[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fGcURaH1PpZtFVVCElOXbspXxDiAIbqY0vTeiO_Hi7Ns":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":133,"fingerprints":217},"domain-based-role-assignment","Domain Based Role Assignment","1.0.0","We Are Volume","https:\u002F\u002Fprofiles.wordpress.org\u002Fwearevolume\u002F","\u003Cp>Domain Based Role Assignment automatically assigns user roles based on their email domains during registration. It provides a simple admin interface to manage domain-to-role mappings and streamlines user role management.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Automatic Role Assignment: Automatically assigns roles to users based on their email domain during registration\u003C\u002Fli>\n\u003Cli>Domain Management: Easy-to-use admin interface to manage domain-role mappings\u003C\u002Fli>\n\u003Cli>Works with Role Editor: Compatible with all WordPress roles, including custom roles\u003C\u002Fli>\n\u003Cli>Simple Administration: Add, view, and delete domain rules through a clean admin interface\u003C\u002Fli>\n\u003Cli>Bulk User Management: When removing a domain rule, preserves user accounts while managing role assignments\u003C\u002Fli>\n\u003Cli>Security: Implements WordPress security best practices and nonce verification\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Cp>= Adding Domain Rules =\u003Cbr \u002F>\n1. Go to ‘Settings > Domain Role Assignment’ in your WordPress admin panel\u003Cbr \u002F>\n2. In the “Add New Domain Rule” section:\u003Cbr \u002F>\n   * Enter a domain (e.g., “example.com”)\u003Cbr \u002F>\n   * Select the role to assign\u003Cbr \u002F>\n   * Click “Add Domain Rule”\u003C\u002Fp>\n\u003Ch4>Managing Existing Rules\u003C\u002Fh4>\n\u003Col>\n\u003Cli>View all current domain rules in the “Current Domain Rules” table\u003C\u002Fli>\n\u003Cli>Each rule shows:\n\u003Cul>\n\u003Cli>The domain\u003C\u002Fli>\n\u003Cli>The assigned role\u003C\u002Fli>\n\u003Cli>Option to delete the rule\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Technical Details\u003C\u002Fh3>\n\u003Cp>Requires WordPress 5.0 or higher and PHP 7.2 or higher.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support:\u003Cbr \u002F>\n1. Check configuration\u003Cbr \u002F>\n2. Verify WordPress version compatibility\u003Cbr \u002F>\n3. Check error logs\u003Cbr \u002F>\n4. Ensure proper permissions\u003C\u002Fp>\n","Automatically assign WordPress user roles based on email domains during registration with an easy-to-use domain management interface.",10,364,0,"","6.7.5","6.7","8.1",[19,20,21,22,23],"domain-management","email-domains","role-assignment","user-management","user-roles","https:\u002F\u002Fwearevolume.com\u002Fdomain-based-role-assignment","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdomain-based-role-assignment.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"wearevolume",1,30,94,"2026-04-04T05:26:57.922Z",[37,58,75,92,109],{"slug":22,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":13,"num_ratings":13,"last_updated":46,"tested_up_to":15,"requires_at_least":16,"requires_php":47,"tags":48,"homepage":52,"download_link":53,"security_score":54,"vuln_count":55,"unpatched_count":32,"last_vuln_date":56,"fetched_at":57},"User Management","1.2","Saad Iqbal","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaadiqbal\u002F","\u003Cp>User Management for WordPress gives you the power to manage users and their data from a centralized dashboard Import\u002FExport\u002FUpdate user data by roles and filters.\u003C\u002Fp>\n\u003Cp>User Management for WordPress gives admin the ability to import or export user details on a website. You can easily import or export WP users, roles, and capabilities via CSV file in just a few clicks.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note:\u003C\u002Fstrong> This plugin is also compatible with the WooCommerce plugin\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Import user details via CSV file.\u003C\u002Fli>\n\u003Cli>Import WP user roles & capabilities via CSV file.\u003C\u002Fli>\n\u003Cli>Export details of WP users to a CSV file.\u003C\u002Fli>\n\u003Cli>Export specific users by roles and capabilities.\u003C\u002Fli>\n\u003Cli>Export specific users in general.\u003C\u002Fli>\n\u003Cli>Export roles and capabilities only.\u003C\u002Fli>\n\u003Cli>Export profile information with the user metadata (your custom field in CSV).\u003C\u002Fli>\n\u003Cli>Create\u002Fupdate user details easily.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>REQUIREMENTS\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress 5.0+\u003C\u002Fli>\n\u003Cli>PHP 7.0+\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Documentation\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwpexperts.io\u002Fdocumentation\u002Fuser-management\" rel=\"nofollow ugc\">Click Here\u003C\u002Fa> to read complete documentation of the product. The documentation includes a step-by-step installation and configuration guide, system specifications, troubleshooting, and support.\u003C\u002Fp>\n\u003Ch3>Major Update\u003C\u002Fh3>\n\u003Cp>This is major update of our plugin please make sure you have take backup before updating this plugin.\u003C\u002Fp>\n","User Import Export plugin allows you to export and import WordPress Users and Roles.",60,2777,"2024-12-09T07:50:00.000Z","7.0",[49,50,22,51,23],"user","user-approval","user-profiles","https:\u002F\u002Fwpexperts.io","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-management.1.2.zip",66,2,"2025-01-14 00:00:00","2026-03-15T15:16:48.613Z",{"slug":59,"name":60,"version":6,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":11,"downloaded":65,"rating":13,"num_ratings":13,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":69,"tags":70,"homepage":73,"download_link":74,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":57},"role-based-user-deleter","Role Based User Deleter","Sakib Hasan","https:\u002F\u002Fprofiles.wordpress.org\u002Fsakibhasan\u002F","\u003Cp>Role Based User Deleter is a lightweight and efficient WordPress plugin that allows administrators to delete users based on their roles. This plugin provides a simple and secure way to manage user accounts, ensuring that you can easily remove users who no longer need access to your site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Delete users based on selected roles (excluding administrators for safety).\u003Cbr \u002F>\n– User-friendly admin interface with a professional design.\u003Cbr \u002F>\n– Displays the total number of users for each role in the dropdown.\u003Cbr \u002F>\n– Secure deletion process with nonce verification.\u003Cbr \u002F>\n– Success message after user deletion with the count of deleted users.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, visit the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Frole-based-user-deleter\" rel=\"ugc\">plugin support forum\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by Sakib Hasan (https:\u002F\u002Fprofiles.wordpress.org\u002Fsakibhasan\u002F).\u003C\u002Fp>\n","Easily delete users based on their roles with Role Based User Deleter. Manage your WordPress users efficiently and securely.",344,"2025-04-26T18:18:00.000Z","6.8.5","5.6","7.4",[71,72,22,23],"admin-tools","delete-users","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frole-based-user-deleter","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frole-based-user-deleter.1.0.0.zip",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":11,"downloaded":83,"rating":13,"num_ratings":13,"last_updated":84,"tested_up_to":85,"requires_at_least":68,"requires_php":69,"tags":86,"homepage":90,"download_link":91,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":57},"user-profile-dashboard-fields-control","User Profile Fields Control","1.1.0","Priyank Sukhadiya","https:\u002F\u002Fprofiles.wordpress.org\u002Fpriyanksukhadiya\u002F","\u003Cp>The User Profile Fields Control plugin is designed for administrators who want more control over the WordPress user experience. This plugin enables you to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Hide or Show Profile Fields\u003C\u002Fstrong> – Customize user profile fields based on user roles.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Tailor the Dashboard\u003C\u002Fstrong> – Control which fields appear on the WordPress dashboard for each user role.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enhanced User Management\u003C\u002Fstrong> – Improve the user experience by displaying only relevant information for each user role.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Compatible with Most Themes\u003C\u002Fstrong> – Works seamlessly with most WordPress themes, enhancing compatibility and ease of use.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>With the User Profile Fields Control plugin, you can streamline WordPress user management and customize the experience for each role.\u003C\u002Fp>\n","The User Profile Fields Control plugin allows you to manage WordPress user profile fields with role-based customization.",695,"2025-12-04T15:57:00.000Z","6.9.4",[87,88,89,22,23],"admin-customization","dashboard-control","profile-fields","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fuser-profile-dashboard-fields-control","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-profile-dashboard-fields-control.1.1.0.zip",{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":13,"downloaded":100,"rating":13,"num_ratings":13,"last_updated":101,"tested_up_to":85,"requires_at_least":102,"requires_php":69,"tags":103,"homepage":107,"download_link":108,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":57},"essential-user-rights","Essential User Rights","1.0.2","Stephan Wagner","https:\u002F\u002Fprofiles.wordpress.org\u002Fstephanwagnerme\u002F","\u003Cp>Essential User Rights is a lightweight plugin that helps you manage user permissions effortlessly:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Restrict editors to specific pages\u003C\u002Fli>\n\u003Cli>Limit media library access to a user’s own uploads\u003C\u002Fli>\n\u003Cli>No complex setup – just install and configure\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Perfect for WordPress sites where content management needs to be controlled without unnecessary complexity.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by \u003Ca href=\"https:\u002F\u002Fstephanwagner.me\" rel=\"nofollow ugc\">Stephan Wagner\u003C\u002Fa>.\u003C\u002Fp>\n","Easily manage user permissions in WordPress. Restrict editors to specific pages and media. Simple setup - install, configure, and go!",444,"2026-01-05T10:39:00.000Z","5.0",[104,105,22,106,23],"page-access","permissions","user-rights","https:\u002F\u002Fstephanwagner.me\u002Fwordpress-plugins\u002Fessential-user-rights","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fessential-user-rights.1.0.2.zip",{"slug":110,"name":111,"version":112,"author":113,"author_profile":114,"description":115,"short_description":116,"active_installs":117,"downloaded":118,"rating":119,"num_ratings":120,"last_updated":121,"tested_up_to":85,"requires_at_least":122,"requires_php":123,"tags":124,"homepage":14,"download_link":129,"security_score":130,"vuln_count":131,"unpatched_count":13,"last_vuln_date":132,"fetched_at":57},"advanced-access-manager","Advanced Access Manager – Access Governance for WordPress","7.1.0","AAM Plugin","https:\u002F\u002Fprofiles.wordpress.org\u002Fvasyltech\u002F","\u003Cp>\u003Cstrong>Advanced Access Manager (AAM)\u003C\u002Fstrong> introduces \u003Cstrong>Access Governance for WordPress\u003C\u002Fstrong> – a systematic approach to securing your site by controlling who can access what, when, and why.\u003C\u002Fp>\n\u003Cp>Most WordPress security plugins focus on external threats like malware, firewalls, and brute-force attacks. AAM addresses the \u003Cstrong>root cause of the #1 WordPress security risk: broken access controls, excessive privileges, and misconfigured roles\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Instead of reacting to attacks, AAM helps you \u003Cstrong>design security into your WordPress site\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Ch4>What Access Governance means in practice\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Mitigate Broken Access Controls\u003C\u002Fstrong>. Ensure roles, users, and permissions are correctly configured to prevent unauthorized actions and privilege escalation.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Eliminate Excessive Privileges\u003C\u002Fstrong>. Identify overpowered users and reduce access to critical functionality, admin areas, and APIs.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Secure Content by Design\u003C\u002Fstrong>. Control who can view, edit, publish, or delete posts, pages, media, taxonomies, and custom content types.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Govern Access with Policy\u003C\u002Fstrong>. Define access rules using JSON Access Policies — portable, auditable, and automation-friendly.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Build Custom Security Logic\u003C\u002Fstrong>. Use the AAM PHP Framework to create advanced, programmatic access controls tailored to your application.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Security Audit\u003C\u002Fstrong>. Detect risky role assignments, misconfigurations, and compromised accounts.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Granular Access Control\u003C\u002Fstrong>. Manage permissions for any user, role, or visitor with precision.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Role & Capability Management\u003C\u002Fstrong>. Customize WordPress roles and capabilities beyond defaults.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin & Menu Control\u003C\u002Fstrong>. Restrict dashboard areas and tailor the admin experience per user or role.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>API & Endpoint Protection\u003C\u002Fstrong>. Secure REST and XML-RPC access with fine-grained controls.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Modern Authentication Options\u003C\u002Fstrong>. Support passwordless and secure login flows.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Developer-Ready Framework\u003C\u002Fstrong>. Extend WordPress security using AAM’s powerful SDK.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Ad-Free & Transparent\u003C\u002Fstrong>. – No ads, no tracking, no bloat.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Built for Security-Conscious WordPress Users\u003C\u002Fh4>\n\u003Cp>AAM is trusted by \u003Cstrong>150,000+ websites\u003C\u002Fstrong> to deliver enterprise-grade access control without unnecessary complexity. Whether you’re a site owner, agency, developer, or security professional, AAM gives you \u003Cstrong>full control over WordPress access — by design\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Most core features are free. Advanced capabilities are available via premium add-ons.\u003C\u002Fp>\n\u003Cp>No hidden tracking. No data collection. No unwanted changes.\u003Cbr \u002F>\nJust \u003Cstrong>security you can reason about, audit, and trust\u003C\u002Fstrong>.\u003C\u002Fp>\n","Access Governance for WordPress. Control roles, users, content, admin areas, and APIs to prevent broken access controls and excessive privileges.",100000,7384389,84,420,"2026-03-08T15:53:00.000Z","5.8.0","5.6.0",[125,126,127,128,23],"access-governance","api-security","restricted-content","security","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-access-manager.7.1.0.zip",95,11,"2024-03-20 00:00:00",{"attackSurface":134,"codeSignals":162,"taintFlows":178,"riskAssessment":206,"analyzedAt":216},{"hooks":135,"ajaxHandlers":158,"restRoutes":159,"shortcodes":160,"cronEvents":161,"entryPointCount":13,"unprotectedCount":13},[136,142,146,150,154],{"type":137,"name":138,"callback":139,"file":140,"line":141},"action","admin_menu","add_admin_menu","domain-based-role-assignment.php",26,{"type":137,"name":143,"callback":144,"file":140,"line":145},"admin_init","register_settings",27,{"type":137,"name":147,"callback":148,"file":140,"line":149},"user_register","assign_role_on_registration",28,{"type":137,"name":151,"callback":152,"file":140,"line":153},"admin_enqueue_scripts","enqueue_admin_styles",29,{"type":137,"name":155,"callback":156,"file":140,"line":157},"plugins_loaded","closure",331,[],[],[],[],{"dangerousFunctions":163,"sqlUsage":164,"outputEscaping":166,"fileOperations":13,"externalRequests":13,"nonceChecks":55,"capabilityChecks":32,"bundledLibraries":177},[],{"prepared":13,"raw":13,"locations":165},[],{"escaped":167,"rawEcho":168,"locations":169},17,3,[170,173,175],{"file":140,"line":171,"context":172},146,"raw output",{"file":140,"line":174,"context":172},152,{"file":140,"line":176,"context":172},189,[],[179,198],{"entryPoint":180,"graph":181,"unsanitizedCount":13,"severity":197},"render_settings_page (domain-based-role-assignment.php:110)",{"nodes":182,"edges":194},[183,188],{"id":184,"type":185,"label":186,"file":140,"line":187},"n0","source","$_POST (x3)",167,{"id":189,"type":190,"label":191,"file":140,"line":192,"wp_function":193},"n1","sink","echo() [XSS]",229,"echo",[195],{"from":184,"to":189,"sanitized":196},true,"low",{"entryPoint":199,"graph":200,"unsanitizedCount":13,"severity":197},"\u003Cdomain-based-role-assignment> (domain-based-role-assignment.php:0)",{"nodes":201,"edges":204},[202,203],{"id":184,"type":185,"label":186,"file":140,"line":187},{"id":189,"type":190,"label":191,"file":140,"line":192,"wp_function":193},[205],{"from":184,"to":189,"sanitized":196},{"summary":207,"deductions":208},"The 'domain-based-role-assignment' plugin v1.0.0 exhibits a generally strong security posture based on the static analysis and vulnerability history. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the plugin's attack surface. Furthermore, the code analysis shows no dangerous functions, no file operations, and no external HTTP requests, which are all positive indicators. The use of prepared statements for all SQL queries and a high percentage of properly escaped output are excellent security practices.\n\nHowever, a few areas warrant attention. While the plugin has only two taint flows and zero unsanitized paths, the fact that only two flows were analyzed suggests a potentially limited scope of the analysis, or a very small codebase. The presence of only one capability check and two nonce checks, while not explicitly indicating a vulnerability without further context, suggests that access control and nonces might not be as pervasive as in more complex plugins, potentially leaving some areas less protected if the attack surface were to expand. The plugin's vulnerability history is a significant strength, with no recorded CVEs, which indicates a well-maintained and secure development history. Overall, the plugin appears robust, but a deeper dive into the limited taint analysis scope and the distribution of security checks would be beneficial for a complete assessment.",[209,212,214],{"reason":210,"points":211},"Limited scope of taint analysis",5,{"reason":213,"points":168},"Low count of capability checks",{"reason":215,"points":168},"Low count of nonce checks","2026-03-16T23:11:26.849Z",{"wat":218,"direct":225},{"assetPaths":219,"generatorPatterns":221,"scriptPaths":222,"versionParams":223},[220],"\u002Fwp-content\u002Fplugins\u002Fdomain-based-role-assignment\u002Fassets\u002Fcss\u002Fadmin-styles.css",[],[],[224],"domain-based-role-assignment\u002Fassets\u002Fcss\u002Fadmin-styles.css?ver=",{"cssClasses":226,"htmlComments":230,"htmlAttributes":231,"restEndpoints":237,"jsGlobals":238,"shortcodeOutput":239},[227,228,229],"domain-rules-table","current-rules","add-new-rule",[],[232,233,234,235,236,235],"name=\"submit_domain_rule\"","name=\"new_domain\"","name=\"new_role\"","name=\"delete_domain\"","name=\"delete_rule\"",[],[],[]]