Does Coder Block have any unpatched vulnerabilities?

No. All known vulnerabilities in Coder Block have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Coder Block compatible with WordPress 6.9.4?

According to WordPress.org data, Coder Block 1.1.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Coder Block compatible with PHP 7.0+?

Coder Block requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Coder Block updated?

Coder Block was last updated on Mar 12, 2026. Frequent updates are generally a positive security signal.

What is Coder Block's security score?

Coder Block has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Coder Block Security & Risk Analysis

wordpress.org/plugins/coder-block

The Coder Block plugin allows embedding php code inside of posts and pages within the new Block Editor.

10 active installs v1.1.0 PHP 7.0+ WP 6.0+ Updated Mar 12, 2026

blockcodefunctionsphpsnippets

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Coder Block Safe to Use in 2026?

Generally Safe

Score 100/100

Coder Block has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 23d ago

Risk Assessment

The "coder-block" plugin version 1.1.0 exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events means there are no readily available attack vectors or entry points into the plugin's code. This is further reinforced by the lack of dangerous functions, file operations, or external HTTP requests. The plugin also adheres to good security practices by exclusively using prepared statements for its SQL queries and properly escaping all outputs, indicating a diligent approach to preventing common vulnerabilities like SQL injection and cross-site scripting.

Furthermore, the plugin's vulnerability history is entirely clean, with no recorded CVEs of any severity. This suggests a history of secure development and maintenance. The lack of taint analysis findings also points to no identified pathways for untrusted data to be processed unsafegulaly within the analyzed code. While the plugin appears secure in its current state, the complete absence of nonce and capability checks could be a concern in scenarios where functionality is added in future versions without proper authorization checks. However, based solely on the current analysis, the overall risk is very low.

Key Concerns

Missing nonce checks
Missing capability checks

Vulnerabilities

None known

Coder Block Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Coder Block Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

100% escaped3 total outputs

Attack Surface

Coder Block Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

actionblock_categories_allcoder-block.php:21

actionplugins_loadedcoder-block.php:22

actioninitcoder-block.php:23

Maintenance & Trust

Coder Block Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedMar 12, 2026

PHP min version7.0

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs10

Alternatives

Coder Block Alternatives

FluentSnippets – The High-Performance file based Custom Code Snippets Plugin

easy-code-manager

Add header and footer scripts, PHP Snippets, Custom CSS /JS snippets with advanced conditional logic, and more...

40K 1 CVE

Code Manager

code-manager

100

Write, test and deploy PHP, JavaScript, CSS and HTML code blocks from the WordPress dashboard.

500 No CVEs

WPCode – Insert Headers and Footers + Custom Code Snippets – WordPress Code Manager

insert-headers-and-footers

Easily add code snippets in WordPress. Insert header & footer scripts, add PHP code snippets with conditional logic, insert ads pixel code, and more.

3.0M 3 CVEs

Code Snippets

code-snippets

An easy, clean and simple way to enhance your site with code snippets.

1.0M 7 CVEs

Header Footer Code Manager

header-footer-code-manager

Easily add tracking code snippets, conversion pixels, or other scripts required by third party services for analytics, marketing, or chat features.

600K 4 CVEs

Developer Profile

Coder Block Developer Profile

sh1zen

3 plugins · 140 total installs

trust score

Avg Security Score

89/100

Avg Patch Time

59 days

View full developer profile

Detection Fingerprints

How We Detect Coder Block

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/coder-block/build/view.asset.php/wp-content/plugins/coder-block/build/index.js/wp-content/plugins/coder-block/build/style-index.css

Script Paths

/wp-content/plugins/coder-block/build/index.js

Version Parameters

coder-block/build/index.js?ver=coder-block/build/style-index.css?ver=coder-block/build/view.asset.php

HTML / DOM Fingerprints

JS Globals

window.wp.elementwindow.wp.i18nwindow.wp.blockswindow.wp.editorwindow.wp.componentswindow.wp.blob+4 more

FAQ