[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$ffq2BPw4Iz9vRhr5YZutOnWT6JLk90Y4AQ0JRiqOxG_8":3,"$fy2WY41tTmKe1EL7zgfLH7gdKTizCDx-2vr7ZiybzoNE":226},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":138,"fingerprints":204},"inject-o-matic","Inject-O-Matic","1.0.0","Baden","https:\u002F\u002Fprofiles.wordpress.org\u002Fbaden03\u002F","\u003Cp>Inject-O-Matic is a WordPress plugin that allows users to inject custom jQuery and Javascript into the header and footer of a WordPress site.\u003C\u002Fp>\n","Inject custom jQuery\u002FJavascript into the header and\u002For footer of a WordPress site.",30,2312,0,"2015-05-22T10:36:00.000Z","4.2.39","3.5","",[19,20,21,22,23],"header","inject","javascript","jquery","script","http:\u002F\u002Fplugins.twinpictures.de\u002Fplugins\u002Finject-o-matic\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finject-o-matic.1.0.0.zip",85,null,"2026-04-06T09:54:40.288Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":11,"trust_score":35,"computed_at":36},"baden03",3,140,78,79,"2026-04-08T11:17:49.687Z",[38,60,80,101,120],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":57,"download_link":58,"security_score":59,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"javascript-autoloader","Smart JavaScript Auto Loader","5.0.3","Peter Raschendorfer","https:\u002F\u002Fprofiles.wordpress.org\u002Fpetersplugins\u002F","\u003Cp>The Smart JavaScript Auto Loader Plugin allows you to load additional JavaScript files without the need to change files in the theme directory\u003C\u002Fp>\n\u003Ch3>Retired Plugin\u003C\u002Fh3>\n\u003Cp>Development, maintenance and support of this plugin has been retired in october 2023. You can use this plugin as long as is works for you.\u003C\u002Fp>\n\u003Cp>There will be no more updates and I won’t answer any support questions. Thanks for your understanding.\u003C\u002Fp>\n\u003Cp>Feel free to fork this plugin.\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cp>To load additional JavaScript files just put them into a directory named \u003Cstrong>jsautoload\u003C\u002Fstrong>. This directory can be placed in three different locations that are loaded in the following order:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Child Theme dependent (if using a Child Theme) : in the Child Theme’s directory\u003C\u002Fli>\n\u003Cli>Theme dependent : in the Theme’s directory\u003C\u002Fli>\n\u003Cli>Theme independent : in the wp-content directory\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Only files with extension .js are added, all other files are ignored. Subdirectories can be used and will also be scanned. To ignore a complete directory (including all subdirectories) name the directory beginning with an underscore (_). The files are added in alphabetical order. Directories always are added \u003Cstrong>after\u003C\u002Fstrong> files.\u003C\u002Fp>\n\u003Cp>To load one ore more JavaScript files at the end of your HTML file just place them into a directory named \u003Cstrong>footer\u003C\u002Fstrong>. To add the files to the footer of your theme it is required to call wp_footer() in your footer.php.\u003C\u002Fp>\n\u003Ch3>Plugin Privacy Information\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>This plugin does not set cookies\u003C\u002Fli>\n\u003Cli>This plugin does not collect or store any data\u003C\u002Fli>\n\u003Cli>This plugin does not send any data to external servers\u003C\u002Fli>\n\u003C\u002Ful>\n","Load JavaScript files without coding",400,24591,100,8,"2024-04-17T20:13:00.000Z","6.3.8","4.0","5.4",[55,19,21,22,56],"footer","wp_enqueue_script","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fjavascript-autoloader\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjavascript-autoloader.5.0.3.zip",92,{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":13,"num_ratings":13,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":78,"download_link":79,"security_score":59,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"customeasy","CustomEasy","1.0.2","LCweb","https:\u002F\u002Fprofiles.wordpress.org\u002Flcweb-projects\u002F","\u003Cp>Tiny plugin allowing you to write code directly in website’s head and\u002For footer. Insert code globally or specifically for single pages \u002F posts \u002F etc\u003C\u002Fp>\n\u003Cp>Features also a syntax highlighter (ACE) editor, to code faster and safer.\u003C\u002Fp>\n\u003Ch4>NOTE:\u003C\u002Fh4>\n\u003Cp>No support provided\u003C\u002Fp>\n","Gives you a quick and superlight way to inject codes in your website's HEAD or FOOTER",10,1964,"2024-12-10T20:00:00.000Z","6.7.5","5.0","7.0",[75,76,77,21,22],"code-injection","css","custom-code","https:\u002F\u002Flcweb.it\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustomeasy.zip",{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":88,"downloaded":89,"rating":90,"num_ratings":91,"last_updated":92,"tested_up_to":71,"requires_at_least":53,"requires_php":93,"tags":94,"homepage":96,"download_link":97,"security_score":98,"vuln_count":99,"unpatched_count":99,"last_vuln_date":100,"fetched_at":28},"enable-jquery-migrate-helper","Enable jQuery Migrate Helper","1.4.1","Marius L. J.","https:\u002F\u002Fprofiles.wordpress.org\u002Fclorith\u002F","\u003Cp>With the update to WordPress 5.5, a migration tool known as \u003Ccode>jquery-migrate\u003C\u002Fcode> was no longer enabled by default. This may lead to lacking functionality or unexpected behavior in some themes or plugins that run older code.\u003C\u002Fp>\n\u003Cp>This plugin serves as a temporary solution, enabling the migration script for your site to give your plugin and theme authors some more time to update, and test, their code.\u003C\u002Fp>\n\u003Cp>With the update to WordPress 5.6, the included version of jQuery is also upgraded. This means that old code that previously caused warnings now may instead may cause errors or stop working entirely.\u003C\u002Fp>\n\u003Cp>Some of the features no longer working will just stop working behind the scenes without any apparent problem.\u003C\u002Fp>\n\u003Cp>The plugin will let you downgrade to a previous version of jQuery for a period, but as a site administrator you are encouraged to get the underlying issue fixed.\u003C\u002Fp>\n","Get information about calls to deprecated jQuery features in plugins or themes.",80000,2374693,96,109,"2024-12-25T13:15:00.000Z","5.6",[21,22,95],"update","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fenable-jquery-migrate-helper","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fenable-jquery-migrate-helper.1.4.1.zip",71,1,"2020-07-20 00:00:00",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":109,"downloaded":110,"rating":111,"num_ratings":112,"last_updated":113,"tested_up_to":73,"requires_at_least":114,"requires_php":93,"tags":115,"homepage":118,"download_link":119,"security_score":48,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"jquery-updater","jQuery Updater","4.0.0","Ramoonus","https:\u002F\u002Fprofiles.wordpress.org\u002Framoonus\u002F","\u003Cp>This plugin updates \u003Ca href=\"http:\u002F\u002Fjquery.com\u002F\" rel=\"nofollow ugc\">jQuery\u003C\u002Fa> to the latest official stable version, which is most likely not available within the latest stable release of WordPress.\u003Cbr \u002F>\njQuery Migrate is also included for backwards compatibility.\u003C\u002Fp>\n\u003Cp>No files are replaced, therefore deactivation of this plugin returns your site to it`s original state.\u003C\u002Fp>\n\u003Cp>Since WordPress 5.6 includes an up-to-date version of jQuery 3, upgrading shouldn’t`t be necessary in most cases.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Warning\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>If you are not familiar with beta testing, bugfixing, javascript or running bleeding edge software it`s \u003Cstrong>not\u003C\u002Fstrong> recommended.\u003Cbr \u002F>\nI will not provide help on JavaScript and jQuery, only on plugin related issues (PHP)!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Reporting problems\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Please post bug reports and request for help on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fjquery-updater\" rel=\"ugc\">WordPress.org Support Forums\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>If you run into any bugs, turning this plugin off will fully deactivate everything.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Work in Progress\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Options screen to enable\u002Fdisable\u003C\u002Fli>\n\u003Cli>Option to choose a specific jQuery version\u003C\u002Fli>\n\u003Cli>Automatic cache flushing\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more information on the development visit the plugins \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FRamoonus\u002FjQuery-Updater\u002Fissues\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>\u003C\u002Fp>\n","This plugin updates jQuery to the latest stable version on your website.",20000,1232452,90,64,"2026-02-26T16:49:00.000Z","6.0",[21,116,22,117,95],"jq","jquery-ui","http:\u002F\u002Fwww.ramoonus.nl\u002Fwordpress\u002Fjquery-updater\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjquery-updater.4.0.0.zip",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":109,"downloaded":128,"rating":129,"num_ratings":130,"last_updated":131,"tested_up_to":132,"requires_at_least":16,"requires_php":17,"tags":133,"homepage":136,"download_link":137,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"oh-add-script-header-footer","SOGO Add Script to Individual Pages Header Footer","3.9","SOGO","https:\u002F\u002Fprofiles.wordpress.org\u002Forenhav\u002F","\u003Cp>Tested with Gutenberg\u003C\u002Fp>\n\u003Cp>Create a simple way to add javascript code to individual page post or custom post type header and footer,\u003Cbr \u002F>\nfor example: add conversion code to thank you pages\u003Cbr \u002F>\nadd google re-marketing code to individual pages\u003Cbr \u002F>\nand much more…\u003Cbr \u002F>\nadded in version 1.3 the option to add script  \\ style to all pages not only individual pages,\u003Cbr \u002F>\n this will allow you to add Google re-marketing code to the entire site or Google Analytics\u003Cbr \u002F>\n to use it goto “settings” – “Header Footer Settings”\u003C\u002Fp>\n\u003Cp>New Features (version 3.0):\u003Cbr \u002F>\nAdded option for terms  \u002F category pages\u003C\u002Fp>\n\u003Cp>New Features (version 2.3):\u003Cbr \u002F>\n Added support for WooCommerce shop page.\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>we support now exclude individual pages form printing the header and footer scripts, this is supported by 2 checkboxes in each page\\post\u003Cbr \u002F>\nbuy check it the script will not be display on this page\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>we added support to limit the script only for certain post type \\ page\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>if you like it \\ use it – please rate us.\u003C\u002Fp>\n\u003Cp>usage:\u003Cbr \u002F>\nYou need to paste the code with the script tag, for example:\u003Cbr \u002F>\n   you js code \u003C\u002Fp>\n","Simple plugin to add script to header and footer for individual pages & posts",382950,86,31,"2020-01-20T09:20:00.000Z","5.3.21",[55,19,21,134,135],"js","re-marketing-code","http:\u002F\u002Fsogo.co.il","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Foh-add-script-header-footer.zip",{"attackSurface":139,"codeSignals":162,"taintFlows":196,"riskAssessment":197,"analyzedAt":203},{"hooks":140,"ajaxHandlers":158,"restRoutes":159,"shortcodes":160,"cronEvents":161,"entryPointCount":13,"unprotectedCount":13},[141,147,152,155],{"type":142,"name":143,"callback":144,"file":145,"line":146},"action","wp_enqueue_scripts","header_scripts","inject-o-matic.php",60,{"type":142,"name":148,"callback":149,"priority":150,"file":145,"line":151},"wp_footer","footer_scripts",70,63,{"type":142,"name":153,"callback":153,"file":145,"line":154},"admin_menu",66,{"type":142,"name":156,"callback":156,"file":145,"line":157},"admin_init",67,[],[],[],[],{"dangerousFunctions":163,"sqlUsage":164,"outputEscaping":166,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":99,"bundledLibraries":195},[],{"prepared":13,"raw":13,"locations":165},[],{"escaped":13,"rawEcho":167,"locations":168},17,[169,172,174,175,177,179,180,181,183,184,185,187,188,189,191,192,193],{"file":145,"line":170,"context":171},73,"raw output",{"file":145,"line":173,"context":171},77,{"file":145,"line":26,"context":171},{"file":145,"line":176,"context":171},89,{"file":145,"line":178,"context":171},157,{"file":145,"line":178,"context":171},{"file":145,"line":178,"context":171},{"file":145,"line":182,"context":171},163,{"file":145,"line":182,"context":171},{"file":145,"line":182,"context":171},{"file":145,"line":186,"context":171},169,{"file":145,"line":186,"context":171},{"file":145,"line":186,"context":171},{"file":145,"line":190,"context":171},175,{"file":145,"line":190,"context":171},{"file":145,"line":190,"context":171},{"file":145,"line":194,"context":171},197,[],[],{"summary":198,"deductions":199},"The \"inject-o-matic\" v1.0.0 plugin presents a mixed security profile. On the positive side, there are no known vulnerabilities (CVEs) in its history and the static analysis shows a complete absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests.  Furthermore, all SQL queries utilize prepared statements, and there is at least one capability check present, indicating some awareness of WordPress security practices.\n\nHowever, a significant concern arises from the complete lack of output escaping for all identified outputs. This means that any data rendered by the plugin, even if it doesn't appear to be directly user-supplied in this version, is not being protected against potential injection attacks if future versions or interactions introduce such data. The absence of any taint analysis results and the minimal attack surface are either due to the plugin's simplicity or potentially incomplete analysis, making it difficult to fully assess the risk of unseen vulnerabilities.\n\nIn conclusion, while the plugin has a clean vulnerability history and avoids many common pitfalls, the universal lack of output escaping is a critical weakness that significantly elevates the risk. The absence of taint analysis and the minimal observed attack surface might suggest a simple plugin, but the unescaped output leaves it exposed to XSS if its functionality evolves or interacts with dynamic data.  The presence of a capability check is a good sign, but it's overshadowed by the output sanitization deficiency.",[200],{"reason":201,"points":202},"All outputs are unescaped",20,"2026-03-16T22:24:02.230Z",{"wat":205,"direct":210},{"assetPaths":206,"generatorPatterns":207,"scriptPaths":208,"versionParams":209},[],[],[],[],{"cssClasses":211,"htmlComments":213,"htmlAttributes":214,"restEndpoints":223,"jsGlobals":224,"shortcodeOutput":225},[212],"injectomat",[],[215,216,217,218,219,220,221,222],"id=\"injectomat[custom_header_script]\"","name=\"injectomat[custom_header_script]\"","id=\"injectomat[custom_header_inject]\"","name=\"injectomat[custom_header_inject]\"","id=\"injectomat[custom_footer_script]\"","name=\"injectomat[custom_footer_script]\"","id=\"injectomat[custom_footer_inject]\"","name=\"injectomat[custom_footer_inject]\"",[],[],[],{"slug":4,"current_version":6,"total_versions":227,"versions":228},2,[229,236],{"version":6,"download_url":25,"svn_tag_url":230,"released_at":27,"has_diff":231,"diff_files_changed":232,"diff_lines":27,"trac_diff_url":233,"vulnerabilities":234,"is_current":235},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Finject-o-matic\u002Ftags\u002F1.0.0\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Finject-o-matic%2Ftags%2F0.2&new_path=%2Finject-o-matic%2Ftags%2F1.0.0",[],true,{"version":237,"download_url":238,"svn_tag_url":239,"released_at":27,"has_diff":231,"diff_files_changed":240,"diff_lines":27,"trac_diff_url":27,"vulnerabilities":241,"is_current":231},"0.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finject-o-matic.0.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Finject-o-matic\u002Ftags\u002F0.2\u002F",[],[]]