[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f1D9qfdMCAJq_RrFfvk_0KNZTGOIUbiGW8AVElflXPGE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":36,"analysis":141,"fingerprints":191},"css-reminder","CSS Reminder","1.0","Carolina Nymark","https:\u002F\u002Fprofiles.wordpress.org\u002Fpoena\u002F","\u003Cp>CSS Reminder helps you find all the Custom CSS that is saved in the WordPress Database, even if a theme is uninstalled.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Health Check & Troubleshooting, Copyright WordPress.org, GPLv2, License URI: https:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-2.0.html\u003Cbr \u002F>\nClipboard, Copyright Zeno Rocha, https:\u002F\u002Fclipboardjs.com\u002F, License: MIT\u003C\u002Fp>\n\u003Cp>Copyright Carolina Nymark 2020\u003C\u002Fp>\n","CSS Reminder helps you find all the Custom CSS that is saved in the WordPress Database, even if a theme is uninstalled.",0,1798,"2020-02-26T08:48:00.000Z","5.3.21","5.0","7.0",[18,19,20,21],"css","custom-css","database","find","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcss-reminder.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"poena",4,80,89,30,86,"2026-04-05T20:07:39.163Z",[37,63,84,105,123],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":58,"download_link":59,"security_score":60,"vuln_count":61,"unpatched_count":11,"last_vuln_date":62,"fetched_at":26},"custom-css-js","Simple Custom CSS and JS","3.52","SilkyPress","https:\u002F\u002Fprofiles.wordpress.org\u002Fdiana_burduja\u002F","\u003Cp>Customize your WordPress site’s appearance by easily adding custom CSS and JS code without even having to modify your theme or plugin files. This is perfect for adding custom CSS tweaks to your site.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Text editor\u003C\u002Fstrong> with syntax highlighting \u003C\u002Fli>\n\u003Cli>Print the code \u003Cstrong>inline\u003C\u002Fstrong> or included into an \u003Cstrong>external file\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Print the code in the \u003Cstrong>header\u003C\u002Fstrong> or the \u003Cstrong>footer\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Add CSS or JS to the \u003Cstrong>frontend\u003C\u002Fstrong> or the \u003Cstrong>admin side\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Add as many codes as you want\u003C\u002Fli>\n\u003Cli>Keep your changes also when you change the theme\u003C\u002Fli>\n\u003C\u002Ful>\n","Easily add Custom CSS or JS to your website with an awesome editor.",700000,10074700,88,101,"2026-03-06T19:56:00.000Z","6.9.4","3.0.1","5.2.4",[54,19,55,56,57],"add-style","custom-js","customize-theme","site-css","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcustom-css-js\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-css-js.3.52.zip",100,1,"2017-07-24 00:00:00",{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":71,"downloaded":72,"rating":60,"num_ratings":73,"last_updated":74,"tested_up_to":50,"requires_at_least":15,"requires_php":22,"tags":75,"homepage":80,"download_link":81,"security_score":82,"vuln_count":61,"unpatched_count":11,"last_vuln_date":83,"fetched_at":26},"wp-headers-and-footers","Insert Headers And Footers","3.1.3","Adnan","https:\u002F\u002Fprofiles.wordpress.org\u002Fhiddenpearls\u002F","\u003Cp>WP Headers and Footers plugin helps you to insert code to your WordPress website headers and footers section like Google Analytics tracking code, Facebook Pixels code, Google Optimize code for A\u002FB testing, Custom CSS code, and more. You don’t need to edit the theme files to insert the code.\u003C\u002Fp>\n\u003Cp>The simple interface of this plugin allows you to add code and different scripts from one place to your WordPress website (\u003Cstrong>Headers, Footers, and Body section\u003C\u002Fstrong>).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Insert code to your WordPress headers & Footers\u003C\u002Fli>\n\u003Cli>Insert Google Analytics Code to any WordPress theme\u003C\u002Fli>\n\u003Cli>Insert Facebook Pixels Code\u003C\u002Fli>\n\u003Cli>Add Google Optimize Code for A\u002FB testing ( Ab Testing )\u003C\u002Fli>\n\u003Cli>Add Google search console authentication code to any theme for verification\u003C\u002Fli>\n\u003Cli>Add Custom CSS, any script, and HTML to your website\u003C\u002Fli>\n\u003Cli>Google Tag Manager code\u002Fscript insertion\u003C\u002Fli>\n\u003Cli>You can also add microsoft clarity tracking code to your website\u003C\u002Fli>\n\u003Cli>You can also insert code to your website body section\u003C\u002Fli>\n\u003Cli>Can add Bing webmaster tool code for website verification\u003C\u002Fli>\n\u003Cli>Add Google AdSense code\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>If you find our plugin useful, please leave a good rating\u002Freview and check our other plugins.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fanalytify.io\u002Fref\u002F73\u002F?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Analytify – Google Analytics Plugin\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Floginpress.pro\u002F?utm_source=wp-headers-and-footers\" rel=\"nofollow ugc\">LoginPress\u003C\u002Fa> – For Custom login page and login page security\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsimplesocialbuttons.com?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Simple Social Buttons\u003C\u002Fa> – Plugin for Social share buttons and social icons\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frelated-posts-thumbnails\u002F\" rel=\"ugc\">Related Posts Thumbnails Plugin\u003C\u002Fa> – For related posts\u002Fproducts\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpbrigade.com\u002Frecommend\u002Fmaintenance-mode?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Under Construction, Coming Soon & Maintenance Mode\u003C\u002Fa> – Plugin for Under construction & Coming soon page\u003C\u002Fli>\n\u003C\u002Ful>\n","Include inline javascript, stylesheets, CSS code or anything you want in Header and Footer areas of your WordPress with ease.",300000,2339048,127,"2026-01-05T15:03:00.000Z",[19,76,77,78,79],"facebook-pixel","footer","google-analytics","header","https:\u002F\u002Fwww.WPBrigade.com\u002Fwordpress\u002Fplugins\u002Fwp-headers-and-footers\u002F?utm_source=?utm_source=wp-headers-and-footers&utm_medium=author-uri-link","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-headers-and-footers.3.1.3.zip",98,"2025-04-18 00:00:00",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":94,"num_ratings":95,"last_updated":96,"tested_up_to":97,"requires_at_least":51,"requires_php":22,"tags":98,"homepage":102,"download_link":103,"security_score":104,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"simple-custom-css","Simple Custom CSS Plugin","4.0.7","John Regan","https:\u002F\u002Fprofiles.wordpress.org\u002Fjohnregan3\u002F","\u003Cp>Add Custom CSS to your WordPress site without any hassles.\u003C\u002Fp>\n\u003Cp>An easy-to-use WordPress Plugin to add custom CSS styles that override Plugin and Theme default styles. This plugin is designed to meet the needs of administrators who would like to add their own CSS to their WordPress website. Styles created with this plugin will render even if the theme is changed.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New in Version 4.0.7\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Tested for compatibility with WP 6.7.2\u003C\u002Fli>\n\u003Cli>Tested for compatibility with PHP 8.4\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>AMP Support\u003C\u002Fli>\n\u003Cli>Customizer Control (live preview)\u003C\u002Fli>\n\u003Cli>Useful Code Syntax Highlighter\u003C\u002Fli>\n\u003Cli>Code linting (error checking)\u003C\u002Fli>\n\u003Cli>No configuration needed\u003C\u002Fli>\n\u003Cli>Simple interface built on native WordPress UI\u003C\u002Fli>\n\u003Cli>Virtually no impact on site performance\u003C\u002Fli>\n\u003Cli>No complicated database queries\u003C\u002Fli>\n\u003Cli>Thorough documentation\u003C\u002Fli>\n\u003Cli>Allows Administrator access on WP Networks (Multisite)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>Navigate to Appearance > Custom CSS in the Admin Menu\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Enter in valid CSS styles\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Click “Update Custom CSS”\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>View your changes in the Front End of your website\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Help\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjohnregan3\u002Fsimple-custom-css\u002Fwiki\" title=\"Simple Custom CSS Wiki\" rel=\"nofollow ugc\">Simple Custom CSS Wiki\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fsimple-custom-css\" title=\"Support Forum\" rel=\"ugc\">Support Forum\u003C\u002Fa>\u003C\u002Fp>\n","Add Custom CSS to your WordPress site without any hassles.",100000,3068872,94,159,"2025-03-11T16:57:00.000Z","6.7.5",[99,18,100,19,101],"code","custom","styles","http:\u002F\u002Fjohnregan3.github.io\u002Fsimple-custom-css","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-custom-css.zip",92,{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":113,"downloaded":114,"rating":82,"num_ratings":115,"last_updated":116,"tested_up_to":117,"requires_at_least":118,"requires_php":22,"tags":119,"homepage":121,"download_link":122,"security_score":60,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"simple-css","Simple CSS","1.1.1","Tom","https:\u002F\u002Fprofiles.wordpress.org\u002Fedge22\u002F","\u003Cp>Need to add some custom CSS to your site? Simple CSS gives you an awesome admin editor and a live preview editor in the Customizer so you can easily add your CSS.\u003C\u002Fp>\n\u003Cp>Want your CSS to only apply on a specific page or post? Simple CSS adds a metabox which allows you to do just that.\u003C\u002Fp>\n\u003Cp>Check out GeneratePress, our awesome WordPress theme! (https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fgeneratepress)\u003C\u002Fp>\n\u003Ch4>Features include:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Full featured admin CSS editor\u003C\u002Fli>\n\u003Cli>Dark and light editor themes\u003C\u002Fli>\n\u003Cli>CSS editor in the Customizer so you can live preview your changes\u003C\u002Fli>\n\u003Cli>Metabox for page\u002Fpost specific CSS\u003C\u002Fli>\n\u003C\u002Ful>\n","Add CSS to your website through an admin editor, the Customizer or a metabox for page\u002Fpost specific CSS.",80000,551667,60,"2025-09-15T15:11:00.000Z","6.8.5","4.0",[18,120,19,106,85],"css-customizer","https:\u002F\u002Fgeneratepress.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-css.1.1.1.zip",{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":131,"downloaded":132,"rating":133,"num_ratings":134,"last_updated":135,"tested_up_to":117,"requires_at_least":118,"requires_php":22,"tags":136,"homepage":139,"download_link":140,"security_score":60,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"wp-add-custom-css","WP Add Custom CSS","1.2.1","Daniele De Santis","https:\u002F\u002Fprofiles.wordpress.org\u002Fdanieledesantis\u002F","\u003Cp>WP Add Custom CSS allows you to \u003Cstrong>add custom CSS\u003C\u002Fstrong> to the \u003Cstrong>whole website\u003C\u002Fstrong> and to \u003Cstrong>individual posts, pages and custom post types\u003C\u002Fstrong> (such as \u003Cstrong>Woocommerce products\u003C\u002Fstrong>).\u003Cbr \u002F>\nThe CSS rules applied to the whole website will override the default stylesheets of your theme and plugins, while the CSS rules applied to specific pages, posts or custom post types will override the main stylesheet too.\u003C\u002Fp>\n\u003Cp>The plugin works with the most popular builders, such as \u003Cstrong>Elementor, Gutenberg and the Classic Editor\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>You can edit the main stylesheet from the the “Add custom CSS” settings page.\u003Cbr \u002F>\nThe plugin also creates a new “Custom CSS” box in the editing area to \u003Cstrong>add custom CSS to specific posts, pages and custom post types\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Select the preferred CSS output method from the plugin’s settings page to ensure seamless integration with \u003Cstrong>caching and minification plugins\u003C\u002Fstrong> or to improve \u003Cstrong>above-the-fold rendering performance\u003C\u002Fstrong>.\u003C\u002Fp>\n","Add custom css to the whole website and to specific posts and pages.",60000,989310,96,90,"2025-08-14T10:21:00.000Z",[18,19,137,101,138],"style","stylesheet","http:\u002F\u002Fwww.danieledesantis.net","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-add-custom-css.1.2.1.zip",{"attackSurface":142,"codeSignals":158,"taintFlows":178,"riskAssessment":179,"analyzedAt":190},{"hooks":143,"ajaxHandlers":154,"restRoutes":155,"shortcodes":156,"cronEvents":157,"entryPointCount":11,"unprotectedCount":11},[144,150],{"type":145,"name":146,"callback":147,"file":148,"line":149},"action","admin_menu","css_reminder_register_menu_page","css-reminder.php",29,{"type":145,"name":151,"callback":152,"file":148,"line":153},"admin_enqueue_scripts","css_reminder_admin_scripts",42,[],[],[],[],{"dangerousFunctions":159,"sqlUsage":160,"outputEscaping":162,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":177},[],{"prepared":11,"raw":11,"locations":161},[],{"escaped":11,"rawEcho":163,"locations":164},6,[165,168,169,171,173,175],{"file":148,"line":166,"context":167},76,"raw output",{"file":148,"line":134,"context":167},{"file":148,"line":170,"context":167},97,{"file":148,"line":172,"context":167},102,{"file":148,"line":174,"context":167},109,{"file":148,"line":176,"context":167},164,[],[],{"summary":180,"deductions":181},"The \"css-reminder\" plugin version 1.0 exhibits a generally good security posture based on the provided static analysis. There are no identified AJAX handlers, REST API routes, shortcodes, or cron events that create an attack surface. Furthermore, no dangerous functions were detected, and all SQL queries utilize prepared statements, indicating a solid foundation for database interaction security. The absence of known CVEs in its history is also a positive sign, suggesting the plugin has a clean track record.\n\nHowever, a significant concern arises from the output escaping. With 100% of outputs not being properly escaped, this presents a substantial risk of Cross-Site Scripting (XSS) vulnerabilities. Any dynamic content rendered by the plugin could potentially be manipulated by an attacker to inject malicious scripts, which could lead to session hijacking, data theft, or defacement. The complete lack of nonce and capability checks, while not directly tied to a specific entry point in this analysis, is a missed opportunity to further harden the plugin against potential brute-force or unauthorized access scenarios if new entry points were to be introduced in future versions.\n\nIn conclusion, while the plugin excels in preventing direct attack vectors like unauthenticated AJAX\u002FREST endpoints and insecure SQL queries, the pervasive issue of unescaped output is a critical vulnerability that needs immediate attention. The clean vulnerability history is encouraging, but it does not mitigate the present risk posed by the lack of output escaping. Addressing this single weakness should be the highest priority to improve the plugin's overall security.",[182,185,188],{"reason":183,"points":184},"100% of outputs are not properly escaped",16,{"reason":186,"points":187},"0 Nonce checks",5,{"reason":189,"points":187},"0 Capability checks","2026-03-17T06:53:39.723Z",{"wat":192,"direct":199},{"assetPaths":193,"generatorPatterns":196,"scriptPaths":197,"versionParams":198},[194,195],"\u002Fwp-content\u002Fplugins\u002Fcss-reminder\u002Fcss\u002Fcss-reminder.css","\u002Fwp-content\u002Fplugins\u002Fcss-reminder\u002Fjs\u002Fcopy.js",[],[195],[],{"cssClasses":200,"htmlComments":204,"htmlAttributes":205,"restEndpoints":207,"jsGlobals":208,"shortcodeOutput":209},[201,202,203],"css-reminder-copy-buttons","css-reminder-button","welcome-panel-content",[],[206],"data-clipboard-target",[],[],[]]