[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fKGMhamzsUugfg8bXKWqSMLgs2AZakD75O17cibphyN8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":35,"analysis":74,"fingerprints":109},"the-content-injection","The Content Injection","3.0","ashlife","https:\u002F\u002Fprofiles.wordpress.org\u002Fashlife\u002F","\u003Cp>This is One of the most simple Plugin, it can insert Custom Code\u002FText\u002FHTML to the Beginning and End of Content Text of Blog Posts in Single Post.\u003Cbr \u002F>\nVery usefull of those who don’t know php well or find it hard to edit theme files to manually insert codes\u002Ftext\u002Fhtml in the described locations. You don’t have to add codes to both the spot together, you can any one of the spots blank too.\u003C\u002Fp>\n\u003Cp>Catch me @ashlifeonline\u003C\u002Fp>\n","Inserts Custom Code\u002FText\u002FHTML before and After Content Text of Posts in Single Page",10,3170,100,2,"2015-11-03T15:23:00.000Z","4.3.34","2.1","",[20,21,22],"bottom-of-content","code-insert","top-of-content","http:\u002F\u002Fwww.ashishdas.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fthe-content-injection.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},1,30,84,"2026-04-04T13:44:11.923Z",[36,54],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":11,"downloaded":44,"rating":13,"num_ratings":31,"last_updated":45,"tested_up_to":46,"requires_at_least":47,"requires_php":48,"tags":49,"homepage":18,"download_link":52,"security_score":53,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"insert-content","Insert Content","1.0.0","Joseph Adediji","https:\u002F\u002Fprofiles.wordpress.org\u002Fjosylad\u002F","\u003Cp>Insert Content is a lightweight WordPress plugin that allows you to easily add custom text, code, or HTML to the beginning and end of your blog posts or WordPress pages.\u003C\u002Fp>\n\u003Cp>This is a lightweight no distraction plugin for adding various text or code to the beginning or end of your posts or pages.\u003Cbr \u002F>\nIt is useful to people who don’t want to edit theme files to manually insert codes,text,html in the described locations.\u003C\u002Fp>\n\u003Ch4>Key Features:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Add HTML, Text or any code to the beginning of post on single post pages. \u003C\u002Fli>\n\u003Cli>Add HTML, Text or any code to the end of post on single post pages. \u003C\u002Fli>\n\u003Cli>Add HTML, Text or any code to the beginning of WordPress pages. \u003C\u002Fli>\n\u003Cli>Add HTML, Text or any code to the end of WordPress pages.\u003C\u002Fli>\n\u003Cli>Simple and minimalistic settings page.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Supported WordPress version\u003C\u002Fh3>\n\u003Cp>It is compatible from 3.8 to 6.7 WordPress version.\u003C\u002Fp>\n","A simple plugin to insert Custom Code,Text or HTML before and After Content Text of Single Posts or Pages.",662,"2025-02-08T15:57:00.000Z","6.7.5","3.8","7.4",[50,20,21,51,22],"add-content-to-posts","content-injection","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finsert-content.1.0.0.zip",92,{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":26,"num_ratings":26,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":18,"tags":67,"homepage":72,"download_link":73,"security_score":53,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"syrow-care","Syrow Care","1.0","Syrow","https:\u002F\u002Fprofiles.wordpress.org\u002Fsyrow\u002F","\u003Cp>This plugin allows you to easily integrate the Syrow Care code into your WordPress website.\u003C\u002Fp>\n","A simple yet powerful plugin that allows you to insert the Syrow Care code into your WordPress website.",20,1011,"2024-10-11T13:22:00.000Z","6.6.5","5.0",[68,21,69,70,71],"ai-bot","customer-care","customer-support","widget-code","https:\u002F\u002Fcare.syrow.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsyrow-care.1.0.zip",{"attackSurface":75,"codeSignals":91,"taintFlows":101,"riskAssessment":102,"analyzedAt":108},{"hooks":76,"ajaxHandlers":87,"restRoutes":88,"shortcodes":89,"cronEvents":90,"entryPointCount":26,"unprotectedCount":26},[77,83],{"type":78,"name":79,"callback":80,"file":81,"line":82},"action","admin_menu","wp_admin_options_page","TC_Injection.php",13,{"type":78,"name":84,"callback":85,"file":81,"line":86},"the_content","TC_Injection_AfterC",14,[],[],[],[],{"dangerousFunctions":92,"sqlUsage":93,"outputEscaping":95,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":26,"bundledLibraries":100},[],{"prepared":26,"raw":26,"locations":94},[],{"escaped":26,"rawEcho":31,"locations":96},[97],{"file":81,"line":98,"context":99},23,"raw output",[],[],{"summary":103,"deductions":104},"Based on the static analysis, \"the-content-injection\" v3.0 presents a seemingly strong security posture with no identified attack surface points (AJAX, REST API, shortcodes, cron events) that are unprotected. The absence of dangerous functions, file operations, and external HTTP requests is also positive.  Furthermore, all SQL queries are using prepared statements, and there are no recorded vulnerabilities or CVEs, suggesting a history of stable and secure code. \n\nHowever, a significant concern arises from the output escaping analysis.  With one total output and 0% properly escaped, there is a high likelihood of Cross-Site Scripting (XSS) vulnerabilities.  This lack of output sanitization is a critical weakness that could be exploited to inject malicious scripts into the content.  The complete absence of taint analysis results (0 flows analyzed) is also unusual and could indicate that the analysis tool was unable to effectively scan the plugin or that the plugin's code structure is atypical.  While the vulnerability history is clean, the unescaped output is a major red flag that necessitates immediate attention.",[105],{"reason":106,"points":107},"Unescaped output found",8,"2026-03-17T01:22:18.287Z",{"wat":110,"direct":115},{"assetPaths":111,"generatorPatterns":112,"scriptPaths":113,"versionParams":114},[],[],[],[],{"cssClasses":116,"htmlComments":117,"htmlAttributes":118,"restEndpoints":119,"jsGlobals":120,"shortcodeOutput":121},[],[],[],[],[],[122],"\u003Cdiv id='ES_form'>\u003Ch2>The Content Injection 1.0 - Admin Panel\u003C\u002Fh2>"]