[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fQVUTIlHlMPji2YY_CoUgEfm9pooSObF8YXr0lgdurjg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":37,"analysis":128,"fingerprints":194},"custom-wp-css-js","Custom WP CSS & JS","1.2.1","Samir Manjiyani","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodersam\u002F","\u003Cp>Add your custom CSS or javascript\u002Fjquery using “Custom WP CSS & JS” plugin to any theme without creating any extra CSS or JS files.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Benefits of Plugin\u003C\u002Fstrong>\u003Cbr \u002F>\n* Easy to use.\u003Cbr \u002F>\n* Option to select placement (header or footer) to insert your custom JS.\u003Cbr \u002F>\n* Built with Syntax Code Highlighter.\u003Cbr \u002F>\n* Option to add custom CSS for WP Dashboard.\u003C\u002Fp>\n\u003Cp>For Syntax Code Highlighter credits goes to \u003Ca href=\"https:\u002F\u002Fcodemirror.net\u002F5\u002F\" rel=\"nofollow ugc\">codemirror.net\u003C\u002Fa>\u003C\u002Fp>\n","A lightweight plugin to add custom CSS, JS\u002FJavascript to any theme. This plugin also gives you an ability to insert JS in header or footer.",90,4640,100,1,"2023-07-08T14:29:00.000Z","6.2.9","3.0.1","7.0",[20,21,22,23,24],"css","custom","javascript","jquery","js","https:\u002F\u002Fgithub.com\u002Fsamirdev3\u002Fcustom-wp-css-js","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-wp-css-js.1.2.1.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"codersam",30,84,"2026-04-04T21:23:56.119Z",[38,57,78,95,111],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":13,"num_ratings":14,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":51,"tags":52,"homepage":54,"download_link":55,"security_score":56,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-custom-cssjs","Custom CSS\u002FJS","1.4.2","johnibom","https:\u002F\u002Fprofiles.wordpress.org\u002Fjohnibom\u002F","\u003Cp>Welcome to WP Custom CSS JS by PieSolutions.\u003Cbr \u002F>\nSo you want to add HTML, CSS, Javascript, Jquery or Tracking Pixel on your Website without messing up with your theme’s files? This small and light weight plugin gives you ability to do that right from the wordpress dashboard.\u003C\u002Fp>\n\u003Cp>=Features=\u003C\u002Fp>\n\u003Cp>\u003Cstrong>HTML (All tags are supported) in the header Block\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Inline CSS in Header\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Inline JS\u002FjQuery in Header\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>HTML (All tags are supported) in the footer Block\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Inline CSS in Footer\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Inline JS\u002FjQuery in Footer\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>LOCALIZATION\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>We are looking for translators. Please reach out to us and\u002For translate this plugin to your own language here: https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fwp-custom-cssjs\u003C\u002Fli>\n\u003C\u002Ful>\n","WP Custom CSS JS plugin allows you to add any HTML, CSS, Javascript, jQuery or Tracking Pixel easily on your wordpress site right from your dashboard.",800,15316,"2025-03-16T01:09:00.000Z","6.7.5","4.5","5.6",[20,22,23,24,53],"tracking-pixel","http:\u002F\u002Fpie-solutions.com\u002Fwp-custom-cssjs\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-custom-cssjs.1.4.2.zip",92,{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":13,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":71,"tags":72,"homepage":76,"download_link":77,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"live-css-js-code-editor","Live Custom CSS JS Code Editor","1.0.5","Ozan Canakli","https:\u002F\u002Fprofiles.wordpress.org\u002Fozancanakli\u002F","\u003Cp>This plugin allows you to add custom site-wide \u003Cstrong>CSS, JavaScript, Header, Footer Code\u003C\u002Fstrong> to your WordPress site. The changes appear instantly on your website with help of \u003Cstrong>WordPress Live Customizer.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FgP78wXPayvU?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>\u003Cstrong>In your WordPress Dashboard, navigate to Customize > Live Code Editor to get started.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>When you Change or Update your WordPress Theme, Your Custom Code isn’t effected from these changes.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>NEW FEATURES as Version 1.0.5:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Add Custom CSS to WordPress Admin dashboard.\u003Cbr \u002F>\n* Add Custom JavaScript to WordPress Admin dashboard.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>MAIN FEATURES:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Custom CSS code\u003C\u002Fli>\n\u003Cli>Custom Javascript code\u003C\u002Fli>\n\u003Cli>Custom Header Code (Inside  tags)(Google Analytics and Facebook Pixel compatible.)\u003C\u002Fli>\n\u003Cli>Custom Footer Code (Before closing  tag aka wp_footer function)\u003C\u002Fli>\n\u003Cli>See Your Changes Immediately on your WordPress Site\u003C\u002Fli>\n\u003Cli>Built in Syntax Code Highlighter\u003C\u002Fli>\n\u003Cli>16 Color Schemes (Monokai, Chrome, GitHub, Twilight, Dreamweaver, XCode, Eclipse etc. 8 Light, 8 Dark)\u003C\u002Fli>\n\u003Cli>Live Syntax Checking (CSS, JavaScript, HTML)\u003C\u002Fli>\n\u003Cli>Syntax Highlighting\u003C\u002Fli>\n\u003Cli>Line wrapping\u003C\u002Fli>\n\u003Cli>Code folding\u003C\u002Fli>\n\u003Cli>Multiple cursors and selections\u003C\u002Fli>\n\u003Cli>Handles huge code blocks (four million lines seems to be the limit!)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Special thanks to \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fjustinbusa\u002F\" rel=\"nofollow ugc\">Justin Busa\u003C\u002Fa> of \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbeaver-builder-lite-version\u002F\" rel=\"ugc\">Beaver Builder\u003C\u002Fa> for the inspiration.\u003C\u002Fp>\n","Live Custom CSS JS Code Editor allows you to easily add custom CSS, JavaScript, Header, Footer Code to your site, straight from your WordPress Customi &hellip;",400,12960,3,"2020-03-13T20:32:00.000Z","5.3.21","3.4","",[20,73,74,75,22],"custom-css","custom-js","customizer","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Flive-css-js-code-editor\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flive-css-js-code-editor.zip",{"slug":74,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":28,"num_ratings":28,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":71,"tags":90,"homepage":93,"download_link":94,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"Custom JS","1.0.0","seosbg","https:\u002F\u002Fprofiles.wordpress.org\u002Fseosbg\u002F","\u003Cp>Custom JS WordPress plugin allows you to Custom JS fields in your theme. Simply amazing and easy to use.\u003Cbr \u002F>\nTo learn more about the Custom JS plugin please see Plugin URI. See screenshot examples at https:\u002F\u002Fwww.seosthemes.com\u002Fcustom-js\u002F\u003C\u002Fp>\n","Custom JS is easy to use. Custom JS WordPress plugin allows you to Custom JS fields in your theme - include js in head or footer.",200,3688,"2016-09-24T09:52:00.000Z","4.6.30","4.6",[20,73,91,74,92],"custom-javascript","textarea-css","https:\u002F\u002Fwww.seosthemes.com\u002Fcustom-js\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-js.zip",{"slug":96,"name":40,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":102,"downloaded":103,"rating":13,"num_ratings":14,"last_updated":104,"tested_up_to":105,"requires_at_least":106,"requires_php":71,"tags":107,"homepage":109,"download_link":110,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"custom-cssjs","1.0","becauseinterwebs","https:\u002F\u002Fprofiles.wordpress.org\u002Fbecauseinterwebs\u002F","\u003Cp>Tired of having to edit page templates or override theme options just to change one little thing?  Tired of having to “!important” your styles?\u003C\u002Fp>\n\u003Cp>Well, we can’t guarantee you won’t have to do that anymore 🙂 BUT, we can offer you a way to hopefully have to do LESS of it.  Simply install our Custom CSS\u002FJS plugin and you can add custom styles and scripts not only to your entire site but to individual pages and posts!\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Specify javascripts and styles to use on specific pages\u002Fposts OR on a global (site wide) basis.\u003C\u002Fli>\n\u003Cli>Will load external javascript references first so that you can reference them in your in-page javascripts.\u003C\u002Fli>\n\u003Cli>Simple and easy to use!\u003C\u002Fli>\n\u003C\u002Ful>\n","Add custom javascripts and styles to pages and posts as well as your entire site.",80,2782,"2015-09-14T15:12:00.000Z","4.3.34","3.0",[20,21,22,24,108],"style","http:\u002F\u002Fwww.becauseinterwebs.com\u002Fwordpress-custom-css-js\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-cssjs.zip",{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":119,"downloaded":120,"rating":28,"num_ratings":28,"last_updated":121,"tested_up_to":49,"requires_at_least":122,"requires_php":18,"tags":123,"homepage":126,"download_link":127,"security_score":56,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"customeasy","CustomEasy","1.0.2","LCweb","https:\u002F\u002Fprofiles.wordpress.org\u002Flcweb-projects\u002F","\u003Cp>Tiny plugin allowing you to write code directly in website’s head and\u002For footer. Insert code globally or specifically for single pages \u002F posts \u002F etc\u003C\u002Fp>\n\u003Cp>Features also a syntax highlighter (ACE) editor, to code faster and safer.\u003C\u002Fp>\n\u003Ch4>NOTE:\u003C\u002Fh4>\n\u003Cp>No support provided\u003C\u002Fp>\n","Gives you a quick and superlight way to inject codes in your website's HEAD or FOOTER",10,1931,"2024-12-10T20:00:00.000Z","5.0",[124,20,125,22,23],"code-injection","custom-code","https:\u002F\u002Flcweb.it\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustomeasy.zip",{"attackSurface":129,"codeSignals":161,"taintFlows":186,"riskAssessment":187,"analyzedAt":193},{"hooks":130,"ajaxHandlers":157,"restRoutes":158,"shortcodes":159,"cronEvents":160,"entryPointCount":28,"unprotectedCount":28},[131,137,141,145,151,155],{"type":132,"name":133,"callback":134,"file":135,"line":136},"action","admin_menu","cwcjs_register_submenu_page","admin\\custom-wp-css-js-admin.php",23,{"type":132,"name":138,"callback":139,"file":135,"line":140},"admin_init","cwcjs_register_settings",34,{"type":132,"name":142,"callback":143,"file":135,"line":144},"admin_enqueue_scripts","cwcjs_enqueue_styles",60,{"type":132,"name":146,"callback":147,"priority":148,"file":149,"line":150},"wp_head","cwcjs_print_inline_css",101,"public\\custom-wp-css-js-public.php",20,{"type":132,"name":152,"callback":153,"priority":148,"file":149,"line":154},"wp_footer","cwcjs_print_inline_script",46,{"type":132,"name":146,"callback":153,"priority":119,"file":149,"line":156},48,[],[],[],[],{"dangerousFunctions":162,"sqlUsage":163,"outputEscaping":165,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":14,"bundledLibraries":185},[],{"prepared":28,"raw":28,"locations":164},[],{"escaped":166,"rawEcho":167,"locations":168},4,7,[169,173,175,177,179,181,183],{"file":170,"line":171,"context":172},"admin\\custom-wp-css-js-form.php",107,"raw output",{"file":170,"line":174,"context":172},121,{"file":170,"line":176,"context":172},137,{"file":170,"line":178,"context":172},152,{"file":170,"line":180,"context":172},168,{"file":149,"line":182,"context":172},35,{"file":149,"line":184,"context":172},65,[],[],{"summary":188,"deductions":189},"The custom-wp-css-js plugin version 1.2.1 exhibits a strong security posture based on the provided static analysis and vulnerability history. The plugin has no known CVEs, and its code shows good practices such as 100% of SQL queries using prepared statements.  Furthermore, the attack surface is minimal, with zero AJAX handlers, REST API routes, shortcodes, or cron events, and all identified entry points are protected. The absence of critical or high-severity taint flows is also a positive indicator.\n\nHowever, a notable concern is the output escaping. With 11 total outputs and only 36% properly escaped, there is a significant risk of cross-site scripting (XSS) vulnerabilities. While the current analysis did not reveal specific XSS flaws, this low percentage of proper escaping represents a potential weakness that could be exploited if untrusted data is ever processed and displayed without sufficient sanitization.  The single capability check is also a very low number, suggesting limited granular control over plugin features, although with no entry points, this is less of a direct risk.\n\nIn conclusion, custom-wp-css-js appears to be a robustly coded plugin in terms of its attack surface and data handling (SQL). The lack of historical vulnerabilities further reinforces this. The primary and most significant weakness identified is the insufficient output escaping, which should be addressed to fully mitigate potential XSS risks.",[190],{"reason":191,"points":192},"Insufficient output escaping (36% proper)",8,"2026-03-16T21:20:31.024Z",{"wat":195,"direct":208},{"assetPaths":196,"generatorPatterns":205,"scriptPaths":206,"versionParams":207},[197,198,199,200,201,202,203,204],"\u002Fwp-content\u002Fplugins\u002Fcustom-wp-css-js\u002Fcss\u002Fstyles.min.css","\u002Fwp-content\u002Fplugins\u002Fcustom-wp-css-js\u002Fcodemirror\u002Fcodemirror.min.css","\u002Fwp-content\u002Fplugins\u002Fcustom-wp-css-js\u002Fcodemirror\u002Fcodemirror.js","\u002Fwp-content\u002Fplugins\u002Fcustom-wp-css-js\u002Fcodemirror\u002Fcss.js","\u002Fwp-content\u002Fplugins\u002Fcustom-wp-css-js\u002Fcodemirror\u002Fjavascript.js","\u002Fwp-content\u002Fplugins\u002Fcustom-wp-css-js\u002Fcodemirror\u002Fhtmlmixed.js","\u002Fwp-content\u002Fplugins\u002Fcustom-wp-css-js\u002Fcodemirror\u002Factive-line.js","\u002Fwp-content\u002Fplugins\u002Fcustom-wp-css-js\u002Fcodemirror\u002Fmatchbrackets.js",[],[],[],{"cssClasses":209,"htmlComments":210,"htmlAttributes":211,"restEndpoints":212,"jsGlobals":213,"shortcodeOutput":214},[],[],[],[],[],[215,216],"\u003Cstyle id=\"cwcjs-css\">","\u003Cscript id=\"cwcjs-script\">"]