[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fZMv72RD6zk0r-YskbtdSVF5mcKIJKbjImynO3EsEGHw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":22,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":37,"analysis":57,"fingerprints":98},"neve-hooks","Neve Hooks","1.0.1","Themeisle","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemeisle\u002F","\u003Cp>Neve is built using WordPress Hooks which allows you to easily “hook” your own custom content in the theme’s designated locations.\u003C\u002Fp>\n\u003Cp>After installing and activating the theme, just navigate to Customizer, where you will have access to the Hooks panel.\u003C\u002Fp>\n\u003Cp>There you will be able to add your own content: HTML or shortcodes.\u003C\u002Fp>\n","Easily add your own content in Neve using the Hooks panel in customizer.",400,8981,100,2,"2020-08-14T14:45:00.000Z","5.5.18","4.0","5.6",[20,4,21],"customizer-hooks","neve-theme","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fneve-hooks.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"themeisle",37,2245820,96,420,76,"2026-04-03T17:38:25.382Z",[38],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":22,"tags":53,"homepage":55,"download_link":56,"security_score":13,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"astra-hooks","Astra Hooks","1.0.2","Brainstorm Force","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrainstormforce\u002F","\u003Cp>Astra uses the WordPress Hooks API to insert actions throughout the theme. This plugin allows you to hook your custom content, shortcodes, or JavaScript code into various hook locations.\u003C\u002Fp>\n\u003Cp>Once installed, you will see a new tab in the Customizer. See screenshots for more information.\u003C\u002Fp>\n\u003Cp>To see all of the available hooks in Astra, visit this page.\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fdevelopers.wpastra.com\u002Ftheme-visual-hooks\u002F\" rel=\"nofollow ugc\">http:\u002F\u002Fdevelopers.wpastra.com\u002Ftheme-visual-hooks\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Need to add dynamic content with various conditions? Please consider the \u003Ca href=\"https:\u002F\u002Fwpastra.com\u002F?utm_source=wp-org&utm_medium=readme&utm_campaign=astra-hooks\" rel=\"nofollow ugc\">Astra Pro Addon\u003C\u002Fa>. Custom Layouts module in Astra Pro Addon offers functionality so you can add dynamic content (PHP Code) easily.\u003C\u002Fp>\n","Add your content to Hooks in the Astra theme from the customizer.",20000,160661,90,6,"2025-12-01T09:45:00.000Z","6.9.4","4.4",[39,54,20],"astra-theme","https:\u002F\u002Fwpastra.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fastra-hooks.1.0.2.zip",{"attackSurface":58,"codeSignals":78,"taintFlows":90,"riskAssessment":91,"analyzedAt":97},{"hooks":59,"ajaxHandlers":74,"restRoutes":75,"shortcodes":76,"cronEvents":77,"entryPointCount":25,"unprotectedCount":25},[60,65,70],{"type":61,"name":62,"callback":62,"file":63,"line":64},"action","customize_register","includes\\neve-hooks-customizer.php",38,{"type":61,"name":66,"callback":67,"file":68,"line":69},"after_setup_theme","neve_hooks_init","neve-hooks.php",32,{"type":61,"name":71,"callback":72,"file":68,"line":73},"init","neve_hooks_load_textdomain",43,[],[],[],[],{"dangerousFunctions":79,"sqlUsage":80,"outputEscaping":82,"fileOperations":25,"externalRequests":25,"nonceChecks":25,"capabilityChecks":25,"bundledLibraries":89},[],{"prepared":25,"raw":25,"locations":81},[],{"escaped":25,"rawEcho":83,"locations":84},1,[85],{"file":86,"line":87,"context":88},"includes\\neve-hooks-markup.php",51,"raw output",[],[],{"summary":92,"deductions":93},"Based on the static analysis, the neve-hooks v1.0.1 plugin exhibits a very strong initial security posture. The absence of AJAX handlers, REST API routes, shortcodes, and cron events significantly limits the potential attack surface. Furthermore, the complete absence of dangerous functions, file operations, and external HTTP requests, along with the exclusive use of prepared statements for SQL queries, indicates good development practices in these areas.\n\nA significant concern arises from the output escaping analysis. With one total output and 0% properly escaped, any data rendered by this plugin is highly susceptible to Cross-Site Scripting (XSS) vulnerabilities. This is a critical oversight as it can allow attackers to inject malicious scripts into the user interface, potentially leading to session hijacking, phishing, or defacement.\n\nThe vulnerability history is clean, with no recorded CVEs. This is a positive indicator, suggesting that the plugin has not been associated with known security flaws in the past. However, the lack of historical vulnerabilities doesn't negate the critical XSS risk identified in the static analysis. The plugin's strengths lie in its minimal attack surface and secure SQL handling, but the severe lack of output escaping presents a clear and present danger.",[94],{"reason":95,"points":96},"All outputs are unescaped",8,"2026-03-16T19:42:06.409Z",{"wat":99,"direct":108},{"assetPaths":100,"generatorPatterns":103,"scriptPaths":104,"versionParams":105},[101,102],"\u002Fwp-content\u002Fplugins\u002Fneve-hooks\u002Fassets\u002Fcss\u002Ffrontend.css","\u002Fwp-content\u002Fplugins\u002Fneve-hooks\u002Fassets\u002Fjs\u002Ffrontend.js",[],[102],[106,107],"neve-hooks\u002Fassets\u002Fcss\u002Ffrontend.css?ver=","neve-hooks\u002Fassets\u002Fjs\u002Ffrontend.js?ver=",{"cssClasses":109,"htmlComments":110,"htmlAttributes":111,"restEndpoints":112,"jsGlobals":113,"shortcodeOutput":114},[],[],[],[],[],[]]