[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fsZ37C_EcVXlOhlm0a2dVn34HmmRkvYygKeEESqhKYUU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":14,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":132,"fingerprints":156},"buddypress-admin-access-activity","BuddyPress Admin Access Activity","1.0","blahblahyaya","https:\u002F\u002Fprofiles.wordpress.org\u002Fblahblahyaya\u002F","\u003Cp>Allows BuddyPress admin to go directly to any activity they are linked to. Stops the problem of ‘You do not have access to this activity’ in BuddyPress\u003C\u002Fp>\n","Allows BuddyPress admin to go directly to any activity they are linked to. Stops the problem of 'You do not have access to this activity' in &hellip;",10,2202,0,"","3.6.1","3.1",[18,19,20,21,22],"activity","buddypress","email","messaging","notifications","http:\u002F\u002Fandylroberts.com\u002Fplugins","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-admin-access-activity.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":31,"trust_score":33,"computed_at":34},2,30,93,89,"2026-04-04T01:11:08.175Z",[36,58,76,91,106],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":14,"tags":51,"homepage":54,"download_link":55,"security_score":56,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":57},"buddypress-edit-activity","BuddyPress Edit Activity","1.1.1","Syed Balkhi","https:\u002F\u002Fprofiles.wordpress.org\u002Fsmub\u002F","\u003Cp>Let your BuddyPress members edit their activity posts and replies on the front-end of the site. You can even set a time limit for how long activity posts should remain editable.\u003C\u002Fp>\n\u003Cp>Just activate the plugin, and every activity post and reply will become editable, styled automatically by BuddyPress to fit with your theme.\u003C\u002Fp>\n","BuddyPress Edit Activity allows your members to edit their activity posts on the front-end of your BuddyPress-powered site.",900,75058,92,17,"2020-04-23T13:56:00.000Z","5.4.19","3.8",[18,19,21,52,53],"profiles","social-networking","https:\u002F\u002Fwww.buddyboss.com\u002Fproduct\u002Fbuddypress-edit-activity\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-edit-activity.1.1.1.zip",85,"2026-03-15T15:16:48.613Z",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":11,"downloaded":66,"rating":13,"num_ratings":13,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":14,"tags":70,"homepage":74,"download_link":75,"security_score":56,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":57},"bp-default-user-notifications","BP default user noifications","1.0.0","Neumann S Valle","https:\u002F\u002Fprofiles.wordpress.org\u002Futan\u002F","\u003Cp>Buddypres lacks settings to change notifications for your users, by default they are set to “YES” notify by email for any activity which could cause you\u003Cbr \u002F>\nproblems with your hosting service.. as it did for me.. since bots register and message users and so much more…\u003C\u002Fp>\n\u003Cp>Major features BP default user noifications include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Change default email notifications for your users, switch to “NO” and click update and will update all your user setting but Admins.\u003C\u002Fli>\n\u003Cli>User email notifications autmatically gets updated after registering, so no more worries, BP default user noifications does the job for you.\u003C\u002Fli>\n\u003Cli>That it, something so simple and so important that buddypress lacks of.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>social\u003C\u002Fh3>\n\u003Cp>Follow on twitter @vcomputadoras.com, Linkedin https:\u002F\u002Fwww.linkedin.com\u002Fin\u002Fneumann-valle-abb72682\u002F also Github https:\u002F\u002Fgithub.com\u002Futan\u003C\u002Fp>\n","BP default user noifications allows you to change buddypress default notification for all users but Admins.",1428,"2018-08-31T07:04:00.000Z","4.9.29","4.0",[19,71,72,73],"buddypress-missing-options","buddypress-notifications","stop-buddypress-flooading-emails","https:\u002F\u002Fgithub.com\u002Futan\u002Fbp-default-user-notifications","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-default-user-notifications.1.0.0.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":11,"downloaded":84,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":85,"requires_at_least":85,"requires_php":14,"tags":86,"homepage":89,"download_link":90,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"buddypress-admin-notifications","BuddyPress Admin Notifications","0.1","grosbouff","https:\u002F\u002Fprofiles.wordpress.org\u002Fgrosbouff\u002F","\u003Cp>This plugin adds a checkbox in the post\u002Fpage admin (for the admins and editors) to tell members (notification & email) that an important post has been published :\u003C\u002Fp>\n\u003Cp>Just check the checbox at the bottom of a page\u002Fpost when editing it.\u003Cbr \u002F>\n(You won’t be able to post a notification if the post\u002Fpage is not published; password protected or if a notification has been sent before.)\u003Cbr \u002F>\n(If a notification has been sent before; the checkbox will be disabled. You can eventually re-enable it by deleting the meta key bp_admin_notifications_sent.)\u003C\u002Fp>\n\u003Cp>Careful : I don’t have tested this plugin with a large amount of members.  I suspect the mail function could not support it.  Please tell me if you try !\u003C\u002Fp>\n","This plugin adds a checkbox in the post\u002Fpage admin (for the admins and editors) to tell members (notification & email) that an important post has  &hellip;",3407,"2.8.5",[19,87,88,22],"emails","members","http:\u002F\u002Fdev.benoitgreant.be\u002F2009\u002F11\u002F14\u002Fbuddypress-admin-notifications","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-admin-notifications.0.1.zip",{"slug":92,"name":93,"version":6,"author":94,"author_profile":95,"description":96,"short_description":97,"active_installs":11,"downloaded":98,"rating":99,"num_ratings":100,"last_updated":101,"tested_up_to":14,"requires_at_least":14,"requires_php":14,"tags":102,"homepage":14,"download_link":105,"security_score":56,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":57},"buddypress-notifications-manager","Buddypress Notifications Manager","meg@info","https:\u002F\u002Fprofiles.wordpress.org\u002Fmegainfo\u002F","\u003Cp>BuddyPress Notifications Manager is a plugin for BuddyPress plugin to manage the notifications system of buddypress for all users.\u003C\u002Fp>\n\u003Cp>With Buddypress Notifications manager, the administrator can manage all the notifications settings of Buddypress ( and also the new notifications added by other plugins).\u003C\u002Fp>\n\u003Cp>The administrator can enable\u002Fdisable access to notifications page for all users.\u003Cbr \u002F>\nHe can also apply or\u002Fno the current settings on the old registred members.\u003Cbr \u002F>\nIn this case, an update will be processed for all members, this operation can take few second depending the number of users.\u003C\u002Fp>\n\u003Cp>When the plugin is enabled, the notifications settings are applied to the new members indivisibly.\u003C\u002Fp>\n","BuddyPress Notifications Manager is a plugin for BuddyPress plugin to manage the notifications system of buddypress for all users.",7164,20,3,"2012-10-16T23:04:00.000Z",[19,20,103,22,104],"manager","settings","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddypress-notifications-manager.1.0.zip",{"slug":107,"name":108,"version":109,"author":110,"author_profile":111,"description":112,"short_description":113,"active_installs":114,"downloaded":115,"rating":116,"num_ratings":117,"last_updated":118,"tested_up_to":119,"requires_at_least":120,"requires_php":121,"tags":122,"homepage":128,"download_link":129,"security_score":56,"vuln_count":130,"unpatched_count":13,"last_vuln_date":131,"fetched_at":57},"aryo-activity-log","Activity Log – Monitor & Record User Changes","2.11.2","Elementor","https:\u002F\u002Fprofiles.wordpress.org\u002Felemntor\u002F","\u003Cp>\u003Cstrong>AN EASY TO USE & FULLY SUPPORTED WORDPRESS ACTIVITY LOG PLUGIN\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Want to monitor and track your WordPress website activity? Find out exactly who does what on your WordPress website with this plugin. Activity Log is like an airplane’s black box that logs every action in the WordPress admin, and lets you see exactly what users are doing on your WordPress website.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>If someone is trying to hack your site\u003C\u002Fli>\n\u003Cli>When a post was published, and who published it\u003C\u002Fli>\n\u003Cli>If a plugin\u002Ftheme was activated\u002Fdeactivated\u003C\u002Fli>\n\u003Cli>Suspicious admin activity\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It’s so essential; you’ll wonder how you ever managed your website without it. The plugin is also lightning fast and works behind the scenes, so it doesn\\’t affect site and admin performance. For optimal performance, we built the plugin so that it runs on a separate table in the database.\u003C\u002Fp>\n\u003Cp>If you have more than a handful of users, keeping track of who did what is virtually impossible. This plugin solves that issue by tracking what actions were initiated by which users, and displaying it in an easy-to-use and easy-to-filter view on the dashboard of your WordPress site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New! Introducing Email Logging\u003C\u002Fstrong> – Capture all emails sent from your WordPress site for streamlined debugging and compliance. Gain better visibility into email communication, aiding both troubleshooting and record-keeping. This is particularly beneficial for WooCommerce stores, allowing you to easily track sent emails alongside other critical site events.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Export to CSV\u003C\u002Fstrong> – Export your Activity Log data records to CSV. Developers can easily add support for custom data formats with our new dedicated Export API.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Data Privacy and GDPR Compliance\u003C\u002Fstrong> – We provide the tools to help you adhere to GDPR compliance standards, including Export\u002FErasure of data via the WordPress Privacy Tools.\u003C\u002Fp>\n\u003Ch3>With the Activity Log you can record:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>WordPress\u003C\u002Fstrong> – Core updates\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Posts\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Pages\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Post Type\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Tags\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Categories\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Taxonomies\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Menus\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Media\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comments\u003C\u002Fstrong> – Created, approved, unapproved, trashed, untrashed, spammed, unspammed, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Users\u003C\u002Fstrong> – Login, logout, login failed, update profile, registered, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Plugins\u003C\u002Fstrong> – Installed, updated, activated, deactivated, changed\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Themes\u003C\u002Fstrong> – Installed, updated, deleted, activated, changed (Editor and Customizer)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Widgets\u003C\u002Fstrong> – Added to sidebar, deleted from sidebar, order widgets\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Setting\u003C\u002Fstrong> – General, writing, reading, discussion, media, permalinks\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Options\u003C\u002Fstrong> – Extended custom settings for 3rd party plugins\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Export\u003C\u002Fstrong> – Exported activity log file\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce\u003C\u002Fstrong> – Track products, orders, customers, and more\u003C\u002Fli>\n\u003Cli>\u003Cstrong>bbPress\u003C\u002Fstrong> – Forums, topics, replies, taxonomies, and other actions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Emails sent from WordPress site\u003C\u002Fstrong> – Sending successful, sending failed\u003C\u002Fli>\n\u003Cli>There’s more, of course, but you get the point…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For each event recorded by the activity log, the following details are also logged:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Date and time of occurrence\u003C\u002Fli>\n\u003Cli>User and user role responsible for the change\u003C\u002Fli>\n\u003Cli>Source IP address from which the change originated\u003C\u002Fli>\n\u003Cli>Affected object where the change occurred\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The plugin doesn\\’t require any kind of setup; it works right out of the box (just another reason people love it)!\u003C\u002Fp>\n\u003Ch3>Data Storage and Performance Optimization\u003C\u002Fh3>\n\u003Cp>In order to ensure optimal performance of your website, all events and logs data are stored in a dedicated custom table within your WordPress database. This approach significantly reduces the impact on your website’s performance, ensuring seamless operation even during peak traffic periods.\u003C\u002Fp>\n\u003Ch3>Uninstall Clean-up\u003C\u002Fh3>\n\u003Cp>We understand the importance of maintaining a clean and efficient database environment. That’s why our plugin features an uninstall hook that seamlessly removes all traces of its presence from your website when uninstalling. This meticulous clean-up process ensures that your database remains lean and clutter-free even after our plugin has been removed.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>With our optimized data storage, thorough logging, and meticulous clean-up process, you can trust that our plugin will enhance the functionality and security of your WordPress site without compromising its performance.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>What users have to say\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cem>“Its tools, particularly for data privacy and GDPR compliance, make it indispensable for websites operating within European Union boundaries or dealing with EU citizens’ data”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fblog.hubspot.com\u002Fwebsite\u002F8-best-plugins-tracking-user-activity-wordpress\" rel=\"nofollow ugc\">HubSpot.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“If you’re after a competent WP security audit log plugin with all the basic features you need, Activity Log is it!”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwpastra.com\u002Fplugins\u002Fwordpress-activity-log-plugins\u002F\" rel=\"nofollow ugc\">WPAstra.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Activity Log features a remarkably straightforward dashboard interface, providing administrators with an at-a-glance understanding of site interactions”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwww.malcare.com\u002Fblog\u002Fwordpress-activity-log\u002F\" rel=\"nofollow ugc\">Malcare.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Best 10 Free WordPress Plugins of the Month: Keeping tabs on what your users do with their access to the Dashboard”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fmanagewp.com\u002Fbest-free-wordpress-plugins-july-2014\" rel=\"nofollow ugc\">ManageWP.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Thanks to this step, we’ve discovered that our site was undergoing a brute force attack”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fartdriver.com\u002Fblog\u002Fwordpress-site-hacked-solution-time\" rel=\"nofollow ugc\">Artdriver.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Optimized code – The plugin itself is blazing fast and leaves almost no footprint on the server”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwww.freshtechtips.com\u002F2014\u002F01\u002Fbest-audit-trail-plugins-for-wordpress.html\" rel=\"nofollow ugc\">FreshTechTips.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Activity Log lets you track a huge range of activities. Overall, very easy to use and setup”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwww.elegantthemes.com\u002Fblog\u002Ftips-tricks\u002F5-best-ways-to-monitor-wordpress-activity-via-the-dashboard\" rel=\"nofollow ugc\">ElegantThemes.com\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contributions:\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Would you like to contribute to this plugin?\u003C\u002Fstrong> You’re more than welcome to submit your pull requests on the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpojome\u002Factivity-log\" rel=\"nofollow ugc\">GitHub repo\u003C\u002Fa>. And, if you have any notes about the code, please open a ticket on the issue tracker.\u003C\u002Fp>\n","This top rated Activity Log plugin helps you monitor & log all changes and actions on your WordPress site, so you can remain secure and organized.",200000,3995902,86,74,"2024-11-12T14:55:00.000Z","6.7.5","6.0","7.0",[123,124,125,126,127],"activity-log","audit-log","email-log","security","user-log","https:\u002F\u002Factivitylog.io\u002F?utm_source=wp-plugins&utm_campaign=plugin-uri&utm_medium=wp-dash","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Faryo-activity-log.2.11.2.zip",9,"2024-11-20 17:10:23",{"attackSurface":133,"codeSignals":144,"taintFlows":151,"riskAssessment":152,"analyzedAt":155},{"hooks":134,"ajaxHandlers":140,"restRoutes":141,"shortcodes":142,"cronEvents":143,"entryPointCount":13,"unprotectedCount":13},[135],{"type":136,"name":137,"callback":138,"file":139,"line":99},"filter","bp_activity_permalink_access","bp_allow_admin_activity_access","main.php",[],[],[],[],{"dangerousFunctions":145,"sqlUsage":146,"outputEscaping":148,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":150},[],{"prepared":13,"raw":13,"locations":147},[],{"escaped":13,"rawEcho":13,"locations":149},[],[],[],{"summary":153,"deductions":154},"The static analysis of Buddypress Admin Access Activity v1.0 reveals a strong security posture based on the provided metrics.  The plugin demonstrates excellent adherence to secure coding practices by having no identified dangerous functions, all SQL queries utilizing prepared statements, and all output being properly escaped.  Furthermore, the absence of file operations and external HTTP requests further mitigates potential attack vectors.  The lack of any identified vulnerability history, including CVEs, is a positive indicator of the plugin's current security and maintenance.  \n\nHowever, the complete absence of any detected attack surface, including AJAX handlers, REST API routes, shortcodes, and cron events, while seemingly good, also raises a question. It might indicate a very limited functionality or that these aspects are not exposed through the analyzed code paths, which could be a weakness if the plugin is intended to interact with WordPress in more complex ways.  The lack of identified nonce checks and capability checks, in conjunction with zero unprotected entry points, suggests that any functionality is either not exposed externally or is handled in a way that does not trigger these specific analysis signals.  \n\nIn conclusion, based on the provided static analysis and vulnerability history, Buddypress Admin Access Activity v1.0 appears to be a very secure plugin.  The code exhibits best practices in data handling and output sanitization, and its vulnerability history is clean.  The primary area for potential concern, or at least further investigation, lies in the complete absence of identified attack vectors, which might hint at very limited functionality or unanalyzed interaction points.  Despite this, the current data points towards a low-risk plugin.",[],"2026-03-16T23:21:04.701Z",{"wat":157,"direct":162},{"assetPaths":158,"generatorPatterns":159,"scriptPaths":160,"versionParams":161},[],[],[],[],{"cssClasses":163,"htmlComments":164,"htmlAttributes":165,"restEndpoints":166,"jsGlobals":167,"shortcodeOutput":168},[],[],[],[],[],[]]