[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fQoPdlnHhgUgvqAfh7D0CCiRY69D_saUk4AEIY-tHjnI":3,"$fKnwEe8b8pSb4ZCHrS9KfXsx6oPRzGUFp8qhJmIklKRU":166},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":34,"analysis":118,"fingerprints":151},"disable-reset-password","Disable Reset Password","1.0","Renoug Joni","https:\u002F\u002Fprofiles.wordpress.org\u002Fjonirenoug\u002F","\u003Cp>Disabling reset password  function over email of WordPress and Fix bug Unauthorized Reset Password (0day).\u003Cbr \u002F>\nUse caution and if necessary, after the core fix bug fixes you should delete it.\u003C\u002Fp>\n\u003Ch4>Build Status\u003C\u002Fh4>\n\u003Ch4>Development\u003C\u002Fh4>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Ch4>Donations\u003C\u002Fh4>\n","Disabling reset password function over email of Wordpress and Fix bug Unauthorized Reset Password (0day).",10,1224,20,1,"2017-05-06T03:12:00.000Z","4.7.33","3.1","",[20,21,22],"disable","password","reset","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-reset-password.zip",85,0,null,"2026-04-06T09:54:40.288Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"jonirenoug",30,84,"2026-04-06T10:58:57.711Z",[35,50,68,83,102],{"slug":36,"name":37,"version":6,"author":38,"author_profile":39,"description":40,"short_description":41,"active_installs":42,"downloaded":43,"rating":44,"num_ratings":45,"last_updated":46,"tested_up_to":47,"requires_at_least":17,"requires_php":18,"tags":48,"homepage":18,"download_link":49,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"disable-password-reset","Disable Password Reset","Dugonja","https:\u002F\u002Fprofiles.wordpress.org\u002Fh3llas\u002F","\u003Cp>This plugin will enhance security of your WordPress site by disabling password reset function over email of WordPress.\u003Cbr \u002F>\nUse with caution since otherwise if you forgot your user password you will need to reset the password directly in the database with phpmyadmin or similar tool.\u003Cbr \u002F>\nAdittionally this plugin will hide notice which say what is wrong “password” or “username” on WordPress login page.\u003C\u002Fp>\n","Enhance security of your blogs by preventing password reset over email function.",1000,10704,80,4,"2016-11-10T18:05:00.000Z","4.6.30",[20,21,22],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-password-reset.zip",{"slug":51,"name":52,"version":6,"author":53,"author_profile":54,"description":55,"short_description":56,"active_installs":57,"downloaded":58,"rating":25,"num_ratings":25,"last_updated":59,"tested_up_to":60,"requires_at_least":61,"requires_php":62,"tags":63,"homepage":18,"download_link":66,"security_score":67,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"simply-disable-password-reset","Simply Disable Password Reset","Boopathi Rajan","https:\u002F\u002Fprofiles.wordpress.org\u002Fboopathi0001\u002F","\u003Cp>Its a very simple plugin to disable the password reset in the wordpress.\u003C\u002Fp>\n\u003Cp>If a user attempts to reset their password they will receive the error message\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Password reset is not allowed for this user\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Kindly let us know your feedback or comments to add more features in this plugin.\u003C\u002Fp>\n","Its a very simple plugin to disable the password reset in the wordpress.",700,3310,"2024-07-31T07:16:00.000Z","6.6.5","4.3","5.2.4",[36,64,65],"disable-rest","wordpress-password-reset","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimply-disable-password-reset.1.0.zip",92,{"slug":69,"name":70,"version":6,"author":71,"author_profile":72,"description":73,"short_description":74,"active_installs":13,"downloaded":75,"rating":76,"num_ratings":14,"last_updated":77,"tested_up_to":78,"requires_at_least":79,"requires_php":18,"tags":80,"homepage":18,"download_link":81,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":82},"disable-password-reset-extended","Disable Password Reset Extended","Pascal Meunier","https:\u002F\u002Fprofiles.wordpress.org\u002Fmilhouse1337\u002F","\u003Cp>This plugin is meant to be an update on the available “Disable Password Reset” plugin available \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fdisable-password-reset\u002F\" rel=\"ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This version can remove more deeply the password reset mechanism. Used for high-security purposes ONLY. The password can only be changed in the database directly if activated.\u003C\u002Fp>\n\u003Cp>Features :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Remove Input Field in Admin Area\u003C\u002Fli>\n\u003Cli>Remove Reset Link in Login Dialog\u003C\u002Fli>\n\u003Cli>Remove Reset Link in Login Error (notice)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>There is no option for this plugin right now but I’m planning to add some in the future. Also, no multilingual support for now, but planned.\u003C\u002Fp>\n\u003Cp>All comments are welcome.\u003C\u002Fp>\n","This plugin is used to completely disable the built-in password reset feature in WordPress. Used for high-security purpose ONLY.",6254,100,"2011-08-29T03:29:00.000Z","3.2.1","2.7",[20,21,22],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-password-reset-extended.zip","2026-03-15T15:16:48.613Z",{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":13,"downloaded":91,"rating":76,"num_ratings":14,"last_updated":92,"tested_up_to":60,"requires_at_least":93,"requires_php":94,"tags":95,"homepage":100,"download_link":101,"security_score":67,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":82},"reset-password-removed","Reset Password Removed","1.2","Md Taufiqur Rahman","https:\u002F\u002Fprofiles.wordpress.org\u002Fsmartshovon\u002F","\u003Cp>Easily enhance the security of your WordPress site by removing the ability for non-admin users to change or reset their passwords. The “Reset Password Removed” plugin ensures that only administrators have the power to modify password settings, reducing the risk of unauthorized access.\u003C\u002Fp>\n\u003Ch3>Key Features:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Restrict Password Resets:\u003C\u002Fstrong> Prevents non-admin users from resetting their passwords, adding an extra layer of security to your site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Control:\u003C\u002Fstrong> Keeps password management accessible only to site administrators, ensuring critical access remains in trusted hands.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Streamlined User Experience:\u003C\u002Fstrong> Automatically removes the “Lost your password?” link from the login page for non-admin users.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightweight & Efficient:\u003C\u002Fstrong> The plugin is built to be lightweight, ensuring it doesn’t slow down your website.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Why Choose Reset Password Removed?\u003C\u002Fh3>\n\u003Cp>If you’re looking to enhance your WordPress security without complicating user management, this plugin is the perfect solution. Ideal for websites where password security is paramount, it simplifies control and prevents potential vulnerabilities from password resets.\u003C\u002Fp>\n\u003Cp>Compatible with: WordPress 6.x and PHP 7.4+\u003C\u002Fp>\n","Enhance the security of your blogs by preventing password reset over email function.",2924,"2024-11-03T13:58:00.000Z","5.0","7.4",[96,36,97,98,99],"admin-only-password-control","secure-login-management","wordpress-password-security","wordpress-user-security-plugin","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Freset-password-removed","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freset-password-removed.1.2.zip",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":25,"downloaded":110,"rating":25,"num_ratings":25,"last_updated":111,"tested_up_to":112,"requires_at_least":113,"requires_php":18,"tags":114,"homepage":18,"download_link":117,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"disable-lost-your-password","Disable Lost Your Password","1.0.0","Great Guide Info","https:\u002F\u002Fprofiles.wordpress.org\u002Fgreatguideinfo\u002F","\u003Cp>If you are worried about the security of the wordpress website, then Disable Lost Your Password Plugin can help you with it a little bit.\u003Cbr \u002F>\nWith this plugin you can disable the lost your password option that appears on the WordPress login screen, so that no one can recover the password from the login screen.\u003Cbr \u002F>\nIf you forget your password then you have nothing to worry about. You can change wordpress password from phpMyAdmin, here it has been given full information. [change password Using phpMyAdmin] (https:\u002F\u002Fgoo.gl\u002FFGwvcQ “change password Using phpMyAdmin”).\u003Cbr \u002F>\nAll you have to do is install it on your dashboard and activate it.\u003C\u002Fp>\n\u003Ch3>Help\u003C\u002Fh3>\n\u003Cp>Do you need any help or you are having trouble using the Disable Lost Your Password plugin, or you want to ask something about it, you can contact us by visiting our website. Use this link for this. [Contact developer] (https:\u002F\u002Fgoo.gl\u002F7qa7JH “Contact developer”) or you can send us a mail at admin@greatguideinfo.com.\u003Cbr \u002F>\nWe will complete the answers to your questions.\u003C\u002Fp>\n","License URI: http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-2.0.html Disable Wordpress Login Screen \"Lost Yoyr Password?\" Option Usign Disable Lost Your P &hellip;",1301,"2018-11-25T10:46:00.000Z","4.9.29","4.4",[20,103,115,116],"password-reset","wordpress-security","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-lost-your-password.zip",{"attackSurface":119,"codeSignals":135,"taintFlows":142,"riskAssessment":143,"analyzedAt":150},{"hooks":120,"ajaxHandlers":131,"restRoutes":132,"shortcodes":133,"cronEvents":134,"entryPointCount":25,"unprotectedCount":25},[121,127],{"type":122,"name":123,"callback":124,"file":125,"line":126},"filter","allow_password_reset","disable_pw_reset","index.php",23,{"type":122,"name":128,"callback":129,"file":125,"line":130},"login_errors","check_error_login",24,[],[],[],[],{"dangerousFunctions":136,"sqlUsage":137,"outputEscaping":139,"fileOperations":25,"externalRequests":25,"nonceChecks":25,"capabilityChecks":25,"bundledLibraries":141},[],{"prepared":25,"raw":25,"locations":138},[],{"escaped":25,"rawEcho":25,"locations":140},[],[],[],{"summary":144,"deductions":145},"Based on the provided static analysis, the \"disable-reset-password\" v1.0 plugin exhibits a strong security posture.  The absence of any identified dangerous functions, SQL queries executed without prepared statements, and all output being properly escaped are significant positive indicators.  Furthermore, the plugin demonstrates a commitment to security by having no recorded vulnerabilities in its history, which suggests a development process that prioritizes secure coding practices and thorough testing.  The lack of external HTTP requests and file operations also limits potential attack vectors.\n\nHowever, a notable concern arises from the complete absence of nonce checks and capability checks. While the static analysis reports zero entry points requiring authentication, this does not guarantee the plugin will remain safe if future updates introduce new functionalities or if it interacts with other plugins in unexpected ways.  The current configuration of zero unprotected entry points is positive, but relying solely on this and not implementing fundamental security checks like nonces and capability checks leaves room for potential vulnerabilities if the context of its execution changes or if new attack surfaces are inadvertently exposed.\n\nIn conclusion, the plugin's current version shows excellent adherence to fundamental secure coding principles, particularly in data handling and query execution. The clean vulnerability history further bolsters confidence. The primary weakness lies in the complete omission of nonce and capability checks, which, while not currently exploitable based on the provided data, represents a missed opportunity to bolster its defenses against potential future threats or unforeseen interactions.",[146,148],{"reason":147,"points":11},"Missing nonce checks",{"reason":149,"points":11},"Missing capability checks","2026-03-16T23:26:18.483Z",{"wat":152,"direct":159},{"assetPaths":153,"generatorPatterns":155,"scriptPaths":156,"versionParams":157},[154],"\u002Fwp-content\u002Fplugins\u002Fdisable-reset-password\u002Fjs\u002Fdrp.js",[],[154],[158],"disable-reset-password\u002Fjs\u002Fdrp.js?ver=",{"cssClasses":160,"htmlComments":161,"htmlAttributes":162,"restEndpoints":163,"jsGlobals":164,"shortcodeOutput":165},[],[],[],[],[],[],{"slug":4,"current_version":6,"total_versions":25,"versions":167},[]]