[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fr-eax90cRPuNM3ksbYWGyzE5j-cfpVzMXGwssq3yfTU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":39,"analysis":120,"fingerprints":162},"modular-custom-css","Modular Custom CSS","2.1","Nick Halsey","https:\u002F\u002Fprofiles.wordpress.org\u002Fcelloexpressions\u002F","\u003Cp>WordPress core provides custom CSS functionality in the customizer that’s specific to the current theme; you can switch themes freely with each theme’s additional CSS remaining in place. Sometimes, you need some CSS to apply regardless of the current theme persistently. This plugin adds a plugin CSS option for CSS that’s global and persists across theme changes.\u003C\u002Fp>\n\u003Cp>With the Customizer, your CSS is instantly live-previewed, offering the ability to see exactly how your site will look before you publish your changes. The plugin CSS option is stored as an \u003Ccode>option\u003C\u002Fcode>. Prior to WordPress 4.7 (which introduced additional CSS in core), theme-specific CSS was stored as a \u003Ccode>theme_mod\u003C\u002Fcode>, in 4.7 and newer this is migrated to the core CSS functionality (which is theme-specific).\u003C\u002Fp>\n","WordPress core provides custom CSS functionality in the customizer that's specific to the current theme; you can switch themes freely with each t …",500,18203,100,6,"2024-07-13T01:42:00.000Z","6.6.5","4.0","",[20,21,22,23],"css","custom-css","custom-design","customizer","http:\u002F\u002Fcelloexpressions.com\u002Fplugins\u002Fmodular-custom-css","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmodular-custom-css.2.1.zip",92,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"celloexpressions",27,24000,91,8,88,"2026-04-04T03:37:22.834Z",[40,51,70,88,103],{"slug":41,"name":42,"version":43,"author":7,"author_profile":8,"description":44,"short_description":10,"active_installs":13,"downloaded":45,"rating":13,"num_ratings":36,"last_updated":46,"tested_up_to":16,"requires_at_least":47,"requires_php":18,"tags":48,"homepage":49,"download_link":50,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"multisite-custom-css","Multisite Custom CSS","1.0","\u003Cp>WordPress core provides custom CSS functionality in the customizer that’s specific to the current theme; you can switch themes freely with each theme’s additional CSS remaining in place. This is particularly useful on multisite networks, where it’s often impractical to use child themes to save customizations for each site. Unfortunately, custom CSS is not visible to site admins on multisite networks by default because they are not trusted with unfiltered CSS.\u003C\u002Fp>\n\u003Cp>This plugin gives site admins access to the core custom CSS feature by mapping the \u003Ccode>edit_css\u003C\u002Fcode> capability to \u003Ccode>edit_theme_options\u003C\u002Fcode>, thereby trusting site admins with unfiltered CSS.\u003C\u002Fp>\n",13473,"2024-07-13T01:45:00.000Z","4.7",[20,21,22,23],"http:\u002F\u002Fcelloexpressions.com\u002Fplugins\u002Fmultisite-custom-css","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultisite-custom-css.zip",{"slug":52,"name":53,"version":54,"author":55,"author_profile":56,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":61,"num_ratings":62,"last_updated":63,"tested_up_to":64,"requires_at_least":17,"requires_php":18,"tags":65,"homepage":68,"download_link":69,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"simple-css","Simple CSS","1.1.1","Tom","https:\u002F\u002Fprofiles.wordpress.org\u002Fedge22\u002F","\u003Cp>Need to add some custom CSS to your site? Simple CSS gives you an awesome admin editor and a live preview editor in the Customizer so you can easily add your CSS.\u003C\u002Fp>\n\u003Cp>Want your CSS to only apply on a specific page or post? Simple CSS adds a metabox which allows you to do just that.\u003C\u002Fp>\n\u003Cp>Check out GeneratePress, our awesome WordPress theme! (https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fgeneratepress)\u003C\u002Fp>\n\u003Ch4>Features include:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Full featured admin CSS editor\u003C\u002Fli>\n\u003Cli>Dark and light editor themes\u003C\u002Fli>\n\u003Cli>CSS editor in the Customizer so you can live preview your changes\u003C\u002Fli>\n\u003Cli>Metabox for page\u002Fpost specific CSS\u003C\u002Fli>\n\u003C\u002Ful>\n","Add CSS to your website through an admin editor, the Customizer or a metabox for page\u002Fpost specific CSS.",80000,551667,98,60,"2025-09-15T15:11:00.000Z","6.8.5",[20,66,21,52,67],"css-customizer","simple-custom-css","https:\u002F\u002Fgeneratepress.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-css.1.1.1.zip",{"slug":71,"name":72,"version":73,"author":74,"author_profile":75,"description":76,"short_description":77,"active_installs":78,"downloaded":79,"rating":13,"num_ratings":14,"last_updated":80,"tested_up_to":81,"requires_at_least":17,"requires_php":18,"tags":82,"homepage":85,"download_link":86,"security_score":87,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"theme-junkie-custom-css","TJ Custom CSS","0.1.6","Theme Junkie","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemejunkie\u002F","\u003Cp>This plugin will enable a \u003Ca href=\"https:\u002F\u002Fwww.theme-junkie.com\u002Fplugins\u002Ftheme-junkie-custom-css\u002F\" rel=\"nofollow ugc\">custom css manager\u003C\u002Fa> on administration page to add Custom CSS code to your WordPress website. It will automatically override any theme or plugin default styles. It also very useful if you want to add customization to your website but do not want to edit your theme or plugin css files.\u003C\u002Fp>\n\u003Cp>It comes with two ways to add the custom css code:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>1. Setting\u003C\u002Fstrong>\u003Cbr \u002F>\nYou can go to Appearance → Custom CSS, then you will see a big box\u002Ftextarea. Put your css code there.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>2. Customizer – Live Preview\u003C\u002Fstrong>\u003Cbr \u002F>\nIf you want to see the live preview while you adding the custom css code, then you can go to Appearance → Customize, after that open the Custom CSS section tab.\u003C\u002Fp>\n\u003Ch4>Features Include:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>No configuration needed\u003C\u002Fli>\n\u003Cli>Live preview\u003C\u002Fli>\n\u003Cli>Easy-to-use\u003C\u002Fli>\n\u003Cli>Child theme alternative to add customization\u003C\u002Fli>\n\u003Cli>Uninstall procedure\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Plugin Info\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Developed by \u003Ca href=\"https:\u002F\u002Fwww.theme-junkie.com\u002F?utm_source=wporg&utm_medium=text_link&utm_campaign=Site%20Promotion\" rel=\"nofollow ugc\">Theme Junkie\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Check out the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fthemejunkie\u002Ftheme-junkie-custom-css\" rel=\"nofollow ugc\">Github\u003C\u002Fa> repo to contribute.\u003C\u002Fli>\n\u003C\u002Ful>\n","Easily to add any Custom CSS code to your WordPress website.",8000,221889,"2022-10-26T15:45:00.000Z","6.1.10",[20,21,23,83,84],"style","theme","https:\u002F\u002Fwww.theme-junkie.com\u002Fplugins\u002Ftheme-junkie-custom-css\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftheme-junkie-custom-css.0.1.6.zip",85,{"slug":89,"name":90,"version":91,"author":92,"author_profile":93,"description":94,"short_description":95,"active_installs":96,"downloaded":97,"rating":13,"num_ratings":98,"last_updated":99,"tested_up_to":100,"requires_at_least":18,"requires_php":18,"tags":101,"homepage":18,"download_link":102,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"customizer-custom-css","Customizer Custom CSS","1.2.3","Bijay Yadav","https:\u002F\u002Fprofiles.wordpress.org\u002Fbijayyadav\u002F","\u003Cp>Easily overwrite your theme’s CSS from customizer and preview it before saving. Customizer Custom CSS does not require any configurationn and easy to use. Now there is no need of creating child theme just to change the CSS.\u003C\u002Fp>\n","Add Custom CSS from customizer to your WordPress website.",400,15841,3,"2025-03-11T15:32:00.000Z","6.7.5",[20,21,23,83],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustomizer-custom-css.zip",{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":96,"downloaded":111,"rating":13,"num_ratings":98,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":18,"tags":115,"homepage":118,"download_link":119,"security_score":87,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"live-css-js-code-editor","Live Custom CSS JS Code Editor","1.0.5","Ozan Canakli","https:\u002F\u002Fprofiles.wordpress.org\u002Fozancanakli\u002F","\u003Cp>This plugin allows you to add custom site-wide \u003Cstrong>CSS, JavaScript, Header, Footer Code\u003C\u002Fstrong> to your WordPress site. The changes appear instantly on your website with help of \u003Cstrong>WordPress Live Customizer.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FgP78wXPayvU?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>\u003Cstrong>In your WordPress Dashboard, navigate to Customize > Live Code Editor to get started.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>When you Change or Update your WordPress Theme, Your Custom Code isn’t effected from these changes.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>NEW FEATURES as Version 1.0.5:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Add Custom CSS to WordPress Admin dashboard.\u003Cbr \u002F>\n* Add Custom JavaScript to WordPress Admin dashboard.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>MAIN FEATURES:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Custom CSS code\u003C\u002Fli>\n\u003Cli>Custom Javascript code\u003C\u002Fli>\n\u003Cli>Custom Header Code (Inside  tags)(Google Analytics and Facebook Pixel compatible.)\u003C\u002Fli>\n\u003Cli>Custom Footer Code (Before closing  tag aka wp_footer function)\u003C\u002Fli>\n\u003Cli>See Your Changes Immediately on your WordPress Site\u003C\u002Fli>\n\u003Cli>Built in Syntax Code Highlighter\u003C\u002Fli>\n\u003Cli>16 Color Schemes (Monokai, Chrome, GitHub, Twilight, Dreamweaver, XCode, Eclipse etc. 8 Light, 8 Dark)\u003C\u002Fli>\n\u003Cli>Live Syntax Checking (CSS, JavaScript, HTML)\u003C\u002Fli>\n\u003Cli>Syntax Highlighting\u003C\u002Fli>\n\u003Cli>Line wrapping\u003C\u002Fli>\n\u003Cli>Code folding\u003C\u002Fli>\n\u003Cli>Multiple cursors and selections\u003C\u002Fli>\n\u003Cli>Handles huge code blocks (four million lines seems to be the limit!)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Special thanks to \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fjustinbusa\u002F\" rel=\"nofollow ugc\">Justin Busa\u003C\u002Fa> of \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbeaver-builder-lite-version\u002F\" rel=\"ugc\">Beaver Builder\u003C\u002Fa> for the inspiration.\u003C\u002Fp>\n","Live Custom CSS JS Code Editor allows you to easily add custom CSS, JavaScript, Header, Footer Code to your site, straight from your WordPress Customi …",12960,"2020-03-13T20:32:00.000Z","5.3.21","3.4",[20,21,116,23,117],"custom-js","javascript","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Flive-css-js-code-editor\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flive-css-js-code-editor.zip",{"attackSurface":121,"codeSignals":142,"taintFlows":155,"riskAssessment":156,"analyzedAt":161},{"hooks":122,"ajaxHandlers":138,"restRoutes":139,"shortcodes":140,"cronEvents":141,"entryPointCount":27,"unprotectedCount":27},[123,130,134],{"type":124,"name":125,"callback":126,"priority":127,"file":128,"line":129},"action","customize_register","cxnh_custom_css_customize_register",11,"modular-custom-css.php",104,{"type":124,"name":131,"callback":132,"file":128,"line":133},"customize_preview_init","cxnh_custom_css_preview_js",114,{"type":124,"name":135,"callback":136,"file":128,"line":137},"wp_head","cxnh_custom_css_output",131,[],[],[],[],{"dangerousFunctions":143,"sqlUsage":144,"outputEscaping":146,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":154},[],{"prepared":27,"raw":27,"locations":145},[],{"escaped":27,"rawEcho":147,"locations":148},2,[149,152],{"file":128,"line":150,"context":151},124,"raw output",{"file":128,"line":153,"context":151},128,[],[],{"summary":157,"deductions":158},"The \"modular-custom-css\" plugin version 2.1 demonstrates a strong security posture in several key areas. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events significantly limits its attack surface. Furthermore, the plugin's code signals show no dangerous functions, no raw SQL queries (all using prepared statements), and no file operations or external HTTP requests. This indicates a conscious effort to avoid common plugin vulnerabilities. The vulnerability history being completely clear of any recorded CVEs further reinforces this positive assessment. However, a significant concern arises from the output escaping. With two total outputs analyzed and 0% properly escaped, there is a high risk of Cross-Site Scripting (XSS) vulnerabilities. This lack of output sanitization is a critical weakness that could allow attackers to inject malicious scripts into the website, impacting users who interact with the affected output. While the plugin is strong in preventing certain types of attacks, the unescaped output represents a notable vulnerability that needs immediate attention.",[159],{"reason":160,"points":14},"Unescaped output detected","2026-03-16T19:39:30.025Z",{"wat":163,"direct":169},{"assetPaths":164,"generatorPatterns":166,"scriptPaths":167,"versionParams":168},[165],"\u002Fwp-content\u002Fplugins\u002Fmodular-custom-css\u002Fmodular-custom-css-preview.js",[],[165],[],{"cssClasses":170,"htmlComments":171,"htmlAttributes":172,"restEndpoints":173,"jsGlobals":174,"shortcodeOutput":175},[],[],[],[],[],[]]