Does Content Snippet Manager have any unpatched vulnerabilities?

No. All known vulnerabilities in Content Snippet Manager have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Content Snippet Manager compatible with WordPress 6.7.5?

According to WordPress.org data, Content Snippet Manager 1.1.6 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Content Snippet Manager compatible with PHP 5.6+?

Content Snippet Manager requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Content Snippet Manager updated?

Content Snippet Manager was last updated on Feb 1, 2025. Frequent updates are generally a positive security signal.

What is Content Snippet Manager's security score?

Content Snippet Manager has a WP-Safety security score of 91/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Content Snippet Manager Security & Risk Analysis

wordpress.org/plugins/content-snippet-manager

Content Snippet Manager plugin allows you to create and manage unlimited numbers of HTML and WordPress shortcodes in your WordPress content

200 active installs v1.1.6 PHP 5.6+ WP 3.5.0+ Updated Feb 1, 2025

conversion-trackingfacebook-conversion-pixelgoogle-analyticstracking-codeswoocommerce-tracking-code

A · Safe

CVEs total1

Unpatched0

Last CVEFeb 14, 2025

Plugin page Download

Safety Verdict

Is Content Snippet Manager Safe to Use in 2026?

Generally Safe

Score 91/100

Content Snippet Manager has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Feb 14, 2025Updated 1yr ago

Risk Assessment

The content-snippet-manager plugin, version 1.1.6, presents a mixed security posture. While it has a relatively small attack surface and a low number of identified code signals for concern, there are notable weaknesses that elevate its risk profile. Specifically, the presence of unprotected AJAX handlers and the use of dangerous functions like unserialize are significant security concerns. Furthermore, the plugin has a history of a medium-severity vulnerability, indicating a recurring need for careful security vetting. The absence of critical or high-severity taint flows and the relatively low percentage of improperly escaped outputs are positive indicators, but they do not outweigh the immediate risks posed by the unprotected entry points and the legacy of past vulnerabilities. This plugin warrants careful monitoring and prompt updates when security patches become available.

Key Concerns

Unprotected AJAX handlers
Use of unserialize()
SQL queries without prepared statements
Low percentage of properly escaped outputs
Medium severity vulnerability history

Vulnerabilities

Content Snippet Manager Security Vulnerabilities

CVEs by Year

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2025-26759medium · 6.1Cross-Site Request Forgery (CSRF)

Content Snippet Manager <= 1.1.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting

Feb 14, 2025 Patched in 1.1.6 (5d)

Code Analysis

Analyzed Mar 16, 2026

Content Snippet Manager Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

760

112 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

unserialize$options = unserialize(file_get_contents($_FILES["csm_upload_file"]["tmp_name"]));core\includes\class-panel.php:422

unserializeupdate_option( $this->plugin_optionname, unserialize($option->option_value));core\includes\class-panel.php:427

Bundled Libraries

Select2

SQL Query Safety

0% prepared1 total queries

Output Escaping

13% escaped872 total outputs

Data Flows

1 unsanitized

Data Flow Analysis

2 flows1 with unsanitized paths

csm_panel (core\includes\class-panel.php:535)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

2 unprotected

Content Snippet Manager Attack Surface

Entry Points4

Unprotected2

AJAX Handlers 2

authwp_ajax_csm_list_postscore\functions\csm_functions.php:116

authwp_ajax_csm_list_taxonomycore\functions\csm_functions.php:163

Shortcodes 2

[csm_google_analytics] core\shortcodes\analytics.php:26

[csm_fb_pixel] core\shortcodes\fb.php:30

WordPress Hooks 16

filterposts_wherecore\functions\csm_functions.php:80

actionadmin_noticescore\includes\class-notice.php:19

actionadmin_headcore\includes\class-notice.php:20

actionadmin_menucore\includes\class-panel.php:24

actionadmin_initcore\includes\class-panel.php:25

actionadmin_initcore\includes\class-panel.php:26

actionadmin_initinit.php:49

actionwp_headinit.php:50

actionwp_footerinit.php:51

actionwoocommerce_thankyouinit.php:52

filterget_the_excerptinit.php:53

filterthe_contentinit.php:54

actionplugins_loadedinit.php:55

actioninitinit.php:56

actionwp_loadedinit.php:57

actionwp_body_openinit.php:61

Maintenance & Trust

Content Snippet Manager Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedFeb 1, 2025

PHP min version5.6

Downloads11K

Community Trust

Rating0/100

Number of ratings0

Active installs200

Alternatives

Content Snippet Manager Alternatives

Pixel Manager for WooCommerce – Conversion Tracking, Google Ads, GA4, TikTok, Dynamic Remarketing

woocommerce-google-adwords-conversion-tracking-tag

Conversion tracking for WooCommerce. Google Ads, GA4, Meta/Facebook Pixel, TikTok & more. Recover 30% more conversions with server-side tracking!

50K 4 CVEs

Conversios: Google Analytics (GA4), Google Ads, Conversion and Analytics Tracking for Multi-Channels

enhanced-e-commerce-for-woocommerce-store

Track GA4 Analytics, Google Ads, Microsoft Ads, & Conversion with server-side tracking (CAPI) & product feed to improve ROAS, reports for WooCommerce.

10K 10 CVEs

Affiliate Sales in Google Analytics and other tools

wecantrack

Integrate all your affiliate sales in Google Analytics, Google Ads, Facebook, Data Studio and more!

2K 1 CVE

Apollo Site Tools

apollo-site-tools

Easily add Google Analytics, Facebook Pixel, and other tracking codes to your WordPress site, plus contact form functionality and more.

10 No CVEs

LC Tracking Codes

lcmd-tracking-codes

100

This plugin make easier put tracking codes in your site.

0 No CVEs

Developer Profile

Content Snippet Manager Developer Profile

alexvtn

76 plugins · 10K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

168 days

View full developer profile

Detection Fingerprints

How We Detect Content Snippet Manager

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/content-snippet-manager/admin/css/admin.css/wp-content/plugins/content-snippet-manager/admin/js/admin.js

Script Paths

/wp-content/plugins/content-snippet-manager/admin/js/admin.js/wp-content/plugins/content-snippet-manager/admin/css/admin.css

Version Parameters

content-snippet-manager/admin/css/admin.css?ver=content-snippet-manager/admin/js/admin.js?ver=

HTML / DOM Fingerprints

HTML Comments

+2 more

JS Globals

globalSnippet

Shortcode Output

FAQ

Content Snippet Manager Security & Risk Analysis

Is Content Snippet Manager Safe to Use in 2026?

Generally Safe

Key Concerns

Content Snippet Manager Security Vulnerabilities

CVEs by Year

Severity Breakdown

Content Snippet Manager Code Analysis

Dangerous Functions Found

Bundled Libraries

SQL Query Safety

Output Escaping

Data Flow Analysis

Content Snippet Manager Attack Surface

AJAX Handlers 2

Shortcodes 2

Content Snippet Manager Maintenance & Trust

Maintenance Signals

Community Trust

Content Snippet Manager Alternatives

Pixel Manager for WooCommerce – Conversion Tracking, Google Ads, GA4, TikTok, Dynamic Remarketing

Conversios: Google Analytics (GA4), Google Ads, Conversion and Analytics Tracking for Multi-Channels

Affiliate Sales in Google Analytics and other tools

Apollo Site Tools

LC Tracking Codes

Content Snippet Manager Developer Profile

How We Detect Content Snippet Manager

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about Content Snippet Manager