Does SyntaxHighlighter Evolved: SASS Brush have any unpatched vulnerabilities?

No. All known vulnerabilities in SyntaxHighlighter Evolved: SASS Brush have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is SyntaxHighlighter Evolved: SASS Brush compatible with WordPress 6.9.4?

According to WordPress.org data, SyntaxHighlighter Evolved: SASS Brush 1.3.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

How often is SyntaxHighlighter Evolved: SASS Brush updated?

SyntaxHighlighter Evolved: SASS Brush was last updated on Oct 27, 2025. Frequent updates are generally a positive security signal.

What is SyntaxHighlighter Evolved: SASS Brush's security score?

SyntaxHighlighter Evolved: SASS Brush has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

SyntaxHighlighter Evolved: SASS Brush Security & Risk Analysis

wordpress.org/plugins/syntaxhighlighter-evolved-sass-brush

Adds support for the SASS language to the SyntaxHighlighter Evolved plugin.

20 active installs v1.3.0 PHP + WP + Updated Oct 27, 2025

codehighlightsassscsssyntax

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is SyntaxHighlighter Evolved: SASS Brush Safe to Use in 2026?

Generally Safe

Score 100/100

SyntaxHighlighter Evolved: SASS Brush has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago

Risk Assessment

The static analysis of syntaxhighlighter-evolved-sass-brush v1.3.0 reveals a remarkably clean codebase with no identified attack surface, dangerous functions, unescaped output, or file operations. The complete absence of external HTTP requests and SQL queries that are not using prepared statements further bolsters this positive finding. The taint analysis also shows no concerning flows, indicating a low risk of injection vulnerabilities. The plugin's vulnerability history is also clear, with zero recorded CVEs, suggesting a strong track record of security. However, the lack of nonce and capability checks across all entry points, though currently non-existent, represents a potential future concern. If new entry points are introduced without proper authentication and authorization, this could become a significant weakness. Despite this, the current version exhibits excellent security practices, with a focus on secure coding standards.

Vulnerabilities

None known

SyntaxHighlighter Evolved: SASS Brush Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

SyntaxHighlighter Evolved: SASS Brush Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Attack Surface

SyntaxHighlighter Evolved: SASS Brush Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

actioninitsyntaxhighlighter-sass.php:21

filtersyntaxhighlighter_brushessyntaxhighlighter-sass.php:24

filtersyntaxhighlighter_brush_namessyntaxhighlighter-sass.php:25

Maintenance & Trust

SyntaxHighlighter Evolved: SASS Brush Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedOct 27, 2025

PHP min version

Downloads3K

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

SyntaxHighlighter Evolved: SASS Brush Alternatives

HTML Editor Syntax Highlighter

html-editor-syntax-highlighter

Add syntax highlighting to WordPress code editors using CodeMirror.js

50K No CVEs

SyntaxHighlighter Evolved

syntaxhighlighter

Easily post syntax-highlighted code to your site without having to modify the code at all. As seen on WordPress.com.

20K 3 CVEs

Code Block Pro – Beautiful Syntax Highlighting

code-block-pro

100

Code highlighting powered by the VS Code engine. Performance focused. No bloat.

10K No CVEs

Urvanov Syntax Highlighter

urvanov-syntax-highlighter

100

Reincarnation of Crayon Syntax Highlighter. Syntax Highlighter supporting multiple languages, themes, fonts, highlighting from a URL, or post text.

3K 1 CVE

Prismatic

prismatic

Display beautiful syntax-highlighted code snippets with Prism.js or Highlight.js

2K 2 CVEs

Developer Profile

SyntaxHighlighter Evolved: SASS Brush Developer Profile

Bernhard Kau

9 plugins · 8K total installs

trust score

Avg Security Score

97/100

Avg Patch Time

5 days

View full developer profile

Detection Fingerprints

How We Detect SyntaxHighlighter Evolved: SASS Brush

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/syntaxhighlighter-evolved-sass-brush/shBrushSass.js

Script Paths

shBrushSass.js

Version Parameters

syntaxhighlighter-brush-sass?ver=1.2.0

HTML / DOM Fingerprints

FAQ