WP-Safety

CB Default Content Security & Risk Analysis

wordpress.org/plugins/cb-default-content

Easy to Change or sat Default Title and Content in post editor

10 active installs v1.0 PHP + WP 3.0.1+ Updated Dec 12, 2018
change-default-contentchange-default-titledefault-contentsat-default-content
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is CB Default Content Safe to Use in 2026?

Generally Safe

Score 85/100

CB Default Content has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago
Risk Assessment

The 'cb-default-content' plugin version 1.0 exhibits a concerning security posture primarily due to a complete lack of output escaping. While the static analysis reveals no detected dangerous functions, SQL queries utilize prepared statements, and there are no identified vulnerabilities in its history, the absence of output escaping represents a significant risk. Any data outputted by this plugin that originates from user input or other untrusted sources could be susceptible to Cross-Site Scripting (XSS) attacks. The plugin also scores poorly on capability and nonce checks, which are critical for securing WordPress functionalities. Despite a clean vulnerability history and a seemingly small attack surface, the critical flaw in output sanitization makes it a potential vector for attacks if any of its functions handle user-supplied data without proper validation and escaping.

Key Concerns

  • Output not properly escaped
  • No capability checks
  • No nonce checks
Vulnerabilities
None known

CB Default Content Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

CB Default Content Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
2
0 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

0% escaped2 total outputs
Attack Surface

CB Default Content Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 4
actionadmin_initindex.php:27
actionadmin_menuindex.php:57
filterdefault_titleindex.php:79
filterdefault_contentindex.php:87
Maintenance & Trust

CB Default Content Maintenance & Trust

Maintenance Signals

WordPress version tested5.0.25
Last updatedDec 12, 2018
PHP min version
Downloads2K

Community Trust

Rating0/100
Number of ratings0
Active installs10
Alternatives

CB Default Content Alternatives

Default Post Content

Default Post Content

default-post-content

A
85

Tired of typing in the same default content at the end of your post? Use the same custom fields for each new post? Make your WordPress install do it …

70 No CVEs
Default Content

Default Content

default-content

A
100

Inserts customizable default HTML content into the WordPress editor when creating a new post or page.

20 No CVEs
Simple blueprint installer

Simple blueprint installer

simple-blueprint-installer

A
85

Install this as your first plugin and make easy and fast the first setup of your WordPress.

20 No CVEs
Developer Profile

CB Default Content Developer Profile

Md Abul Bashar

33 plugins · 1K total installs

91
trust score
Avg Security Score
95/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect CB Default Content

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes
widefatlarge-textcode
Data Attributes
name="cb_default_title_id"name="cb_default_content_id"
Shortcode Output
<input type="text" class="widefat" name="cb_default_title_id" value="
FAQ

Frequently Asked Questions about CB Default Content