[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fJuFjVfwINr4Do508XcXt5OSNh4llp9VStBc507h1zF8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":140,"fingerprints":264},"header-and-footer-snippets","Header and Footer Snippets","0.9","Verb_Form04","https:\u002F\u002Fprofiles.wordpress.org\u002Fverb_form04\u002F","\u003Cp>This is a very simple plugin that allows you to add snippets such as CSS and Javascript to the header and\u002For footer of your site.  You can add both side-wide snippets and page specific snippets.\u003C\u002Fp>\n","Add snippets to the header and footer of your site..",10,1094,0,"2017-10-22T18:41:00.000Z","4.8.28","3.5.0","",[19,20,21,22],"css","footer","header","javascript","http:\u002F\u002Fformula04.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fheader-and-footer-snippets.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"verb_form04",3,30,84,"2026-04-04T05:40:25.047Z",[36,61,81,101,122],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":51,"tags":52,"homepage":56,"download_link":57,"security_score":58,"vuln_count":59,"unpatched_count":13,"last_vuln_date":60,"fetched_at":27},"cm-header-footer-script-loader","CM Header and Footer  – Add custom scripts and styles to your header and footer with ease","1.3.0","CreativeMindsSolutions","https:\u002F\u002Fprofiles.wordpress.org\u002Fcreativemindssolutions\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.cminds.com\u002Fwordpress-plugins-library\u002Fwordpress-header-and-footer-script-loader-plugin\u002F\" rel=\"nofollow ugc\">Premium Plugin Page\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.videolessonsplugin.com\u002Fvideo-lesson\u002Flesson\u002Fheader-footer-script-loader-plugin\u002F\" rel=\"nofollow ugc\">Videos\u003C\u002Fa>  | \u003Ca href=\"https:\u002F\u002Fcreativeminds.helpscoutdocs.com\u002Fcategory\u002F452-header-and-footer-script-loader\" rel=\"nofollow ugc\">User Guide\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Easily manage and control header and footer scripts and styles on your WordPress site using a simple and user-friendly plugin.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>⭐ \u003Cem>We’re excited to introduce the updated 2025 version of the CM Header and Footer plugin! This release brings a fresh, modern design to the script creation and editing interface, making it even more intuitive and user-friendly. Install now and enjoy the improved experience!\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>With the Header and Footer Script Loader plugin, you can easily manage and control additional scripts and styles on your WordPress site.\u003C\u002Fp>\n\u003Cp>This plugin allows you to pre-load all scripts and styles in the plugin settings, as well as inject custom JavaScript and code to suit your needs.\u003C\u002Fp>\n\u003Cp>You have the option to choose whether a script should be automatically or manually uploaded in all posts.\u003C\u002Fp>\n\u003Ch3>Insert Headers and Footers Premium Edition\u003C\u002Fh3>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fwww.cminds.com\u002Fwordpress-plugins-library\u002Fwordpress-header-and-footer-script-loader-plugin\u002F\" rel=\"nofollow ugc\">Insert Headers and Footers Plugin Premium editions\u003C\u002Fa> includes even more powerful features, such as: each post has a header and footer metabox that allows you to control the various scripts and styles, device selection for each script and stlye and much more.\u003C\u002Fp>\n\u003Ch3>Insert Headers and Footers Plugin Introduction Video (Pro Version)\u003C\u002Fh3>\n\u003Cdiv class=\"embed-vimeo\" style=\"text-align: center;\">\u003Ciframe loading=\"lazy\" src=\"https:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F141020978\" width=\"750\" height=\"422\" frameborder=\"0\" webkitallowfullscreen mozallowfullscreen allowfullscreen>\u003C\u002Fiframe>\u003C\u002Fdiv>\n\u003Ch3>Insert Script Plugin Use Cases\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Control Site Scripts\u003C\u002Fstrong> – Easily add or replace various scripts and styles to your WordPress site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Selective Loading Per Post\u003C\u002Fstrong> – Target scripts and styles to specific posts or groups of custom posts.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reduce Script Load\u003C\u002Fstrong> – Reduce the amount of scripts loaded throughout the site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Target Script to Specific Posts or URL Pattern\u003C\u002Fstrong> (premium plugin) – Target scripts to load on a specific URL or URL pattern.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Per Device Script Support\u003C\u002Fstrong> (premium plugin) – Load script on a Mobile or Desktop or both.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Basic Plugin Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Add unlimited number of JS scripts and CSS styles.\u003C\u002Fli>\n\u003Cli>Load scripts in header or footer.\u003C\u002Fli>\n\u003Cli>Load scripts on all posts and pages.\u003C\u002Fli>\n\u003Cli>Load scripts on selected post types.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Pro Version Features\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.cminds.com\u002Fwordpress-plugins-library\u002Fwordpress-header-and-footer-script-loader-plugin\u002F\" rel=\"nofollow ugc\">Pro Version Detailed Features List\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Add unlimited number of JS, CSS, PHP and HTML scripts.\u003C\u002Fli>\n\u003Cli>Load scripts in header, footer, after opening body tag, before or after content.\u003C\u002Fli>\n\u003Cli>Support script loading on custom posts.\u003C\u002Fli>\n\u003Cli>Target scripts to selected posts and pages.\u003C\u002Fli>\n\u003Cli>Target scripts to posts of chosen categories.\u003C\u002Fli>\n\u003Cli>Target scripts to posts of chosen tags.\u003C\u002Fli>\n\u003Cli>Target scripts by URL or group of URLs.\u003C\u002Fli>\n\u003Cli>Target by device type: desktop only, mobile only or both for each script you set.\u003C\u002Fli>\n\u003Cli>Control script loading on specific posts using a metabox.\u003C\u002Fli>\n\u003Cli>Control when to launch scripts by adding timeframe.\u003C\u002Fli>\n\u003Cli>Add titles and internal notes to scripts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Follow Us\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.cminds.com\u002Fcategory\u002Fwordpress\u002F\" rel=\"nofollow ugc\">Blog\u003C\u002Fa> | \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fcmplugins\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.linkedin.com\u002Fcompany\u002Fcreativeminds\" rel=\"nofollow ugc\">LinkedIn\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fuser\u002Fcmindschannel\" rel=\"nofollow ugc\">YouTube\u003C\u002Fa> | \u003Ca href=\"http:\u002F\u002Fwww.pinterest.com\u002Fcmplugins\u002F\" rel=\"nofollow ugc\">Pinterest\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fcmplugins\u002F\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Plugin usage instructions\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Click “Add New Script”.\u003C\u002Fli>\n\u003Cli>Fill the “Script Name” field and paste “Script Code”.\u003C\u002Fli>\n\u003Cli>Click “Expand Additional Settings”.\u003C\u002Fli>\n\u003Cli>Optionally, add a note with explanations for a script.\u003C\u002Fli>\n\u003Cli>Select “Script Type”, “Script Location” and “Where to Load”.\u003C\u002Fli>\n\u003Cli>Click “Save Script”.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Suggested Plugins by CreativeMinds\u003C\u002Fh3>\n\u003Cp>List of all \u003Ca href=\"https:\u002F\u002Fwww.cminds.com\" rel=\"nofollow ugc\">WordPress Plugins\u003C\u002Fa> by CreativeMinds\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fglossaryplugin.com\u002F\" rel=\"nofollow ugc\">CM Tooltip Glossary\u003C\u002Fa> – Easily creates a Glossary, Encyclopaedia or Dictionary of your website’s terms and shows them as a tooltip in posts and pages when hovering. With many more powerful features.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.downloadmanagerplugin.com\u002F\" rel=\"nofollow ugc\">CM Download Manager\u003C\u002Fa> – Allows users to upload, manage, track and support documents or files in a download directory listing database for others to contribute, use and comment upon.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.answersplugin.com\u002F\" rel=\"nofollow ugc\">CM Answers Plugin\u003C\u002Fa> – A fully-featured WordPress Questions & Answers Plugin that allows you to build multiple discussion forum systems Just like StackOverflow, Yahoo Answers and Quora, Now with MicroPayments and Anonymous posting support.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Frestrictcontent.com\u002F\" rel=\"nofollow ugc\">CM Restrict Content\u003C\u002Fa> – A full-featured, powerful membership solution and content restriction plugin for WordPress. Support access by role to content on your site.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fonboardingplugin.com\u002F\" rel=\"nofollow ugc\">CM OnBoarding\u003C\u002Fa> – Superb Guidance tool which improves the online experience and the user satisfaction.\u003C\u002Fli>\n\u003C\u002Ful>\n","Add custom CSS and JavaScript to headers and footers on your site with the header and footer plugin for enhanced control and design.",1000,44152,100,2,"2026-01-29T11:00:00.000Z","6.9.4","5.4.0","5.2.4",[53,20,21,54,55],"custom-css","insert-html","insert-javascript","https:\u002F\u002Fwww.cminds.com\u002Fwordpress-plugins-library\u002Fwordpress-header-and-footer-script-loader-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcm-header-footer-script-loader.zip",99,1,"2025-04-03 00:00:00",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":46,"num_ratings":71,"last_updated":72,"tested_up_to":49,"requires_at_least":73,"requires_php":17,"tags":74,"homepage":77,"download_link":78,"security_score":79,"vuln_count":59,"unpatched_count":13,"last_vuln_date":80,"fetched_at":27},"wp-headers-and-footers","Insert Headers And Footers","3.1.3","Adnan","https:\u002F\u002Fprofiles.wordpress.org\u002Fhiddenpearls\u002F","\u003Cp>WP Headers and Footers plugin helps you to insert code to your WordPress website headers and footers section like Google Analytics tracking code, Facebook Pixels code, Google Optimize code for A\u002FB testing, Custom CSS code, and more. You don’t need to edit the theme files to insert the code.\u003C\u002Fp>\n\u003Cp>The simple interface of this plugin allows you to add code and different scripts from one place to your WordPress website (\u003Cstrong>Headers, Footers, and Body section\u003C\u002Fstrong>).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Insert code to your WordPress headers & Footers\u003C\u002Fli>\n\u003Cli>Insert Google Analytics Code to any WordPress theme\u003C\u002Fli>\n\u003Cli>Insert Facebook Pixels Code\u003C\u002Fli>\n\u003Cli>Add Google Optimize Code for A\u002FB testing ( Ab Testing )\u003C\u002Fli>\n\u003Cli>Add Google search console authentication code to any theme for verification\u003C\u002Fli>\n\u003Cli>Add Custom CSS, any script, and HTML to your website\u003C\u002Fli>\n\u003Cli>Google Tag Manager code\u002Fscript insertion\u003C\u002Fli>\n\u003Cli>You can also add microsoft clarity tracking code to your website\u003C\u002Fli>\n\u003Cli>You can also insert code to your website body section\u003C\u002Fli>\n\u003Cli>Can add Bing webmaster tool code for website verification\u003C\u002Fli>\n\u003Cli>Add Google AdSense code\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>If you find our plugin useful, please leave a good rating\u002Freview and check our other plugins.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fanalytify.io\u002Fref\u002F73\u002F?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Analytify – Google Analytics Plugin\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Floginpress.pro\u002F?utm_source=wp-headers-and-footers\" rel=\"nofollow ugc\">LoginPress\u003C\u002Fa> – For Custom login page and login page security\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsimplesocialbuttons.com?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Simple Social Buttons\u003C\u002Fa> – Plugin for Social share buttons and social icons\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frelated-posts-thumbnails\u002F\" rel=\"ugc\">Related Posts Thumbnails Plugin\u003C\u002Fa> – For related posts\u002Fproducts\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpbrigade.com\u002Frecommend\u002Fmaintenance-mode?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Under Construction, Coming Soon & Maintenance Mode\u003C\u002Fa> – Plugin for Under construction & Coming soon page\u003C\u002Fli>\n\u003C\u002Ful>\n","Include inline javascript, stylesheets, CSS code or anything you want in Header and Footer areas of your WordPress with ease.",300000,2339048,127,"2026-01-05T15:03:00.000Z","5.0",[53,75,20,76,21],"facebook-pixel","google-analytics","https:\u002F\u002Fwww.WPBrigade.com\u002Fwordpress\u002Fplugins\u002Fwp-headers-and-footers\u002F?utm_source=?utm_source=wp-headers-and-footers&utm_medium=author-uri-link","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-headers-and-footers.3.1.3.zip",98,"2025-04-18 00:00:00",{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":89,"downloaded":90,"rating":91,"num_ratings":92,"last_updated":93,"tested_up_to":94,"requires_at_least":95,"requires_php":17,"tags":96,"homepage":99,"download_link":100,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"oh-add-script-header-footer","SOGO Add Script to Individual Pages Header Footer","3.9","SOGO","https:\u002F\u002Fprofiles.wordpress.org\u002Forenhav\u002F","\u003Cp>Tested with Gutenberg\u003C\u002Fp>\n\u003Cp>Create a simple way to add javascript code to individual page post or custom post type header and footer,\u003Cbr \u002F>\nfor example: add conversion code to thank you pages\u003Cbr \u002F>\nadd google re-marketing code to individual pages\u003Cbr \u002F>\nand much more…\u003Cbr \u002F>\nadded in version 1.3 the option to add script  \\ style to all pages not only individual pages,\u003Cbr \u002F>\n this will allow you to add Google re-marketing code to the entire site or Google Analytics\u003Cbr \u002F>\n to use it goto “settings” – “Header Footer Settings”\u003C\u002Fp>\n\u003Cp>New Features (version 3.0):\u003Cbr \u002F>\nAdded option for terms  \u002F category pages\u003C\u002Fp>\n\u003Cp>New Features (version 2.3):\u003Cbr \u002F>\n Added support for WooCommerce shop page.\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>we support now exclude individual pages form printing the header and footer scripts, this is supported by 2 checkboxes in each page\\post\u003Cbr \u002F>\nbuy check it the script will not be display on this page\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>we added support to limit the script only for certain post type \\ page\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>if you like it \\ use it – please rate us.\u003C\u002Fp>\n\u003Cp>usage:\u003Cbr \u002F>\nYou need to paste the code with the script tag, for example:\u003Cbr \u002F>\n   you js code \u003C\u002Fp>\n","Simple plugin to add script to header and footer for individual pages & posts",20000,382562,86,31,"2020-01-20T09:20:00.000Z","5.3.21","3.5",[20,21,22,97,98],"js","re-marketing-code","http:\u002F\u002Fsogo.co.il","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Foh-add-script-header-footer.zip",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":109,"downloaded":110,"rating":46,"num_ratings":111,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":115,"tags":116,"homepage":17,"download_link":121,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"embed-code","Embed Code – Headers & Footers by DesignBombs","2.0.4","designbombs","https:\u002F\u002Fprofiles.wordpress.org\u002Fdesignbombs\u002F","\u003Cp>Easily insert or embed header and footer code in WordPress. Embed Code makes embedding global or page\u002Fpost-specific header and footer code super easy. It can be used to add almost anything, including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Google Analytics tracking code\u003C\u002Fli>\n\u003Cli>Site verification snippets\u003C\u002Fli>\n\u003Cli>Typekit font scripts\u003C\u002Fli>\n\u003Cli>Custom CSS\u003C\u002Fli>\n\u003Cli>Custom JavaScript\u003C\u002Fli>\n\u003Cli>Optimizely embed code\u003C\u002Fli>\n\u003Cli>Facebook tracking pixel\u003C\u002Fli>\n\u003Cli>Live chat integration\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It even supports embedding code on custom post types!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What’s Next?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin is maintained by folks over at \u003Ca href=\"http:\u002F\u002Fdesignbombs.com\" rel=\"nofollow ugc\">DesignBombs.com\u003C\u002Fa>. If you are looking to start a new website, checkout their guide on \u003Ca href=\"https:\u002F\u002Fwww.designbombs.com\u002Fhow-to-make-a-website\u002F\" rel=\"nofollow ugc\">how to create a website\u003C\u002Fa>. They also have in-depth guides on other topics like how to \u003Ca href=\"https:\u002F\u002Fwww.designbombs.com\u002Fbest-wordpress-hosting\" rel=\"nofollow ugc\">choose the best WordPress hosting\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwww.designbombs.com\u002Fhow-to-start-a-blog\u002F\" rel=\"nofollow ugc\">how to start a blog\u003C\u002Fa>, and \u003Ca href=\"https:\u002F\u002Fwww.designbombs.com\u002Fwordpress-security\u002F\" rel=\"nofollow ugc\">WordPress security\u003C\u002Fa>.\u003C\u002Fp>\n","The easiest way to embed code in the head or footer of your site, globally or on a per-page\u002Fpost basis.",5000,59115,6,"2021-08-04T08:03:00.000Z","5.8.13","4.7.0","5.4",[102,117,118,119,120],"embed-javascript","footer-code","header-code","tracking-code","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fembed-code.zip",{"slug":123,"name":124,"version":39,"author":125,"author_profile":126,"description":127,"short_description":128,"active_installs":129,"downloaded":130,"rating":131,"num_ratings":132,"last_updated":133,"tested_up_to":134,"requires_at_least":135,"requires_php":17,"tags":136,"homepage":138,"download_link":139,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"simple-header-footer-html","Simple Header Footer HTML","Otto Kekäläinen","https:\u002F\u002Fprofiles.wordpress.org\u002Fottok\u002F","\u003Cp>This plugin is useful if you have want to enable your users to insert custom CSS or add custom headers or some JavaScript into the site without having to edit any theme files. Unlike similar header\u002Ffooter plugins, this plugin by design does not allow to insert PHP code and does not contain any evil eval() calls.\u003C\u002Fp>\n\u003Cp>The plugin is safe to use in WordPress Network installations, where site admins are not supposed to have PHP execution access but any HTML\u002FCSS\u002FJS code is safe to accept.\u003C\u002Fp>\n\u003Cp>Simple Header Footer HTML is made by Seravo.com. Seravo provides Premium Hosting and Upkeep service for WordPress.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Contributing\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Source available at https:\u002F\u002Fgithub.com\u002FSeravo\u002Fwp-simple-header-footer-html\u003C\u002Fp>\n","A simple plugin for injecting HTML into various places in your WordPress theme output.",4000,30284,94,9,"2020-08-06T10:15:00.000Z","5.5.18","3.8.9",[19,20,21,137,97],"https","https:\u002F\u002Fgithub.com\u002FSeravo\u002Fwp-simple-header-footer-html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-header-footer-html.zip",{"attackSurface":141,"codeSignals":199,"taintFlows":239,"riskAssessment":258,"analyzedAt":263},{"hooks":142,"ajaxHandlers":195,"restRoutes":196,"shortcodes":197,"cronEvents":198,"entryPointCount":13,"unprotectedCount":13},[143,149,153,155,159,163,167,171,175,178,180,182,186,191],{"type":144,"name":145,"callback":146,"file":147,"line":148},"action","admin_footer","hf_snippets_admin_scripts_func","headandfoot.php",35,{"type":144,"name":150,"callback":151,"file":147,"line":152},"admin_head","hf_snippets_admin_head",41,{"type":144,"name":145,"callback":146,"file":147,"line":154},47,{"type":144,"name":156,"callback":157,"file":147,"line":158},"wp_enqueue_scripts","enqueue_scripts_func",54,{"type":144,"name":160,"callback":161,"priority":11,"file":147,"line":162},"save_post","hf_save_meta_box_data",60,{"type":144,"name":164,"callback":165,"priority":11,"file":147,"line":166},"add_meta_boxes","hf_add_meta_boxes",66,{"type":144,"name":168,"callback":169,"priority":11,"file":147,"line":170},"admin_menu","hf_create_menu",73,{"type":144,"name":172,"callback":173,"file":147,"line":174},"wp_head","closure",291,{"type":144,"name":176,"callback":173,"file":147,"line":177},"wp_footer",330,{"type":144,"name":172,"callback":173,"file":147,"line":179},365,{"type":144,"name":176,"callback":173,"file":147,"line":181},396,{"type":144,"name":183,"callback":184,"file":147,"line":185},"admin_init","register_thesettings",492,{"type":187,"name":188,"callback":189,"priority":11,"file":147,"line":190},"filter","footer_snippets","test_footer_snippets_filter",511,{"type":187,"name":192,"callback":193,"priority":11,"file":147,"line":194},"header_snippets","test_header_snippets_filter",516,[],[],[],[],{"dangerousFunctions":200,"sqlUsage":201,"outputEscaping":203,"fileOperations":13,"externalRequests":13,"nonceChecks":59,"capabilityChecks":59,"bundledLibraries":238},[],{"prepared":13,"raw":13,"locations":202},[],{"escaped":204,"rawEcho":205,"locations":206},11,15,[207,210,212,214,216,218,220,222,224,226,228,230,232,234,236],{"file":147,"line":208,"context":209},129,"raw output",{"file":147,"line":211,"context":209},140,{"file":147,"line":213,"context":209},269,{"file":147,"line":215,"context":209},302,{"file":147,"line":217,"context":209},311,{"file":147,"line":219,"context":209},340,{"file":147,"line":221,"context":209},348,{"file":147,"line":223,"context":209},373,{"file":147,"line":225,"context":209},381,{"file":147,"line":227,"context":209},404,{"file":147,"line":229,"context":209},412,{"file":147,"line":231,"context":209},439,{"file":147,"line":233,"context":209},449,{"file":147,"line":235,"context":209},458,{"file":147,"line":237,"context":209},469,[],[240],{"entryPoint":241,"graph":242,"unsanitizedCount":13,"severity":257},"\u003Cheadandfoot> (headandfoot.php:0)",{"nodes":243,"edges":254},[244,249],{"id":245,"type":246,"label":247,"file":147,"line":248},"n0","source","$_REQUEST (x2)",194,{"id":250,"type":251,"label":252,"file":147,"line":215,"wp_function":253},"n1","sink","echo() [XSS]","echo",[255],{"from":245,"to":250,"sanitized":256},true,"low",{"summary":259,"deductions":260},"The header-and-footer-snippets plugin v0.9 exhibits a generally strong security posture based on the provided static analysis. There are no identified entry points like AJAX handlers, REST API routes, or shortcodes that are unprotected, which significantly reduces the attack surface. The code also demonstrates good practices by using prepared statements for all SQL queries, performing file operations safely (none found), and making no external HTTP requests. The presence of nonce and capability checks, while only one each, indicates an awareness of security best practices for potential privileged operations.\n\nHowever, a significant concern arises from the output escaping. With 26 total outputs and only 42% properly escaped, there is a substantial risk of cross-site scripting (XSS) vulnerabilities. This means that user-supplied data or data processed by the plugin could potentially be rendered in the browser without adequate sanitization, allowing attackers to inject malicious scripts. The taint analysis shows no unsanitized paths, which is positive, but this does not negate the risk posed by the lack of output escaping.\n\nThe plugin's vulnerability history is clean, with zero recorded CVEs. This, coupled with the absence of critical or high-severity taint flows, suggests that the developers have maintained a good track record and that the plugin, in its current state, does not appear to have publicly known or severe exploitable flaws. The strengths lie in its limited attack surface and secure data handling for SQL and file operations. The primary weakness is the insufficient output escaping, which presents a direct security risk.",[261],{"reason":262,"points":111},"Insufficient output escaping","2026-03-17T00:35:43.603Z",{"wat":265,"direct":270},{"assetPaths":266,"generatorPatterns":267,"scriptPaths":268,"versionParams":269},[],[],[],[],{"cssClasses":271,"htmlComments":273,"htmlAttributes":274,"restEndpoints":281,"jsGlobals":282,"shortcodeOutput":283},[272],"headandfoot_admin",[],[275,276,277,278,279,280],"name=\"header_snippets\"","name=\"hs_priority\"","name=\"footer_snippets\"","name=\"fs_priority\"","id=\"hs_ta\"","id=\"fs_ta\"",[],[],[]]