WP-Safety

User Grid – Display WordPress Users in a Beautiful Grid Layout Security & Risk Analysis

wordpress.org/plugins/user-grid

Display WordPress users in grid, list, or slider layouts using Gutenberg blocks or shortcodes. Includes query builder and custom user fields.

0 active installs v1.0.4 PHP + WP 5.9+ Updated Unknown
staffteamuser-griduser-imageuser-list
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is User Grid – Display WordPress Users in a Beautiful Grid Layout Safe to Use in 2026?

Generally Safe

Score 100/100

User Grid – Display WordPress Users in a Beautiful Grid Layout has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs
Risk Assessment

The 'user-grid' plugin v1.0.4 exhibits a generally good security posture with some notable areas of concern. Its strengths lie in the complete absence of dangerous functions, use of prepared statements for all SQL queries, and a very high percentage of properly escaped output. The lack of any recorded historical vulnerabilities further suggests diligent security practices during development. However, the presence of two AJAX handlers without authentication checks represents a significant risk. These entry points could be exploited by authenticated users with lower privileges, or in some scenarios, unauthenticated users, to potentially trigger unintended actions within the plugin, depending on their functionality. While taint analysis and vulnerability history are clean, the unprotected AJAX handlers are a clear area that requires immediate attention to mitigate potential security exposures.

Key Concerns

  • AJAX handlers without authentication checks
Vulnerabilities
None known

User Grid – Display WordPress Users in a Beautiful Grid Layout Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

User Grid – Display WordPress Users in a Beautiful Grid Layout Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
6
183 escaped
Nonce Checks
3
Capability Checks
4
File Operations
2
External Requests
0
Bundled Libraries
0

Output Escaping

97% escaped189 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
save_block_css (app\Controllers\BlocksController.php:212)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
2 unprotected

User Grid – Display WordPress Users in a Beautiful Grid Layout Attack Surface

Entry Points8
Unprotected2

AJAX Handlers 5

authwp_ajax_usgr_user_biographyapp\Controllers\AjaxController.php:25
authwp_ajax_noprev_usgr_user_biographyapp\Controllers\AjaxController.php:26
authwp_ajax_usgr_block_css_saveapp\Controllers\BlocksController.php:33
authwp_ajax_usgr_block_css_get_postsapp\Controllers\BlocksController.php:34
authwp_ajax_usgr_block_css_appendedapp\Controllers\BlocksController.php:35

REST API Routes 2

POST/wp-json/usgr/v1usersapp\Api\GetUsersAPI.php:26
POST/wp-json/usgr/v1users-selectapp\Api\GetUsersAPI.php:38

Shortcodes 1

[user_grid] app\Controllers\ShortcodeController.php:30
WordPress Hooks 32
actionrest_api_initapp\Api\GetUsersAPI.php:17
actioninitapp\Blocks\UserBlock.php:23
actionenqueue_block_editor_assetsapp\Controllers\BlocksController.php:21
actionwp_enqueue_scriptsapp\Controllers\BlocksController.php:24
actionenqueue_block_editor_assetsapp\Controllers\BlocksController.php:25
filterblock_categories_allapp\Controllers\BlocksController.php:28
filterblock_categoriesapp\Controllers\BlocksController.php:30
actionwp_enqueue_scriptsapp\Controllers\BlocksController.php:38
actionadmin_enqueue_scriptsapp\Controllers\ScriptController.php:47
actioninitapp\Controllers\ScriptController.php:49
actionwp_enqueue_scriptsapp\Controllers\ScriptController.php:50
actioninitapp\Controllers\ShortcodeController.php:26
filteruse_block_editor_for_post_typeapp\Controllers\ShortcodeController.php:27
filteruse_block_editor_for_postapp\Controllers\ShortcodeController.php:28
actionadd_meta_boxesapp\Controllers\ShortcodeController.php:29
actionadmin_headapp\Controllers\ShortcodeController.php:31
filtermanage_user_grid_posts_columnsapp\Controllers\ShortcodeController.php:34
actionmanage_user_grid_posts_custom_columnapp\Controllers\ShortcodeController.php:35
filtermanage_edit-user_grid_sortable_columnsapp\Controllers\ShortcodeController.php:36
actionshow_user_profileapp\Hooks\ActionHooks.php:33
actionedit_user_profileapp\Hooks\ActionHooks.php:34
actionpersonal_options_updateapp\Hooks\ActionHooks.php:35
actionedit_user_profile_updateapp\Hooks\ActionHooks.php:36
actionpre_get_postsapp\Hooks\ActionHooks.php:39
filterbody_classapp\Hooks\FilterHooks.php:27
filteradmin_body_classapp\Hooks\FilterHooks.php:28
filterwp_kses_allowed_htmlapp\Hooks\FilterHooks.php:29
filterwp_calculate_image_srcsetapp\Hooks\FilterHooks.php:30
filterget_avatarapp\Hooks\FilterHooks.php:31
filterget_avatar_dataapp\Hooks\FilterHooks.php:32
actionplugins_loadedapp\usgr_UG.php:103
actioninitapp\usgr_UG.php:104
Maintenance & Trust

User Grid – Display WordPress Users in a Beautiful Grid Layout Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedUnknown
PHP min version
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

User Grid – Display WordPress Users in a Beautiful Grid Layout Alternatives

Team Members – Multi Language Supported Team Plugin

Team Members – Multi Language Supported Team Plugin

team-showcase-supreme

A
98

Multi-language supported Team Members - Team with Slide is the best plugins to display unlimited team in Carouse and Grid view.

7K 2 CVEs
Team Members Showcase

Team Members Showcase

wps-team

A
95

WordPress Team Members Showcase plugin – display staff or team profiles in grids, sliders, tables, or lists with filters, popups, drawers & panels.

4K 3 CVEs
Team Member Team Showcase

Team Member Team Showcase

team-builder-member-showcase

A
100

Display your team members with photos, bios, designations and social links in grid or slider layouts.

2K No CVEs
Team Showcase – Responsive Team Members Grid, Slider & Carousel Plugin

Team Showcase – Responsive Team Members Grid, Slider & Carousel Plugin

team-showcase

A
98

Create beautiful, responsive team member sections with grid, slider, list, popup, and carousel layouts. Perfect for companies, agencies, startups, sch …

2K 2 CVEs
Employee Spotlight – Team Member Showcase & Meet the Team Plugin

Employee Spotlight – Team Member Showcase & Meet the Team Plugin

employee-spotlight

A
95

Showcase your team with beautiful, responsive layouts: grid, carousel, cards, and more. Perfect for meet-the-team pages and employee highlights.

400 3 CVEs
Developer Profile

User Grid – Display WordPress Users in a Beautiful Grid Layout Developer Profile

DevofWP

3 plugins · 20 total installs

92
trust score
Avg Security Score
97/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect User Grid – Display WordPress Users in a Beautiful Grid Layout

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/user-grid/css/block-admin.css/wp-content/plugins/user-grid/blocks/main.css/wp-content/plugins/user-grid/blocks/main.js
Version Parameters
user-grid/css/block-admin.css?ver=user-grid/blocks/main.css?ver=user-grid/blocks/main.js?ver=

HTML / DOM Fingerprints

CSS Classes
usgr-block-editor
HTML Comments
<!-- wp:user-grid/user-block -->
Data Attributes
data-type="user-grid/user-block"
JS Globals
usgrParams
FAQ

Frequently Asked Questions about User Grid – Display WordPress Users in a Beautiful Grid Layout