper sanitization.

Despite a clean vulnerability history, the presence of numerous unprotected AJAX handlers and poor output escaping practices are critical weaknesses that could be exploited. The lack of capability checks on these handlers further exacerbates the risk. While the plugin has strengths in its SQL handling and avoidance of certain risky operations, the identified gaps in authentication and output sanitization represent the most immediate threats and require urgent attention.

Key Concerns

AJAX handlers without auth checks
Low percentage of properly escaped output
No capability checks on entry points

Vulnerabilities

None known

Team Up Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Team Up Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

104

17 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

14% escaped121 total outputs

Attack Surface

5 unprotected

Team Up Attack Surface

Entry Points8

Unprotected5

AJAX Handlers 5

authwp_ajax_modify_team_up_optionteam-up.php:105

authwp_ajax_toggle_team_up_optionteam-up.php:106

authwp_ajax_reset_team_member_orderteam-up.php:107

authwp_ajax_toggle_team_up_post_metateam-up.php:108

authwp_ajax_update_team_member_orderteam-up.php:109

Shortcodes 3

[team-up-group] inc\shortcodes\team-up-group.php:2

[team-up-member] inc\shortcodes\team-up-member.php:2

[team-up] inc\shortcodes\team-up.php:2

WordPress Hooks 35

filterbody_classinc\archive-team-up.php:9

filtergenesis_pre_get_option_site_layoutinc\archive-team-up.php:17

actionwp_headinc\archive-team-up.php:20

actionwp_footerinc\archive-team-up.php:48

actiongenesis_before_loopinc\archive-team-up.php:57

actiongenesis_loopinc\archive-team-up.php:68

actionwp_headinc\custom-archive-template.php:2

actionwp_footerinc\custom-archive-template.php:43

filterbody_classinc\shortcodes\team-up-group.php:17

actionget_footerinc\shortcodes\team-up-group.php:46

filterbody_classinc\shortcodes\team-up-member.php:7

actionget_footerinc\shortcodes\team-up-member.php:13

actionwp_footerinc\shortcodes\team-up.php:41

filterpost_classinc\single-team-up.php:2

actiongenesis_loopinc\single-team-up.php:11

actioninitteam-up.php:87

actionsave_postteam-up.php:88

actionadmin_initteam-up.php:89

actionadmin_menuteam-up.php:90

actionpre_get_poststeam-up.php:93

actionadd_meta_boxesteam-up.php:94

actionafter_setup_themeteam-up.php:95

actionafter_setup_themeteam-up.php:96

actionafter_setup_themeteam-up.php:97

actionsave_post_team-upteam-up.php:98

actionwp_enqueue_scriptsteam-up.php:99

actionadmin_enqueue_scriptsteam-up.php:100

actionmanage_team-up_posts_custom_columnteam-up.php:101

actionteam_up_archive_filterteam-up.php:103

filterviews_edit-team-upteam-up.php:111

filtersingle_templateteam-up.php:112

filterarchive_templateteam-up.php:113

filterpost_updated_messagesteam-up.php:114

filtermanage_team-up_posts_columnsteam-up.php:115

actionplugins_loadedteam-up.php:809

Maintenance & Trust

Team Up Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13

Last updatedSep 8, 2025

PHP min version

Downloads5K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Team Up Alternatives

JWD Teams

jwd-teams

Create unlimited Team Showcases and display them through a generated shortcode. Easily.

60 No CVEs

Ultimate Team Showcase – Advanced WordPress Team Members Plugin

ultimate-team-showcase

100

The ultimate team member WordPress plugin for showing team members profile in grid, slider, Isotope, and lightbox layouts easily using by shortcodes.

20 No CVEs

Kento Team

kento-team

Group or team members for your company.

10 No CVEs

TeamShowcase

teamshowcase

Team Showcase is the unique and ultimate solution to Show off your Team with Nice Admin Panel and eye catchy Themes.

10 No CVEs

VS Team – Team Showcase WordPress

team-vs

VS Team – Team Showcase WP Plugin developed with creative & modern web trends to provide the best. Its design with a fully responsive layout that …

0 No CVEs

Developer Profile

Team Up Developer Profile

Alex

6 plugins · 1K total installs

trust score

Avg Security Score

91/100

Avg Patch Time

394 days

View full developer profile

Detection Fingerprints

How We Detect Team Up

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/team-up/assets/css/team-up.css/wp-content/plugins/team-up/assets/js/team-up.js

Script Paths

/wp-content/plugins/team-up/assets/js/team-up.js

Version Parameters

team-up/assets/css/team-up.css?ver=team-up/assets/js/team-up.js?ver=

HTML / DOM Fingerprints

CSS Classes

team-upteam-up-gridteam-up-memberteam-up-overlayteam-up-filterteam-up-profteam-up-square

HTML Comments

<!-- <div class="team-up-overlay" style="background: url(

Data Attributes

data-targetdata-id

FAQ