WP-Safety

Easy Code Highlighter Security & Risk Analysis

wordpress.org/plugins/easy-code-highlighter

Displays code with syntax highlighting using Prism.js, real line numbering, and a copy button.

0 active installs v1.00 PHP 7.0+ WP 5.1+ Updated Mar 11, 2025
codecode-highlighterhighlighterteams
92
A · Safe
CVEs total0
Unpatched0
Last CVENever
Download
Safety Verdict

Is Easy Code Highlighter Safe to Use in 2026?

Generally Safe

Score 92/100

Easy Code Highlighter has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago
Risk Assessment

The "easy-code-highlighter" v1.00 plugin exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of dangerous functions, the exclusive use of prepared statements for SQL queries, and the complete proper escaping of all output are significant strengths. Furthermore, the plugin demonstrates good practice by implementing nonce checks. The attack surface is minimal, with only one shortcode identified, and importantly, no entry points are unprotected.

The taint analysis reveals no identified flows with unsanitized paths, and no critical or high severity issues were detected. This lack of flagged issues in taint analysis, combined with a clean vulnerability history showing zero known CVEs, indicates a well-developed and secure plugin. The absence of file operations and external HTTP requests further reduces potential attack vectors.

Overall, this plugin appears to be very secure. The main areas for potential, albeit minor, improvement would be the addition of capability checks to the shortcode to ensure administrative privileges if the shortcode's functionality is sensitive. However, based on the provided data, the plugin is robust and poses a very low security risk.

Vulnerabilities
None known

Easy Code Highlighter Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Easy Code Highlighter Release Timeline

v1.00Current
Code Analysis
Analyzed Apr 16, 2026

Easy Code Highlighter Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
93 escaped
Nonce Checks
2
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

100% escaped93 total outputs
Data Flows · Security
All sanitized

Data Flow Analysis

2 flows
easy_hi_reormadrid_code_highlighter_settings_page (easy-code-highlighter.php:188)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Easy Code Highlighter Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[easycode] easy-code-highlighter.php:158
WordPress Hooks 5
actionwp_enqueue_scriptseasy-code-highlighter.php:94
actionadmin_menueasy-code-highlighter.php:173
actionadmin_enqueue_scriptseasy-code-highlighter.php:184
actionadmin_enqueue_scriptseasy-code-highlighter.php:386
actionwp_enqueue_scriptseasy-code-highlighter.php:487
Maintenance & Trust

Easy Code Highlighter Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5
Last updatedMar 11, 2025
PHP min version7.0
Downloads474

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Easy Code Highlighter Alternatives

HTML Editor Syntax Highlighter

HTML Editor Syntax Highlighter

html-editor-syntax-highlighter

A
85

Add syntax highlighting to WordPress code editors using CodeMirror.js

50K No CVEs
Urvanov Syntax Highlighter

Urvanov Syntax Highlighter

urvanov-syntax-highlighter

A
100

Reincarnation of Crayon Syntax Highlighter. Syntax Highlighter supporting multiple languages, themes, fonts, highlighting from a URL, or post text.

3K 1 CVE
AH Code Highlighter

AH Code Highlighter

ah-prism-syntax-highlighter

A
85

The easiest to use code highlighting ever. Choose between 8 different color themes to highlight your code snippets. Many programming languages are sup …

70 No CVEs
iG:Syntax Hiliter

iG:Syntax Hiliter

igsyntax-hiliter

A
85

A plugin to easily present source code on your site with syntax highlighting and formatting (as seen in code editors, IDEs).

60 No CVEs
Prism Highlight

Prism Highlight

prism-highlight

A
85

Styles Your Code With Prism.JS, a Lightest Code Highlighter.

30 No CVEs
Developer Profile

Easy Code Highlighter Developer Profile

ReorMadrid

3 plugins · 0 total installs

88
trust score
Avg Security Score
92/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Easy Code Highlighter

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/easy-code-highlighter/js/prism.min.js/wp-content/plugins/easy-code-highlighter/css/prism-tomorrow.min.css/wp-content/plugins/easy-code-highlighter/js/prism-markup-templating.min.js/wp-content/plugins/easy-code-highlighter/js/prism-php.min.js/wp-content/plugins/easy-code-highlighter/js/prism-javascript.min.js/wp-content/plugins/easy-code-highlighter/js/prism-css.min.js/wp-content/plugins/easy-code-highlighter/css/style.css
Script Paths
/wp-content/plugins/easy-code-highlighter/js/prism.min.js/wp-content/plugins/easy-code-highlighter/js/prism-markup-templating.min.js/wp-content/plugins/easy-code-highlighter/js/prism-php.min.js/wp-content/plugins/easy-code-highlighter/js/prism-javascript.min.js/wp-content/plugins/easy-code-highlighter/js/prism-css.min.js

HTML / DOM Fingerprints

CSS Classes
code-containercopy-buttoncode-wrapperline-numbers
HTML Comments
Example of how to use the shortcode to display the code.Uso:Example of how to use the shortcode to display the code.Evita el acceso directo.+17 more
Data Attributes
languageonclick="copyCode(this)"
JS Globals
copyCode
Shortcode Output
<div class="code-container"><button class="copy-button" onclick="copyCode(this)"><div class="code-wrapper"><div class="line-numbers">
FAQ

Frequently Asked Questions about Easy Code Highlighter