[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f1J_rqFANVPplcfrZNIBQSO2450MHuZpfbPLlCiYRSEA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":45,"crawl_stats":34,"alternatives":48,"analysis":148,"fingerprints":193},"kattene","Kattene","2.2","webfood","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebfood\u002F","\u003Cp>You can create a blog part which has multiple links to pages about a single product you want to introduce to your readers by putting a simple shortcode in your article.\u003C\u002Fp>\n\u003Cp>In detail, check out \u003Ca href=\"http:\u002F\u002Fwebfood.info\u002Fmake-kattene\u002F\" rel=\"nofollow ugc\">this page\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Arbitrary section 1\u003C\u002Fh3>\n","You can create a blog part which has multiple links to pages about a single product you want to introduce to your readers by putting a simple shortcod &hellip;",1000,20743,0,"2025-01-09T06:46:00.000Z","6.7.5","5.2.2","5.5",[19,20,21],"css","custom","style-css","https:\u002F\u002Fwebfood.info\u002Fmake-kattene\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fkattene.2.2.zip",91,1,"2024-04-09 00:00:00","2026-03-15T15:16:48.613Z",[29],{"id":30,"url_slug":31,"title":32,"description":33,"plugin_slug":4,"theme_slug":34,"affected_versions":35,"patched_in_version":36,"severity":37,"cvss_score":38,"cvss_vector":39,"vuln_type":40,"published_date":26,"updated_date":41,"references":42,"days_to_patch":44},"CVE-2024-32590","kattene-authenticated-contributor-stored-cross-site-scripting","Kattene \u003C= 1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting","The Kattene plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 1.7 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=1.7","1.8","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2024-04-24 13:56:20",[43],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fbeb0eade-405b-429b-b7a5-0f9c09f8374e?source=api-prod",16,{"slug":7,"display_name":7,"profile_url":8,"plugin_count":25,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":44,"trust_score":46,"computed_at":47},88,"2026-04-04T15:29:59.587Z",[49,70,86,107,129],{"slug":50,"name":51,"version":52,"author":53,"author_profile":54,"description":55,"short_description":56,"active_installs":57,"downloaded":58,"rating":59,"num_ratings":25,"last_updated":60,"tested_up_to":61,"requires_at_least":62,"requires_php":63,"tags":64,"homepage":63,"download_link":69,"security_score":59,"vuln_count":13,"unpatched_count":13,"last_vuln_date":34,"fetched_at":27},"dessky-custom-css","Dessky Custom CSS","1.1","dessky","https:\u002F\u002Fprofiles.wordpress.org\u002Fdessky\u002F","\u003Cp>Dessky Custom CSS is the lightweight plugin that allows you to add custom CSS that overrides Plugins and Theme’s default styles. This plugin is built to allow admins to add their own CSS to their WordPress website without editing theme or plugin files. Plugin is specially designed not to drain any resources from your website and to be as simple as possible.\u003C\u002Fp>\n\u003Cp>This plugin was developed by \u003Ca href=\"https:\u002F\u002Fdessky.com\u002F\" rel=\"nofollow ugc\">Dessky Team\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Dessky Team does not provide support for the Dessky Custom CSS on the WordPress.org forums. In order to get support or make a suggestion from a Dessky Team you will have to Join Our Open Community and \u003Ca href=\"https:\u002F\u002Fdiscuss.dessky.org\u002Ft\u002Fdessky-custom-css\" rel=\"nofollow ugc\">Start a Discussion\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdiscuss.dessky.org\u002Ft\u002Fdessky-custom-css\" rel=\"nofollow ugc\">DISCUSS WITH THE DESSKY TEAM\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdiscuss.dessky.org\u002Ft\u002Fdessky-custom-css\" rel=\"nofollow ugc\">JOIN OUR OPEN COMMUNITY\u003C\u002Fa>: The purpose of this open community is to have a collective place where the community can help each other, and we can get some feedback to improve Dessky Custom CSS as well. Joining the community is also a great way to connect with like-minded people and share your experience.\u003C\u002Fp>\n\u003Cp>You can also \u003Ca href=\"https:\u002F\u002Fdessky.me\u002F\" rel=\"nofollow ugc\">GET THE PREMIUM SUPPORT\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdessky.org\u002F\" rel=\"nofollow ugc\">User Documentation\u003C\u002Fa>: Although Dessky Custom CSS is already easy to set up, we’ve put together tutorials, guides, and some knowledge bases to help you set up and get started with it.\u003C\u002Fp>\n\u003Cp>I have further questions, how do I contact you?\u003C\u002Fp>\n\u003Cp>Please fill up the \u003Ca href=\"https:\u002F\u002Fdessky.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">contact form\u003C\u002Fa> and we would be more than happy to assist.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Lightweight and without any impact on site performance\u003C\u002Fli>\n\u003Cli>Simple interface built on WordPress UI\u003C\u002Fli>\n\u003Cli>Useful Code Syntax Highlighter\u003C\u002Fli>\n\u003Cli>No configuration needed\u003C\u002Fli>\n\u003Cli>No complicated database queries\u003C\u002Fli>\n\u003Cli>Allows Administrator access on Multisite\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cp>Dessky Custom CSS is based on the ‘Simple Custom CSS’ plugin developed by \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fjohnregan3\u002F\" rel=\"nofollow ugc\">John Regan\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fdvankooten\u002F\" rel=\"nofollow ugc\">Danny van Kooten\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcodemirror.net\u002F\" rel=\"nofollow ugc\">CodeMirror\u003C\u002Fa> is an open-source project shared under the \u003Ca href=\"https:\u002F\u002Fcodemirror.net\u002FLICENSE\" rel=\"nofollow ugc\">MIT license\u003C\u002Fa>.\u003C\u002Fp>\n","Lightweight plugin for adding Custom CSS to your WordPress site.",10,1671,100,"2025-12-03T13:13:00.000Z","6.9.4","3.0.1","",[65,66,67,21,68],"additional-css","css-editor","custom-css","wp-custom-css","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdessky-custom-css.zip",{"slug":71,"name":72,"version":73,"author":74,"author_profile":75,"description":76,"short_description":77,"active_installs":57,"downloaded":78,"rating":13,"num_ratings":13,"last_updated":79,"tested_up_to":80,"requires_at_least":81,"requires_php":82,"tags":83,"homepage":63,"download_link":84,"security_score":85,"vuln_count":13,"unpatched_count":13,"last_vuln_date":34,"fetched_at":27},"my-custom-style-css-manager","MyCustomStyleCssManager","0.0.9","macha795","https:\u002F\u002Fprofiles.wordpress.org\u002Fmacha795\u002F","\u003Cul>\n\u003Cli>This plug-in can easily control ON \u002F OFF of custom CSS for each HTML part.\u003C\u002Fli>\n\u003Cli>You can easily return CSS to the previous state.\u003C\u002Fli>\n\u003Cli>You can easily manage the custom CSS for each part with a list.\u003C\u002Fli>\n\u003Cli>WordPress customizer CSS is hard to understand what CSS is for when the number of rows becomes long.\u003C\u002Fli>\n\u003Cli>You can manage custom css that you have added manually to style.css on the theme edit screen.\u003C\u002Fli>\n\u003Cli>Custom CSS can be managed separately.\u003C\u002Fli>\n\u003Cli>It can also be removed from style.css by returning to draft.\u003C\u002Fli>\n\u003Cli>Even if style.css is overwritten by updating the theme, it is easy to restore the custom css as it is saved in the database.\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fmacha795.com\u002Fwp-my-plugin-my-custom-style-css-manager\u002F\" rel=\"nofollow ugc\">日本語の説明はこちら\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>About custom CSS\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Custom css can specify the block to be reflected.\u003C\u002Fli>\n\u003Cli>You can also specify the order of arrangement within the reflection target block.\u003C\u002Fli>\n\u003Cli>If CSS conflicts, please adjust the target block and order.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Procedure to be reflected in style.css\u003C\u002Fp>\n\u003Cul>\n\u003Cli>It is not reflected only by new addition, editing.\u003C\u002Fli>\n\u003Cli>To reflect, press the “Reflect custom CSS” button added next to the “Update file” button when current style.css is selected on the theme edit screen.\u003C\u002Fli>\n\u003Cli>The custom css in the open state is reflected.\u003C\u002Fli>\n\u003Cli>Please refresh with the update button if the contents are satisfactory.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Arbitrary section 1\u003C\u002Fh3>\n","Manage custom CSS for adding to style.css without any hassles.name:MyCustomStyleCssManager",1533,"2020-12-12T03:44:00.000Z","5.6.17","4.9","7.0",[19,20,21],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmy-custom-style-css-manager.0.0.9.zip",85,{"slug":87,"name":88,"version":89,"author":90,"author_profile":91,"description":92,"short_description":93,"active_installs":94,"downloaded":95,"rating":46,"num_ratings":96,"last_updated":97,"tested_up_to":61,"requires_at_least":62,"requires_php":98,"tags":99,"homepage":104,"download_link":105,"security_score":59,"vuln_count":25,"unpatched_count":13,"last_vuln_date":106,"fetched_at":27},"custom-css-js","Simple Custom CSS and JS","3.52","SilkyPress","https:\u002F\u002Fprofiles.wordpress.org\u002Fdiana_burduja\u002F","\u003Cp>Customize your WordPress site’s appearance by easily adding custom CSS and JS code without even having to modify your theme or plugin files. This is perfect for adding custom CSS tweaks to your site.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Text editor\u003C\u002Fstrong> with syntax highlighting \u003C\u002Fli>\n\u003Cli>Print the code \u003Cstrong>inline\u003C\u002Fstrong> or included into an \u003Cstrong>external file\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Print the code in the \u003Cstrong>header\u003C\u002Fstrong> or the \u003Cstrong>footer\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Add CSS or JS to the \u003Cstrong>frontend\u003C\u002Fstrong> or the \u003Cstrong>admin side\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Add as many codes as you want\u003C\u002Fli>\n\u003Cli>Keep your changes also when you change the theme\u003C\u002Fli>\n\u003C\u002Ful>\n","Easily add Custom CSS or JS to your website with an awesome editor.",700000,10074700,101,"2026-03-06T19:56:00.000Z","5.2.4",[100,67,101,102,103],"add-style","custom-js","customize-theme","site-css","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcustom-css-js\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-css-js.3.52.zip","2017-07-24 00:00:00",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":115,"downloaded":116,"rating":59,"num_ratings":117,"last_updated":118,"tested_up_to":61,"requires_at_least":119,"requires_php":63,"tags":120,"homepage":125,"download_link":126,"security_score":127,"vuln_count":25,"unpatched_count":13,"last_vuln_date":128,"fetched_at":27},"wp-headers-and-footers","Insert Headers And Footers","3.1.3","Adnan","https:\u002F\u002Fprofiles.wordpress.org\u002Fhiddenpearls\u002F","\u003Cp>WP Headers and Footers plugin helps you to insert code to your WordPress website headers and footers section like Google Analytics tracking code, Facebook Pixels code, Google Optimize code for A\u002FB testing, Custom CSS code, and more. You don’t need to edit the theme files to insert the code.\u003C\u002Fp>\n\u003Cp>The simple interface of this plugin allows you to add code and different scripts from one place to your WordPress website (\u003Cstrong>Headers, Footers, and Body section\u003C\u002Fstrong>).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Insert code to your WordPress headers & Footers\u003C\u002Fli>\n\u003Cli>Insert Google Analytics Code to any WordPress theme\u003C\u002Fli>\n\u003Cli>Insert Facebook Pixels Code\u003C\u002Fli>\n\u003Cli>Add Google Optimize Code for A\u002FB testing ( Ab Testing )\u003C\u002Fli>\n\u003Cli>Add Google search console authentication code to any theme for verification\u003C\u002Fli>\n\u003Cli>Add Custom CSS, any script, and HTML to your website\u003C\u002Fli>\n\u003Cli>Google Tag Manager code\u002Fscript insertion\u003C\u002Fli>\n\u003Cli>You can also add microsoft clarity tracking code to your website\u003C\u002Fli>\n\u003Cli>You can also insert code to your website body section\u003C\u002Fli>\n\u003Cli>Can add Bing webmaster tool code for website verification\u003C\u002Fli>\n\u003Cli>Add Google AdSense code\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>If you find our plugin useful, please leave a good rating\u002Freview and check our other plugins.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fanalytify.io\u002Fref\u002F73\u002F?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Analytify – Google Analytics Plugin\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Floginpress.pro\u002F?utm_source=wp-headers-and-footers\" rel=\"nofollow ugc\">LoginPress\u003C\u002Fa> – For Custom login page and login page security\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsimplesocialbuttons.com?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Simple Social Buttons\u003C\u002Fa> – Plugin for Social share buttons and social icons\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frelated-posts-thumbnails\u002F\" rel=\"ugc\">Related Posts Thumbnails Plugin\u003C\u002Fa> – For related posts\u002Fproducts\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpbrigade.com\u002Frecommend\u002Fmaintenance-mode?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Under Construction, Coming Soon & Maintenance Mode\u003C\u002Fa> – Plugin for Under construction & Coming soon page\u003C\u002Fli>\n\u003C\u002Ful>\n","Include inline javascript, stylesheets, CSS code or anything you want in Header and Footer areas of your WordPress with ease.",300000,2339048,127,"2026-01-05T15:03:00.000Z","5.0",[67,121,122,123,124],"facebook-pixel","footer","google-analytics","header","https:\u002F\u002Fwww.WPBrigade.com\u002Fwordpress\u002Fplugins\u002Fwp-headers-and-footers\u002F?utm_source=?utm_source=wp-headers-and-footers&utm_medium=author-uri-link","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-headers-and-footers.3.1.3.zip",98,"2025-04-18 00:00:00",{"slug":130,"name":131,"version":132,"author":133,"author_profile":134,"description":135,"short_description":136,"active_installs":137,"downloaded":138,"rating":139,"num_ratings":140,"last_updated":141,"tested_up_to":15,"requires_at_least":62,"requires_php":63,"tags":142,"homepage":145,"download_link":146,"security_score":147,"vuln_count":13,"unpatched_count":13,"last_vuln_date":34,"fetched_at":27},"simple-custom-css","Simple Custom CSS Plugin","4.0.7","John Regan","https:\u002F\u002Fprofiles.wordpress.org\u002Fjohnregan3\u002F","\u003Cp>Add Custom CSS to your WordPress site without any hassles.\u003C\u002Fp>\n\u003Cp>An easy-to-use WordPress Plugin to add custom CSS styles that override Plugin and Theme default styles. This plugin is designed to meet the needs of administrators who would like to add their own CSS to their WordPress website. Styles created with this plugin will render even if the theme is changed.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New in Version 4.0.7\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Tested for compatibility with WP 6.7.2\u003C\u002Fli>\n\u003Cli>Tested for compatibility with PHP 8.4\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>AMP Support\u003C\u002Fli>\n\u003Cli>Customizer Control (live preview)\u003C\u002Fli>\n\u003Cli>Useful Code Syntax Highlighter\u003C\u002Fli>\n\u003Cli>Code linting (error checking)\u003C\u002Fli>\n\u003Cli>No configuration needed\u003C\u002Fli>\n\u003Cli>Simple interface built on native WordPress UI\u003C\u002Fli>\n\u003Cli>Virtually no impact on site performance\u003C\u002Fli>\n\u003Cli>No complicated database queries\u003C\u002Fli>\n\u003Cli>Thorough documentation\u003C\u002Fli>\n\u003Cli>Allows Administrator access on WP Networks (Multisite)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>Navigate to Appearance > Custom CSS in the Admin Menu\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Enter in valid CSS styles\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Click “Update Custom CSS”\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>View your changes in the Front End of your website\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Help\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fjohnregan3\u002Fsimple-custom-css\u002Fwiki\" title=\"Simple Custom CSS Wiki\" rel=\"nofollow ugc\">Simple Custom CSS Wiki\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fsimple-custom-css\" title=\"Support Forum\" rel=\"ugc\">Support Forum\u003C\u002Fa>\u003C\u002Fp>\n","Add Custom CSS to your WordPress site without any hassles.",100000,3068872,94,159,"2025-03-11T16:57:00.000Z",[143,19,20,67,144],"code","styles","http:\u002F\u002Fjohnregan3.github.io\u002Fsimple-custom-css","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-custom-css.zip",92,{"attackSurface":149,"codeSignals":168,"taintFlows":178,"riskAssessment":179,"analyzedAt":192},{"hooks":150,"ajaxHandlers":161,"restRoutes":162,"shortcodes":163,"cronEvents":167,"entryPointCount":25,"unprotectedCount":13},[151,156],{"type":152,"name":153,"callback":154,"file":155,"line":117},"action","wp_footer","kattene_script","plugin.php",{"type":157,"name":158,"callback":159,"priority":57,"file":155,"line":160},"filter","style_loader_tag","add_noscript_to_kattene",162,[],[],[164],{"tag":4,"callback":165,"file":155,"line":166},"kattene_func",131,[],{"dangerousFunctions":169,"sqlUsage":170,"outputEscaping":172,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":177},[],{"prepared":13,"raw":13,"locations":171},[],{"escaped":25,"rawEcho":25,"locations":173},[174],{"file":155,"line":175,"context":176},134,"raw output",[],[],{"summary":180,"deductions":181},"The \"kattene\" v2.2 plugin exhibits a mixed security posture. On the positive side, the static analysis reveals a very small attack surface, consisting solely of one shortcode. Importantly, there are no identified AJAX handlers or REST API routes, and crucially, no unprotected entry points were found in this static scan. The code also demonstrates good practices regarding SQL queries, with 100% utilizing prepared statements, and no dangerous functions, file operations, or external HTTP requests were detected.\n\nHowever, several concerns warrant attention. The plugin lacks nonce checks and capability checks entirely, which can be a significant oversight for any form of user input processing, even if the static analysis didn't uncover direct vulnerabilities stemming from this. Furthermore, 50% of the output in the plugin is not properly escaped, posing a potential Cross-Site Scripting (XSS) risk, especially given that the plugin has a history of medium-severity XSS vulnerabilities. The presence of a past medium-severity XSS vulnerability, though currently patched, highlights a recurring pattern that necessitates careful monitoring.\n\nIn conclusion, while \"kattene\" v2.2 has a limited attack surface and employs secure practices for database interactions, the absence of robust authentication\u002Fauthorization checks (nonces, capabilities) and the significant proportion of unescaped output present notable risks. The past vulnerability history, specifically for XSS, should be a strong indicator for users to ensure they are always running the latest version of the plugin and to exercise caution with user-generated content.",[182,185,188,190],{"reason":183,"points":184},"Unescaped output (50%)",4,{"reason":186,"points":187},"Missing nonce checks",5,{"reason":189,"points":187},"Missing capability checks",{"reason":191,"points":57},"Previous medium severity XSS vulnerability","2026-03-16T18:44:09.841Z",{"wat":194,"direct":201},{"assetPaths":195,"generatorPatterns":197,"scriptPaths":198,"versionParams":199},[196],"\u002Fwp-content\u002Fplugins\u002Fkattene\u002Fstyle.css",[],[],[200],"kattene\u002Fstyle.css?ver=",{"cssClasses":202,"htmlComments":210,"htmlAttributes":211,"restEndpoints":218,"jsGlobals":219,"shortcodeOutput":222},[4,203,204,205,206,207,208,209],"kattene__imgpart","kattene__infopart","kattene__title","kattene__description","kattene__btns","kattene__shadow","kattene__btn",[],[208,212,213,214,215,216,217],"__one","__two","__three","__four","__five","__",[],[220,221],"loadDeferredStyles","raf",[223,224,225,226,227,228],"\u003Cdiv class=\"kattene\">","\u003Cdiv class=\"kattene__imgpart\">","\u003Cdiv class=\"kattene__infopart\">","\u003Cdiv class=\"kattene__title\">","\u003Cdiv class=\"kattene__description\">","\u003Cdiv class=\"kattene__btns"]