Does AddFunc WYSIWYG Helper have any unpatched vulnerabilities?

No. All known vulnerabilities in AddFunc WYSIWYG Helper have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is AddFunc WYSIWYG Helper compatible with WordPress 5.0.25?

According to WordPress.org data, AddFunc WYSIWYG Helper 5.0 has been tested up to WordPress 5.0.25. Check the plugin's changelog for the latest compatibility information.

How often is AddFunc WYSIWYG Helper updated?

AddFunc WYSIWYG Helper was last updated on Dec 11, 2018. Frequent updates are generally a positive security signal.

What is AddFunc WYSIWYG Helper's security score?

AddFunc WYSIWYG Helper has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

AddFunc WYSIWYG Helper Security & Risk Analysis

wordpress.org/plugins/addfunc-wysiwyg-helper

Highlights prominent HTML elements in the WYSIWYG editor, to help Editors see what they're editing. Sort of a WYSIWYM (the M is for mean).

100 active installs v5.0 PHP + WP 3.0.1+ Updated Dec 11, 2018

element-highlightertinymcewysiwygwysiwym

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is AddFunc WYSIWYG Helper Safe to Use in 2026?

Generally Safe

Score 85/100

AddFunc WYSIWYG Helper has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago

Risk Assessment

Based on the static analysis and vulnerability history, the 'addfunc-wysiwyg-helper' plugin v5.0 appears to have a strong security posture. The absence of identifiable entry points like AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the plugin's attack surface. Furthermore, the code analysis reveals no dangerous functions, all SQL queries utilize prepared statements, and output is properly escaped. The presence of capability checks is a positive indicator of secure coding practices.

The taint analysis shows no identified flows with unsanitized paths, indicating no readily apparent vulnerabilities related to data handling. The plugin also has no recorded vulnerabilities, including critical or high severity ones, and no history of unpatched CVEs. This suggests a well-maintained and secure codebase over time.

In conclusion, the 'addfunc-wysiwyg-helper' plugin v5.0 demonstrates excellent security practices. Its minimal attack surface, secure coding patterns for data handling and output, and lack of historical vulnerabilities make it a low-risk plugin. There are no specific security concerns to deduct points for based on the provided data.

Vulnerabilities

None known

AddFunc WYSIWYG Helper Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

AddFunc WYSIWYG Helper Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

1 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped1 total outputs

Attack Surface

AddFunc WYSIWYG Helper Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 8

actioninitaddfunc-wysiwyg-helper.php:26

filtermce_cssaddfunc-wysiwyg-helper.php:43

actioninitaddfunc-wysiwyg-helper.php:53

actionload-post.phpaddfunc-wysiwyg-helper.php:125

actionshow_user_profileaddfunc-wysiwyg-helper.php:136

actionedit_user_profileaddfunc-wysiwyg-helper.php:137

actionpersonal_options_updateaddfunc-wysiwyg-helper.php:152

actionedit_user_profile_updateaddfunc-wysiwyg-helper.php:153

Maintenance & Trust

AddFunc WYSIWYG Helper Maintenance & Trust

Maintenance Signals

WordPress version tested5.0.25

Last updatedDec 11, 2018

PHP min version

Downloads12K

Community Trust

Rating100/100

Number of ratings2

Active installs100

Alternatives

AddFunc WYSIWYG Helper Alternatives

Average WYSIWYG Helper

average-wysiwyg-helper

Highlights prominent HTML elements in the WYSIWYG editor, to help Editors see what they're editing. Sort of a WYSIWYM (the M is for mean).

20 No CVEs

tinyWYM Editor

tinywym-editor

Convert WordPress's WYSIWYG editor into a WYSIWYM editor. Add and edit any HTML tag and attribute from the visual editor.

1K No CVEs

RDFaCE

rdface

Enables semantic content authoring based on RDFa and Microdata (Schema.org).

10 No CVEs

Black Studio TinyMCE Widget

black-studio-tinymce-widget

100

The visual editor widget for WordPress.

200K No CVEs

Visual Term Description Editor

visual-term-description-editor

Replaces the plain-text category and tag description editor with a visual editor.

20K No CVEs

Developer Profile

AddFunc WYSIWYG Helper Developer Profile

AddFunc

3 plugins · 20K total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect AddFunc WYSIWYG Helper

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/addfunc-wysiwyg-helper/wysiwym.css

HTML / DOM Fingerprints

Data Attributes

id="aFWYSIWYM"name="aFWYSIWYM"

FAQ