[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fsAosTnRka3FyFA25WuwCh-0772Fy4GUJKeg9EbUirmE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":36,"analysis":140,"fingerprints":259},"blacklist-whitelist-domains","Blacklist & Whitelist Domains for Registration","1.0","codicone","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodicone\u002F","\u003Cp>The whitelist\u002Fblacklist plugin gives you a strong layer of security for your website because not only does the plugin limits unauthorized user access to your site but also creates a log. The log helps to create new blacklist entries. The increase in your blacklist entries means a decrease in spam and security threats. So it is a great safety measure to start with.\u003C\u002Fp>\n\u003Cp>It is a very handy plugin that you can add to your WordPress site for added security. It helps you to tailor your preferences about which email addresses you want to allow for registration on your site.\u003C\u002Fp>\n\u003Cp>You can create a list of all email addresses or email domains that you wish to receive registrations. On the other hand, you can add a list for blacklist domains to not allow any registration from specific domains. Blacklisting is time-saving because most of the time you have already figured where the spam comes from. So you close those doors already. It is relatively safe also because you are not risking anything prospective.\u003C\u002Fp>\n\u003Ch4>Compatible With\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WooCommerce\u003C\u002Fli>\n\u003Cli>bbpress\u003C\u002Fli>\n\u003Cli>buddypress\u003C\u002Fli>\n\u003Cli>Profile Builder\u003C\u002Fli>\n\u003Cli>WP User Frontend\u003C\u002Fli>\n\u003Cli>User Registration\u003C\u002Fli>\n\u003Cli>Ultimate member\u003C\u002Fli>\n\u003C\u002Ful>\n","The whitelist\u002Fblacklist plugin gives you a strong layer of security for your website because not only does the plugin limits unauthorized user access  …",40,1681,60,2,"2021-12-15T18:33:00.000Z","5.8.13","4.0","",[20,21,22,23,24],"blacklist","domain","email","registration","whitelist","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblacklist-whitelist-domains.1.0.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},1,30,84,"2026-04-04T22:26:48.003Z",[37,55,74,95,119],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":18,"requires_at_least":50,"requires_php":18,"tags":51,"homepage":18,"download_link":53,"security_score":34,"vuln_count":32,"unpatched_count":27,"last_vuln_date":54,"fetched_at":29},"user-domain-whitelist","User Domain Whitelist","v1.5.1","Warren Harrison","https:\u002F\u002Fprofiles.wordpress.org\u002Fhungrymedia\u002F","\u003Cp>The User Domain Whitelist\u002FBlacklist plugin limits user registration to only registrants with an email address from the domain white list below OR prevents registrants with an email address from the domain black list below from registering. For example, \u003Cem>hortense@example.com\u003C\u002Fem> would only be allowed to register if \u003Cem>example.com\u003C\u002Fem> appeared in the domain white list. Conversely,  \u003Cem>hortense@example.com\u003C\u002Fem> would \u003Cstrong>not\u003C\u002Fstrong> be allowed to register if \u003Cem>example.com\u003C\u002Fem> appeared in the domain black list. Anyone attempting to register using an email address outside the white list or inside te black list will receive the error message below.Anyone attempting to register using an email address outside the white list will receive an error message. Both the domain whitelist and the error message can be modified via the plugin options page (available under the Settings menu).\u003C\u002Fp>\n","The User Domain Whitelist\u002FBlacklist plugin limits user registration to only registrants with an email address from the domain white list provided by t …",300,13738,82,9,"2017-12-25T21:53:00.000Z","2.8.2",[20,21,52,23,24],"email-address","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-domain-whitelist.zip","2014-02-22 00:00:00",{"slug":56,"name":57,"version":58,"author":59,"author_profile":60,"description":61,"short_description":62,"active_installs":27,"downloaded":63,"rating":64,"num_ratings":32,"last_updated":65,"tested_up_to":66,"requires_at_least":67,"requires_php":18,"tags":68,"homepage":18,"download_link":73,"security_score":64,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"restusre-restrict-users-registration","Restrict Users Registration by EmailVerifierPro.app","1.0.1","Tuhin Bhuiyan","https:\u002F\u002Fprofiles.wordpress.org\u002Ftuhinbhuiyan\u002F","\u003Cp>\u003Cstrong>Restrict Users Registration by EmailVerifierPro.app\u003C\u002Fstrong> is a powerful plugin to help you control who can register on your WordPress site. Block disposable, blacklisted, or suspicious emails and domains, prevent duplicate IP signups, and connect to Third Party API for real-time email validation.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Email Blacklist: Block specific email addresses from registering.\u003C\u002Fli>\n\u003Cli>Domain Blacklist: Block entire email domains (e.g., @tempmail.com).\u003C\u002Fli>\n\u003Cli>API Integration: Connect to your own EmailVerifierPro.app \u002F VerifyEmail.app instance for advanced email validation.\u003C\u002Fli>\n\u003Cli>Prevent Duplicate IP Signups: Block multiple registrations from the same IP.\u003C\u002Fli>\n\u003Cli>Invalid Email Retry Limit: Automatically blacklist emails after repeated invalid attempts.\u003C\u002Fli>\n\u003Cli>Debug Logging: Enable for troubleshooting (not recommended in production).\u003C\u002Fli>\n\u003Cli>Delete All Data on Deactivation: Optionally remove all plugin data when deactivating.\u003C\u002Fli>\n\u003Cli>Admin Activity Log: View recent signup attempts and actions.\u003C\u002Fli>\n\u003Cli>AJAX-powered admin interface for fast, modern management.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support or questions, contact:\u003Cbr \u002F>\n– info@emailverifierpro.app\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by Tuhin Bhuiyan (https:\u002F\u002Ftuhin.dev)\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is free software, released under the GPLv2 or later.\u003C\u002Fp>\n","Easily control who can register. Block bad emails\u002Fdomains, prevent duplicate IPs, and real-time email validation during signup.",322,100,"2026-02-24T04:15:00.000Z","6.8.5","5.0",[69,70,71,23,72],"domain-blacklist","email-blacklist","email-verification","spam-prevention","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frestusre-restrict-users-registration.1.0.1.zip",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":82,"downloaded":83,"rating":47,"num_ratings":48,"last_updated":84,"tested_up_to":85,"requires_at_least":86,"requires_php":18,"tags":87,"homepage":92,"download_link":93,"security_score":94,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"gf-block-email-domains","Gravity Forms Block Email Domains","1.0.2","GravityKit","https:\u002F\u002Fprofiles.wordpress.org\u002Fgravityview\u002F","\u003Cp>Gravity Forms Block Email Domains is an add-on plugin for Gravity Forms that allows you to define a comma separated list of email domains to block on each email field. Custom validation messages can be set as well. Blocked email domains will prevent the form from being submitted and prompt the user to enter a non-blocked email address.\u003C\u002Fp>\n","Easily set a list of email domains to block on email fields in Gravity Forms.",1000,10966,"2024-11-05T03:30:00.000Z","6.7.5","5.0.0",[20,88,89,90,91],"block-domain","block-email","blocklist","gravity-forms","http:\u002F\u002Froadwarriorcreative.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgf-block-email-domains.1.0.2.zip",92,{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":103,"downloaded":104,"rating":105,"num_ratings":106,"last_updated":107,"tested_up_to":108,"requires_at_least":109,"requires_php":110,"tags":111,"homepage":114,"download_link":115,"security_score":116,"vuln_count":117,"unpatched_count":27,"last_vuln_date":118,"fetched_at":29},"cm-email-blacklist","CM E-Mail Blacklist – Simple email filtering for safer registration","1.6.4","CreativeMindsSolutions","https:\u002F\u002Fprofiles.wordpress.org\u002Fcreativemindssolutions\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.cminds.com\u002Fwordpress-plugins-library\u002Femail-registration-blacklist-plugin-for-wordpress\u002F\" rel=\"nofollow ugc\">Pro Plugin Page\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.videolessonsplugin.com\u002Fvideo-lesson\u002Flesson\u002Femail-domain-blacklist-plugin\u002F\" rel=\"nofollow ugc\">Videos\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcreativeminds.helpscoutdocs.com\u002Fcategory\u002F285-email-registration-blacklist-cmrb\" rel=\"nofollow ugc\">User Guide\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Safeguard your WordPress site from unauthorized registrations and spammers by implementing personalized rules for blacklisting and whitelisting with our WordPress blacklist plugin solution.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This plugin allows you to block or allow users to enter your website based on specific criteria. With customizable domain, IP and email blacklists you can prevent users from registering.\u003C\u002Fp>\n\u003Cp>Conversely, thanks to the whitelist feature of our WordPress plugin, you can ensure that only users with approved email domains, usernames, or IP addresses can register.\u003C\u002Fp>\n\u003Ch3>Enhance WordPress Site Security\u003C\u002Fh3>\n\u003Cp>Our blacklist plugin enables you to increase the security of your WordPress site and prevent spam registrations from fake or malicious users.\u003C\u002Fp>\n\u003Cp>Additionally, this feature-packed tool gives you greater control over who can access your site’s and community content.\u003C\u002Fp>\n\u003Ch3>Email Blacklist and Anti-Spam plugin Premium Editions\u003C\u002Fh3>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fwww.cminds.com\u002Fwordpress-plugins-library\u002Femail-registration-blacklist-plugin-for-wordpress\u002F\" rel=\"nofollow ugc\">Email Blacklist and Anti-Spam Plugin Premium editions\u003C\u002Fa> includes even more powerful features, such as: support for contact forms and WordPress comments, white list and blacklist features work across domains and emails, domain and email testing tool and much more.\u003C\u002Fp>\n\u003Ch3>Email Blacklist and Anti-Spam plugin Introduction Video (Pro Version)\u003C\u002Fh3>\n\u003Cdiv class=\"embed-vimeo\" style=\"text-align: center;\">\u003Ciframe loading=\"lazy\" src=\"https:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F123027044\" width=\"750\" height=\"422\" frameborder=\"0\" webkitallowfullscreen mozallowfullscreen allowfullscreen>\u003C\u002Fiframe>\u003C\u002Fdiv>\n\u003Ch3>How to Use the Email Blacklist Feature of the Plugin\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Closed Beta\u003C\u002Fstrong> – Control users in your beta site release.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Members Only\u003C\u002Fstrong> – Add suspicious domains to the blacklist and block their users from registrating.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Spam blocker\u003C\u002Fstrong> – Prevent spam users from registering.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Basic WordPress Blacklist Plugin Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Support Free Domain List from SpamAssassin.\u003C\u002Fli>\n\u003Cli>Support a domain whitelist plugin feature.\u003C\u002Fli>\n\u003Cli>Support an email blacklist plugin feature.\u003C\u002Fli>\n\u003Cli>Support an IP whitelist plugin feature.\u003C\u002Fli>\n\u003Cli>Admin can edit front-end labels and messages.\u003C\u002Fli>\n\u003Cli>Includes tester.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Pro Version\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.cminds.com\u002Fwordpress-plugins-library\u002Femail-registration-blacklist-plugin-for-wordpress\u002F\" rel=\"nofollow ugc\">Pro Version Detailed Features List\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Support DNSBL online service.\u003C\u002Fli>\n\u003Cli>Support domain blacklist and whitelist features.\u003C\u002Fli>\n\u003Cli>Support email blacklist and whitelist features.\u003C\u002Fli>\n\u003Cli>Support IP blacklist and whitelist features.\u003C\u002Fli>\n\u003Cli>Support reserved username blacklist feature.\u003C\u002Fli>\n\u003Cli>Control who is allowed to comment.\u003C\u002Fli>\n\u003Cli>Access to failed registration log.\u003C\u002Fli>\n\u003Cli>Additional errors messages to show to users trying to register.\u003C\u002Fli>\n\u003Cli>Edit profile restriction.\u003C\u002Fli>\n\u003Cli>Support importing list of emails from CSV.\u003C\u002Fli>\n\u003Cli>Includes domain & email tester.\u003C\u002Fli>\n\u003Cli>Special Gmail support.\u003C\u002Fli>\n\u003Cli>Special characters support.\u003C\u002Fli>\n\u003Cli>Contact Form 7 integration.\u003C\u002Fli>\n\u003Cli>ChatGPT integration.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Follow Us\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.cminds.com\u002Fcategory\u002Fwordpress\u002F\" rel=\"nofollow ugc\">Blog\u003C\u002Fa> | \u003Ca href=\"http:\u002F\u002Ftwitter.com\u002Fcmplugins\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.linkedin.com\u002Fcompany\u002Fcreativeminds\" rel=\"nofollow ugc\">LinkedIn\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fuser\u002Fcmindschannel\" rel=\"nofollow ugc\">YouTube\u003C\u002Fa> | \u003Ca href=\"http:\u002F\u002Fwww.pinterest.com\u002Fcmplugins\u002F\" rel=\"nofollow ugc\">Pinterest\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fcmplugins\u002F\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Suggested Plugins by CreativeMinds\u003C\u002Fh3>\n\u003Cp>List of all \u003Ca href=\"https:\u002F\u002Fwww.cminds.com\" rel=\"nofollow ugc\">WordPress Plugins\u003C\u002Fa> by CreativeMinds\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fglossaryplugin.com\u002F\" rel=\"nofollow ugc\">CM Tooltip Glossary\u003C\u002Fa> – Easily creates a Glossary, Encyclopaedia or Dictionary of your website’s terms and shows them as a tooltip in posts and pages when hovering. With many more powerful features.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.downloadmanagerplugin.com\u002F\" rel=\"nofollow ugc\">CM Download Manager\u003C\u002Fa> – Allows users to upload, manage, track and support documents or files in a download directory listing database for others to contribute, use and comment upon.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.answersplugin.com\u002F\" rel=\"nofollow ugc\">CM Answers Plugin\u003C\u002Fa> – A fully-featured WordPress Questions & Answers Plugin that allows you to build multiple discussion forum systems Just like StackOverflow, Yahoo Answers and Quora, Now with MicroPayments and Anonymous posting support.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Frestrictcontent.com\u002F\" rel=\"nofollow ugc\">CM Restrict Content\u003C\u002Fa> – A full-featured, powerful membership solution and content restriction plugin for WordPress. Support access by role to content on your site.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fbookingcalendarplugin.com\u002F\" rel=\"nofollow ugc\">CM Booking Calendar\u003C\u002Fa> – Customers can easily schedule appointments and pay for them directly through your website.\u003C\u002Fli>\n\u003C\u002Ful>\n","Block unwanted email registrations on your site with this email blacklist plugin. Protect your site by preventing spam sign-ups.",800,45592,90,8,"2026-01-28T16:31:00.000Z","6.9.4","5.4.0","5.2.4",[112,20,70,113,24],"anti-spam","spam","https:\u002F\u002Fwww.cminds.com\u002Fwordpress-plugins-library\u002Femail-registration-blacklist-plugin-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcm-email-blacklist.zip",96,3,"2026-01-16 00:00:00",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":64,"num_ratings":32,"last_updated":129,"tested_up_to":130,"requires_at_least":131,"requires_php":18,"tags":132,"homepage":138,"download_link":139,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"block-email-cf7","Contact Form 7 – Blacklist Unwanted Email","1.1.0","abahalkar","https:\u002F\u002Fprofiles.wordpress.org\u002Fabahalkar\u002F","\u003Ch4>Description\u003C\u002Fh4>\n\u003Cp>Contact form 7 – Blacklist unwanted email plugin is designed to restrict Blacklisted, Spam, Generic and Competitor Email domains preventing your valuable downloadable resources or limiting registrations on your website blogs. The plugin is Free and allows blacklisting of around 4750+ free and unwanted domains. Whether you have a small startup or an established online portal you can use our plugin to restrict your undesired subscribers.\u003C\u002Fp>\n\u003Cp>Through CF7 – Blacklist unwanted emails plugin, site admin can manage email field validation. Create a list of unwanted email domains that could cause a validation error and block them e.g. Gmail.com, Yahoo.com, Live.com or Competitorsdomain.com, etc.\u003C\u002Fp>\n\u003Cp>Default settings can be added in the ‘Block Email CF7’ > Enter ‘List of Email Fields to Validate’ > Enter ‘Default Error Message’ > Enter ‘List of Domains to be Blocked\u002FBlacklisted’ followed by a comma.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Allowed only Business or Company email submission.\u003C\u002Fli>\n\u003Cli>Restrict free domains email (likes gmail.com, yahoo.com etc.) from registrations and submissions of forms.\u003C\u002Fli>\n\u003Cli>Block to registrations and submissions of specific form.\u003C\u002Fli>\n\u003Cli>Block a specific email field in case there are multiple email fields in the form.\u003C\u002Fli>\n\u003Cli>Inbuilt plugin functionalities offers blacklisting around 4750+ free and spam domains. \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more details please visit [Official website:]( \u003Ca href=\"http:\u002F\u002Frebrand.ly\u002Fwpprml\" rel=\"nofollow ugc\"> http:\u002F\u002Fwpstudio.org \u003C\u002Fa> )\u003C\u002Fp>\n\u003Ch4>Demo\u003C\u002Fh4>\n\u003Cp>Here is a demo link for this plugin:\u003Ca href=\"http:\u002F\u002Frebrand.ly\u002Fwppdl\" rel=\"nofollow ugc\">DEMO\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Enjoy! And please don’t forget to rate and ask for support if you face any troubles.\u003C\u002Fp>\n","This is a free add-on plugin for contact form 7, which validates the email field and restrict unwanted email submission as well as allowed only busine …",400,6005,"2019-10-15T18:53:00.000Z","5.3.21","4.2",[133,134,135,136,137],"blacklist-email-domain-for-contact-form-7","block-email-domain-for-contact-form-7","cf7","restrict-email-domain-submission-for-contact-form-7","validate-email-domain-for-contact-form-7","http:\u002F\u002Fwpstudio.org\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblock-email-cf7.1.1.1.zip",{"attackSurface":141,"codeSignals":237,"taintFlows":247,"riskAssessment":248,"analyzedAt":258},{"hooks":142,"ajaxHandlers":233,"restRoutes":234,"shortcodes":235,"cronEvents":236,"entryPointCount":27,"unprotectedCount":27},[143,149,152,159,164,168,173,178,182,186,190,194,198,202,206,210,214,218,221,225,228,230],{"type":144,"name":145,"callback":146,"file":147,"line":148},"action","admin_enqueue_scripts","admin_scripts","blacklist-whitelist-domains-registration.php",83,{"type":144,"name":150,"callback":151,"file":147,"line":34},"init","add_translation",{"type":153,"name":154,"callback":155,"priority":156,"file":157,"line":158},"filter","registration_errors","bwdr_blacklisted_domain",7,"inc\\bwdr-approval.php",13,{"type":153,"name":160,"callback":161,"priority":162,"file":157,"line":163},"woocommerce_process_registration_errors","bwdr_woo_blacklisted_domain",11,14,{"type":153,"name":165,"callback":166,"file":157,"line":167},"woocommerce_registration_auth_new_customer","__return_false",15,{"type":153,"name":169,"callback":170,"priority":171,"file":157,"line":172},"user_registration_response_array","bwdr_ur_blacklisted_domain",10,16,{"type":144,"name":174,"callback":175,"priority":176,"file":157,"line":177},"um_submit_form_errors_hook__registration","bwdr_um_blacklisted_domain",35,17,{"type":144,"name":179,"callback":180,"priority":176,"file":157,"line":181},"um_registration_after_auto_login","bwdr_um_disable_auto_login",18,{"type":144,"name":183,"callback":184,"priority":171,"file":157,"line":185},"wppb_output_field_errors_filter","bwdr_wppb_blacklisted_domain",19,{"type":144,"name":187,"callback":188,"priority":171,"file":157,"line":189},"wpuf_process_registration_errors","bwdr_wpuf_blacklisted_domain",20,{"type":144,"name":191,"callback":192,"file":157,"line":193},"user_register","bwdr_user_status",23,{"type":153,"name":195,"callback":196,"file":157,"line":197},"wp_authenticate_user","bwdr_authenticate_user",24,{"type":153,"name":199,"callback":200,"priority":171,"file":157,"line":201},"bwdr_default_user_status","bwdr_allow_whitelisted_domains",25,{"type":153,"name":203,"callback":204,"file":157,"line":205},"manage_users_columns","bwdr_user_status_column",26,{"type":153,"name":207,"callback":208,"priority":171,"file":157,"line":209},"manage_users_custom_column","bwdr_populate_user_status_column",27,{"type":144,"name":211,"callback":212,"file":157,"line":213},"edit_user_profile","bwdr_profile_status_field",28,{"type":144,"name":215,"callback":216,"file":157,"line":217},"edit_user_profile_update","bwdr_save_profile_status_field",29,{"type":153,"name":219,"callback":220,"file":157,"line":33},"bp_core_validate_user_signup","bwdr_bp_blacklisted_domain",{"type":144,"name":222,"callback":223,"file":224,"line":158},"admin_menu","admin_menu_page","inc\\bwdr-log.php",{"type":144,"name":226,"callback":227,"priority":171,"file":224,"line":167},"bwdr_blacklisted_registration_errors","save_log_on_blacklist",{"type":144,"name":222,"callback":223,"file":229,"line":158},"inc\\bwdr-settings.php",{"type":144,"name":231,"callback":232,"file":229,"line":163},"admin_init","bwdr_settings_init",[],[],[],[],{"dangerousFunctions":238,"sqlUsage":239,"outputEscaping":244,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":32,"bundledLibraries":246},[],{"prepared":14,"raw":32,"locations":240},[241],{"file":224,"line":242,"context":243},132,"$wpdb->get_results() with variable interpolation",{"escaped":158,"rawEcho":27,"locations":245},[],[],[],{"summary":249,"deductions":250},"The \"blacklist-whitelist-domains\" v1.0 plugin exhibits a generally strong security posture based on the provided static analysis.  The absence of any identified dangerous functions, file operations, or external HTTP requests is a positive indicator.  Furthermore, all identified output points are properly escaped, and the plugin uses prepared statements for a majority of its SQL queries, reducing the risk of SQL injection. The vulnerability history is also clean, with no recorded CVEs, which suggests a history of secure development.\n\nHowever, there are a few areas that warrant attention. The lack of any identified taint flows could be interpreted in two ways: either the code is exceptionally well-sanitized, or the analysis was not comprehensive enough to uncover potential vulnerabilities. More critically, the plugin has zero nonce checks and no capability checks on its entry points, despite having one identified capability check. This is a significant concern as it leaves the plugin open to potential Cross-Site Request Forgery (CSRF) attacks or unauthorized actions if any entry points are indeed exposed without proper authorization. The limited attack surface reported (0 unprotected entry points) mitigates this risk significantly in this version, but it's a practice that should be addressed for future versions.\n\nIn conclusion, while the plugin's current version appears safe due to its minimal attack surface and clean vulnerability history, the complete absence of nonce checks and a reliance on a single capability check, combined with the potential for undetected taint flows, presents a latent risk. The developers should prioritize implementing robust authorization checks on all entry points to further harden the plugin.",[251,253,255],{"reason":252,"points":167},"No nonce checks on entry points",{"reason":254,"points":171},"Minimal capability checks on entry points",{"reason":256,"points":257},"Potential for undetected taint flows",5,"2026-03-16T22:15:53.561Z",{"wat":260,"direct":269},{"assetPaths":261,"generatorPatterns":264,"scriptPaths":265,"versionParams":266},[262,263],"\u002Fwp-content\u002Fplugins\u002Fblacklist-whitelist-domains\u002Fassets\u002Fcss\u002Fbwdr-admin-style.css","\u002Fwp-content\u002Fplugins\u002Fblacklist-whitelist-domains\u002Fassets\u002Fjs\u002Fbwdr-admin-script.js",[],[263],[267,268],"bwdr-admin-style?ver=","bwdr-admin-script?ver=",{"cssClasses":270,"htmlComments":271,"htmlAttributes":272,"restEndpoints":273,"jsGlobals":274,"shortcodeOutput":275},[],[],[],[],[],[]]