[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fJec5asZTSMkyVsFzd4LxIXMXCmNvBqyRb74iBv0ixR0":3,"$faOKSo0w4hpAj-FroqJqHS8xpRmN4RfhXYbn7CeqnMSA":198,"$fumZ-AmhV4ya9h7k1eVso5hyCjlYM4SgiH9Qv_s3WJrw":203},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":37,"analysis":143,"fingerprints":184},"awesoft-ip-whitelist","IP Whitelist","1.0.2","Awesoft","https:\u002F\u002Fprofiles.wordpress.org\u002Fawesoft\u002F","\u003Cp>The “IP Whitelist” plugin allows administrators to limit access to the WordPress dashboard by whitelisting specific IP addresses. It’s intended to enhance security by restricting access to only trusted sources.\u003C\u002Fp>\n","Allows administrators to limit access to the WordPress dashboard",60,946,0,"2025-02-02T03:05:00.000Z","6.7.5","6.0","7.4",[19,20,21,22,23],"access","admin","ip","security","whitelist","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fawesoft-ip-whitelist\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fawesoft-ip-whitelist.1.0.2.zip",92,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"awesoft",1,30,88,"2026-05-20T07:03:17.579Z",[38,59,82,105,125],{"slug":39,"name":40,"version":6,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":13,"downloaded":45,"rating":13,"num_ratings":13,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":49,"tags":50,"homepage":56,"download_link":57,"security_score":58,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"admin-allow-by-ip","Admin Allow by IP","Apsara Aruna","https:\u002F\u002Fprofiles.wordpress.org\u002Fapsaraaruna\u002F","\u003Cp>Protect your admin form hackers!. You can allow your wp-admin for specific IP(s).\u003C\u002Fp>\n\u003Cp>You can select redirect after blocked wp-admin to others. and also you can customize as you want. we provide sample landing page \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fapsaraaruna\u002Fmaintenance-landing\" title=\"Landing page\" rel=\"nofollow ugc\">here\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Also see my other plugins\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwidget-youtube-subscribtion\u002F\" title=\"Easy Subscribe Button Widget\" rel=\"ugc\">Easy Subscribe Button Widget\u003C\u002Fa> \u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fembed-page-facebook\u002F\" title=\"Easy Embed Page Widget\" rel=\"ugc\">Easy Embed Page Widget\u003C\u002Fa>\u003C\u002Fp>\n","Protect your admin form hackers!. You can allow your wp-admin for specific IP(s).",1400,"2023-10-19T10:42:00.000Z","6.3.8","5.0","",[51,52,53,54,55],"securityadmin","spam","wp-admin-login","wp-security","wp-security-whitelist-ip","http:\u002F\u002Fadmin-allow-by-ip","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-allow-by-ip.1.0.2.zip",85,{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":69,"num_ratings":70,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":74,"tags":75,"homepage":77,"download_link":78,"security_score":79,"vuln_count":80,"unpatched_count":13,"last_vuln_date":81,"fetched_at":28},"loginizer","Loginizer","2.0.6","Softaculous","https:\u002F\u002Fprofiles.wordpress.org\u002Fsoftaculous\u002F","\u003Cp>Loginizer is a WordPress plugin which helps you fight against bruteforce attack by blocking login for the IP after it reaches maximum retries allowed. You can blacklist or whitelist IPs for login using Loginizer. You can use various other features like Two Factor Auth, reCAPTCHA, PasswordLess Login, etc. to improve security of your website.\u003C\u002Fp>\n\u003Cp>Loginizer is actively used by more than 1000000+ WordPress websites.\u003C\u002Fp>\n\u003Cp>You can find our official documentation at \u003Ca href=\"https:\u002F\u002Floginizer.com\u002Fdocs\" rel=\"nofollow ugc\">https:\u002F\u002Floginizer.com\u002Fdocs\u003C\u002Fa>. We are also active in our community support forums on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Floginizer\" rel=\"ugc\">wordpress.org\u003C\u002Fa> if you are one of our free users. Our Premium Support Ticket System is at \u003Ca href=\"https:\u002F\u002Floginizer.deskuss.com\" rel=\"nofollow ugc\">https:\u002F\u002Floginizer.deskuss.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Free Features :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Brute force protection. IPs trying to brute force your website will be blocked for 15 minutes after 3 failed login attempts. After multiple lockouts the IP is blocked for 24 hours. This is the default configuration and can be changed from Loginizer -> Brute force page in WordPress admin panel.\u003C\u002Fli>\n\u003Cli>Failed login attempts logs.\u003C\u002Fli>\n\u003Cli>Blacklist IPs\u003C\u002Fli>\n\u003Cli>Whitelist IPs\u003C\u002Fli>\n\u003Cli>Custom error messages on failed login.\u003C\u002Fli>\n\u003Cli>Permission check for important files and folders.\u003C\u002Fli>\n\u003Cli>Allow only Trusted IP.\u003C\u002Fli>\n\u003Cli>Blocked Screen in place of the Login page.\u003C\u002Fli>\n\u003Cli>Email Notification on successful login.\u003C\u002Fli>\n\u003Cli>Let users login with LinkedIn\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Get Support and Pro Features\u003C\u002Fh4>\n\u003Cp>Get professional support from our experts and pro features to take your site’s security to the next level with \u003Ca href=\"https:\u002F\u002Floginizer.com\u002Fpricing\" rel=\"nofollow ugc\">Loginizer-Security\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Pro Features :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>MD5 Checksum – of Core WordPress Files. The admin can check and ignore files as well.\u003C\u002Fli>\n\u003Cli>PasswordLess Login – At the time of Login, the username \u002F email address will be asked and an email will be sent to the email address of that account with a temporary link to login.\u003C\u002Fli>\n\u003Cli>Two Factor Auth via Email – On login, an email will be sent to the email address of that account with a temporary 6 digit code to complete the login.\u003C\u002Fli>\n\u003Cli>Two Factor Auth via App – The user can configure the account with a 2FA App like Google Authenticator, Authy, etc.\u003C\u002Fli>\n\u003Cli>Login Challenge Question – The user can setup a Challenge Question and Answer as an additional security layer. After Login, the user will need to answer the question to complete the login.\u003C\u002Fli>\n\u003Cli>reCAPTCHA – Google’s reCAPTCHA v3\u002Fv2, Cloudflare Turnstile, hCAPTCHA can be configured for the Login screen, Comments Section, Registration Form, etc. to prevent automated brute force attacks. Supports WooCommerce as well.\u003C\u002Fli>\n\u003Cli>Rename Login Page – The Admin can rename the login URL (slug) to something different from wp-login.php to prevent automated brute force attacks.\u003C\u002Fli>\n\u003Cli>Rename WP-Admin URL – The Admin area in WordPress is accessed via wp-admin. With loginizer you can change it to anything e.g. site-admin\u003C\u002Fli>\n\u003Cli>CSRF Protection – This helps in preventing CSRF attacks as it updates the admin URL with a session string which makes it difficult and nearly impossible for the attacker to predict the URL.\u003C\u002Fli>\n\u003Cli>Rename Login with Secrecy – If set, then all Login URL’s will still point to wp-login.php and users will have to access the New Login Slug by typing it in the browser.\u003C\u002Fli>\n\u003Cli>Disable XML-RPC – An option to simply disable XML-RPC in WordPress. Most of the WordPress users don’t need XML-RPC and can disable it to prevent automated brute force attacks.\u003C\u002Fli>\n\u003Cli>Rename XML-RPC – The Admin can rename the XML-RPC to something different from xmlrpc.php to prevent automated brute force attacks.\u003C\u002Fli>\n\u003Cli>Username Auto Blacklist – Attackers generally use common usernames like admin, administrator, or variations of your domain name \u002F business name. You can specify such username here and Loginizer will auto-blacklist the IP Address(s) of clients who try to use such username(s).\u003C\u002Fli>\n\u003Cli>New Registration Domain Blacklist – If you would like to ban new registrations from a particular domain, you can use this utility to do so.\u003C\u002Fli>\n\u003Cli>Change the Admin Username – The Admin can rename the admin username to something more difficult.\u003C\u002Fli>\n\u003Cli>Auto Blacklist IPs – IPs will be auto blacklisted, if certain usernames saved by the Admin are used to login by malicious bots \u002F users.\u003C\u002Fli>\n\u003Cli>Disable Pingbacks – Simple way to disable PingBacks.\u003C\u002Fli>\n\u003Cli>SSO – Single Sign-on, let any user access to your WordPress Dashboard without the need to share username or password.\u003C\u002Fli>\n\u003Cli>Limit Concurrent Logins – It prevents user to login from different devices concurrently, you can define how many devices you want to allow, and how you want to restrict the user when concurrent limit is reached.\u003C\u002Fli>\n\u003Cli>Social Login – Users can login or register with their Google, Github, Facebook, X (Twitter), Discord, Twitch, LinkedIn, Microsoft with support for WooCommerce and Ultimate Member.\u003C\u002Fli>\n\u003Cli>Key Less Social Login – Use Loginizer’s Social Auth for easy key less Social login configuration, now supports Google, GitHub, X, LinkedIn more to be added later\u003C\u002Fli>\n\u003Cli>Country Blocking – Block IPs from specific countries to restrict access to your website.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Features in Loginizer include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Blocks IP after maximum retries allowed\u003C\u002Fli>\n\u003Cli>Extended Lockout after maximum lockouts allowed\u003C\u002Fli>\n\u003Cli>Email notification to admin after max lockouts\u003C\u002Fli>\n\u003Cli>Blacklist IP\u002FIP range\u003C\u002Fli>\n\u003Cli>Whitelist IP\u002FIP range\u003C\u002Fli>\n\u003Cli>Check logs of failed attempts\u003C\u002Fli>\n\u003Cli>Create IP ranges\u003C\u002Fli>\n\u003Cli>Delete IP ranges\u003C\u002Fli>\n\u003Cli>Licensed under LGPLv2.1\u003C\u002Fli>\n\u003Cli>Safe & Secure\u003C\u002Fli>\n\u003C\u002Ful>\n","Loginizer is a WordPress security plugin which helps you fight against bruteforce attacks.",1000000,29928058,96,1024,"2026-03-02T12:38:00.000Z","6.9.4","3.0","5.5",[19,20,76,60,22],"login","https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Floginizer\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Floginizer.2.0.6.zip",87,8,"2024-11-04 00:00:00",{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":35,"num_ratings":92,"last_updated":93,"tested_up_to":72,"requires_at_least":94,"requires_php":49,"tags":95,"homepage":100,"download_link":101,"security_score":102,"vuln_count":103,"unpatched_count":13,"last_vuln_date":104,"fetched_at":28},"iwp-client","InfiniteWP Client","1.13.5","revmakx","https:\u002F\u002Fprofiles.wordpress.org\u002Frevmakx\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Finfinitewp.com\u002F\" title=\"Manage Multiple WordPress\" rel=\"nofollow ugc\">InfiniteWP\u003C\u002Fa> allows users to manage unlimited number of WordPress sites from their own server.\u003C\u002Fp>\n\u003Cp>Main features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Self-hosted system: Resides on your own server and totally under your control\u003C\u002Fli>\n\u003Cli>One-click updates for WordPress, plugins and themes across all your sites\u003C\u002Fli>\n\u003Cli>Instant backup and restore your entire site or just the database\u003C\u002Fli>\n\u003Cli>One-click access to all WP admin panels\u003C\u002Fli>\n\u003Cli>Bulk Manage plugins & themes: Activate & Deactive multiple plugins & themes on multiple sites simultaneously\u003C\u002Fli>\n\u003Cli>Bulk Install plugins & themes in multiple sites at once\u003C\u002Fli>\n\u003Cli>and more..\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Visit us at \u003Ca href=\"https:\u002F\u002Finfinitewp.com\u002F\" title=\"Manage Multiple WordPress\" rel=\"nofollow ugc\">InfiniteWP.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Check out the \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=s35ZoW95cnU\" rel=\"nofollow ugc\">InfiniteWP Overview Video\u003C\u002Fa> below.\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fs35ZoW95cnU?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>Credits: \u003Ca href=\"http:\u002F\u002Fprelovac.com\u002Fvladimir\" rel=\"nofollow ugc\">Vladimir Prelovac\u003C\u002Fa> for his worker plugin on which the client plugin is being developed.\u003C\u002Fp>\n","Install this plugin on unlimited sites and manage them all from a central dashboard. This plugin communicates with your InfiniteWP Admin Panel.",200000,8254353,177,"2026-02-26T10:35:00.000Z","3.1",[96,97,98,22,99],"backup","multi-site","multiple-admin","updates","http:\u002F\u002Finfinitewp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fiwp-client.1.13.5.zip",90,7,"2025-01-07 00:00:00",{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":113,"downloaded":114,"rating":115,"num_ratings":116,"last_updated":117,"tested_up_to":72,"requires_at_least":48,"requires_php":118,"tags":119,"homepage":123,"download_link":124,"security_score":115,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wp-logout-redirect","WP Logout Redirect","2.0","HasinHayder","https:\u002F\u002Fprofiles.wordpress.org\u002Fhasinhayder\u002F","\u003Cp>WP Logout Redirect allows you to control where users are redirected after logging out of your WordPress site. By default, WordPress redirects users to the login page, but this plugin gives you full control over the logout experience.\u003C\u002Fp>\n\u003Cp>Version 2.1 brings a complete UI overhaul, offering a refined, accessible, and developer-friendly experience.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Modern Admin Panel\u003C\u002Fstrong> – A refined, editorial-style interface for easy configuration.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dark Mode Support\u003C\u002Fstrong> – Automatically adapts to your system’s color scheme.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Accessible Design\u003C\u002Fstrong> – Fully optimized for screen readers and keyboard navigation.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Quick Presets\u003C\u002Fstrong> – One-click settings for Homepage or Login Page redirects.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Page Selector\u003C\u002Fstrong> – Easily pick any of your existing pages from a dropdown.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Developer Friendly\u003C\u002Fstrong> – Programmatically override settings using the \u003Ccode>wplr_home_url\u003C\u002Fcode> filter hook.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightweight & Secure\u003C\u002Fstrong> – Built with performance and WordPress security standards in mind.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>After activation, go to \u003Cstrong>Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Logout Redirect\u003C\u002Fstrong> in your WordPress admin panel.\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>Manual URL\u003C\u002Fstrong>: Enter any custom URL in the input field.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Page Selector\u003C\u002Fstrong>: Choose an existing page from the dropdown to automatically fill the URL.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Presets\u003C\u002Fstrong>: Use the “Quick Presets” buttons for common destinations.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Save\u003C\u002Fstrong>: Click “Save Configuration” to apply changes.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Developer Hook\u003C\u002Fh4>\n\u003Cp>Developers can programmatically override the redirect URL using the \u003Ccode>wplr_home_url\u003C\u002Fcode> filter hook. This takes precedence over admin settings.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter('wplr_home_url', function($url) {\n    return 'https:\u002F\u002Fexample.com\u002Fcustom-destination';\n});\n\u003C\u002Fcode>\u003C\u002Fpre>\n","A simple yet powerful plugin that redirects users to a custom URL after logout. Featuring a modern, accessible admin panel with dark mode support.",400,7174,100,3,"2025-12-26T10:29:00.000Z","7.2",[120,20,121,22,122],"accessibility","redirection","settings","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-logout-redirect\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-logout-redirect.2.0.zip",{"slug":126,"name":127,"version":128,"author":126,"author_profile":129,"description":130,"short_description":131,"active_installs":132,"downloaded":133,"rating":115,"num_ratings":33,"last_updated":134,"tested_up_to":72,"requires_at_least":16,"requires_php":135,"tags":136,"homepage":49,"download_link":142,"security_score":115,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"sf-geoguard","SF GeoGuard","1.0.0","https:\u002F\u002Fprofiles.wordpress.org\u002Folehsf\u002F","\u003Cp>SF GeoGuard is a lightweight country-based access control plugin for WordPress.\u003C\u002Fp>\n\u003Cp>It allows you to restrict website access by visitor country using simple ISO country codes (US, CA, GB, etc.), helping reduce unwanted traffic, bot activity, and unnecessary server load.\u003C\u002Fp>\n\u003Cp>Main features:\u003Cbr \u002F>\n* Allow access only from selected countries\u003Cbr \u002F>\n* Whitelist IP addresses\u003Cbr \u002F>\n* Cache IP \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> country lookups for better performance\u003Cbr \u002F>\n* Customize the block message (HTML supported)\u003Cbr \u002F>\n* Choose what happens if the geo service is unavailable (allow or block)\u003Cbr \u002F>\n* Support for sites behind reverse proxies (Cloudflare, Nginx)\u003C\u002Fp>\n\u003Cp>SF GeoGuard focuses on doing one thing well: restricting access by country.\u003Cbr \u002F>\nIt does not modify WordPress core files and does not load unnecessary scripts on the frontend.\u003C\u002Fp>\n\u003Cp>By default, geo checks are applied only to frontend requests. You can optionally\u003Cbr \u002F>\nenable restrictions for wp-admin and wp-login.php in the plugin settings.\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to a third-party IP geolocation service to determine\u003Cbr \u002F>\nthe visitor’s country based on their IP address.\u003C\u002Fp>\n\u003Cp>Service used:\u003Cbr \u002F>\nIP-API (https:\u002F\u002Fip-api.com\u002F)\u003C\u002Fp>\n\u003Cp>Purpose:\u003Cbr \u002F>\nThe service is used to detect the visitor’s country in order to apply\u003Cbr \u002F>\ncountry-based access rules configured in the plugin settings.\u003C\u002Fp>\n\u003Cp>Data sent:\u003Cbr \u002F>\n– Visitor IP address\u003C\u002Fp>\n\u003Cp>When data is sent:\u003Cbr \u002F>\n– On frontend page load when geo-based access control is enabled\u003Cbr \u002F>\n– Only if the visitor IP address cannot be resolved from the local cache\u003C\u002Fp>\n\u003Cp>Note:\u003Cbr \u002F>\nThe free IP-API endpoint does not support HTTPS. The plugin uses the HTTP\u003Cbr \u002F>\nendpoint provided by IP-API unless a paid HTTPS plan is used.\u003C\u002Fp>\n\u003Cp>Privacy & Terms:\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fip-api.com\u002Fdocs\u002Flegal\u003Cbr \u002F>\n– Terms of Service: https:\u002F\u002Fip-api.com\u002Fdocs\u002Flegal\u003C\u002Fp>\n\u003Cp>No personally identifiable information other than the IP address\u003Cbr \u002F>\nis stored, logged, or shared by the plugin.\u003C\u002Fp>\n","Country-based access control for WordPress. Restrict access by country, whitelist IP addresses and reduce unwanted traffic.",50,241,"2026-01-05T19:32:00.000Z","8.0",[137,138,139,140,141],"access-control","country-block","geo-block","geo-restriction","ip-whitelist","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsf-geoguard.1.0.0.zip",{"attackSurface":144,"codeSignals":171,"taintFlows":179,"riskAssessment":180,"analyzedAt":183},{"hooks":145,"ajaxHandlers":167,"restRoutes":168,"shortcodes":169,"cronEvents":170,"entryPointCount":13,"unprotectedCount":13},[146,152,155,159,161],{"type":147,"name":148,"callback":149,"file":150,"line":151},"action","admin_menu","closure","awesoft-ip-whitelist.php",105,{"type":147,"name":153,"callback":149,"file":150,"line":154},"admin_init",114,{"type":147,"name":156,"callback":157,"file":150,"line":158},"authenticate","awesoft_ip_whitelist_check",136,{"type":147,"name":153,"callback":157,"file":150,"line":160},137,{"type":162,"name":163,"callback":164,"priority":165,"file":150,"line":166},"filter","plugin_action_links","awesoft_ip_whitelist_plugin_links",20,138,[],[],[],[],{"dangerousFunctions":172,"sqlUsage":173,"outputEscaping":175,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":178},[],{"prepared":13,"raw":13,"locations":174},[],{"escaped":176,"rawEcho":13,"locations":177},4,[],[],[],{"summary":181,"deductions":182},"The awesoft-ip-whitelist plugin, version 1.0.2, exhibits an exceptionally strong security posture based on the provided static analysis and vulnerability history.  The lack of any detected attack surface (AJAX handlers, REST API routes, shortcodes, cron events) suggests a minimal footprint, and critically, there are no unprotected entry points. The code analysis reveals adherence to secure coding practices, with no dangerous functions used, all SQL queries employing prepared statements, and all output being properly escaped. Furthermore, the absence of file operations, external HTTP requests, nonce checks, and capability checks, while indicating a lack of complex functionality that might introduce vulnerabilities, also means these common attack vectors are not present. The plugin has no recorded vulnerabilities, CVEs, or past security incidents, further reinforcing its secure reputation.\n\nWhile the plugin demonstrates excellent security hygiene in its current implementation, the complete absence of certain security checks like nonces and capability checks on potential entry points (if they were to exist) could be a concern if the plugin's functionality were to expand in the future without proper security considerations. However, based solely on the provided data, there are no direct vulnerabilities or significant risks identified. The plugin's strengths lie in its minimalist design and the diligent use of secure coding practices where applicable. Its weakness, if it can be called that, is its limited functionality which, in turn, limits the potential for security issues, but also means it cannot be assessed for security in more complex scenarios.\n\nIn conclusion, the awesoft-ip-whitelist plugin v1.0.2 appears to be highly secure. The static analysis reveals no exploitable code paths, and the vulnerability history is clear. The lack of any identified risks from the provided data indicates a well-developed plugin from a security perspective. The absence of common vulnerability types and a clear history suggest a commitment to security by the developers, or at least a plugin that has not yet been targeted or found to have flaws. Users can generally have high confidence in the security of this plugin based on this analysis.",[],"2026-03-16T21:51:25.495Z",{"wat":185,"direct":190},{"assetPaths":186,"generatorPatterns":187,"scriptPaths":188,"versionParams":189},[],[],[],[],{"cssClasses":191,"htmlComments":193,"htmlAttributes":194,"restEndpoints":195,"jsGlobals":196,"shortcodeOutput":197},[192],"awesoft-buy-me-coffee",[],[],[],[],[],{"error":199,"url":200,"statusCode":201,"statusMessage":202,"message":202},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fawesoft-ip-whitelist\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":116,"versions":204},[205,211,218],{"version":6,"download_url":25,"svn_tag_url":206,"released_at":27,"has_diff":207,"diff_files_changed":208,"diff_lines":27,"trac_diff_url":209,"vulnerabilities":210,"is_current":199},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fawesoft-ip-whitelist\u002Ftags\u002F1.0.2\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fawesoft-ip-whitelist%2Ftags%2F1.0.1&new_path=%2Fawesoft-ip-whitelist%2Ftags%2F1.0.2",[],{"version":212,"download_url":213,"svn_tag_url":214,"released_at":27,"has_diff":207,"diff_files_changed":215,"diff_lines":27,"trac_diff_url":216,"vulnerabilities":217,"is_current":207},"1.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fawesoft-ip-whitelist.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fawesoft-ip-whitelist\u002Ftags\u002F1.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fawesoft-ip-whitelist%2Ftags%2F1.0.0&new_path=%2Fawesoft-ip-whitelist%2Ftags%2F1.0.1",[],{"version":128,"download_url":219,"svn_tag_url":220,"released_at":27,"has_diff":207,"diff_files_changed":221,"diff_lines":27,"trac_diff_url":27,"vulnerabilities":222,"is_current":207},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fawesoft-ip-whitelist.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fawesoft-ip-whitelist\u002Ftags\u002F1.0.0\u002F",[],[]]