Does ACF Code Generator have any unpatched vulnerabilities?

No. All known vulnerabilities in ACF Code Generator have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is ACF Code Generator compatible with WordPress 5.8.13?

According to WordPress.org data, ACF Code Generator 1.0.2 has been tested up to WordPress 5.8.13. Check the plugin's changelog for the latest compatibility information.

Is ACF Code Generator compatible with PHP 5.4+?

ACF Code Generator requires PHP 5.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is ACF Code Generator updated?

ACF Code Generator was last updated on Jul 21, 2021. Frequent updates are generally a positive security signal.

What is ACF Code Generator's security score?

ACF Code Generator has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

ACF Code Generator Security & Risk Analysis

wordpress.org/plugins/acf-code-generator

This plugin is intended to continue the development of the "ACF Theme Code" plugin as there are no updates for that plugin for the last 12 m …

100 active installs v1.0.2 PHP 5.4+ WP 4.0+ Updated Jul 21, 2021

acfacf-codeacf-code-generatoracf-get-fieldcode-generator

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is ACF Code Generator Safe to Use in 2026?

Generally Safe

Score 85/100

ACF Code Generator has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 4yr ago

Risk Assessment

The 'acf-code-generator' plugin v1.0.2 exhibits a concerning security posture despite having no recorded vulnerabilities and a seemingly small attack surface. The static analysis reveals significant weaknesses that warrant caution. A notable concern is the presence of the 'unserialize' function, a known vector for arbitrary code execution if user-controlled data is passed to it without proper sanitization. Coupled with this, the plugin performs SQL queries that are not prepared, increasing the risk of SQL injection vulnerabilities. Furthermore, a substantial number of output operations lack proper escaping, which could lead to cross-site scripting (XSS) vulnerabilities if the data originates from user input. The absence of nonce and capability checks across all entry points is a critical oversight, meaning any user, regardless of their role or intent, could potentially trigger sensitive functionality. While the lack of vulnerability history is positive, it does not negate the inherent risks identified in the code's construction. This plugin has potential for significant security flaws due to how it handles data and user input.

Key Concerns

Dangerous function 'unserialize' used
SQL queries not using prepared statements
Output escaping is not properly implemented
No nonce checks found
No capability checks found

Vulnerabilities

None known

ACF Code Generator Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

ACF Code Generator Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

238

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$this->settings = unserialize( $field_data_obj->meta_value );core\ACFCG_field.php:135

unserialize$this->settings = unserialize( $field_data_obj->post_content );core\ACFCG_field.php:163

unserialize$location_rule = unserialize( $query_result->meta_value );core\ACFCG_locations.php:135

SQL Query Safety

0% prepared2 total queries

Output Escaping

0% escaped238 total outputs

Attack Surface

ACF Code Generator Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

actionadmin_initcore\ACFCG_core.php:113

actionadd_meta_boxescore\ACFCG_core.php:114

actionadmin_enqueue_scriptscore\ACFCG_core.php:115

Maintenance & Trust

ACF Code Generator Maintenance & Trust

Maintenance Signals

WordPress version tested5.8.13

Last updatedJul 21, 2021

PHP min version5.4

Downloads4K

Community Trust

Rating100/100

Number of ratings3

Active installs100

Alternatives

ACF Code Generator Alternatives

Advanced Custom Fields (ACF®)

advanced-custom-fields

ACF helps customize WordPress with powerful, professional and intuitive fields. Proudly powering over 2 million sites, WordPress developers love ACF.

2.0M 9 CVEs

ACF Content Analysis for Yoast SEO

acf-content-analysis-for-yoast-seo

100

WordPress plugin that adds the content of all ACF fields to the Yoast SEO score analysis.

100K No CVEs

Advanced Custom Fields: Extended

acf-extended

All-in-one enhancement suite that improves WordPress & Advanced Custom Fields.

100K 4 CVEs

Advanced Custom Fields: Font Awesome Field

advanced-custom-fields-font-awesome

Adds a new 'Font Awesome Icon' field to the popular Advanced Custom Fields plugin.

100K 1 CVE

ACF Photo Gallery Field

navz-photo-gallery

A lightweight extension of Advanced Custom Field (ACF) that adds Photo Gallery field to any post/pages on your WordPress website.

60K 4 CVEs

Developer Profile

ACF Code Generator Developer Profile

Deepak anand

2 plugins · 7K total installs

trust score

Avg Security Score

88/100

Avg Patch Time

85 days

View full developer profile

Detection Fingerprints

How We Detect ACF Code Generator

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/acf-code-generator/assets/acfcg_style.css/wp-content/plugins/acf-code-generator/assets/prism.css/wp-content/plugins/acf-code-generator/assets/prism.js/wp-content/plugins/acf-code-generator/assets/acfcg_clipboard.min.js/wp-content/plugins/acf-code-generator/assets/acfcg_script.js

Script Paths

/wp-content/plugins/acf-code-generator/assets/acfcg_script.js

Version Parameters

acf-code-generator/assets/acfcg_style.css?ver=acf-code-generator/assets/prism.css?ver=acf-code-generator/assets/prism.js?ver=acf-code-generator/assets/acfcg_clipboard.min.js?ver=acf-code-generator/assets/acfcg_script.js?ver=

HTML / DOM Fingerprints

Data Attributes

data-field_id

JS Globals

ACFCG_PLUGIN_VERSION

FAQ