Plugin Reviews

Insert PHP

Run PHP code inserted into WordPress posts and pages.

Average Rating
4.6 out of 5 stars
You are currently viewing the reviews that provided a rating of 1 star. Click here to see all reviews.
Dangerously Insecure
By , for WP 4.3.1

Any plugin that allows you to place PHP inside post content is dangerously insecure. With this plugin installed, anybody who can edit, update, or create a post, can place a PHP shell or another attack script inside these short codes and gain an alarming level of control over your WordPress install.

Because of this, you can also run into trouble and issues with your hosting if they see you have a plugin of this type installed. Some hosts will refuse to host this kind of code precisely because of the security risks involved

If you need to run custom code in a post, you should use the shortcode API as it was intended, and add a custom shortcode to a plugin or theme. You can also implement custom theme templates, or make use of custom post types to get archive listings

By , for WP 4.0.1

Not working for me...

You must log in to submit a review. You can also log in or register using the form near the top of this page.