WP-Safety

Force login to make the site private – Gozer Security & Risk Analysis

wordpress.org/plugins/gozer

Force visitors to log in before accessing your site with extensive exception controls.

20 active installs v1.0.3 PHP 7.4+ WP 5.0+ Updated Mar 27, 2026
accessloginprivacyprivaterestricted
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Force login to make the site private – Gozer Safe to Use in 2026?

Generally Safe

Score 100/100

Force login to make the site private – Gozer has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The 'gozer' plugin v1.0.2 exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of dangerous functions, unescaped output, file operations, external HTTP requests, and raw SQL queries demonstrates excellent coding practices. Furthermore, the presence of nonce and capability checks on all identified AJAX entry points is commendable, indicating robust authentication and authorization mechanisms are in place. The plugin also has no recorded vulnerability history, suggesting a consistent track record of security awareness and maintenance by its developers.

While the static analysis reveals no immediate exploitable vulnerabilities such as critical taint flows or unauthenticated entry points, the lack of taint analysis results (0 flows analyzed) limits a comprehensive assessment of potential data sanitization issues that might arise from more complex interactions. However, based on the available data, the plugin appears to be developed with security in mind, making it a low-risk option for WordPress users. The developers have successfully mitigated common WordPress plugin vulnerabilities.

Vulnerabilities
None known

Force login to make the site private – Gozer Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Force login to make the site private – Gozer Release Timeline

v1.0.3Current
v1.0.2
v1.0.1
v1.0.0
Code Analysis
Analyzed Mar 16, 2026

Force login to make the site private – Gozer Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
88 escaped
Nonce Checks
3
Capability Checks
7
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

100% escaped88 total outputs
Attack Surface

Force login to make the site private – Gozer Attack Surface

Entry Points3
Unprotected0

AJAX Handlers 3

authwp_ajax_gozer_toggleincludes\admin-bar.php:191
authwp_ajax_gozer_generate_tokenincludes\admin-settings.php:535
authwp_ajax_gozer_delete_tokenincludes\admin-settings.php:564
WordPress Hooks 12
actionadmin_noticesgozer.php:182
filterplugin_row_metagozer.php:309
actionwpgozer.php:328
actiongozer_cleanup_tokensgozer.php:339
actionadmin_bar_menuincludes\admin-bar.php:68
actionwp_enqueue_scriptsincludes\admin-bar.php:152
actionadmin_enqueue_scriptsincludes\admin-bar.php:153
actionadmin_enqueue_scriptsincludes\admin-settings.php:53
actionadmin_menuincludes\admin-settings.php:71
actionadmin_initincludes\admin-settings.php:91
actiontemplate_redirectincludes\force-login.php:124
filterlogin_messageincludes\force-login.php:222

Scheduled Events 1

gozer_cleanup_tokens
Maintenance & Trust

Force login to make the site private – Gozer Maintenance & Trust

Maintenance Signals

WordPress version tested7.0
Last updatedMar 27, 2026
PHP min version7.4
Downloads445

Community Trust

Rating0/100
Number of ratings0
Active installs20
Alternatives

Force login to make the site private – Gozer Alternatives

Force Login

Force Login

wp-force-login

A
92

Force Login is a simple lightweight plugin that requires visitors to log in to interact with the website.

30K No CVEs
My Private Site

My Private Site

jonradio-private-site

A
99

Make your WordPress site private with one click for family, projects, or teams. Protection for content, login, and registration.

20K 2 CVEs
Wbcom Designs – Private Community for BuddyPress

Wbcom Designs – Private Community for BuddyPress

lock-my-bp

A
98

Create a private BuddyPress community by restricting access to non-members. Control who sees what with flexible privacy settings.

400 2 CVEs
Private Website – Login Required

Private Website – Login Required

private-website

A
100

This plugin requires users to be logged in to view the website. Activate the plugin to enforce login, and deactivate it to remove the restriction.

200 No CVEs
DiaryPress

DiaryPress

diarypress

A
92

DiaryPress lets you keep a private diary.

70 No CVEs
Developer Profile

Force login to make the site private – Gozer Developer Profile

Fernando Tellado

21 plugins · 25K total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Force login to make the site private – Gozer

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/gozer/assets/css/gozer-admin-settings.css/wp-content/plugins/gozer/assets/js/gozer-admin-settings.js/wp-content/plugins/gozer/assets/js/gozer-activation-notice.js
Script Paths
/wp-content/plugins/gozer/assets/js/gozer-admin-settings.js/wp-content/plugins/gozer/assets/js/gozer-activation-notice.js
Version Parameters
gozer/assets/css/gozer-admin-settings.css?ver=gozer/assets/js/gozer-admin-settings.js?ver=gozer/assets/js/gozer-activation-notice.js?ver=

HTML / DOM Fingerprints

CSS Classes
gozer-activation-notice
FAQ

Frequently Asked Questions about Force login to make the site private – Gozer