[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fqHuy9FWuabnauTtlcIl2B6EizhXV8CaUxmpoYwhY9T8":3,"$fb-TBwncWj_2No_ni6coj62G1Klwdu2cOwUijNC3R-RM":1114,"$f-V5hMpfIIheAHIAtuLVhGdiVFW7jWLGajxD1Axnc7sY":1118},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":30,"crawl_stats":26,"alternatives":36,"analysis":116,"fingerprints":956},"atlant-security","Atlant Security","1.1.2","Atlant","https:\u002F\u002Fprofiles.wordpress.org\u002Fxorred\u002F","\u003Cp>\u003Cstrong>Atlant Security\u003C\u002Fstrong> is a comprehensive WordPress security plugin that provides enterprise-grade protection through 17 integrated security modules organized in a 5-layer defense architecture.\u003C\u002Fp>\n\u003Ch4>5-Layer Defense Architecture\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\u003Cstrong>Pre-WordPress WAF\u003C\u002Fstrong> — Firewall, rate limiter, and IP blocking run before WordPress processes the request.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Application-Aware\u003C\u002Fstrong> — Login security, custom login URL, two-factor authentication, session hardening, cron monitoring, and REST API policies.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Content & Config\u003C\u002Fstrong> — WordPress hardening, security headers, AI crawler management, and honeypot traps.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Outbound & Data\u003C\u002Fstrong> — SSRF prevention, malware scanning (files and database).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Response & Recovery\u003C\u002Fstrong> — Post-breach recovery, notifications, visitor log, and audit log.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Web Application Firewall (WAF)\u003C\u002Fstrong>\u003Cbr \u002F>\nInspects every request against 28+ attack pattern families including SQL injection, XSS, remote code execution, path traversal, PHP object injection, and WordPress-specific attacks. Block or log-only mode. Triple URL decoding prevents evasion.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Brute Force Protection\u003C\u002Fstrong>\u003Cbr \u002F>\nProgressive lockout system (5 min > 30 min > 24 hours) with configurable thresholds. Generic login error messages prevent username enumeration. Author enumeration blocking.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Malware Scanner\u003C\u002Fstrong>\u003Cbr \u002F>\nLocal file and database scanner with 38 malware signatures. Detects backdoors, webshells (WSO, c99, r57), crypto miners, credit card skimmers, and obfuscated code. Quarantine system with web access blocking.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Two-Factor Authentication (2FA)\u003C\u002Fstrong>\u003Cbr \u002F>\nTOTP (Google Authenticator, Authy) and email OTP. Per-role enforcement, 10 recovery codes, 5-minute challenge timeout, replay attack prevention.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Honeypot Traps\u003C\u002Fstrong>\u003Cbr \u002F>\nZero-false-positive bot detection: hidden link traps, fake login pages, comment honeypots, and Contact Form 7 integration. 3-layer safe bot protection ensures Googlebot, Bingbot, and allowed AI crawlers are never blocked.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>AI Crawler Management\u003C\u002Fstrong>\u003Cbr \u002F>\nControl 20+ known AI\u002FLLM training crawlers (GPTBot, ClaudeBot, Google-Extended, Bytespider, and more). Per-crawler toggles, robots.txt integration, and 403 enforcement. Block training crawlers while allowing browsing bots.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Security Headers\u003C\u002Fstrong>\u003Cbr \u002F>\nManage HSTS, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy, CSP, CORP, and COOP. Letter-grade scoring system. Remove X-Powered-By and Server headers.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Session Security\u003C\u002Fstrong>\u003Cbr \u002F>\nCookie hardening (HttpOnly, Secure, SameSite). Session binding via IP + User-Agent fingerprint detects hijacking. Concurrent session limits. Idle timeout. Optional admin bypass for all session restrictions.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Rate Limiter\u003C\u002Fstrong>\u003Cbr \u002F>\nSliding-window rate limiting across 11 endpoint categories: frontend, login, search, feed, REST API, WooCommerce checkout, XML-RPC, and cron.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>REST API Policies\u003C\u002Fstrong>\u003Cbr \u002F>\nPer-route access control with authentication requirements, HTTP method restrictions, rate limits, and IP whitelists. 5 built-in policies protect user enumeration, search, and write endpoints.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cron Guard\u003C\u002Fstrong>\u003Cbr \u002F>\nMonitors wp-cron.php for flood attacks. Detects suspicious scheduled tasks via baseline comparison. System cron migration helper.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Outbound Monitor (SSRF Prevention)\u003C\u002Fstrong>\u003Cbr \u002F>\nMonitors all outgoing HTTP requests. Blocks requests to private\u002Finternal IP ranges including cloud metadata endpoints. Domain allowlist with wildcard support. Caller detection traces requests to specific plugins.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Post-Breach Recovery\u003C\u002Fstrong>\u003Cbr \u002F>\n12 emergency actions: terminate sessions, force password reset, rotate secret keys, emergency lockdown, reinstall core, reinstall plugins, audit admin accounts, clear caches, malware scan, disable plugins, and downloadable incident report.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Real-Time Dashboard\u003C\u002Fstrong>\u003Cbr \u002F>\nLive visitor monitoring with 15-second auto-refresh. Stat cards, traffic charts, top IPs with VirusTotal integration, browser distribution, and IP detail modals.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Visitor Log & Audit Log\u003C\u002Fstrong>\u003Cbr \u002F>\nComplete request history with filters (IP, URL, bots, blocked, time range). Tamper-resistant admin action audit trail.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Notifications\u003C\u002Fstrong>\u003Cbr \u002F>\nEmail alerts (HTML formatted, color-coded severity), Slack webhooks, custom JSON webhooks, and daily digest. Configurable severity threshold with 5-minute deduplication.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WordPress Hardening\u003C\u002Fstrong>\u003Cbr \u002F>\nOne-click toggles: disable XML-RPC, hide WordPress version, block REST API user enumeration, block author enumeration, disable file editor, block PHP execution in uploads.\u003C\u002Fp>\n\u003Ch4>What Makes Atlant Security Different\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Pre-WordPress WAF\u003C\u002Fstrong> — Blocks attacks via auto_prepend_file before WordPress even loads\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Outbound HTTP Monitor\u003C\u002Fstrong> — Detects SSRF attacks and unauthorized outbound connections\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Database Backdoor Scanner\u003C\u002Fstrong> — Scans wp_options and wp_posts for eval(), base64, and hidden backdoors\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Client-Side Bot Detection\u003C\u002Fstrong> — JavaScript challenges and browser fingerprinting catch sophisticated bots\u003C\u002Fli>\n\u003Cli>\u003Cstrong>AI\u002FLLM Crawler Blocking\u003C\u002Fstrong> — Identify and block AI training crawlers scraping your content\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Honeypot Traps\u003C\u002Fstrong> — Hidden links, fake login pages, invisible form fields that only bots trigger\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cron Guard\u003C\u002Fstrong> — Monitors wp-cron for unauthorized scheduled tasks planted by malware\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Post-Breach Recovery\u003C\u002Fstrong> — Guided recovery toolkit with 12 emergency actions in one place\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Session Fingerprint Binding\u003C\u002Fstrong> — Binds sessions to IP + User-Agent so stolen cookies are useless\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Real-Time Visitor Dashboard\u003C\u002Fstrong> — Live visitor feed updated every 15 seconds\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Password Policy\u003C\u002Fstrong> — Minimum length, complexity, common-password blocking, and passphrase support\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Granular REST API Policies\u003C\u002Fstrong> — Per-endpoint control, not just a global on\u002Foff switch\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Safe Mode Override\u003C\u002Fstrong> — One constant in wp-config.php disables all blocking features instantly\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Deactivation Data Control\u003C\u002Fstrong> — Choose to keep or wipe all security data when deactivating\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Zero phone-home\u003C\u002Fstrong> — No telemetry, no tracking, fully GDPR-compliant (external services used only when explicitly enabled by the admin — see External Services section)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Why Atlant Security?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>All-in-one\u003C\u002Fstrong> — Replaces 5-6 separate security plugins\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No external dependencies\u003C\u002Fstrong> — Core security features run locally on your server\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Zero phone-home\u003C\u002Fstrong> — No telemetry, no tracking (optional features like GeoIP use external services only when explicitly enabled — see External Services section)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>GDPR-friendly\u003C\u002Fstrong> — No external fonts, no CDN resources\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Setup wizard\u003C\u002Fstrong> — Configure core security in under 2 minutes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Clean uninstall\u003C\u002Fstrong> — Removes all database tables and options when deleted (opt-in)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Safe Mode\u003C\u002Fstrong> — Emergency override if you get locked out of your site\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to the following third-party services under specific conditions:\u003C\u002Fp>\n\u003Ch4>Cloudflare IP Ranges\u003C\u002Fh4>\n\u003Cp>When Cloudflare integration is enabled, the plugin periodically fetches the current list of Cloudflare edge IP ranges from Cloudflare’s official endpoints. This is used to correctly identify visitor IP addresses behind the Cloudflare proxy and to whitelist Cloudflare edge servers.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Data sent: No user data is sent. The plugin fetches publicly available IP range lists.\u003C\u002Fli>\n\u003Cli>When: Once per week via a scheduled cron job (aswp_refresh_cloudflare_ips), only when Cloudflare integration is enabled.\u003C\u002Fli>\n\u003Cli>Endpoints: https:\u002F\u002Fwww.cloudflare.com\u002Fips-v4 and https:\u002F\u002Fwww.cloudflare.com\u002Fips-v6\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.cloudflare.com\u002Fterms\u002F\" rel=\"nofollow ugc\">Cloudflare Terms of Use\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.cloudflare.com\u002Fprivacypolicy\u002F\" rel=\"nofollow ugc\">Cloudflare Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>MaxMind GeoLite2 GeoIP Database\u003C\u002Fh4>\n\u003Cp>When GeoIP country detection is enabled and a MaxMind license key is configured, the plugin downloads the GeoLite2-Country database from MaxMind. This database is stored locally and used to resolve visitor IP addresses to country codes for display in the visitor log and dashboard.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Data sent: Your MaxMind license key is sent to authenticate the download request. No visitor data is sent to MaxMind.\u003C\u002Fli>\n\u003Cli>When: On initial setup and once per week via a scheduled cron job (aswp_update_geoip_db), only when GeoIP is enabled and a license key is configured.\u003C\u002Fli>\n\u003Cli>Endpoint: https:\u002F\u002Fdownload.maxmind.com\u002Fapp\u002Fgeoip_download\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.maxmind.com\u002Fen\u002Fgeolite2\u002Feula\" rel=\"nofollow ugc\">MaxMind End User License Agreement\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.maxmind.com\u002Fen\u002Fprivacy-policy\" rel=\"nofollow ugc\">MaxMind Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Google IP Ranges\u003C\u002Fh4>\n\u003Cp>When Google integration is enabled in the IP Whitelist, the plugin periodically fetches the current list of Google IP ranges from Google’s official endpoint. This is used to automatically whitelist known Google infrastructure IPs (Googlebot, Google Cloud, etc.) so legitimate Google traffic is never blocked.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Data sent: No user data is sent. The plugin fetches a publicly available JSON file containing Google IP ranges.\u003C\u002Fli>\n\u003Cli>When: Once per week via a scheduled cron job (aswp_refresh_google_ips), only when Google integration is enabled.\u003C\u002Fli>\n\u003Cli>Endpoint: https:\u002F\u002Fwww.gstatic.com\u002Fipranges\u002Fgoog.json\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fterms\" rel=\"nofollow ugc\">Google Terms of Service\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fprivacy\" rel=\"nofollow ugc\">Google Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Microsoft \u002F Bing IP Ranges\u003C\u002Fh4>\n\u003Cp>When Microsoft integration is enabled in the IP Whitelist, the plugin periodically fetches the current list of Bing bot IP ranges from Microsoft’s official endpoint. This is used to automatically whitelist known Bing crawler IPs so legitimate Bing traffic is never blocked.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Data sent: No user data is sent. The plugin fetches a publicly available JSON file containing Bing bot IP ranges.\u003C\u002Fli>\n\u003Cli>When: Once per week via a scheduled cron job (aswp_refresh_microsoft_ips), only when Microsoft integration is enabled.\u003C\u002Fli>\n\u003Cli>Endpoint: https:\u002F\u002Fwww.bing.com\u002Ftoolbox\u002Fbingbot.json\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.microsoft.com\u002Fen-us\u002Fservicesagreement\u002F\" rel=\"nofollow ugc\">Microsoft Services Agreement\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fprivacy.microsoft.com\u002Fen-us\u002Fprivacystatement\" rel=\"nofollow ugc\">Microsoft Privacy Statement\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WordPress.org Secret Key API\u003C\u002Fh4>\n\u003Cp>The Post-Breach Recovery module can generate new WordPress secret keys and salts using the official WordPress.org API. This is used when an administrator manually triggers the “Rotate Secret Keys” emergency action after a security breach.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Data sent: No user data is sent. The plugin fetches randomly generated keys from the API.\u003C\u002Fli>\n\u003Cli>When: Only when an administrator manually triggers the “Rotate Secret Keys” action in the Post-Breach Recovery module.\u003C\u002Fli>\n\u003Cli>Endpoint: https:\u002F\u002Fapi.wordpress.org\u002Fsecret-key\u002F1.1\u002Fsalt\u002F\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fabout\u002Fdomains\u002F\" rel=\"ugc\">WordPress.org Terms of Service\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fabout\u002Fprivacy\u002F\" rel=\"ugc\">WordPress.org Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Slack Webhooks\u003C\u002Fh4>\n\u003Cp>When Slack notifications are enabled and a Slack webhook URL is configured, the plugin sends security alert messages to the specified Slack channel. This allows administrators to receive real-time security notifications in Slack.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Data sent: Security alert messages containing the alert subject, description, severity level, site URL, and the IP address that triggered the alert. No visitor personal data or cookies are sent.\u003C\u002Fli>\n\u003Cli>When: Only when a security event occurs (e.g., brute force attempt, WAF block, honeypot trip) and Slack notifications are enabled.\u003C\u002Fli>\n\u003Cli>Endpoint: Administrator-configured Slack Incoming Webhook URL (e.g., https:\u002F\u002Fhooks.slack.com\u002Fservices\u002F…)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fslack.com\u002Fterms-of-service\" rel=\"nofollow ugc\">Slack Terms of Service\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fslack.com\u002Fprivacy-policy\" rel=\"nofollow ugc\">Slack Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Custom Webhooks\u003C\u002Fh4>\n\u003Cp>When webhook notifications are enabled and a webhook URL is configured, the plugin sends security alert payloads in JSON format to the specified endpoint. This allows integration with any external monitoring or alerting system.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Data sent: JSON payload containing the alert subject, description, severity level, site URL, timestamp, and the IP address that triggered the alert. No visitor personal data or cookies are sent.\u003C\u002Fli>\n\u003Cli>When: Only when a security event occurs and webhook notifications are enabled.\u003C\u002Fli>\n\u003Cli>Endpoint: Administrator-configured webhook URL.\u003C\u002Fli>\n\u003Cli>Terms and privacy: Determined by the third-party service the administrator configures.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Upgrade Notices\u003C\u002Fh3>\n\u003Ch4>1.1.2\u003C\u002Fh4>\n\u003Cp>New About page consolidates defense architecture and competitive features. Setup wizard no longer auto-redirects on activation. Dashboard is cleaner with focus on operational data.\u003C\u002Fp>\n\u003Ch4>1.0.7\u003C\u002Fh4>\n\u003Cp>Major UI overhaul: inner sidebar navigation replaces 23 WordPress submenu items with a clean, persistent sidebar panel. All page URLs remain the same — bookmarks still work.\u003C\u002Fp>\n\u003Ch4>1.0.4\u003C\u002Fh4>\n\u003Cp>Adds GeoIP country flags in visitor log, custom login URL, password policy enforcement, and Force SSL Admin setting. Internal prefix migration runs automatically — no action required.\u003C\u002Fp>\n\u003Ch4>1.0.3\u003C\u002Fh4>\n\u003Cp>Adds honeypot traps, security headers management, two-factor authentication, and notification channels. Fixes IP management and status code logging. Recommended update.\u003C\u002Fp>\n\u003Ch4>1.0.0\u003C\u002Fh4>\n\u003Cp>Initial release. Run the Setup Wizard after activation to configure your site’s security.\u003C\u002Fp>\n","Enterprise-grade WordPress security: WAF, brute force protection, malware scanner, 2FA, honeypots, AI crawler control, and post-breach recovery.",0,120,"2026-03-30T20:31:00.000Z","6.9.4","6.0","8.0",[18,19,20,21,22],"brute-force","firewall","malware-scanner","security","two-factor-authentication","https:\u002F\u002Fatlantsecurity.com\u002Flearn\u002Fwe-are-releasing-the-best-security-plugin-for-wordpress-in-existence\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fatlant-security.1.1.2.zip",100,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"xorred",1,30,94,"2026-05-19T16:32:48.506Z",[37,55,71,87,102],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":25,"num_ratings":47,"last_updated":48,"tested_up_to":14,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":53,"download_link":54,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"wp-admin-protect","Protector – Malware Removal, Firewall & Core Repair","4.0.2","Marcello Ruoppolo","https:\u002F\u002Fprofiles.wordpress.org\u002Fmarcelloruoppolome\u002F","\u003Cp>Every day, thousands of WordPress sites are hacked. Most security plugins offer protection, but they come with a massive cost: they slow down your server with bloated features and complex settings.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Protector is different.\u003C\u002Fstrong> It is a lightweight, AI-ready security layer that turns your WordPress site into a digital fortress without compromising speed.\u003C\u002Fp>\n\u003Cp>Whether you are trying to recover a hacked site or proactively defend your business, Protector delivers enterprise-grade security that anyone can configure. With our new \u003Cstrong>1-Click Security Overview Dashboard\u003C\u002Fstrong>, you can activate all recommended protections and block 98% of automated attacks in under 8 seconds.\u003C\u002Fp>\n\u003Cp>📖 \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fkloxstudios.com\u002Fdocumentation\u002Fprotector\u002F\" rel=\"nofollow ugc\">Read the Official Documentation here\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>🦠 Malware Threat Scanner & Auto-Repair\u003C\u002Fh3>\n\u003Cp>Don’t just find malware; destroy it. Our deep, recursive local scanner verifies your WordPress integrity without crashing your server:\u003Cbr \u002F>\n* \u003Cstrong>Core Integrity Verification:\u003C\u002Fstrong> Cross-references all Core files against the official WordPress.org checksums.\u003Cbr \u002F>\n* \u003Cstrong>Advanced Pattern Detection:\u003C\u002Fstrong> Detects suspicious code patterns (like \u003Ccode>eval\u003C\u002Fcode>, \u003Ccode>base64_decode\u003C\u002Fcode>, \u003Ccode>shell_exec\u003C\u002Fcode>) hidden in your files.\u003Cbr \u002F>\n* \u003Cstrong>1-Click Auto-Repair:\u003C\u002Fstrong> Found a modified core file? Click “Repair” and Protector will automatically fetch a clean, original version directly from the official WP SVN and overwrite the infected file.\u003C\u002Fp>\n\u003Ch3>🛡️ Login Fortress (Brute-Force Protection)\u003C\u002Fh3>\n\u003Cp>Hackers relentlessly target the \u003Ccode>wp-login.php\u003C\u002Fcode> page. We make it disappear.\u003Cbr \u002F>\n* \u003Cstrong>Secret Login URL:\u003C\u002Fstrong> Hide \u003Ccode>wp-login.php\u003C\u002Fcode> completely. Any unauthorized attempt will be instantly redirected to a custom URL of your choice.\u003Cbr \u002F>\n* \u003Cstrong>Smart Honeypots:\u003C\u002Fstrong> Inject invisible fields into your login and comment forms to trap and block spam\u002Fbrute-force bots automatically.\u003Cbr \u002F>\n* \u003Cstrong>Block Username Scanning:\u003C\u002Fstrong> Prevent attackers from discovering your admin usernames via \u003Ccode>?author=1\u003C\u002Fcode> enumeration.\u003C\u002Fp>\n\u003Ch3>🔒 1-Click Site Hardening\u003C\u002Fh3>\n\u003Cp>Lock down common vulnerabilities instantly:\u003Cbr \u002F>\n* \u003Cstrong>Security Headers:\u003C\u002Fstrong> Protect against XSS, Clickjacking, and MIME-Sniffing attacks with a single toggle.\u003Cbr \u002F>\n* \u003Cstrong>XML-RPC Control:\u003C\u002Fstrong> Disable XML-RPC completely to eliminate one of the biggest brute-force attack vectors on WordPress.\u003Cbr \u002F>\n* \u003Cstrong>Version Obfuscation:\u003C\u002Fstrong> Hide your WordPress version from the source code so hackers can’t target known exploits.\u003Cbr \u002F>\n* \u003Cstrong>Restrict REST API:\u003C\u002Fstrong> Block public access to endpoints that expose sensitive user data.\u003C\u002Fp>\n\u003Ch3>📊 Live Attack Log\u003C\u002Fh3>\n\u003Cp>Peace of mind you can actually see. Monitor every blocked attack, triggered honeypot, and deleted malware in real-time straight from your dashboard.\u003C\u002Fp>\n\u003Ch3>🚀 Upgrade to KloxStudios Pro\u003C\u002Fh3>\n\u003Cp>Need absolute maximum power? Protector integrates seamlessly with the KloxStudios Cloud AI. Pro users unlock Cloud AI Malware Verification for 3rd-party plugins\u002Fthemes, Automatic IP Lockouts, Instant Admin Login Alerts (Email & Webhook), and 2FA.\u003C\u002Fp>\n","Protect your WordPress. The ultimate lightweight security suite. Block brute-force attacks, auto-repair infected core files, hide your login URL, set  …",200,5324,3,"2026-04-11T09:57:00.000Z","5.0","7.4",[18,19,20,52,21],"repair-core","https:\u002F\u002Fkloxstudios.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-admin-protect.4.0.2.zip",{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":63,"downloaded":64,"rating":11,"num_ratings":11,"last_updated":65,"tested_up_to":14,"requires_at_least":66,"requires_php":50,"tags":67,"homepage":69,"download_link":70,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"bearmor-security","Bearmor Security","0.9.16","bearmor","https:\u002F\u002Fprofiles.wordpress.org\u002Fandeirz\u002F","\u003Cp>\u003Cstrong>Finally, a WordPress security plugin that doesn’t slow down your site.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Bearmor Security is built for \u003Cstrong>small to medium businesses, freelancers, and agencies\u003C\u002Fstrong> who need real protection without the bloat. No confusing dashboards, no technical jargon, no performance hit.\u003C\u002Fp>\n\u003Ch3>Why Bearmor?\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>🎯 Built for Non-Technical Users\u003C\u002Fstrong>\u003Cbr \u002F>\nYou shouldn’t need a security degree to protect your website. Bearmor gives you clear, actionable insights in plain English.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>⚡ Lightweight & Fast\u003C\u002Fstrong>\u003Cbr \u002F>\nUnlike bloated competitors, Bearmor won’t slow down your site. Clean code, efficient scans, zero impact on performance.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>💰 Most Features FREE\u003C\u002Fstrong>\u003Cbr \u002F>\nWhile others lock everything behind paywalls, Bearmor gives you professional-grade security for free. Compare us to Wordfence, Sucuri, or iThemes Security – we’re more generous.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🛡️ Real Protection, Not Theater\u003C\u002Fstrong>\u003Cbr \u002F>\nWe focus on what actually matters: detecting threats, blocking attacks, and keeping you informed. No fake “critical alerts” to scare you into upgrading.\u003C\u002Fp>\n\u003Ch3>🆓 FREE Features (Yes, Really Free)\u003C\u002Fh3>\n\u003Ch3>Malware Scanner\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Deep file scanning\u003C\u002Fstrong> for backdoors, shells, and malicious code\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart detection\u003C\u002Fstrong> with pattern matching and heuristics\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Quarantine threats\u003C\u002Fstrong> with one click\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Whitelist false positives\u003C\u002Fstrong> to prevent future alerts\u003C\u002Fli>\n\u003Cli>Scans plugins, themes, uploads, and core files\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>File Integrity Monitoring\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Real-time tracking\u003C\u002Fstrong> of all file changes\u003C\u002Fli>\n\u003Cli>See exactly what changed, when, and where\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Quarantine suspicious changes\u003C\u002Fstrong> instantly\u003C\u002Fli>\n\u003Cli>Mark safe changes to keep your dashboard clean\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Login Security\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Brute force protection\u003C\u002Fstrong> with automatic IP blocking\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Login activity log\u003C\u002Fstrong> – see every login attempt\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Anomaly detection\u003C\u002Fstrong> – alerts for suspicious login patterns\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Geographic tracking\u003C\u002Fstrong> – know where logins come from\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Two-Factor Authentication (2FA)\u003C\u002Fstrong> via email – completely free\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Security Hardening\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>One-click hardening\u003C\u002Fstrong> for common vulnerabilities\u003C\u002Fli>\n\u003Cli>Disable XML-RPC, file editing, directory browsing\u003C\u002Fli>\n\u003Cli>Hide WordPress version and login errors\u003C\u002Fli>\n\u003Cli>Enforce strong passwords\u003C\u002Fli>\n\u003Cli>All with simple on\u002Foff toggles\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Activity Logging\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Track all admin actions\u003C\u002Fli>\n\u003Cli>See who changed what and when\u003C\u002Fli>\n\u003Cli>Filter by user, action type, or date\u003C\u002Fli>\n\u003Cli>Essential for multi-user sites\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Security Dashboard\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>At-a-glance overview\u003C\u002Fstrong> of your security status\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Security score\u003C\u002Fstrong> with clear letter grade (A-F)\u003C\u002Fli>\n\u003Cli>See threats, recent activity, and recommendations\u003C\u002Fli>\n\u003Cli>No clutter, just what matters\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🚀 PRO Features (Optional Upgrade)\u003C\u002Fh3>\n\u003Ch3>What’s FREE Forever\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Malware Scanner\u003C\u002Fstrong> – Full file scanning with quarantine\u003C\u002Fli>\n\u003Cli>\u003Cstrong>File Monitoring\u003C\u002Fstrong> – Real-time change tracking\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Login Security\u003C\u002Fstrong> – Brute force protection and blocking\u003C\u002Fli>\n\u003Cli>\u003Cstrong>2FA Authentication\u003C\u002Fstrong> – TOTP support built-in\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Quarantine Threats\u003C\u002Fstrong> – One-click isolation of malware\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Security Hardening\u003C\u002Fstrong> – All hardening options included\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Upgrade to PRO\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>🔥 \u003Cstrong>Advanced Firewall\u003C\u002Fstrong> – Block attacks before they reach WordPress\u003C\u002Fli>\n\u003Cli>🤖 \u003Cstrong>AI Security Analysis\u003C\u002Fstrong> – ChatGPT explains threats in plain English\u003C\u002Fli>\n\u003Cli>📊 \u003Cstrong>Deep Vulnerability Scanner\u003C\u002Fstrong> – Database scanning and comprehensive CVE checks\u003C\u002Fli>\n\u003Cli>⏰ \u003Cstrong>24\u002F7 Uptime Monitoring\u003C\u002Fstrong> – External monitoring with instant email alerts\u003C\u002Fli>\n\u003Cli>🌍 \u003Cstrong>Geo-Blocking\u003C\u002Fstrong> – Block entire countries and IP ranges\u003C\u002Fli>\n\u003Cli>🎯 \u003Cstrong>Priority Support\u003C\u002Fstrong> – Email support with faster response times\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbearmor.eu\u002Fpricing\" rel=\"nofollow ugc\">Learn more about PRO \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan>\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>🎯 Perfect For\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Small Business Owners\u003C\u002Fstrong> who need protection without complexity\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Freelancers\u003C\u002Fstrong> managing multiple client sites\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Agencies\u003C\u002Fstrong> who want reliable security without performance issues\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Anyone\u003C\u002Fstrong> tired of bloated, confusing security plugins\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🔒 Privacy & External Services\u003C\u002Fh3>\n\u003Cp>Bearmor Security connects to our secure API server (bearmor.eu) for:\u003Cbr \u002F>\n– \u003Cstrong>License verification\u003C\u002Fstrong> (PRO users only)\u003Cbr \u002F>\n– \u003Cstrong>Uptime monitoring\u003C\u002Fstrong> (PRO users only)\u003Cbr \u002F>\n– \u003Cstrong>AI analysis\u003C\u002Fstrong> (PRO users only)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Data sent to our servers:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Site URL\u003Cbr \u002F>\n– Admin email (for notifications)\u003Cbr \u002F>\n– Security scan results (PRO AI analysis only)\u003Cbr \u002F>\n– Site ID (anonymous identifier)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>We DO NOT:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Sell your data\u003Cbr \u002F>\n– Track your visitors\u003Cbr \u002F>\n– Store sensitive information\u003Cbr \u002F>\n– Share data with third parties\u003C\u002Fp>\n\u003Cp>For FREE users, only basic site registration data is sent (URL + email). No security data leaves your server.\u003C\u002Fp>\n\u003Cp>Read our full privacy policy: https:\u002F\u002Fbearmor.eu\u002Fprivacy\u003C\u002Fp>\n\u003Ch3>📊 Why Choose Bearmor?\u003C\u002Fh3>\n\u003Ch3>vs. Wordfence FREE\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>We include 2FA (they lock it behind PRO)\u003C\u002Fli>\n\u003Cli>We include quarantine (they lock it behind PRO)\u003C\u002Fli>\n\u003Cli>Lighter performance impact\u003C\u002Fli>\n\u003Cli>Simpler, cleaner interface\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>vs. Sucuri FREE\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>We include malware scanner (they lock it behind PRO)\u003C\u002Fli>\n\u003Cli>We include file monitoring (they lock it behind PRO)\u003C\u002Fli>\n\u003Cli>We include 2FA and quarantine\u003C\u002Fli>\n\u003Cli>More features in free version\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>vs. iThemes Security\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>More generous free tier\u003C\u002Fli>\n\u003Cli>Better malware detection\u003C\u002Fli>\n\u003Cli>Cleaner dashboard\u003C\u002Fli>\n\u003Cli>Faster scans\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🚀 Quick Start\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Install and activate Bearmor Security\u003C\u002Fli>\n\u003Cli>Run your first malware scan (Dashboard \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Scan Now)\u003C\u002Fli>\n\u003Cli>Enable recommended hardening options (Dashboard \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Hardening)\u003C\u002Fli>\n\u003Cli>Set up 2FA for your account (Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Two-Factor Auth)\u003C\u002Fli>\n\u003Cli>You’re protected! 🎉\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>No configuration needed. Works out of the box.\u003C\u002Fp>\n\u003Ch3>💬 Support\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Documentation:\u003C\u002Fstrong> https:\u002F\u002Fbearmor.eu\u002Fdocs\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Support Forum:\u003C\u002Fstrong> https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fbearmor-security\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Email:\u003C\u002Fstrong> security@bearmor.eu (PRO users get priority)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🌟 What Users Say\u003C\u002Fh3>\n\u003Cp>\u003Cem>“Finally, a security plugin that doesn’t make me feel stupid. Everything just works.”\u003C\u002Fem> – Sarah M., Freelancer\u003C\u002Fp>\n\u003Cp>\u003Cem>“Switched from Wordfence. Bearmor is faster and the free version has more features.”\u003C\u002Fem> – Mike T., Agency Owner\u003C\u002Fp>\n\u003Cp>\u003Cem>“The AI analysis feature is a game-changer. It explains threats in plain English.”\u003C\u002Fem> – David R., Small Business Owner\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>Bearmor Security respects your privacy. Here’s exactly what data we collect and why:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>FREE Users:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Site URL (to identify your installation)\u003Cbr \u002F>\n– Admin email (for security notifications)\u003Cbr \u002F>\n– Plugin version (for update checks)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PRO Users (in addition to above):\u003C\u002Fstrong>\u003Cbr \u002F>\n– Security scan results (for AI analysis)\u003Cbr \u002F>\n– Uptime monitoring data (ping responses)\u003Cbr \u002F>\n– Firewall block logs (for threat intelligence)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>We NEVER:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Sell your data to third parties\u003Cbr \u002F>\n– Track your website visitors\u003Cbr \u002F>\n– Store passwords or sensitive user data\u003Cbr \u002F>\n– Share data without your explicit consent\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Data Storage:\u003C\u002Fstrong>\u003Cbr \u002F>\n– All data encrypted in transit (HTTPS)\u003Cbr \u002F>\n– Stored on secure servers in EU\u003Cbr \u002F>\n– Retained for 90 days, then automatically deleted\u003Cbr \u002F>\n– You can request data deletion anytime\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Third-Party Services:\u003C\u002Fstrong>\u003Cbr \u002F>\n– OpenAI (ChatGPT) for AI analysis (PRO only)\u003Cbr \u002F>\n– Our own servers for uptime monitoring (PRO only)\u003C\u002Fp>\n\u003Cp>Full privacy policy: https:\u002F\u002Fbearmor.eu\u002Fprivacy\u003Cbr \u002F>\nContact: security@bearmor.eu\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to external services in certain situations:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Bearmor API (bearmor.eu)\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>When:\u003C\u002Fstrong> Plugin activation, license verification, PRO features\u003Cbr \u002F>\n– \u003Cstrong>Data sent:\u003C\u002Fstrong> Site URL, admin email, security scan results (PRO only)\u003Cbr \u002F>\n– \u003Cstrong>Purpose:\u003C\u002Fstrong> License management, AI analysis, uptime monitoring\u003Cbr \u002F>\n– \u003Cstrong>Privacy:\u003C\u002Fstrong> https:\u002F\u002Fbearmor.eu\u002Fprivacy\u003Cbr \u002F>\n– \u003Cstrong>Terms:\u003C\u002Fstrong> https:\u002F\u002Fbearmor.eu\u002Fterms\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WordPress.org API (api.wordpress.org)\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>When:\u003C\u002Fstrong> Checking WordPress core file integrity\u003Cbr \u002F>\n– \u003Cstrong>Data sent:\u003C\u002Fstrong> WordPress version number\u003Cbr \u002F>\n– \u003Cstrong>Purpose:\u003C\u002Fstrong> Verify core files haven’t been tampered with\u003Cbr \u002F>\n– \u003Cstrong>Privacy:\u003C\u002Fstrong> https:\u002F\u002Fwordpress.org\u002Fabout\u002Fprivacy\u002F\u003Cbr \u002F>\n– \u003Cstrong>Terms:\u003C\u002Fstrong> https:\u002F\u002Fwordpress.org\u002Fabout\u002F\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WPVulnerability.net API (wpvulnerability.net)\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>When:\u003C\u002Fstrong> Scanning for known plugin\u002Ftheme vulnerabilities\u003Cbr \u002F>\n– \u003Cstrong>Data sent:\u003C\u002Fstrong> Plugin and theme slugs (names only, no site data)\u003Cbr \u002F>\n– \u003Cstrong>Purpose:\u003C\u002Fstrong> Check for known security vulnerabilities\u003Cbr \u002F>\n– \u003Cstrong>Privacy:\u003C\u002Fstrong> https:\u002F\u002Fwww.wpvulnerability.net\u002Fprivacy-policy\u003Cbr \u002F>\n– \u003Cstrong>Terms:\u003C\u002Fstrong> https:\u002F\u002Fwww.wpvulnerability.net\u002Fterms-of-service\u003C\u002Fp>\n\u003Cp>\u003Cstrong>IP-API.com (ip-api.com)\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>When:\u003C\u002Fstrong> Firewall blocks an IP or login from restricted country\u003Cbr \u002F>\n– \u003Cstrong>Data sent:\u003C\u002Fstrong> IP address only\u003Cbr \u002F>\n– \u003Cstrong>Purpose:\u003C\u002Fstrong> Determine country of origin for geo-blocking\u003Cbr \u002F>\n– \u003Cstrong>Privacy:\u003C\u002Fstrong> https:\u002F\u002Fip-api.com\u002Fdocs\u002Flegal\u003Cbr \u002F>\n– \u003Cstrong>Terms:\u003C\u002Fstrong> Free tier for non-commercial use\u003C\u002Fp>\n\u003Cp>\u003Cstrong>OpenAI API (PRO only)\u003C\u002Fstrong>\u003Cbr \u002F>\n– \u003Cstrong>When:\u003C\u002Fstrong> AI security analysis is requested\u003Cbr \u002F>\n– \u003Cstrong>Data sent:\u003C\u002Fstrong> Anonymized security scan results\u003Cbr \u002F>\n– \u003Cstrong>Purpose:\u003C\u002Fstrong> Generate security recommendations\u003Cbr \u002F>\n– \u003Cstrong>Privacy:\u003C\u002Fstrong> https:\u002F\u002Fopenai.com\u002Fprivacy\u003Cbr \u002F>\n– \u003Cstrong>Note:\u003C\u002Fstrong> No personally identifiable information is sent\u003C\u002Fp>\n\u003Cp>All external connections use HTTPS encryption. FREE users connect for: initial registration, vulnerability checks, and geo-blocking. No security scan data leaves your server unless you upgrade to PRO.\u003C\u002Fp>\n","Lightweight, powerful WordPress security for small businesses. Malware scanning, login protection, 2FA, hardening - most features FREE.",60,955,"2026-02-28T15:35:00.000Z","5.8",[19,68,20,21,22],"login-security","https:\u002F\u002Fbearmor.eu","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbearmor-security.0.9.16.zip",{"slug":72,"name":73,"version":74,"author":75,"author_profile":76,"description":77,"short_description":78,"active_installs":79,"downloaded":80,"rating":11,"num_ratings":11,"last_updated":81,"tested_up_to":82,"requires_at_least":66,"requires_php":83,"tags":84,"homepage":85,"download_link":86,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"ultimate-security","Ultimate Security – Login Protection, 2FA, CAPTCHA & Hardening","1.0.17","WP Ultimate Security","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpultimatesecurity\u002F","\u003Cp>Ultimate Security protects your WordPress site from brute force attacks, unauthorized access, and bots. Lightweight, modular, and privacy-focused.\u003C\u002Fp>\n\u003Cp>Check out the documentation for this plugin from here\u003C\u002Fp>\n\u003Cp>Link: \u003Ca href=\"https:\u002F\u002Fdocs.wpultimatesecurity.com\u002Fdocs\u002F\" rel=\"nofollow ugc\">Visit Documentation Site\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Two-Factor Authentication\u003C\u002Fstrong>\u003Cbr \u002F>\n* Email OTP verification\u003Cbr \u002F>\n* Google Authenticator, Authy, Microsoft Authenticator (TOTP\u002FHOTP)\u003Cbr \u002F>\n* 2FA status dashboard\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Login Protection\u003C\u002Fstrong>\u003Cbr \u002F>\n* Custom login URL (hide wp-admin)\u003Cbr \u002F>\n* Login attempt limits\u003Cbr \u002F>\n* Password policy enforcement\u003Cbr \u002F>\n* Session management\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Bot Protection\u003C\u002Fstrong>\u003Cbr \u002F>\n* Google reCAPTCHA v2\u002Fv3\u003Cbr \u002F>\n* Cloudflare Turnstile\u003Cbr \u002F>\n* Protect login, registration, comments, WooCommerce\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Security Hardening\u003C\u002Fstrong>\u003Cbr \u002F>\n* Security keys rotation\u003Cbr \u002F>\n* Auto-update controls\u003Cbr \u002F>\n* Site health monitoring\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Content Protection\u003C\u002Fstrong>\u003Cbr \u002F>\n* Right-click disable\u003Cbr \u002F>\n* Text selection control\u003Cbr \u002F>\n* Image drag prevention\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Tools\u003C\u002Fstrong>\u003Cbr \u002F>\n* Security Score dashboard\u003Cbr \u002F>\n* Settings backup\u002Frestore\u003Cbr \u002F>\n* Test mode for previewing rules\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to external services:\u003C\u002Fp>\n\u003Ch4>Cloudflare Turnstile\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>When: Turnstile CAPTCHA enabled\u003C\u002Fli>\n\u003Cli>Sends: Response token, site secret key\u003C\u002Fli>\n\u003Cli>URL: https:\u002F\u002Fchallenges.cloudflare.com\u002Fturnstile\u002Fv0\u002Fsiteverify\u003C\u002Fli>\n\u003Cli>Privacy: https:\u002F\u002Fwww.cloudflare.com\u002Fprivacypolicy\u002F\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Google reCAPTCHA\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>When: reCAPTCHA enabled\u003C\u002Fli>\n\u003Cli>Sends: Response token, site secret key\u003C\u002Fli>\n\u003Cli>URL: https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002Fapi\u002Fsiteverify\u003C\u002Fli>\n\u003Cli>Privacy: https:\u002F\u002Fpolicies.google.com\u002Fprivacy\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WordPress.org Salt API\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>When: Security keys rotation requested\u003C\u002Fli>\n\u003Cli>Sends: Request for random salt strings\u003C\u002Fli>\n\u003Cli>URL: https:\u002F\u002Fapi.wordpress.org\u002Fsecret-key\u002F1.1\u002Fsalt\u002F\u003C\u002Fli>\n\u003C\u002Ful>\n","Protect your WordPress site with 2FA, brute force protection, CAPTCHA, custom login URL, and security hardening.",10,1485,"2026-02-18T10:05:00.000Z","6.8.5","8.1",[18,19,68,21,22],"https:\u002F\u002Fwww.wpultimatesecurity.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fultimate-security.1.0.17.zip",{"slug":88,"name":89,"version":90,"author":91,"author_profile":92,"description":93,"short_description":94,"active_installs":11,"downloaded":95,"rating":11,"num_ratings":11,"last_updated":96,"tested_up_to":14,"requires_at_least":15,"requires_php":50,"tags":97,"homepage":99,"download_link":100,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":101},"custom-login-url-login-designer","Dotsquares Custom Login URL & Security Suite","1.6.4","maheshsharmads","https:\u002F\u002Fprofiles.wordpress.org\u002Fmaheshsharmads\u002F","\u003Cp>\u003Cstrong>Dotsquares Custom Login URL & Security Suite\u003C\u002Fstrong> helps secure your WordPress site by allowing you to change the default login URL and apply additional security layers — all from one beautifully designed dashboard.\u003C\u002Fp>\n\u003Ch4>🔑 Login Security\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Custom login slug — redirect wp-login.php to your own secret URL\u003C\u002Fli>\n\u003Cli>Optionally hide wp-login.php (returns 404 for guests)\u003C\u002Fli>\n\u003Cli>Optionally block wp-admin for non-logged-in users\u003C\u002Fli>\n\u003Cli>Brute force protection with configurable lockout thresholds\u003C\u002Fli>\n\u003Cli>Login honeypot trap (hidden field that catches bots)\u003C\u002Fli>\n\u003Cli>Two-Factor Authentication (TOTP — works with Google Authenticator, Authy, etc.)\u003C\u002Fli>\n\u003Cli>Weak username detection (blocks “admin”, “root”, “test”, etc.)\u003C\u002Fli>\n\u003Cli>Force logout after inactivity (configurable timeout)\u003C\u002Fli>\n\u003Cli>Manual approval for new user registrations\u003C\u002Fli>\n\u003Cli>Prevent display name from matching username\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🛡️ Firewall\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Disable XML-RPC (common attack vector)\u003C\u002Fli>\n\u003Cli>Block bad bots and fake user agents (40+ known bots)\u003C\u002Fli>\n\u003Cli>Block POST requests with empty User-Agent headers\u003C\u002Fli>\n\u003Cli>Rate limiting per IP address\u003C\u002Fli>\n\u003Cli>IP blacklist and whitelist (supports CIDR ranges)\u003C\u002Fli>\n\u003Cli>Geo-blocking by country code\u003C\u002Fli>\n\u003Cli>Restrict REST API for non-logged-in users\u003C\u002Fli>\n\u003Cli>Prevent user enumeration via ?author= scans\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🔍 Malware & File Scanner\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Deep scan of WordPress core, plugins, themes and uploads\u003C\u002Fli>\n\u003Cli>40+ malware signature patterns (PHP shells, backdoors, crypto miners, pharma hacks, SEO spam injections)\u003C\u002Fli>\n\u003Cli>Detects known web shells by filename (c99, r57, WSO, b374k, adminer, etc.)\u003C\u002Fli>\n\u003Cli>WordPress core file integrity check (compares against official api.wordpress.org checksums)\u003C\u002Fli>\n\u003Cli>Detects PHP files hidden inside the uploads folder\u003C\u002Fli>\n\u003Cli>Suspicious code pattern detection (eval, exec, base64_decode combos, etc.)\u003C\u002Fli>\n\u003Cli>File change detection using MD5 hash baseline\u003C\u002Fli>\n\u003Cli>File permission scanner (755\u002F644 standards)\u003C\u002Fli>\n\u003Cli>.htaccess security rules generator\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>👥 User & Session Management\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>View and kill active user sessions\u003C\u002Fli>\n\u003Cli>Session tracking with IP and user-agent logging\u003C\u002Fli>\n\u003Cli>Manual user approval workflow\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>📊 Monitoring & Logs\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Security event log (login, logout, failed attempts, plugin\u002Ftheme changes)\u003C\u002Fli>\n\u003Cli>IP blocking log with unblock controls\u003C\u002Fli>\n\u003Cli>Real-time security score (A–F grade with per-check breakdown)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>⚙️ Other Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Maintenance mode with custom message\u003C\u002Fli>\n\u003Cli>Database backup download\u003C\u002Fli>\n\u003Cli>Email alerts for security events\u003C\u002Fli>\n\u003Cli>Beautiful admin dashboard with quick-toggle switches\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Important\u003C\u002Fh3>\n\u003Cp>Hardening actions such as \u003Cstrong>DB prefix change\u003C\u002Fstrong> and \u003Cstrong>wp-content rename\u003C\u002Fstrong> are advanced operations.\u003Cbr \u002F>\nAlways run these features on a \u003Cstrong>staging environment\u003C\u002Fstrong> and ensure you have a \u003Cstrong>full backup\u003C\u002Fstrong> before applying them on production.\u003C\u002Fp>\n","Change your WordPress login URL, design the login page, and enhance your site's security with built-in protection tools.",662,"2026-03-30T11:09:00.000Z",[18,19,98,20,21],"login","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcustom-login-url-login-designer","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-login-url-login-designer.1.6.4.zip","2026-04-06T09:54:40.288Z",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":11,"downloaded":110,"rating":11,"num_ratings":11,"last_updated":111,"tested_up_to":14,"requires_at_least":66,"requires_php":50,"tags":112,"homepage":114,"download_link":115,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"freelancebo-sentra-control","FreelanceBo Sentra Control","2.4.0","FreelanceBo Group S.r.l.s","https:\u002F\u002Fprofiles.wordpress.org\u002Ffreelancebo\u002F","\u003Cp>FreelanceBo Sentra Control is a comprehensive WordPress security plugin that connects your site to the Sentra central console, providing enterprise-grade protection.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Web Application Firewall (WAF)\u003C\u002Fstrong> – Block malicious requests, SQL injection, XSS, and other common attacks\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Malware Scanner\u003C\u002Fstrong> – Scan WordPress core files, themes, and plugins for known malware signatures\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Vulnerability Scanner\u003C\u002Fstrong> – Check installed plugins and themes against known vulnerability databases\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Brute Force Protection\u003C\u002Fstrong> – Limit login attempts and block attackers automatically\u003C\u002Fli>\n\u003Cli>\u003Cstrong>File Integrity Monitoring\u003C\u002Fstrong> – Detect unauthorized changes to WordPress core files\u003C\u002Fli>\n\u003Cli>\u003Cstrong>IP Blocklist\u003C\u002Fstrong> – Manage blocked IPs manually or automatically based on threat detection\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Security Events Log\u003C\u002Fstrong> – Track all security events with detailed logging\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Central Console\u003C\u002Fstrong> – Manage multiple WordPress sites from a single dashboard\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Install and activate the plugin on your WordPress site\u003C\u002Fli>\n\u003Cli>Connect to your Sentra central console by entering the server URL and API key in Settings\u003C\u002Fli>\n\u003Cli>The plugin automatically starts monitoring your site and reporting to the console\u003C\u002Fli>\n\u003Cli>View scan results, manage firewall rules, and review security events from either the WordPress admin panel or the central console\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WordPress 5.8 or higher\u003C\u002Fli>\n\u003Cli>PHP 7.4 or higher\u003C\u002Fli>\n\u003Cli>A Sentra central console account (available at freelancebo.it)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin relies on the following external services:\u003C\u002Fp>\n\u003Ch4>FreelanceBo Sentra Control Console\u003C\u002Fh4>\n\u003Cp>This plugin connects to a self-hosted FreelanceBo Sentra Control central console for centralized security monitoring and management. This connection is essential for the plugin to function.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What data is sent:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Site URL, WordPress version, PHP version, and installed plugins\u002Fthemes list (during heartbeat and scans)\u003Cbr \u002F>\n* Security events (firewall blocks, failed login attempts, malware detections, file integrity changes)\u003Cbr \u002F>\n* Scan results (malware scan, vulnerability scan, integrity scan findings)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>When data is sent:\u003C\u002Fstrong>\u003Cbr \u002F>\n* On plugin activation and periodically via heartbeat (every 5 minutes)\u003Cbr \u002F>\n* When security events occur (login attempts, firewall blocks)\u003Cbr \u002F>\n* When scans are triggered (manually or via scheduled cron)\u003Cbr \u002F>\n* When the admin manages firewall rules, blocklists, or settings\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Service provider:\u003C\u002Fstrong> FreelanceBo Group S.r.l.s., Bologna, Italy\u003Cbr \u002F>\n* Service URL: \u003Ca href=\"https:\u002F\u002Fsentra.freelancebo.it\" rel=\"nofollow ugc\">https:\u002F\u002Fsentra.freelancebo.it\u003C\u002Fa>\u003Cbr \u002F>\n* Terms of Service: \u003Ca href=\"https:\u002F\u002Fsentra.freelancebo.it\u002Fterms\" rel=\"nofollow ugc\">https:\u002F\u002Fsentra.freelancebo.it\u002Fterms\u003C\u002Fa>\u003Cbr \u002F>\n* Privacy Policy: \u003Ca href=\"https:\u002F\u002Fsentra.freelancebo.it\u002Fprivacy\" rel=\"nofollow ugc\">https:\u002F\u002Fsentra.freelancebo.it\u002Fprivacy\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>The console server URL is configurable by the user in the plugin settings. All data is transmitted over HTTPS. Data is stored on EU-based servers in compliance with GDPR.\u003C\u002Fp>\n\u003Ch4>WordPress.org API\u003C\u002Fh4>\n\u003Cp>The vulnerability scanner module uses the official WordPress.org API to retrieve information about installed plugins, themes, and WordPress core version. This is necessary to check for known vulnerabilities and outdated software.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What data is sent:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Plugin slugs, theme slugs, and WordPress core version\u003C\u002Fp>\n\u003Cp>\u003Cstrong>When data is sent:\u003C\u002Fstrong>\u003Cbr \u002F>\n* When a vulnerability scan is triggered (manually or via scheduled cron)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Service provider:\u003C\u002Fstrong> WordPress.org\u003Cbr \u002F>\n* API endpoint: \u003Ca href=\"https:\u002F\u002Fapi.wordpress.org\" rel=\"nofollow ugc\">https:\u002F\u002Fapi.wordpress.org\u003C\u002Fa>\u003Cbr \u002F>\n* Terms of Service: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fabout\u002Fprivacy\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fabout\u002Fprivacy\u002F\u003C\u002Fa>\u003Cbr \u002F>\n* Privacy Policy: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fabout\u002Fprivacy\u002F\" rel=\"ugc\">https:\u002F\u002Fwordpress.org\u002Fabout\u002Fprivacy\u002F\u003C\u002Fa>\u003C\u002Fp>\n","Security agent connecting to FreelanceBo Sentra Control console for WAF, malware scanning, brute force protection, and vulnerability scanning.",372,"2026-03-22T19:55:00.000Z",[18,19,20,21,113],"vulnerability-scanner","https:\u002F\u002Ffreelancebo.it","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffreelancebo-sentra-control.2.4.0.zip",{"attackSurface":117,"codeSignals":685,"taintFlows":716,"riskAssessment":948,"analyzedAt":955},{"hooks":118,"ajaxHandlers":494,"restRoutes":667,"shortcodes":668,"cronEvents":669,"entryPointCount":174,"unprotectedCount":684},[119,125,129,132,136,140,144,148,153,155,157,159,162,167,169,171,175,179,183,187,191,195,199,203,206,210,214,217,220,224,228,232,236,240,244,247,251,256,258,262,266,269,272,274,278,281,285,289,292,295,299,304,308,311,314,317,319,324,329,332,335,339,343,347,349,353,357,361,364,366,370,373,375,379,382,385,389,392,396,399,402,406,408,412,414,417,420,422,425,428,430,432,436,440,445,448,452,455,457,461,463,465,468,470,473,475,478,481,483,484,487,489,491],{"type":120,"name":121,"callback":122,"file":123,"line":124},"action","admin_menu","register_menus","admin\u002FAdmin.php",18,{"type":120,"name":126,"callback":127,"file":123,"line":128},"admin_enqueue_scripts","enqueue_assets",19,{"type":120,"name":130,"callback":130,"file":123,"line":131},"admin_notices",20,{"type":120,"name":133,"callback":134,"priority":11,"file":123,"line":135},"admin_init","nocache_plugin_pages",23,{"type":137,"name":138,"callback":138,"priority":79,"file":123,"line":139},"filter","plugin_row_meta",26,{"type":120,"name":141,"callback":142,"file":123,"line":143},"admin_footer-plugins.php","deactivation_dialog",29,{"type":120,"name":121,"callback":145,"priority":146,"file":123,"line":147},"sort_submenu",999,127,{"type":120,"name":149,"callback":150,"priority":11,"file":151,"line":152},"plugins_loaded","closure","atlant-security.php",78,{"type":120,"name":149,"callback":150,"priority":11,"file":151,"line":154},217,{"type":120,"name":149,"callback":150,"priority":11,"file":151,"line":156},246,{"type":120,"name":149,"callback":150,"priority":32,"file":151,"line":158},255,{"type":120,"name":160,"callback":150,"priority":32,"file":151,"line":161},"init",262,{"type":137,"name":163,"callback":164,"file":165,"line":166},"cron_schedules","add_cron_intervals","includes\u002FPlugin.php",24,{"type":120,"name":160,"callback":150,"priority":131,"file":165,"line":168},27,{"type":120,"name":133,"callback":150,"file":165,"line":170},45,{"type":120,"name":172,"callback":173,"file":165,"line":174},"aswp_cleanup_logs","cleanup_logs",53,{"type":120,"name":176,"callback":177,"file":165,"line":178},"aswp_update_blocked_counts","update_blocked_counts",54,{"type":120,"name":180,"callback":181,"file":165,"line":182},"aswp_refresh_cloudflare_ips","refresh_cloudflare_ranges",55,{"type":120,"name":184,"callback":185,"file":165,"line":186},"aswp_refresh_google_ips","refresh_google_ranges",56,{"type":120,"name":188,"callback":189,"file":165,"line":190},"aswp_refresh_microsoft_ips","refresh_microsoft_ranges",57,{"type":120,"name":192,"callback":193,"file":165,"line":194},"aswp_update_geoip_db","cron_update",58,{"type":120,"name":196,"callback":150,"priority":131,"file":197,"line":198},"wp","includes\u002FRequestLogger.php",155,{"type":120,"name":160,"callback":200,"priority":32,"file":201,"line":202},"intercept_request","includes\u002Fmodules\u002FAICrawlers.php",16,{"type":137,"name":204,"callback":205,"priority":25,"file":201,"line":128},"robots_txt","filter_robots_txt",{"type":120,"name":207,"callback":208,"priority":79,"file":209,"line":168},"activated_plugin","on_plugin_activated","includes\u002Fmodules\u002FAuditLogger.php",{"type":120,"name":211,"callback":212,"file":209,"line":213},"deactivated_plugin","on_plugin_deactivated",28,{"type":120,"name":215,"callback":216,"priority":79,"file":209,"line":143},"deleted_plugin","on_plugin_deleted",{"type":120,"name":218,"callback":219,"priority":79,"file":209,"line":33},"upgrader_process_complete","on_upgrade_complete",{"type":120,"name":221,"callback":222,"priority":79,"file":209,"line":223},"switch_theme","on_theme_switch",33,{"type":120,"name":225,"callback":226,"file":209,"line":227},"user_register","on_user_created",36,{"type":120,"name":229,"callback":230,"priority":79,"file":209,"line":231},"delete_user","on_user_deleted",37,{"type":120,"name":233,"callback":234,"priority":79,"file":209,"line":235},"set_user_role","on_role_changed",38,{"type":120,"name":237,"callback":238,"priority":79,"file":209,"line":239},"before_delete_post","on_post_deleted",41,{"type":120,"name":241,"callback":242,"priority":79,"file":209,"line":243},"update_option_users_can_register","on_registration_toggle",44,{"type":120,"name":245,"callback":246,"priority":79,"file":209,"line":170},"update_option_default_role","on_default_role_change",{"type":120,"name":248,"callback":249,"file":209,"line":250},"shutdown","flush",175,{"type":120,"name":252,"callback":253,"file":254,"line":255},"wp_loaded","maybe_check_cron_health","includes\u002Fmodules\u002FCronGuard.php",34,{"type":120,"name":160,"callback":257,"priority":32,"file":254,"line":231},"detect_cron_flood",{"type":120,"name":160,"callback":259,"priority":32,"file":260,"line":261},"add_rewrite","includes\u002Fmodules\u002FCustomLoginURL.php",31,{"type":137,"name":263,"callback":264,"file":260,"line":265},"query_vars","add_query_var",32,{"type":120,"name":267,"callback":268,"priority":32,"file":260,"line":223},"template_redirect","handle_request",{"type":120,"name":270,"callback":271,"file":260,"line":227},"login_init","block_real_login",{"type":120,"name":160,"callback":273,"priority":32,"file":260,"line":231},"block_wpadmin_unauth",{"type":137,"name":275,"callback":276,"priority":79,"file":260,"line":277},"login_url","filter_login_url",40,{"type":137,"name":279,"callback":280,"priority":79,"file":260,"line":239},"logout_url","filter_logout_url",{"type":137,"name":282,"callback":283,"priority":79,"file":260,"line":284},"lostpassword_url","filter_lostpw_url",42,{"type":137,"name":286,"callback":287,"file":260,"line":288},"register_url","filter_register_url",43,{"type":137,"name":290,"callback":291,"priority":79,"file":260,"line":243},"network_site_url","filter_network_url",{"type":137,"name":293,"callback":294,"priority":79,"file":260,"line":170},"site_url","filter_site_url",{"type":137,"name":296,"callback":297,"priority":79,"file":260,"line":298},"wp_redirect","filter_redirect",46,{"type":137,"name":300,"callback":301,"file":302,"line":303},"force_ssl_admin","aswp_force_ssl_admin","includes\u002Fmodules\u002FHardening.php",12,{"type":137,"name":305,"callback":306,"file":302,"line":307},"rest_endpoints","disable_rest_users",22,{"type":137,"name":309,"callback":310,"file":302,"line":168},"xmlrpc_enabled","__return_false",{"type":120,"name":312,"callback":313,"file":302,"line":261},"send_headers","send_security_headers",{"type":137,"name":315,"callback":316,"file":302,"line":277},"auto_update_plugin","__return_true",{"type":137,"name":318,"callback":316,"file":302,"line":170},"auto_update_theme",{"type":120,"name":320,"callback":321,"file":322,"line":323},"wp_enqueue_scripts","inject_honeypot_css","includes\u002Fmodules\u002FHoneypot.php",63,{"type":120,"name":325,"callback":326,"priority":327,"file":322,"line":328},"wp_footer","inject_hidden_link",99,64,{"type":120,"name":160,"callback":330,"priority":32,"file":322,"line":331},"check_trap_url",68,{"type":120,"name":160,"callback":333,"priority":32,"file":322,"line":334},"check_fake_login",75,{"type":137,"name":336,"callback":337,"file":322,"line":338},"comment_form_fields","inject_comment_honeypot",80,{"type":137,"name":340,"callback":341,"file":322,"line":342},"preprocess_comment","check_comment_honeypot",81,{"type":137,"name":344,"callback":345,"priority":131,"file":322,"line":346},"wpcf7_validate","check_cf7_honeypot",86,{"type":120,"name":160,"callback":348,"priority":32,"file":322,"line":34},"check_scanner_trap",{"type":120,"name":350,"callback":351,"file":352,"line":79},"wp_login_failed","on_login_failed","includes\u002Fmodules\u002FLoginProtection.php",{"type":137,"name":354,"callback":355,"priority":33,"file":352,"line":356},"authenticate","check_lockout",11,{"type":137,"name":358,"callback":359,"file":352,"line":360},"login_errors","generic_error",14,{"type":137,"name":362,"callback":359,"file":352,"line":363},"lost_password_errors",15,{"type":120,"name":267,"callback":365,"file":352,"line":128},"block_author_enum",{"type":137,"name":367,"callback":368,"file":352,"line":369},"the_generator","__return_empty_string",25,{"type":137,"name":371,"callback":372,"priority":363,"file":352,"line":139},"script_loader_src","remove_version_query",{"type":137,"name":374,"callback":372,"priority":363,"file":352,"line":168},"style_loader_src",{"type":120,"name":376,"callback":377,"priority":79,"file":378,"line":202},"aswp_security_event","handle_event","includes\u002Fmodules\u002FNotifications.php",{"type":120,"name":380,"callback":381,"file":378,"line":139},"aswp_daily_digest","send_daily_digest",{"type":137,"name":383,"callback":200,"priority":79,"file":384,"line":331},"pre_http_request","includes\u002Fmodules\u002FOutboundMonitor.php",{"type":120,"name":386,"callback":387,"priority":79,"file":384,"line":388},"http_api_debug","log_completed_request",71,{"type":120,"name":248,"callback":390,"file":384,"line":391},"flush_log",398,{"type":120,"name":393,"callback":394,"priority":79,"file":395,"line":168},"user_profile_update_errors","validate_profile_password","includes\u002Fmodules\u002FPasswordPolicy.php",{"type":120,"name":397,"callback":398,"priority":79,"file":395,"line":213},"validate_password_reset","validate_reset_password",{"type":137,"name":400,"callback":401,"priority":79,"file":395,"line":143},"registration_errors","validate_registration_password",{"type":120,"name":403,"callback":404,"priority":327,"file":395,"line":405},"show_user_profile","inject_profile_helper",35,{"type":120,"name":407,"callback":404,"priority":327,"file":395,"line":227},"edit_user_profile",{"type":120,"name":409,"callback":150,"priority":79,"file":410,"line":411},"wp_login","includes\u002Fmodules\u002FPostBreach.php",458,{"type":120,"name":133,"callback":150,"priority":11,"file":410,"line":413},466,{"type":120,"name":415,"callback":150,"file":410,"line":416},"password_reset",480,{"type":120,"name":418,"callback":150,"file":410,"line":419},"profile_update",488,{"type":120,"name":130,"callback":150,"file":410,"line":421},499,{"type":120,"name":267,"callback":423,"priority":11,"file":410,"line":424},"lockdown_gate",511,{"type":137,"name":426,"callback":150,"priority":11,"file":410,"line":427},"rest_authentication_errors",514,{"type":137,"name":309,"callback":150,"priority":11,"file":410,"line":429},520,{"type":120,"name":133,"callback":150,"priority":11,"file":410,"line":431},526,{"type":120,"name":160,"callback":433,"priority":434,"file":435,"line":223},"check_request",2,"includes\u002Fmodules\u002FRateLimiter.php",{"type":137,"name":437,"callback":438,"priority":79,"file":439,"line":261},"rest_pre_dispatch","enforce_policies","includes\u002Fmodules\u002FRestApiPolicy.php",{"type":120,"name":441,"callback":442,"file":443,"line":444},"aswp_run_scan_batch","run_batch","includes\u002Fmodules\u002FScanner.php",52,{"type":120,"name":446,"callback":447,"file":443,"line":174},"aswp_run_db_scan","run_db_scan",{"type":120,"name":449,"callback":450,"file":443,"line":451},"add_attachment","check_uploaded_file",61,{"type":120,"name":312,"callback":453,"priority":32,"file":454,"line":363},"send_all","includes\u002Fmodules\u002FSecurityHeaders.php",{"type":120,"name":133,"callback":150,"priority":32,"file":454,"line":456},17,{"type":120,"name":458,"callback":459,"priority":79,"file":460,"line":168},"set_auth_cookie","harden_auth_cookie","includes\u002Fmodules\u002FSessionSecurity.php",{"type":120,"name":312,"callback":462,"priority":11,"file":460,"line":213},"harden_php_session_cookie",{"type":120,"name":409,"callback":464,"priority":131,"file":460,"line":261},"on_login",{"type":120,"name":160,"callback":466,"priority":467,"file":460,"line":255},"verify_session",5,{"type":120,"name":409,"callback":469,"priority":369,"file":460,"line":231},"enforce_session_limit",{"type":120,"name":160,"callback":471,"priority":472,"file":460,"line":277},"track_activity",6,{"type":120,"name":409,"callback":464,"priority":79,"file":474,"line":456},"includes\u002Fmodules\u002FTwoFA.php",{"type":137,"name":354,"callback":476,"priority":477,"file":474,"line":124},"block_if_pending_2fa",50,{"type":120,"name":479,"callback":480,"file":474,"line":128},"login_form_aswp2fa","handle_2fa_form",{"type":120,"name":403,"callback":482,"file":474,"line":307},"profile_section",{"type":120,"name":407,"callback":482,"file":474,"line":135},{"type":120,"name":485,"callback":486,"file":474,"line":166},"personal_options_update","save_profile",{"type":120,"name":488,"callback":486,"file":474,"line":369},"edit_user_profile_update",{"type":120,"name":126,"callback":490,"file":474,"line":213},"enqueue_profile_script",{"type":120,"name":160,"callback":492,"priority":11,"file":493,"line":307},"inspect_request","includes\u002Fmodules\u002FWAF.php",[495,500,503,506,509,512,516,520,523,527,531,535,539,542,546,549,552,555,558,561,564,569,572,575,578,582,585,588,592,595,599,602,603,606,609,612,614,617,620,623,626,629,632,635,638,641,644,647,650,653,656,659,664],{"action":496,"nopriv":497,"callback":498,"hasNonce":499,"hasCapCheck":499,"file":123,"line":33},"aswp_set_uninstall_pref",false,"ajax_set_uninstall_pref",true,{"action":501,"nopriv":497,"callback":502,"hasNonce":499,"hasCapCheck":499,"file":123,"line":223},"aswp_save_settings","ajax_save_settings",{"action":504,"nopriv":497,"callback":505,"hasNonce":499,"hasCapCheck":499,"file":123,"line":255},"aswp_complete_setup","ajax_complete_setup",{"action":507,"nopriv":497,"callback":508,"hasNonce":499,"hasCapCheck":497,"file":123,"line":405},"aswp_dismiss_setup_notice","ajax_dismiss_setup_notice",{"action":510,"nopriv":497,"callback":511,"hasNonce":499,"hasCapCheck":499,"file":123,"line":227},"aswp_apply_recommended","ajax_apply_recommended",{"action":513,"nopriv":497,"callback":514,"hasNonce":499,"hasCapCheck":499,"file":165,"line":515},"aswp_add_whitelist","ajax_add_whitelist",118,{"action":517,"nopriv":497,"callback":518,"hasNonce":499,"hasCapCheck":499,"file":165,"line":519},"aswp_remove_whitelist","ajax_remove_whitelist",119,{"action":521,"nopriv":497,"callback":522,"hasNonce":499,"hasCapCheck":499,"file":165,"line":12},"aswp_get_whitelist","ajax_get_whitelist",{"action":524,"nopriv":497,"callback":525,"hasNonce":499,"hasCapCheck":499,"file":165,"line":526},"aswp_whitelist_my_ip","ajax_whitelist_my_ip",121,{"action":528,"nopriv":497,"callback":529,"hasNonce":497,"hasCapCheck":497,"file":165,"line":530},"aswp_save_login_url","ajax_save",122,{"action":532,"nopriv":497,"callback":533,"hasNonce":497,"hasCapCheck":497,"file":165,"line":534},"aswp_regenerate_login_url","ajax_regenerate",123,{"action":536,"nopriv":497,"callback":537,"hasNonce":497,"hasCapCheck":497,"file":165,"line":538},"aswp_download_geoip","ajax_download",126,{"action":540,"nopriv":497,"callback":541,"hasNonce":497,"hasCapCheck":497,"file":165,"line":147},"aswp_test_geoip","ajax_test_lookup",{"action":543,"nopriv":497,"callback":544,"hasNonce":499,"hasCapCheck":499,"file":165,"line":545},"aswp_waf_toggle_rule","ajax_waf_toggle_rule",130,{"action":547,"nopriv":497,"callback":548,"hasNonce":499,"hasCapCheck":499,"file":201,"line":307},"aswp_save_ai_crawler_rules","ajax_save_rules",{"action":550,"nopriv":497,"callback":551,"hasNonce":499,"hasCapCheck":499,"file":201,"line":135},"aswp_get_ai_crawler_stats","ajax_get_stats",{"action":553,"nopriv":497,"callback":554,"hasNonce":499,"hasCapCheck":499,"file":254,"line":277},"aswp_get_cron_status","ajax_get_cron_status",{"action":556,"nopriv":497,"callback":557,"hasNonce":499,"hasCapCheck":499,"file":254,"line":239},"aswp_approve_cron_hook","ajax_approve_cron_hook",{"action":559,"nopriv":497,"callback":560,"hasNonce":499,"hasCapCheck":499,"file":254,"line":284},"aswp_remove_cron_hook","ajax_remove_cron_hook",{"action":562,"nopriv":497,"callback":563,"hasNonce":499,"hasCapCheck":499,"file":254,"line":288},"aswp_save_cron_settings","ajax_save_cron_settings",{"action":565,"nopriv":497,"callback":566,"hasNonce":499,"hasCapCheck":499,"file":567,"line":568},"aswp_block_ip","ajax_block_ip","includes\u002Fmodules\u002FIPManager.php",9,{"action":570,"nopriv":497,"callback":571,"hasNonce":499,"hasCapCheck":499,"file":567,"line":79},"aswp_unblock_ip","ajax_unblock_ip",{"action":573,"nopriv":497,"callback":574,"hasNonce":499,"hasCapCheck":499,"file":567,"line":356},"aswp_whitelist_ip","ajax_whitelist_ip",{"action":576,"nopriv":497,"callback":577,"hasNonce":499,"hasCapCheck":499,"file":567,"line":303},"aswp_get_ip_info","ajax_get_ip_info",{"action":579,"nopriv":497,"callback":580,"hasNonce":499,"hasCapCheck":499,"file":567,"line":581},"aswp_live_visitors","ajax_live_visitors",13,{"action":583,"nopriv":497,"callback":584,"hasNonce":499,"hasCapCheck":499,"file":567,"line":360},"aswp_visitor_log","ajax_visitor_log",{"action":586,"nopriv":497,"callback":587,"hasNonce":499,"hasCapCheck":499,"file":567,"line":363},"aswp_visitor_stats","ajax_visitor_stats",{"action":589,"nopriv":497,"callback":590,"hasNonce":499,"hasCapCheck":499,"file":384,"line":591},"aswp_get_outbound_log","ajax_get_outbound_log",74,{"action":593,"nopriv":497,"callback":594,"hasNonce":499,"hasCapCheck":499,"file":384,"line":334},"aswp_save_outbound_allowlist","ajax_save_outbound_allowlist",{"action":596,"nopriv":497,"callback":597,"hasNonce":499,"hasCapCheck":499,"file":384,"line":598},"aswp_get_outbound_stats","ajax_get_outbound_stats",76,{"action":600,"nopriv":497,"callback":601,"hasNonce":499,"hasCapCheck":497,"file":395,"line":307},"aswp_generate_passphrase","ajax_generate_passphrase",{"action":600,"nopriv":497,"callback":601,"hasNonce":499,"hasCapCheck":497,"file":395,"line":265},{"action":604,"nopriv":497,"callback":605,"hasNonce":499,"hasCapCheck":499,"file":410,"line":360},"aswp_breach_action","dispatch",{"action":607,"nopriv":497,"callback":608,"hasNonce":499,"hasCapCheck":499,"file":439,"line":405},"aswp_get_rest_policies","ajax_get_policies",{"action":610,"nopriv":497,"callback":611,"hasNonce":499,"hasCapCheck":499,"file":439,"line":227},"aswp_save_rest_policies","ajax_save_policies",{"action":613,"nopriv":497,"callback":551,"hasNonce":499,"hasCapCheck":499,"file":439,"line":231},"aswp_get_rest_api_stats",{"action":615,"nopriv":497,"callback":616,"hasNonce":499,"hasCapCheck":499,"file":443,"line":182},"aswp_start_scan","ajax_start_scan",{"action":618,"nopriv":497,"callback":619,"hasNonce":499,"hasCapCheck":499,"file":443,"line":186},"aswp_scan_status","ajax_scan_status",{"action":621,"nopriv":497,"callback":622,"hasNonce":499,"hasCapCheck":499,"file":443,"line":190},"aswp_get_scan_results","ajax_scan_results",{"action":624,"nopriv":497,"callback":625,"hasNonce":499,"hasCapCheck":499,"file":443,"line":194},"aswp_quarantine_file","ajax_quarantine",{"action":627,"nopriv":497,"callback":628,"hasNonce":499,"hasCapCheck":497,"file":460,"line":288},"aswp_get_session_info","ajax_get_session_info",{"action":630,"nopriv":497,"callback":631,"hasNonce":499,"hasCapCheck":499,"file":460,"line":243},"aswp_destroy_user_sessions","ajax_destroy_user_sessions",{"action":633,"nopriv":497,"callback":634,"hasNonce":499,"hasCapCheck":499,"file":460,"line":170},"aswp_get_session_stats","ajax_get_session_stats",{"action":636,"nopriv":497,"callback":637,"hasNonce":499,"hasCapCheck":497,"file":474,"line":261},"aswp_2fa_verify_totp","ajax_verify_totp",{"action":639,"nopriv":497,"callback":640,"hasNonce":499,"hasCapCheck":497,"file":474,"line":265},"aswp_2fa_generate_totp","ajax_generate_totp",{"action":642,"nopriv":497,"callback":643,"hasNonce":499,"hasCapCheck":497,"file":474,"line":223},"aswp_2fa_send_email_otp","ajax_send_email_otp",{"action":645,"nopriv":497,"callback":646,"hasNonce":499,"hasCapCheck":497,"file":474,"line":255},"aswp_2fa_disable","ajax_disable_2fa",{"action":648,"nopriv":497,"callback":649,"hasNonce":499,"hasCapCheck":497,"file":474,"line":405},"aswp_2fa_enable_email","ajax_enable_email",{"action":651,"nopriv":497,"callback":652,"hasNonce":499,"hasCapCheck":497,"file":474,"line":227},"aswp_2fa_regen_codes","ajax_regen_codes",{"action":654,"nopriv":499,"callback":655,"hasNonce":499,"hasCapCheck":497,"file":474,"line":231},"aswp_2fa_validate","ajax_validate_2fa",{"action":657,"nopriv":499,"callback":658,"hasNonce":499,"hasCapCheck":497,"file":474,"line":235},"aswp_2fa_resend","ajax_resend_otp",{"action":660,"nopriv":497,"callback":661,"hasNonce":499,"hasCapCheck":499,"file":662,"line":663},"aswp_run_vuln_audit","ajax_run","includes\u002Fmodules\u002FVulnAudit.php",21,{"action":665,"nopriv":497,"callback":666,"hasNonce":499,"hasCapCheck":499,"file":662,"line":307},"aswp_get_vuln_results","ajax_results",[],[],[670,673,675,677,679,681,683],{"hook":172,"callback":172,"file":671,"line":672},"includes\u002FInstaller.php",212,{"hook":176,"callback":176,"file":671,"line":674},215,{"hook":180,"callback":180,"file":671,"line":676},218,{"hook":184,"callback":184,"file":671,"line":678},221,{"hook":188,"callback":188,"file":671,"line":680},224,{"hook":192,"callback":192,"file":671,"line":682},227,{"hook":380,"callback":380,"file":378,"line":131},4,{"dangerousFunctions":686,"sqlUsage":691,"outputEscaping":694,"fileOperations":79,"externalRequests":713,"nonceChecks":178,"capabilityChecks":714,"bundledLibraries":715},[687],{"fn":688,"file":493,"line":689,"context":690},"set_time_limit",389,"set_time_limit( 15 ); \u002F\u002F phpcs:ignore Generic.PHP.NoSilencedErrors.Discouraged, Squiz.PHP.Discourage",{"prepared":692,"raw":11,"locations":693},195,[],{"escaped":695,"rawEcho":472,"locations":696},655,[697,700,703,706,709,711],{"file":698,"line":194,"context":699},"admin\u002Fviews\u002Fai-crawlers.php","raw output",{"file":701,"line":702,"context":699},"admin\u002Fviews\u002Fcron-guard.php",176,{"file":704,"line":705,"context":699},"admin\u002Fviews\u002Foutbound-monitor.php",84,{"file":707,"line":708,"context":699},"admin\u002Fviews\u002Fwaf.php",281,{"file":710,"line":190,"context":699},"admin\u002Fviews\u002Fwhitelist.php",{"file":435,"line":712,"context":699},138,8,51,[],[717,735,743,753,761,772,780,791,807,819,844,854,874,884,892,902,917,931],{"entryPoint":718,"graph":719,"unsanitizedCount":11,"severity":734},"ajax_set_uninstall_pref (admin\u002FAdmin.php:371)",{"nodes":720,"edges":732},[721,726],{"id":722,"type":723,"label":724,"file":123,"line":725},"n0","source","$_POST",376,{"id":727,"type":728,"label":729,"file":123,"line":730,"wp_function":731},"n1","sink","update_option() [Settings Manipulation]",377,"update_option",[733],{"from":722,"to":727,"sanitized":499},"low",{"entryPoint":736,"graph":737,"unsanitizedCount":11,"severity":734},"\u003CAdmin> (admin\u002FAdmin.php:0)",{"nodes":738,"edges":741},[739,740],{"id":722,"type":723,"label":724,"file":123,"line":725},{"id":727,"type":728,"label":729,"file":123,"line":730,"wp_function":731},[742],{"from":722,"to":727,"sanitized":499},{"entryPoint":744,"graph":745,"unsanitizedCount":11,"severity":734},"ajax_save_rules (includes\u002Fmodules\u002FAICrawlers.php:514)",{"nodes":746,"edges":751},[747,749],{"id":722,"type":723,"label":724,"file":201,"line":748},524,{"id":727,"type":728,"label":729,"file":201,"line":750,"wp_function":731},551,[752],{"from":722,"to":727,"sanitized":499},{"entryPoint":754,"graph":755,"unsanitizedCount":11,"severity":734},"\u003CAICrawlers> (includes\u002Fmodules\u002FAICrawlers.php:0)",{"nodes":756,"edges":759},[757,758],{"id":722,"type":723,"label":724,"file":201,"line":748},{"id":727,"type":728,"label":729,"file":201,"line":750,"wp_function":731},[760],{"from":722,"to":727,"sanitized":499},{"entryPoint":762,"graph":763,"unsanitizedCount":11,"severity":734},"ajax_save_cron_settings (includes\u002Fmodules\u002FCronGuard.php:715)",{"nodes":764,"edges":770},[765,768],{"id":722,"type":723,"label":766,"file":254,"line":767},"$_POST (x2)",725,{"id":727,"type":728,"label":729,"file":254,"line":769,"wp_function":731},726,[771],{"from":722,"to":727,"sanitized":499},{"entryPoint":773,"graph":774,"unsanitizedCount":11,"severity":734},"\u003CCronGuard> (includes\u002Fmodules\u002FCronGuard.php:0)",{"nodes":775,"edges":778},[776,777],{"id":722,"type":723,"label":766,"file":254,"line":767},{"id":727,"type":728,"label":729,"file":254,"line":769,"wp_function":731},[779],{"from":722,"to":727,"sanitized":499},{"entryPoint":781,"graph":782,"unsanitizedCount":11,"severity":734},"ajax_save (includes\u002Fmodules\u002FCustomLoginURL.php:316)",{"nodes":783,"edges":789},[784,787],{"id":722,"type":723,"label":785,"file":260,"line":786},"$_POST (x3)",320,{"id":727,"type":728,"label":729,"file":260,"line":788,"wp_function":731},324,[790],{"from":722,"to":727,"sanitized":499},{"entryPoint":792,"graph":793,"unsanitizedCount":11,"severity":734},"\u003CCustomLoginURL> (includes\u002Fmodules\u002FCustomLoginURL.php:0)",{"nodes":794,"edges":804},[795,798,800,802],{"id":722,"type":723,"label":796,"file":260,"line":797},"$_GET",248,{"id":727,"type":728,"label":729,"file":260,"line":799,"wp_function":731},293,{"id":801,"type":723,"label":785,"file":260,"line":786},"n2",{"id":803,"type":728,"label":729,"file":260,"line":788,"wp_function":731},"n3",[805,806],{"from":722,"to":727,"sanitized":499},{"from":801,"to":803,"sanitized":499},{"entryPoint":808,"graph":809,"unsanitizedCount":11,"severity":734},"ajax_whitelist_ip (includes\u002Fmodules\u002FIPManager.php:159)",{"nodes":810,"edges":817},[811,813],{"id":722,"type":723,"label":724,"file":567,"line":812},166,{"id":727,"type":728,"label":814,"file":567,"line":815,"wp_function":816},"get_var() [SQLi]",178,"get_var",[818],{"from":722,"to":727,"sanitized":499},{"entryPoint":820,"graph":821,"unsanitizedCount":11,"severity":734},"ajax_get_ip_info (includes\u002Fmodules\u002FIPManager.php:194)",{"nodes":822,"edges":840},[823,826,828,829,833,835],{"id":722,"type":723,"label":824,"file":567,"line":825},"$_GET (x4)",202,{"id":727,"type":728,"label":814,"file":567,"line":827,"wp_function":816},209,{"id":801,"type":723,"label":796,"file":567,"line":825},{"id":803,"type":728,"label":830,"file":567,"line":831,"wp_function":832},"get_row() [SQLi]",219,"get_row",{"id":834,"type":723,"label":796,"file":567,"line":825},"n4",{"id":836,"type":728,"label":837,"file":567,"line":838,"wp_function":839},"n5","get_results() [SQLi]",225,"get_results",[841,842,843],{"from":722,"to":727,"sanitized":499},{"from":801,"to":803,"sanitized":499},{"from":834,"to":836,"sanitized":499},{"entryPoint":845,"graph":846,"unsanitizedCount":11,"severity":734},"ajax_visitor_log (includes\u002Fmodules\u002FIPManager.php:307)",{"nodes":847,"edges":852},[848,850],{"id":722,"type":723,"label":796,"file":567,"line":849},333,{"id":727,"type":728,"label":837,"file":567,"line":851,"wp_function":839},383,[853],{"from":722,"to":727,"sanitized":499},{"entryPoint":855,"graph":856,"unsanitizedCount":11,"severity":734},"\u003CIPManager> (includes\u002Fmodules\u002FIPManager.php:0)",{"nodes":857,"edges":869},[858,859,860,861,862,863,864,867],{"id":722,"type":723,"label":724,"file":567,"line":812},{"id":727,"type":728,"label":814,"file":567,"line":815,"wp_function":816},{"id":801,"type":723,"label":824,"file":567,"line":825},{"id":803,"type":728,"label":814,"file":567,"line":827,"wp_function":816},{"id":834,"type":723,"label":796,"file":567,"line":825},{"id":836,"type":728,"label":830,"file":567,"line":831,"wp_function":832},{"id":865,"type":723,"label":866,"file":567,"line":825},"n6","$_GET (x2)",{"id":868,"type":728,"label":837,"file":567,"line":838,"wp_function":839},"n7",[870,871,872,873],{"from":722,"to":727,"sanitized":499},{"from":801,"to":803,"sanitized":499},{"from":834,"to":836,"sanitized":499},{"from":865,"to":868,"sanitized":499},{"entryPoint":875,"graph":876,"unsanitizedCount":11,"severity":734},"ajax_save_outbound_allowlist (includes\u002Fmodules\u002FOutboundMonitor.php:537)",{"nodes":877,"edges":882},[878,880],{"id":722,"type":723,"label":766,"file":384,"line":879},566,{"id":727,"type":728,"label":729,"file":384,"line":881,"wp_function":731},568,[883],{"from":722,"to":727,"sanitized":499},{"entryPoint":885,"graph":886,"unsanitizedCount":11,"severity":734},"\u003COutboundMonitor> (includes\u002Fmodules\u002FOutboundMonitor.php:0)",{"nodes":887,"edges":890},[888,889],{"id":722,"type":723,"label":766,"file":384,"line":879},{"id":727,"type":728,"label":729,"file":384,"line":881,"wp_function":731},[891],{"from":722,"to":727,"sanitized":499},{"entryPoint":893,"graph":894,"unsanitizedCount":11,"severity":734},"ajax_save_policies (includes\u002Fmodules\u002FRestApiPolicy.php:397)",{"nodes":895,"edges":900},[896,898],{"id":722,"type":723,"label":724,"file":439,"line":897},406,{"id":727,"type":728,"label":729,"file":439,"line":899,"wp_function":731},407,[901],{"from":722,"to":727,"sanitized":499},{"entryPoint":903,"graph":904,"unsanitizedCount":11,"severity":734},"ajax_get_stats (includes\u002Fmodules\u002FRestApiPolicy.php:441)",{"nodes":905,"edges":914},[906,908,910,912],{"id":722,"type":723,"label":866,"file":439,"line":907},450,{"id":727,"type":728,"label":814,"file":439,"line":909,"wp_function":816},456,{"id":801,"type":723,"label":911,"file":439,"line":907},"$_GET (x3)",{"id":803,"type":728,"label":837,"file":439,"line":913,"wp_function":839},473,[915,916],{"from":722,"to":727,"sanitized":499},{"from":801,"to":803,"sanitized":499},{"entryPoint":918,"graph":919,"unsanitizedCount":11,"severity":734},"\u003CRestApiPolicy> (includes\u002Fmodules\u002FRestApiPolicy.php:0)",{"nodes":920,"edges":927},[921,922,923,924,925,926],{"id":722,"type":723,"label":724,"file":439,"line":897},{"id":727,"type":728,"label":729,"file":439,"line":899,"wp_function":731},{"id":801,"type":723,"label":866,"file":439,"line":907},{"id":803,"type":728,"label":814,"file":439,"line":909,"wp_function":816},{"id":834,"type":723,"label":911,"file":439,"line":907},{"id":836,"type":728,"label":837,"file":439,"line":913,"wp_function":839},[928,929,930],{"from":722,"to":727,"sanitized":499},{"from":801,"to":803,"sanitized":499},{"from":834,"to":836,"sanitized":499},{"entryPoint":932,"graph":933,"unsanitizedCount":11,"severity":734},"\u003CTwoFA> (includes\u002Fmodules\u002FTwoFA.php:0)",{"nodes":934,"edges":945},[935,937,941,943],{"id":722,"type":723,"label":796,"file":474,"line":936},79,{"id":727,"type":728,"label":938,"file":474,"line":939,"wp_function":940},"echo() [XSS]",180,"echo",{"id":801,"type":723,"label":724,"file":474,"line":942},413,{"id":803,"type":728,"label":938,"file":474,"line":944,"wp_function":940},607,[946,947],{"from":722,"to":727,"sanitized":499},{"from":801,"to":803,"sanitized":499},{"summary":949,"deductions":950},"The 'atlant-security' v1.1.2 plugin demonstrates a generally good security posture with several robust practices. The vast majority of SQL queries utilize prepared statements, and output escaping is nearly comprehensive, indicating developers have a strong understanding of common web vulnerabilities. The absence of any known CVEs, critical taint flows, or unsanitized paths further strengthens this positive assessment. The plugin also implements a significant number of capability checks, which is a good indicator of authorization awareness.\n\nHowever, there are a few areas that introduce a modicum of risk. The presence of 4 AJAX handlers without authentication checks is a notable concern, as these could potentially be exploited for unauthorized actions if they perform sensitive operations. The single instance of `set_time_limit` is also worth noting; while not inherently dangerous, its use can sometimes be associated with denial-of-service vectors if not carefully managed. The plugin's vulnerability history being completely clean is an excellent sign, suggesting responsible development and maintenance practices, but it doesn't negate the risks identified in the static analysis.\n\nIn conclusion, 'atlant-security' v1.1.2 is relatively secure, with its strengths in prepared SQL statements and output escaping. The primary weakness lies in the unprotected AJAX endpoints, which warrant immediate attention and the implementation of proper authorization checks. The plugin's clean vulnerability record is a testament to good coding, but the identified attack surface requires mitigation to maintain its secure standing.",[951,953],{"reason":952,"points":79},"Unprotected AJAX handlers",{"reason":954,"points":434},"Dangerous function usage (set_time_limit)","2026-04-16T14:02:07.037Z",{"wat":957,"direct":1078},{"assetPaths":958,"generatorPatterns":1017,"scriptPaths":1018,"versionParams":1019},[959,960,961,962,963,964,965,966,967,968,969,970,971,972,973,974,975,976,977,978,979,980,981,982,983,984,985,986,987,988,989,990,991,992,993,994,995,996,968,997,965,998,999,1000,1001,1002,1003,1004,1005,1006,1007,1008,1009,965,1010,1011,1012,987,1013,1014,1015,1016],"\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fcss\u002Fcommon.css","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fcss\u002Ffont-awesome.css","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fcss\u002Fmain.css","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fcss\u002Fsidebar.css","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fmoment.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fchart.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Ffullcalendar.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.sparkline.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.peity.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.easy-pie-chart.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fowl.carousel.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.waypoints.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.counterup.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.slimscroll.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Ftoastr.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.flot.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.flot.tooltip.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.flot.resize.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.flot.pie.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.flot.categories.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.flot.time.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.steps.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.validate.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fmodernizr-2.6.2.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-filestyle.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fisotope.pkgd.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fmagnific-popup.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fswitchery.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-tagsinput.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fdropzone.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fmultiselect.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.dataTables.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002FdataTables.bootstrap.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fdatatables.responsive.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fresponsive.bootstrap.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.nicescroll.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.easypiechart.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-datetimepicker.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fselect2.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-colorpicker.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-datepicker.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-timepicker.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-inputmask.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fsummernote.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.mask.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fautosize.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fckeditor.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.form-wizard.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.tagsinput.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fdaterangepicker.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fmasonry.pkgd.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fsweetalert.min.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.scrollto.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.sticky.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.app.js","\u002Fwp-content\u002Fplugins\u002Fatlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fmain.js",[],[],[1020,1021,1022,1023,1024,1025,1026,1027,1028,1029,1030,1031,1032,1033,1034,1035,1036,1037,1038,1039,1040,1041,1042,1043,1044,1045,1046,1047,1048,1049,1050,1051,1052,1053,1054,1055,1056,1057,1029,1058,1026,1059,1060,1061,1062,1063,1064,1065,1066,1067,1068,1069,1070,1026,1071,1072,1073,1048,1074,1075,1076,1077],"atlant-security\u002Fadmin\u002Fassets\u002Fcss\u002Fcommon.css?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fcss\u002Ffont-awesome.css?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fcss\u002Fmain.css?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fcss\u002Fsidebar.css?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fmoment.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fchart.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Ffullcalendar.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.sparkline.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.peity.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.easy-pie-chart.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fowl.carousel.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.waypoints.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.counterup.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.slimscroll.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Ftoastr.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.flot.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.flot.tooltip.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.flot.resize.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.flot.pie.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.flot.categories.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.flot.time.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.steps.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.validate.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fmodernizr-2.6.2.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-filestyle.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fisotope.pkgd.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fmagnific-popup.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fswitchery.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-tagsinput.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fdropzone.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fmultiselect.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.dataTables.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002FdataTables.bootstrap.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fdatatables.responsive.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fresponsive.bootstrap.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.nicescroll.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.easypiechart.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-datetimepicker.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fselect2.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-colorpicker.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-datepicker.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-timepicker.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fbootstrap-inputmask.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fsummernote.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.mask.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fautosize.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fckeditor.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.form-wizard.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.tagsinput.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fdaterangepicker.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fmasonry.pkgd.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fsweetalert.min.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.scrollto.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.sticky.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fvendors\u002Fjquery.app.js?ver=","atlant-security\u002Fadmin\u002Fassets\u002Fjs\u002Fmain.js?ver=",{"cssClasses":1079,"htmlComments":1083,"htmlAttributes":1096,"restEndpoints":1099,"jsGlobals":1106,"shortcodeOutput":1112},[1080,1081,1082],"aswp-login-form-wrapper","aswp-sidebar-menu-item","aswp-tooltip",[1084,1085,1086,1087,1088,1087,1089,1090,1091,1092,1093,1094,1095],"\u003C!-- Atlant Security -->","\u003C!-- Atlant Security Admin Notice -->","\u003C!-- START Atlant Security ->","\u003C!-- END Atlant Security -->","\u003C!-- BEGIN Atlant Security ->","\u003C!-- BEGIN Atlant Security - Lockdown -->","\u003C!-- END Atlant Security - Lockdown -->","\u003C!-- BEGIN Atlant Security - Safe Mode -->","\u003C!-- END Atlant Security - Safe Mode -->","\u003C!-- Atlant Security Protection Message -->","\u003C!-- Atlant Security Dashboard Widget -->","\u003C!--Atlante Security -->",[1097,1098],"data-toggle=\"aswp-tooltip\"","data-original-title",[1100,1101,1102,1103,1104,1105],"\u002Fwp-json\u002Fatlant-security\u002Fv1\u002Fsettings","\u002Fwp-json\u002Fatlant-security\u002Fv1\u002Flogs","\u002Fwp-json\u002Fatlant-security\u002Fv1\u002Fscan","\u002Fwp-json\u002Fatlant-security\u002Fv1\u002Fip-block","\u002Fwp-json\u002Fatlant-security\u002Fv1\u002Fwaf","\u002Fwp-json\u002Fatlant-security\u002Fv1\u002Fbot-detection",[1107,1108,1109,1110,1111],"ASWP_Admin","aswp_admin_ajax_object","aswp_params","ASWP_Admin_AJAX","aswp_vars",[1113],"[atlant_security_login_form]",{"error":499,"url":1115,"statusCode":1116,"statusMessage":1117,"message":1117},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fatlant-security\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":32,"versions":1119},[1120],{"version":6,"download_url":24,"svn_tag_url":1121,"released_at":26,"has_diff":497,"diff_files_changed":1122,"diff_lines":26,"trac_diff_url":26,"vulnerabilities":1123,"is_current":499},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fatlant-security\u002Ftags\u002F1.1.2\u002F",[],[]]