[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fmG0Zb6c0Gk0G63S7rjNp1htytycjW1zpxliYR3gC_NM":3,"$fv-KmLqIjQ0NFn2C5ckcwrBsJ5xwITs-SAaqWy6_qFpc":200,"$fpI2qYhbBS1JWMi4qiLmgV_NVtvWoDrbKBDyD2jiA_EA":205},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":38,"analysis":129,"fingerprints":176},"contributors","SX Welcome Pages","0.0.4","Daniel Roch","https:\u002F\u002Fprofiles.wordpress.org\u002Fconfridin\u002F","\u003Cp>SX Welcome Pages is a WordPress plugin to display an admin page showing all contributors. After user login, he will be redirected to a welcome page with quick actions (add new post, edit my profil…) an another tab with a list of all WordPress contributors.\u003C\u002Fp>\n\u003Cp>This plugin is a use case to show what can be done in order to create a community. It can also be used as a member directory basis.\u003C\u002Fp>\n\u003Cp>Feel free to contribute on BitBucket : \u003Ca href=\"https:\u002F\u002Fbitbucket.org\u002Fseomix\u002Fcontributors\" rel=\"nofollow ugc\">https:\u002F\u002Fbitbucket.org\u002Fseomix\u002Fcontributors\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Created by Daniel Roch (you can contact me on \u003Ca href=\"http:\u002F\u002Fwww.seomix.fr\" rel=\"nofollow ugc\">SeoMix\u003C\u002Fa>).\u003C\u002Fp>\n","SX Welcome Pages is a WordPress plugin to display a welcome page for user, with quick actions and the list of all website contributors.",10,1896,0,"2025-04-24T15:26:00.000Z","6.8.5","4.4","",[19,20,21,22,23],"community","login","members","users","welcome-page","https:\u002F\u002Fwww.seomix.fr","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontributors.zip",92,null,"2026-04-06T09:54:40.288Z","no_bundle",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":26,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"confridin",5,2610,30,88,"2026-05-20T00:14:20.719Z",[39,61,79,99,114],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":33,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":17,"download_link":58,"security_score":59,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":60},"expire-user-passwords","Expire User Passwords","1.4.2","Matt Miller","https:\u002F\u002Fprofiles.wordpress.org\u002Fmillermedianow\u002F","\u003Cp>Note: This is a forked version of the now unsupported \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fexpire-passwords\u002F\" rel=\"ugc\">Expire Passwords\u003C\u002Fa> plugin. The notes below are copied over from the original plugin and will be updated as relevant updates become available. Please help by contributing to the GitHub repository \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FMiller-Media\u002Fexpire-passwords\" rel=\"nofollow ugc\">Expire Passwords\u003C\u002Fa> on GitHub\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Did you find this plugin helpful? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Fexpire-user-passwords\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Harden the security of your site by preventing unauthorized access to stale user accounts.\u003C\u002Fp>\n\u003Cp>This plugin is also ideal for sites needing to meet certain industry security compliances – such as government, banking or healthcare.\u003C\u002Fp>\n\u003Cp>In the plugin settings you can set the maximum number of days users are allowed to use the same password (90 days by default), as well as which user roles will be required to reset their passwords regularly (non-Administrators by default).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Languages supported:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Albanian (Shqip)\u003C\u002Fli>\n\u003Cli>Arabic (العربية)\u003C\u002Fli>\n\u003Cli>Armenian (Հայերեն)\u003C\u002Fli>\n\u003Cli>Basque (Euskara)\u003C\u002Fli>\n\u003Cli>Bengali (বাংলা)\u003C\u002Fli>\n\u003Cli>Bulgarian (Български)\u003C\u002Fli>\n\u003Cli>Catalan (Català)\u003C\u002Fli>\n\u003Cli>Chinese Simplified (简体中文)\u003C\u002Fli>\n\u003Cli>Croatian (Hrvatski)\u003C\u002Fli>\n\u003Cli>Czech (Čeština)\u003C\u002Fli>\n\u003Cli>Danish (Dansk)\u003C\u002Fli>\n\u003Cli>Dutch (Nederlands)\u003C\u002Fli>\n\u003Cli>Estonian (Eesti)\u003C\u002Fli>\n\u003Cli>Finnish (Suomi)\u003C\u002Fli>\n\u003Cli>French (Français)\u003C\u002Fli>\n\u003Cli>Galician (Galego)\u003C\u002Fli>\n\u003Cli>Georgian (ქართული)\u003C\u002Fli>\n\u003Cli>German (Deutsch)\u003C\u002Fli>\n\u003Cli>Greek (Ελληνικά)\u003C\u002Fli>\n\u003Cli>Hebrew (עברית)\u003C\u002Fli>\n\u003Cli>Hindi (हिन्दी)\u003C\u002Fli>\n\u003Cli>Hungarian (Magyar)\u003C\u002Fli>\n\u003Cli>Indonesian (Bahasa Indonesia)\u003C\u002Fli>\n\u003Cli>Irish (Gaeilge)\u003C\u002Fli>\n\u003Cli>Italian (Italiano)\u003C\u002Fli>\n\u003Cli>Japanese (日本語)\u003C\u002Fli>\n\u003Cli>Korean (한국어)\u003C\u002Fli>\n\u003Cli>Latvian (Latviešu)\u003C\u002Fli>\n\u003Cli>Lithuanian (Lietuvių)\u003C\u002Fli>\n\u003Cli>Macedonian (Македонски)\u003C\u002Fli>\n\u003Cli>Norwegian (Norsk)\u003C\u002Fli>\n\u003Cli>Persian (فارسی)\u003C\u002Fli>\n\u003Cli>Persian – Afghanistan (دری)\u003C\u002Fli>\n\u003Cli>Polish (Polski)\u003C\u002Fli>\n\u003Cli>Portuguese – Brazil (Português do Brasil)\u003C\u002Fli>\n\u003Cli>Portuguese – Portugal (Português)\u003C\u002Fli>\n\u003Cli>Romanian (Română)\u003C\u002Fli>\n\u003Cli>Russian (Русский)\u003C\u002Fli>\n\u003Cli>Serbian (Српски)\u003C\u002Fli>\n\u003Cli>Slovak (Slovenčina)\u003C\u002Fli>\n\u003Cli>Slovenian (Slovenščina)\u003C\u002Fli>\n\u003Cli>Spanish (Español)\u003C\u002Fli>\n\u003Cli>Swedish (Svenska)\u003C\u002Fli>\n\u003Cli>Tamil (தமிழ்)\u003C\u002Fli>\n\u003Cli>Thai (ไทย)\u003C\u002Fli>\n\u003Cli>Turkish (Türkçe)\u003C\u002Fli>\n\u003Cli>Ukrainian (Українська)\u003C\u002Fli>\n\u003Cli>Urdu (اردو)\u003C\u002Fli>\n\u003Cli>Vietnamese (Tiếng Việt)\u003C\u002Fli>\n\u003Cli>Welsh (Cymraeg)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Development of this plugin is done \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FMiller-Media\u002Fexpire-passwords\" rel=\"nofollow ugc\">on GitHub\u003C\u002Fa>. Pull requests welcome. Please see \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FMiller-Media\u002Fexpire-passwords\u002Fissues\" rel=\"nofollow ugc\">issues reported\u003C\u002Fa> there before going to the plugin forum.\u003C\u002Fstrong>\u003C\u002Fp>\n","Require certain users to change their passwords on a regular basis.",3000,58543,84,"2026-02-17T09:27:00.000Z","6.9.4","4.0","8.1",[20,55,56,57,22],"membership","passwords","security","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fexpire-user-passwords.1.4.2.zip",100,"2026-04-16T10:56:18.058Z",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":59,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":17,"tags":75,"homepage":17,"download_link":77,"security_score":78,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":60},"prevent-concurrent-logins","Prevent Concurrent Logins","0.4.0","Frankie Jarrett","https:\u002F\u002Fprofiles.wordpress.org\u002Ffjarrett\u002F","\u003Cp>\u003Cstrong>Did you find this plugin helpful? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Fprevent-concurrent-logins\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Deters members\u002Fsubscribers from sharing their accounts with others\u003C\u002Fli>\n\u003Cli>Hardens security by destoying old sessions automatically\u003C\u002Fli>\n\u003Cli>Prompts old sessions to login again if they want to continue\u003C\u002Fli>\n\u003Cli>Ideal for membership sites and web applications\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Important:\u003C\u002Fstrong> If you plan to network-activate this plugin on a multisite network, please install the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fproper-network-activation\u002F\" rel=\"ugc\">Proper Network Activation\u003C\u002Fa> plugin \u003Cem>beforehand\u003C\u002Fem>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Development of this plugin is done \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffjarrett\u002Fprevent-concurrent-logins\" rel=\"nofollow ugc\">on GitHub\u003C\u002Fa>. Pull requests welcome. Please see \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffjarrett\u002Fprevent-concurrent-logins\u002Fissues\" rel=\"nofollow ugc\">issues reported\u003C\u002Fa> there before going to the plugin forum.\u003C\u002Fstrong>\u003C\u002Fp>\n","Prevents users from staying logged into the same account from multiple places.",900,17403,17,"2016-08-16T22:21:00.000Z","4.6.30","4.1",[20,55,57,76,22],"sensei","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprevent-concurrent-logins.0.4.0.zip",85,{"slug":80,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":35,"downloaded":87,"rating":88,"num_ratings":35,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":92,"tags":93,"homepage":97,"download_link":98,"security_score":78,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":60},"ultra-community","Ultra Community","2.1.2","ultraTeam","https:\u002F\u002Fprofiles.wordpress.org\u002Fultrateam\u002F","\u003Cp>A complete bundle to create your community site without having any advanced knowledge of programming.\u003Cbr \u002F>\nIt includes all of the features you’ve come to expect from any online community, like stunning user profiles, login and registration forms, notifications, and many more.\u003C\u002Fp>\n\u003Cp>See Ultra Community in action: \u003Ca href=\"http:\u002F\u002Fdemo.ultracommunity.com\u002F\" rel=\"nofollow ugc\">Ultra Community Demo Site\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Translation\u003C\u002Fh4>\n\u003Cp>Currently Ultra Community is translated into the following languages:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>German\u003C\u002Fli>\n\u003Cli>Italian\u003C\u002Fli>\n\u003Cli>Swedish\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>We’d really appreciate if you could help \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fultra-community\u002F\" rel=\"nofollow ugc\">translating Ultra Community into your language here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Summary of features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Front end Login\u003C\u002Fstrong>\u003Cbr \u002F>\nUltra Community offers an interactive front-end user login, with error handling and custom redirection support.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Front end Registration\u003C\u002Fstrong>\u003Cbr \u002F>\nCreate multiple fully customizable front-end registration forms for your users\u003C\u002Fp>\n\u003Cp>\u003Cstrong>User Profile\u003C\u002Fstrong>\u003Cbr \u002F>\nCreate amazing user profiles which can be fully customized to your site’s specific requirements\u003C\u002Fp>\n\u003Cp>\u003Cstrong>User Roles\u003C\u002Fstrong>\u003Cbr \u002F>\nUltra Community allows you to create multiple user roles and give each role its own permissions and capabilities\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Groups\u003C\u002Fstrong>\u003Cbr \u002F>\nAllow users to create and join groups\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Members Directory\u003C\u002Fstrong>\u003Cbr \u002F>\nList all the registered users filtering them by User Role and setup which user roles can access the directory\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Groups Directory\u003C\u002Fstrong>\u003Cbr \u002F>\nList all groups filtering them by group type (public, private, secret)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Email Notifications\u003C\u002Fstrong>\u003Cbr \u002F>\nAllows you to setup and customize email notifications that can be sent to users after a certain event happens. Each email type can be activated or deactivated\u003C\u002Fp>\n\u003Ch4>Compatibility\u003C\u002Fh4>\n\u003Cp>On a \u003Cstrong>WP Multisite\u003C\u002Fstrong> you can either activate the plugin network wide or on a single site.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Note: This plugin requires PHP 5.3 or higher to be activated.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","Ultra Community is a powerful community plugin for WordPress that takes your site beyond the blog.",17184,94,"2020-05-15T04:19:00.000Z","5.4.19","4.6","5.6",[19,94,95,55,96],"login-form","members-directory","user-profile","https:\u002F\u002Fwww.ultracommunity.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fultra-community.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":35,"downloaded":107,"rating":13,"num_ratings":13,"last_updated":108,"tested_up_to":51,"requires_at_least":74,"requires_php":109,"tags":110,"homepage":112,"download_link":113,"security_score":59,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"users-login-monitor","Users Login Monitor","5.22","wpgear","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpgear\u002F","\u003Cp>Ext Security.\u003Cbr \u002F>\nDashboard & Daily-Digest about users activity.\u003Cbr \u002F>\nNow the console has a widget that displays last login users, whith: Date-Time, IP address (whith Whois info) and Device type\u002FBrowser.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Even without going to the site admin area, you will be informed about the activity of the current day.\u003C\u002Fli>\n\u003Cli>Any person can be a recipient of notifications. Not necessarily the Administrator.\u003C\u002Fli>\n\u003Cli>Now in the Admin console you have a new widget with a list of users in order of decreasing Login time.\u003C\u002Fli>\n\u003Cli>Determine and save the IP address, device and browser details, from which the was made Login. (if your server is configured correctly). For better informational content, in order to be able to determine the parameters of the User’s devices (OS, Browser, Type Device), you should have a PHP extension on the server: “Browscap”. Alternatively, you can use the Lite-Version – Plugin: “quick-browscap” from the official WP repository.\u003C\u002Fli>\n\u003Cli>It is important to understand that the time to enter the site and the time of the last activity of the user are different events.\u003C\u002Fli>\n\u003Cli>Displays “Login Success” Statistics for each User.\u003C\u002Fli>\n\u003Cli>Displays Count “Users Activity” in Admin Bar.\u003C\u002Fli>\n\u003C\u002Ful>\n","A freeware plugin, for daily-notify site administrator, about users who logged in during the day.",2575,"2026-02-26T09:01:00.000Z","5.4",[20,111,21,57,22],"logout","https:\u002F\u002Fwpgear.xyz\u002Fusers-login-monitor","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fusers-login-monitor.zip",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":11,"downloaded":122,"rating":13,"num_ratings":13,"last_updated":123,"tested_up_to":51,"requires_at_least":124,"requires_php":17,"tags":125,"homepage":126,"download_link":127,"security_score":59,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":128},"for-users-only","For Users Only","1.1","Gagan Deep Singh","https:\u002F\u002Fprofiles.wordpress.org\u002Fgagan0123\u002F","\u003Cp>Allows only logged in users to visit the site. If anyone tries to access any page on the frontend of the site, user will be redirected to the login page automatically.\u003C\u002Fp>\n","Allows only logged in users to visit the site.",9086,"2026-02-10T08:15:00.000Z","2.7",[20,55,22],"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffor-users-only\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffor-users-only.1.1.zip","2026-03-15T15:16:48.613Z",{"attackSurface":130,"codeSignals":150,"taintFlows":166,"riskAssessment":167,"analyzedAt":175},{"hooks":131,"ajaxHandlers":146,"restRoutes":147,"shortcodes":148,"cronEvents":149,"entryPointCount":13,"unprotectedCount":13},[132,138,142],{"type":133,"name":134,"callback":135,"file":136,"line":137},"action","plugins_loaded","sx_contributors_language","contributors.php",77,{"type":133,"name":139,"callback":140,"file":136,"line":141},"admin_menu","sx_contributors_adm_dashboard_menu",80,{"type":133,"name":143,"callback":144,"file":136,"line":145},"wp_login","sx_contributors_adm_dashboard_redirect",83,[],[],[],[],{"dangerousFunctions":151,"sqlUsage":152,"outputEscaping":154,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":165},[],{"prepared":13,"raw":13,"locations":153},[],{"escaped":155,"rawEcho":156,"locations":157},13,2,[158,162],{"file":159,"line":160,"context":161},"admin-home-data.php",18,"raw output",{"file":163,"line":164,"context":161},"admin-home-tab2.php",42,[],[],{"summary":168,"deductions":169},"The \"contributors\" plugin v0.0.4 exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of identified attack surface points like AJAX handlers, REST API routes, shortcodes, and cron events is a significant positive. Furthermore, the code signals show no dangerous functions, no raw SQL queries, and a high percentage of properly escaped output, all indicating good coding practices.\n\nThe taint analysis reveals no identified flows, suggesting that data handling within the plugin is likely secure. The plugin also has a clean vulnerability history with no known CVEs, indicating a lack of past security issues and a potentially well-maintained codebase. The complete absence of nonce checks and capability checks, while potentially concerning in other contexts, is less of a risk here given the zero attack surface identified.\n\nOverall, this plugin appears to be very secure. The primary weakness, though minor given the current analysis, is the complete lack of any observed capability checks or nonce checks. While this is mitigated by the current lack of entry points, it represents a potential future risk if entry points are added without corresponding security checks. However, based on the current data, the plugin's security is exceptionally high.",[170,173],{"reason":171,"points":172},"No capability checks detected",3,{"reason":174,"points":172},"No nonce checks detected","2026-04-16T11:50:38.895Z",{"wat":177,"direct":182},{"assetPaths":178,"generatorPatterns":179,"scriptPaths":180,"versionParams":181},[],[],[],[],{"cssClasses":183,"htmlComments":190,"htmlAttributes":191,"restEndpoints":197,"jsGlobals":198,"shortcodeOutput":199},[184,185,186,187,188,189],"seomix","wp-person","gravatar","web","title","wp-people-group",[],[192,193,194,195,196],"id=\"wp-person-","class=\"gravatar\"","class=\"web\"","class=\"title\"","class=\"wp-people-group\"",[],[],[],{"error":201,"url":202,"statusCode":203,"statusMessage":204,"message":204},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fcontributors\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":13,"versions":206},[]]