[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fidb19WIy5MyDXAqa-w4ThkbKbfdCvgsWXLKf7hO901c":3,"$fknCsVlXcs1FdMxwfGWtRlEoTPOKXrR-fukj_CcZdzVw":547,"$fyOxGs_Gx-eSLR4npXx09_7DPQX7RD7Es3K4v3_DovOk":551},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":30,"crawl_stats":26,"alternatives":38,"analysis":148,"fingerprints":525},"advanced-user-role-manager","Advanced User Role Manager","1.0","Smackcoders Inc.,","https:\u002F\u002Fprofiles.wordpress.org\u002Fsmackcoders\u002F","\u003Cp>Advanced User Role Manager is a comprehensive solution for managing WordPress user roles and capabilities, crafted by experienced human developers. This plugin extends WordPress’s default role system with advanced features for better user access control, designed with real-world use cases in mind.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Custom Role Management\u003C\u002Fstrong>: Create, edit, clone, and delete custom user roles\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Temporary Role Assignments\u003C\u002Fstrong>: Assign roles with automatic expiration\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Granular Capability Control\u003C\u002Fstrong>: Manage specific permissions for each role\u003C\u002Fli>\n\u003Cli>\u003Cstrong>OAuth2 Integration\u003C\u002Fstrong>: Secure login with external providers\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Role-Based User Filtering\u003C\u002Fstrong>: Filter and manage users by their roles\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Audit Logging\u003C\u002Fstrong>: Track all role-related changes for security\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi-Role Support\u003C\u002Fstrong>: Assign multiple roles to individual users\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Use Cases:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Membership sites requiring different access levels\u003C\u002Fli>\n\u003Cli>Multi-author blogs with varying permissions\u003C\u002Fli>\n\u003Cli>E-commerce sites with customer and staff roles\u003C\u002Fli>\n\u003Cli>Corporate websites with role-based access control\u003C\u002Fli>\n\u003Cli>Educational platforms with student and teacher roles\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Compatibility:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Works with WooCommerce and other e-commerce plugins\u003C\u002Fli>\n\u003Cli>Compatible with membership plugins\u003C\u002Fli>\n\u003Cli>Supports custom post types\u003C\u002Fli>\n\u003Cli>Built following WordPress coding standards\u003C\u002Fli>\n\u003C\u002Ful>\n","Advanced WordPress user role management with custom roles, temporary assignments, and OAuth2 integration.",0,259,"2025-10-13T11:08:00.000Z","6.8.5","6.8","7.0",[18,19,20,21,22],"advanced-user-role","capabilities","role-management","user-management","user-role-manager","https:\u002F\u002Fwww.smackcoders.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-user-role-manager.1.0.zip",100,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"smackcoders",23,39580,88,946,71,"2026-05-19T20:16:00.920Z",[39,63,81,103,126],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":60,"download_link":61,"security_score":62,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"editorial-access-manager","Editorial Access Manager","0.3.2","Taylor Lovett","https:\u002F\u002Fprofiles.wordpress.org\u002Ftlovett1\u002F","\u003Cp>A simple plugin to let you control who has access to what posts. By default in WordPress, we can create users\u003Cbr \u002F>\nand assign them to roles. Roles are automatically assigned certain capabilities. See the codex article for a list of\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FRoles_and_Capabilities\" rel=\"nofollow ugc\">Roles and Capabilities\u003C\u002Fa>. Sometimes default roles are not enough,\u003Cbr \u002F>\nand we have one-off situations. Editorial Access Manager lets you set which users or roles have access to specific\u003Cbr \u002F>\nposts. Perhaps you have a user who is a Contributor, but you want them to have access to edit one specific page? This\u003Cbr \u002F>\nplugin can help you.\u003C\u002Fp>\n\u003Ch4>Configuration Overview\u003C\u002Fh4>\n\u003Cp>There are no overarching settings for this plugin. Simply go to the edit post screen in the WordPress admin and\u003Cbr \u002F>\nconfigure access settings in the “Editorial Access Manager” meta box in the sidebar.\u003C\u002Fp>\n\u003Ch4>Managing Access by Roles\u003C\u002Fh4>\n\u003Cp>In the “Editorial Access Manager” meta box, enable custom access management by “Roles”. Once enabled, the post can only be\u003Cbr \u002F>\nedited by users that fall into those roles. However, no matter what, the Administrator role can always edit any post.\u003Cbr \u002F>\nThis if for safety reasons. You can also only use roles that have the “edit_posts” capability; therefore “Subscriber” by\u003Cbr \u002F>\ndefault cannot be used.\u003C\u002Fp>\n\u003Ch4>Managing Access by Users\u003C\u002Fh4>\n\u003Cp>In the “Editorial Access Manager” meta box, enable custom access management by “Users”. Once enabled, the post can only be\u003Cbr \u002F>\nedited by designated users. However, no matter what, any administrator can edit any post. This if for safety reasons.\u003Cbr \u002F>\nYou can also only use users that have the “edit_others_posts” capability; therefore “Subscriber” users by default\u003Cbr \u002F>\ncannot be used.\u003C\u002Fp>\n\u003Cp>Fork the plugin on \u003Ca href=\"http:\u002F\u002Fgithub.com\u002Ftlovett1\u002Feditorial-access-manager\" rel=\"nofollow ugc\">Github\u003C\u002Fa>\u003C\u002Fp>\n","Allow for granular editorial access control for all post types in WordPress",80,6374,98,8,"2017-03-18T19:23:00.000Z","4.9.29","3.6","",[56,20,57,58,59],"editorial-access-management","user-capabilities","user-permissions","user-roles","http:\u002F\u002Fwww.taylorlovett.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feditorial-access-manager.zip",85,{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":11,"downloaded":71,"rating":11,"num_ratings":11,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":75,"tags":76,"homepage":79,"download_link":80,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"roleguard","RoleGuard — Temporary Role Manager","1.0.0","Ravinthranath A","https:\u002F\u002Fprofiles.wordpress.org\u002Fravinthranath\u002F","\u003Cp>RoleGuard lets you assign \u003Cstrong>time-limited roles\u003C\u002Fstrong> to any WordPress user. When the clock runs out, the user is automatically reverted to their original role. No more forgotten elevated permissions, no more security risks from stale access.\u003C\u002Fp>\n\u003Ch4>Who is this for?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Agencies\u003C\u002Fstrong> managing freelance contractors who need temporary editor access\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi-author blogs\u003C\u002Fstrong> bringing in guest contributors for a limited run\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Membership sites\u003C\u002Fstrong> offering trial access to premium content\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Client sites\u003C\u002Fstrong> where clients need temporary admin for review and approval\u003C\u002Fli>\n\u003Cli>\u003Cstrong>LMS platforms\u003C\u002Fstrong> with time-limited instructor or teaching assistant roles\u003C\u002Fli>\n\u003Cli>\u003Cstrong>eCommerce stores\u003C\u002Fstrong> granting seasonal staff temporary shop manager access\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How it works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Go to any user’s profile page\u003C\u002Fli>\n\u003Cli>Select a temporary role and expiration (quick presets: 7, 14, 30, or 90 days)\u003C\u002Fli>\n\u003Cli>RoleGuard stores the original role, applies the new one, and starts the countdown\u003C\u002Fli>\n\u003Cli>When time expires, the user’s role is automatically reverted to what it was before\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Free Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Assign temporary roles with date-based expiration\u003C\u002Fli>\n\u003Cli>Quick presets: 7, 14, 30, or 90 days — or set any custom date\u003C\u002Fli>\n\u003Cli>Automatic role reversion via WP-Cron (hourly checks)\u003C\u002Fli>\n\u003Cli>Admin safety net: checks on admin page loads if cron hasn’t run in 2+ hours\u003C\u002Fli>\n\u003Cli>Email notifications to both users and admins on role expiry\u003C\u002Fli>\n\u003Cli>Advance warning emails (configurable: 1–30 days before expiry)\u003C\u002Fli>\n\u003Cli>“Temp Role” and “Expires” columns in the Users list (sortable, color-coded)\u003C\u002Fli>\n\u003Cli>Dedicated RoleGuard section on every Edit User profile screen\u003C\u002Fli>\n\u003Cli>Bulk action: revoke temporary roles for multiple users at once\u003C\u002Fli>\n\u003Cli>Privilege escalation prevention — cannot assign roles at or above your own level\u003C\u002Fli>\n\u003Cli>Up to 10 active temporary role assignments\u003C\u002Fli>\n\u003Cli>Settings page with active assignments dashboard\u003C\u002Fli>\n\u003Cli>Fully translatable with proper text domain\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>What makes RoleGuard different?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Zero configuration\u003C\u002Fstrong> — activate and start assigning, no setup wizard\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Security first\u003C\u002Fstrong> — privilege escalation prevention built in from day one\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reliable expiration\u003C\u002Fstrong> — hourly cron + admin safety net means roles never get stuck\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Clean reversion\u003C\u002Fstrong> — stores the exact original role, not just a fallback default\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightweight\u003C\u002Fstrong> — no JavaScript frameworks, no external API calls, no bloat\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>RoleGuard Pro\u003C\u002Fh4>\n\u003Cp>Need more? \u003Ca href=\"https:\u002F\u002Froleguard.dev\u002Fpro\" rel=\"nofollow ugc\">RoleGuard Pro\u003C\u002Fa> is a separate add-on that unlocks:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Unlimited temporary role assignments (removes the 10-user limit)\u003C\u002Fli>\n\u003Cli>Full audit log with filtering, pagination, and export\u003C\u002Fli>\n\u003Cli>Bulk assignment page with CSV import\u003C\u002Fli>\n\u003Cli>Scheduled roles with future start dates\u003C\u002Fli>\n\u003Cli>Slack and Zapier webhook notifications\u003C\u002Fli>\n\u003Cli>Extended REST API for external integrations\u003C\u002Fli>\n\u003Cli>WordPress dashboard widget showing upcoming expirations\u003C\u002Fli>\n\u003Cli>License-gated — one clean upgrade, no feature nags\u003C\u002Fli>\n\u003C\u002Ful>\n","Assign time-limited roles to freelancers, contractors, and guest authors. Roles expire automatically and revert — zero cleanup needed.",187,"2026-03-17T11:45:00.000Z","6.9.4","6.0","7.4",[77,20,78,21,59],"role-expiration","temporary-access","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Froleguard\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Froleguard.1.0.0.zip",{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":89,"downloaded":90,"rating":49,"num_ratings":91,"last_updated":92,"tested_up_to":73,"requires_at_least":74,"requires_php":75,"tags":93,"homepage":98,"download_link":99,"security_score":100,"vuln_count":101,"unpatched_count":11,"last_vuln_date":102,"fetched_at":27},"members","Members – Membership & User Role Editor Plugin","3.2.19","Blair Williams","https:\u002F\u002Fprofiles.wordpress.org\u002Fsupercleanse\u002F","\u003Cp>Members is a roles and capabilities based WordPress membership plugin. It gives your users the ultimate member experience by giving you powerful tools to add roles and capabilities and assign them to your users.\u003C\u002Fp>\n\u003Cp>Members allows you to set permissions to restrict content on your site by providing a simple user interface (UI) for WordPress’ powerful roles and capabilities system, which has traditionally only been available to developers who know how to code this by hand.\u003C\u002Fp>\n\u003Ch3>Plugin Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Role Editor:\u003C\u002Fstrong> Allows you to edit, create, and delete roles as well as capabilities for these roles.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multiple User Roles:\u003C\u002Fstrong> Give one, two, or even more roles to any user.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Explicitly Deny Capabilities:\u003C\u002Fstrong> Deny specific capabilities to specific user roles.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Clone Roles:\u003C\u002Fstrong> Build a new role by cloning an existing role.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Content Permissions \u002F Restricted Content:\u003C\u002Fstrong> Protect content to determine which users (by role) have access to post content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Shortcodes:\u003C\u002Fstrong> Shortcodes to control who has access to content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Widgets:\u003C\u002Fstrong> A login form widget and users widget to show in your theme’s sidebars.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Private Site:\u003C\u002Fstrong> You can make your site and its feed completely private if you want.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Plugin Integration:\u003C\u002Fstrong> Members is highly recommended by other WordPress developers. Many existing plugins integrate their custom roles and capabilities directly into it.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Seamless MemberPress Integration\u003C\u002Fh4>\n\u003Cp>If you’re looking to build a business out of your membership site by creating paid memberships there’s no better way than to \u003Ca href=\"https:\u002F\u002Fmemberpress.com\u002Fplans\u002Fpricing\u002F?utm_source=members_plugin&utm_medium=link&utm_campaign=readme&utm_content=integration_1\" rel=\"nofollow ugc\">use MemberPress\u003C\u002Fa>. Members and \u003Ca href=\"https:\u002F\u002Fmemberpress.com\u002Fplans\u002Fpricing\u002F?utm_source=members_plugin&utm_medium=link&utm_campaign=readme&utm_content=integration_2\" rel=\"nofollow ugc\">MemberPress\u003C\u002Fa> work together to provide the ultimate member experience and will help you start and profit from your amazing WordPress membership sites!\u003C\u002Fp>\n\u003Ch4>All Add-ons are now included\u003C\u002Fh4>\n\u003Cp>Members now includes ALL of it’s add-ons completely free of charge! Here are some of the awesome features they add to Members:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Block Permissions:\u003C\u002Fstrong> Allows site owners to hide or show blocks based on user logged-in status, user role, or capability.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Privacy Caps:\u003C\u002Fstrong> Creates additional capabilities for control over WordPress’ privacy and personal data features (GDPR).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Access:\u003C\u002Fstrong> Allows site administrators to control which users have access to the WordPress admin via role.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Core Create Caps:\u003C\u002Fstrong> Adds the create_posts and create_pages caps to posts\u002Fpages to separate them from their edit_* counterparts, providing more flexible editing capabilities.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Categories and Tag Caps:\u003C\u002Fstrong> The Category and Tag Caps add-on creates custom capabilities for the core category and post tag taxonomies. This allows site owners to have precise control over who can manage, edit, delete, or assign categories\u002Ftags.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Role Levels:\u003C\u002Fstrong> Exposes the old user levels system, which fixes the WordPress author drop-down bug when users don’t have a role with one of the assigned levels.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Role Hierarchy:\u003C\u002Fstrong> Creates a hierarchical roles system.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>ACF Integration:\u003C\u002Fstrong> Creates custom capabilities for the Advanced Custom Fields (ACF) plugin for managing with the Members plugin.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>EDD Integration:\u003C\u002Fstrong> Integrates the Easy Digital Downloads plugin capabilities into the Members plugin’s role manager.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>GiveWP Integration:\u003C\u002Fstrong> Integrates the GiveWP and GiveWP Recurring Donations plugin capabilities into the Members plugin’s role manager.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Meta Box Integration:\u003C\u002Fstrong> Integrates the Meta Box plugin capabilities into the Members plugin’s role manager.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce Integration:\u003C\u002Fstrong> Integrates the WooCommerce plugin capabilities into the Members plugin’s role manager.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more info, visit the \u003Ca href=\"https:\u002F\u002Fmembers-plugin.com\u002F?utm_source=members_plugin&utm_medium=link&utm_campaign=readme&utm_content=learn_more\" rel=\"nofollow ugc\">Members plugin home page\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Like this plugin?\u003C\u002Fh3>\n\u003Cp>The Members plugin is a massive project with 1,000s of lines of code to maintain. A major update can take weeks or months of work. We don’t make any money directly from this plugin while other, similar plugins charge substantial fees to even download them or get updates. Please consider helping the cause by:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fmemberpress.com\u002F?utm_source=members_plugin&utm_medium=link&utm_campaign=readme&utm_content=memberpress_upgrade\" rel=\"nofollow ugc\">Adding MemberPress\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fmembers\u002Freviews\u002F?filter=5#new-post\" rel=\"ugc\">Rating the plugin\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>If you need plugin support from us, you can \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fmembers\u002F\" rel=\"ugc\">visit our support page\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Plugin Development\u003C\u002Fh3>\n\u003Cp>If you’re a theme author, plugin author, or just a code hobbyist, you can follow the development of this plugin on it’s \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcaseproof\u002Fmembers\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa>.\u003C\u002Fp>\n","The best WordPress membership and user role editor plugin. User Roles & Capabilities editor helps you restrict content in just a few clicks.",300000,6811812,1248,"2026-02-13T16:00:00.000Z",[94,19,95,96,97],"access","memberships","permissions","roles","https:\u002F\u002Fmembers-plugin.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmembers.3.2.19.zip",99,1,"2024-12-10 00:00:00",{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":111,"downloaded":112,"rating":113,"num_ratings":114,"last_updated":115,"tested_up_to":73,"requires_at_least":116,"requires_php":117,"tags":118,"homepage":121,"download_link":122,"security_score":123,"vuln_count":124,"unpatched_count":11,"last_vuln_date":125,"fetched_at":27},"capability-manager-enhanced","PublishPress Capabilities – User Role Editor, Access Permissions, User Capabilities, Admin Menus","2.42.0","PublishPress","https:\u002F\u002Fprofiles.wordpress.org\u002Fpublishpress\u002F","\u003Cp>PublishPress Capabilities is the access control plugin for WordPress. You can control all the capabilities and permissions on your WordPress site. We built this user role editor plugin so you have an easy and powerful way to manage user capabilities.\u003C\u002Fp>\n\u003Cp>You can use PublishPress Capabilities to \u003Cstrong>manage all your WordPress user roles\u003C\u002Fstrong>, from Administrators and Editors to Authors, Contributors, Subscribers and custom roles. Each user role can have the exact capabilities that your site needs.\u003C\u002Fp>\n\u003Cp>PublishPress Capabilities can clean up your post editing screen, admin area, and even the Profile screen. You can decide what authors see when they’re writing posts. You can \u003Cstrong>hide any feature on the Gutenberg or Classic Editor screens\u003C\u002Fstrong>. You can remove items in the WordPress dashboard and inside user accounts screens.\u003C\u002Fp>\n\u003Cp>The Pro version of PublishPress Capabilities has many extra features, including the ability to edit admin menu links, clean up the post editing screen, block admin pages by URL, and much more.\u003C\u002Fp>\n\u003Ch3>PublishPress Capabilities Pro\u003C\u002Fh3>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Upgrade to Capabilities Pro\u003C\u002Fstrong>\u003Cbr \u002F>\n  This plugin is the free version of PublishPress Capabilities. The Pro version of Capabilities has all the features you need to control permissions for your WordPress users. With Capabilities Pro you can manage access to posts, pages, media and custom post types. \u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fcapabilities\" title=\"Capabilities Pro\" rel=\"nofollow ugc\">Click here to control access to your WordPress site with Capabilities Pro!\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>The Key Features of PublishPress Capabilities\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\u003Cstrong>Roles\u003C\u002Fstrong>: You can edit, create, duplicate any WordPress user role.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Capabilities\u003C\u002Fstrong>: You can control all WordPress and plugin capabilities.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Editor Features\u003C\u002Fstrong>: You decide what users see when they’re writing posts in Gutenberg or the Classic Editor.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Features\u003C\u002Fstrong>: You can remove items from the WordPress admin, toolbar, and even dashboard widgets.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Styles\u003C\u002Fstrong>: Customize the admin area with your own branding.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Menus (Pro version)\u003C\u002Fstrong>: You can edit admin menu links and control who can access them.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Profile Features\u003C\u002Fstrong>: You can hide features for users in the “Profile” screen.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Redirects\u003C\u002Fstrong>: You can hide features for users in the “Profile” screen.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Frontend Features\u003C\u002Fstrong>: This feature allows you to modify the site’s frontend by hiding or adding CSS.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Navigation Menus\u003C\u002Fstrong>: You can restrict access to navigation menus by user role, or logged in status.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User Testing\u003C\u002Fstrong>: Safely test any user’s account without resetting their password.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Notices\u003C\u002Fstrong>: Organize all the message and advertisements in your admin area.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Roles\u003C\u002Fh3>\n\u003Cp>PublishPress Capabilities gives you detailed control over all the permission levels on your WordPress site. You can edit user roles on your site, from Administrator and Editor to Contributor and Subscriber.\u003C\u002Fp>\n\u003Cp>With PublishPress Capabilities you can create or copy any existing WordPress user role. These roles can be customized in exactly the same way as the default WordPress roles. These new roles can be added to single sites or to an entire multisite network.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fcapabilities-screen\u002F\" rel=\"nofollow ugc\">Click here to see how to manage user roles\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Capabilities\u003C\u002Fh3>\n\u003Cp>With the Capabilities plugin, you can choose who can Publish, Read, Edit and Delete content. You can choose permissions for posts, pages, custom content types, categories, tags, and more.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fpermissions-start\u002F\" rel=\"nofollow ugc\">Click here to see how to manage capabilities\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Many WordPress users have sites with custom post types. This can be done using custom code, a theme, or with a plugin. No matter how your post type is created, PublishPress Capabilities lets you enforce and assign distinct capabilities for your post type.\u003C\u002Fp>\n\u003Cp>PublishPress Capabilities enables you to add extra permissions to the taxonomies on your site. This feature includes the default Categories and Tags, but also applies to other taxonomies. For example, in WooCommerce you can apply custom permissions to Product categories, Product tags, and Product shipping classes. You can enforce and assign “Manage”, “Edit” and “Assign” distinct capabilities for all your taxonomies.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Ftaxonomy-specific-capabilities\u002F\" rel=\"nofollow ugc\">Click here to learn about taxonomy permissions\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Editor Features\u003C\u002Fh3>\n\u003Cp>PublishPress Capabilities has an option called “Editor Features” allows you to clean up the post editing screen. You can decide what users see when they’re writing posts. You can hide anything on the Gutenberg or Classic Editor screens. You can hide boxes inside the sidebar such Tags, Categories, or Excerpt. You can the “Publish” button. You can even hide the post title, body, or permalink. This is a great alternative to plugins such as Adminimize.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Feditor-features\u002F\" rel=\"nofollow ugc\">Click here to learn about hiding editor features\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>WordPress has a feature called “metaboxes”. This is a strange name, but you have seen them often if you use WordPress. When a user edits a post, the edit screen has several default boxes: Status & visibility, Featured image, Categories, Tags, etc. These boxes are metaboxes. Plugins can add also add their own metaboxes. The Pro version of the PublishPress Capabilities plugin allows you to hide metaboxes for specific user roles.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fhide-metaboxes-in-wordpress-posts\u002F\" rel=\"nofollow ugc\">Click here to learn about hiding metaboxes\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Admin Features\u003C\u002Fh3>\n\u003Cp>Admin Features allows you to hide items in the WordPress admin area and toolbar. You can decide what users see in your WordPress dashboard. You can use this option to hide all the links in the toolbar including “About WordPress”, “Visit Site” and more. You can also hide dashboard widgets such as “At a Glance”, “Quick Draft”, and “WordPress Events and News”.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fadmin-features-screen\u002F\" rel=\"nofollow ugc\">Click here to learn about removing toolbar items and dashboard widgets\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Admin Styles\u003C\u002Fh3>\n\u003Cp>The Admin Styles feature allows you to customize the WordPress admin area with your own branding. You can change the color scheme and visual features for the admin screens. It’s also possible to have different settings for different user roles.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fadmin-styles\u002F\" rel=\"nofollow ugc\">Click here to learn about customizing the admin area with your own branding.\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Admin Menus (Pro version)\u003C\u002Fh3>\n\u003Cp>With PublishPress Capabilities you can edit all your admin menu links. You can also restrict access to admin menu screens by user roles. This is useful because many plugin do not have any way to control who can access their admin screens.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fadmin-menus-screen\u002F\" rel=\"nofollow ugc\">Click to see how to block Admin menu access\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Profile Features\u003C\u002Fh3>\n\u003Cp>“Profile Features” allows you to hide features in the “Profile” screen. You can decide what users see in their accounts.  This “Profile” area is used as a dumping ground for the settings of many different plugins.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fprofile-features\u002F\" rel=\"nofollow ugc\">Click here to learn about the Profile Features option\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Redirects\u003C\u002Fh3>\n\u003Cp>PublishPress Capabilities has a “Redirects” screen that allows you to control where users are sent before and after logging in to your site. There are four options available:\u003Cbr \u002F>\n* Login Redirect: Where users are sent when they log in.\u003Cbr \u002F>\n* Logout Redirect: Where users are sent when they log out.\u003Cbr \u002F>\n* Registration Redirect: Where users are sent when they register on your site.\u003Cbr \u002F>\n* First Login Redirect: Where users are sent when they log in to your site for the first time.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fredirects\u002F\" rel=\"nofollow ugc\">Click to see how to redirect users\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Frontend Features\u003C\u002Fh3>\n\u003Cp>The “Frontend Features” screen allows you to modify the features that show on the frontend of your website. You can choose to  hide IDs or classes, add CSS styles, or add body classes. All of these changes can be targeted to specific user roles.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Ffrontend-features\u002F\" rel=\"nofollow ugc\">Click here to learn about frontend changes\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Navigation Menu Restrictions\u003C\u002Fh3>\n\u003Cp>PublishPress Capabilities enables you to restrict access to navigation menus by roles, logged in and logged out users. This is useful because a default WordPress site does not give you way to control the visibility of your links.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fnav-menus\u002F\" rel=\"nofollow ugc\">Click to see how to block frontend menu access\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>User Testing \u002F User Switching\u003C\u002Fh3>\n\u003Cp>If you run a WordPress website which allows users to log in, you probably spend a lot of time answering account questions or solving website bugs for your users. Site administrators often have to browse their site and see exactly what the user sees. They need to test the user’s account without resetting their password. This is possible with PublishPress Capabilities.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fuser-testing\u002F\" rel=\"nofollow ugc\">Click here to learn about user testing\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Admin Notices\u003C\u002Fh3>\n\u003Cp>This feature helps organize messages and advertisements in your WordPress admin area. It helps remove clutter from your WordPress experience. This feature will organize all these admin notices into a new area in the top-right corner of your screen. This “Admin Notices” area will show all the notices in a clean, organized area. Nothing is changed about the notices so you can deal with them as normal. The only difference is that you won’t be pestered by these notices on your main admin dashboard.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fadmin-notices-feature\u002F\" rel=\"nofollow ugc\">Click here to learn about Admin Notices\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>PublishPress Capabilities is Safe to Use\u003C\u002Fh3>\n\u003Cp>PublishPress Capabilities is completely \u003Cstrong>safe to use\u003C\u002Fstrong>. Every time you change your site’s permissions, this plugin will take a backup that you can restore if anything goes wrong. You can use these backups to migrate your roles and permissions from one site to another.\u003C\u002Fp>\n\u003Cp>This security feature is also very helpful if you want to test out changes on your site, or if you’ve installed a new plugin that has changed your site’s permissions.\u003C\u002Fp>\n\u003Cp>Every time you change your permissions, the PublishPress Capabilities plugin will now automatically create a backup. If you make a mistake, go to the “Backup” menu link and you’ll be able to roll back to a previous version.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fbackup-restore-permissions\u002F\" rel=\"nofollow ugc\">Click here to see how to backup permissions\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Support for Media Library Permissions\u003C\u002Fh3>\n\u003Cp>PublishPress Capabilities enables you to decide who can upload, edit and delete files from your site’s Media Library. By default, only Administrators are able to delete files in your Media Library. Subscribers and Contributors are not even allowed to upload files. You can customize these permissions for the Media Library and also the Featured Image box.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fcontrol-media-library-access\u002F\" rel=\"nofollow ugc\">Click here to learn about Media Library permissions\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Support for WooCommerce Permissions\u003C\u002Fh3>\n\u003Cp>We mentioned earlier that PublishPress Capabilities has special support for WooCommerce taxonomies. This is true for the rest of WooCommerce also. With PublishPress Capabilities you can control permissions for WooCommerce products, orders and coupons.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fwoocommerce-permissons\u002F\" rel=\"nofollow ugc\">Click here to learn about WooCommerce permissions\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Support for WordPress Multisite\u003C\u002Fh3>\n\u003Cp>PublishPress Capabilities allows you to control permissions on a single site or across your whole network. Every time you update permissions in PublishPress Capabilities, you can choose to sync those changes across your multisite network.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fknowledge-base\u002Fmultisite-network\u002F\" rel=\"nofollow ugc\">Click here to learn about multisite permissions\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Join PublishPress and get the Pro plugins\u003C\u002Fh3>\n\u003Cp>The Pro versions of the PublishPress plugins are well worth your investment. The Pro versions have extra features and faster support. \u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fpricing\u002F\" rel=\"nofollow ugc\">Click here to join PublishPress\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Join PublishPress and you’ll get access to these Pro plugins:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fauthors\" rel=\"nofollow ugc\">PublishPress Authors Pro\u003C\u002Fa> allows you to add multiple authors and guest authors to WordPress posts.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fblocks\" rel=\"nofollow ugc\">PublishPress Blocks Pro\u003C\u002Fa> has everything you need to build professional websites with the WordPress block editor.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fcapabilities\" rel=\"nofollow ugc\">PublishPress Capabilities Pro\u003C\u002Fa> is the plugin to manage your WordPress user roles, permissions, and capabilities.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fchecklists\" rel=\"nofollow ugc\">PublishPress Checklists Pro\u003C\u002Fa> enables you to define tasks that must be completed before content is published.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Ffuture\" rel=\"nofollow ugc\">PublishPress Future Pro\u003C\u002Fa> is the plugin for scheduling changes to your posts.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fpermissions\" rel=\"nofollow ugc\">PublishPress Permissions Pro\u003C\u002Fa>  is the plugin for restricted content and advanced WordPress permissions.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fpublishpress\" rel=\"nofollow ugc\">PublishPress Planner Pro\u003C\u002Fa> is the plugin for managing and scheduling WordPress content.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Frevisions\" rel=\"nofollow ugc\">PublishPress Revisions Pro\u003C\u002Fa> allows you to update your published pages with teamwork and precision.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fseries\" rel=\"nofollow ugc\">PublishPress Series Pro\u003C\u002Fa> enables you to group content together into a series.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fshortlinks\" rel=\"nofollow ugc\">PublishPress Shortlinks Pro\u003C\u002Fa> allows you to create custom URLs for your posts and external links. \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpublishpress.com\u002Fstatuses\" rel=\"nofollow ugc\">PublishPress Statuses Pro\u003C\u002Fa> enables you to create additional publishing steps for your posts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Together, these plugins are a suite of powerful publishing tools for WordPress. If you need to create a professional workflow in WordPress, with moderation, revisions, permissions and more… then you should try PublishPress.\u003C\u002Fp>\n\u003Ch3>Bug Reports\u003C\u002Fh3>\n\u003Cp>Bug reports for PublishPress Capabilities are welcomed in our \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpublishpress\u002Fpublishpress-capabilities\" rel=\"nofollow ugc\">repository on GitHub\u003C\u002Fa>. Please note that GitHub is not a support forum, and that issues that aren’t properly qualified as bugs will be closed.\u003C\u002Fp>\n","PublishPress Capabilities is the access control plugin. You can manage user capabilities, permissions, user roles, admin menus and more.",100000,3995173,94,142,"2026-04-13T18:11:00.000Z","5.5","7.2.5",[119,19,96,120,59],"admin-menus","user-role-editor","https:\u002F\u002Fpublishpress.com\u002Fcapability-manager\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcapability-manager-enhanced.2.42.0.zip",86,5,"2026-02-20 00:00:00",{"slug":127,"name":128,"version":129,"author":130,"author_profile":131,"description":132,"short_description":133,"active_installs":134,"downloaded":135,"rating":123,"num_ratings":136,"last_updated":137,"tested_up_to":73,"requires_at_least":138,"requires_php":54,"tags":139,"homepage":144,"download_link":145,"security_score":123,"vuln_count":146,"unpatched_count":11,"last_vuln_date":147,"fetched_at":27},"new-user-approve","New User Approve","3.2.6","Saad Iqbal","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaadiqbal\u002F","\u003Cp>🚀 \u003Ca href=\"https:\u002F\u002Fnewuserapprove.com\u002Fpricing\u002F?utm_source=wp_org&utm_medium=read_me\" rel=\"nofollow ugc\">Go Pro\u003C\u002Fa> | 📘 \u003Ca href=\"https:\u002F\u002Fnewuserapprove.com\u002Fdocumentation\u002Fintroduction\u002F?utm_source=wp_org&utm_medium=read_me\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> | 📱 \u003Ca href=\"https:\u002F\u002Fnewuserapprove.com\u002Fmobile-app\u002F?utm_source=wp_org&utm_medium=read_me\" rel=\"nofollow ugc\">Mobile App\u003C\u002Fa> | 💬 \u003Ca href=\"https:\u002F\u002Fnewuserapprove.com\u002Fget-in-touch\u002F?utm_source=wp_org&utm_medium=read_me\" rel=\"nofollow ugc\">Contact Us\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FKlhWmlfuaVg?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>Running a WordPress site is exciting but it also means you’re constantly battling spam registrations, fake accounts, and unwanted users. New User Approve works as a default WordPress registration system that does not let anyone sign up and instantly gain access. Because its your responsibility as a site owner as exactly who’s allowed into your site before any user log in.\u003C\u002Fp>\n\u003Cp>New User Approve comes is a powerful WordPress user approval plugin that puts you in full control of your community, membership site, online store, or private portal. With this manual user approval plugin, you can moderate user registration, protect your content, and keep your website free from unwanted registration requests.\u003Cbr \u002F>\nWhether you want to restrict user access before approval, prevent fake user signups, or simply make sure every new member is legit, New User Approve makes it easy, professional, and efficient.\u003C\u002Fp>\n\u003Ch3>⭐ New User Approve Offers Mobile App for Faster User Approvals ⭐\u003C\u002Fh3>\n\u003Cp>New User Approve also includes a dedicated mobile app that lets you manage registrations without opening your WordPress dashboard. It gives you quick access to every pending user and keeps your site protected even when you are away from your computer.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>With the mobile app, you can:\u003C\u002Fstrong>\u003Cbr \u002F>\n⚡ Review complete user profiles in a clean, mobile-friendly layout\u003Cbr \u002F>\n⚡ Approve or deny registrations with single tap\u003Cbr \u002F>\n⚡ Verify identities with clear, mobile-friendly user profiles\u003Cbr \u002F>\n⚡ Keep full control of who joins your site without logging into WordPress\u003Cbr \u002F>\n⚡ Stay updated with instant push notifications for every new signup\u003C\u002Fp>\n\u003Cp>This feature ensures you never miss an approval request and keeps your site consistently secure, responsive, and easy to manage from anywhere.\u003C\u002Fp>\n\u003Ch3>⭐ Why You Need New User Approve ⭐\u003C\u002Fh3>\n\u003Cp>Imagine running a membership site, community forum, or private business portal where quality and security matter. The last thing you want is spam bots flooding your database or strangers sneaking into confidential areas.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New User Approve helps you:\u003C\u002Fstrong>\u003Cbr \u002F>\n⚡ \u003Cstrong>Stop spam registrations\u003C\u002Fstrong> and fake accounts before they ever log in\u003Cbr \u002F>\n⚡ \u003Cstrong>Verify user identities\u003C\u002Fstrong> by reviewing each signup manually\u003Cbr \u002F>\n⚡ Maintain \u003Cstrong>complete control\u003C\u002Fstrong> over who becomes part of your community\u003Cbr \u002F>\n⚡ Create a \u003Cstrong>safe, trusted space\u003C\u002Fstrong> for your members or customers\u003C\u002Fp>\n\u003Cp>Unlike generic WordPress plugins that simply hide login pages, New User Approve adds a true \u003Cstrong>user verification before approval\u003C\u002Fstrong> process. It gives you confidence to grow your site without worrying about who’s lurking behind those new user accounts.\u003C\u002Fp>\n\u003Ch3>🛠 How It Works\u003C\u002Fh3>\n\u003Cp>Here’s how \u003Cstrong>New User Approve\u003C\u002Fstrong>, your go-to \u003Cstrong>member approval plugin\u003C\u002Fstrong>, transforms your registration flow:\u003C\u002Fp>\n\u003Cp>When someone registers on your WordPress site, you’ll receive an email alert. You can then decide to approve or deny their account. The plugin automatically emails the user to let them know the outcome.\u003C\u002Fp>\n\u003Cp>👁If approved, the user receives their login details and can access your site immediately.\u003Cbr \u002F>\n👁If denied, they’ll be kept out—and can’t even log in.\u003Cbr \u002F>\n👁Pending users stay locked out until you make a decision.\u003C\u002Fp>\n\u003Cp>This makes it simple to \u003Cstrong>restrict user access before approval\u003C\u002Fstrong> and ensure only the right people become part of your online community.\u003C\u002Fp>\n\u003Cp>Already have users on your website? No problem.\u003C\u002Fp>\n\u003Cp>Existing users stay approved automatically when you install New User Approve. You can also change someone’s approval status at any time, with easy search tools for managing pending, approved, or denied users.\u003C\u002Fp>\n\u003Ch3>⌛ Save Time with Zapier Automation\u003C\u002Fh3>\n\u003Cp>Want to work smarter? Connect \u003Cstrong>New User Approve\u003C\u002Fstrong> to Zapier to automate routine tasks.\u003Cbr \u002F>\nFor example:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Trigger a Slack message when a user is approved\u003C\u002Fli>\n\u003Cli>Add approved users to a Google Sheet\u003C\u002Fli>\n\u003Cli>Send emails through Gmail when someone’s denied\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>With Zapier, you can integrate the plugin with thousands of apps without writing a single line of code. It’s perfect for businesses looking to streamline their processes while maintaining strict \u003Cstrong>user verification before approval.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>🤝 Invite Trusted Users Instantly\u003C\u002Fh3>\n\u003Cp>Sometimes you want trusted people—like staff, VIPs, or clients—to skip the approval queue. With New User Approve’s invitation codes, you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>📜 Generate unique codes manually or automatically\u003C\u002Fli>\n\u003Cli>💳 Give those codes to users so they’re \u003Cstrong>auto-approved\u003C\u002Fstrong> upon registration\u003C\u002Fli>\n\u003Cli>💻 Manage, edit, or disable codes anytime\u003C\u002Fli>\n\u003Cli>🛒 Seamlessly integrate codes with WooCommerce registrations\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This feature makes it easier than ever to onboard important members without sacrificing security.\u003C\u002Fp>\n\u003Ch3>☀ A Fresh New Interface\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>New User Approve\u003C\u002Fstrong> has been redesigned with a crisp, modern look that’s clean and user-friendly. The updated interface is intuitive for admins and gives users confidence in your website’s professionalism.\u003C\u002Fp>\n\u003Cp>Whether you’re a WordPress beginner or seasoned WordPress user, managing new user approvals has never been easier or looked this good.\u003C\u002Fp>\n\u003Ch3>⭐ Compatible with Top Plugins\u003C\u002Fh3>\n\u003Cp>New User Approve integrates beautifully with popular WordPress plugins, including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WooCommerce\u003C\u002Fli>\n\u003Cli>MemberPress\u003C\u002Fli>\n\u003Cli>WP-Foro\u003C\u002Fli>\n\u003Cli>LearnDash\u003C\u002Fli>\n\u003Cli>Ultimate Member\u003C\u002Fli>\n\u003Cli>BuddyPress\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>So, whether you’re running a store, a membership site, or a thriving online community, this user approval plugin fits right in.\u003C\u002Fp>\n\u003Ch3>🖍 Customize Everything\u003C\u002Fh3>\n\u003Cp>For those who want complete flexibility, New User Approve lets you customize nearly every step of the user approval process:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Tailor the welcome message above the login or registration form\u003C\u002Fli>\n\u003Cli>Personalize messages for pending or denied users\u003C\u002Fli>\n\u003Cli>Craft unique notification emails for users and admins\u003C\u002Fli>\n\u003Cli>Suppress denial notifications if preferred\u003C\u002Fli>\n\u003Cli>Use HTML formatting in emails for a branded, professional look\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>There’s even a commercial add-on available at \u003Ca href=\"https:\u002F\u002Fnewuserapprove.com\u002Fpricing\u002F?utm_source=wp_org&utm_medium=read_me\" rel=\"nofollow ugc\">New User Approve\u003C\u002Fa> that unlocks additional powerful features for businesses and growing sites.\u003C\u002Fp>\n\u003Ch3>📌 Documentation\u003C\u002Fh3>\n\u003Cp>Need help getting started? \u003Ca href=\"https:\u002F\u002Fnewuserapprove.com\u002F?utm_source=wp_org&utm_medium=read_me\" rel=\"nofollow ugc\">View the detailed technical documentation here\u003C\u002Fa>. It walks you through every step of installing and configuring \u003Cstrong>New User Approve\u003C\u002Fstrong>, plus troubleshooting tips if you get stuck.\u003C\u002Fp>\n\u003Ch3>🔥 New User Approve Pro Features\u003C\u002Fh3>\n\u003Cp>Upgrade to the premium version for advanced features like:\u003C\u002Fp>\n\u003Cp>✔ Customizable Email Notifications\u003Cbr \u002F>\n✔ Invite-Only Registration\u003Cbr \u002F>\n✔ Bulk Invitation Code Generator\u003Cbr \u002F>\n✔ Email Invitation Codes\u003Cbr \u002F>\n✔ Import Invitation Codes\u003Cbr \u002F>\n✔ Auto-Approve Trusted Email Domains\u003Cbr \u002F>\n✔ Blacklist Generic or Suspicious Email Domains\u003Cbr \u002F>\n✔ Registration Deadlines\u003Cbr \u002F>\n✔ Auto-Approve Selected User Roles\u003Cbr \u002F>\n✔ User Role Change Requests\u003Cbr \u002F>\n✔ Extended Zapier Triggers\u003C\u002Fp>\n\u003Ch3>✨ Translations\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>New User Approve\u003C\u002Fstrong> is already available in many languages thanks to an amazing community of translators. You can help expand translations further with tools like Poedit.\u003C\u002Fp>\n\u003Cp>Current supported languages include:\u003C\u002Fp>\n\u003Cp>Belarusian, Brazilian Portuguese, Bulgarian, Catalan, Croatian, Czech, Danish, Dutch, Estonian, Finnish, French, German, Greek, Hebrew, Hungarian, Italian, Lithuanian, Persian, Polish, Romanian, Russian, Serbo-Croatian, Slovak, Spanish, Swedish.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New User Approve\u003C\u002Fstrong> isn’t just a plugin. It’s your ultimate solution for user verification before approval, helping you moderate user registration, prevent fake user signups, and stop spam registrations for good.\u003Cbr \u002F>\nIf you need a reliable manual user approval plugin for WordPress, get it now!\u003C\u002Fp>\n","WordPress user approval plugin to moderate registrations. Approve or deny real users and prevent fake signups to control who registers on site.",20000,869556,130,"2026-04-01T10:11:00.000Z","4.0",[140,141,21,142,143],"registration","user-approval","user-registration","users","http:\u002F\u002Fnewuserapprove.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnew-user-approve.3.2.6.zip",9,"2026-03-20 00:00:00",{"attackSurface":149,"codeSignals":258,"taintFlows":288,"riskAssessment":518,"analyzedAt":524},{"hooks":150,"ajaxHandlers":208,"restRoutes":252,"shortcodes":253,"cronEvents":254,"entryPointCount":257,"unprotectedCount":101},[151,157,160,165,169,174,178,180,183,187,190,193,196,200,204,206],{"type":152,"name":153,"callback":154,"file":155,"line":156},"action","admin_notices","closure","admin\\views\\class-advausro-manager.php",45,{"type":152,"name":158,"callback":154,"file":159,"line":123},"admin_footer","admin\\views\\class-advausro-oauth.php",{"type":152,"name":161,"callback":162,"file":163,"line":164},"admin_menu","SmackCoders\\advanceduserrolemanager\\advausro_add_audit_log_menu","includes\\modules\\class-advausro-audit-log.php",774,{"type":152,"name":166,"callback":167,"file":163,"line":168},"init","SmackCoders\\advanceduserrolemanager\\advausro_fix_empty_audit_log_dates",815,{"type":152,"name":170,"callback":171,"file":172,"line":173},"admin_init","advausro_register_oauth2_settings","includes\\modules\\class-advausro-oauth.php",21,{"type":152,"name":175,"callback":176,"file":172,"line":177},"login_form","advausro_add_oauth2_login_button",22,{"type":152,"name":166,"callback":179,"file":172,"line":32},"advausro_handle_oauth2_callback",{"type":152,"name":181,"callback":176,"file":172,"line":182},"manage_users_extra_tablenav",24,{"type":152,"name":184,"callback":185,"file":186,"line":182},"edit_user_profile_update","advausro_assign_custom_role_capabilities","includes\\modules\\class-advausro-role.php",{"type":152,"name":188,"callback":185,"file":186,"line":189},"personal_options_update",25,{"type":152,"name":191,"callback":185,"file":186,"line":192},"user_register",26,{"type":152,"name":166,"callback":194,"file":186,"line":195},"advausro_register_and_sync_custom_roles",27,{"type":197,"name":198,"callback":154,"file":199,"line":173},"filter","cron_schedules","includes\\modules\\class-advausro-temp-role.php",{"type":152,"name":201,"callback":202,"file":199,"line":203},"advausro_check_expired_roles","advausro_remove_expired_roles",33,{"type":152,"name":166,"callback":154,"file":199,"line":205},36,{"type":152,"name":166,"callback":154,"file":199,"line":207},203,[209,214,218,222,225,228,231,234,236,238,240,243,246,249],{"action":210,"nopriv":211,"callback":212,"hasNonce":211,"hasCapCheck":211,"file":163,"line":213},"advausro_search_logs",false,"SmackCoders\\advanceduserrolemanager\\advausro_search_logs_callback",773,{"action":215,"nopriv":211,"callback":215,"hasNonce":216,"hasCapCheck":216,"file":186,"line":217},"advausro_add_new_custom_role",true,15,{"action":219,"nopriv":211,"callback":220,"hasNonce":216,"hasCapCheck":216,"file":186,"line":221},"advausro_get_custom_roles","advausro_get_custom_roles_for_dropdown",16,{"action":223,"nopriv":211,"callback":223,"hasNonce":216,"hasCapCheck":216,"file":186,"line":224},"advausro_delete_custom_roles",17,{"action":226,"nopriv":211,"callback":226,"hasNonce":216,"hasCapCheck":216,"file":186,"line":227},"advausro_add_new_capability",18,{"action":229,"nopriv":211,"callback":229,"hasNonce":216,"hasCapCheck":216,"file":186,"line":230},"advausro_update_role_capabilities",19,{"action":232,"nopriv":211,"callback":232,"hasNonce":216,"hasCapCheck":216,"file":186,"line":233},"advausro_delete_custom_capabilities",20,{"action":235,"nopriv":211,"callback":235,"hasNonce":216,"hasCapCheck":216,"file":186,"line":173},"advausro_clone_role",{"action":237,"nopriv":211,"callback":237,"hasNonce":216,"hasCapCheck":216,"file":186,"line":177},"advausro_fetch_role_capabilities",{"action":239,"nopriv":211,"callback":239,"hasNonce":216,"hasCapCheck":216,"file":186,"line":32},"advausro_fetch_custom_capabilities",{"action":241,"nopriv":211,"callback":241,"hasNonce":216,"hasCapCheck":216,"file":199,"line":242},"advausro_assign_temp_role",30,{"action":244,"nopriv":211,"callback":244,"hasNonce":216,"hasCapCheck":216,"file":199,"line":245},"advausro_remove_temp_role",31,{"action":247,"nopriv":211,"callback":247,"hasNonce":216,"hasCapCheck":216,"file":199,"line":248},"advausro_check_and_remove_expired_roles",32,{"action":250,"nopriv":211,"callback":250,"hasNonce":216,"hasCapCheck":216,"file":251,"line":217},"advausro_update_timezone","includes\\modules\\class-advausro-timezone.php",[],[],[255],{"hook":201,"callback":201,"file":199,"line":256},38,14,{"dangerousFunctions":259,"sqlUsage":260,"outputEscaping":273,"fileOperations":11,"externalRequests":286,"nonceChecks":233,"capabilityChecks":182,"bundledLibraries":287},[],{"prepared":261,"raw":262,"locations":263},82,3,[264,268,271],{"file":265,"line":266,"context":267},"includes\\installation\\class-advausro-install.php",105,"$wpdb->query() with variable interpolation",{"file":163,"line":269,"context":270},171,"$wpdb->get_col() with variable interpolation",{"file":163,"line":272,"context":270},480,{"escaped":274,"rawEcho":275,"locations":276},178,4,[277,280,282,284],{"file":155,"line":278,"context":279},129,"raw output",{"file":155,"line":281,"context":279},162,{"file":163,"line":283,"context":279},648,{"file":163,"line":285,"context":279},667,2,[],[289,306,355,378,390,402,422,432,448,469,479,489,500,510],{"entryPoint":290,"graph":291,"unsanitizedCount":11,"severity":305},"\u003Cclass-advausro-manager> (admin\\views\\class-advausro-manager.php:0)",{"nodes":292,"edges":303},[293,297],{"id":294,"type":295,"label":296,"file":155,"line":233},"n0","source","$_POST",{"id":298,"type":299,"label":300,"file":155,"line":301,"wp_function":302},"n1","sink","echo() [XSS]",49,"echo",[304],{"from":294,"to":298,"sanitized":216},"low",{"entryPoint":307,"graph":308,"unsanitizedCount":11,"severity":305},"advausro_render_audit_log_page (includes\\modules\\class-advausro-audit-log.php:459)",{"nodes":309,"edges":348},[310,312,316,319,324,328,330,334,336,340,342,346],{"id":294,"type":295,"label":296,"file":163,"line":311},512,{"id":298,"type":299,"label":313,"file":163,"line":314,"wp_function":315},"query() [SQLi]",528,"query",{"id":317,"type":295,"label":296,"file":163,"line":318},"n2",589,{"id":320,"type":299,"label":321,"file":163,"line":322,"wp_function":323},"n3","get_results() [SQLi]",597,"get_results",{"id":325,"type":295,"label":326,"file":163,"line":327},"n4","$_REQUEST['page']",676,{"id":329,"type":299,"label":300,"file":163,"line":327,"wp_function":302},"n5",{"id":331,"type":295,"label":332,"file":163,"line":333},"n6","$_REQUEST['start_date']",692,{"id":335,"type":299,"label":300,"file":163,"line":333,"wp_function":302},"n7",{"id":337,"type":295,"label":338,"file":163,"line":339},"n8","$_REQUEST['end_date']",697,{"id":341,"type":299,"label":300,"file":163,"line":339,"wp_function":302},"n9",{"id":343,"type":295,"label":344,"file":163,"line":345},"n10","$_REQUEST['s']",711,{"id":347,"type":299,"label":300,"file":163,"line":345,"wp_function":302},"n11",[349,350,351,352,353,354],{"from":294,"to":298,"sanitized":216},{"from":317,"to":320,"sanitized":216},{"from":325,"to":329,"sanitized":216},{"from":331,"to":335,"sanitized":216},{"from":337,"to":341,"sanitized":216},{"from":343,"to":347,"sanitized":216},{"entryPoint":356,"graph":357,"unsanitizedCount":11,"severity":305},"\u003Cclass-advausro-audit-log> (includes\\modules\\class-advausro-audit-log.php:0)",{"nodes":358,"edges":371},[359,360,361,362,363,364,365,366,367,368,369,370],{"id":294,"type":295,"label":296,"file":163,"line":311},{"id":298,"type":299,"label":313,"file":163,"line":314,"wp_function":315},{"id":317,"type":295,"label":296,"file":163,"line":318},{"id":320,"type":299,"label":321,"file":163,"line":322,"wp_function":323},{"id":325,"type":295,"label":326,"file":163,"line":327},{"id":329,"type":299,"label":300,"file":163,"line":327,"wp_function":302},{"id":331,"type":295,"label":332,"file":163,"line":333},{"id":335,"type":299,"label":300,"file":163,"line":333,"wp_function":302},{"id":337,"type":295,"label":338,"file":163,"line":339},{"id":341,"type":299,"label":300,"file":163,"line":339,"wp_function":302},{"id":343,"type":295,"label":344,"file":163,"line":345},{"id":347,"type":299,"label":300,"file":163,"line":345,"wp_function":302},[372,373,374,375,376,377],{"from":294,"to":298,"sanitized":216},{"from":317,"to":320,"sanitized":216},{"from":325,"to":329,"sanitized":216},{"from":331,"to":335,"sanitized":216},{"from":337,"to":341,"sanitized":216},{"from":343,"to":347,"sanitized":216},{"entryPoint":379,"graph":380,"unsanitizedCount":11,"severity":305},"advausro_add_new_custom_role (includes\\modules\\class-advausro-role.php:173)",{"nodes":381,"edges":388},[382,384],{"id":294,"type":295,"label":296,"file":186,"line":383},184,{"id":298,"type":299,"label":385,"file":186,"line":386,"wp_function":387},"get_var() [SQLi]",200,"get_var",[389],{"from":294,"to":298,"sanitized":216},{"entryPoint":391,"graph":392,"unsanitizedCount":11,"severity":305},"advausro_delete_custom_capabilities (includes\\modules\\class-advausro-role.php:416)",{"nodes":393,"edges":400},[394,396],{"id":294,"type":295,"label":296,"file":186,"line":395},428,{"id":298,"type":299,"label":397,"file":186,"line":398,"wp_function":399},"update_option() [Settings Manipulation]",438,"update_option",[401],{"from":294,"to":298,"sanitized":216},{"entryPoint":403,"graph":404,"unsanitizedCount":11,"severity":305},"advausro_clone_role (includes\\modules\\class-advausro-role.php:453)",{"nodes":405,"edges":418},[406,408,412,413,415,416],{"id":294,"type":295,"label":296,"file":186,"line":407},464,{"id":298,"type":299,"label":409,"file":186,"line":410,"wp_function":411},"get_row() [SQLi]",475,"get_row",{"id":317,"type":295,"label":296,"file":186,"line":407},{"id":320,"type":299,"label":385,"file":186,"line":414,"wp_function":387},493,{"id":325,"type":295,"label":296,"file":186,"line":407},{"id":329,"type":299,"label":321,"file":186,"line":417,"wp_function":323},520,[419,420,421],{"from":294,"to":298,"sanitized":216},{"from":317,"to":320,"sanitized":216},{"from":325,"to":329,"sanitized":216},{"entryPoint":423,"graph":424,"unsanitizedCount":11,"severity":305},"advausro_update_role_capabilities (includes\\modules\\class-advausro-role.php:554)",{"nodes":425,"edges":430},[426,428],{"id":294,"type":295,"label":296,"file":186,"line":427},565,{"id":298,"type":299,"label":385,"file":186,"line":429,"wp_function":387},610,[431],{"from":294,"to":298,"sanitized":216},{"entryPoint":433,"graph":434,"unsanitizedCount":11,"severity":305},"advausro_fetch_role_capabilities (includes\\modules\\class-advausro-role.php:641)",{"nodes":435,"edges":445},[436,438,440,441],{"id":294,"type":295,"label":296,"file":186,"line":437},652,{"id":298,"type":299,"label":385,"file":186,"line":439,"wp_function":387},678,{"id":317,"type":295,"label":296,"file":186,"line":437},{"id":320,"type":299,"label":442,"file":186,"line":443,"wp_function":444},"get_col() [SQLi]",694,"get_col",[446,447],{"from":294,"to":298,"sanitized":216},{"from":317,"to":320,"sanitized":216},{"entryPoint":449,"graph":450,"unsanitizedCount":11,"severity":305},"\u003Cclass-advausro-role> (includes\\modules\\class-advausro-role.php:0)",{"nodes":451,"edges":463},[452,454,455,456,457,458,459,460,461,462],{"id":294,"type":295,"label":453,"file":186,"line":383},"$_POST (x5)",{"id":298,"type":299,"label":385,"file":186,"line":386,"wp_function":387},{"id":317,"type":295,"label":296,"file":186,"line":395},{"id":320,"type":299,"label":397,"file":186,"line":398,"wp_function":399},{"id":325,"type":295,"label":296,"file":186,"line":407},{"id":329,"type":299,"label":409,"file":186,"line":410,"wp_function":411},{"id":331,"type":295,"label":296,"file":186,"line":407},{"id":335,"type":299,"label":321,"file":186,"line":417,"wp_function":323},{"id":337,"type":295,"label":296,"file":186,"line":437},{"id":341,"type":299,"label":442,"file":186,"line":443,"wp_function":444},[464,465,466,467,468],{"from":294,"to":298,"sanitized":216},{"from":317,"to":320,"sanitized":216},{"from":325,"to":329,"sanitized":216},{"from":331,"to":335,"sanitized":216},{"from":337,"to":341,"sanitized":216},{"entryPoint":470,"graph":471,"unsanitizedCount":11,"severity":305},"advausro_assign_temp_role (includes\\modules\\class-advausro-temp-role.php:52)",{"nodes":472,"edges":477},[473,475],{"id":294,"type":295,"label":296,"file":199,"line":474},60,{"id":298,"type":299,"label":385,"file":199,"line":476,"wp_function":387},84,[478],{"from":294,"to":298,"sanitized":216},{"entryPoint":480,"graph":481,"unsanitizedCount":11,"severity":305},"advausro_remove_temp_role (includes\\modules\\class-advausro-temp-role.php:116)",{"nodes":482,"edges":487},[483,485],{"id":294,"type":295,"label":296,"file":199,"line":484},123,{"id":298,"type":299,"label":409,"file":199,"line":486,"wp_function":411},125,[488],{"from":294,"to":298,"sanitized":216},{"entryPoint":490,"graph":491,"unsanitizedCount":11,"severity":305},"\u003Cclass-advausro-temp-role> (includes\\modules\\class-advausro-temp-role.php:0)",{"nodes":492,"edges":497},[493,494,495,496],{"id":294,"type":295,"label":296,"file":199,"line":474},{"id":298,"type":299,"label":385,"file":199,"line":476,"wp_function":387},{"id":317,"type":295,"label":296,"file":199,"line":484},{"id":320,"type":299,"label":409,"file":199,"line":486,"wp_function":411},[498,499],{"from":294,"to":298,"sanitized":216},{"from":317,"to":320,"sanitized":216},{"entryPoint":501,"graph":502,"unsanitizedCount":11,"severity":305},"advausro_update_timezone (includes\\modules\\class-advausro-timezone.php:27)",{"nodes":503,"edges":508},[504,506],{"id":294,"type":295,"label":296,"file":251,"line":505},35,{"id":298,"type":299,"label":397,"file":251,"line":507,"wp_function":399},47,[509],{"from":294,"to":298,"sanitized":216},{"entryPoint":511,"graph":512,"unsanitizedCount":11,"severity":305},"\u003Cclass-advausro-timezone> (includes\\modules\\class-advausro-timezone.php:0)",{"nodes":513,"edges":516},[514,515],{"id":294,"type":295,"label":296,"file":251,"line":505},{"id":298,"type":299,"label":397,"file":251,"line":507,"wp_function":399},[517],{"from":294,"to":298,"sanitized":216},{"summary":519,"deductions":520},"The advanced-user-role-manager plugin v1.0 exhibits a generally strong security posture, with excellent adherence to best practices in its codebase. The plugin demonstrates a high percentage of prepared SQL statements and properly escaped output, minimizing common injection and cross-site scripting vulnerabilities. The absence of critical or high-severity taint analysis findings and a clean vulnerability history further reinforce this positive outlook. The plugin also shows a good number of nonce and capability checks, indicating an awareness of authorization and integrity concerns.\n\nHowever, a significant concern is the presence of one AJAX handler that lacks authentication checks. This represents a direct entry point for potential attackers to interact with the plugin's functionality without proper authorization, which could lead to unintended actions or information disclosure depending on the handler's purpose. While the overall code quality is high and there are no recorded vulnerabilities, this single unprotected AJAX endpoint is a notable weakness that requires immediate attention. The limited attack surface beyond this point is a positive factor, but the unprotected handler should not be underestimated.",[521],{"reason":522,"points":523},"Unprotected AJAX handler",7,"2026-03-17T06:37:46.617Z",{"wat":526,"direct":535},{"assetPaths":527,"generatorPatterns":530,"scriptPaths":531,"versionParams":532},[528,529],"\u002Fwp-content\u002Fplugins\u002Fadvanced-user-role-manager\u002Fassets\u002Fcss\u002Fstyles.css","\u002Fwp-content\u002Fplugins\u002Fadvanced-user-role-manager\u002Fassets\u002Fjs\u002Fscripts.js",[],[529],[533,534],"advanced-user-role-manager\u002Fassets\u002Fcss\u002Fstyles.css?ver=","advanced-user-role-manager\u002Fassets\u002Fjs\u002Fscripts.js?ver=",{"cssClasses":536,"htmlComments":541,"htmlAttributes":542,"restEndpoints":543,"jsGlobals":544,"shortcodeOutput":546},[537,538,539,540],"advausro-role-manager","advausro-add-role","advausro-oauth2-settings","advausro-audit-log",[],[],[],[545],"advausro_admin_script_params",[],{"error":216,"url":548,"statusCode":549,"statusMessage":550,"message":550},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fadvanced-user-role-manager\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":101,"versions":552},[553],{"version":6,"download_url":24,"svn_tag_url":554,"released_at":26,"has_diff":211,"diff_files_changed":555,"diff_lines":26,"trac_diff_url":26,"vulnerabilities":556,"is_current":216},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fadvanced-user-role-manager\u002Ftags\u002F1.0\u002F",[],[]]