[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fuaqPAqKipIVa23jimDzSWJGBwP1oL5tmBOaWixkVg1k":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":13,"download_link":21,"security_score":22,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":24,"vulnerabilities":25,"developer":26,"crawl_stats":23,"alternatives":34,"analysis":133,"fingerprints":167},"howdy","Howdy","1.0.0","Brad Parbs","https:\u002F\u002Fprofiles.wordpress.org\u002Fbradparbs\u002F","\u003Cp>Remove “Howdy” from the admin bar.\u003C\u002Fp>\n","A WordPress plugin to remove \"Howdy\" from the admin bar.",0,2939,"","5.8.13","5.2","5.6",[18,19,20,4],"admin","admin-bar","dashboard","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhowdy.1.0.0.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":27,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":29,"avg_security_score":30,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"bradparbs",16,3240,88,30,86,"2026-04-04T10:44:37.355Z",[35,53,77,98,117],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":32,"num_ratings":31,"last_updated":45,"tested_up_to":46,"requires_at_least":15,"requires_php":13,"tags":47,"homepage":13,"download_link":50,"security_score":51,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":52},"hide-admin-bar-from-non-admins","Hide Admin Bar from Non-Admins","1.0.2","Andrew Lima","https:\u002F\u002Fprofiles.wordpress.org\u002Fandrewza\u002F","\u003Ch3>Install, activate, and you’re done.\u003C\u002Fh3>\n\u003Cp>This plugin hides the WordPress Toolbar (admin bar) for all visitors and users without the ‘administrator’ role. It’s a very simple plugin with no settings to configure.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Use this plugin for sites with only one admin who needs access to the dashboard and the admin bar.\u003C\u002Fli>\n\u003Cli>This plugin is super lightweight, with just a few lines of code.\u003C\u002Fli>\n\u003Cli>If you need to show the toolbar for other user roles, use the filter \u003Ccode>habfna_show_admin_bar_roles\u003C\u002Fcode>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin is a tweak of the code by Yoast to hide the admin bar for non-admins only.\u003C\u002Fp>\n","Hides the WordPress toolbar (admin bar) for all non-admin users. Simple plugin with no settings to configure.",10000,237108,"2024-11-18T14:39:00.000Z","6.7.5",[19,48,20,49],"adminbar","toolbar","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhide-admin-bar-from-non-admins.1.0.2.zip",92,"2026-03-15T15:16:48.613Z",{"slug":54,"name":55,"version":56,"author":57,"author_profile":58,"description":59,"short_description":60,"active_installs":61,"downloaded":62,"rating":63,"num_ratings":64,"last_updated":65,"tested_up_to":66,"requires_at_least":67,"requires_php":68,"tags":69,"homepage":73,"download_link":74,"security_score":22,"vuln_count":75,"unpatched_count":11,"last_vuln_date":76,"fetched_at":52},"admin-bar-dashboard-control","Admin Bar & Dashboard Access Control","1.2.9","Collins Agbonghama","https:\u002F\u002Fprofiles.wordpress.org\u002Fcollizo4sky\u002F","\u003Cp>Simple plugin for disabling admin bar and preventing access to WordPress dashboard based on a user’s roles.\u003C\u002Fp>\n\u003Cp>It is that simple 😀\u003C\u002Fp>\n\u003Ch3>Plugins you will like:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Ffusewp.com\u002F\" rel=\"nofollow ugc\">FuseWP\u003C\u002Fa>\u003C\u002Fstrong>: Connect wordPress to marketing platforms and sync users to your email list.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-user-avatar\u002F\" rel=\"ugc\">ProfilePress\u003C\u002Fa>\u003C\u002Fstrong>: A simple yet powerful eCommerce and paid membership plugin for accepting one-time and recurring payments and selling subscriptions via Stripe & PayPal, restrict content and control user access. \u003Ca href=\"https:\u002F\u002Fprofilepress.com\u002F\" rel=\"nofollow ugc\">Learn more\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fmailoptin.io\u002F\" rel=\"nofollow ugc\">MailOptin\u003C\u002Fa>\u003C\u002Fstrong> – The best WordPress email optin forms, email automation & newsletters plugin in the market.\u003C\u002Fli>\n\u003C\u002Ful>\n","Disable admin bar and control users access to WordPress dashboard.",3000,70187,94,18,"2025-12-04T13:26:00.000Z","6.9.4","6.0","5.4",[19,70,71,72,49],"admin-dashboard","disable-admin-bar","disable-toolbar","https:\u002F\u002Fprofilepress.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-bar-dashboard-control.1.2.9.zip",1,"2023-10-31 00:00:00",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":87,"num_ratings":88,"last_updated":89,"tested_up_to":66,"requires_at_least":90,"requires_php":16,"tags":91,"homepage":13,"download_link":97,"security_score":22,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":52},"role-based-redirect","Role Based Redirect","1.6","Yasar Khalifa","https:\u002F\u002Fprofiles.wordpress.org\u002Fyasirkhalifa\u002F","\u003Cp>Role Based Redirect allows you to customize the login and logout redirection URLs based on user roles. Additionally, you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Redirect users after login based on their role.\u003C\u002Fli>\n\u003Cli>Redirect users after logout based on their role.\u003C\u002Fli>\n\u003Cli>Hide the WordPress admin bar for selected user roles.\u003C\u002Fli>\n\u003Cli>Restrict dashboard access by user role.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin is useful for membership sites, multi-role websites, or any WordPress setup where you want to provide a tailored user experience.\u003C\u002Fp>\n","Redirect users after login\u002Flogout by role. Optionally hide admin bar and block dashboard access for selected roles.",2000,24663,96,17,"2025-07-18T04:36:00.000Z","4.0",[92,93,94,95,96],"hide-admin-bar","redirection","restrict-dashboard","role","user","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frole-based-redirect.zip",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":85,"downloaded":106,"rating":22,"num_ratings":107,"last_updated":108,"tested_up_to":109,"requires_at_least":110,"requires_php":13,"tags":111,"homepage":114,"download_link":115,"security_score":116,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":52},"wp-hide-dashboard","WP Hide Dashboard","2.2.1","Drew Jaynes","https:\u002F\u002Fprofiles.wordpress.org\u002Fdrewapicture\u002F","\u003Cp>A simple plugin that removes the Dashboard menu, the Personal Options section and the Help link on the Profile page, hides the Dashboard links in the toolbar menu (if activated), and prevents Dashboard access to users assigned to the \u003Cem>Subscriber\u003C\u002Fem> role. Useful if you allow your subscribers to edit their own profiles, but don’t want them wandering around your WordPress admin section.\u003C\u002Fp>\n\u003Cp>Users belonging to any of the other WordPress roles will continue to see and have access to the other sections of the WordPress admin that correspond to their role’s capabilities.\u003C\u002Fp>\n\u003Cp>WP Hide Dashboard has been tested with WordPress in Single mode and Multisite mode, and works with both of them.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note: Version 2.2 requires a minimum of WordPress 3.4. If you are running a version less than that, please upgrade your WordPress install before installing or upgrading.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Works With:\u003C\u002Fh4>\n\u003Cp>The following is a list of plugins that work well (no conflicts) with the WP Hide Dashboard plugin:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fmembers\u002F\" title=\"Members\" rel=\"ugc\">Members\u003C\u002Fa> by Justin Tadlock\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fadmin-bar-minimiser\u002F\" title=\"Admin Bar Minimiser\" rel=\"ugc\">Admin Bar Minimiser\u003C\u002Fa> by David Gwyer\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Flogged-out-admin-bar\u002F\" title=\"Logged Out Admin Bar\" rel=\"ugc\">Logged Out Admin Bar\u003C\u002Fa> by Peter Westwood\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Known Conflicts:\u003C\u002Fh4>\n\u003Cp>The following is a list of plugins that are known to have conflicts with the WP Hide Dashboard plugin:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.im-web-gefunden.de\u002Fwordpress-plugins\u002Frole-manager\u002F\" title=\"Role Manager\" rel=\"nofollow ugc\">Role Manager\u003C\u002Fa> (Use the \u003Ca href=\"http:\u002F\u002Fwww.im-web-gefunden.de\u002Fwordpress-plugins\u002Fiwg-hide-dashboard\u002F\" title=\"IWG Hide Dashboard\" rel=\"nofollow ugc\">IWG Hide Dashboard\u003C\u002Fa> plugin to hide the dashboard link.)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Frole-scoper\u002F\" title=\"Role Scoper\" rel=\"ugc\">Role Scoper\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Ffresh-page\u002F\" title=\"Flutter\" rel=\"ugc\">Flutter\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Note: Please let me know if there are other plugins that conflict with WP Hide Dashboard, and I’ll add them to the list.\u003C\u002Fp>\n\u003Ch4>Support:\u003C\u002Fh4>\n\u003Cp>Support is provided at: http:\u002F\u002Fwphidedash.org\u002F\u003C\u002Fp>\n","Hide the Dashboard menu, Personal Options section and Help link on the Profile page from your subscribers when they are logged in.",175265,20,"2017-11-28T14:44:00.000Z","4.1.0","3.4.0",[18,19,112,20,113],"administration","hide","http:\u002F\u002Fwphidedash.org\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-hide-dashboard.2.2.1.zip",85,{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":125,"downloaded":126,"rating":11,"num_ratings":11,"last_updated":127,"tested_up_to":128,"requires_at_least":129,"requires_php":13,"tags":130,"homepage":131,"download_link":132,"security_score":116,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":52},"change-howdy","Change Howdy","2.0","Pankaj Anupam","https:\u002F\u002Fprofiles.wordpress.org\u002Fpankajanupam\u002F","\u003Cp>Change Howdy to welcome or any other text\u003C\u002Fp>\n","Change Howdy to welcome or any other text",60,3708,"2020-01-22T09:42:00.000Z","5.3.21","2.8",[19,118],"http:\u002F\u002Fpankajanupam.com\u002Fwordpress-plugins\u002Fchange-howdy\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchange-howdy.zip",{"attackSurface":134,"codeSignals":150,"taintFlows":157,"riskAssessment":158,"analyzedAt":166},{"hooks":135,"ajaxHandlers":146,"restRoutes":147,"shortcodes":148,"cronEvents":149,"entryPointCount":11,"unprotectedCount":11},[136,142],{"type":137,"name":138,"callback":139,"priority":140,"file":141,"line":88},"filter","admin_bar_menu","closure",999,"howdy.php",{"type":143,"name":144,"callback":139,"file":141,"line":145},"action","admin_enqueue_scripts",39,[],[],[],[],{"dangerousFunctions":151,"sqlUsage":152,"outputEscaping":154,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":11,"bundledLibraries":156},[],{"prepared":11,"raw":11,"locations":153},[],{"escaped":11,"rawEcho":11,"locations":155},[],[],[],{"summary":159,"deductions":160},"The \"howdy\" v1.0.0 plugin exhibits a remarkably clean static analysis report, showing no identified entry points like AJAX handlers, REST API routes, or shortcodes that lack authentication checks. The code also demonstrates adherence to secure coding practices, with no dangerous functions, all SQL queries utilizing prepared statements, and all output properly escaped. Furthermore, there are no reported file operations, external HTTP requests, or bundled libraries, which simplifies the security assessment. The plugin's vulnerability history is also clear, with no known CVEs recorded, indicating a lack of publicly disclosed security flaws.  \n\nDespite the pristine static analysis and vulnerability history, the complete absence of nonces and capability checks across all potential, albeit currently non-existent, entry points is a notable omission. While there are no active entry points to exploit, this pattern suggests a potential lack of defensive security considerations in the plugin's design philosophy. If future versions introduce new features that create entry points, the established pattern of omitting these crucial security checks could become a significant risk.  \n\nIn conclusion, \"howdy\" v1.0.0 presents a strong security posture based on its current code and historical data, characterized by a minimal attack surface and adherence to best practices in SQL and output handling. However, the complete lack of any nonce or capability checks, even in areas where they are not strictly required by the current code, is a weakness that warrants attention for future development and maintenance.",[161,164],{"reason":162,"points":163},"No nonce checks implemented",10,{"reason":165,"points":163},"No capability checks implemented","2026-03-17T06:03:43.492Z",{"wat":168,"direct":173},{"assetPaths":169,"generatorPatterns":170,"scriptPaths":171,"versionParams":172},[],[],[],[],{"cssClasses":174,"htmlComments":176,"htmlAttributes":177,"restEndpoints":178,"jsGlobals":179,"shortcodeOutput":180},[175],"display-name",[],[],[],[],[]]