Does ICustomizer have any unpatched vulnerabilities?

No. All known vulnerabilities in ICustomizer have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is ICustomizer compatible with WordPress 6.8.5?

According to WordPress.org data, ICustomizer 1.7.3 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is ICustomizer compatible with PHP 7.4+?

ICustomizer requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is ICustomizer updated?

ICustomizer was last updated on Jun 30, 2025. Frequent updates are generally a positive security signal.

What is ICustomizer's security score?

ICustomizer has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

ICustomizer Security & Risk Analysis

wordpress.org/plugins/icustomizer

Personnalisation de votre administration et de votre site web

30 active installs v1.7.3 PHP 7.4+ WP 5.9+ Updated Jun 30, 2025

admincustom-csscustom-jsdashboardmetas

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is ICustomizer Safe to Use in 2026?

Generally Safe

Score 100/100

ICustomizer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 9mo ago

Risk Assessment

The "icustomizer" v1.7.3 plugin exhibits a generally strong security posture based on the provided static analysis and vulnerability history. The absence of known CVEs and the complete reliance on prepared statements for SQL queries are significant strengths. Furthermore, the lack of critical or high-severity taint flows and a minimal attack surface with no exposed entry points are positive indicators. The plugin also demonstrates some good practices with a capability check in place and a file operation being present, suggesting potential for secure file handling. However, several areas raise concerns. The presence of three instances of the `create_function` function is a notable risk, as it can be a vector for code injection vulnerabilities if not handled with extreme care and proper sanitization. Additionally, a very low percentage of properly escaped output (2%) is a significant weakness, indicating a high likelihood of cross-site scripting (XSS) vulnerabilities. The bundled jQuery library v1.9.1 is also outdated, which could expose the plugin and the site to known vulnerabilities in that version. While the plugin has no recorded history of vulnerabilities, the identified code signals point to potential weaknesses that could be exploited.

Key Concerns

Low output escaping percentage
Presence of create_function
Outdated bundled library jQuery v1.9.1

Vulnerabilities

None known

ICustomizer Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

ICustomizer Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

162

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Dangerous Functions Found

create_functionadd_filter ( 'user_can_richedit' , create_function ( '$a' , 'return false;' ) , 50 );includes\icustomizer-editor.php:166

create_functionadd_filter( 'admin_footer_text', create_function('', 'return;'), 999);includes\icustomizer-general.php:322

create_functionif ( get_option( 'icustomizer_hide_connection_errors' )) add_filter('login_errors', create_function(includes\icustomizer-general.php:393

Bundled Libraries

jQuery1.9.1

Output Escaping

2% escaped165 total outputs

Attack Surface

ICustomizer Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 35

actionadmin_enqueue_scriptscore\framework.php:269

actionadmin_noticescore\framework.php:282

actionadmin_noticescore\framework.php:295

actionadmin_noticescore\framework.php:298

actionadmin_menuicustomizer-menu.php:8

actionadmin_enqueue_scriptsicustomizer-style.php:8

actionadmin_enqueue_scriptsicustomizer-style.php:18

actionplugins_loadedicustomizer-system.php:104

actionadmin_noticesicustomizer-system.php:140

actionplugins_loadedicustomizer.php:75

filterplugin_row_metaicustomizer.php:113

actionadmin_headincludes\icustomizer-customcssbackend.php:89

actionwp_headincludes\icustomizer-customcsssite.php:89

actionwp_footerincludes\icustomizer-customjs.php:90

actionwp_dashboard_setupincludes\icustomizer-dashboard.php:254

actionadmin_menuincludes\icustomizer-dashboard.php:269

filterwp_default_editorincludes\icustomizer-editor.php:153

filteruser_can_richeditincludes\icustomizer-editor.php:166

filtertiny_mce_before_initincludes\icustomizer-editor.php:175

filterthe_excerptincludes\icustomizer-editor.php:181

filtermeta_generator_tagincludes\icustomizer-general.php:310

filteradmin_footer_textincludes\icustomizer-general.php:316

filteradmin_footer_textincludes\icustomizer-general.php:322

filteradmin_footer_textincludes\icustomizer-general.php:324

filterupdate_footerincludes\icustomizer-general.php:330

actionadmin_enqueue_scriptsincludes\icustomizer-general.php:345

actionadmin_enqueue_scriptsincludes\icustomizer-general.php:356

actionadmin_enqueue_scriptsincludes\icustomizer-general.php:367

actionadmin_enqueue_scriptsincludes\icustomizer-general.php:378

actionadmin_menuincludes\icustomizer-general.php:387

filterlogin_errorsincludes\icustomizer-general.php:393

filterlogin_errorsincludes\icustomizer-general.php:395

filterlogin_headerurlincludes\icustomizer-login.php:192

filterlogin_headertextincludes\icustomizer-login.php:203

actionlogin_enqueue_scriptsincludes\icustomizer-login.php:213

Maintenance & Trust

ICustomizer Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJun 30, 2025

PHP min version7.4

Downloads6K

Community Trust

Rating100/100

Number of ratings1

Active installs30

Alternatives

ICustomizer Alternatives

Simple Custom CSS and JS

custom-css-js

100

Easily add Custom CSS or JS to your website with an awesome editor.

700K 1 CVE

Admin Menu Editor

admin-menu-editor

Lets you edit the WordPress admin menu. You can re-order, hide or rename menus, add custom menus and more.

400K 2 CVEs

White Label CMS

white-label-cms

Customise dashboard panels and branding, hide menus plus lots more.

200K 7 CVEs

Ultimate Dashboard – Custom WordPress Dashboard

ultimate-dashboard

The #1 Plugin to Customize the WordPress Dashboard!

60K 8 CVEs

Display PHP Version

display-php-version

Displays the currently installed PHP/MySQL version in the "At a Glance" admin dashboard widget.

30K No CVEs

Developer Profile

ICustomizer Developer Profile

informatux

1 plugin · 30 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect ICustomizer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/icustomizer/core/assets/css/icustomizer-style.css/wp-content/plugins/icustomizer/core/assets/js/icustomizer-script.js

Script Paths

/wp-content/plugins/icustomizer/core/assets/js/icustomizer-script.js

Version Parameters

icustomizer/core/assets/css/icustomizer-style.css?ver=icustomizer/core/assets/js/icustomizer-script.js?ver=

HTML / DOM Fingerprints

CSS Classes

icustomizer-dashboard-widget

HTML Comments

ICustomizer Meta links in plugins page

Data Attributes

data-icustomizer

JS Globals

window.icustomizer_vars

FAQ

ICustomizer Security & Risk Analysis

Is ICustomizer Safe to Use in 2026?

Generally Safe

Key Concerns

ICustomizer Security Vulnerabilities

ICustomizer Code Analysis

Dangerous Functions Found

Bundled Libraries

Output Escaping

ICustomizer Attack Surface

ICustomizer Maintenance & Trust

Maintenance Signals

Community Trust

ICustomizer Alternatives

Simple Custom CSS and JS

Admin Menu Editor

White Label CMS

Ultimate Dashboard – Custom WordPress Dashboard

Display PHP Version

ICustomizer Developer Profile

How We Detect ICustomizer

Asset Fingerprints

HTML / DOM Fingerprints

Frequently Asked Questions about ICustomizer