[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fS2CvIQJOL_I6QPEhWjUNkHDh4fcYynzuOWdUL6zPNMw":3,"$fSHz2Bi9QkHdviI2L00Kh518B0Ctagu1hHGlkasxMHCs":203,"$f424ovHnOzgMDavXkKyXlFt-vBhr2l71FDlAHycfWcwg":208},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":33,"crawl_stats":29,"alternatives":38,"analysis":150,"fingerprints":188},"wpsimpletools-html-code","HTML Code Snippet","1.0.9","wordpresssimpletools","https:\u002F\u002Fprofiles.wordpress.org\u002Fwordpresssimpletools\u002F","\u003Cp>Inserts HTML Code (script, analytics, css) Snippet in page footer.\u003Cbr \u002F>\nAdds a field in ‘Appearance’ menu to manage pure HTML code.\u003C\u002Fp>\n","Adds a field in 'Appearance' menu to manage pure HTML code in page footer (for script tags, analytics, css).",30,2298,100,2,"2021-04-14T12:40:00.000Z","5.7.15","4.0","5.0.0",[20,21,22,23,24],"analytics","css","html","html-code","pure-html","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpsimpletools-html-code.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":27,"avg_patch_time_days":11,"trust_score":36,"computed_at":37},3,10230,84,"2026-05-19T21:20:44.707Z",[39,61,86,107,129],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":13,"num_ratings":14,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":58,"download_link":59,"security_score":60,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"html-tag-and-class-replace","HTML Tag and Class Replace","1.1.1","Jahid Hasan","https:\u002F\u002Fprofiles.wordpress.org\u002Fjahidcse\u002F","\u003Cp>HTML Tag and Class Replace is a lightweight and user-friendly WordPress plugin designed to let you easily replace HTML tags and classes across your website. Whether you’re optimizing for SEO, improving design consistency, or customizing your theme, this plugin simplifies the process with just a few clicks.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Effortlessly replace any HTML tag for better semantic structure and SEO optimization.\u003C\u002Fli>\n\u003Cli>Modify or replace HTML classes to enhance your website’s styling and consistency.\u003C\u002Fli>\n\u003Cli>Perfect for bloggers, developers, and website owners aiming for more control over their site’s HTML output.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Injection Locations:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>Header Section\u003C\u002Fli>\n\u003Cli>Body Section\u003C\u002Fli>\n\u003Cli>Footer Section\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Why Choose HTML Tag and Class Replace?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>It’s a quick and powerful solution that helps you make critical HTML updates without diving deep into your website’s codebase.\u003C\u002Fp>\n\u003Ch3>Notes\u003C\u002Fh3>\n\u003Cp>HTML Tag and Class Replace is the easy way to replace your website tag and class in your WordPress header, body and footer.\u003C\u002Fp>\n","Allows you to Replace any HTML Tag and Class of your WordPress WebSite.",200,7784,"2025-05-03T11:48:00.000Z","6.8.5","4.7","5.3",[54,55,56,57,23],"css-class","footer-code","h1-replace","html-class","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhtml-tag-and-class-replace\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhtml-tag-and-class-replace.1.1.1.zip",92,{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":13,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":25,"tags":75,"homepage":81,"download_link":82,"security_score":83,"vuln_count":84,"unpatched_count":28,"last_vuln_date":85,"fetched_at":30},"wp-headers-and-footers","Insert Headers And Footers","3.1.4","Adnan","https:\u002F\u002Fprofiles.wordpress.org\u002Fhiddenpearls\u002F","\u003Cp>WP Headers and Footers plugin helps you to insert code to your WordPress website headers and footers section like Google Analytics tracking code, Facebook Pixels code, Google Optimize code for A\u002FB testing, Custom CSS code, and more. You don’t need to edit the theme files to insert the code.\u003C\u002Fp>\n\u003Cp>The simple interface of this plugin allows you to add code and different scripts from one place to your WordPress website (\u003Cstrong>Headers, Footers, and Body section\u003C\u002Fstrong>).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Insert code to your WordPress headers & Footers\u003C\u002Fli>\n\u003Cli>Insert Google Analytics Code to any WordPress theme\u003C\u002Fli>\n\u003Cli>Insert Facebook Pixels Code\u003C\u002Fli>\n\u003Cli>Add Google Optimize Code for A\u002FB testing ( Ab Testing )\u003C\u002Fli>\n\u003Cli>Add Google search console authentication code to any theme for verification\u003C\u002Fli>\n\u003Cli>Add Custom CSS, any script, and HTML to your website\u003C\u002Fli>\n\u003Cli>Google Tag Manager code\u002Fscript insertion\u003C\u002Fli>\n\u003Cli>You can also add microsoft clarity tracking code to your website\u003C\u002Fli>\n\u003Cli>You can also insert code to your website body section\u003C\u002Fli>\n\u003Cli>Can add Bing webmaster tool code for website verification\u003C\u002Fli>\n\u003Cli>Add Google AdSense code\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>If you find our plugin useful, please leave a good rating\u002Freview and check our other plugins.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fanalytify.io\u002Fref\u002F73\u002F?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Analytify – Google Analytics Plugin\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Floginpress.pro\u002F?utm_source=wp-headers-and-footers\" rel=\"nofollow ugc\">LoginPress\u003C\u002Fa> – For Custom login page and login page security\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsimplesocialbuttons.com?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Simple Social Buttons\u003C\u002Fa> – Plugin for Social share buttons and social icons\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frelated-posts-thumbnails\u002F\" rel=\"ugc\">Related Posts Thumbnails Plugin\u003C\u002Fa> – For related posts\u002Fproducts\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpbrigade.com\u002Frecommend\u002Fmaintenance-mode?utm_source=wp-headers-and-footers&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Under Construction, Coming Soon & Maintenance Mode\u003C\u002Fa> – Plugin for Under construction & Coming soon page\u003C\u002Fli>\n\u003C\u002Ful>\n","Include inline javascript, stylesheets, CSS code or anything you want in Header and Footer areas of your WordPress with ease.",300000,2478068,130,"2026-03-17T07:03:00.000Z","6.9.4","5.0",[76,77,78,79,80],"custom-css","facebook-pixel","footer","google-analytics","header","https:\u002F\u002Fwww.WPBrigade.com\u002Fwordpress\u002Fplugins\u002Fwp-headers-and-footers\u002F?utm_source=?utm_source=wp-headers-and-footers&utm_medium=author-uri-link","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-headers-and-footers.3.1.4.zip",98,1,"2025-04-18 00:00:00",{"slug":87,"name":88,"version":89,"author":90,"author_profile":91,"description":92,"short_description":93,"active_installs":94,"downloaded":95,"rating":96,"num_ratings":97,"last_updated":98,"tested_up_to":99,"requires_at_least":100,"requires_php":25,"tags":101,"homepage":105,"download_link":106,"security_score":60,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"raw-html","Raw HTML","1.6.4","Janis Elsts","https:\u002F\u002Fprofiles.wordpress.org\u002Fwhiteshadow\u002F","\u003Cp>Lets you disable automatic formatting like smart quotes and automatic paragraph creation, and use raw HTML\u002FJS\u002FCSS code in your posts without WordPress messing it up.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>With this plugin, you can wrap any part of your post in [raw]…[\u002Fraw] tags to prevent WordPress from converting newlines to HTML paragraphs, replacing apostrophes with typographic quotes and so on. This is very useful if you need to add a CSS block or JavaScript to your post.\u003C\u002Fp>\n\u003Cp>RawHTML will also add new checkboxes to the “Edit Post” screen that let you disable certain WP filters on a per-post basis. This way you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable wptexturize (the function that creates smart quotes and other typographic characters).\u003C\u002Fli>\n\u003Cli>Disable automatic paragraph creation.\u003C\u002Fli>\n\u003Cli>Disable image smilies. \u003C\u002Fli>\n\u003Cli>Disable convert_chars (the function that converts ampersands to HTML entities and “fixes” some Unicode characters).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The free version only supports editing posts in the Text tab (called “HTML” in older WordPress versions). \u003Ca href=\"http:\u002F\u002Frawhtmlpro.com\u002F?utm_source=wordpress.org&utm_medium=readme_link&utm_campaign=RawHTML%20free\" rel=\"nofollow ugc\">Get the Pro version\u003C\u002Fa> if you want to be able to switch between Text and the Visual editor without WordPress messing up your content.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Compatibility\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin doesn’t fully support the Gutenberg editor. As of WordPress 5.0, some Raw HTML features will only work if you use the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclassic-editor\u002F\" rel=\"ugc\">Classic Editor\u003C\u002Fa> plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Usage\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>To prevent a part of your post or page from being filtered by WordPress, switch to the Text\u002FHTML editor and wrap it in \u003Ccode>[raw]...[\u002Fraw]\u003C\u002Fcode> or \u003Ccode>\u003C!--raw-->...\u003C!--\u002Fraw-->\u003C\u002Fcode> tags. These two versions work exactly the same, except that the latter won’t be visible to your visitors even if you deactivate Raw HTML.\u003C\u002Fp>\n\u003Cp>\u003Cem>Example :\u003C\u002Fem>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[raw]\nThis \n\nis \n\na \"test\"!\n[\u002Fraw]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>In this case, the tags will prevent WordPress from inserting paragraph breaks between “This”, “is” and “a “test””, as well as ensure that the double quotes arround “test” are not converted to typographic (curly) quotes.\u003C\u002Fp>\n\u003Cp>To avoid problems, only edit posts that contain your custom code in Text\u002FHTML mode. If you’d like to be able to also use the Visual editor, \u003Ca href=\"http:\u002F\u002Frawhtmlpro.com\u002F?utm_source=wordpress.org&utm_medium=readme_link&utm_campaign=RawHTML%20free\" rel=\"nofollow ugc\">get the Pro version\u003C\u002Fa>. It will make the code betwen [raw] tags appear as a read-only placeholder when viewed in Visual mode, ensuring WordPress doesn’t change it.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Combining shortcodes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, shortcodes that are inside [raw] tags will not work. They will just show up as plain text. To enable shortcodes, add the \u003Ccode>shortcodes=1\u003C\u002Fcode> attribute to the tag:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[raw shortcodes=1]This [shortcode] will be run.[\u002Fraw]\n\n[raw]This [shortcode] won't work.[\u002Fraw]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Preserving \u003Ccode>[raw]\u003C\u002Fcode> code in excerpts\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>By default, the plugin will automatically remove any code that’s inside \u003Ccode>[raw]...[\u002Fraw]\u003C\u002Fcode> tags from post excerpts. You can prevent that by adding the following line to \u003Ccode>wp-config.php\u003C\u002Fcode>:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>define('RAW_HTML_KEEP_RAW_IN_EXCERPTS', true);\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This will ensure that the plugin doesn’t strip \u003Ccode>[raw]\u003C\u002Fcode> blocks from automatically generated excerpts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Notes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Some features of Raw HTML will only work for users who have the “unfiltered_html” capability. In a normal WordPress install that includes the Editor and Administrator roles. In a Multisite install, only the Super Admin has this capability by default.\u003C\u002Fp>\n","Lets you use raw HTML or any other code in your posts. You can also disable smart quotes and other automatic formatting on a per-post basis.",10000,587406,86,33,"2024-11-11T15:00:00.000Z","6.7.5","2.8",[21,102,22,103,104],"formatting","javascript","posts","http:\u002F\u002Fw-shadow.com\u002Fblog\u002F2007\u002F12\u002F13\u002Fraw-html-in-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fraw-html.1.6.4.zip",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":94,"downloaded":115,"rating":116,"num_ratings":117,"last_updated":118,"tested_up_to":73,"requires_at_least":119,"requires_php":120,"tags":121,"homepage":124,"download_link":125,"security_score":126,"vuln_count":127,"unpatched_count":28,"last_vuln_date":128,"fetched_at":30},"simple-embed-code","Code Embed","2.5.2","David Artiss","https:\u002F\u002Fprofiles.wordpress.org\u002Fdartiss\u002F","\u003Cp>Code Embed allows you to embed code (JavaScript, CSS and HTML – it can’t be used for server-side code, such as PHP) in a post, without the content being changed by the editor. This is incredibly useful for embedding third-party scripts, etc. The plugin is used by many large sites, including Mozilla.\u003C\u002Fp>\n\u003Cp>Key features include…\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Add HTML or JavaScript to posts or pages – particularly useful for embedding videos!\u003C\u002Fli>\n\u003Cli>Embed in widgets using the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwidget-logic\u002F\" title=\"Widget Logic\" rel=\"ugc\">Widget Logic\u003C\u002Fa> plugin\u003C\u002Fli>\n\u003Cli>Global embedding allows you set up some code in one post or page and then access it from another\u003C\u002Fli>\n\u003Cli>Modify the keywords or identifiers used for embedding the code to your own choice\u003C\u002Fli>\n\u003Cli>Search for embedding code via a simple search option\u003C\u002Fli>\n\u003Cli>Add a simple suffix to the embed code to convert videos to responsive output\u003C\u002Fli>\n\u003Cli>Embed an external script directly using just the URL\u003C\u002Fli>\n\u003Cli>And much, much more!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Iconography is courtesy of the very talented \u003Ca href=\"https:\u002F\u002Fwww.fiverr.com\u002Fjankirathore\" rel=\"nofollow ugc\">Janki Rathod\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Please visit the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdartiss\u002Fcode-embed\" title=\"Github\" rel=\"nofollow ugc\">Github page\u003C\u002Fa> for the latest code development, planned enhancements and known issues\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Getting Started\u003C\u002Fh3>\n\u003Cp>To use this plugin, you need to have custom fields enabled on your site. If you’re using the block editor, you may need to switch this on first – please scroll down to the next section to learn how to do this. If you’re using the classic editor then you’ll find the custom fields at the bottom of the editor screen.\u003C\u002Fp>\n\u003Cp>Although this plugin works for both posts and pages for simplicity I will simply refer to posts – bear in mind that pages work in the same way.\u003C\u002Fp>\n\u003Cp>Once you have custom fields switched on, here’s how easy it is to use…\u003C\u002Fp>\n\u003Col>\n\u003Cli>Once you have the plugin installed start a new post.\u003C\u002Fli>\n\u003Cli>Scroll down to the bottom of the screen and look for the “Custom Fields” section.\u003C\u002Fli>\n\u003Cli>Under “Add New Custom Field” enter a name of \u003Ccode>CODE1\u003C\u002Fcode> and your embed code as the value\u003C\u002Fli>\n\u003Cli>In your post content add \u003Ccode>{{CODE1}}\u003C\u002Fcode> where you wish the embed code to appear.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>And that’s it – when the post viewed or previewed \u003Ccode>{{CODE1}}\u003C\u002Fcode> will be replaced with the code that you asked to be embedded.\u003C\u002Fp>\n\u003Cp>This should get you started – for more information and advanced options please see below.. Alternatively, there’s a fantastic guide at \u003Ca href=\"http:\u002F\u002Fwww.elftronix.com\u002Ffree-easy-plugin-add-javascript-to-wordpress-posts-pages\u002F\" title=\"Free Easy Plugin! Add Javascript to WordPress Posts & Pages\" rel=\"nofollow ugc\">Elftronix\u003C\u002Fa> which I would recommend.\u003C\u002Fp>\n\u003Ch3>Using this plugin with the block editor (aka Gutenberg)\u003C\u002Fh3>\n\u003Cp>By default, custom fields are hidden inside the block editor but can be revealed.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Edit or create a post\u003C\u002Fli>\n\u003Cli>Click the settings button (three dots) in the top, right-hand corner\u003C\u002Fli>\n\u003Cli>Go to Preferences\u003C\u002Fli>\n\u003Cli>Click the Panels tab\u003C\u002Fli>\n\u003Cli>You will find a button to toggle the ‘Custom Fields’ meta box – make sure this is toggled to “on”\u003C\u002Fli>\n\u003Cli>A button should appear titled “Enable & Reload” – you’ll need to click on that and wait for the page to reload before the custom fields will appear\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Check out the screenshots for how the custom fields should look.\u003C\u002Fp>\n\u003Ch3>I can’t find the custom fields\u003C\u002Fh3>\n\u003Cp>For block editor users, I’m assuming you’ve done the above. For classic editor users, the custom fields should be present by default. In all cases they should appear at the bottom of the editor screen.\u003C\u002Fp>\n\u003Cp>From version 2.4, anyone without the “unfiltered HTML” capability won’t be able to see custom fields, for added security. Please see the section “Custom Field Security”, below, for more details.\u003C\u002Fp>\n\u003Cp>If none of the above applies then you may have a theme or plugin that removes this or may have a problem with your WordPress installation – you will need to try the usual diagnostics to try and resolve this, including requesting help on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fforum\u002Fhow-to-and-troubleshooting\u002F\" title=\"Fixing WordPress Forum\" rel=\"ugc\">the WordPress support forum\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Please bear in mind that the custom fields functionality is part of WordPress so it would be greatly appreciated if you don’t give me poor reviews in this situation as, I say, this component is not part of this plugin but, by using it, keeps this plugin simple to use and bloat-free 🙂\u003C\u002Fp>\n\u003Ch3>The Code Embed Options Screen\u003C\u002Fh3>\n\u003Cp>Whilst in WP Admin, if you go to Settings -> Code Embed, you’ll be able to access the options that are available for this plugin.\u003C\u002Fp>\n\u003Cp>Code embedding is performed via a special keyword that you must use to uniquely identify where you wish the code to appear. This consist of an opening identifier (some that that goes at the beginning), a keyword and then a closing identifier. You may also add a suffix to the end of the keyword if you wish to embed multiple pieces of code within the same post.\u003C\u002Fp>\n\u003Cp>From this options screen you can specify the above identifier that you wish to use. By default the opening and closing identifiers are percentage signs and the keyword is \u003Ccode>CODE\u003C\u002Fcode>. During these instructions these will be used in all examples.\u003C\u002Fp>\n\u003Cp>The options screen is only available to those that with a capability of able to manage options or greater. All the other Code Embed menu options are available to users with a capability to edit posts or greater.\u003C\u002Fp>\n\u003Ch3>How to Embed Code\u003C\u002Fh3>\n\u003Cp>To embed in a post you need to find the meta box under the post named “Custom Fields”. If this is missing you may need to add it by clicking on the “Screen Options” tab at the top of the new post screen.\u003C\u002Fp>\n\u003Cp>Now create a new custom field with the name of your keyword – e.g. \u003Ccode>CODE\u003C\u002Fcode>. The value of this field will be the code that you wish to embed. Save this custom field.\u003C\u002Fp>\n\u003Cp>Now, wherever you wish the code to appear in your post, simply put the full identifier (opening, keyword and closing characters). For example, \u003Ccode>{{CODE}}\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>If you wish to embed multiple pieces of code within a post you can add a suffix to the keyword. So we may set up 2 custom fields named \u003Ccode>CODE1\u003C\u002Fcode> and \u003Ccode>CODE2\u003C\u002Fcode>. Then in our post we would specify either \u003Ccode>{{CODE1}}\u003C\u002Fcode> or \u003Ccode>{{CODE2}}\u003C\u002Fcode> depending on which you wish to display.\u003C\u002Fp>\n\u003Cp>Don’t forget – via the options screen you can change any part of this identifier to your own taste.\u003C\u002Fp>\n\u003Ch3>How to Embed Code from an External URL\u003C\u002Fh3>\n\u003Cp>If you specify a URL within your post, surrounded by your choice of identifiers, then the contents of the URL will be embedded within your post.\u003C\u002Fp>\n\u003Cp>Obviously, be careful when embedding a URL that you have no control over, as this may be used to hijack your post by injecting, for example, dangerous JavaScript.\u003C\u002Fp>\n\u003Cp>For example, using the default options you could embed the contents of a URL using the following method…\u003C\u002Fp>\n\u003Cpre>\u003Ccode>{{http:\u002F\u002Fwww.example.com\u002Fcode.php}}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>or\u003C\u002Fp>\n\u003Cpre>\u003Ccode>{{https:\u002F\u002Fwww.example.com\u002Fcode.html}}\u003Ch3>How to Use Global Embedding\u003C\u002Fh3>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>You can also create global embeds – that is creating one piece of embed code and using it in multiple posts or pages.\u003C\u002Fp>\n\u003Cp>To do this simply make reference to an already defined (but unique) piece of embed code from another post or page.\u003C\u002Fp>\n\u003Cp>So, let’s say in one post you define a custom field named \u003Ccode>CODE1\u003C\u002Fcode>. You can, if you wish, place \u003Ccode>{{CODE1}}\u003C\u002Fcode> not just in that post but also in another and it will work.\u003C\u002Fp>\n\u003Cp>However, bear in mind that the embed code name must be unique – you can’t have defined it in multiple posts otherwise the plugin won’t know which one you’re referring to (although it will report this and list the posts that it has been used in).\u003C\u002Fp>\n\u003Cp>In the administration menu there is a sidebar menu named “Tools”. Under this is a sub-menu named “Code Search”. Use this to search for specific embed names and it will list all the posts\u002Fpages that they’re used on, along with the code for each.\u003C\u002Fp>\n\u003Ch3>Embedding in Widgets\u003C\u002Fh3>\n\u003Cp>Natively you cannot use the embed facilities within sidebar widgets. However, if you install the plugin \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwidget-logic\u002F\" title=\"Widget Logic\" rel=\"ugc\">Widget Logic\u003C\u002Fa> then Code Embed has been set up to make use of this and add the ability.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Install \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fwidget-logic\u002F\" title=\"Widget Logic\" rel=\"ugc\">Widget Logic\u003C\u002Fa> and activate.\u003C\u002Fli>\n\u003Cli>In Administration, select the Widgets page from the Appearance menu. At the bottom there will be a set of Widget Logic options.\u003C\u002Fli>\n\u003Cli>Ensure Use ‘widget_content’ filter is ticked and press Save.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Although you cannot set up embed code within a widget you can make reference to it, for example by writing \u003Ccode>{{CODE1}}\u003C\u002Fcode> in the widget.\u003C\u002Fp>\n\u003Ch3>Responsive Output Conversion\u003C\u002Fh3>\n\u003Cp>Responsive output is where an element on a web page dynamically resizes depending upon the current available size. Most video embeds, for instance, will be a fixed size. This is fine if your website is also of a fixed size, however if you have a responsive site then this is not suitable.\u003C\u002Fp>\n\u003Cp>Code Embed provides a simple suffix that can be added to an embed code and will convert the output to being responsive. This works best with videos.\u003C\u002Fp>\n\u003Cp>To use, when adding the embed code onto the page, simply add \u003Ccode>_RES\u003C\u002Fcode> to the end, before the final identifier. For example, \u003Ccode>{{CODE1_RES}}\u003C\u002Fcode>. The \u003Ccode>_RES\u003C\u002Fcode> should not be added to the custom fields definition.\u003C\u002Fp>\n\u003Cp>This will now output the embedded code full width, but a width that is dynamic and will resize when required.\u003C\u002Fp>\n\u003Cp>If you don’t wish the output to be full width you can specify a maximum width by adding an additional \u003Ccode>_x\u003C\u002Fcode> on the end, where \u003Ccode>x\u003C\u002Fcode> is the required width in pixels. For example, \u003Ccode>{{CODE1_RES_500}}\u003C\u002Fcode> this will output \u003Ccode>CODE1\u003C\u002Fcode> as responsive but with a maximum width of 500 pixels.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>It should be noted that this is an experimental addition and will not work in all circumstances.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Embedding in excerpts\u003C\u002Fh3>\n\u003Cp>By default embed code will not appear in excerpts. However, you can switch this ability on via the Code Embed options screen. If you do this then the standard rules of excerpts will still apply, but now once the code embed has applied – for example, excerpts are just text, a specific length, etc.\u003C\u002Fp>\n\u003Ch3>Filtering of code\u003C\u002Fh3>\n\u003Cp>By default, WordPress allows unfiltered HTML to be used by users in post custom fields, even if their role it set up otherwise. This opens up the possibility of leaving a site vulnerable, if any plugins that uses this data doesn’t check it appropriately.\u003C\u002Fp>\n\u003Cp>“Out of the box”, neither the contributor and author roles have unfiltered HTML capabilities but can access custom post fields.\u003C\u002Fp>\n\u003Cp>As this plugin requires the use unfiltered HTML, we need to ensure that the only users who use it, should be using it. From version 2.5, any users without this permission that update a post containing embeds from this plugin will cause the code to be filtered.\u003C\u002Fp>\n\u003Ch3>Reviews & Mentions\u003C\u002Fh3>\n\u003Cp>“Works like a dream. Fantastic!” – Anita.\u003C\u002Fp>\n\u003Cp>“Thank you for this plugin. I tried numerous other iframe plugins and none of them would work for me! This plugin worked like a charm the FIRST time.” – KerryAnn May.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwsdblog.westbrook.k12.me.us\u002Fblog\u002F2009\u002F12\u002F24\u002Fembedding-content\u002F\" title=\"Embedding content\" rel=\"nofollow ugc\">Embedding content\u003C\u002Fa> – WSD Blogging Server.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fcomohago.conectandonos.gov.ar\u002F2009\u002F08\u002F05\u002Fanimando-imagenes-con-photopeach\u002F\" title=\"Animando imágenes con PhotoPeach\" rel=\"nofollow ugc\">Animating images with PhotoPeach\u003C\u002Fa> – Cómo hago.\u003C\u002Fp>\n","Code Embed provides a very easy and efficient way to embed code (JavaScript, CSS and HTML) in your posts and pages.",516191,88,45,"2026-03-15T10:00:00.000Z","4.6","7.4",[122,21,123,22,103],"code","embed","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-embed-code\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-embed-code.2.5.2.zip",95,4,"2026-03-17 00:00:00",{"slug":130,"name":131,"version":132,"author":133,"author_profile":134,"description":135,"short_description":136,"active_installs":137,"downloaded":138,"rating":139,"num_ratings":140,"last_updated":141,"tested_up_to":73,"requires_at_least":142,"requires_php":143,"tags":144,"homepage":147,"download_link":148,"security_score":13,"vuln_count":84,"unpatched_count":28,"last_vuln_date":149,"fetched_at":30},"wp-super-minify","WP Super Minify • Minify, Compress and Cache HTML, CSS & JavaScript","2.0.1","Dipak C. Gajjar","https:\u002F\u002Fprofiles.wordpress.org\u002Fdipakcg\u002F","\u003Cp>\u003Cstrong>WP Super Minify automatically minifies, compresses, and caches HTML, CSS & JavaScript files (inline and individual) on demand to enhance website’s load speed.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Once activated, the plugin seamlessly compresses HTML, inline CSS, and JavaScript, reducing file sizes for faster page loading. This optimisation helps improve your site’s Google PageSpeed Insights and GTmetrix performance scores.\u003C\u002Fp>\n\u003Cp>Additionally, WP Super Minify minifies individual JavaScript and CSS files, ensuring they load correctly and are automatically updated whenever the original files are modified or added — no manual settings needed!\u003C\u002Fp>\n\u003Cp>Optimise your website effortlessly and deliver a faster, smoother experience to your visitors.\u003C\u002Fp>\n\u003Cp>To check whether this plugin works properly, simply view your site source or press Ctrl + U from your keyboard. In the end of the source, you should see message something like:\u003C\u002Fp>\n\u003Cp>*** Total size saved: 11.341% | Size before compression: 27104 bytes | Size after compression: 24030 bytes. ***\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Like this plugin? You’ll love my other plugin: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-performance-score-booster\u002F\" rel=\"ugc\">WP Performance Score Booster\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Development & Support\u003C\u002Fh4>\n\u003Cp>Follow the development of this plugin on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdipakcg\u002Fwp-super-minify\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>P.S. It is always the best policy to open a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwp-super-minify\" rel=\"ugc\">support thread\u003C\u002Fa> first before posting any negative review.\u003C\u002Fp>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cp>A big shoutout to \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmrclay\u002Fminify\" rel=\"nofollow ugc\">Steve Clay\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmatthiasmullie\u002Fminify\" rel=\"nofollow ugc\">Matthias Mullie\u003C\u002Fa> for sharing their Minify libraries on GitHub. While these libraries are no longer actively maintained, their work has been invaluable, and I sincerely thank them.\u003C\u002Fp>\n","A lightweight plugin that automatically minifies, compresses, and caches HTML, CSS, and JavaScript on demand to improve your website’s load speed.",9000,357890,82,70,"2026-02-10T11:55:00.000Z","3.5","5.6",[145,21,22,103,146],"compress","minify","https:\u002F\u002Fgithub.com\u002Fdipakcg\u002Fwp-super-minify","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-super-minify.2.0.1.zip","2023-08-28 00:00:00",{"attackSurface":151,"codeSignals":166,"taintFlows":176,"riskAssessment":177,"analyzedAt":187},{"hooks":152,"ajaxHandlers":162,"restRoutes":163,"shortcodes":164,"cronEvents":165,"entryPointCount":28,"unprotectedCount":28},[153,159],{"type":154,"name":155,"callback":156,"file":157,"line":158},"action","customize_register","wpst_hc_customize_register","wpsimpletools-html-code.php",44,{"type":154,"name":160,"callback":161,"file":157,"line":117},"wp_footer","wpst_hc_insert_code",[],[],[],[],{"dangerousFunctions":167,"sqlUsage":168,"outputEscaping":170,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":175},[],{"prepared":28,"raw":28,"locations":169},[],{"escaped":28,"rawEcho":84,"locations":171},[172],{"file":157,"line":173,"context":174},40,"raw output",[],[],{"summary":178,"deductions":179},"The security analysis of wpsimpletools-html-code v1.0.9 indicates a generally good security posture, with no apparent entry points that are unprotected. The absence of AJAX handlers, REST API routes, shortcodes, and cron events with open access significantly limits the plugin's attack surface. Furthermore, the code signals show no dangerous functions being used, and all SQL queries are properly prepared, which is a strong indicator of secure database interaction. The lack of file operations and external HTTP requests also contributes to a reduced risk profile.\n\nHowever, a significant concern arises from the output escaping. With one total output and 0% properly escaped, there is a high likelihood of cross-site scripting (XSS) vulnerabilities. Any data displayed to users, if not properly sanitized before output, could be exploited. The complete absence of nonce checks and capability checks, while not immediately risky given the limited attack surface, represents a potential weakness if the plugin were to be expanded or integrated with other components in the future.\n\nThe vulnerability history is entirely clean, with no known CVEs or past issues. This suggests either a well-developed plugin or potentially a lack of historical scrutiny. Coupled with the observed output escaping issues, this clean history might indicate that the plugin's potential vulnerabilities have not yet been discovered or exploited. The overall conclusion is that while the plugin demonstrates good practices in limiting its attack surface and securing database operations, the critical lack of output escaping presents a substantial risk that needs immediate attention.",[180,183,185],{"reason":181,"points":182},"All outputs are unescaped",8,{"reason":184,"points":34},"No nonce checks implemented",{"reason":186,"points":34},"No capability checks implemented","2026-03-16T22:30:59.992Z",{"wat":189,"direct":194},{"assetPaths":190,"generatorPatterns":191,"scriptPaths":192,"versionParams":193},[],[],[],[],{"cssClasses":195,"htmlComments":196,"htmlAttributes":199,"restEndpoints":200,"jsGlobals":201,"shortcodeOutput":202},[],[197,198],"\u003C!-- WpSimpleTools HTML Code Snippet -->","\u003C!-- https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpsimpletools-html-code\u002F -->",[],[],[],[],{"error":204,"url":205,"statusCode":206,"statusMessage":207,"message":207},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fwpsimpletools-html-code\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":28,"versions":209},[]]