[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fqKjD8BviyUmOT5Rfqo1nt1x2gaTnVT_VYEeX8nkavxM":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":15,"tags":18,"homepage":22,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":141,"fingerprints":243},"front-end-login-form","Front End Login Form","0.2","Jigs","https:\u002F\u002Fprofiles.wordpress.org\u002Fjigspatel\u002F","\u003Cp>Front end login is a plugin to get login form on the wordpress pages so you can easily be able to login to your wordpress admin without visiting wp-login \u002F wp-admin page. This plugin gives a custom CSS3 based login form ready to be integrated to your theme through shortcode.\u003C\u002Fp>\n","A tiny plugin which allows you to add a log-in form to your wordpress blog.",10,12003,68,5,"","3.4.2","3.0.1",[19,20,21],"front-end-login","login-form","wp-login","http:\u002F\u002Ffasamfast.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffront-end-login-form.zip",100,0,null,"2026-03-15T10:48:56.248Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"jigspatel",1,30,94,"2026-04-04T14:00:29.917Z",[36,58,76,96,118],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":15,"tags":51,"homepage":54,"download_link":55,"security_score":56,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":57},"blue-login-style","Blue Login Style","1.4.0","Alimir","https:\u002F\u002Fprofiles.wordpress.org\u002Falimir\u002F","\u003Cp>Blue Login Style is a tiny WordPress plugin that allows you to customize your login page with beautiful themes. Its features: ability to add message, change the login logo, ability to set login, logout and register redirect links and many more…\u003Cbr \u002F>\nScreenshots are available in \u003Ca href=\"http:\u002F\u002Fpreview.alimir.ir\u002Fwordpress-blue-login-style\u002F\" rel=\"nofollow ugc\">Here\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Ability to choose nice themes with great options.\u003C\u002Fli>\n\u003Cli>Ability to add message in your login page.\u003C\u002Fli>\n\u003Cli>Add a custom logo of your wordPress blog as piece of cake.\u003C\u002Fli>\n\u003Cli>Add custom background image.\u003C\u002Fli>\n\u003Cli>Ability to set \u003Ccode>login\u003C\u002Fcode>, \u003Ccode>logout\u003C\u002Fcode> and \u003Ccode>register\u003C\u002Fcode> redirect links.\u003C\u002Fli>\n\u003Cli>Simple configuration panel.\u003C\u002Fli>\n\u003Cli>And so on…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Plugin Author\u003C\u002Fh4>\n\u003Cp>Website: \u003Ca href=\"http:\u002F\u002Fabout.alimir.ir\" rel=\"nofollow ugc\">Ali Mirzaei\u003C\u002Fa>\u003Cbr \u002F>\nFollow on \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Falimir.ir\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>\u003Cbr \u002F>\nYou can catch catch me on twitter as @alimirir\u003C\u002Fp>\n","Blue Login Style is a tiny plugin which allows to customize your wp-login theme easily with a click.",300,29099,98,17,"2014-12-26T19:38:00.000Z","4.1.42","3.5",[52,53,19,20,21],"admin","customize-wp-login-php-plugin","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fblue-login-style\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblue-login-style.1.4.0.zip",85,"2026-03-15T15:16:48.613Z",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":31,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":15,"tags":72,"homepage":74,"download_link":75,"security_score":56,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":57},"fp-front-end-login-form","FP Front End Login Form","1.0","futureprofilez","https:\u002F\u002Fprofiles.wordpress.org\u002Ffutureprofilez\u002F","\u003Cp>FP Front End Login helps you to manage user login from front end. This plugin provides shortcode and widget to integrate Login form on wordpress pages\u002Fposts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Easy Installation\u003Cbr \u002F>\n* WordPrss textdomain support\u003Cbr \u002F>\n* Easy to translate in other language using textdomain\u003Cbr \u002F>\n* WordPress Multisite support\u003Cbr \u002F>\n* Easy To understand\u003Cbr \u002F>\n* Shortcode available\u003Cbr \u002F>\n* widget available\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How it Work?:\u003C\u002Fstrong>\u003Cbr \u002F>\n1- Install and activate\u003Cbr \u002F>\n2- Use [fp_login_form] in pages\u002Fposts or Fp Front End Login Widget in sidebar\u003C\u002Fp>\n","FP Front End Login plugin allows you to add a log-in form to your wordpress site by using shortcode and Widget.",20,1572,60,"2018-02-08T10:33:00.000Z","4.9.29","4.4",[19,20,73,21],"login-form-widget","http:\u002F\u002Ffutureprofilez.com\u002Fwordpress\u002Fplugins\u002Ffront-end-login\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffp-front-end-login-form.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":24,"num_ratings":11,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":15,"tags":89,"homepage":93,"download_link":94,"security_score":24,"vuln_count":31,"unpatched_count":25,"last_vuln_date":95,"fetched_at":57},"passwordless-login","Passwordless Login","1.1.4","madalin.ungureanu","https:\u002F\u002Fprofiles.wordpress.org\u002Fmadalinungureanu\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.cozmoslabs.com\u002Fadd-ons\u002Fpasswordless-login\u002F\" rel=\"nofollow ugc\">Passwordless Login\u003C\u002Fa> is a modern way of loggin into your WordPress site without the use of a password.\u003C\u002Fp>\n\u003Cp>Join the discussion here: \u003Ca href=\"https:\u002F\u002Fwww.cozmoslabs.com\u002F31550-wordpress-passwordless-login\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.cozmoslabs.com\u002F31550-wordpress-passwordless-login\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>This is how it works:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Instead of asking users for a password when they try to log in to your website, we simply ask them for their username or email\u003C\u002Fli>\n\u003Cli>The plugin creates a temporary authorization token and saves it in a WordPress transient that expires after 10 minutes\u003C\u002Fli>\n\u003Cli>Then we send the user an email with a link and the token\u003C\u002Fli>\n\u003Cli>The user clicks the link and sends the authorization code to your server\u003C\u002Fli>\n\u003Cli>The plugin then checks if the code is valid and creates the log in WordPress cookie, successfully authenticating the user.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can use the shortcode [passwordless-login] in a page or widget.\u003C\u002Fp>\n\u003Cp>If you’re looking to create front-end user registration and profile forms we recommend \u003Ca href=\"https:\u002F\u002Fwww.cozmoslabs.com\u002Fwordpress-profile-builder\u002F\" rel=\"nofollow ugc\">Profile Builder\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>NOTE:\u003C\u002Fp>\n\u003Cp>Passwordless Authentication dose not replace the default login functionality in WordPress.\u003C\u002Fp>\n","Passwordless login form via a simple to use shortcode: [passwordless-login]",1000,30685,"2026-02-02T08:30:00.000Z","6.9.4","3.9",[90,19,91,92,77],"custom-login-form","login-shortcode","passwordless","https:\u002F\u002Fwww.cozmoslabs.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpasswordless-login.1.1.4.zip","2024-03-18 00:00:00",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":106,"num_ratings":107,"last_updated":108,"tested_up_to":109,"requires_at_least":50,"requires_php":15,"tags":110,"homepage":116,"download_link":117,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":57},"nomorepass-forget-your-passwords","NoMorePass Login","1.10.3","yoprogramo","https:\u002F\u002Fprofiles.wordpress.org\u002Fyoprogramo\u002F","\u003Cp>\u003Cstrong>NoMorePass\u003C\u002Fstrong> is a secure and easy to use technology to provide you two factor autentication on every situation. This plugin allows you to login to wordpress using just your mobile phone, with no other requirement. No registering, no API keys, install, activate and that’s all.\u003Cbr \u002F>\nYour passwords will be \u003Cstrong>only on your mobile phone\u003C\u002Fstrong>, no copies over your computers, not even on nomorepass servers, fully anonymous. Login just scanning a one-time qr-code.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Safe\u003C\u002Fstrong> Your passwords are encrypted all the time, all transfers are on https and the credentials are encrypted with single-use keys.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Personal\u003C\u002Fstrong> Your passwords always go with you. No servers, no insecure transfers, no browser dependencies. Fully anonymous.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy\u003C\u002Fstrong> Magic! You can send passwords to your favorite websites without any effort. Just scan a qr-code with the app.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>IMPORTANT\u003C\u002Fstrong>: Install the app in your phone:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplay.google.com\u002Fstore\u002Fapps\u002Fdetails?id=com.biblioeteca.apps.NoMorePass\" rel=\"nofollow ugc\">Google Play\u003C\u002Fa> Android.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fitunes.apple.com\u002Fus\u002Fapp\u002Fno-more-pass\u002Fid1199780162\" rel=\"nofollow ugc\">Apple Appstore\u003C\u002Fa> iOS \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Instant user registration\u003C\u002Fstrong>\u003Cbr \u002F>\nYou have a new configuration option named “Auto-login after registration” that allows your users scan the provided qr-code only providing username and email, then the password is sent to the mobile phone and the user is registered immediately.\u003Cbr \u002F>\nRegister your users in just one step, safely.\u003C\u002Fp>\n\u003Cp>Avoid force brute attacks\u003Cbr \u002F>\nYou can force users to use NoMorePass app to login to your site, making impossible force-brute attacs. Even if the attackers guess the correct user an password they will be unable to enter if not using the mobile app.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Allow access from every page\u002Fpost\u002Fwidget\u003C\u002Fstrong>\u003Cbr \u002F>\nYou can use a shortcode to include a login form in any page or post or include in your sidebar.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>NoMorePass support\u003C\u002Fstrong>,\u003Cbr \u002F>\nif you find a bug please open a ticket in the support request or go to \u003Ca href=\"https:\u002F\u002Fwww.nomorepass.com\" rel=\"nofollow ugc\">NoMorePass.com\u003C\u002Fa>.\u003Cbr \u002F>\nEvery issue will be fixed asap!\u003C\u002Fp>\n\u003Cp>\u003Cstrong> NoMorePass\u003C\u002Fstrong> plugin is also compatible with any plugin that hooks in the login form, including\u003C\u002Fp>\n\u003Col>\n\u003Cli>BuddyPress,\u003C\u002Fli>\n\u003Cli>bbPress,\u003C\u002Fli>\n\u003Cli>Limit Login Attempts,\u003C\u002Fli>\n\u003Cli>Captcha plugins.\u003C\u002Fli>\n\u003Cli>etc.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>How to create a custom login page with nomorepass\u003C\u002Fh3>\n\u003Cp>In order to create a login form or custom login page for WordPress with the default options, all you need to do is use this shortcode:\u003C\u002Fp>\n\u003Cp>[nmp_login_form]\u003C\u002Fp>\n\u003Cp>You can use parameters in the shortcode:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>redirect\u003C\u002Fstrong> An absolute URL to which the user will be redirected after a successful login\u003C\u002Fli>\n\u003Cli>\u003Cstrong>form_id\u003C\u002Fstrong> Custom ID for the login form\u003C\u002Fli>\n\u003Cli>\u003Cstrong>label_xxx\u003C\u002Fstrong> (xxx can be username, password, remember, log_in) Text to use as label in your form for the indicated field\u003C\u002Fli>\n\u003Cli>\u003Cstrong>remember\u003C\u002Fstrong> Specify if the “Remember Me” checkbox should be shown\u003C\u002Fli>\n\u003Cli>\u003Cstrong>value_xxx\u003C\u002Fstrong> (xxx can be username, password, remember) placeholder for text field or (0|1) for remember.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>lost_password\u003C\u002Fstrong> Specify if the “Lost password” link should be shown\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Cp>In the admin page you have 5 different options:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Show login form : shows or hide the user and password fields. If hidden only using QR is possible login.\u003C\u002Fli>\n\u003Cli>Show password reset : shows or hide the password field when resetting password. If hidden the password is sent to the mobile phone using QR directly.\u003C\u002Fli>\n\u003Cli>Auto-launch QR : makes the NoMorePass QR be launched when login page loads.\u003C\u002Fli>\n\u003Cli>Auto-login : if you select this option the user will login directly after the registration without email verification. Use with caution, this option will reduce the registration dramatically (just 1 step) but the emails are not verified (but you know people registered have used nomorepass, so they are humans).\u003C\u002Fli>\n\u003Cli>Only Nomorepass : allows logins only using nomorepass app\u003C\u002Fli>\n\u003Cli>Custom Logo: allows to upload a new icon for login\u003C\u002Fli>\n\u003Cli>Custom Message: allows to change the login message\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>How it works\u003C\u002Fh3>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FOVL7cuiS77g?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n","Use your mobile phone to login into wordpress. Allow users instant registration. Fully protection against force brute attacks",70,5164,90,8,"2025-04-19T19:40:00.000Z","6.8.5",[111,112,113,114,115],"login","nomorepass","password","wordpress-login","wp-login-form","https:\u002F\u002Fwww.nomorepass.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnomorepass-forget-your-passwords.zip",{"slug":119,"name":120,"version":121,"author":122,"author_profile":123,"description":124,"short_description":125,"active_installs":32,"downloaded":126,"rating":127,"num_ratings":128,"last_updated":129,"tested_up_to":87,"requires_at_least":130,"requires_php":131,"tags":132,"homepage":136,"download_link":137,"security_score":138,"vuln_count":139,"unpatched_count":25,"last_vuln_date":140,"fetched_at":57},"frontend-login-and-registration-blocks","Login, Registration and Lost Password Blocks","1.2.1","Kadim Gültekin","https:\u002F\u002Fprofiles.wordpress.org\u002Farkenon\u002F","\u003Cp>Login, Registration and Lost Password Blocks plugin provides blocks helps you to add login, register, lost password forms from front end.\u003C\u002Fp>\n\u003Cp>Additionally, you can create user settings page, add limit login attempts and user activation functionality and more to your website…\u003C\u002Fp>\n\u003Ch3>Why Choose Frontend Login and Registration Forms\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>1. Easy to Use\u003C\u002Fstrong>\u003Cbr \u002F>\nYou can add login, register, lost password or user settings with just a one click. They are all blocks!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>2. Customization\u003C\u002Fstrong>\u003Cbr \u002F>\nEach block has color, font and size option in the right sidebar of block editor. You can easily customize your forms.\u003C\u002Fp>\n\u003Cp>☑ Login Form Block\u003Cbr \u002F>\n☑ Register Form Block\u003Cbr \u002F>\n☑ Lost Password Form Block\u003Cbr \u002F>\n☑ User Settings Form Block\u003Cbr \u002F>\n☑ User Activation Form Block\u003Cbr \u002F>\n☑ Welcome Card Block\u003Cbr \u002F>\n☑ Menu Item Block (Login\u002FLogout)\u003Cbr \u002F>\n☑ Limit Login Attempts\u003Cbr \u002F>\n☑ Limit Reset Request Attempts\u003Cbr \u002F>\n☑ E-Mail Settings\u003Cbr \u002F>\n☑ Strength Password\u003Cbr \u002F>\n☑ Username Validation\u003Cbr \u002F>\n☑ Customizable Form Fields\u003Cbr \u002F>\n☑ Customizable Colors\u003C\u002Fp>\n\u003Ch3>Note: Please read the guide before using the plugin.\u003C\u002Fh3>\n\u003Cp>☑ \u003Ca href=\"https:\u002F\u002Fguide-frontendlogin.iyziweb.site\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003Cbr \u002F>\n☑ \u003Ca href=\"https:\u002F\u002Ffrontendlogin.iyziweb.site\u002F\" rel=\"nofollow ugc\">Official Web Site\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Compatibility\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Block Editor\u003C\u002Fli>\n\u003Cli>Site Editor\u003C\u002Fli>\n\u003C\u002Ful>\n","Login, Registration and Lost Password Blocks plugin provides blocks helps you to add login, register, lost password forms from front end.",3772,80,3,"2026-01-07T12:54:00.000Z","6.1","7.4",[133,134,20,135,21],"custom-login","login-block","lost-password-block","https:\u002F\u002Ffrontendlogin.iyziweb.site\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffrontend-login-and-registration-blocks.1.2.2.zip",93,2,"2025-05-08 00:00:00",{"attackSurface":142,"codeSignals":167,"taintFlows":202,"riskAssessment":230,"analyzedAt":242},{"hooks":143,"ajaxHandlers":159,"restRoutes":160,"shortcodes":161,"cronEvents":166,"entryPointCount":31,"unprotectedCount":25},[144,150,155],{"type":145,"name":146,"callback":147,"file":148,"line":149},"action","wp_enqueue_scripts","addLoginStyle","loginForm.php",15,{"type":151,"name":152,"callback":153,"file":148,"line":154},"filter","lostpassword_url","getLostLink",29,{"type":151,"name":156,"callback":157,"file":148,"line":158},"logout_url","logout_redirect",39,[],[],[162],{"tag":163,"callback":164,"file":148,"line":165},"login_form","displayForm",207,[],{"dangerousFunctions":168,"sqlUsage":169,"outputEscaping":171,"fileOperations":25,"externalRequests":25,"nonceChecks":25,"capabilityChecks":25,"bundledLibraries":201},[],{"prepared":139,"raw":25,"locations":170},[],{"escaped":25,"rawEcho":172,"locations":173},13,[174,177,179,181,183,185,187,189,191,193,195,197,199],{"file":148,"line":175,"context":176},133,"raw output",{"file":148,"line":178,"context":176},145,{"file":148,"line":180,"context":176},153,{"file":148,"line":182,"context":176},160,{"file":148,"line":184,"context":176},162,{"file":148,"line":186,"context":176},182,{"file":148,"line":188,"context":176},197,{"file":148,"line":190,"context":176},198,{"file":148,"line":192,"context":176},199,{"file":148,"line":194,"context":176},200,{"file":148,"line":196,"context":176},201,{"file":148,"line":198,"context":176},202,{"file":148,"line":200,"context":176},203,[],[203,222],{"entryPoint":204,"graph":205,"unsanitizedCount":31,"severity":221},"retrieve_my_password (loginForm.php:44)",{"nodes":206,"edges":218},[207,212],{"id":208,"type":209,"label":210,"file":148,"line":211},"n0","source","$_POST",56,{"id":213,"type":214,"label":215,"file":148,"line":216,"wp_function":217},"n1","sink","get_var() [SQLi]",84,"get_var",[219],{"from":208,"to":213,"sanitized":220},false,"high",{"entryPoint":223,"graph":224,"unsanitizedCount":31,"severity":221},"\u003CloginForm> (loginForm.php:0)",{"nodes":225,"edges":228},[226,227],{"id":208,"type":209,"label":210,"file":148,"line":211},{"id":213,"type":214,"label":215,"file":148,"line":216,"wp_function":217},[229],{"from":208,"to":213,"sanitized":220},{"summary":231,"deductions":232},"The \"front-end-login-form\" v0.2 plugin exhibits a concerning security posture despite having no known historical vulnerabilities or dangerous function usage. While the plugin demonstrates good practices by exclusively using prepared statements for SQL queries and avoiding external HTTP requests and file operations, significant weaknesses are present. The static analysis reveals that 100% of output is not properly escaped, which is a critical flaw. Furthermore, the taint analysis found two flows with unsanitized paths, both categorized as high severity, indicating potential for attackers to inject malicious data that could be processed without proper cleaning. The lack of any nonce or capability checks across all entry points, including the single shortcode, is a major oversight, leaving the plugin vulnerable to various injection and unauthorized access attacks.",[233,235,238,240],{"reason":234,"points":149},"100% of output is not properly escaped",{"reason":236,"points":237},"2 high severity taint flows with unsanitized paths",12,{"reason":239,"points":11},"0 nonce checks on entry points",{"reason":241,"points":11},"0 capability checks on entry points","2026-03-16T23:12:34.487Z",{"wat":244,"direct":251},{"assetPaths":245,"generatorPatterns":247,"scriptPaths":248,"versionParams":249},[246],"\u002Fwp-content\u002Fplugins\u002Ffront-end-login-form\u002Fstyle.css",[],[],[250],"front-end-login-form\u002Fstyle.css?ver=",{"cssClasses":252,"htmlComments":254,"htmlAttributes":255,"restEndpoints":256,"jsGlobals":257,"shortcodeOutput":258},[253],"jerror",[],[],[],[],[259,260,261,262,263,264,265,262,266,259,267,268,269],"\u003Csection id=\"contentForm\">","\u003Cform name=\"lostpasswordform\" id=\"lostpasswordform\" action=\"\" method=\"post\">","\u003Cinput type=\"hidden\" name=\"redirect_to\" value=\"","\u003Ca href=\"","\">Login Now\u003C\u002Fa>","\u003Cform action=\"\" method=\"post\">","\u003Cinput type=\"submit\" value=\"Log in\" name=\"submit\" \u002F>","\">Lost your password?\u003C\u002Fa>","\u003Cform method=\"post\">\u003Ch1>Profile\u003C\u002Fh1>","get_avatar(","Logout\u003C\u002Fa>\u003Cbr \u002F>"]