[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fiRi-3KuCbDkUc3UPuOwQYZaHcZiY_XLbh0eE5d8Xxd4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":139,"fingerprints":384},"js-injector","JS Injector","1.0.0","77 Solutions","https:\u002F\u002Fprofiles.wordpress.org\u002F77solutions\u002F","\u003Cp>Add custom JS into selected place of Your website in the simplest possible way.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>5 supported sections (admin panel, login page, password recovery page, registration page, website).\u003C\u002Fli>\n\u003Cli>Possibility to place custom JS code at top (head JS) or bottom of page (footer JS).\u003C\u002Fli>\n\u003Cli>Simple but useful solution that just works.\u003C\u002Fli>\n\u003Cli>Mobile optimized interface – add Your custom JS from mobile device.\u003C\u002Fli>\n\u003Cli>JS Injector works on old and new WordPress versions.\u003C\u002Fli>\n\u003Cli>No technical skills required.\u003C\u002Fli>\n\u003Cli>Extremely easy to manage Your custom JS code.\u003C\u002Fli>\n\u003Cli>No advertisings, donate buttons or other ugly looking “extras”, just custom JS control.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Minimal Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WordPress 3.1 or later\u003C\u002Fli>\n\u003Cli>PHP 5.3 or later\u003C\u002Fli>\n\u003C\u002Ful>\n","Super simple solution to add, edit and control custom JS code in selected area of Your WordPress website. Check long description.",20,2100,0,"2017-09-05T20:51:00.000Z","4.8.28","3.1","",[19,20,21,22,23],"admin-js","custom","custom-js","js","style","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fjs-injector\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjs-injector.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"77solutions",2,60,30,84,"2026-04-05T02:26:41.055Z",[38,64,84,105,125],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":59,"download_link":60,"security_score":61,"vuln_count":62,"unpatched_count":13,"last_vuln_date":63,"fetched_at":28},"custom-css-js","Simple Custom CSS and JS","3.52","SilkyPress","https:\u002F\u002Fprofiles.wordpress.org\u002Fdiana_burduja\u002F","\u003Cp>Customize your WordPress site’s appearance by easily adding custom CSS and JS code without even having to modify your theme or plugin files. This is perfect for adding custom CSS tweaks to your site.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Text editor\u003C\u002Fstrong> with syntax highlighting \u003C\u002Fli>\n\u003Cli>Print the code \u003Cstrong>inline\u003C\u002Fstrong> or included into an \u003Cstrong>external file\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Print the code in the \u003Cstrong>header\u003C\u002Fstrong> or the \u003Cstrong>footer\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Add CSS or JS to the \u003Cstrong>frontend\u003C\u002Fstrong> or the \u003Cstrong>admin side\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Add as many codes as you want\u003C\u002Fli>\n\u003Cli>Keep your changes also when you change the theme\u003C\u002Fli>\n\u003C\u002Ful>\n","Easily add Custom CSS or JS to your website with an awesome editor.",700000,10074700,88,101,"2026-03-06T19:56:00.000Z","6.9.4","3.0.1","5.2.4",[55,56,21,57,58],"add-style","custom-css","customize-theme","site-css","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcustom-css-js\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-css-js.3.52.zip",100,1,"2017-07-24 00:00:00",{"slug":65,"name":66,"version":67,"author":68,"author_profile":69,"description":70,"short_description":71,"active_installs":72,"downloaded":73,"rating":61,"num_ratings":74,"last_updated":75,"tested_up_to":76,"requires_at_least":77,"requires_php":17,"tags":78,"homepage":17,"download_link":82,"security_score":35,"vuln_count":62,"unpatched_count":13,"last_vuln_date":83,"fetched_at":28},"tc-custom-javascript","TC Custom JavaScript","1.2.3","Tiny Code","https:\u002F\u002Fprofiles.wordpress.org\u002Ftinycode\u002F","\u003Cp>Add custom JavaScript to your site from a professional editor in the WordPress admin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>TC Custom JavaScript\u003C\u002Fstrong>‘s still in early stage. If you have any troubles when using it, or any ideas to improve its features to fit with your work, please do not hesitate to contact us.\u003C\u002Fp>\n","Add custom JavaScript to your site from a professional editor in the WordPress admin.",10000,115752,8,"2023-02-24T03:13:00.000Z","6.1.10","3.0.0",[79,21,80,81],"custom-javascript","edit-js-theme","javascript-editor","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftc-custom-javascript.1.2.3.zip","2020-07-21 00:00:00",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":94,"num_ratings":95,"last_updated":96,"tested_up_to":97,"requires_at_least":98,"requires_php":17,"tags":99,"homepage":101,"download_link":102,"security_score":103,"vuln_count":62,"unpatched_count":62,"last_vuln_date":104,"fetched_at":28},"custom-css-editor","Custom CSS","1.4.0","FRESHFACE","https:\u002F\u002Fprofiles.wordpress.org\u002Ffreshface\u002F","\u003Cp>Create custom CSS and JS codes. Delivered with our awesome Conditional Logic, you can easily specify\u003Cbr \u002F>\nwhere you want to your custom CSS code appear. You can write your CSS and JS codes inside\u003Cbr \u002F>\nnice ACE editor with syntax highlighter.Codes will be still presented, after you change the theme,\u003Cbr \u002F>\nso this is really good way to write CSS adjustments into your theme.\u003C\u002Fp>\n","Add custom CSS, JS, PHP, tracking code. Very easy to use!",1000,69232,50,17,"2017-11-28T15:06:00.000Z","4.6.30","4.0.0",[100,56,21],"custom-code","http:\u002F\u002Ffreshface.net","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-css-editor.zip",63,"2025-10-08 00:00:00",{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":113,"downloaded":114,"rating":61,"num_ratings":115,"last_updated":116,"tested_up_to":117,"requires_at_least":118,"requires_php":17,"tags":119,"homepage":123,"download_link":124,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"live-css-js-code-editor","Live Custom CSS JS Code Editor","1.0.5","Ozan Canakli","https:\u002F\u002Fprofiles.wordpress.org\u002Fozancanakli\u002F","\u003Cp>This plugin allows you to add custom site-wide \u003Cstrong>CSS, JavaScript, Header, Footer Code\u003C\u002Fstrong> to your WordPress site. The changes appear instantly on your website with help of \u003Cstrong>WordPress Live Customizer.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FgP78wXPayvU?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>\u003Cstrong>In your WordPress Dashboard, navigate to Customize > Live Code Editor to get started.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>When you Change or Update your WordPress Theme, Your Custom Code isn’t effected from these changes.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>NEW FEATURES as Version 1.0.5:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Add Custom CSS to WordPress Admin dashboard.\u003Cbr \u002F>\n* Add Custom JavaScript to WordPress Admin dashboard.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>MAIN FEATURES:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Custom CSS code\u003C\u002Fli>\n\u003Cli>Custom Javascript code\u003C\u002Fli>\n\u003Cli>Custom Header Code (Inside  tags)(Google Analytics and Facebook Pixel compatible.)\u003C\u002Fli>\n\u003Cli>Custom Footer Code (Before closing  tag aka wp_footer function)\u003C\u002Fli>\n\u003Cli>See Your Changes Immediately on your WordPress Site\u003C\u002Fli>\n\u003Cli>Built in Syntax Code Highlighter\u003C\u002Fli>\n\u003Cli>16 Color Schemes (Monokai, Chrome, GitHub, Twilight, Dreamweaver, XCode, Eclipse etc. 8 Light, 8 Dark)\u003C\u002Fli>\n\u003Cli>Live Syntax Checking (CSS, JavaScript, HTML)\u003C\u002Fli>\n\u003Cli>Syntax Highlighting\u003C\u002Fli>\n\u003Cli>Line wrapping\u003C\u002Fli>\n\u003Cli>Code folding\u003C\u002Fli>\n\u003Cli>Multiple cursors and selections\u003C\u002Fli>\n\u003Cli>Handles huge code blocks (four million lines seems to be the limit!)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Special thanks to \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fjustinbusa\u002F\" rel=\"nofollow ugc\">Justin Busa\u003C\u002Fa> of \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbeaver-builder-lite-version\u002F\" rel=\"ugc\">Beaver Builder\u003C\u002Fa> for the inspiration.\u003C\u002Fp>\n","Live Custom CSS JS Code Editor allows you to easily add custom CSS, JavaScript, Header, Footer Code to your site, straight from your WordPress Customi …",400,12960,3,"2020-03-13T20:32:00.000Z","5.3.21","3.4",[120,56,21,121,122],"css","customizer","javascript","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Flive-css-js-code-editor\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flive-css-js-code-editor.zip",{"slug":21,"name":126,"version":6,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":131,"downloaded":132,"rating":13,"num_ratings":13,"last_updated":133,"tested_up_to":97,"requires_at_least":134,"requires_php":17,"tags":135,"homepage":137,"download_link":138,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"Custom JS","seosbg","https:\u002F\u002Fprofiles.wordpress.org\u002Fseosbg\u002F","\u003Cp>Custom JS WordPress plugin allows you to Custom JS fields in your theme. Simply amazing and easy to use.\u003Cbr \u002F>\nTo learn more about the Custom JS plugin please see Plugin URI. See screenshot examples at https:\u002F\u002Fwww.seosthemes.com\u002Fcustom-js\u002F\u003C\u002Fp>\n","Custom JS is easy to use. Custom JS WordPress plugin allows you to Custom JS fields in your theme - include js in head or footer.",200,3688,"2016-09-24T09:52:00.000Z","4.6",[120,56,79,21,136],"textarea-css","https:\u002F\u002Fwww.seosthemes.com\u002Fcustom-js\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-js.zip",{"attackSurface":140,"codeSignals":169,"taintFlows":244,"riskAssessment":370,"analyzedAt":383},{"hooks":141,"ajaxHandlers":165,"restRoutes":166,"shortcodes":167,"cronEvents":168,"entryPointCount":13,"unprotectedCount":13},[142,148,152,154,157,159,163],{"type":143,"name":144,"callback":145,"file":146,"line":147},"action","init","closure","index.php",46,{"type":143,"name":149,"callback":145,"file":150,"line":151},"admin_menu","_core\\1.0.0L\\classes\\Plugin.class.php",245,{"type":143,"name":149,"callback":145,"file":150,"line":153},286,{"type":143,"name":155,"callback":145,"file":150,"line":156},"admin_head",308,{"type":143,"name":149,"callback":145,"file":150,"line":158},320,{"type":160,"name":161,"callback":145,"file":150,"line":162},"filter","submenu_file",373,{"type":143,"name":149,"callback":145,"file":150,"line":164},390,[],[],[],[],{"dangerousFunctions":170,"sqlUsage":171,"outputEscaping":173,"fileOperations":115,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":243},[],{"prepared":13,"raw":13,"locations":172},[],{"escaped":13,"rawEcho":174,"locations":175},40,[176,180,182,185,187,189,190,192,195,197,198,200,202,204,206,208,210,211,213,215,217,219,220,222,223,225,226,227,228,230,231,232,233,235,236,237,238,240,241,242],{"file":177,"line":178,"context":179},"_core\\1.0.0L\\admin_page.php",81,"raw output",{"file":181,"line":33,"context":179},"_core\\1.0.0L\\classes\\Redirects.class.php",{"file":183,"line":184,"context":179},"_core\\1.0.0L\\classes\\UI.class.php",128,{"file":183,"line":186,"context":179},168,{"file":183,"line":188,"context":179},194,{"file":183,"line":151,"context":179},{"file":183,"line":191,"context":179},403,{"file":193,"line":194,"context":179},"_core\\1.0.0L\\classes\\WP77.class.php",293,{"file":193,"line":196,"context":179},300,{"file":193,"line":156,"context":179},{"file":193,"line":199,"context":179},317,{"file":193,"line":201,"context":179},342,{"file":193,"line":203,"context":179},348,{"file":193,"line":205,"context":179},356,{"file":207,"line":178,"context":179},"_plugin\\index.php",{"file":207,"line":209,"context":179},83,{"file":207,"line":26,"context":179},{"file":207,"line":212,"context":179},116,{"file":207,"line":214,"context":179},118,{"file":207,"line":216,"context":179},120,{"file":218,"line":61,"context":179},"_plugin\\tabs\\admin_area.index.php",{"file":218,"line":61,"context":179},{"file":218,"line":221,"context":179},122,{"file":218,"line":221,"context":179},{"file":224,"line":61,"context":179},"_plugin\\tabs\\login_page.index.php",{"file":224,"line":61,"context":179},{"file":224,"line":221,"context":179},{"file":224,"line":221,"context":179},{"file":229,"line":61,"context":179},"_plugin\\tabs\\lost_password_page.index.php",{"file":229,"line":61,"context":179},{"file":229,"line":221,"context":179},{"file":229,"line":221,"context":179},{"file":234,"line":61,"context":179},"_plugin\\tabs\\registration_page.index.php",{"file":234,"line":61,"context":179},{"file":234,"line":221,"context":179},{"file":234,"line":221,"context":179},{"file":239,"line":61,"context":179},"_plugin\\tabs\\site_area.index.php",{"file":239,"line":61,"context":179},{"file":239,"line":221,"context":179},{"file":239,"line":221,"context":179},[],[245,263,271,283,293,303,318,331,344,357],{"entryPoint":246,"graph":247,"unsanitizedCount":62,"severity":262},"Refresh (_core\\1.0.0L\\classes\\Redirects.class.php:76)",{"nodes":248,"edges":259},[249,254],{"id":250,"type":251,"label":252,"file":181,"line":253},"n0","source","$_SERVER",79,{"id":255,"type":256,"label":257,"file":181,"line":48,"wp_function":258},"n1","sink","wp_redirect() [Open Redirect]","wp_redirect",[260],{"from":250,"to":255,"sanitized":261},false,"medium",{"entryPoint":264,"graph":265,"unsanitizedCount":62,"severity":262},"\u003CRedirects.class> (_core\\1.0.0L\\classes\\Redirects.class.php:0)",{"nodes":266,"edges":269},[267,268],{"id":250,"type":251,"label":252,"file":181,"line":253},{"id":255,"type":256,"label":257,"file":181,"line":48,"wp_function":258},[270],{"from":250,"to":255,"sanitized":261},{"entryPoint":272,"graph":273,"unsanitizedCount":62,"severity":262},"PluginTabs (_core\\1.0.0L\\classes\\UI.class.php:55)",{"nodes":274,"edges":281},[275,278],{"id":250,"type":251,"label":276,"file":183,"line":277},"$_GET",76,{"id":255,"type":256,"label":279,"file":183,"line":184,"wp_function":280},"echo() [XSS]","echo",[282],{"from":250,"to":255,"sanitized":261},{"entryPoint":284,"graph":285,"unsanitizedCount":62,"severity":292},"\u003Cadmin_page> (_core\\1.0.0L\\admin_page.php:0)",{"nodes":286,"edges":290},[287,289],{"id":250,"type":251,"label":288,"file":177,"line":178},"$_COOKIE['redirect_notice']",{"id":255,"type":256,"label":279,"file":177,"line":178,"wp_function":280},[291],{"from":250,"to":255,"sanitized":261},"low",{"entryPoint":294,"graph":295,"unsanitizedCount":302,"severity":292},"\u003CUI.class> (_core\\1.0.0L\\classes\\UI.class.php:0)",{"nodes":296,"edges":300},[297,299],{"id":250,"type":251,"label":298,"file":183,"line":277},"$_GET (x5)",{"id":255,"type":256,"label":279,"file":183,"line":184,"wp_function":280},[301],{"from":250,"to":255,"sanitized":261},5,{"entryPoint":304,"graph":305,"unsanitizedCount":32,"severity":292},"\u003Cadmin_area.index> (_plugin\\tabs\\admin_area.index.php:0)",{"nodes":306,"edges":315},[307,309,310,313],{"id":250,"type":251,"label":308,"file":218,"line":61},"$_POST['dashboard_js_head_code']",{"id":255,"type":256,"label":279,"file":218,"line":61,"wp_function":280},{"id":311,"type":251,"label":312,"file":218,"line":221},"n2","$_POST['dashboard_js_foot_code']",{"id":314,"type":256,"label":279,"file":218,"line":221,"wp_function":280},"n3",[316,317],{"from":250,"to":255,"sanitized":261},{"from":311,"to":314,"sanitized":261},{"entryPoint":319,"graph":320,"unsanitizedCount":32,"severity":292},"\u003Clogin_page.index> (_plugin\\tabs\\login_page.index.php:0)",{"nodes":321,"edges":328},[322,324,325,327],{"id":250,"type":251,"label":323,"file":224,"line":61},"$_POST['login_js_head_code']",{"id":255,"type":256,"label":279,"file":224,"line":61,"wp_function":280},{"id":311,"type":251,"label":326,"file":224,"line":221},"$_POST['login_js_foot_code']",{"id":314,"type":256,"label":279,"file":224,"line":221,"wp_function":280},[329,330],{"from":250,"to":255,"sanitized":261},{"from":311,"to":314,"sanitized":261},{"entryPoint":332,"graph":333,"unsanitizedCount":32,"severity":292},"\u003Clost_password_page.index> (_plugin\\tabs\\lost_password_page.index.php:0)",{"nodes":334,"edges":341},[335,337,338,340],{"id":250,"type":251,"label":336,"file":229,"line":61},"$_POST['recovery_js_head_code']",{"id":255,"type":256,"label":279,"file":229,"line":61,"wp_function":280},{"id":311,"type":251,"label":339,"file":229,"line":221},"$_POST['recovery_js_foot_code']",{"id":314,"type":256,"label":279,"file":229,"line":221,"wp_function":280},[342,343],{"from":250,"to":255,"sanitized":261},{"from":311,"to":314,"sanitized":261},{"entryPoint":345,"graph":346,"unsanitizedCount":32,"severity":292},"\u003Cregistration_page.index> (_plugin\\tabs\\registration_page.index.php:0)",{"nodes":347,"edges":354},[348,350,351,353],{"id":250,"type":251,"label":349,"file":234,"line":61},"$_POST['register_js_head_code']",{"id":255,"type":256,"label":279,"file":234,"line":61,"wp_function":280},{"id":311,"type":251,"label":352,"file":234,"line":221},"$_POST['register_js_foot_code']",{"id":314,"type":256,"label":279,"file":234,"line":221,"wp_function":280},[355,356],{"from":250,"to":255,"sanitized":261},{"from":311,"to":314,"sanitized":261},{"entryPoint":358,"graph":359,"unsanitizedCount":32,"severity":292},"\u003Csite_area.index> (_plugin\\tabs\\site_area.index.php:0)",{"nodes":360,"edges":367},[361,363,364,366],{"id":250,"type":251,"label":362,"file":239,"line":61},"$_POST['site_js_head_code']",{"id":255,"type":256,"label":279,"file":239,"line":61,"wp_function":280},{"id":311,"type":251,"label":365,"file":239,"line":221},"$_POST['site_js_foot_code']",{"id":314,"type":256,"label":279,"file":239,"line":221,"wp_function":280},[368,369],{"from":250,"to":255,"sanitized":261},{"from":311,"to":314,"sanitized":261},{"summary":371,"deductions":372},"The js-injector v1.0.0 plugin presents a mixed security posture.  On the positive side, it exhibits no known vulnerabilities in its history and uses prepared statements for all SQL queries, which is a strong defense against SQL injection.  The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits its direct attack surface and potential for direct unauthenticated exploitation.\n\nHowever, the static analysis reveals significant concerns regarding output escaping. With 40 total outputs and 0% properly escaped, there is a high risk of Cross-Site Scripting (XSS) vulnerabilities. Any data that is outputted by this plugin without proper sanitization or escaping could be manipulated by an attacker to inject malicious scripts into the user's browser.  Furthermore, the taint analysis indicating 10 flows with unsanitized paths, despite no critical or high severity classifications in this specific run, is a warning sign that potentially sensitive data might not be handled securely. The presence of file operations also warrants careful review depending on their nature and how they interact with user-supplied data.\n\nWhile the vulnerability history is clean, this does not guarantee future security, especially given the identified weaknesses in output handling. The plugin's strengths lie in its limited attack surface and secure SQL practices. Its primary weakness is the prevalent lack of output escaping, which could lead to XSS vulnerabilities. A balanced conclusion is that while the plugin avoids common pitfalls like unpatched CVEs and insecure SQL, the unescaped output is a critical flaw that requires immediate attention. The taint analysis further reinforces the need for thorough code review of how data is processed and displayed.",[373,376,379,381],{"reason":374,"points":375},"0% properly escaped output",16,{"reason":377,"points":378},"10 flows with unsanitized paths",10,{"reason":380,"points":302},"No nonce checks",{"reason":382,"points":302},"No capability checks","2026-03-16T22:56:24.760Z",{"wat":385,"direct":398},{"assetPaths":386,"generatorPatterns":391,"scriptPaths":392,"versionParams":393},[387,388,389,390],"\u002Fwp-content\u002Fplugins\u002Fjs-injector\u002F_core\u002F1.0.0L\u002Fjs\u002F77-scripts.js","\u002Fwp-content\u002Fplugins\u002Fjs-injector\u002F_core\u002F1.0.0L\u002Fjs\u002F77-styles.js","\u002Fwp-content\u002Fplugins\u002Fjs-injector\u002Fassets\u002Fcss\u002Fdashboard.css","\u002Fwp-content\u002Fplugins\u002Fjs-injector\u002Fassets\u002Fjs\u002Fdashboard.js",[],[387,388,390],[394,395,396,397],"js-injector\u002F_core\u002F1.0.0L\u002Fjs\u002F77-scripts.js?ver=","js-injector\u002F_core\u002F1.0.0L\u002Fjs\u002F77-styles.js?ver=","js-injector\u002Fassets\u002Fcss\u002Fdashboard.css?ver=","js-injector\u002Fassets\u002Fjs\u002Fdashboard.js?ver=",{"cssClasses":399,"htmlComments":401,"htmlAttributes":408,"restEndpoints":412,"jsGlobals":413,"shortcodeOutput":415},[400],"js-injector-dashboard-form",[402,403,404,405,406,407],"JS Injector - Dashboard","This file is part of JS Injector.","JS Injector is free software: you can redistribute it and\u002For modify","JS Injector is distributed in the hope that it will be useful,","You should have received a copy of the GNU General Public License","\u003C!-- Created by JS Injector by 77 Solutions -->",[409,410,411],"data-js-injector-id","data-js-injector-type","data-js-injector-status",[],[414],"jsInjectorDashboard",[]]