[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fTdsEcLE82kKk90bLq-XTCsKhnjk40GmMdtJ_Eaz5_KM":3,"$fpxFIF2rAXV7P-4jZ1wS4pHIJKtQZ_YlYdFZn2mz4gX8":385,"$fe4jf7ouUrSCzW_iLpC-mHGSnNHw-OPcD3r65eeF9XTk":390},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":30,"crawl_stats":26,"alternatives":36,"analysis":143,"fingerprints":361},"gryphon-verified-client-ip","Gryphon Verified Client IP","1.2.1","Sly Gryphon","https:\u002F\u002Fprofiles.wordpress.org\u002Fsgryphon\u002F","\u003Cp>Gryphon Verified Client IP determines the client IP by walking the forwarding chain, only trusting addresses that match your configured proxy networks (by CIDR range). It stops at the first untrusted hop, which is the true client IP. The resolved address replaces \u003Ccode>REMOTE_ADDR\u003C\u002Fcode> early in the WordPress lifecycle, allowing other plugins to use it.\u003C\u002Fp>\n\u003Cp>The component is secure by default and only trusted proxies are traversed; spoofed headers are ignored. Both IPv4 and IPv6 are fully supported, including protocol translation.\u003C\u002Fp>\n\u003Cp>Multiple header formats are supported including standard RFC 7239 \u003Ccode>Forwarded\u003C\u002Fcode>, common \u003Ccode>X-Forwarded-For\u003C\u002Fcode>, Cloudflare \u003Ccode>CF-Connecting-IP\u003C\u002Fcode>, or any custom header.\u003C\u002Fp>\n\u003Cp>The component includes a diagnostics panel that can be enabled to record incoming requests with full header dumps and algorithm step traces for debugging.\u003C\u002Fp>\n\u003Cp>For more detail, see the GitHub project site \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsgryphon\u002Fessential-wordpress-verified-client-ip\" rel=\"nofollow ugc\">Gryphon WordPress Verified Client IP\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Compatibility Note\u003C\u002Fh4>\n\u003Cp>If your server uses \u003Cstrong>Apache \u003Ccode>mod_remoteip\u003C\u002Fcode>\u003C\u002Fstrong> or \u003Cstrong>nginx \u003Ccode>set_real_ip_from\u003C\u002Fcode>\u003C\u002Fstrong>, those modules will pre-resolve \u003Ccode>REMOTE_ADDR\u003C\u002Fcode> from forwarding headers before PHP runs. Disable the web server module and let this plugin handle IP resolution instead, or let it pre-resolve and use this plugin for any additional proxies not covered by the engine.\u003C\u002Fp>\n","Determines the true client IP by verifying Forwarded and similar headers, traversing only trusted proxy hops.",0,61,"2026-04-13T12:27:00.000Z","6.9.4","6.4","8.1",[18,19,20,21,22],"client-ip","ip-address","proxy","user-ip","visitor-ip","https:\u002F\u002Fgithub.com\u002Fsgryphon\u002Fessential-wordpress-verified-client-ip","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgryphon-verified-client-ip.1.2.1.zip",100,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"sgryphon",1,30,94,"2026-05-20T07:02:45.659Z",[37,57,82,105,125],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":25,"num_ratings":32,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":54,"download_link":55,"security_score":56,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"user-ip-information","User IP Info","10.0","adeelsikander","https:\u002F\u002Fprofiles.wordpress.org\u002Fadeelsikander\u002F","\u003Cp>This plugin simply display the User current IP address, and location info anywhere with a shortcode.\u003C\u002Fp>\n\u003Cp>It also allow website admin to display custom message for user in the front end.\u003C\u002Fp>\n\u003Cp>It is a light weight plugin and easy to install.\u003C\u002Fp>\n","User IP Information - It display the User current IP address with country information like country name, region, city, country code, continent, sub co &hellip;",20,1388,"2019-10-09T11:36:00.000Z","5.2.24","4.0","5.2.4",[52,53,19,21,22],"country-ip","ip","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fuser-ip-information\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-ip-information.zip",85,{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":68,"last_updated":69,"tested_up_to":14,"requires_at_least":70,"requires_php":71,"tags":72,"homepage":77,"download_link":78,"security_score":79,"vuln_count":80,"unpatched_count":11,"last_vuln_date":81,"fetched_at":27},"ip2location-country-blocker","IP2Location Country Blocker","2.41.2","IP2Location","https:\u002F\u002Fprofiles.wordpress.org\u002Fip2location\u002F","\u003Cp>\u003Cem>This plugin will NOT work if any cache plugin is enabled.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>This plugin enables user to block unwanted traffic from accessing your frontend (blog pages) or backend (admin area) by countries or proxy servers. It helps to reduce spam and unwanted sign ups easily by preventing unwanted visitors from browsing a particular page or entire website.\u003C\u002Fp>\n\u003Cp>Key Features\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Allow you to block the access from multiple countries.\u003C\u002Fli>\n\u003Cli>Allow you to block the access by country grouping, such as EU, APAC, and so on.\u003C\u002Fli>\n\u003Cli>Allow you to block the access from anonymous proxies.\u003C\u002Fli>\n\u003Cli>Allow you to block the access by IP ranges.\u003C\u002Fli>\n\u003Cli>Allow you to whitelist the crawler, for example, Google, Bing, Yandex, and so on, to index your pages (SEO friendly).\u003C\u002Fli>\n\u003Cli>Supports IPv4 and IPv6\u003C\u002Fli>\n\u003Cli>Default to 403 error (Permission Denied) display\u003C\u002Fli>\n\u003Cli>Allow you to customize your own 403 page.\u003C\u002Fli>\n\u003Cli>Send you an email notification if some one is trying to access your admin area.\u003C\u002Fli>\n\u003Cli>Provide you statistical report of traffics blocked.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin supports both IP2Location BIN data and web service for IP geolocation lookup. If you would like to use the IP2Location geolocation BIN data, you can easily download and update the BIN data via the plugin settings page. Alternatively, you can also download and update the BIN data file manually using the below links:\u003C\u002Fp>\n\u003Cp>IP Geolocation file download:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Flite.ip2location.com\" title=\"IP2Location LITE database\" rel=\"nofollow ugc\">IP2Location & IP2Proxy LITE database (Free)\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fip2location.com\" title=\"IP2Location commercial database\" rel=\"nofollow ugc\">IP2Location & IP2Proxy Commercial database (Comprehensive)\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>To use the IP2Location IP geolocation web service (REST API) for geolocation, you’ll need to register an account at \u003Ca href=\"https:\u002F\u002Fwww.ip2location.io\" title=\"IP2Location.io IP Geolocation API\" rel=\"nofollow ugc\">IP2Location.io IP Geolocation API\u003C\u002Fa>. A free plan is available.\u003C\u002Fp>\n\u003Ch4>More Information\u003C\u002Fh4>\n\u003Cp>Please visit us at \u003Ca href=\"https:\u002F\u002Fwww.ip2location.com\" title=\"https:\u002F\u002Fwww.ip2location.com\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.ip2location.com\u003C\u002Fa>\u003C\u002Fp>\n","Blocks unwanted visitors from accessing your frontend (blog pages) or backend (admin area) by countries or proxy servers.",30000,1636207,84,124,"2025-12-03T07:19:00.000Z","4.6","7.4",[73,74,19,75,76],"block-country","block-proxy","ip2location","redirection","https:\u002F\u002Fip2location.com\u002Fresources\u002Fwordpress-ip2location-country-blocker","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fip2location-country-blocker.2.41.2.zip",93,9,"2025-02-21 19:56:54",{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":67,"num_ratings":80,"last_updated":92,"tested_up_to":93,"requires_at_least":94,"requires_php":95,"tags":96,"homepage":102,"download_link":103,"security_score":25,"vuln_count":32,"unpatched_count":11,"last_vuln_date":104,"fetched_at":27},"user-ip-and-location","User IP and Location","4.0.2","Sunny Kumar","https:\u002F\u002Fprofiles.wordpress.org\u002Ftheguidex\u002F","\u003Cp>Looking to display your website visitor’s IP address, location, browser details, and other information on your WordPress site? Then “User IP and Location” plugin is exactly what you need!\u003C\u002Fp>\n\u003Cp>This plugin is very simple to set up and use. Just install it, and you can start showing visitor information anywhere on your website using easy shortcodes. You can put these shortcodes in your posts, pages, sidebar, footer – anywhere you want!\u003C\u002Fp>\n\u003Cp>The best part? We use the reliable and free \u003Ca href=\"http:\u002F\u002Fip-api.com\" title=\"IP-API\" rel=\"friend nofollow ugc\">IP-API\u003C\u002Fa> service to get all the location data, so the information is always accurate and up-to-date.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New in Version 4.x.x – Works with Caching Plugins!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Are you using WP-Rocket, W3 Total Cache, or any other caching plugin? No problem at all! We’ve completely rebuilt the plugin to work perfectly with all caching plugins. Your visitors will always see their own correct information, not some cached data from another visitor.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Advanced Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Multi-Language Support\u003C\u002Fstrong> – Get location names in 8 different languages (English, German, Spanish, Portuguese, French, Japanese, Chinese, Russian)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>PRO API Key Support\u003C\u002Fstrong> – Use your premium IP-API key for higher limits and HTTPS security\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Caching System\u003C\u002Fstrong> – Built-in server-side caching with customizable expiration times (1 hour to 1 week)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Conditional Content\u003C\u002Fstrong> – Show different content to visitors from specific countries, regions, or cities\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Developer Tools\u003C\u002Fstrong> – PHP functions and REST API endpoints for custom development\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Output\u003C\u002Fstrong> – Change “Yes\u002FNo” text to any language or format you prefer\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Here are all the shortcodes you can use:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[userip_location type=\"ip\"] - Shows visitor's IP address\n[userip_location type=\"continent\"] - Shows continent name\n[userip_location type=\"country\"] - Shows country name\n[userip_location type=\"countrycode\"] - Shows country code (like IN, US, UK)\n[userip_location type=\"region\"] - Shows region code\n[userip_location type=\"regionname\"] - Shows region\u002Fstate name\n[userip_location type=\"city\"] - Shows city name\n[userip_location type=\"zip\"] - **NEW!** Shows ZIP\u002Fpostal code\n[userip_location type=\"lat\"] - Shows latitude\n[userip_location type=\"lon\"] - Shows longitude\n[userip_location type=\"timezone\"] - Shows timezone\n[userip_location type=\"currency\"] - Shows local currency\n[userip_location type=\"isp\"] - Shows internet provider name\n[userip_location type=\"mobile\"] - Shows if visitor is on mobile network\n[userip_location type=\"proxy\"] - Shows if visitor is using proxy\n[userip_location type=\"hosting\"] - Shows if IP is from hosting provider\n[userip_location type=\"browser\"] - Shows browser name\n[userip_location type=\"os\"] - Shows operating system\n[userip_location type=\"flag\" height=\"auto\" width=\"50px\" vertical_align=\"middle\"] - Shows country flag\n[userip_localtime] - **NEW!** Shows visitor's current local time\n[userip_localdate] - **NEW!** Shows visitor's current local date\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Smart Conditional Content:\u003C\u002Fstrong>\u003Cbr \u002F>\nShow different content to visitors from different places! Perfect for targeted marketing, regional offers, or localized messages.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[userip_conditional country=\"US,IN\"]Content for US and India visitors only[\u002Fuserip_conditional]\n[userip_conditional country_not=\"CN,RU\"]Content for everyone except China and Russia[\u002Fuserip_conditional]\n[userip_conditional region=\"CA,TX\"]Special offers for California and Texas![\u002Fuserip_conditional]\n[userip_conditional city=\"Mumbai,Delhi\"]Mumbai and Delhi exclusive deals[\u002Fuserip_conditional]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>About the Flag Shortcode:\u003C\u002Fstrong>\u003Cbr \u002F>\nWhen using the flag shortcode, you can control its size and position. The \u003Ccode>height\u003C\u002Fcode>, \u003Ccode>width\u003C\u002Fcode>, and \u003Ccode>vertical_align\u003C\u002Fcode> options are all optional. By default, height is auto, width is 50px, and it aligns in the middle. You can change these as per your needs.\u003C\u002Fp>\n\u003Ch4>Why Choose User IP and Location Plugin?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Super Easy Setup\u003C\u002Fstrong> – Just install and activate, that’s it!\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Works with All Caching Plugins\u003C\u002Fstrong> – WP-Rocket, W3 Total Cache, you name it!\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Fast Loading\u003C\u002Fstrong> – Uses modern AJAX technology so it doesn’t slow down your site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lots of Information\u003C\u002Fstrong> – IP, country, city, flag, browser, OS, ISP, and much more\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi-Language Support\u003C\u002Fstrong> – Location names in 8 different languages\u003C\u002Fli>\n\u003Cli>\u003Cstrong>PRO API Support\u003C\u002Fstrong> – Use premium IP-API keys for higher limits and HTTPS\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Caching\u003C\u002Fstrong> – Server-side caching with customizable expiration (1 hour to 1 week)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>New Features\u003C\u002Fstrong> – ZIP code and local time shortcodes added\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Content\u003C\u002Fstrong> – Show different content to visitors from different countries, regions, or cities\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Always Updated\u003C\u002Fstrong> – Uses reliable IP-API service for accurate data\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Developer Friendly\u003C\u002Fstrong> – Includes PHP functions and REST API for custom development\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable\u003C\u002Fstrong> – Change output text, caching settings, and more from admin panel\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Perfect for bloggers, businesses, and developers who want to personalize their website based on visitor location!\u003C\u002Fp>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cp>This awesome plugin is created by the talented team at \u003Ca href=\"https:\u002F\u002Fheyserp.com\" title=\"HeySERP\" rel=\"friend nofollow ugc\"> HeySERP \u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Want to learn more about WordPress? Check out our website \u003Ca href=\"https:\u002F\u002Ftheguidex.com\u002F\" title=\"TheGuideX\" rel=\"friend nofollow ugc\"> TheGuideX \u003C\u002Fa> where we share helpful tutorials on:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fthewpx.com\u002Fget-ip-address-and-location-in-wordpress\u002F\" title=\"How to Get the IP Address and Location of Users in WordPress\" rel=\"friend nofollow ugc\">How to Get User IP and Location in WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftheguidex.com\u002Fcommon-wordpress-errors\u002F\" title=\"Common WordPress Errors & Solutions\" rel=\"friend nofollow ugc\">Common WordPress Errors & How to Fix Them\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftheguidex.com\u002Fgoogle-adsense-plugins-for-wordpress\u002F\" title=\"Best WordPress Ads Manager Plugins\" rel=\"friend nofollow ugc\">Best WordPress Ad Management Plugins\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>…and many more helpful \u003Ca href=\"https:\u002F\u002Ftheguidex.com\u002Fcategory\u002Fwordpress\u002F\" title=\"WordPress Tutorials\" rel=\"friend nofollow ugc\">WordPress tutorials\u003C\u002Fa> in simple language!\u003C\u002Fp>\n","Want to show your website visitors their IP address, location, and other cool details? This plugin makes it super easy! Now works perfectly with cachi &hellip;",3000,38194,"2025-07-15T07:41:00.000Z","6.8.5","5.0","7.2",[97,98,99,100,101],"country-code","geolocation","region","user-ip-address","user-location","https:\u002F\u002Ftheguidex.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-ip-and-location.zip","2023-04-28 00:00:00",{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":113,"downloaded":114,"rating":25,"num_ratings":115,"last_updated":116,"tested_up_to":93,"requires_at_least":117,"requires_php":118,"tags":119,"homepage":123,"download_link":124,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"show-ip-address","Show IP address","1.8","Keith Griffiths","https:\u002F\u002Fprofiles.wordpress.org\u002Fkeithgriffiths76\u002F","\u003Cp>This plugin displays your visitor’s IP address using a shortcode. It’s lightweight, fast, and ideal for developers, diagnostics, and secured areas.\u003C\u002Fp>\n\u003Ch4>Great for:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Your home page\u003C\u002Fli>\n\u003Cli>Posts\u003C\u002Fli>\n\u003Cli>Pages\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Shortcode to display the visitor’s IP address: \u003Ccode>[show_ip]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>[show_ip]\u003C\u002Fcode> – Display visitor IP address\u003C\u002Fli>\n\u003Cli>\u003Ccode>[show_ip_hostname]\u003C\u002Fcode> – Display IP hostname\u003C\u002Fli>\n\u003Cli>\u003Ccode>[show_ip_useragent]\u003C\u002Fcode> – Display browser user agent\u003C\u002Fli>\n\u003Cli>\u003Ccode>[show_ip_referrer]\u003C\u002Fcode> – Display referrer URL\u003C\u002Fli>\n\u003Cli>Works on pages, posts, and widgets\u003C\u002Fli>\n\u003Cli>Lightweight and fast – no bloat or external requests\u003C\u002Fli>\n\u003Cli>Dashboard widget for quick admin view\u003C\u002Fli>\n\u003Cli>Compatible with all modern WordPress versions\u003C\u002Fli>\n\u003Cli>Zero external API calls – works on all hosting environments\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Perfect for technical websites, diagnostics pages, or simply showing your visitor what their current IP address is as well as there refering data using optional tags.\u003C\u002Fp>\n\u003Ch4>Dashboard widget:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Includes a dashboard widget that displays your current IP and offers helpful info on future updates.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>This is a FREE plugin\u003C\u002Fh4>\n\u003Cp>This simply shows the IP address of a visitor if they land on a specific page, you simply put your tag where you want your visitor to see their IP address, that’s it!\u003C\u002Fp>\n\u003Cp>This tag works on specific pages or widgets by simply adding in the tag [show_ip]. Your IP address also shows on your admin dashboard.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Ch4>To show an IP address on any of your pages you could use:\u003C\u002Fh4>\n\u003Cp>What’s My IP Address: [show_ip]\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","A simple plugin to show your visitor’s IP address on pages, posts, widgets, and the admin dashboard. Lightweight and easy to use.",1000,22925,5,"2025-08-08T14:40:00.000Z","3.6","5.6",[120,19,121,122,21],"display-ip","ip-user-tools","show-ip","https:\u002F\u002Fwww.keithgriffiths.co.uk","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshow-ip-address.1.8.zip",{"slug":126,"name":127,"version":128,"author":129,"author_profile":130,"description":131,"short_description":132,"active_installs":33,"downloaded":133,"rating":25,"num_ratings":32,"last_updated":134,"tested_up_to":135,"requires_at_least":49,"requires_php":136,"tags":137,"homepage":141,"download_link":142,"security_score":56,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"user-allowed-ip-addresses","User Allowed IP Addresses","1.1.1","Matt Pramschufer","https:\u002F\u002Fprofiles.wordpress.org\u002Fmattpramschufer\u002F","\u003Cp>If you ever needed the ability to have a specific user account only be able to login from specific IP addresses then\u003Cbr \u002F>\nthis is the plugin for you.  It is a simple plugin that adds an IP Addresses field to the user profile screen.  If you\u003Cbr \u002F>\nadd in an IP address or a list of IP addresses that user will only be able to login from that IP address.\u003C\u002Fp>\n\u003Cp>You have the option to redirect a user to a specific page if their IP address is not in the list of allowed IPs in the\u003Cbr \u002F>\nplugin options.  If you don’t specify a URL it will redirect back to the homepage.\u003C\u002Fp>\n\u003Cp>Another feature is to be able to have AUTO LOGIN from an IP address.  The auto login feature does exactly what it\u003Cbr \u002F>\nsounds like. It will automatically login a user based on their IP Address.\u003C\u002Fp>\n","Simple plugin that gives the ability to restrict login access to specific IP addresses for specific users. Option to Auto Login user based on IP.",2749,"2015-11-06T20:38:00.000Z","4.3.34","",[19,138,139,100,140],"ip-address-login","ip-login","user-profile","http:\u002F\u002Fwww.emoxie.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-allowed-ip-addresses.zip",{"attackSurface":144,"codeSignals":156,"taintFlows":353,"riskAssessment":354,"analyzedAt":360},{"hooks":145,"ajaxHandlers":152,"restRoutes":153,"shortcodes":154,"cronEvents":155,"entryPointCount":11,"unprotectedCount":11},[146],{"type":147,"name":148,"callback":149,"priority":11,"file":150,"line":151},"action","plugins_loaded","boot","gryphon-verified-client-ip.php",42,[],[],[],[],{"dangerousFunctions":157,"sqlUsage":158,"outputEscaping":160,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":352},[],{"prepared":11,"raw":11,"locations":159},[],{"escaped":11,"rawEcho":34,"locations":161},[162,166,168,170,172,174,176,178,180,182,184,186,188,190,192,194,196,198,200,202,204,206,208,210,212,214,216,218,220,222,224,226,228,230,232,234,236,238,240,242,244,246,248,250,252,254,256,258,260,262,264,266,268,270,272,274,276,278,280,282,284,286,288,290,292,294,296,298,300,302,304,306,308,310,312,314,316,318,320,322,324,326,328,330,332,334,336,338,340,342,344,346,348,350],{"file":163,"line":164,"context":165},"src\u002FAdminPage.php",163,"raw output",{"file":163,"line":167,"context":165},166,{"file":163,"line":169,"context":165},168,{"file":163,"line":171,"context":165},170,{"file":163,"line":173,"context":165},172,{"file":163,"line":175,"context":165},174,{"file":163,"line":177,"context":165},176,{"file":163,"line":179,"context":165},193,{"file":163,"line":181,"context":165},196,{"file":163,"line":183,"context":165},202,{"file":163,"line":185,"context":165},205,{"file":163,"line":187,"context":165},211,{"file":163,"line":189,"context":165},215,{"file":163,"line":191,"context":165},220,{"file":163,"line":193,"context":165},225,{"file":163,"line":195,"context":165},231,{"file":163,"line":197,"context":165},236,{"file":163,"line":199,"context":165},242,{"file":163,"line":201,"context":165},245,{"file":163,"line":203,"context":165},251,{"file":163,"line":205,"context":165},253,{"file":163,"line":207,"context":165},266,{"file":163,"line":209,"context":165},274,{"file":163,"line":211,"context":165},298,{"file":163,"line":213,"context":165},300,{"file":163,"line":215,"context":165},304,{"file":163,"line":217,"context":165},305,{"file":163,"line":219,"context":165},308,{"file":163,"line":221,"context":165},310,{"file":163,"line":223,"context":165},311,{"file":163,"line":225,"context":165},318,{"file":163,"line":227,"context":165},321,{"file":163,"line":229,"context":165},322,{"file":163,"line":231,"context":165},329,{"file":163,"line":233,"context":165},332,{"file":163,"line":235,"context":165},333,{"file":163,"line":237,"context":165},341,{"file":163,"line":239,"context":165},344,{"file":163,"line":241,"context":165},345,{"file":163,"line":243,"context":165},347,{"file":163,"line":245,"context":165},349,{"file":163,"line":247,"context":165},355,{"file":163,"line":249,"context":165},358,{"file":163,"line":251,"context":165},360,{"file":163,"line":253,"context":165},361,{"file":163,"line":255,"context":165},366,{"file":163,"line":257,"context":165},369,{"file":163,"line":259,"context":165},372,{"file":163,"line":261,"context":165},378,{"file":163,"line":263,"context":165},379,{"file":163,"line":265,"context":165},530,{"file":163,"line":267,"context":165},534,{"file":163,"line":269,"context":165},535,{"file":163,"line":271,"context":165},549,{"file":163,"line":273,"context":165},553,{"file":163,"line":275,"context":165},560,{"file":163,"line":277,"context":165},563,{"file":163,"line":279,"context":165},568,{"file":163,"line":281,"context":165},570,{"file":163,"line":283,"context":165},576,{"file":163,"line":285,"context":165},586,{"file":163,"line":287,"context":165},590,{"file":163,"line":289,"context":165},596,{"file":163,"line":291,"context":165},597,{"file":163,"line":293,"context":165},601,{"file":163,"line":295,"context":165},602,{"file":163,"line":297,"context":165},608,{"file":163,"line":299,"context":165},613,{"file":163,"line":301,"context":165},614,{"file":163,"line":303,"context":165},615,{"file":163,"line":305,"context":165},616,{"file":163,"line":307,"context":165},617,{"file":163,"line":309,"context":165},618,{"file":163,"line":311,"context":165},619,{"file":163,"line":313,"context":165},626,{"file":163,"line":315,"context":165},627,{"file":163,"line":317,"context":165},628,{"file":163,"line":319,"context":165},629,{"file":163,"line":321,"context":165},630,{"file":163,"line":323,"context":165},631,{"file":163,"line":325,"context":165},654,{"file":163,"line":327,"context":165},658,{"file":163,"line":329,"context":165},660,{"file":163,"line":331,"context":165},665,{"file":163,"line":333,"context":165},670,{"file":163,"line":335,"context":165},671,{"file":163,"line":337,"context":165},676,{"file":163,"line":339,"context":165},679,{"file":163,"line":341,"context":165},680,{"file":163,"line":343,"context":165},709,{"file":163,"line":345,"context":165},712,{"file":163,"line":347,"context":165},734,{"file":163,"line":349,"context":165},743,{"file":163,"line":351,"context":165},752,[],[],{"summary":355,"deductions":356},"The 'gryphon-verified-client-ip' v1.2.1 plugin exhibits a generally strong security posture from a static analysis perspective, with no identified dangerous functions, SQL injection vulnerabilities, or file operations. The absence of any recorded CVEs further contributes to this positive outlook.  However, a significant concern arises from the complete lack of output escaping. With 94 total outputs and 0% properly escaped, this creates a high risk for cross-site scripting (XSS) vulnerabilities.  Any data processed or displayed by the plugin, if not meticulously sanitized by external means, could be exploited to inject malicious scripts into a user's browser.  While the plugin appears to have a minimal attack surface and no obvious vulnerabilities in its history, the unescaped output is a critical oversight that severely undermines its security.\n\nThe plugin's lack of any detected taint flows or critical\u002Fhigh severity issues is a positive indicator, suggesting that direct code execution or data manipulation vulnerabilities are unlikely based on the static analysis. The fact that all SQL queries use prepared statements is also a commendable security practice.  Despite these strengths, the critical flaw in output escaping means that the plugin is susceptible to XSS attacks.  Therefore, while the plugin has a clean vulnerability history and a limited attack surface, the unescaped output presents a clear and present danger to users.\n\nIn conclusion, the 'gryphon-verified-client-ip' v1.2.1 plugin demonstrates good practices in areas like SQL query handling and a lack of known vulnerabilities. However, the complete absence of output escaping is a major security weakness that requires immediate attention. This oversight creates a significant risk of XSS vulnerabilities, overshadowing the plugin's otherwise positive security attributes.",[357],{"reason":358,"points":359},"Unescaped output detected",7,"2026-04-16T14:51:42.951Z",{"wat":362,"direct":373},{"assetPaths":363,"generatorPatterns":367,"scriptPaths":368,"versionParams":369},[364,365,366],"\u002Fwp-content\u002Fplugins\u002Fgryphon-verified-client-ip\u002Fassets\u002Fcss\u002Fadmin-schemes.css","\u002Fwp-content\u002Fplugins\u002Fgryphon-verified-client-ip\u002Fassets\u002Fjs\u002Fadmin-schemes.js","\u002Fwp-content\u002Fplugins\u002Fgryphon-verified-client-ip\u002Fassets\u002Fjs\u002Fadmin-diagnostics.js",[],[365,366],[370,371,372],"gryphon-verified-client-ip\u002Fassets\u002Fcss\u002Fadmin-schemes.css?ver=","gryphon-verified-client-ip\u002Fassets\u002Fjs\u002Fadmin-schemes.js?ver=","gryphon-verified-client-ip\u002Fassets\u002Fjs\u002Fadmin-diagnostics.js?ver=",{"cssClasses":374,"htmlComments":377,"htmlAttributes":378,"restEndpoints":380,"jsGlobals":381,"shortcodeOutput":384},[375,376],"vcip-admin-schemes","vcip-admin-diagnostics",[],[379],"data-vcip-schemes",[],[382,383],"vcipI18n","vcipSchemeTemplate",[],{"error":386,"url":387,"statusCode":388,"statusMessage":389,"message":389},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fgryphon-verified-client-ip\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":391,"versions":392},2,[393,399],{"version":6,"download_url":24,"svn_tag_url":394,"released_at":26,"has_diff":395,"diff_files_changed":396,"diff_lines":26,"trac_diff_url":397,"vulnerabilities":398,"is_current":386},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgryphon-verified-client-ip\u002Ftags\u002F1.2.1\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fgryphon-verified-client-ip%2Ftags%2F1.2.0&new_path=%2Fgryphon-verified-client-ip%2Ftags%2F1.2.1",[],{"version":400,"download_url":401,"svn_tag_url":402,"released_at":26,"has_diff":395,"diff_files_changed":403,"diff_lines":26,"trac_diff_url":26,"vulnerabilities":404,"is_current":395},"1.2.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgryphon-verified-client-ip.1.2.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fgryphon-verified-client-ip\u002Ftags\u002F1.2.0\u002F",[],[]]