[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fu_JkwZMcqCP-rMjfYcSbxWcc0FgBk539TW5S9ica5iI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":39,"analysis":142,"fingerprints":185},"technoscore-hotjar-tracking","Technoscore Hotjar Tracking","1.0.1","Technoscore","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaravan\u002F","\u003Cp>Technoscore Hotjar Tracking is  best plugin for WordPress to add Hotjar code to header part of Selected\u002FAll webpages.\u003C\u002Fp>\n\u003Ch4>More details are as follows:-\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>It adds Hotjar trackng code to particular pages or all pages.\u003C\u002Fli>\n\u003Cli>Get your Hotjar code from your Hotjar account. Paste hotjar code in ‘Hotjar Script’ field under menu ‘Hotjar Tracking’ and click the ‘Save Changes’ button. Now, open up a page of your website, to trigger a page view in Hotjar.\u003C\u002Fli>\n\u003C\u002Ful>\n","Technoscore Hotjar Tracking is  best plugin for WordPress to add Hotjar code to header part of Selected\u002FAll webpages.",20,2077,100,1,"2017-05-24T13:28:00.000Z","4.7.32","4.3.6","",[20,21,22,23,24],"analytics","header","headers","hotjar","script","http:\u002F\u002Fnddw.com\u002Fdemo3\u002Fsws-res-slider\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftechnoscore-hotjar-tracking.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":27,"computed_at":38},"saravan",8,60,87,30,"2026-04-04T05:54:27.537Z",[40,59,78,99,123],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":13,"downloaded":48,"rating":28,"num_ratings":28,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":57,"download_link":58,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"in-page-script","In Page Script","0.1","Phuc Pham","https:\u002F\u002Fprofiles.wordpress.org\u002Fsvincoll4\u002F","\u003Cp>This plugin helps to add scripts into the header (before close tag \u003C\u002FHEAD>) or the footer (before close tag \u003C\u002FBODY>).\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Add header\u002Ffooter scripts for all pages\u003C\u002Fli>\n\u003Cli>Add header\u002Ffooter scripts for individual page\u003C\u002Fli>\n\u003Cli>Add header\u002Ffooter scripts for Order Received page (Woocommerce)\u003C\u002Fli>\n\u003Cli>Allows filter to support custom post types\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Although this plugin has been created to add these scripts only, there is no limit to add other things on the page such as META tags, STYLESHEET\u002FCSS tags, HTML tags…\u003C\u002Fp>\n","This plugin helps to add scripts into the header (before close tag \u003C\u002FHEAD>) or the footer (before close tag \u003C\u002FBODY>).",3483,"2015-09-07T07:21:00.000Z","4.3.34","3.0.1",[53,54,55,56],"adwords-script","footer-script","google-analytics-script","header-script","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fin-page-script\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fin-page-script.0.1.zip",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":28,"num_ratings":28,"last_updated":18,"tested_up_to":69,"requires_at_least":70,"requires_php":18,"tags":71,"homepage":75,"download_link":76,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":77},"simple-header-footer-scripts","Simple Header Footer Scripts","1.0.0","Bharat Mandava","https:\u002F\u002Fprofiles.wordpress.org\u002Fmandava\u002F","\u003Cp>Simple Header Footer Scripts plugin lets you insert code in head and footer of any WordPress theme without editing theme files. Easily add custom CSS, JavaScript, Google Analytics, Facebook Pixel, etc. to your WordPress site.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Built to be as simple as possible. Easy to use.\u003C\u002Fli>\n\u003Cli>Insert code or script, including HTML and Javascript\u003C\u002Fli>\n\u003Cli>Insert Google Analytics code in any WordPress theme.\u003C\u002Fli>\n\u003Cli>Add custom CSS and JavaScript in the header or footer.\u003C\u002Fli>\n\u003Cli>Add Facebook Pixel code to wp_head or wp_footer.\u003C\u002Fli>\n\u003Cli>Easily Save, Reset, Import and Export Settings\u003C\u002Fli>\n\u003Cli>Syntax highlight available for the code editor.\u003C\u002Fli>\n\u003Cli>Option to disable insertion of scripts in the frontend.\u003C\u002Fli>\n\u003Cli>Set the execution priority of each hook.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No ads. No paid upgrades.\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n","Very simple Header Footer Scripts plugin with no ads or paid upgrades.",10,1054,"4.9.29","4.8",[72,21,73,74,22],"head","header-code","header-scripts","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-header-footer-scripts\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-header-footer-scripts.zip","2026-03-15T10:48:56.248Z",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":28,"downloaded":86,"rating":28,"num_ratings":28,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":90,"tags":91,"homepage":97,"download_link":98,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"simple-seo-metadata","Simple SEO Meta","2.0","eliran","https:\u002F\u002Fprofiles.wordpress.org\u002Felirant3\u002F","\u003Cp>Add meta box to posts and custom posts containing 3 fields\u003C\u002Fp>\n\u003Col>\n\u003Cli>SEO title\u003C\u002Fli>\n\u003Cli>Meta keywords\u003C\u002Fli>\n\u003Cli>Meta description\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>If SEO title not empty it will override the default page title.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>easy to use\u003C\u002Fli>\n\u003Cli>easy to install\u003C\u002Fli>\n\u003Cli>works with all post types\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Multilingual & RTL supported.\u003C\u002Fh4>\n\u003Cp>We’ve integrated RTL and multi language support, as well as RTL typography support.\u003C\u002Fp>\n\u003Ch4>Liked Simple SEO Meta?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Rate us on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fsimple-seo-metadata\u002Freviews\u002F#new-post\" rel=\"ugc\">WordPress\u003C\u002Fa> 🙂\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Be a contributor\u003C\u002Fh4>\n\u003Cp>If you want to contribute, go to our \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Felirant3\u002Fsimple-seo-meta\" rel=\"nofollow ugc\">Elirant3 GitHub Repository\u003C\u002Fa> and see where you can help.\u003C\u002Fp>\n","Edit meta description, meta keywords and title for each page, post, post type.",996,"2020-03-13T23:10:00.000Z","5.3.21","4.0","5.6",[92,93,94,95,96],"description","seo","seo-headers","seo-meta","seo-meta-tags","https:\u002F\u002Fgithub.com\u002Felirant3\u002Fsimple-seo-meta","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-seo-metadata.2.0.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":107,"downloaded":108,"rating":109,"num_ratings":110,"last_updated":111,"tested_up_to":112,"requires_at_least":113,"requires_php":114,"tags":115,"homepage":119,"download_link":120,"security_score":121,"vuln_count":14,"unpatched_count":28,"last_vuln_date":122,"fetched_at":30},"header-footer","Head, Footer and Post Injections","3.3.3","Stefano Lissa","https:\u002F\u002Fprofiles.wordpress.org\u002Fsatollo\u002F","\u003Cp>Why you have to install 10 plugins to add Google Analytics, Facebook Pixel, custom\u003Cbr \u002F>\ntracking code, Google DFP code, Google Webmaster\u002FAlexa\u002FBing\u002FTradedoubler verification code and so on…\u003C\u002Fp>\n\u003Cp>With Header and Footer plugin you can just copy the code those services give you\u003Cbr \u002F>\nin a centralized point to manage them all. And theme independent: you can change your theme\u003Cbr \u002F>\nwithout loosing the code injected!\u003C\u002Fp>\n\u003Ch4>Injection points and features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>in the  page section where most if the codes are usually added\u003C\u002Fli>\n\u003Cli>just after the  tag as required by some JavaScript SDK (like Facebook)\u003C\u002Fli>\n\u003Cli>in the page footer (just before the  tag)\u003C\u002Fli>\n\u003Cli>recognize and execute PHP code to add logic to your injections\u003C\u002Fli>\n\u003Cli>distinct desktop and mobile injections\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>AMP\u003C\u002Fh4>\n\u003Cp>A new AMP dedicated section compatible with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Famp\" rel=\"ugc\">AMP plugin\u003C\u002Fa> lets you to inject specific codes in\u003Cbr \u002F>\nAMP pages. Should be ok even with other AMP plugins.\u003C\u002Fp>\n\u003Ch4>Post Top and Bottom Codes\u003C\u002Fh4>\n\u003Cp>Do you need to inject a banner over the post content or after it? No problem. With Header and\u003Cbr \u002F>\nFooter you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Add codes on \u003Cem>top\u003C\u002Fem>, \u003Cem>bottom\u003C\u002Fem> and in the \u003Cem>middle\u003C\u002Fem> of posts and pages\u003C\u002Fli>\n\u003Cli>Differentiate between \u003Cem>mobile\u003C\u002Fem> and \u003Cem>desktop\u003C\u002Fem> (you don’t display the same ad format on both, true?)\u003C\u002Fli>\n\u003Cli>Separate post and page configuration\u003C\u002Fli>\n\u003Cli>Native PHP code enabled\u003C\u002Fli>\n\u003Cli>Shortcodes enabled\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Special Injections\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Just after the opening BODY tag\u003C\u002Fli>\n\u003Cli>In the middle of post content (using configurable rules)\u003C\u002Fli>\n\u003Cli>Everywhere on template (using placeholders)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>bbPress\u003C\u002Fh4>\n\u003Cp>The specific bbPress injections are going to be removed. Switch to my\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fads-bbpress\" rel=\"ugc\">Ads for bbPress\u003C\u002Fa>, which is more flexible and complete.\u003C\u002Fp>\n\u003Ch4>Limits\u003C\u002Fh4>\n\u003Cp>This plugin cannot change the menu or the footer layout, those features must be covered by your theme!\u003C\u002Fp>\n\u003Cp>Official page: \u003Ca href=\"https:\u002F\u002Fwww.satollo.net\u002Fplugins\u002Fheader-footer\" rel=\"nofollow ugc\">Header and Footer\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Other plugins by Stefano Lissa:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.satollo.net\u002Fplugins\u002Fhyper-cache\" rel=\"nofollow ugc\">Hyper Cache\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.thenewsletterplugin.com\" rel=\"nofollow ugc\">Newsletter\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.satollo.net\u002Fplugins\u002Finclude-me\" rel=\"nofollow ugc\">Include Me\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.satollo.net\u002Fplugins\u002Fthumbnails\" rel=\"nofollow ugc\">Thumbnails\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fads-bbpress\u002F\" rel=\"ugc\">Ads for bbPress\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Translation\u003C\u002Fh4>\n\u003Cp>You can contribute to translate this plugin in your language on \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\" rel=\"nofollow ugc\">WordPress Translate\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Privacy and GDPR\u003C\u002Fh3>\n\u003Cp>This plugin does not collect or process any personal user data.\u003C\u002Fp>\n","Head and Footer plugin lets you to add HTML code to the head and footer sections of your site pages, inside posts... and more!",300000,5509086,98,734,"2026-02-03T07:01:00.000Z","6.9.4","6.1","7.0",[116,117,20,118,21],"ads","amp","footer","https:\u002F\u002Fwww.satollo.net\u002Fplugins\u002Fheader-footer","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fheader-footer.3.3.3.zip",99,"2025-02-20 22:46:06",{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":107,"downloaded":131,"rating":13,"num_ratings":132,"last_updated":133,"tested_up_to":112,"requires_at_least":134,"requires_php":18,"tags":135,"homepage":139,"download_link":140,"security_score":109,"vuln_count":14,"unpatched_count":28,"last_vuln_date":141,"fetched_at":30},"wp-headers-and-footers","Insert Headers And Footers","3.1.3","Adnan","https:\u002F\u002Fprofiles.wordpress.org\u002Fhiddenpearls\u002F","\u003Cp>WP Headers and Footers plugin helps you to insert code to your WordPress website headers and footers section like Google Analytics tracking code, Facebook Pixels code, Google Optimize code for A\u002FB testing, Custom CSS code, and more. You don’t need to edit the theme files to insert the code.\u003C\u002Fp>\n\u003Cp>The simple interface of this plugin allows you to add code and different scripts from one place to your WordPress website (\u003Cstrong>Headers, Footers, and Body section\u003C\u002Fstrong>).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Insert code to your WordPress headers & Footers\u003C\u002Fli>\n\u003Cli>Insert Google Analytics Code to any WordPress theme\u003C\u002Fli>\n\u003Cli>Insert Facebook Pixels Code\u003C\u002Fli>\n\u003Cli>Add Google Optimize Code for A\u002FB testing ( Ab Testing )\u003C\u002Fli>\n\u003Cli>Add Google search console authentication code to any theme for verification\u003C\u002Fli>\n\u003Cli>Add Custom CSS, any script, and HTML to your website\u003C\u002Fli>\n\u003Cli>Google Tag Manager code\u002Fscript insertion\u003C\u002Fli>\n\u003Cli>You can also add microsoft clarity tracking code to your website\u003C\u002Fli>\n\u003Cli>You can also insert code to your website body section\u003C\u002Fli>\n\u003Cli>Can add Bing webmaster tool code for website verification\u003C\u002Fli>\n\u003Cli>Add Google AdSense code\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>If you find our plugin useful, please leave a good rating\u002Freview and check our other plugins.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fanalytify.io\u002Fref\u002F73\u002F?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Analytify – Google Analytics Plugin\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Floginpress.pro\u002F?utm_source=wp-headers-and-footers\" rel=\"nofollow ugc\">LoginPress\u003C\u002Fa> – For Custom login page and login page security\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsimplesocialbuttons.com?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Simple Social Buttons\u003C\u002Fa> – Plugin for Social share buttons and social icons\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frelated-posts-thumbnails\u002F\" rel=\"ugc\">Related Posts Thumbnails Plugin\u003C\u002Fa> – For related posts\u002Fproducts\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpbrigade.com\u002Frecommend\u002Fmaintenance-mode?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Under Construction, Coming Soon & Maintenance Mode\u003C\u002Fa> – Plugin for Under construction & Coming soon page\u003C\u002Fli>\n\u003C\u002Ful>\n","Include inline javascript, stylesheets, CSS code or anything you want in Header and Footer areas of your WordPress with ease.",2339048,127,"2026-01-05T15:03:00.000Z","5.0",[136,137,118,138,21],"custom-css","facebook-pixel","google-analytics","https:\u002F\u002Fwww.WPBrigade.com\u002Fwordpress\u002Fplugins\u002Fwp-headers-and-footers\u002F?utm_source=?utm_source=wp-headers-and-footers&utm_medium=author-uri-link","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-headers-and-footers.3.1.3.zip","2025-04-18 00:00:00",{"attackSurface":143,"codeSignals":163,"taintFlows":177,"riskAssessment":178,"analyzedAt":184},{"hooks":144,"ajaxHandlers":159,"restRoutes":160,"shortcodes":161,"cronEvents":162,"entryPointCount":28,"unprotectedCount":28},[145,151,154],{"type":146,"name":147,"callback":148,"file":149,"line":150},"action","admin_menu","techno_hotjar_tracking","technoscore-hotjar-tracking.php",12,{"type":146,"name":152,"callback":153,"file":149,"line":11},"admin_init","techno_hotjar_tracking_register_settings",{"type":146,"name":155,"callback":156,"priority":157,"file":149,"line":158},"wp_head","techno_show_hotjar",999,49,[],[],[],[],{"dangerousFunctions":164,"sqlUsage":165,"outputEscaping":167,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":176},[],{"prepared":28,"raw":28,"locations":166},[],{"escaped":168,"rawEcho":169,"locations":170},6,2,[171,174],{"file":149,"line":172,"context":173},40,"raw output",{"file":149,"line":175,"context":173},44,[],[],{"summary":179,"deductions":180},"The \"technoscore-hotjar-tracking\" plugin, version 1.0.1, exhibits a strong security posture based on the provided static analysis. The absence of any identified AJAX handlers, REST API routes, shortcodes, or cron events with unprotected entry points is a significant strength, indicating a minimal attack surface. Furthermore, the code signals are largely positive, with no dangerous functions, no direct SQL queries (all use prepared statements), no file operations, and no external HTTP requests. This suggests robust coding practices that limit common vulnerability vectors.\n\nHowever, a potential concern arises from the output escaping: while 75% of outputs are properly escaped, the remaining 25% (1 out of 8 total outputs) is not. This could potentially lead to cross-site scripting (XSS) vulnerabilities if sensitive data is outputted without proper sanitization. Taint analysis shows no identified vulnerabilities, which is reassuring. The vulnerability history is also clean, with zero recorded CVEs of any severity. This indicates a lack of previously exploited weaknesses.\n\nIn conclusion, this plugin appears to be very secure for its current version. The minimal attack surface and the responsible use of prepared statements for SQL are commendable. The only notable area for improvement is ensuring 100% of output is properly escaped to eliminate any residual XSS risk. The lack of any past vulnerabilities further reinforces its current secure state.",[181],{"reason":182,"points":183},"Unescaped output detected",5,"2026-03-16T22:51:43.507Z",{"wat":186,"direct":191},{"assetPaths":187,"generatorPatterns":188,"scriptPaths":189,"versionParams":190},[],[],[],[],{"cssClasses":192,"htmlComments":193,"htmlAttributes":194,"restEndpoints":195,"jsGlobals":196,"shortcodeOutput":197},[],[],[],[],[],[198],"\u003Ctextarea name=\"techno_hotjar_script\" cols=\"100\" rows=\"20\" >"]