[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fW2hWDRv6FUrfcLpX9p7iY1yhchCypttvX-Kphc2VeWU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":22,"download_link":23,"security_score":13,"vuln_count":24,"unpatched_count":24,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":36,"analysis":37,"fingerprints":138},"content-restrictor-for-divi","Divi Content Restrictor","2.0.0","wptools","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpt00ls\u002F","\u003Cp>Conditionally restrict partial content on divi page. Divi visual builder compatible. Grant access to logged-in users, users belonging to any\u002Fall selected roles. Integration with third-party plugins like “WooCommerce Membership”, “MemberPress”, “Restrict Content Pro” & “Custom WordPress Filter”.\u003C\u002Fp>\n\u003Ch3>Restrict Content On Divi Page\u003C\u002Fh3>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FFH2uT690fSs?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Conditionally restrict\u003C\u002Fstrong> access to \u003Cstrong>partial content\u003C\u002Fstrong> on a \u003Cstrong>divi section\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>100% divi visual builder compatibility.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>This plugin restricts content on divi section. Its 100% compatible with divi visual builder.\u003C\u002Fp>\n\u003Cp>We’ve added \u003Cstrong>Restrict Content\u003C\u002Fstrong> & \u003Cstrong>Un-Authorized Text\u003C\u002Fstrong> settings toggle on divi section module. Its on the \u003Cstrong>Advanced tab\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>In the \u003Cstrong>Restrict Content\u003C\u002Fstrong> toggle, setup all the conditions for restricting content like\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Show content to logged-in users\u003C\u002Fli>\n\u003Cli>Show content to users with specific roles (Premium Version)\u003C\u002Fli>\n\u003Cli>Show content based on third-party plugin’s like\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fbit.ly\u002F2JNNyEA\" rel=\"nofollow ugc\">Restrict Content Pro\u003C\u002Fa> (Premium Version)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fbit.ly\u002F2X8dk9w\" rel=\"nofollow ugc\">MemberPress\u003C\u002Fa> (Premium Version)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fbit.ly\u002F3rWA0Ib\" rel=\"nofollow ugc\">WooCommerce Membership\u003C\u002Fa> (Premium Version)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>In the \u003Cstrong>Un-Authorized Text\u003C\u002Fstrong> settings toggle, set the un-authorized text message and text styles.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Restrict content on all section types. For example regular, full-width and specialty divi sections\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>Premium\u003C\u002Fh3>\n\u003Cp>Premium plugin is available at \u003Ca href=\"https:\u002F\u002Fwptools.app\u002Fwordpress-plugin\u002Fdivi-content-restrictor\u002F?utm_source=wp&utm_medium=plugin-page&utm_campaign=restrict-content&utm_content=description\" rel=\"nofollow ugc\">https:\u002F\u002Fwptools.app\u002Fwordpress-plugin\u002Fdivi-content-restrictor\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Features are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Content restriction using \u003Cstrong>User Roles\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Content restriction using \u003Cstrong>WooCommerce Memberships\u003C\u002Fstrong> plugin\u003C\u002Fli>\n\u003Cli>Content restriction using \u003Cstrong>Restrict Content Pro\u003C\u002Fstrong> plugin\u003C\u002Fli>\n\u003Cli>Content restriction using \u003Cstrong>MemberPress\u003C\u002Fstrong> plugin\u003C\u002Fli>\n\u003Cli>Content restriction using \u003Cstrong>Custom WordPress Filter\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n","Conditionally restrict partial content on divi page. Divi visual builder compatible. Grant access to logged-in users, users belonging to any\u002Fall selec …",200,5875,100,1,"2025-11-05T08:27:00.000Z","6.8.5","4.5","7.4",[20,21],"divi-content-access-control","divi-restrict-content","https:\u002F\u002Fwptools.app","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontent-restrictor-for-divi.2.0.0.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":29,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"wpt00ls",15,6160,99,30,93,"2026-04-04T09:13:12.386Z",[],{"attackSurface":38,"codeSignals":106,"taintFlows":121,"riskAssessment":122,"analyzedAt":137},{"hooks":39,"ajaxHandlers":94,"restRoutes":95,"shortcodes":104,"cronEvents":105,"entryPointCount":14,"unprotectedCount":14},[40,47,51,55,59,65,69,73,77,80,83,86,90],{"type":41,"name":42,"callback":43,"priority":44,"file":45,"line":46},"filter","et_pb_module_shortcode_attributes","modify_props",10,"includes\\classes\\Divi\\Builder.php",24,{"type":41,"name":48,"callback":49,"file":45,"line":50},"et_pb_all_fields_unprocessed_et_pb_section","add_fields",31,{"type":41,"name":52,"callback":53,"priority":44,"file":45,"line":54},"et_builder_get_parent_modules","pre_process_modules",36,{"type":41,"name":56,"callback":57,"priority":44,"file":45,"line":58},"et_pb_module_content","process_content",43,{"type":60,"name":61,"callback":62,"file":63,"line":64},"action","et_builder_framework_loaded","on_framework_loaded","includes\\classes\\Loader.php",56,{"type":60,"name":66,"callback":67,"file":63,"line":68},"divi_extensions_init","extensions_init",57,{"type":60,"name":70,"callback":71,"file":63,"line":72},"wp_head","inline_settings",59,{"type":60,"name":74,"callback":75,"file":63,"line":76},"rest_api_init","closure",60,{"type":60,"name":78,"callback":75,"file":63,"line":79},"divi_visual_builder_assets_before_enqueue_scripts",67,{"type":41,"name":81,"callback":75,"file":63,"line":82},"divi_visual_builder_assets_package_list",96,{"type":41,"name":84,"callback":84,"priority":44,"file":63,"line":85},"render_block",102,{"type":41,"name":87,"callback":88,"priority":44,"file":63,"line":89},"divi_module_wrapper_render","render_styles",108,{"type":41,"name":91,"callback":92,"priority":32,"file":63,"line":93},"divi.conversion.moduleLibrary.conversionMap","convert",114,[],[96],{"namespace":97,"route":98,"methods":99,"callback":101,"permissionCallback":102,"file":63,"line":103},"d5-content-restrictor\u002Fv1","\u002Fsettings-data",[100],"GET","settingsData","__return_true",61,[],[],{"dangerousFunctions":107,"sqlUsage":108,"outputEscaping":110,"fileOperations":24,"externalRequests":24,"nonceChecks":24,"capabilityChecks":24,"bundledLibraries":116},[],{"prepared":24,"raw":24,"locations":109},[],{"escaped":111,"rawEcho":14,"locations":112},2,[113],{"file":114,"line":54,"context":115},"includes\\classes\\WP\\Bootstrap.php","raw output",[117],{"name":118,"version":119,"knownCves":120},"Freemius","1.0",[],[],{"summary":123,"deductions":124},"The plugin \"content-restrictor-for-divi\" version 2.0.0 exhibits a mixed security posture.  On the positive side, it demonstrates good practices by avoiding dangerous functions, performing all SQL queries using prepared statements, and having no recorded vulnerabilities or CVEs in its history. The absence of file operations and external HTTP requests also reduces potential attack vectors.  However, significant concerns arise from the static analysis.  The plugin exposes one REST API route without any permission callbacks, creating a direct and unprotected entry point that could be exploited if not properly secured by the surrounding WordPress installation or other plugins. Furthermore, the complete lack of nonce checks and capability checks across all identified entry points is a major weakness, as it allows any authenticated or even unauthenticated user (depending on the REST API endpoint's underlying logic) to potentially trigger actions or access data without proper authorization verification.",[125,127,129,131,134],{"reason":126,"points":44},"REST API route without permission callback",{"reason":128,"points":44},"No nonce checks found",{"reason":130,"points":44},"No capability checks found",{"reason":132,"points":133},"Output escaping is not fully comprehensive",4,{"reason":135,"points":136},"Bundled library Freemius v1.0 is potentially outdated",3,"2026-03-16T20:27:10.492Z",{"wat":139,"direct":146},{"assetPaths":140,"generatorPatterns":143,"scriptPaths":144,"versionParams":145},[141,142],"\u002Fwp-content\u002Fplugins\u002Fcontent-restrictor-for-divi\u002Fjs\u002Fscript.js","\u002Fwp-content\u002Fplugins\u002Fcontent-restrictor-for-divi\u002Fjs\u002Fscript.min.js",[],[],[],{"cssClasses":147,"htmlComments":150,"htmlAttributes":151,"restEndpoints":157,"jsGlobals":159,"shortcodeOutput":161},[148,149],"d5-content-restricted-section","et_pb_dcr_section",[],[152,153,154,155,156],"data-d5-content-restricted-section-visibility","data-d5-content-restricted-section-access","data-d5-content-restricted-section-users","data-dcr-user-roles","data-dcr-user-id",[158],"\u002Fwp-json\u002Fd5-content-restrictor\u002Fv1\u002Fsettings-data",[160],"window.D5ContentRestrictor",[]]