WP-Safety

Custom Page Theme – A WordPress Theme Generator Plugin Security & Risk Analysis

wordpress.org/plugins/custom-page-theme

The Custom Page Theme Plugin is been developed for those WordPress Theme writers who have very small hands on programming.

0 active installs v1.0.3 PHP + WP 4.0+ Updated Unknown
custom-page-templatecustom-page-themedesignthemetheme-designing
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Custom Page Theme – A WordPress Theme Generator Plugin Safe to Use in 2026?

Generally Safe

Score 100/100

Custom Page Theme – A WordPress Theme Generator Plugin has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs
Risk Assessment

The "custom-page-theme" plugin exhibits a mixed security posture. On one hand, the absence of known CVEs and the presence of a nonce check suggest some level of security awareness. However, significant concerns arise from the static analysis. The plugin utilizes dangerous functions like `unserialize` and `create_function`, which are notorious for introducing serious vulnerabilities if not handled with extreme care. Furthermore, a concerning 100% of its SQL queries are not using prepared statements, and a vast majority (91%) of its outputs are not properly escaped. The taint analysis also reveals issues, with 9 out of 10 analyzed flows having unsanitized paths, including 3 flows classified as high severity.

While the plugin has no recorded vulnerability history, this lack of historical issues cannot be solely relied upon to infer current safety. The identified code signals and taint analysis results point to potential weaknesses that could be exploited. The absence of known vulnerabilities might be due to limited exposure or effective exploitation challenges, rather than inherent robust security. The plugin has a clean slate historically, but the current code analysis presents substantial risks that need to be addressed.

Key Concerns

  • High severity unsanitized taint flows
  • Unsanitized paths in taint flows
  • SQL queries without prepared statements
  • Low percentage of properly escaped output
  • Use of unserialize function
  • Use of create_function function
Vulnerabilities
None known

Custom Page Theme – A WordPress Theme Generator Plugin Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Custom Page Theme – A WordPress Theme Generator Plugin Code Analysis

Dangerous Functions
7
Raw SQL Queries
4
0 prepared
Unescaped Output
74
7 escaped
Nonce Checks
1
Capability Checks
1
File Operations
20
External Requests
0
Bundled Libraries
0

Dangerous Functions Found

unserialize$rec = unserialize(unserialize($row->option_value));custom-page-theme.php:312
unserialize$rec = unserialize(unserialize($row->option_value));custom-page-theme.php:312
create_functionadd_filter( 'template', create_function( '$t', 'return "' . $page_theme . '";' ) );custom-page-theme.php:520
create_functionadd_filter( 'stylesheet', create_function( '$s', 'return "' . $page_theme . '";' ) );custom-page-theme.php:521
unserialize$nav = unserialize(get_option( "_cpt_".$menu->slug."_sch" ));views\custom_menu.php:69
unserialize$rw = unserialize(unserialize($row->option_value));views\page_content_template_list.php:206
unserialize$rw = unserialize(unserialize($row->option_value));views\page_content_template_list.php:206

SQL Query Safety

0% prepared4 total queries

Output Escaping

9% escaped81 total outputs
Data Flows
9 unsanitized

Data Flow Analysis

10 flows9 with unsanitized paths
cstmpt_admin_menu_customize (custom-page-theme.php:427)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Custom Page Theme – A WordPress Theme Generator Plugin Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 14
actionwp_enqueue_scriptsclasses\widgets\cstmpt_banner.php:18
actionwp_enqueue_scriptsclasses\widgets\cstmpt_googlemap.php:16
actionadd_meta_boxescustom-page-theme.php:80
actionsave_postcustom-page-theme.php:81
actionadmin_menucustom-page-theme.php:82
actionadmin_action_addactcustom-page-theme.php:83
actionadmin_action_custommenucustom-page-theme.php:84
actionadmin_action_addpgcontentcustom-page-theme.php:85
actionadmin_enqueue_scriptscustom-page-theme.php:86
actionsetup_themecustom-page-theme.php:95
filtertemplatecustom-page-theme.php:520
filterstylesheetcustom-page-theme.php:521
actionadmin_headviews\list_menu.php:252
actionadmin_headviews\page_content_template_list.php:251
Maintenance & Trust

Custom Page Theme – A WordPress Theme Generator Plugin Maintenance & Trust

Maintenance Signals

WordPress version tested4.9.29
Last updatedUnknown
PHP min version
Downloads1K

Community Trust

Rating100/100
Number of ratings4
Active installs0
Alternatives

Custom Page Theme – A WordPress Theme Generator Plugin Alternatives

Utimate Kit ( Styler ) for WPForms

Utimate Kit ( Styler ) for WPForms

styler-for-wpforms

A
100

Ultimate Kit for WPForms makes the task of designing WPForms an easy one.

30K No CVEs
Child Theme Creator by Orbisius

Child Theme Creator by Orbisius

orbisius-child-theme-creator

A
88

Create Child Themes quickly and easily from any theme that you have currently installed on your site/blog.

10K 4 CVEs
Generate Child Theme

Generate Child Theme

generate-child-theme

A
99

Create child themes of any WordPress themes effortlessly with Generate Child Theme.

8K 1 CVE
Templateberg – Gutenberg Templates, WordPress Themes Template Kits & WordPress Templates

Templateberg – Gutenberg Templates, WordPress Themes Template Kits & WordPress Templates

templateberg

A
100

Templateberg offers Gutenberg templates & WordPress theme kits. Import pre-designed layouts & build beautiful sites fast.

7K No CVEs
Aquila Admin Theme

Aquila Admin Theme

aquila-admin-theme

A
85

Material Design inspired admin theme with a customisable color scheme. Add your own custom logo to match your website.

4K No CVEs
Developer Profile

Custom Page Theme – A WordPress Theme Generator Plugin Developer Profile

jeetendrabajaj

1 plugin · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Custom Page Theme – A WordPress Theme Generator Plugin

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/custom-page-theme/assets/wp-content/plugins/custom-page-theme/js/jquery-ui.js/wp-content/plugins/custom-page-theme/js/admin.js/wp-content/plugins/custom-page-theme/js/jquery.format.js/wp-content/plugins/custom-page-theme/css/jquery-ui.css/wp-content/plugins/custom-page-theme/css/admin.css/wp-content/plugins/custom-page-theme/img/icon.png
Script Paths
/wp-content/plugins/custom-page-theme/js/jquery-ui.js/wp-content/plugins/custom-page-theme/js/admin.js/wp-content/plugins/custom-page-theme/js/jquery.format.js
Version Parameters
custom-page-theme/js/jquery-ui.js?ver=custom-page-theme/js/admin.js?ver=custom-page-theme/js/jquery.format.js?ver=

HTML / DOM Fingerprints

HTML Comments
/* Theme Name: Custom Page Theme - Getting Started Author: Custom Page Theme Plugin Support Description: Custom Page Theme - Getting Started Version: 1.0.3 */
Data Attributes
data-cstmpt-iddata-cstmpt-typedata-cstmpt-posttype
JS Globals
CSTM_PAGE_THEME_URLCSTM_PAGE_THEME_VERSIONCSTM_PAGE_THEME_FOLDER_PATHCSTM_PAGE_THEME_DELIMITER
Shortcode Output
[cstmpt-shortcode]
FAQ

Frequently Asked Questions about Custom Page Theme – A WordPress Theme Generator Plugin