[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$frDRgBan2leFynQV9znGQhVcLV0HmdfZFAfd-6Vr6YFw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":132,"crawl_stats":37,"alternatives":140,"analysis":255,"fingerprints":812},"insert-php","Woody Code Snippets – Insert PHP, CSS, JS, and Header\u002FFooter Scripts","2.7.2","Themeisle","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemeisle\u002F","\u003Cp>Woody Code Snippets is a WordPress plugin that helps you insert code into your site without editing theme files.\u003C\u002Fp>\n\u003Cp>Many WordPress users still add PHP, JavaScript, CSS, tracking pixels, or ad scripts directly into functions.php, header.php, or footer.php. This approach breaks easily when themes update and becomes hard to manage as your site grows.\u003C\u002Fp>\n\u003Cp>Woody solves this by giving you a centralized code snippet manager where you can safely add header scripts, footer scripts, PHP snippets, custom CSS, JavaScript, and HTML from the WordPress admin.\u003C\u002Fp>\n\u003Cp>You can use Woody as a header and footer code manager, a PHP snippet plugin, or a way to reuse content and scripts across your site using shortcodes or automatic insertion.\u003C\u002Fp>\n\u003Cp>Each snippet can be enabled or disabled instantly, placed in specific locations like before content or after paragraphs, and shown only when certain conditions are met.\u003C\u002Fp>\n\u003Ch3>Quick Links\u003C\u002Fh3>\n\u003Cp>📘 \u003Ca href=\"https:\u002F\u002Fdocs.themeisle.com\u002Fcollection\u002F2410-woody-code-snippets\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> – Complete setup and configuration guide\u003C\u002Fp>\n\u003Cp>💬 \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Finsert-php\u002F\" rel=\"ugc\">Support Forum\u003C\u002Fa> – Community help and expert support\u003C\u002Fp>\n\u003Cp>⭐ \u003Ca href=\"https:\u002F\u002Fwoodysnippet.com\u002Fupgrade\u002F?utm_source=wordpressorg&utm_medium=readme&utm_campaign=woody_quicklinks\" rel=\"nofollow ugc\">Go Pro\u003C\u002Fa> – Unlock advanced features and priority support\u003C\u002Fp>\n\u003Ch3>What Problems Does Woody Solve?\u003C\u002Fh3>\n\u003Cp>Woody is built for real WordPress workflows. It helps you:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Insert code into headers and footers without editing theme files\u003C\u002Fli>\n\u003Cli>Add analytics scripts, tracking pixels, and ad code safely\u003C\u002Fli>\n\u003Cli>Manage PHP snippets without touching functions.php\u003C\u002Fli>\n\u003Cli>Reuse scripts and content across pages using shortcodes\u003C\u002Fli>\n\u003Cli>Control where code runs using placement rules and conditions\u003C\u002Fli>\n\u003Cli>Enable, disable, or roll back snippets without breaking your site\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Whether you are building client sites, running marketing experiments, or maintaining your own project, Woody gives you control without unnecessary complexity.\u003C\u002Fp>\n\u003Ch3>How It Works\u003C\u002Fh3>\n\u003Cp>Woody lets you create code snippets and control where and when they run, all from the WordPress admin.\u003C\u002Fp>\n\u003Ch4>Example #1\u003C\u002Fh4>\n\u003Cp>Create a JavaScript snippet and add your analytics or tracking code.\u003Cbr \u002F>\nPlace it in the site header and add a condition to exclude administrators so your own visits are not tracked.\u003C\u002Fp>\n\u003Ch4>Example #2\u003C\u002Fh4>\n\u003Cp>Create a text snippet with reusable content or a shortcode.\u003Cbr \u002F>\nAdd conditions to show it only to logged-in users, then insert it anywhere using the snippet shortcode or automatic placement rules.\u003C\u002Fp>\n\u003Cp>This makes it easy to manage repeated logic and content without editing theme files.\u003C\u002Fp>\n\u003Ch3>Who Should Use Woody Code Snippets\u003C\u002Fh3>\n\u003Cp>Woody is designed for:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Developers who want a structured way to manage custom code\u003C\u002Fli>\n\u003Cli>Marketers adding analytics, ads, and tracking scripts\u003C\u002Fli>\n\u003Cli>Solopreneurs who want flexibility without editing theme files\u003C\u002Fli>\n\u003Cli>Agencies managing multiple sites and shared snippets\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you regularly need to insert code into WordPress, Woody fits naturally into your workflow.\u003C\u002Fp>\n\u003Ch3>Supported Snippet Types\u003C\u002Fh3>\n\u003Cp>Woody supports multiple snippet types, so you can manage all custom code in one place. You can create:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>PHP snippets\u003C\u002Fstrong> for functions, hooks, classes, and global variables\u003C\u002Fli>\n\u003Cli>\u003Cstrong>JavaScript snippets\u003C\u002Fstrong> for analytics, integrations, and interactive features\u003C\u002Fli>\n\u003Cli>\u003Cstrong>CSS snippets\u003C\u002Fstrong> to add custom styles without editing theme files\u003C\u002Fli>\n\u003Cli>\u003Cstrong>HTML snippets\u003C\u002Fstrong> for markup and layout elements\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Text snippets\u003C\u002Fstrong> using the WordPress editor for reusable content\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Ad snippets\u003C\u002Fstrong> for ads and banners\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Universal snippets\u003C\u002Fstrong> that combine PHP, HTML, CSS, and JavaScript\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Why do you need this plugin?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Insert Google AdSense Ads, Amazon Native Shopping Contextual Ads, Yandex Direct Ads, Media.net on your website.\u003C\u002Fli>\n\u003Cli>Insert Google Analytic Tracking code, Yandex Metrika Tracking Code, Yandex Counter to Header, Footer.\u003C\u002Fli>\n\u003Cli>Insert PHP Code Snippets and execute on your website. Register PHP functions, classes, global variables everywhere.\u003C\u002Fli>\n\u003Cli>Insert Social media widgets, add any external resources widgets.\u003C\u002Fli>\n\u003Cli>Insert Facebook Pixels, Facebook Scripts, Facebook og:image Tag, Google Conversion Pixels, Vk Pixels.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Header and Footer Code Management\u003C\u002Fh3>\n\u003Cp>Woody works as a full header and footer code manager.\u003C\u002Fp>\n\u003Cp>You can insert snippets:\u003Cbr \u002F>\n– Into the site header before the closing  tag\u003Cbr \u002F>\n– Into the site footer before the closing  tag\u003C\u002Fp>\n\u003Cp>Common examples include analytics scripts, tracking pixels, verification tags, and global JavaScript or CSS.\u003C\u002Fp>\n\u003Ch3>Advanced Placement Options\u003C\u002Fh3>\n\u003Cp>Beyond headers and footers, Woody lets you insert snippets into specific locations.\u003C\u002Fp>\n\u003Cp>You can place code:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Before or after post or page content  \u003C\u002Fli>\n\u003Cli>Before or after a specific paragraph  \u003C\u002Fli>\n\u003Cli>Before or after a post  \u003C\u002Fli>\n\u003Cli>Inside archives, categories, and taxonomy pages  \u003C\u002Fli>\n\u003Cli>Between posts on archive pages  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WooCommerce Pages\u003C\u002Fh4>\n\u003Cp>Woody supports automatic snippet placement on WooCommerce pages.\u003C\u002Fp>\n\u003Cp>You can insert snippets:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Before or after the product list  \u003C\u002Fli>\n\u003Cli>Before or after a single product  \u003C\u002Fli>\n\u003Cli>Before or after the single product summary  \u003C\u002Fli>\n\u003Cli>After the product title, price, or excerpt  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Common use cases include conversion tracking, promotional banners, custom JavaScript, and trust notices.\u003C\u002Fp>\n\u003Ch3>Shortcodes and Reusable Content\u003C\u002Fh3>\n\u003Cp>Woody supports shortcodes so you can insert snippets exactly where you need them. You can place snippets inside posts, pages, widgets, and page builders.\u003C\u002Fp>\n\u003Cp>With \u003Ca href=\"https:\u002F\u002Fwoodysnippet.com\u002Fupgrade\u002F?utm_source=wordpressorg&utm_medium=readme&utm_campaign=woody_shortcode\" rel=\"nofollow ugc\">Pro\u003C\u002Fa>, you can define custom shortcode names that are readable and portable across sites.\u003C\u002Fp>\n\u003Ch3>Conditional Logic for Code Snippets\u003C\u002Fh3>\n\u003Cp>Woody allows you to control when a snippet is displayed.\u003C\u002Fp>\n\u003Cp>[FREE] Available in the free version:\u003Cbr \u002F>\n– User role and registration date\u003Cbr \u002F>\n– Page, post type, or taxonomy\u003Cbr \u002F>\n– Referrer or cookie value\u003C\u002Fp>\n\u003Cp>[PRO] Advanced conditions available in \u003Ca href=\"https:\u002F\u002Fwoodysnippet.com\u002Fupgrade\u002F?utm_source=wordpressorg&utm_medium=readme&utm_campaign=woody_conditions\" rel=\"nofollow ugc\">Pro\u003C\u002Fa>:\u003Cbr \u002F>\n– Device type, browser, and operating system\u003Cbr \u002F>\n– JavaScript availability or ad blocker detection\u003Cbr \u002F>\n– User country, visit depth, time of day, and total visits\u003C\u002Fp>\n\u003Cp>Conditions can be combined using AND and OR logic.\u003C\u002Fp>\n\u003Cp>Unlock advanced conditions with \u003Ca href=\"https:\u002F\u002Fwoodysnippet.com\u002Fupgrade\u002F?utm_source=wordpressorg&utm_medium=readme&utm_campaign=woody_conditions\" rel=\"nofollow ugc\">Woody Pro\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Snippet Management and Organization\u003C\u002Fh3>\n\u003Cp>Woody includes features to keep snippets organized and easy to manage.\u003C\u002Fp>\n\u003Cp>You can:\u003Cbr \u002F>\n– Enable or disable snippets instantly\u003Cbr \u002F>\n– Control execution order using priorities\u003Cbr \u002F>\n– Tag and clone snippets\u003Cbr \u002F>\n– Import and export snippets between sites\u003C\u002Fp>\n\u003Ch3>Code Revisions and Rollback [PRO]\u003C\u002Fh3>\n\u003Cp>With \u003Ca href=\"https:\u002F\u002Fwoodysnippet.com\u002Fupgrade\u002F?utm_source=wordpressorg&utm_medium=readme&utm_campaign=woody_restore\" rel=\"nofollow ugc\">Pro\u003C\u002Fa>, Woody automatically saves snippet revisions. You can view previous versions, compare changes, and restore earlier revisions if something goes wrong.\u003C\u002Fp>\n\u003Cp>This adds an extra layer of safety when working with custom code.\u003C\u002Fp>\n\u003Ch3>Cloud Templates and Sync [PRO]\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwoodysnippet.com\u002Fupgrade\u002F?utm_source=wordpressorg&utm_medium=readme&utm_campaign=woody_cloud\" rel=\"nofollow ugc\">Woody Pro\u003C\u002Fa> includes cloud-based snippet templates.\u003C\u002Fp>\n\u003Cp>You can save snippets as templates and reuse them across multiple sites, which is especially useful for agencies and developers managing repeated setups.\u003C\u002Fp>\n\u003Ch3>Settings and Developer Options\u003C\u002Fh3>\n\u003Cp>Woody includes advanced settings for fine-grained control.\u003C\u002Fp>\n\u003Cp>You can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Preserve HTML entities without automatic conversion  \u003C\u002Fli>\n\u003Cli>Execute shortcodes inside snippets  \u003C\u002Fli>\n\u003Cli>Enable error email notifications  \u003C\u002Fli>\n\u003Cli>Automatically activate snippets on save  \u003C\u002Fli>\n\u003Cli>Fully remove plugin data on uninstall  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Code Editor\u003C\u002Fh4>\n\u003Cp>The built-in editor includes:\u003Cbr \u002F>\n– Syntax highlighting and line numbers\u003Cbr \u002F>\n– Configurable indentation and tab size\u003Cbr \u002F>\n– Optional line wrapping\u003Cbr \u002F>\n– Automatic bracket and quote closing\u003Cbr \u002F>\n– Highlighting of matching variables and functions\u003C\u002Fp>\n\u003Ch3>Use This Plugin Responsibly\u003C\u002Fh3>\n\u003Cp>Woody allows you to run custom PHP, JavaScript, and CSS on your site. Always make sure you understand the code you add. Using unverified or outdated scripts may affect site security or stability. On multisite installations, only trusted administrators should have access to snippet creation.\u003C\u002Fp>\n\u003Cp>Woody includes safeguards such as snippet disabling, revisions, and error notifications, but it cannot validate third-party code you choose to run.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>Need help? Open a new thread in the WordPress \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Finsert-php\u002F\" rel=\"ugc\">support forum\u003C\u002Fa>, and we will be happy to assist.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>Learn how to make the most of Woody with our detailed and user-friendly \u003Ca href=\"https:\u002F\u002Fdocs.themeisle.com\u002Fcollection\u002F2410-woody-code-snippets\" rel=\"nofollow ugc\">documentation\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Woody is backed by \u003Ca href=\"https:\u002F\u002Fthemeisle.com\u002F?utm_source=wordpressorg&utm_medium=readme&utm_campaign=woody\" rel=\"nofollow ugc\">Themeisle\u003C\u002Fa>, trusted by over 1 million WordPress users worldwide.\u003C\u002Fp>\n","Insert PHP, JavaScript, CSS, HTML, ads, and tracking code into WordPress headers, footers, pages, and content using conditional logic, without editing …",60000,1711938,90,220,"2026-01-27T15:40:00.000Z","6.9.4","5.6","7.0",[20,21,22,4,23],"code-snippets","custom-code","header-footer-scripts","snippet","https:\u002F\u002Fwoodysnippet.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finsert-php.2.7.2.zip",91,7,0,"2024-06-14 20:26:37","2026-03-15T15:16:48.613Z",[32,48,62,76,90,103,118],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":39,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":29,"updated_date":44,"references":45,"days_to_patch":47},"CVE-2024-3105","woody-code-snippets-insert-header-footer-code-adsense-ads-authenticated-contributor-remote-code-execution","Woody code snippets – Insert Header Footer Code, AdSense Ads \u003C= 2.5.0 -Authenticated (Contributor+) Remote Code Execution","The Woody code snippets – Insert Header Footer Code, AdSense Ads plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.5.0 via the 'insert_php' shortcode. This is due to the plugin not restricting the usage of the functionality to high level authorized users. This makes it possible for authenticated attackers, with contributor-level access and above, to execute code on the server.",null,"\u003C=2.5.0","2.5.1","critical",9.9,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:H\u002FI:H\u002FA:H","Improper Control of Generation of Code ('Code Injection')","2024-06-15 08:42:14",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F134ad095-b0a0-4f0f-832d-3e558d4a250a?source=api-prod",1,{"id":49,"url_slug":50,"title":51,"description":52,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":39,"severity":53,"cvss_score":54,"cvss_vector":55,"vuln_type":56,"published_date":57,"updated_date":58,"references":59,"days_to_patch":61},"CVE-2024-35751","woody-code-snippets-insert-header-footer-code-adsense-ads-authenticated-admin-stored-cross-site-scripting","Woody code snippets – Insert Header Footer Code, AdSense Ads \u003C= 2.5.0 - Authenticated (Admin+) Stored Cross-Site Scripting","The Woody code snippets – Insert Header Footer Code, AdSense Ads plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.5.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.","medium",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-06-06 00:00:00","2025-09-25 18:27:22",[60],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fe279f923-e30d-45b6-9734-2bd50731c33c?source=api-prod",477,{"id":63,"url_slug":64,"title":65,"description":66,"plugin_slug":4,"theme_slug":37,"affected_versions":67,"patched_in_version":68,"severity":53,"cvss_score":69,"cvss_vector":70,"vuln_type":56,"published_date":71,"updated_date":72,"references":73,"days_to_patch":75},"WF-95bae3f2-313b-4b6c-a81c-8af6f169151b-insert-php","woody-code-snippets-reflected-cross-site-scripting","Woody code snippets \u003C= 2.4.5 - Reflected Cross-Site Scripting","The Woody code snippets plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in versions up to, and including, 2.4.5. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.","\u003C=2.4.5","2.4.6",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","2022-06-02 00:00:00","2024-01-22 19:56:02",[74],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F95bae3f2-313b-4b6c-a81c-8af6f169151b?source=api-prod",600,{"id":77,"url_slug":78,"title":79,"description":80,"plugin_slug":4,"theme_slug":37,"affected_versions":81,"patched_in_version":82,"severity":53,"cvss_score":83,"cvss_vector":84,"vuln_type":85,"published_date":86,"updated_date":72,"references":87,"days_to_patch":89},"CVE-2020-36759","woody-code-snippets-cross-site-request-forgery-bypass","Woody code snippets \u003C= 2.3.9 - Cross-Site Request Forgery Bypass","The Woody code snippets plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.3.9. This is due to missing or incorrect nonce validation on the runActions() function. This makes it possible for unauthenticated attackers to activate and deactivate snippets via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.","\u003C2.3.10","2.3.10",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2020-09-16 00:00:00",[88],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fe573c0a4-d053-400b-828c-0d0eca880776?source=api-prod",1224,{"id":91,"url_slug":92,"title":93,"description":94,"plugin_slug":4,"theme_slug":37,"affected_versions":95,"patched_in_version":96,"severity":53,"cvss_score":97,"cvss_vector":98,"vuln_type":56,"published_date":99,"updated_date":72,"references":100,"days_to_patch":102},"CVE-2019-16289","woody-ad-snippets-authenticated-cross-site-scripting","Woody Ad Snippets \u003C= 2.2.8 - Authenticated Cross-Site Scripting","The insert-php (aka Woody ad snippets) plugin before 2.2.9 for WordPress allows authenticated XSS via the winp_item parameter.","\u003C2.2.9","2.2.9",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","2019-09-13 00:00:00",[101],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F11681152-e4f0-4cea-8fc8-f297368e4b15?source=api-prod",1593,{"id":104,"url_slug":105,"title":106,"description":107,"plugin_slug":4,"theme_slug":37,"affected_versions":108,"patched_in_version":109,"severity":110,"cvss_score":111,"cvss_vector":112,"vuln_type":113,"published_date":114,"updated_date":72,"references":115,"days_to_patch":117},"CVE-2019-14773","woody-ad-snippets-arbitrary-post-deletion","Woody Ad Snippets \u003C= 2.2.5 - Arbitrary Post Deletion","admin\u002Fincludes\u002Fclass.actions.snippet.php in the \"Woody ad snippets\" plugin through 2.2.5 for WordPress allows wp-admin\u002Fadmin-post.php?action=close&post= deletion.","\u003C=2.2.5","2.2.6","high",7.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:N\u002FI:H\u002FA:N","Improper Access Control","2019-08-09 00:00:00",[116],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F069bd7ab-1b78-4465-8e13-5ef903f7e45f?source=api-prod",1628,{"id":119,"url_slug":120,"title":121,"description":122,"plugin_slug":4,"theme_slug":37,"affected_versions":123,"patched_in_version":124,"severity":110,"cvss_score":125,"cvss_vector":126,"vuln_type":127,"published_date":128,"updated_date":72,"references":129,"days_to_patch":131},"CVE-2019-15858","woody-ad-snippets-missing-authorization-to-settings-import","Woody Ad Snippets \u003C= 2.2.4 - Missing Authorization to Settings Import","admin\u002Fincludes\u002Fclass.import.snippet.php in the \"Woody ad snippets\" plugin before 2.2.5 for WordPress allows unauthenticated options import, as demonstrated by storing an XSS payload for remote code execution.","\u003C2.2.5","2.2.5",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Missing Authorization","2019-08-02 00:00:00",[130],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F942ae035-91b3-4330-800c-2dbe94a4b4b5?source=api-prod",1635,{"slug":133,"display_name":7,"profile_url":8,"plugin_count":134,"total_installs":135,"avg_security_score":136,"avg_patch_time_days":137,"trust_score":138,"computed_at":139},"themeisle",37,2245820,96,420,76,"2026-04-03T23:14:56.664Z",[141,165,188,210,232],{"slug":142,"name":143,"version":144,"author":145,"author_profile":146,"description":147,"short_description":148,"active_installs":149,"downloaded":150,"rating":151,"num_ratings":152,"last_updated":153,"tested_up_to":16,"requires_at_least":154,"requires_php":155,"tags":156,"homepage":161,"download_link":162,"security_score":163,"vuln_count":47,"unpatched_count":28,"last_vuln_date":164,"fetched_at":30},"easy-code-manager","FluentSnippets – The High-Performance file based Custom Code Snippets Plugin","10.53","Shahjahan Jewel","https:\u002F\u002Fprofiles.wordpress.org\u002Ftechjewel\u002F","\u003Cp>Experience unmatched speed and security with a unique file-based code snippet plugin, designed for security & speed\u003C\u002Fp>\n\u003Cp>FluentSnippets is the \u003Cstrong>Most Secure and Performance-Focused\u003C\u002Fstrong> Code Snippet Plugin for WordPress. FluentSnippets store your snippets in flat files, so it does not run SQL queries for your snippets. It is the \u003Cstrong>Fastest Code Snippet Plugin\u003C\u002Fstrong> for WordPress.\u003Cbr \u002F>\nOur mission is to streamline the process of integrating custom code snippets in WordPress, making it safe, secure, fast, and hassle-free.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FkUuW4sY8m7o?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>Why FluentSnippets?\u003C\u002Fh3>\n\u003Cp>FluentSnippets stores the code snippets in the flat file and uses code blocks in each snippet file to add metadata like a description, title, conditional logic, snippet type, and other things. We also parse these data once and cache these into index.php so we don’t have to parse these code blocks in every request. Then on runtime, it just includes those files to your selected action hook. In the whole process, FluentSnippets runs 0 database queries. In fact, we don’t have any Database query in the whole plugin runtime.\u003Cbr \u002F>\nWith this native design, FluentSnippets is native, secure by design, and the most performant code snippets in this category.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>File-based Snippets:\u003C\u002Fstrong> Your snippets are safely saved in your file system and load natively with zero database queries, so it’s safe, secure, and ultra-fast.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Code Snippets:\u003C\u002Fstrong> Write your custom code snippets including PHP, JS, CSS, HTML, and more. Categorize your snippets with groups, tags, etc\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Advanced Conditional Logic:\u003C\u002Fstrong> Execute code snippets solely under specified conditions like post type, date, URL, user type, and many more.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Automatic Error Handling:\u003C\u002Fstrong> The automatic error hander prevents common errors when adding custom snippets to ensure they never break your site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Shortcode:\u003C\u002Fstrong> With custom shortcode of your snippets, you can create custom dynamic content blocks and use them across your site and manage them.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Stand-alone Mode:\u003C\u002Fstrong> The most interesting feature is the Stand-alone Mode. With this feature, you can add your snippets, activate the standalone mode, and then you can uninstall and delete the plugin and your snippets will still run via mu-plugins architecture and when you reactivate the plugin you can manage your snippets as before.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F-bQPZ23LSdQ?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>Powerful Smart Conditional Logics\u003C\u002Fh3>\n\u003Cp>We have added smart conditional logic to let you choose precisely where you want to execute your code. These conditional logics include\u003C\u002Fp>\n\u003Cul>\n\u003Cli>User’s Login State or Role\u003C\u002Fli>\n\u003Cli>Type of Pages\u003C\u002Fli>\n\u003Cli>Post Types\u003C\u002Fli>\n\u003Cli>Taxonomy or Term-Based Rule\u003C\u002Fli>\n\u003Cli>By Page \u002F Post URL\u003C\u002Fli>\n\u003Cli>Target Specific Page \u002F Post \u002F CPT\u003C\u002Fli>\n\u003Cli>Date Based Conditions\u003C\u002Fli>\n\u003Cli>FluentCRM Tag \u002F Lists based rule of the current contact\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>These conditions are grouped-based, which means you can add multiple groups with a set of conditions and if any of the group match the condions it will execute the snippet.\u003C\u002Fp>\n\u003Ch3>Snippet Types\u003C\u002Fh3>\n\u003Cp>FluentSnippets has four types of snippets. You can choose the snippet type from the snippet type selection.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Functions – PHP Snippet:\u003C\u002Fstrong> This snippet is for all the PHP code that you need to execute in specific areas like you would write in your theme’s functions.php file.\u003Cbr \u002F>\nYou can use this snippet type to create functions\u002Fclasses, hook into other actions and filters, and more.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Content – PHP + HTML Snippet Type:\u003C\u002Fstrong> This snippet type is used to insert content to different places like header, footer, after-post content, before-post content, etc. You can write php \u002F html \u002F js \u002F css code in this snippet type.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>CSS Snippet Type:\u003C\u002Fstrong> You can use this snippet type to add custom CSS to your site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>JS Snippet Type:\u003C\u002Fstrong> You can use this snippet type to add custom JS to your site.\u003C\u002Fp>\n\u003Ch3>Internal Design of FluentSnippets Plugin\u003C\u002Fh3>\n\u003Cp>The design is super simple and this is what it should be! FluentSnippets stores the code snippets in the flat file and uses code blocks in each snippet file to add metadata like a description, title, conditional logic, snippet type, and other things. We also parse these data once and cache these into index.php so we don’t have to parse these code blocks in every request. Then on runtime, it just includes those files to your selected action hook. In the whole process, FluentSnippets runs 0 database queries. In fact, we don’t have any Database query in the whole plugin runtime.\u003Cbr \u002F>\nWith this native design, FluentSnippets is native, secure by design, and the most performant code snippets in this category.\u003C\u002Fp>\n\u003Ch3>Popular use cases of this Code Snippet plugin\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Adding custom PHP Code to extend functionalities\u003C\u002Fli>\n\u003Cli>Adding Header and footer codes (Google Analytics \u002F Pixel \u002F Ads codes)\u003C\u002Fli>\n\u003Cli>Custom CSS for specific post\u002Fpage types\u003C\u002Fli>\n\u003Cli>Custom Javascript codes\u003C\u002Fli>\n\u003Cli>Dynamic Content to different types of places like before\u002Fafter post content or footer\u003C\u002Fli>\n\u003Cli>Dynamic Shortcode\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F5E1w4mGe3xw?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>Other Plugins By The Same Team\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffluent-crm\u002F\" rel=\"ugc\">FluentCRM – Email Marketing, Newsletter, Email Automation and CRM Plugin for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffluentform\u002F\" rel=\"ugc\">Fluent Forms – Fastest WordPress Form Builder Plugin\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fninja-tables\u002F\" rel=\"ugc\">Ninja Tables – Best WP DataTables Plugin for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fninja-charts\u002F\" rel=\"ugc\">Ninja Charts – Best WP Charts Plugin for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-payment-form\u002F\" rel=\"ugc\">WPPayForm – Stripe Payments Plugin for WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmautic-for-fluent-forms\u002F\" rel=\"ugc\">Mautic Integration For Fluent Forms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffluentforms-pdf\u002F\" rel=\"ugc\">Fluent Forms PDF – PDF Entries for Fluent Forms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffluent-smtp\u002F\" rel=\"ugc\">FluentSMTP – WordPress Mail SMTP, SES, SendGrid, MailGun Plugin\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>CONTRIBUTE\u003C\u002Fh3>\n\u003Cp>If you want to contribute to this project or just report a bug, you are more than welcome. Please check repository from \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FWPManageNinja\u002Feasy-code-manager\" rel=\"nofollow ugc\">Github\u003C\u002Fa>. FluentSnippets was known as Easy Code Manager before. We have rebuild & rebranded it to FluentSnippets.\u003C\u002Fp>\n","Add header and footer scripts, PHP Snippets, Custom CSS \u002FJS snippets with advanced conditional logic, and more...",40000,152574,92,51,"2026-01-22T04:17:00.000Z","6.0","7.3",[20,157,158,159,160],"custom-codes","functions","php-codes","wp-codes","https:\u002F\u002Ffluentsnippets.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-code-manager.10.53.zip",99,"2025-07-16 00:00:00",{"slug":166,"name":167,"version":168,"author":169,"author_profile":170,"description":171,"short_description":172,"active_installs":173,"downloaded":174,"rating":175,"num_ratings":176,"last_updated":177,"tested_up_to":16,"requires_at_least":178,"requires_php":18,"tags":179,"homepage":184,"download_link":185,"security_score":163,"vuln_count":186,"unpatched_count":28,"last_vuln_date":187,"fetched_at":30},"insert-headers-and-footers","WPCode – Insert Headers and Footers + Custom Code Snippets – WordPress Code Manager","2.3.4","Syed Balkhi","https:\u002F\u002Fprofiles.wordpress.org\u002Fsmub\u002F","\u003Ch4>Insert Headers & Footers + Full WordPress Code Snippets Plugin\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwpcode.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin\" rel=\"nofollow ugc\">WPCode\u003C\u002Fa> (formerly known as Insert Headers and Footers by WPBeginner) is the most popular code snippets plugin for WordPress used by over 2 million websites.\u003C\u002Fp>\n\u003Cp>We make it easy for you to add code snippets in WordPress without having to edit your theme’s functions.php file.\u003C\u002Fp>\n\u003Cp>Our simple insert headers and footers interface allows you to insert code like Google Analytics, custom CSS, Facebook Pixel, and more to your WordPress site’s header and footer as well other areas of your website. No need to edit your theme files!\u003C\u002Fp>\n\u003Cp>Aside from Header and Footer scripts, you can also use WPCode to insert custom PHP code snippets, JavaScript code snippets, CSS code snippets, HTML code snippets, and text snippets with full conditional logic support.\u003C\u002Fp>\n\u003Cp>We took the pain out of adding custom code snippets in WordPress and made it easy.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>I have been using Insert Headers and Footers and it is such a useful tool. Super helpful and the very best of its kind. Highly recommend\u003Cbr \u002F>\n  The_Gibble – WordPress user\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Quick Overview of WPCode from WPBeginner\u003C\u002Fh4>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FFo-7MKRRUec?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Introducing New WPCode Pro\u003C\u002Fstrong>\u003Cbr \u002F>\n  While WPCode Lite offers tons of powerful features for free, we listened to user feedback and created WPCode Pro with even more amazing features to improve your workflow. This includes smart conditional logic, saving code snippets to cloud library, code revisions, page-specific snippets, deeper integration with popular plugins like WooCommerce, Easy Digital Downloads, and so much more. \u003Ca href=\"https:\u002F\u002Fwpcode.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin\" rel=\"nofollow ugc\">Click here to purchase the best premium WordPress code snippet plugin now!\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Future Proof Code Snippet Management\u003C\u002Fh4>\n\u003Cp>Most \u003Ca href=\"https:\u002F\u002Fwww.wpbeginner.com\u002Fcategory\u002Fwp-tutorials\u002F\" rel=\"nofollow ugc\">WordPress tutorial websites\u003C\u002Fa> ask you to add code snippets to your theme’s functions.php file. This makes managing code snippets messy, and it also prevents you from updating your theme.\u003C\u002Fp>\n\u003Cp>If you ever update your theme or switch to another theme, then you will lose all custom code functions that you added in your functions.php file.\u003C\u002Fp>\n\u003Cp>WPCode solves this by providing you an easy way to insert header and footer scripts along with other code snippets directly from your WordPress dashboard. These code snippets actually run as if they were in your theme’s functions.php file.\u003C\u002Fp>\n\u003Cp>Our smart code snippet validation helps you prevent common code errors to ensure you never break your website when adding code snippets or header and footer scripts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New WPCode Cloud Library\u003C\u002Fstrong> even allows you to store all your custom code snippets in a cloud library, so you can easily re-use code snippets across multiple website projects and save time. You can keep your code snippets completely private or \u003Ca href=\"https:\u002F\u002Flibrary.wpcode.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin\" rel=\"nofollow ugc\">share it with the community\u003C\u002Fa> to give back while boosting your social profile.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>This plugin allows me to not only add things to my site whenever needed, but it takes me only seconds to accomplish it.\u003Cbr \u002F>\n  David Weber – WordPress user\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Full Code Snippets Library and Code Generators\u003C\u002Fh4>\n\u003Cp>Ever wanted a central place to find all the most popular WordPress code snippets that are tested and proven to work?\u003C\u002Fp>\n\u003Cp>When we started Insert Headers and Footers plugin, we did too. So we built a WordPress code snippets library right inside the WPCode plugin.\u003C\u002Fp>\n\u003Cp>You will find verified PHP code snippets for popular feature requests like disable REST API, disable XML-RPC, disable comments, allow SVG file uploads, disable Gutenberg, add Classic Editor, and more without installing separate plugins for each.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>I was very hesitant to get into any of the code for my website. Your plugin made it easy for me to do.\u003Cbr \u002F>\n  Conbrio75 – WordPress user\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>We also built the ability to save your code snippets to \u003Ca href=\"https:\u002F\u002Flibrary.wpcode.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin\" rel=\"nofollow ugc\">WPCode Cloud Library\u003C\u002Fa>, so you can easily re-use it on your other websites, client projects, or even share it with the larger community.\u003C\u002Fp>\n\u003Cp>WPCode Cloud Library helps you better organize your code snippets in one central location, so you can save more time and speed up your workflow when managing websites. No more wasting time looking for custom notes or Github gists.\u003C\u002Fp>\n\u003Cp>Aside from our growing code snippets library, we also have WordPress code generators to help you quickly get ready-to-use custom code using the latest WordPress coding standards and API’s.\u003C\u002Fp>\n\u003Ch4>Conditional Logic for Code Snippets + Code Insertion Priority\u003C\u002Fh4>\n\u003Cp>Our goal with WPCode was to create a WordPress code snippets plugin that’s both EASY and POWERFUL.\u003C\u002Fp>\n\u003Cp>That’s why aside from our global header and footer scripts, we added advanced features like conditional logic for code snippets and made it easy.\u003C\u002Fp>\n\u003Cp>Instead of learning WordPress conditional logic queries, you can use our beginner-friendly conditional logic user interface to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Load code snippets for logged in users only\u003C\u002Fli>\n\u003Cli>Load PHP code snippets for specific user roles\u003C\u002Fli>\n\u003Cli>Load PHP code snippets only on specific page URLs\u003C\u002Fli>\n\u003Cli>Insert header and footer pixel scripts on specific pages\u003C\u002Fli>\n\u003Cli>Show code snippets based on type of page\u003C\u002Fli>\n\u003Cli>Run code snippet only on certain post types\u003C\u002Fli>\n\u003Cli>Load header and footer code snippet based on referrer source\u003C\u002Fli>\n\u003Cli>and more…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>We also added both automatic code insertion and manual code output using shortcodes.\u003C\u002Fp>\n\u003Cp>Our Auto Insert feature allows you to run the code snippet everywhere or choose from custom options like:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Run code snippet only on frontend\u003C\u002Fli>\n\u003Cli>Run code snippet only in WordPress admin area\u003C\u002Fli>\n\u003Cli>Add header and footer scripts sitewide\u003C\u002Fli>\n\u003Cli>Insert PHP code snippet before or after post content\u003C\u002Fli>\n\u003Cli>Insert code snippet before or after specific paragraph\u003C\u002Fli>\n\u003Cli>Insert code snippet on specific archive pages\u003C\u002Fli>\n\u003Cli>Insert code snippets after specific WooCommerce function (\u003Ca href=\"https:\u002F\u002Fwpcode.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=liteplugin\" rel=\"nofollow ugc\">Pro Feature\u003C\u002Fa>)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Aside from that, we also added a visual code snippet priority system, so you can choose the order for your custom functions to avoid code conflict.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>This is such a useful plugin! It makes it so much easier to include things on your website!\u003Cbr \u002F>\n  Understoryliving – WordPress user\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>And for even more flexibility and customization, we have added the ability for you to add page-specific code snippets right from the WordPress classic editor as well as the Gutenberg editor. You can even load code snippets based on device type such as mobile only code snippets, desktop only code snippets, etc.\u003C\u002Fp>\n\u003Ch4>Import and Export Code Snippets\u003C\u002Fh4>\n\u003Cp>Managing multiple websites or developing in a staging environment?\u003C\u002Fp>\n\u003Cp>We offer an easy way to import and export your custom code snippets, functions, and header and footer scripts to help you save time.\u003C\u002Fp>\n\u003Cp>You can also save your code snippets to WPCode Cloud (Pro feature), so you can easily re-use the same code snippets across multiple websites. This also allows you to better organize your code snippets instead of wasting time searching for random Github gists.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Simple plugin I use in quite every site. Very useful to insert scripts and tags.\u003Cbr \u002F>\n  tommasoperego – WordPress user\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Full WPCode Feature List\u003C\u002Fh4>\n\u003Cp>The simple interface of WPCode plugin (formerly known as Insert Headers and Footers) gives you one place where you can insert header and footer scripts as well as custom code snippets rather than dealing with dozens of different plugins.\u003C\u002Fp>\n\u003Cp>Below is a full list of WPCode features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Quick to set up\u003C\u002Fli>\n\u003Cli>Unlimited code snippets\u003C\u002Fli>\n\u003Cli>Simple to insert header and footer scripts globally\u003C\u002Fli>\n\u003Cli>Beginner Friendly Code Editor with Syntax Highlighter for PHP, JavaScript, and HTML\u003C\u002Fli>\n\u003Cli>Smart Code Validation to Prevent PHP Errors\u003C\u002Fli>\n\u003Cli>Insert header code and\u002For footer code using Conditional Logic\u003C\u002Fli>\n\u003Cli>Add \u003Cstrong>Google Analytics\u003C\u002Fstrong> code to header and footer\u003C\u002Fli>\n\u003Cli>Add \u003Cstrong>custom CSS\u003C\u002Fstrong> code to any theme\u003C\u002Fli>\n\u003Cli>Insert \u003Cstrong>Facebook pixel\u003C\u002Fstrong> code in header and footer\u003C\u002Fli>\n\u003Cli>Insert any code or script, including HTML and Javascript\u003C\u002Fli>\n\u003Cli>Insert PHP Code Snippets\u003C\u002Fli>\n\u003Cli>Ready-made Code Snippet Library\u003C\u002Fli>\n\u003Cli>Custom WordPress Code Snippet Generator\u003C\u002Fli>\n\u003Cli>Show or Hide PHP Code Snippets based on conditional logic\u003C\u002Fli>\n\u003Cli>Run PHP code and custom code snippets everywhere or in select areas using smart auto-insert rules.\u003C\u002Fli>\n\u003Cli>Manually insert PHP code snippets using shortcodes anywhere on website\u003C\u002Fli>\n\u003Cli>Add Rich Text Ads and Content Snippets automatically on posts & pages.\u003C\u002Fli>\n\u003Cli>Export \u002F Import Code Snippets\u003C\u002Fli>\n\u003Cli>\u003Cstrong>New\u003C\u002Fstrong> Save snippets to Cloud Library – All your snippets stored in your private code snippet cloud.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>New\u003C\u002Fstrong> Deep integrations with Gutenberg, WooCommerce, and more.\u003C\u002Fli>\n\u003Cli>Device specific code snippets (such as load code snippets on mobile only, desktop only, etc)\u003C\u002Fli>\n\u003Cli>and more features coming soon.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cp>Insert Headers and Footers plugin was first created by \u003Ca href=\"https:\u002F\u002Fsyedbalkhi.com\u002F\" rel=\"nofollow ugc\">Syed Balkhi\u003C\u002Fa> and the \u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002F\" rel=\"nofollow ugc\">WPBeginner\u003C\u002Fa> team in 2011.\u003C\u002Fp>\n\u003Cp>It was later rebranded to WPCode in 2022 by Syed Balkhi to add powerful code snippets features that users were requesting for.\u003C\u002Fp>\n\u003Ch4>Branding Guideline\u003C\u002Fh4>\n\u003Cp>WPCode™ is a trademark of WPCode LLC. When writing about the Insert Headers and Footers – Code Snippets plugin by WPCode, please make sure to uppercase the initial 3 letters.\u003C\u002Fp>\n\u003Cp>WPCode (correct)\u003Cbr \u002F>\nWP Code (incorrect)\u003Cbr \u002F>\nwpcode (incorrect)\u003Cbr \u002F>\nwp code snippets (incorrect)\u003C\u002Fp>\n","Easily add code snippets in WordPress. Insert header & footer scripts, add PHP code snippets with conditional logic, insert ads pixel code, and more.",3000000,82822570,98,1761,"2026-02-12T15:19:00.000Z","5.0",[180,20,181,182,183],"code","css","header","php","https:\u002F\u002Fwww.wpcode.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finsert-headers-and-footers.2.3.4.zip",3,"2023-07-17 00:00:00",{"slug":189,"name":190,"version":191,"author":192,"author_profile":193,"description":194,"short_description":195,"active_installs":196,"downloaded":197,"rating":175,"num_ratings":198,"last_updated":199,"tested_up_to":200,"requires_at_least":201,"requires_php":201,"tags":202,"homepage":207,"download_link":208,"security_score":136,"vuln_count":186,"unpatched_count":28,"last_vuln_date":209,"fetched_at":30},"insert-php-code-snippet","Insert PHP Code Snippet","1.4.4","f1logic","https:\u002F\u002Fprofiles.wordpress.org\u002Ff1logic\u002F","\u003Cp>A quicklook into Insert PHP Code Snippet\u003C\u002Fp>\n\u003Cpre>\u003Ccode>★ Convert PHP snippets to shortcodes\n★ Insert PHP code easily using shortcode\n★ Support for PHP snippet shortcodes in widgets\n★ Dropdown menu in TinyMCE editor to pick snippet shortcodes easily\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Features in Detail\u003C\u002Fh4>\n\u003Cp>Insert PHP Code Snippet allows you to create shortcodes corresponding to PHP code snippets. You can create a shortcode corresponding to any random PHP code such as ad codes, login validation etc. and use the same in your posts, pages or widgets.\u003C\u002Fp>\n\u003Cp>The shortcodes generated using the plugin are easily available as a dropdown in the standard wordpress content editor as well as in widget settings, thereby giving you ease of integrating your PHP snippets with your posts and pages.\u003C\u002Fp>\n\u003Ch4>About\u003C\u002Fh4>\n\u003Cp>Insert PHP Code Snippet is developed and maintained by \u003Ca href=\"http:\u002F\u002Fxyzscripts.com\u002F\" title=\"xyzscripts.com\" rel=\"nofollow ugc\">XYZScripts\u003C\u002Fa>. For any support, you may \u003Ca href=\"http:\u002F\u002Fxyzscripts.com\u002Fsupport\u002F\" title=\"XYZScripts Support\" rel=\"nofollow ugc\">contact us\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>★ \u003Ca href=\"http:\u002F\u002Fhelp.xyzscripts.com\u002Fdocs\u002Finsert-php-code-snippet\u002Fuser-guide\" rel=\"nofollow ugc\">Insert PHP Code Snippet User Guide\u003C\u002Fa>\u003Cbr \u002F>\n★ \u003Ca href=\"http:\u002F\u002Fhelp.xyzscripts.com\u002Fdocs\u002Finsert-php-code-snippet\u002Ffaq\u002F\" rel=\"nofollow ugc\">Insert PHP Code Snippet FAQ\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>More Information\u003C\u002Fh3>\n\u003Cp>★ \u003Ca href=\"http:\u002F\u002Fhelp.xyzscripts.com\u002Fdocs\u002Finsert-php-code-snippet\u002Fuser-guide\" rel=\"nofollow ugc\">Insert PHP Code Snippet User Guide\u003C\u002Fa>\u003Cbr \u002F>\n★ \u003Ca href=\"http:\u002F\u002Fhelp.xyzscripts.com\u002Fdocs\u002Finsert-php-code-snippet\u002Ffaq\u002F\" rel=\"nofollow ugc\">Insert PHP Code Snippet FAQ\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Troubleshooting\u003C\u002Fh4>\n\u003Cp>Please read the FAQ first if you are having problems.\u003C\u002Fp>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>WordPress 5.0+\nPHP 7+\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Feedback\u003C\u002Fh4>\n\u003Cp>We would like to receive your feedback and suggestions. You may submit them at our \u003Ca href=\"http:\u002F\u002Fxyzscripts.com\u002Fmembers\u002Fsupport\u002F\" title=\"XYZScripts Support\" rel=\"nofollow ugc\">support desk\u003C\u002Fa>.\u003C\u002Fp>\n","Add PHP code to your pages and posts easily using shortcodes.",100000,1533657,697,"2025-10-23T07:14:00.000Z","6.8.5","",[203,4,204,205,206],"add-php","insert-php-code","insert-php-snippet","insert-php-tag","http:\u002F\u002Fxyzscripts.com\u002Fwordpress-plugins\u002Finsert-php-code-snippet\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finsert-php-code-snippet.1.4.4.zip","2025-10-27 00:00:00",{"slug":211,"name":212,"version":213,"author":214,"author_profile":215,"description":216,"short_description":217,"active_installs":218,"downloaded":219,"rating":175,"num_ratings":220,"last_updated":221,"tested_up_to":16,"requires_at_least":222,"requires_php":223,"tags":224,"homepage":227,"download_link":228,"security_score":229,"vuln_count":230,"unpatched_count":28,"last_vuln_date":231,"fetched_at":30},"wp-coder","WP Coder – Insert & Manage Code Snippets","4.5","Wow-Company","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpcalc\u002F","\u003Cp>Tired of editing theme files to add custom scripts or styles?\u003Cbr \u002F>\n\u003Cstrong>WP Coder\u003C\u002Fstrong> lets you insert custom HTML, CSS, JavaScript, and PHP snippets directly from your dashboard — no coding in theme files required. Gain full control and flexibility over your site.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwpcoder.pro\u002Fcategory\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwpcoder.pro\u002F\" rel=\"nofollow ugc\">Upgrade to Pro\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Why WP Coder?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>All-in-One Code Editor:\u003C\u002Fstrong> Tabbed editor for HTML, CSS, JS & PHP with CodeMirror syntax highlighting.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Gutenberg Block:\u003C\u002Fstrong> Insert snippets directly in the block editor with live preview and custom attribute support.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Shortcode Integration:\u003C\u002Fstrong> Use \u003Ccode>[wp_code id=\"X\"]\u003C\u002Fcode> to embed snippets anywhere.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Live Preview:\u003C\u002Fstrong> Instantly preview HTML & CSS without reloads in both the backend and Gutenberg.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Performance Ready:\u003C\u002Fstrong> Minify CSS\u002FJS, obfuscate JavaScript, and control script loading with \u003Ccode>async\u003C\u002Fcode> \u002F \u003Ccode>defer\u003C\u002Fcode>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Ideal For\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Developers:\u003C\u002Fstrong> Test snippets, hooks, and debug quickly.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Marketers:\u003C\u002Fstrong> Insert tracking pixels, analytics, and ad scripts.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Designers & Bloggers:\u003C\u002Fstrong> Customize layouts, styles, and enhance engagement.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Insert \u003Cstrong>HTML, CSS, JS, and PHP\u003C\u002Fstrong> via powerful shortcodes.\u003C\u002Fli>\n\u003Cli>Smart PHP handling: run in admin, front-end, everywhere, or only where inserted.\u003C\u002Fli>\n\u003Cli>Include external libraries (Google Fonts, CDN scripts & styles).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Test Mode:\u003C\u002Fstrong> Preview snippets safely before going live.\u003C\u002Fli>\n\u003Cli>Import\u002FExport snippets and settings between sites.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>JavaScript Obfuscation:\u003C\u002Fstrong> Protect your scripts with Dean Edwards’ Packer.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Interface:\u003C\u002Fstrong> Hide unused editor tabs (HTML, CSS, JS, etc.) for a cleaner workflow.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NAV comments:\u003C\u002Fstrong> Add inline navigation markers for faster code editing.\u003C\u002Fli>\n\u003Cli>Lightweight & secure — built for performance.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Included Tools:\u003C\u002Fh3>\n\u003Ch4>Integrations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Google Tag Manager (GTM) integration with user role controls.\u003C\u002Fli>\n\u003Cli>Google Analytics, Facebook Pixel, and Pinterest Pixel integration.\u003C\u002Fli>\n\u003Cli>Google AdSense integration with the option to disable ads for selected user roles.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Content & Templates\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Markdown Editor – Disables Gutenberg and TinyMCE, replacing them with a Markdown editor powered by CodeMirror.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Developer Tools\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Debug Log management (enable\u002Fdisable and clear log).\u003C\u002Fli>\n\u003Cli>Show Page Debug Info – Display technical info for the current request in the Admin Bar (template, query type, object, body classes). Admins only.\u003C\u002Fli>\n\u003Cli>Theme Switcher –  Quickly switch between installed themes directly from the admin bar.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Included Snippets:\u003C\u002Fh3>\n\u003Ch4>Editor & Content\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Disable Gutenberg Editor\u003C\u002Fli>\n\u003Cli>Remove Gutenberg Block CSS\u003C\u002Fli>\n\u003Cli>Disable Widget Blocks\u003C\u002Fli>\n\u003Cli>Enable Shortcode Execution in Widgets\u003C\u002Fli>\n\u003Cli>Enable Excerpt for Pages\u003C\u002Fli>\n\u003Cli>Open External Links in New Tabs\u003C\u002Fli>\n\u003Cli>Change “Read More” Text\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Admin Interface Tweaks\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Disable Screen Options Tab\u003C\u002Fli>\n\u003Cli>Disable Welcome Panel\u003C\u002Fli>\n\u003Cli>Duplicate Posts\u003C\u002Fli>\n\u003Cli>Disable Admin Bar\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Login & User Access\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Disable Login Page Language Switcher\u003C\u002Fli>\n\u003Cli>Disable Login by Email\u003C\u002Fli>\n\u003Cli>Disable Admin Password Reset Emails\u003C\u002Fli>\n\u003Cli>Custom Login Logo\u003C\u002Fli>\n\u003Cli>Custom Login Redirect URLs\u003C\u002Fli>\n\u003Cli>Change Redirect After Login\u003C\u002Fli>\n\u003Cli>Change Redirect After Logout\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Media & Embeds\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Enable SVG Upload\u003C\u002Fli>\n\u003Cli>Force Lowercase Filenames\u003C\u002Fli>\n\u003Cli>Default ALT Text for Avatars\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable Lazy Load\u003C\u002Fli>\n\u003Cli>Disable Embeds\u003C\u002Fli>\n\u003Cli>Adjust oEmbed Max Dimensions\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Core Functionality\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Disable XML-RPC\u003C\u002Fli>\n\u003Cli>Disable REST API\u003C\u002Fli>\n\u003Cli>Disable Automatic Updates\u003C\u002Fli>\n\u003Cli>Disable Automatic Updates Emails\u003C\u002Fli>\n\u003Cli>Disable Emojis\u003C\u002Fli>\n\u003Cli>Disable Shortlinks\u003C\u002Fli>\n\u003Cli>Limit Post Revisions\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Comments & Feedback\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Disable Comments Globally\u003C\u002Fli>\n\u003Cli>Disable Comment URL Field\u003C\u002Fli>\n\u003Cli>Disable Self Pingbacks\u003C\u002Fli>\n\u003Cli>Disable Trackbacks & Pingbacks\u003C\u002Fli>\n\u003Cli>Disable HTML in Comments\u003C\u002Fli>\n\u003Cli>Limit Comment Length\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Cleanup & Optimization\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Remove WP Version\u003C\u002Fli>\n\u003Cli>Disable Attachment Pages\u003C\u002Fli>\n\u003Cli>Disable RSS Feeds\u003C\u002Fli>\n\u003Cli>Disable Built-in Search\u003C\u002Fli>\n\u003Cli>Disable wlwmanifest Link\u003C\u002Fli>\n\u003Cli>Disable Automatic Trash Emptying\u003C\u002Fli>\n\u003Cli>Redirect 404 to Homepage\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>WP Coder simplifies your WordPress development workflow and makes customization safe, fast, and flexible!\u003C\u002Fp>\n\u003Cp>Get started today and simplify your WordPress development workflow with \u003Cstrong>WP Coder\u003C\u002Fstrong>!\u003C\u002Fp>\n\u003Ch3>Quick Start Video\u003C\u002Fh3>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FBgY3R8j1uWM?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch3>Plugin Demo:\u003C\u002Fh3>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FYF4X7sU0iFY?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>Need help? Ask questions and get quick answers in our \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwp-coder\" rel=\"ugc\">support center\u003C\u002Fa>.\u003C\u002Fp>\n","Snippets made simple — easily insert and manage custom PHP, CSS, JS & HTML without coding in theme files.",10000,368560,31,"2026-02-14T05:39:00.000Z","5.4","7.4",[180,20,225,226],"shortcode","snippets","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-coder\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-coder.4.5.zip",95,5,"2025-01-31 00:00:00",{"slug":233,"name":234,"version":235,"author":236,"author_profile":237,"description":238,"short_description":239,"active_installs":240,"downloaded":241,"rating":242,"num_ratings":243,"last_updated":244,"tested_up_to":200,"requires_at_least":245,"requires_php":223,"tags":246,"homepage":201,"download_link":251,"security_score":252,"vuln_count":253,"unpatched_count":253,"last_vuln_date":254,"fetched_at":30},"add-custom-codes","Add Custom Codes – Insert Header, Footer, Custom PHP Snippets, CSS, Javascript","4.80","SaifuMak","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaifumak\u002F","\u003Cp>Add custom codes to your wordpress website. You can add custom PHP Functions, HTML, custom CSS, Javascript, Google Analytics, Search Console verification tags or other code snippets to your site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>100% free wordpress plugin, no paid upgrades needed!\u003C\u002Fli>\n\u003Cli>Add PHP Snippets, Custom CSS, Javascript, Google Analytics, Facebook Scripts, Meta Verification Codes, Search console verification and other codes to your wordpress website easily.\u003C\u002Fli>\n\u003Cli>Generate Shortcodes for HTML Snippets and use it anywhere on the site!\u003C\u002Fli>\n\u003Cli>Syntax highlighter enabled with Light and Dark Mode Editors\u003C\u002Fli>\n\u003Cli>Classify snippets using tags\u003C\u002Fli>\n\u003Cli>Add Notes to Snippets\u003C\u002Fli>\n\u003Cli>Activate\u002FInactivate snippets with a single click\u003C\u002Fli>\n\u003Cli>Auto-deactivate feature for PHP snippets that causes errors.\u003C\u002Fli>\n\u003Cli>Add Custome Codes globally or on individual posts, pages, products and even on custom post types.\u003C\u002Fli>\n\u003Cli>Option to select where to put snippets: before \u003Cem>\u003C\u002Fhead>\u003C\u002Fem> or before \u003Cem>\u003C\u002Fbody>\u003C\u002Fem> etc.\u003C\u002Fli>\n\u003Cli>Import\u002FExport Snippets to use on other sites.\u003C\u002Fli>\n\u003C\u002Ful>\n","Add custom codes to your wordpress site. A completely free plugin to add Custom PHP functions, HTML, CSS, Javascript, any other codes to your website.",1000,16630,100,6,"2025-04-29T06:08:00.000Z","6.6.2",[157,247,248,249,250],"custom-css","footer-codes","header-codes","php-snippets","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadd-custom-codes.4.80.zip",39,4,"2025-12-31 00:00:00",{"attackSurface":256,"codeSignals":616,"taintFlows":732,"riskAssessment":794,"analyzedAt":811},{"hooks":257,"ajaxHandlers":566,"restRoutes":612,"shortcodes":613,"cronEvents":614,"entryPointCount":615,"unprotectedCount":28},[258,264,268,271,274,278,281,284,288,293,297,301,305,309,312,314,316,318,322,325,327,329,333,336,339,343,347,351,354,358,362,365,368,370,374,377,380,384,385,387,390,394,398,401,405,407,410,414,418,422,427,431,435,438,442,445,448,451,453,455,458,460,464,468,470,474,477,480,483,487,490,494,498,502,505,508,511,515,518,521,524,527,529,531,533,537,540,543,545,546,548,550,553,555,559,561,563],{"type":259,"name":260,"callback":261,"file":262,"line":263},"action","admin_init","closure","admin\\boot.php",19,{"type":259,"name":265,"callback":266,"file":262,"line":267},"admin_enqueue_scripts","wbcr_inp_enqueue_tinymce_assets",66,{"type":259,"name":265,"callback":269,"file":262,"line":270},"wbcr_inp_enqueue_scripts",67,{"type":259,"name":272,"callback":261,"file":262,"line":273},"init",103,{"type":259,"name":275,"callback":276,"file":262,"line":277},"admin_print_scripts-post.php","wbcr_inp_tinymce_data",106,{"type":259,"name":279,"callback":276,"file":262,"line":280},"admin_print_scripts-post-new.php",107,{"type":259,"name":282,"callback":276,"file":262,"line":283},"admin_print_scripts-widgets.php",108,{"type":259,"name":285,"callback":286,"file":262,"line":287},"wp_trash_post","wbcr_inp_trash_post",126,{"type":289,"name":290,"callback":291,"file":262,"line":292},"filter","custom_menu_order","__return_true",147,{"type":289,"name":294,"callback":295,"priority":47,"file":262,"line":296},"admin_menu","wbcr_inp_remove_new_item",148,{"type":289,"name":294,"callback":298,"priority":299,"file":262,"line":300},"wbcr_inp_reorder_submenu_items",999,185,{"type":259,"name":302,"callback":303,"file":262,"line":304},"current_screen","wbcr_inp_redirect_to_new_item",215,{"type":289,"name":306,"callback":306,"priority":307,"file":308,"line":220},"post_row_actions",10,"admin\\includes\\class.actions.snippet.php",{"type":259,"name":310,"callback":310,"file":308,"line":311},"post_submitbox_start",43,{"type":259,"name":260,"callback":260,"file":308,"line":313},44,{"type":259,"name":302,"callback":302,"file":308,"line":315},45,{"type":259,"name":265,"callback":265,"file":308,"line":317},46,{"type":259,"name":260,"callback":319,"file":320,"line":321},"register_notices","admin\\includes\\class.admin.notices.php",24,{"type":259,"name":260,"callback":323,"file":320,"line":324},"register_pending_error_notices",25,{"type":259,"name":302,"callback":302,"file":326,"line":321},"admin\\includes\\class.common.snippet.php",{"type":259,"name":328,"callback":328,"file":326,"line":324},"edit_form_before_permalink",{"type":259,"name":330,"callback":331,"file":326,"line":332},"admin_notices","create_uploads_directory",26,{"type":259,"name":334,"callback":334,"file":326,"line":335},"before_delete_post",27,{"type":259,"name":337,"callback":337,"file":326,"line":338},"save_post",28,{"type":259,"name":340,"callback":341,"file":326,"line":342},"auto-draft_to_publish","publish_snippet",30,{"type":289,"name":344,"callback":345,"priority":307,"file":326,"line":346},"script_loader_src","unload_scripts",32,{"type":259,"name":348,"callback":349,"file":326,"line":350},"admin_head","current_screen_post",565,{"type":259,"name":348,"callback":352,"file":326,"line":353},"current_screen_edit",569,{"type":259,"name":355,"callback":356,"file":357,"line":263},"restrict_manage_posts","restrictManagePosts","admin\\includes\\class.filter.snippet.php",{"type":289,"name":359,"callback":360,"file":357,"line":361},"parse_query","parseQuery",20,{"type":259,"name":272,"callback":272,"file":363,"line":364},"admin\\includes\\class.gutenberg.snippet.php",38,{"type":259,"name":330,"callback":366,"file":367,"line":311},"display_notices","admin\\includes\\class.notices.php",{"type":259,"name":265,"callback":369,"file":367,"line":315},"enqueue_scripts",{"type":259,"name":265,"callback":371,"file":372,"line":373},"enqueue_assets","admin\\includes\\class.snippets.viewtable.php",57,{"type":289,"name":306,"callback":375,"priority":307,"file":372,"line":376},"modify_row_actions",60,{"type":259,"name":260,"callback":378,"file":372,"line":379},"run_actions",68,{"type":259,"name":381,"callback":261,"file":382,"line":383},"add_meta_boxes","admin\\metaboxes\\snippet-metabox.php",22,{"type":259,"name":265,"callback":371,"file":382,"line":270},{"type":259,"name":265,"callback":386,"file":382,"line":379},"deregister_default_editor_resourses",{"type":259,"name":348,"callback":388,"file":382,"line":389},"remove_media_button",70,{"type":289,"name":391,"callback":392,"file":382,"line":393},"wp_default_editor","set_default_editor",71,{"type":259,"name":395,"callback":396,"priority":163,"file":382,"line":397},"admin_footer-post.php","print_code_editor_scripts",72,{"type":259,"name":399,"callback":396,"priority":163,"file":382,"line":400},"admin_footer-post-new.php",73,{"type":259,"name":402,"callback":403,"priority":307,"file":382,"line":404},"edit_form_after_editor","php_editor_markup",74,{"type":289,"name":406,"callback":406,"file":382,"line":138},"admin_body_class",{"type":259,"name":408,"callback":408,"file":382,"line":409},"edit_form_top",77,{"type":259,"name":411,"callback":412,"file":382,"line":413},"post_submitbox_misc_actions","post_submitbox_show_shortcode",78,{"type":259,"name":415,"callback":416,"file":382,"line":417},"edit_form_after_title","keep_html_entities",79,{"type":289,"name":419,"callback":420,"file":382,"line":421},"pre_post_content","stop_post_filters",81,{"type":289,"name":423,"callback":424,"priority":425,"file":382,"line":426},"content_save_pre","init_post_filters",9999,82,{"type":259,"name":337,"callback":428,"priority":429,"file":382,"line":430},"on_saving_snippet",11,84,{"type":259,"name":337,"callback":432,"priority":433,"file":382,"line":434},"after_saving_snippet",15,85,{"type":289,"name":423,"callback":436,"file":382,"line":437},"wp_targeted_link_rel",516,{"type":259,"name":294,"callback":439,"file":440,"line":441},"register_new_item_page","admin\\pages\\class.new-item.php",29,{"type":259,"name":294,"callback":443,"file":444,"line":441},"register_settings_page","admin\\pages\\class.settings.php",{"type":259,"name":294,"callback":446,"file":447,"line":441},"register_snippet_library_page","admin\\pages\\class.snippet-library.php",{"type":259,"name":272,"callback":449,"file":450,"line":389},"register","admin\\types\\snippets-post-types.php",{"type":259,"name":348,"callback":452,"file":450,"line":393},"print_menu_styles",{"type":259,"name":348,"callback":454,"file":450,"line":397},"print_menu_icon_styles",{"type":289,"name":456,"callback":457,"file":450,"line":400},"post_updated_messages","updated_messages",{"type":259,"name":272,"callback":449,"file":459,"line":364},"admin\\types\\snippets-taxonomy.php",{"type":259,"name":461,"callback":462,"priority":242,"file":463,"line":152},"admin_bar_menu","add_admin_bar_menu","includes\\class.admin-bar.php",{"type":259,"name":465,"callback":466,"file":463,"line":467},"wp_enqueue_scripts","enqueue_styles",52,{"type":259,"name":265,"callback":466,"file":463,"line":469},53,{"type":259,"name":471,"callback":472,"priority":425,"file":463,"line":473},"wp_footer","update_admin_bar_with_js",54,{"type":259,"name":475,"callback":472,"priority":425,"file":463,"line":476},"admin_footer",55,{"type":289,"name":478,"callback":261,"priority":47,"file":479,"line":417},"winp_skip_snippet_execution","includes\\class.execute.snippet.php",{"type":259,"name":272,"callback":481,"priority":47,"file":479,"line":482},"execute_everywhere_snippets",125,{"type":259,"name":484,"callback":485,"file":479,"line":486},"wp_head","execute_header_snippets",128,{"type":259,"name":471,"callback":488,"file":479,"line":489},"execute_footer_snippets",129,{"type":259,"name":491,"callback":492,"priority":307,"file":479,"line":493},"the_post","executePostSnippets",130,{"type":289,"name":495,"callback":496,"file":479,"line":497},"the_content","executeContentSnippets",131,{"type":289,"name":499,"callback":500,"file":479,"line":501},"the_excerpt","executeExcerptSnippets",132,{"type":259,"name":484,"callback":503,"file":479,"line":504},"executeCustomSnippets",139,{"type":289,"name":506,"callback":261,"file":479,"line":507},"woocommerce_product_loop_start",408,{"type":289,"name":509,"callback":261,"file":479,"line":510},"woocommerce_product_loop_end",416,{"type":259,"name":512,"callback":513,"priority":307,"file":479,"line":514},"woocommerce_before_single_product","anonymous",424,{"type":259,"name":516,"callback":513,"priority":307,"file":479,"line":517},"woocommerce_after_single_product",427,{"type":259,"name":519,"callback":513,"priority":307,"file":479,"line":520},"woocommerce_before_single_product_summary",430,{"type":259,"name":522,"callback":513,"priority":307,"file":479,"line":523},"woocommerce_after_single_product_summary",433,{"type":259,"name":525,"callback":513,"priority":243,"file":479,"line":526},"woocommerce_single_product_summary",436,{"type":259,"name":525,"callback":513,"priority":433,"file":479,"line":528},439,{"type":259,"name":525,"callback":513,"priority":324,"file":479,"line":530},442,{"type":259,"name":272,"callback":261,"file":532,"line":379},"includes\\class.plugin.php",{"type":259,"name":534,"callback":535,"file":536,"line":383},"rest_api_init","register_routes","includes\\class.rest.php",{"type":259,"name":465,"callback":371,"file":538,"line":539},"includes\\shortcodes\\shortcodes.php",61,{"type":259,"name":330,"callback":261,"file":541,"line":542},"insert_php.php",23,{"type":259,"name":544,"callback":261,"file":541,"line":430},"plugins_loaded",{"type":259,"name":544,"callback":261,"priority":230,"file":541,"line":151},{"type":259,"name":260,"callback":261,"file":541,"line":547},123,{"type":259,"name":330,"callback":261,"file":541,"line":549},134,{"type":289,"name":551,"callback":261,"file":541,"line":552},"wp_php_error_message",183,{"type":259,"name":544,"callback":261,"file":541,"line":554},197,{"type":289,"name":556,"callback":557,"file":541,"line":558},"themeisle_sdk_products","winp_sdk_register_products",257,{"type":259,"name":272,"callback":261,"priority":28,"file":541,"line":560},291,{"type":259,"name":330,"callback":513,"file":541,"line":562},309,{"type":259,"name":564,"callback":513,"file":541,"line":565},"network_admin_notices",310,[567,573,575,578,581,585,588,593,596,599,603,606,609],{"action":568,"nopriv":569,"callback":568,"hasNonce":570,"hasCapCheck":569,"file":571,"line":572},"wbcr_inp_ajax_get_user_roles",false,true,"admin\\ajax\\ajax.php",50,{"action":574,"nopriv":569,"callback":574,"hasNonce":570,"hasCapCheck":569,"file":571,"line":430},"wbcr_inp_ajax_get_post_types",{"action":576,"nopriv":569,"callback":576,"hasNonce":570,"hasCapCheck":569,"file":571,"line":577},"wbcr_inp_ajax_get_taxonomies",119,{"action":579,"nopriv":569,"callback":579,"hasNonce":570,"hasCapCheck":569,"file":571,"line":580},"wbcr_inp_ajax_get_page_list",251,{"action":582,"nopriv":569,"callback":583,"hasNonce":570,"hasCapCheck":569,"file":571,"line":584},"winp_permalink","wbcr_inp_ajax_save_permalink",282,{"action":586,"nopriv":569,"callback":586,"hasNonce":570,"hasCapCheck":569,"file":571,"line":587},"wbcr_inp_ajax_validate_snippet",410,{"action":589,"nopriv":569,"callback":590,"hasNonce":570,"hasCapCheck":569,"file":591,"line":592},"winp_get_snippet_library","wbcr_inp_ajax_get_snippet_library","admin\\ajax\\snippet-library.php",40,{"action":594,"nopriv":569,"callback":595,"hasNonce":570,"hasCapCheck":569,"file":591,"line":539},"winp_snippet_create","wbcr_inp_ajax_snippet_create",{"action":597,"nopriv":569,"callback":598,"hasNonce":570,"hasCapCheck":569,"file":591,"line":421},"winp_snippet_delete","wbcr_inp_ajax_snippet_delete",{"action":600,"nopriv":569,"callback":601,"hasNonce":570,"hasCapCheck":569,"file":591,"line":602},"winp_sts_display","wbcr_inp_ajax_sts_display_callback",111,{"action":604,"nopriv":569,"callback":605,"hasNonce":570,"hasCapCheck":569,"file":367,"line":313},"winp_dismiss_notice","ajax_dismiss_notice",{"action":607,"nopriv":569,"callback":607,"hasNonce":570,"hasCapCheck":570,"file":372,"line":608},"change_priority",64,{"action":610,"nopriv":569,"callback":610,"hasNonce":570,"hasCapCheck":570,"file":372,"line":611},"change_snippet_status",65,[],[],[],13,{"dangerousFunctions":617,"sqlUsage":623,"outputEscaping":635,"fileOperations":429,"externalRequests":186,"nonceChecks":361,"capabilityChecks":321,"bundledLibraries":728},[618],{"fn":619,"file":620,"line":621,"context":622},"unserialize","includes\\class.helpers.php",441,"$unserialized_filters = unserialize( $post['meta']['filters'] );",{"prepared":186,"raw":253,"locations":624},[625,628,631,633],{"file":620,"line":626,"context":627},712,"$wpdb->get_var() with variable interpolation",{"file":629,"line":467,"context":630},"uninstall.php","$wpdb->query() with variable interpolation",{"file":629,"line":632,"context":630},58,{"file":629,"line":376,"context":634},"$wpdb->get_col() with variable interpolation",{"escaped":636,"rawEcho":473,"locations":637},225,[638,640,642,644,646,647,648,649,650,651,653,654,656,657,658,659,661,663,665,667,669,670,671,673,676,678,680,682,684,686,688,689,691,693,695,697,699,701,703,705,707,708,710,712,713,715,716,717,719,720,722,723,725,726],{"file":571,"line":317,"context":639},"raw output",{"file":571,"line":641,"context":639},80,{"file":571,"line":643,"context":639},115,{"file":571,"line":645,"context":639},247,{"file":591,"line":324,"context":639},{"file":591,"line":332,"context":639},{"file":591,"line":335,"context":639},{"file":591,"line":373,"context":639},{"file":591,"line":409,"context":639},{"file":262,"line":652,"context":639},87,{"file":262,"line":13,"context":639},{"file":262,"line":655,"context":639},94,{"file":262,"line":229,"context":639},{"file":262,"line":136,"context":639},{"file":262,"line":175,"context":639},{"file":308,"line":660,"context":639},223,{"file":308,"line":662,"context":639},226,{"file":308,"line":664,"context":639},385,{"file":308,"line":666,"context":639},387,{"file":326,"line":668,"context":639},75,{"file":326,"line":668,"context":639},{"file":326,"line":136,"context":639},{"file":326,"line":672,"context":639},399,{"file":674,"line":675,"context":639},"admin\\includes\\class.snippets.table.php",558,{"file":674,"line":677,"context":639},559,{"file":372,"line":679,"context":639},218,{"file":372,"line":681,"context":639},229,{"file":382,"line":683,"context":639},782,{"file":382,"line":685,"context":639},787,{"file":463,"line":687,"context":639},617,{"file":479,"line":296,"context":639},{"file":479,"line":690,"context":639},155,{"file":479,"line":692,"context":639},162,{"file":479,"line":694,"context":639},192,{"file":479,"line":696,"context":639},367,{"file":479,"line":698,"context":639},378,{"file":479,"line":700,"context":639},403,{"file":702,"line":335,"context":639},"includes\\shortcodes\\shortcode-ad.php",{"file":702,"line":704,"context":639},62,{"file":706,"line":335,"context":639},"includes\\shortcodes\\shortcode-css.php",{"file":706,"line":373,"context":639},{"file":709,"line":335,"context":639},"includes\\shortcodes\\shortcode-html.php",{"file":709,"line":711,"context":639},56,{"file":709,"line":611,"context":639},{"file":714,"line":335,"context":639},"includes\\shortcodes\\shortcode-js.php",{"file":714,"line":539,"context":639},{"file":714,"line":704,"context":639},{"file":718,"line":335,"context":639},"includes\\shortcodes\\shortcode-php.php",{"file":718,"line":476,"context":639},{"file":721,"line":335,"context":639},"includes\\shortcodes\\shortcode-text.php",{"file":721,"line":704,"context":639},{"file":724,"line":335,"context":639},"includes\\shortcodes\\shortcode-universal.php",{"file":724,"line":711,"context":639},{"file":541,"line":727,"context":639},306,[729],{"name":730,"version":37,"knownCves":731},"TinyMCE",[],[733,757,773,786],{"entryPoint":734,"graph":735,"unsanitizedCount":756,"severity":53},"render_snippet_dropdown (admin\\includes\\class.common.snippet.php:181)",{"nodes":736,"edges":753},[737,742,748,750],{"id":738,"type":739,"label":740,"file":326,"line":741},"n0","source","$_GET (x2)",201,{"id":743,"type":744,"label":745,"file":326,"line":746,"wp_function":747},"n1","sink","echo() [XSS]",381,"echo",{"id":749,"type":739,"label":740,"file":326,"line":741},"n2",{"id":751,"type":744,"label":745,"file":326,"line":752,"wp_function":747},"n3",411,[754,755],{"from":738,"to":743,"sanitized":569},{"from":749,"to":751,"sanitized":570},2,{"entryPoint":758,"graph":759,"unsanitizedCount":28,"severity":772},"\u003Cclass.common.snippet> (admin\\includes\\class.common.snippet.php:0)",{"nodes":760,"edges":769},[761,763,764,765],{"id":738,"type":739,"label":762,"file":326,"line":741},"$_GET (x4)",{"id":743,"type":744,"label":745,"file":326,"line":746,"wp_function":747},{"id":749,"type":739,"label":740,"file":326,"line":741},{"id":751,"type":744,"label":766,"file":326,"line":767,"wp_function":768},"file_put_contents() [File Write]",762,"file_put_contents",[770,771],{"from":738,"to":743,"sanitized":570},{"from":749,"to":751,"sanitized":570},"low",{"entryPoint":774,"graph":775,"unsanitizedCount":47,"severity":110},"get_body (includes\\class.http.php:30)",{"nodes":776,"edges":784},[777,780],{"id":738,"type":739,"label":778,"file":779,"line":317},"$_REQUEST","includes\\class.http.php",{"id":743,"type":744,"label":781,"file":779,"line":782,"wp_function":783},"call_user_func() [RCE]",59,"call_user_func",[785],{"from":738,"to":743,"sanitized":569},{"entryPoint":787,"graph":788,"unsanitizedCount":47,"severity":110},"\u003Cclass.http> (includes\\class.http.php:0)",{"nodes":789,"edges":792},[790,791],{"id":738,"type":739,"label":778,"file":779,"line":317},{"id":743,"type":744,"label":781,"file":779,"line":782,"wp_function":783},[793],{"from":738,"to":743,"sanitized":569},{"summary":795,"deductions":796},"The \"insert-php\" plugin v2.7.2 exhibits a mixed security posture. While it boasts a significant number of auth checks on its AJAX handlers and appears to have no currently unpatched CVEs, several concerning signals emerge from the static analysis and its vulnerability history. The presence of the `unserialize` function, combined with taint analysis revealing flows with unsanitized paths, raises a red flag for potential code injection or deserialization vulnerabilities, especially when coupled with the plugin's history of \"Improper Control of Generation of Code ('Code Injection')\" and \"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\".  The vulnerability history also indicates a pattern of \"Improper Access Control\" and \"Missing Authorization\", which, despite the current auth checks, suggests past weaknesses in how user input and actions were validated. The large number of file operations and external HTTP requests also present potential vectors for exploitation if not handled with extreme care.  Overall, while there are good practices like extensive nonce and capability checks, the presence of dangerous functions, concerning taint flows, and a history of severe vulnerabilities necessitate caution.",[797,799,801,803,805,807,809],{"reason":798,"points":307},"Dangerous function 'unserialize' found",{"reason":800,"points":433},"Taint flows with unsanitized paths",{"reason":802,"points":433},"Multiple past critical\u002Fhigh vulnerabilities",{"reason":804,"points":307},"7 total CVEs, including critical and high",{"reason":806,"points":230},"SQL queries with low prepared statement usage (57%)",{"reason":808,"points":186},"11 file operations",{"reason":810,"points":186},"3 external HTTP requests","2026-03-16T17:15:09.540Z",{"wat":813,"direct":819},{"assetPaths":814,"generatorPatterns":816,"scriptPaths":817,"versionParams":818},[815],"\u002Fwp-content\u002Fplugins\u002Finsert-php\u002Fadmin\u002Fassets\u002Fimg\u002Ficon-256x256.png",[],[],[],{"cssClasses":820,"htmlComments":821,"htmlAttributes":822,"restEndpoints":823,"jsGlobals":824,"shortcodeOutput":825},[],[],[],[],[],[826,827],"\u003Cdiv style=\"margin:20px 0;padding:20px; background:#ffe8e8;\">If you see this message after saving the snippet to the Woody Code Snippets plugin, please enable safe mode in the Woody plugin. Safe mode will allow you to continue working in the admin panel of your site and change the snippet in which you made a php error.\u003C\u002Fdiv>\u003Ca href=\"","\" class=\"button\">Enable Safe Mode\u003C\u002Fa>"]