Does Code Block – Embed Code with One-Click Copy Feature have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Code Block – Embed Code with One-Click Copy Feature compatible with WordPress 6.9.4?

According to WordPress.org data, Code Block – Embed Code with One-Click Copy Feature 1.0.3 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Code Block – Embed Code with One-Click Copy Feature compatible with PHP 7.1+?

Code Block – Embed Code with One-Click Copy Feature requires PHP 7.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

What is Code Block – Embed Code with One-Click Copy Feature's security score?

Code Block – Embed Code with One-Click Copy Feature has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Code Block – Embed Code with One-Click Copy Feature Security & Risk Analysis

wordpress.org/plugins/code-snippets-block

Display beautifully highlighted code snippets on your WordPress site with a one-click copy feature. Fully responsive and Gutenberg compatible.

200 active installs v1.0.3 PHP 7.1+ WP 6.5+ Updated Apr 13, 2026

blockcodecode-highlightgutenberg-blocksnippets

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Code Block – Embed Code with One-Click Copy Feature Safe to Use in 2026?

Generally Safe

Score 100/100

Code Block – Embed Code with One-Click Copy Feature has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The "code-snippets-block" plugin v1.0.3 exhibits a strong security posture based on the provided static analysis. There are no detected dangerous functions, all SQL queries utilize prepared statements, and all output is properly escaped. The absence of file operations, external HTTP requests, and taint flows further reinforces this positive assessment. The plugin also has a clean vulnerability history with no recorded CVEs, indicating consistent secure development practices.

However, a notable concern arises from the presence of one shortcode with no explicit capability checks or nonce validation. While the attack surface is small, this single entry point could potentially be exploited if it interacts with sensitive data or functionality without proper authorization. The lack of reported vulnerabilities in its history is a good sign, but it doesn't negate the potential risk associated with an unprotected shortcode.

In conclusion, the plugin demonstrates excellent adherence to secure coding standards in most areas. The primary weakness lies in the potential for an unprotected shortcode. While the overall risk is currently low due to the limited attack surface and lack of historical vulnerabilities, addressing the security of this shortcode would further solidify its secure standing.

Key Concerns

Shortcode without capability checks

Vulnerabilities

None known

Code Block – Embed Code with One-Click Copy Feature Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Code Block – Embed Code with One-Click Copy Feature Release Timeline

v1.0.3Current

v1.0.2

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

Code Block – Embed Code with One-Click Copy Feature Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

6 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Freemius

Output Escaping

100% escaped6 total outputs

Attack Surface

Code Block – Embed Code with One-Click Copy Feature Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[csb_code] inc\class_bchPlugin.php:12

WordPress Hooks 10

actioninitbch_block.php:9

actionenqueue_block_editor_assetsbch_block.php:10

actionenqueue_block_assetsbch_block.php:11

actioninitinc\class_bchAdmin.php:8

actionadmin_menuinc\class_bchAdmin.php:9

filtermanage_bch_block_posts_columnsinc\class_bchAdmin.php:10

actionmanage_bch_block_posts_custom_columninc\class_bchAdmin.php:11

actionplugins_loadedinc\class_bchPlugin.php:9

actionenqueue_block_assetsinc\class_bchPlugin.php:10

actionadmin_enqueue_scriptsinc\class_bchPlugin.php:11

Maintenance & Trust

Code Block – Embed Code with One-Click Copy Feature Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedApr 13, 2026

PHP min version7.1

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs200

Alternatives

Code Block – Embed Code with One-Click Copy Feature Alternatives

Youbou Code Block

youbou-code-block

Code block with syntax highlighting for gutenberg editor.

0 No CVEs

Latest Post Shortcode

latest-post-shortcode

The "Latest Post Shortcode" allows you to create a dynamic content selection from your posts by combining, limiting, and filtering what you need.

4K 3 CVEs

Syntax-highlighting Code Block (with Server-side Rendering)

syntax-highlighting-code-block

100

Extending the Code block with syntax highlighting rendered on the server, thus being AMP-compatible and having faster frontend performance.

1K No CVEs

Code Manager

code-manager

100

Write, test and deploy PHP, JavaScript, CSS and HTML code blocks from the WordPress dashboard.

500 No CVEs

QR Code Generator & Scanner – Dynamic QR Codes for WordPress

zolo-qr-code

100

The QR Code block helps you create custom QR codes directly on your WordPress website and quickly access links, promotions, or contact info.

70 No CVEs

Developer Profile

Code Block – Embed Code with One-Click Copy Feature Developer Profile

colorlibplugins

121 plugins · 740K total installs

trust score

Avg Security Score

98/100

Avg Patch Time

130 days

View full developer profile

Detection Fingerprints

How We Detect Code Block – Embed Code with One-Click Copy Feature

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/code-snippets-block/assets/css/codeMirror.min.css/wp-content/plugins/code-snippets-block/assets/js/highlight.min.js/wp-content/plugins/code-snippets-block/assets/js/highlightgo.js/wp-content/plugins/code-snippets-block/assets/js/highlightlinenumber.js/wp-content/plugins/code-snippets-block/assets/js/codeMirror.min.js/wp-content/plugins/code-snippets-block/build/shortcode.js/wp-content/plugins/code-snippets-block/build/shortcode.css/wp-content/plugins/code-snippets-block/build/admin-dashboard.js+1 more

Script Paths

/wp-content/plugins/code-snippets-block/assets/js/highlight.min.js/wp-content/plugins/code-snippets-block/assets/js/highlightgo.js/wp-content/plugins/code-snippets-block/assets/js/highlightlinenumber.js/wp-content/plugins/code-snippets-block/assets/js/codeMirror.min.js/wp-content/plugins/code-snippets-block/build/shortcode.js/wp-content/plugins/code-snippets-block/build/admin-dashboard.js

Version Parameters

code-snippets-block/assets/css/codeMirror.min.css?ver=code-snippets-block/assets/js/highlight.min.js?ver=code-snippets-block/assets/js/highlightgo.js?ver=code-snippets-block/assets/js/highlightlinenumber.js?ver=code-snippets-block/assets/js/codeMirror.min.js?ver=code-snippets-block/build/shortcode.js?ver=code-snippets-block/build/shortcode.css?ver=code-snippets-block/build/admin-dashboard.js?ver=code-snippets-block/build/admin-dashboard.css?ver=

HTML / DOM Fingerprints

CSS Classes

wp-block-bplugins-code-snippets-block-code-snippets-block

JS Globals

CSBCH_PLUGIN_VERSIONCSBCH_ASSETS_DIRCSBCH_DIR_URLCSBCH_DIR_PATHCSBCH_HAS_PROcsb_fs

Shortcode Output

[csb_code id=

FAQ