[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fQa-Xx89zaSowszkqV-GT0FIgr0B7RQkm08aGVHMo5kE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":40,"analysis":140,"fingerprints":329},"blue-login-style","Blue Login Style","1.4.0","Alimir","https:\u002F\u002Fprofiles.wordpress.org\u002Falimir\u002F","\u003Cp>Blue Login Style is a tiny WordPress plugin that allows you to customize your login page with beautiful themes. Its features: ability to add message, change the login logo, ability to set login, logout and register redirect links and many more…\u003Cbr \u002F>\nScreenshots are available in \u003Ca href=\"http:\u002F\u002Fpreview.alimir.ir\u002Fwordpress-blue-login-style\u002F\" rel=\"nofollow ugc\">Here\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Ability to choose nice themes with great options.\u003C\u002Fli>\n\u003Cli>Ability to add message in your login page.\u003C\u002Fli>\n\u003Cli>Add a custom logo of your wordPress blog as piece of cake.\u003C\u002Fli>\n\u003Cli>Add custom background image.\u003C\u002Fli>\n\u003Cli>Ability to set \u003Ccode>login\u003C\u002Fcode>, \u003Ccode>logout\u003C\u002Fcode> and \u003Ccode>register\u003C\u002Fcode> redirect links.\u003C\u002Fli>\n\u003Cli>Simple configuration panel.\u003C\u002Fli>\n\u003Cli>And so on…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Plugin Author\u003C\u002Fh4>\n\u003Cp>Website: \u003Ca href=\"http:\u002F\u002Fabout.alimir.ir\" rel=\"nofollow ugc\">Ali Mirzaei\u003C\u002Fa>\u003Cbr \u002F>\nFollow on \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Falimir.ir\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>\u003Cbr \u002F>\nYou can catch catch me on twitter as @alimirir\u003C\u002Fp>\n","Blue Login Style is a tiny plugin which allows to customize your wp-login theme easily with a click.",300,29099,98,17,"2014-12-26T19:38:00.000Z","4.1.42","3.5","",[20,21,22,23,24],"admin","customize-wp-login-php-plugin","front-end-login","login-form","wp-login","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fblue-login-style\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblue-login-style.1.4.0.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"alimir",4,70370,74,342,61,"2026-04-04T04:23:29.413Z",[41,60,79,97,115],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":47,"short_description":48,"active_installs":49,"downloaded":50,"rating":51,"num_ratings":52,"last_updated":53,"tested_up_to":54,"requires_at_least":55,"requires_php":18,"tags":56,"homepage":58,"download_link":59,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"fp-front-end-login-form","FP Front End Login Form","1.0","futureprofilez","https:\u002F\u002Fprofiles.wordpress.org\u002Ffutureprofilez\u002F","\u003Cp>FP Front End Login helps you to manage user login from front end. This plugin provides shortcode and widget to integrate Login form on wordpress pages\u002Fposts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Easy Installation\u003Cbr \u002F>\n* WordPrss textdomain support\u003Cbr \u002F>\n* Easy to translate in other language using textdomain\u003Cbr \u002F>\n* WordPress Multisite support\u003Cbr \u002F>\n* Easy To understand\u003Cbr \u002F>\n* Shortcode available\u003Cbr \u002F>\n* widget available\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How it Work?:\u003C\u002Fstrong>\u003Cbr \u002F>\n1- Install and activate\u003Cbr \u002F>\n2- Use [fp_login_form] in pages\u002Fposts or Fp Front End Login Widget in sidebar\u003C\u002Fp>\n","FP Front End Login plugin allows you to add a log-in form to your wordpress site by using shortcode and Widget.",20,1572,60,1,"2018-02-08T10:33:00.000Z","4.9.29","4.4",[22,23,57,24],"login-form-widget","http:\u002F\u002Ffutureprofilez.com\u002Fwordpress\u002Fplugins\u002Ffront-end-login\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffp-front-end-login-form.zip",{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":70,"num_ratings":71,"last_updated":18,"tested_up_to":72,"requires_at_least":73,"requires_php":18,"tags":74,"homepage":75,"download_link":76,"security_score":77,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":78},"front-end-login-form","Front End Login Form","0.2","Jigs","https:\u002F\u002Fprofiles.wordpress.org\u002Fjigspatel\u002F","\u003Cp>Front end login is a plugin to get login form on the wordpress pages so you can easily be able to login to your wordpress admin without visiting wp-login \u002F wp-admin page. This plugin gives a custom CSS3 based login form ready to be integrated to your theme through shortcode.\u003C\u002Fp>\n","A tiny plugin which allows you to add a log-in form to your wordpress blog.",10,12003,68,5,"3.4.2","3.0.1",[22,23,24],"http:\u002F\u002Ffasamfast.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffront-end-login-form.zip",100,"2026-03-15T10:48:56.248Z",{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":68,"downloaded":87,"rating":28,"num_ratings":28,"last_updated":88,"tested_up_to":89,"requires_at_least":18,"requires_php":90,"tags":91,"homepage":94,"download_link":95,"security_score":96,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"mc-login-code","MC Login Code","2.3.2","Mike Hickcox","https:\u002F\u002Fprofiles.wordpress.org\u002Fmike-hickcox\u002F","\u003Cp>This lightweight plugin is ideal for solo admins and for admin groups.\u003Cbr \u002F>\n* Adds an authorization code field as the third field in your login form for better security.\u003Cbr \u002F>\n* Access is denied when the login code field is invalid or empty.\u003Cbr \u002F>\n* Users must know the login code to login to the website.\u003Cbr \u002F>\n* When the code is updated or disabled, the website administator receives an email to confirm the code or disabling of the Login Code.\u003Cbr \u002F>\n* To disable this feature, the admin can leave the login code field blank on the settings page.\u003C\u002Fp>\n","Adds an authentication code field to your login form for better security and a block to brute-force attacks.",2080,"2024-10-29T17:28:00.000Z","6.6.5","7.0",[92,93,23,24],"admin-login","custom-login","https:\u002F\u002Fmid-coast.com\u002Fmc-plugin-donations","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmc-login-code.2.3.2.zip",92,{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":28,"downloaded":105,"rating":28,"num_ratings":28,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":90,"tags":109,"homepage":113,"download_link":114,"security_score":96,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"cns-login-master","CNS Login Master","1.0.0","Chakramani Joshi","https:\u002F\u002Fprofiles.wordpress.org\u002Fchakramanijoshi\u002F","\u003Cp>Customizing the admin login form allows users to tailor their WordPress experience. With the ability to remove unnecessary elements and add personalized touches, such as branding or custom fields, users can create a login page that reflects their unique style and enhances user engagement.\u003C\u002Fp>\n\u003Cp>Key Features:\u003Cbr \u002F>\n1.  Customizable Fields: Allow users to design fields like username, password.\u003Cbr \u002F>\n2.  Branding Options: Enable users to customize the login form\\’s colors, logo, background image, and text to reflect their brand identity.\u003Cbr \u002F>\n3.  Layout Options: Provide flexibility in choosing between different layouts such as single-column or multi-column, with options for field alignment.\u003Cbr \u002F>\n4.  Responsive Design: Ensure that the login form is responsive and adapts to different screen sizes and devices.\u003Cbr \u002F>\n5.  Custom CSS: Allow advanced users to further customize the login form\\’s appearance using custom CSS.\u003C\u002Fp>\n\u003Cp>This offers a range of customizable features that can greatly enhance your WordPress admin login experience. Whether you want to align the login form with your brand\\’s identity, or simply streamline the login process, this plugin provides a user-friendly and flexible solution.\u003C\u002Fp>\n","Allow users to customize the admin login form. You can also remove unwanted things from the form. Customize your login design.",566,"2024-04-30T16:59:00.000Z","6.4.8","6.4",[110,23,111,112,24],"customize-login-form","wordpress-login","wordpress-admin-login","https:\u002F\u002Fchakramanijoshi.com.np\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcns-login-master.1.0.0.zip",{"slug":116,"name":117,"version":118,"author":119,"author_profile":120,"description":121,"short_description":122,"active_installs":123,"downloaded":124,"rating":125,"num_ratings":126,"last_updated":127,"tested_up_to":128,"requires_at_least":129,"requires_php":130,"tags":131,"homepage":135,"download_link":136,"security_score":137,"vuln_count":138,"unpatched_count":28,"last_vuln_date":139,"fetched_at":30},"change-wp-admin-login","All In One Login — WP Admin Login Page Security and Customization with Google reCAPTCHA, Social Login, Limit Login Attempt, 2FA, and more.","2.1.1","Saad Iqbal","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaadiqbal\u002F","\u003Cp>👑\u003Ca href=\"https:\u002F\u002Faiologin.com\u002Fpricing\u002F?utm_source=wp_org&utm_medium=readme&utm_campaign=check_out_premium_version\" rel=\"nofollow ugc\">Check Out Premium Version\u003C\u002Fa> | 📘\u003Ca href=\"https:\u002F\u002Faiologin.com\u002Fdocs\u002F?utm_source=wp_org&utm_medium=readme&utm_campaign=technical_documentation\" rel=\"nofollow ugc\">Technical Documentation\u003C\u002Fa> | 🧰\u003Ca href=\"https:\u002F\u002Faiologin.com\u002Ffeatures\u002F?utm_source=wp_org&utm_medium=readme&utm_campaign=see_all_features\" rel=\"nofollow ugc\">See all Features\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FkDWrQNvZO0s?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>Looking for a one-stop solution to protect and customize your WordPress login page (wp-admin)? If that’s what you need, then \u003Ca href=\"https:\u002F\u002Faiologin.com\u002F\" rel=\"nofollow ugc\">Download All in One Login Plugin NOW\u003C\u002Fa>]\u003C\u002Fp>\n\u003Cp>Over \u003Cstrong>70,000 website owners\u003C\u002Fstrong> already use All in One Login for their WordPress login security and customization. 🎉\u003C\u002Fp>\n\u003Cp>And the reason for that is obvious! 👇\u003C\u002Fp>\n\u003Cp>AIO Login is a \u003Cstrong>top-notch WordPress admin security plugin\u003C\u002Fstrong> that empowers you to secure and customize the WordPress wp-admin login page. Which means it offers robust security features and extensive customization options. 🤯\u003C\u002Fp>\n\u003Cp>So, if you really want to level up your WordPress login security, then \u003Cstrong>AIO Login is a must-have plugin.\u003C\u002Fstrong> 💯\u003C\u002Fp>\n\u003Cp>From changing the WP-Admin URL to integrating Google reCAPTCHA, \u003Cstrong>AIO Login provides everything you need\u003C\u002Fstrong> to secure and customize your WordPress login page.\u003C\u002Fp>\n\u003Cp>Isn’t that amazing? Wait until you see its features❕ 😃 🚀\u003C\u002Fp>\n\u003Ch3>Key Features Our Users 🤍 About All In One Login\u003C\u002Fh3>\n\u003Cp>The All in One Login plugin includes all the essential features that ensure the best WordPress login protection and customization.\u003C\u002Fp>\n\u003Cp>Let’s explore some of its key features: 👇\u003C\u002Fp>\n\u003Cp>\u003Cstrong>✔️ Change WP-Admin URL\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Secure your site by changing the default WP-Admin URL. Hide the WordPress login page from hackers and prevent unauthorized access with a simple custom login URL.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>✔️ Google reCAPTCHA\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Protect your WordPress login page from spam and bots. Add Google reCAPTCHA v2 or v3 to your WP-Admin for secure authentication and reduce automated login attempts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>✔️ Limit Login Attempts\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Prevent brute-force attacks by limiting failed login attempts. Lock out users after multiple failures and safeguard your WP-Admin with this WordPress limit login attempts plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>✔️WordPress Login Customization [Free + Pro]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Create a branded, customized WordPress login page. Use templates, custom logos, background images, and CSS to personalize the WP-Admin experience for better user engagement.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>✔️ Disable Common Usernames [Pro]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Block weak or predictable usernames to improve WordPress login security. Force unique usernames and prevent attackers from exploiting common entries on your WordPress site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>✔️ Password Strength Checker [Pro]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Enforce strong passwords for WordPress users. Set minimum length, character rules, and uppercase\u002Flowercase requirements to ensure secure credentials and prevent unauthorized WP-Admin access.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>✔️ Ban User\u002FIP Address [Pro]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Block unwanted users or IP addresses instantly. Restrict access to your WordPress login page and protect WP-Admin from hackers using this IP and user ban plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>✔️ App-Based 2FA [Pro]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Add two-factor authentication to WordPress login. Enhance security for WP-Admin and ensure only authorized users can access your site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>✔️ Temp Access URL [Pro]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Generate temporary access URLs for specific users. Control the number of visits and expiration to grant a short-term login without compromising WordPress site security.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>✔️ Whitelist IP Addresses [Pro]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Allow only trusted IP addresses to access your WordPress login page. Restrict WP-Admin access to selected users, adding an extra security layer to your site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>✔️ Social Login Integration [Pro]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Enable users to log in with Google, Facebook, Microsoft, or LINE. Simplify WordPress and WooCommerce registration while improving security and user experience.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>✔️ User Enumeration [Free + Pro]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Block attackers from discovering WordPress usernames through author or query string requests. This prevents exposure of valid usernames and strengthens login security against brute-force attacks.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>✔️ WooCommerce Login Integration [Coming Soon]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Allow customers to log in with social accounts on WooCommerce checkout and account pages. Enhance login security and user experience with Google, Facebook, LinkedIn, Microsoft, or LINE.\u003C\u002Fp>\n\u003Ch3>Don’t Miss Out on Social Login Integrations\u003C\u002Fh3>\n\u003Cp>All in One Login supports social integrations with leading platforms, making sign-in faster, easier, and more secure.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Google Social Login\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Let users log in with one of the most widely used authentication methods worldwide. By enabling Google login, you reduce friction for users, making registration easier.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Facebook Social Login\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>With billions of users globally, Facebook login is a familiar and trusted option for social logins. Allowing users to sign in with Facebook means faster onboarding and less abandonment at registration.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Microsoft Social Login\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Perfect for business and education-focused websites, Microsoft login provides secure authentication. It aligns with the tools professionals already use every day.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>LINE Social Login\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>LINE has around 184 monthly active users worldwide, which is a great option for websites targeting international audiences.\u003C\u002Fp>\n\u003Ch3>8 Key Reasons to Choose All in One Login 😎\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>⚡ Reason #1: Greater Security for Your WP-Admin\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>AIO Login provides robust security features to protect your WP Admin page.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Change WP-Admin URL:\u003C\u002Fstrong> Customize the WordPress default login path.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Ban User\u002FIP Address:\u003C\u002Fstrong> Block unauthorized access instantly.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Detailed Activity Logs:\u003C\u002Fstrong> Monitor all login attempts\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Limit Login Attempts:\u003C\u002Fstrong> Prevent brute force attacks..\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Whitelist IP Addresses:\u003C\u002Fstrong> Restrict access to trusted IPs.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>⚡ Reason #2: Intuitive Branding and User Engagement\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Create a better user experience with a customized WordPress login page.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Custom Templates:\u003C\u002Fstrong> Choose from a variety of templates.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Logo and Background:\u003C\u002Fstrong> Add your branding elements.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Color Customization:\u003C\u002Fstrong> Personalize color schemes.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Custom CSS:\u003C\u002Fstrong> Advanced customization for WP-Admin.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>User Engagement:\u003C\u002Fstrong> Create a more engaging login page.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>⚡ Reason #3: Brute Force Protection\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Protect your WordPress login page (wp-admin) from brute force attacks.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Failed Login Limits:\u003C\u002Fstrong> Set limits on login attempts.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>User Lockout:\u003C\u002Fstrong> Lock out users after failed attempts.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Custom Lockout Settings:\u003C\u002Fstrong> Customize lockout duration.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Prevent Unauthorized Access:\u003C\u002Fstrong> Secure your WP Admin.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Real-time Monitoring:\u003C\u002Fstrong> Track login attempts and threats.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>⚡ Reason #4: Spam Prevention and User Verification\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Prevent spam and unauthorized logins with Google reCAPTCHA integration.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>reCAPTCHA Integration:\u003C\u002Fstrong> Add an extra layer of security.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Customizable Settings:\u003C\u002Fstrong> Choose between v2 and v3.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Bot Prevention:\u003C\u002Fstrong> Keep your login page spam-free.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>User Verification:\u003C\u002Fstrong> Ensure only legitimate users access your site.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>User Enumeration:\u003C\u002Fstrong> Prevent your usernames & ID’s from millicious attacks.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Enhanced Security:\u003C\u002Fstrong> Protect against automated attacks.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>⚡ Reason #5: Comprehensive Activity Monitoring\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Monitor all login activities for enhanced WordPress login security. See the username, IP address, date, time, lockout list, and more.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>IP Address Ban:\u003C\u002Fstrong> Block specific IPs.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>User Ban:\u003C\u002Fstrong> Prevent specific users from logging in.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Custom Messages:\u003C\u002Fstrong> Display messages for banned users.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Enhanced Control:\u003C\u002Fstrong> Manage who can access your site.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Immediate Action:\u003C\u002Fstrong> Take action against threats swiftly.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>⚡ Reason #6: Immediate Blocking of Suspicious Users\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Block suspicious users instantly to prevent unauthorized access to your WordPress login page and set a custom message on display for banned users.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Real-time Logs:\u003C\u002Fstrong> Track login attempts in real time.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>User Activity:\u003C\u002Fstrong> Monitor user activities.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>IP Address Tracking:\u003C\u002Fstrong> Review IP addresses.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Failed Login Attempts:\u003C\u002Fstrong> Get details on failed attempts.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Security Audits:\u003C\u002Fstrong> Conduct thorough security audits.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>⚡ Reason #7: Additional Layer of Security with Mobile-Based 2FA\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Add an extra layer of security with mobile-based 2FA.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>TOTP Apps Support:\u003C\u002Fstrong> Use Google Authenticator, FreeOTP, or Authy.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Two-Factor Authentication:\u003C\u002Fstrong> Secure your login process.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Improved Security:\u003C\u002Fstrong> Ensure only authorized access.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Convenient Setup:\u003C\u002Fstrong> Easy to set up and use.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Enhanced Protection:\u003C\u002Fstrong> Strengthen your WP Admin security.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>⚡ Reason #8: Simplified Access with Social Login\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Make logging in easier by allowing users to sign in with their existing social accounts.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Multiple Platforms Supported:\u003C\u002Fstrong> Google, Facebook, LinkedIn, and Microsoft.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Faster Onboarding:\u003C\u002Fstrong> Reduce friction during registration and login.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Improved User Experience:\u003C\u002Fstrong> No need to remember another password.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Lower Abandonment Rates:\u003C\u002Fstrong> Minimize drop-offs at sign-in.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Seamless Integration:\u003C\u002Fstrong> Works smoothly with your WordPress site.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Technical Documentation\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Faiologin.com\u002Fdocumentation\" rel=\"nofollow ugc\">Click here\u003C\u002Fa> to access our detailed, step-by-step technical documentation for complete security of your WordPress login page (wp-admin).\u003C\u002Fp>\n\u003Ch3>Need Help? Get Expert Assistance\u003C\u002Fh3>\n\u003Cp>Having trouble securing or customizing your WordPress login page (WP-Admin URL)? Don’t worry, our expert support team is here to help! 🤝\u003C\u002Fp>\n\u003Cp>Our dedicated support team is here to guide you through any issues, answer your questions, and assist you in using the plugin to its full potential.\u003C\u002Fp>\n\u003Cp>👉 \u003Ca href=\"https:\u002F\u002Fobjectsws.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F35\u002Fgroup\u002F105\u002Fcreate\u002F362\" rel=\"nofollow ugc\">Reach out by opening a support ticket\u003C\u002Fa>, for fast and reliable help. We’re here for you!\u003C\u002Fp>\n","Do you want to secure and customize the WordPress login page? Download the All in One Login plugin for login page security and customization.",70000,1244829,70,34,"2026-01-22T06:09:00.000Z","6.9.4","4.6","7.4",[93,132,133,24,134],"login","login-url","wp-admin","https:\u002F\u002Faiologin.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchange-wp-admin-login.2.1.1.zip",96,3,"2025-10-09 00:00:00",{"attackSurface":141,"codeSignals":206,"taintFlows":290,"riskAssessment":317,"analyzedAt":328},{"hooks":142,"ajaxHandlers":202,"restRoutes":203,"shortcodes":204,"cronEvents":205,"entryPointCount":28,"unprotectedCount":28},[143,149,155,160,164,168,172,176,180,184,188,192,196,198],{"type":144,"name":145,"callback":146,"file":147,"line":148},"action","plugins_loaded","blue_login_update_hook","blue-login.php",18,{"type":150,"name":151,"callback":152,"file":153,"line":154},"filter","get_avatar","blue_login_remove_photo_class","inc\\blue-about-page.php",6,{"type":144,"name":156,"callback":157,"priority":158,"file":159,"line":138},"login_headerurl","blue_login_url",9999,"inc\\blue-functions.php",{"type":150,"name":161,"callback":162,"priority":158,"file":159,"line":163},"login_headertitle","blue_login_text",9,{"type":144,"name":165,"callback":166,"file":159,"line":167},"login_head","my_login_head",15,{"type":150,"name":169,"callback":170,"file":159,"line":171},"login_message","the_login_message",23,{"type":150,"name":173,"callback":174,"file":159,"line":175},"login_redirect","blue_login_redirect",52,{"type":150,"name":177,"callback":178,"file":159,"line":179},"registration_redirect","blue_registration_redirect",62,{"type":144,"name":181,"callback":182,"file":159,"line":183},"init","blue_loggedout_redirect",71,{"type":144,"name":185,"callback":186,"file":187,"line":167},"admin_menu","blue_login_create_menu","inc\\blue-login-themes.php",{"type":144,"name":189,"callback":190,"file":187,"line":191},"admin_init","blue_login_register_mysettings",24,{"type":144,"name":193,"callback":194,"file":187,"line":195},"login_enqueue_scripts","blue_login_custom_style",29,{"type":144,"name":193,"callback":197,"file":187,"line":175},"blue_login_custom_setting",{"type":144,"name":199,"callback":200,"file":201,"line":14},"admin_enqueue_scripts","my_admin_scripts","inc\\blue-settings.php",[],[],[],[],{"dangerousFunctions":207,"sqlUsage":208,"outputEscaping":211,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":289},[],{"prepared":209,"raw":28,"locations":210},2,[],{"escaped":28,"rawEcho":212,"locations":213},45,[214,217,219,221,223,224,226,228,230,232,233,235,236,237,239,241,243,245,247,248,250,252,254,255,257,258,260,261,262,264,266,267,269,271,273,274,276,277,278,280,281,283,285,286,288],{"file":153,"line":215,"context":216},16,"raw output",{"file":153,"line":218,"context":216},46,{"file":153,"line":220,"context":216},48,{"file":153,"line":222,"context":216},49,{"file":153,"line":175,"context":216},{"file":153,"line":225,"context":216},53,{"file":153,"line":227,"context":216},54,{"file":153,"line":229,"context":216},55,{"file":153,"line":231,"context":216},56,{"file":153,"line":179,"context":216},{"file":153,"line":234,"context":216},63,{"file":153,"line":125,"context":216},{"file":153,"line":36,"context":216},{"file":153,"line":238,"context":216},75,{"file":153,"line":240,"context":216},79,{"file":153,"line":242,"context":216},80,{"file":153,"line":244,"context":216},88,{"file":153,"line":246,"context":216},89,{"file":153,"line":96,"context":216},{"file":153,"line":249,"context":216},94,{"file":187,"line":251,"context":216},38,{"file":187,"line":253,"context":216},44,{"file":187,"line":218,"context":216},{"file":187,"line":256,"context":216},78,{"file":187,"line":256,"context":216},{"file":187,"line":259,"context":216},87,{"file":187,"line":244,"context":216},{"file":187,"line":246,"context":216},{"file":201,"line":263,"context":216},42,{"file":201,"line":265,"context":216},64,{"file":201,"line":137,"context":216},{"file":201,"line":268,"context":216},106,{"file":201,"line":270,"context":216},116,{"file":272,"line":68,"context":216},"inc\\blue-switch-theme.php",{"file":272,"line":68,"context":216},{"file":272,"line":275,"context":216},14,{"file":272,"line":126,"context":216},{"file":272,"line":126,"context":216},{"file":272,"line":279,"context":216},37,{"file":272,"line":279,"context":216},{"file":272,"line":282,"context":216},40,{"file":272,"line":284,"context":216},41,{"file":272,"line":263,"context":216},{"file":272,"line":287,"context":216},47,{"file":272,"line":287,"context":216},[],[291,309],{"entryPoint":292,"graph":293,"unsanitizedCount":52,"severity":308},"blue_login_switch_theme (inc\\blue-switch-theme.php:2)",{"nodes":294,"edges":305},[295,300],{"id":296,"type":297,"label":298,"file":272,"line":299},"n0","source","$_GET['stylesheet']",13,{"id":301,"type":302,"label":303,"file":272,"line":299,"wp_function":304},"n1","sink","update_option() [Settings Manipulation]","update_option",[306],{"from":296,"to":301,"sanitized":307},false,"low",{"entryPoint":310,"graph":311,"unsanitizedCount":52,"severity":308},"\u003Cblue-switch-theme> (inc\\blue-switch-theme.php:0)",{"nodes":312,"edges":315},[313,314],{"id":296,"type":297,"label":298,"file":272,"line":299},{"id":301,"type":302,"label":303,"file":272,"line":299,"wp_function":304},[316],{"from":296,"to":301,"sanitized":307},{"summary":318,"deductions":319},"The \"blue-login-style\" plugin v1.4.0 exhibits a mixed security posture. On the positive side, it demonstrates excellent practices regarding SQL queries, utilizing prepared statements for all database interactions, and the absence of known vulnerabilities in its history. Furthermore, the static analysis reveals a minimal attack surface with no identified AJAX handlers, REST API routes, shortcodes, or cron events that could be directly exploited without authentication.  There are also no reported dangerous functions or file operations, and no external HTTP requests, which generally contribute to a more secure profile.\n\nHowever, significant concerns arise from the output escaping analysis, where 0% of the 45 identified outputs are properly escaped. This is a critical weakness that could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is incorporated into these outputs without proper sanitization.  The taint analysis also shows 2 flows with unsanitized paths, although these did not reach a critical or high severity level. The complete lack of nonce and capability checks across all entry points, combined with the complete absence of any auth checks on the identified entry points (albeit zero in number), suggests a lack of defensive coding against potential unauthorized access or manipulation, even if the current attack surface is small.\n\nIn conclusion, while the plugin avoids common pitfalls like raw SQL and known exploits, the severe deficiency in output escaping and the absence of any authentication or authorization checks on its (currently minimal) entry points present a notable risk. The plugin's history of no vulnerabilities is positive but doesn't mitigate the direct code-level risks identified. Addressing the output escaping and considering the addition of security checks for any future expansion of its functionality would significantly improve its security.",[320,322,324,326],{"reason":321,"points":68},"Outputs not properly escaped",{"reason":323,"points":71},"Taint flows with unsanitized paths",{"reason":325,"points":71},"No nonce checks",{"reason":327,"points":71},"No capability checks","2026-03-16T19:59:54.085Z",{"wat":330,"direct":336},{"assetPaths":331,"generatorPatterns":333,"scriptPaths":334,"versionParams":335},[332],"\u002Fwp-content\u002Fplugins\u002Fblue-login-style\u002Fassets\u002Fjs\u002Fblue-login-media-upload.js",[],[332],[],{"cssClasses":337,"htmlComments":339,"htmlAttributes":340,"restEndpoints":354,"jsGlobals":355,"shortcodeOutput":357},[338],"checktoshow",[],[341,342,343,344,345,346,347,348,349,350,351,352,353],"id=\"blue_upload_logo\"","id=\"upload_image_button\"","id=\"blue_upload_background\"","id=\"upload_background_button\"","name=\"blue_upload_logo\"","name=\"blue_custom_style\"","name=\"blue_upload_background\"","name=\"blue_upload_repeat\"","name=\"blue_upload_position\"","name=\"blue_login_redirect\"","name=\"blue_logout_redirect\"","name=\"blue_register_redirect\"","name=\"blue_login_message\"",[],[356],"blue_upload_script",[]]