[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f9YkANHUkn6-iiolmkvRKtgss3z_x1xLqwQ9YGp0ldEY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":37,"analysis":150,"fingerprints":279},"dx-login-register","DX Login Register","1.0.1","daxiawp","https:\u002F\u002Fprofiles.wordpress.org\u002Fdaxiawp\u002F","\u003Cp>Sign custom page content, custom password, authentication code detection, login redirection function, etc.\u003C\u002Fp>\n\u003Cp>自定义登录注册页面内容，自定义密码，验证码检测，登录重定向等功能。\u003C\u002Fp>\n\u003Cp>详情请浏览：\u003Ca href=\"http:\u002F\u002Fwww.daxiawp.com\u002Fdx-login-register.html\" rel=\"nofollow ugc\">http:\u002F\u002Fwww.daxiawp.com\u002Fdx-login-register.html\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Arbitrary section 1\u003C\u002Fh3>\n","Custom login and registration. 自定义登录注册。",300,17284,74,3,"2013-12-20T15:51:00.000Z","3.8.41","3.1","",[20,21,22,23,24],"captcha","login","register","sign","sign-up","http:\u002F\u002Fwww.daxiawp.com\u002Fdx-login-register.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdx-login-register.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":33,"avg_security_score":27,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},320,30,84,"2026-04-04T14:43:18.546Z",[38,58,86,108,131],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":28,"num_ratings":28,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":18,"tags":51,"homepage":56,"download_link":57,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"jeba-ajax-login-and-register","Jeba ajax login\u002Fregister","1.1.0","Md Jahed","https:\u002F\u002Fprofiles.wordpress.org\u002Fjahed\u002F","\u003Cp>This is Jeba ajax login\u002Fregister wordpress plugin. By using a simple [jeba_login] shortcode easily can use ajax login\u002Fregister in your site.\u003C\u002Fp>\n\u003Cp>Visit: http:\u002F\u002Fprowpexpert.com\u003C\u002Fp>\n","This is Jeba ajax login\u002Fregister wordpress plugin. By using a simple shortcode easily can use ajax login\u002Fregister in your site.",10,2858,"2015-05-11T01:35:00.000Z","4.2.0","3.0.1",[52,53,54,55],"ajax-login","ajax-sign-up","ajax-signing","loginregister","http:\u002F\u002Fprowpexpert.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjeba-ajax-login-and-register.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":46,"downloaded":66,"rating":28,"num_ratings":28,"last_updated":67,"tested_up_to":18,"requires_at_least":68,"requires_php":18,"tags":69,"homepage":83,"download_link":84,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":85},"protect-ai-login","Protect Ai Login","1.0.0","anouny","https:\u002F\u002Fprofiles.wordpress.org\u002Fanouny\u002F","\u003Cp>Protect Ai Login changes default WordPress login URL to the url you define, denied brute force attacks, spam logins, and bot or automatic register. The plugin blocks access to default login url, generates a custom branded login panel, without creating a custom page on your website.\u003C\u002Fp>\n\u003Cp>The plugin offers protection with Google reCAPTCHA v2.\u003C\u002Fp>\n\u003Ch3>Plugin Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Define new login url easily from settings page.\u003C\u002Fli>\n\u003Cli>Protect against spam login, bot registration or signup, with the integration of Google reCaptcha.\u003C\u002Fli>\n\u003Cli>Secure AXS is compatible with any permalink setup including the default.\u003C\u002Fli>\n\u003Cli>Choose to allow users with the role “Editor” to access plugin settings.\u003C\u002Fli>\n\u003Cli>Fully branded login page with colors and login logo of your choice.\u003C\u002Fli>\n\u003Cli>Plugin doesn’t create new pages on your website for displaying the new login panel.\u003C\u002Fli>\n\u003Cli>Plugin is compatible with other major security & cache plugins.\u003C\u002Fli>\n\u003Cli>Test with wordpress 4.4.2\u003C\u002Fli>\n\u003C\u002Ful>\n","Change default login site to a custom URL, block spam, bot registration, and brute-force using Google reCAPTCHA.",1394,"2016-04-14T06:46:00.000Z","4.0",[70,71,72,73,74,75,20,76,21,77,78,79,22,80,81,23,82],"access","attack","axs","block","brute","brute-force-attack","force","no-captcha","nocaptcha","recaptcha","secure","security","spam","https:\u002F\u002Fwordpress.org\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprotect-ai-login.zip","2026-03-15T14:54:45.397Z",{"slug":87,"name":88,"version":61,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":46,"downloaded":93,"rating":28,"num_ratings":28,"last_updated":18,"tested_up_to":94,"requires_at_least":95,"requires_php":18,"tags":96,"homepage":104,"download_link":105,"security_score":106,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":107},"restrict-role-login","Restrict Role Login","konnektiv","https:\u002F\u002Fprofiles.wordpress.org\u002Fkonnektiv\u002F","\u003Cp>This Plugin allows administrators to restrict user login based on user roles. This is useful e.g. when you want anyone to register on your site but you do only want certain people (e.g. editors) to enter the logged in area.\u003C\u002Fp>\n\u003Cp>Roles that are allowed to log in are set in a new menu entry in the Users menu.\u003C\u002Fp>\n\u003Cp>This plugin was originally developed for the \u003Ca href=\"https:\u002F\u002Fquality4digitallearning.org\u002F\" rel=\"nofollow ugc\">globe – Community of Digital Learning\u003C\u002Fa> on behalf of \u003Ca href=\"https:\u002F\u002Fwww.giz.de\u002F\" rel=\"nofollow ugc\">GIZ\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Contact\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fkonnektiv.de\u002F\" rel=\"nofollow ugc\">Konnektiv\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fkonnektiv\u002Frestrict-role-login\" rel=\"nofollow ugc\">Restrict Role Login on GitHub\u003C\u002Fa> – Report issues, contribute code\u003C\u002Fli>\n\u003C\u002Ful>\n","Allows administrators to restrict user login based on user roles.",1523,"4.5.33","3.6.0",[97,98,21,22,99,100,101,24,102,103],"area","authentication","restrict","role","sign-in","user","users","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frestrict-role-login\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frestrict-role-login.1.0.0.zip",100,"2026-03-15T10:48:56.248Z",{"slug":109,"name":110,"version":111,"author":112,"author_profile":113,"description":114,"short_description":115,"active_installs":116,"downloaded":117,"rating":118,"num_ratings":119,"last_updated":120,"tested_up_to":121,"requires_at_least":50,"requires_php":18,"tags":122,"homepage":126,"download_link":127,"security_score":128,"vuln_count":129,"unpatched_count":28,"last_vuln_date":130,"fetched_at":30},"easy-login-woocommerce","Login & Register Customizer – Popup | Slider | Inline | WooCommerce","3.1.2","xootix","https:\u002F\u002Fprofiles.wordpress.org\u002Fxootix\u002F","\u003Cp>\u003Cstrong>🚀 \u003Ca href=\"http:\u002F\u002Fdemo.xootix.com\u002Feasy-login-for-woocommerce\u002F\" rel=\"nofollow ugc\">Live Demo »\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Login & Register Customizer is a lightweight and powerful plugin that replaces the default WordPress login and registration experience with modern, fully customizable popup, slider, or inline forms.\u003C\u002Fp>\n\u003Cp>Whether you’re running a simple blog or a WooCommerce store, this plugin helps you create a seamless login\u002Fsignup experience — with no page reloads, field manager support, and shortcodes.\u003C\u002Fp>\n\u003Ch3>💡 Features:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Fully AJAX-based (no page reloads)\u003C\u002Fli>\n\u003Cli>Login, Register, Lost Password & Reset Password forms\u003C\u002Fli>\n\u003Cli>Three layouts: Popup, Slider and Inline (with shortcodes)\u003C\u002Fli>\n\u003Cli>Field Manager – add or remove form fields\u003C\u002Fli>\n\u003Cli>Fully customizable appearance\u003C\u002Fli>\n\u003Cli>WooCommerce compatible\u003C\u002Fli>\n\u003Cli>WPML compatible\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Replace your outdated forms and deliver a modern, smooth login experience your users will love.\u003C\u002Fp>\n\u003Ch3>Add-ons:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fxootix.com\u002Fplugins\u002Feasy-login-for-woocommerce#sp-addons\" rel=\"nofollow ugc\">Custom Registration Fields\u003C\u002Fa> – Add extra fields to registration form , display them on user profile & myaccount page.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fxootix.com\u002Fplugins\u002Feasy-login-for-woocommerce#sp-addons\" rel=\"nofollow ugc\">Social Login\u003C\u002Fa> – A single click login & registration with Google, Facebook, Apple & X(Twitter).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fxootix.com\u002Fplugins\u002Feasy-login-for-woocommerce#sp-addons\" rel=\"nofollow ugc\">Two Factor Authentication (2FA) & One time Password (SMS) Login\u003C\u002Fa> – Allow users to login with OTP ( sent on their phone or email) removing the need to remember a password.\u003Cbr \u002F>\nEnable users to enhance their account security with two-factor authentication (2FA).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fxootix.com\u002Fplugins\u002Feasy-login-for-woocommerce#sp-addons\" rel=\"nofollow ugc\">Recaptcha\u003C\u002Fa> – Protect your form from bots using recaptcha. Choose from google recaptcha(v2\u002Fv3), Cloudflare Turnstile or Friendly GDPR. + Password strength meter + Limit login attempts\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fxootix.com\u002Fplugins\u002Feasy-login-for-woocommerce#sp-addons\" rel=\"nofollow ugc\">Email Verification\u003C\u002Fa> – Sends verification email on registration & restricts login access until email is verified.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fxootix.com\u002Fplugins\u002Feasy-login-for-woocommerce#sp-addons\" rel=\"nofollow ugc\">Profile Builder\u003C\u002Fa> – Replace the old WooCommerce\u002FWordPress interface for updating fields with a new, modern design similar to the signup form. Use a shortcode to display and allow users to update their profile fields.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fxootix.com\u002Fplugins\u002Feasy-login-for-woocommerce#sp-addons\" rel=\"nofollow ugc\">Auto Complete Address\u003C\u002Fa> – Get the full and accurate address using Google Places Autocomplete.\u003Cbr \u002F>\nCollect billing and shipping addresses seamlessly in your registration form.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Replace your old login\u002Fregistration form with an interactive popup & inline form design",40000,1110336,96,251,"2026-03-03T08:51:00.000Z","6.9.4",[21,123,22,124,125],"popup","signup","woocommerce","http:\u002F\u002Fxootix.com\u002Feasy-login-for-woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-login-woocommerce.3.1.2.zip",94,6,"2025-06-19 00:00:00",{"slug":132,"name":133,"version":134,"author":135,"author_profile":136,"description":137,"short_description":138,"active_installs":139,"downloaded":140,"rating":141,"num_ratings":142,"last_updated":143,"tested_up_to":121,"requires_at_least":144,"requires_php":18,"tags":145,"homepage":148,"download_link":149,"security_score":106,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"userswp-recaptcha","UsersWP – ReCaptcha","1.3.22","Stiofan","https:\u002F\u002Fprofiles.wordpress.org\u002Fstiofansisland\u002F","\u003Cp>ReCaptcha addon for \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fuserswp\u002F\" rel=\"ugc\">UsersWP\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>The UsersWP ReCaptcha plugin allows you to implement a super security captcha into forms like\u003Cbr \u002F>\nregistration, login forms. UsersWP Re-Captcha protects your site against spam, malicious registrations\u003Cbr \u002F>\nand other forms of attacks where computers try to disguise themselves as a human.\u003C\u002Fp>\n\u003Cp>UsersWP Re-Captcha provides some of the smartest anti-spam security by protecting your site against spam and\u003Cbr \u002F>\nmalicious registrations available today for WordPress.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002F\" rel=\"nofollow ugc\">Learn how reCAPTCHA works\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>You need the Google reCAPTCHA keys from \u003Ca href=\"https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002Fadmin#whyrecaptcha\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","ReCaptcha addon for UsersWP.",4000,123373,90,2,"2025-12-03T07:08:00.000Z","6.1",[146,147,21,79,22],"account","frontend","https:\u002F\u002Fuserswp.io\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuserswp-recaptcha.1.3.22.zip",{"attackSurface":151,"codeSignals":228,"taintFlows":267,"riskAssessment":268,"analyzedAt":278},{"hooks":152,"ajaxHandlers":224,"restRoutes":225,"shortcodes":226,"cronEvents":227,"entryPointCount":28,"unprotectedCount":28},[153,158,162,165,169,174,179,182,185,188,193,197,200,204,208,211,214,217,219,222],{"type":154,"name":155,"callback":156,"file":157,"line":13},"action","admin_menu","add_admin_menu","class-settings.php",{"type":154,"name":159,"callback":160,"file":157,"line":161},"admin_init","register_settings",75,{"type":154,"name":163,"callback":163,"file":157,"line":164},"admin_enqueue_scripts",76,{"type":154,"name":166,"callback":167,"file":157,"line":168},"admin_head","admin_print_scripts",77,{"type":154,"name":170,"callback":171,"file":172,"line":173},"plugins_loaded","dx_login_register_internationalization","dx-login-register.php",24,{"type":154,"name":175,"callback":176,"file":177,"line":178},"login_enqueue_scripts","pass_strength_enqueue_script","extends\\class-custom-form.php",9,{"type":154,"name":180,"callback":181,"file":177,"line":46},"login_head","head_scripts",{"type":154,"name":183,"callback":183,"file":177,"line":184},"login_headerurl",11,{"type":154,"name":186,"callback":186,"file":177,"line":187},"login_headertitle",12,{"type":189,"name":190,"callback":191,"file":177,"line":192},"filter","login_message","loginhead_message",13,{"type":154,"name":194,"callback":195,"priority":46,"file":177,"line":196},"register_form","register_password",14,{"type":154,"name":194,"callback":198,"priority":184,"file":177,"line":199},"register_captcha",15,{"type":154,"name":201,"callback":202,"file":177,"line":203},"login_form","login_captcha",16,{"type":154,"name":205,"callback":206,"priority":46,"file":207,"line":178},"registration_errors","rigister_verify","extends\\class-verify.php",{"type":189,"name":209,"callback":210,"file":207,"line":46},"random_password","forbidden_random_password",{"type":189,"name":212,"callback":213,"file":207,"line":184},"wp_redirect","register_redirect",{"type":189,"name":215,"callback":216,"priority":46,"file":207,"line":187},"wp_authenticate_user","login_verify",{"type":189,"name":218,"callback":218,"file":207,"line":192},"login_redirect",{"type":154,"name":220,"callback":221,"file":207,"line":196},"wp_footer","set_current_page_cookie",{"type":154,"name":159,"callback":223,"file":207,"line":199},"remove_default_password_nag",[],[],[],[],{"dangerousFunctions":229,"sqlUsage":230,"outputEscaping":232,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":266},[],{"prepared":28,"raw":28,"locations":231},[],{"escaped":14,"rawEcho":203,"locations":233},[234,237,239,241,243,245,247,249,251,253,255,257,259,261,263,265],{"file":157,"line":235,"context":236},109,"raw output",{"file":157,"line":238,"context":236},175,{"file":157,"line":240,"context":236},190,{"file":157,"line":242,"context":236},194,{"file":157,"line":244,"context":236},197,{"file":157,"line":246,"context":236},205,{"file":157,"line":248,"context":236},210,{"file":157,"line":250,"context":236},214,{"file":157,"line":252,"context":236},224,{"file":157,"line":254,"context":236},229,{"file":157,"line":256,"context":236},304,{"file":157,"line":258,"context":236},307,{"file":177,"line":260,"context":236},59,{"file":177,"line":262,"context":236},131,{"file":177,"line":264,"context":236},145,{"file":177,"line":264,"context":236},[],[],{"summary":269,"deductions":270},"Based on the static analysis and vulnerability history provided, the \"dx-login-register\" plugin v1.0.1 exhibits a generally positive security posture.  The absence of any identified CVEs and the minimal attack surface, with no unprotected AJAX handlers, REST API routes, shortcodes, or cron events, are significant strengths.  Furthermore, the adherence to prepared statements for all SQL queries is a best practice that mitigates common SQL injection risks.\n\nHowever, a notable concern arises from the low percentage of properly escaped output (16%). This indicates a significant risk of Cross-Site Scripting (XSS) vulnerabilities, where unsanitized user-provided data could be rendered directly into the browser, potentially executing malicious scripts. The lack of nonce checks and capability checks, while not directly evidenced as exploitable due to the absence of entry points, represents a potential gap in security if new entry points were to be introduced without proper authentication and authorization.\n\nIn conclusion, while the plugin avoids many common pitfalls like unpatched vulnerabilities and raw SQL, the substantial amount of unescaped output presents a clear and present danger. The vulnerability history is clean, which is encouraging, but the code analysis highlights a critical area for improvement to ensure the plugin's overall security.",[271,273,276],{"reason":272,"points":199},"Low percentage of properly escaped output",{"reason":274,"points":275},"Missing nonce checks",5,{"reason":277,"points":275},"Missing capability checks","2026-03-16T19:56:17.558Z",{"wat":280,"direct":293},{"assetPaths":281,"generatorPatterns":286,"scriptPaths":287,"versionParams":288},[282,283,284,285],"\u002Fwp-content\u002Fplugins\u002Fdx-login-register\u002Fassets\u002Fcss\u002Fdx-login-register-frontend.css","\u002Fwp-content\u002Fplugins\u002Fdx-login-register\u002Fassets\u002Fjs\u002Fdx-login-register-frontend.js","\u002Fwp-content\u002Fplugins\u002Fdx-login-register\u002Fassets\u002Fcss\u002Fdx-login-register-admin.css","\u002Fwp-content\u002Fplugins\u002Fdx-login-register\u002Fassets\u002Fjs\u002Fdx-login-register-admin.js",[],[],[289,290,291,292],"dx-login-register\u002Fassets\u002Fcss\u002Fdx-login-register-frontend.css?ver=","dx-login-register\u002Fassets\u002Fjs\u002Fdx-login-register-frontend.js?ver=","dx-login-register\u002Fassets\u002Fcss\u002Fdx-login-register-admin.css?ver=","dx-login-register\u002Fassets\u002Fjs\u002Fdx-login-register-admin.js?ver=",{"cssClasses":294,"htmlComments":301,"htmlAttributes":306,"restEndpoints":309,"jsGlobals":310,"shortcodeOutput":312},[295,296,297,298,299,300],"dx-login-register-form-wrapper","dx-login-register-form","dx-login-register-header-message","dxl-logo-wrapper","dxl-settings-container","dxl-sidebar-container",[302,303,304,305],"\u003C!-- dx-login-register-frontend.css -->","\u003C!-- dx-login-register-frontend.js -->","\u003C!-- dx-login-register-admin.css -->","\u003C!-- dx-login-register-admin.js -->",[307,308],"data-dxlore-redirect","data-dxlore-captcha",[],[311],"dxLoginRegisterFrontend",[]]