[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fqv9i1ZF4c05rfZ2dqD_AZIjO9FOHBDC3Me92CrJvnzA":3,"$febuWP3tFPeJocDm0j8GiWvAl1YquZY1-9rmoerfHR_Y":184,"$f5R22XsIcTD5qk4uD7fHyhJVx3wtmO7r3IZQS7DPZApE":189},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"discovery_status":30,"vulnerabilities":31,"developer":32,"crawl_stats":28,"alternatives":36,"analysis":137,"fingerprints":171},"instant-cookie-expire","Instant Cookie Expire","1.0.1","brechtryckaert","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrechtryckaert\u002F","\u003Cp>Limiting the cookie expire time of password protected posts. By default the cookie set when entering a password to access a password-protected post will be active for 10 days. This plugin turns this cookie into a session-based cookie. This means your visitor will need to re-enter the password if the browser was closed prior to revisiting the post.\u003C\u002Fp>\n","This plugin turns the cookie for a password-protected post into a session-based cookie.",20,2063,1,"2016-10-04T13:59:00.000Z","4.7.33","3.7.0","",[19,20,21,22,23],"cookie","password","post","protected","session","http:\u002F\u002Fwww.brechtryckaert.com\u002Fplugins","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finstant-cookie-expire.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":13,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},30,84,"2026-05-20T02:55:55.625Z",[37,58,80,103,119],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":27,"downloaded":45,"rating":27,"num_ratings":27,"last_updated":46,"tested_up_to":47,"requires_at_least":48,"requires_php":49,"tags":50,"homepage":54,"download_link":55,"security_score":56,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":57},"advanced-post-password","Advanced Post Password","1.1.2","Chema","https:\u002F\u002Fprofiles.wordpress.org\u002Fdeambulando\u002F","\u003Cp>This plugin offers advanced security features for password-protected posts\u002Fpages.\u003C\u002Fp>\n\u003Cp>Key Features:\u003Cbr \u002F>\n– Access multiple posts\u002Fpages without entering passwords repeatedly.\u003Cbr \u002F>\n– Admins can bypass password entry for protected pages.\u003Cbr \u002F>\n– Set a master URL to access all password-protected posts.\u003Cbr \u002F>\n– Option to remove WordPress-added prefixes from private and password-protected pages.\u003C\u002Fp>\n\u003Cp>To use, simply install and activate the plugin.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For assistance or queries, please reach out to us at wordpress forums. https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fadvanced-post-password\u002F\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under GPLv2 or later.\u003C\u002Fp>\n","Enhance the security of password-protected posts\u002Fpages with this plugin.",1740,"2024-11-15T16:45:00.000Z","6.7.5","6.0","7.4",[19,51,20,52,53],"page-title","post-password","remove-protected","https:\u002F\u002Fgarridodiaz.com\u002Fcategory\u002Fwp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-post-password.1.1.2.zip",92,"2026-03-15T15:16:48.613Z",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":77,"download_link":78,"security_score":68,"vuln_count":13,"unpatched_count":27,"last_vuln_date":79,"fetched_at":29},"multiple-post-passwords","Multiple Post Passwords","1.1.4","Andreas Münch","https:\u002F\u002Fprofiles.wordpress.org\u002Fandreasmuench\u002F","\u003Cp>This is a simple Plugin that lets you set multiple passwords for your password protected posts and pages.\u003C\u002Fp>\n\u003Cp>On posts\u002Fpages with password protection it will show an extra Metabox with a field to input additional passwords, one in each line.\u003C\u002Fp>\n\u003Cp>Note that if you just changed a post\u002Fpage to password protection you have to save once so that the extra field appears.\u003C\u002Fp>\n\u003Ch4>Expire passwords\u003C\u002Fh4>\n\u003Cp>You can also make passwords expire after x hours when being used. You can find the settings under Settings -> Multiple Post Passwords.\u003C\u002Fp>\n\u003Cp>Note that the actual deletion of the passwords is triggered by a cronjob which is run every 30 minutes. So even if you set your expiry time to very short, it may still take 30 minutes until the password really expires.\u003C\u002Fp>\n\u003Cp>Also note that the expiration only works for the additional passwords, not for the standard WordPress page\u002Fpost password.\u003C\u002Fp>\n\u003Ch4>Using lots of passwords on one page\u003C\u002Fh4>\n\u003Cp>If you are using lots of passwords on one page and the password check takes a long time, you should activate the alternative password check in the settings to speed up the password check.\u003C\u002Fp>\n","Set multiple passwords for your protected pages so you can give them to different users.",2000,24620,100,11,"2026-01-17T16:46:00.000Z","6.8.5","4.7.0","5.6",[75,76,20,21,22],"multiple","page","https:\u002F\u002Fwww.andreasmuench.de\u002Fwordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmultiple-post-passwords.1.1.4.zip","2023-11-28 00:00:00",{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":88,"downloaded":89,"rating":90,"num_ratings":91,"last_updated":92,"tested_up_to":93,"requires_at_least":94,"requires_php":17,"tags":95,"homepage":99,"download_link":100,"security_score":34,"vuln_count":101,"unpatched_count":27,"last_vuln_date":102,"fetched_at":29},"protected-posts-logout-button","Protected Posts Logout Button","1.4.6","Nate Reist","https:\u002F\u002Fprofiles.wordpress.org\u002Fnatereist\u002F","\u003Cp>This plugin simply adds a logout button to the content of any password protected post. Sometimes clients want a password protected page to share information with privileged individuals and the default 10 days for the cookie to expire is too long for their liking. So I wrote a little plugin to do this with AJAX and set the cookie to expire immediately, well actually 10 days in the past.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Works logged in or out as a WordPress user.\u003C\u002Fli>\n\u003Cli>Uses the same functionality WordPress uses to set post cookies.\u003C\u002Fli>\n\u003Cli>Has a simple settings page to make everything easier.\u003C\u002Fli>\n\u003Cli>Allows you to alert user they have logged out.\u003C\u002Fli>\n\u003C\u002Ful>\n","Automatically adds a logout button to your password protected content.",1000,33551,98,13,"2023-02-16T00:46:00.000Z","6.1.10","2.8",[96,97,98],"logout","password-protected-posts-logout-button","wordpress-security","http:\u002F\u002Fmindutopia.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprotected-posts-logout-button.1.4.6.zip",3,"2023-02-20 00:00:00",{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":111,"downloaded":112,"rating":68,"num_ratings":113,"last_updated":114,"tested_up_to":71,"requires_at_least":115,"requires_php":17,"tags":116,"homepage":17,"download_link":118,"security_score":68,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"password-passthrough","Password Passthrough","2.0.0","KaeruCT","https:\u002F\u002Fprofiles.wordpress.org\u002Fkaeruct\u002F","\u003Cp>This plugin allows passwords for password-protected pages\u002Fposts to be passed directly through the URL.\u003C\u002Fp>\n\u003Cp>The query string parameter that should contain the password is \u003Ccode>pw\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>For example, if the URL of your post is \u003Ccode>http:\u002F\u002Fmyblog.com\u002Fpassword-protected-page\u002F\u003C\u002Fcode> and the password is \u003Ccode>PASSWORD\u003C\u002Fcode>,\u003Cbr \u002F>\nthen just append \u003Ccode>?pw=PASSWORD\u003C\u002Fcode> to it.\u003C\u002Fp>\n\u003Cp>If the URL already contains a query string (for example, \u003Ccode>http:\u002F\u002Fmyblog.com\u002F?p=5\u003C\u002Fcode>), then be sure to append \u003Ccode>&pw=PASSWORD\u003C\u002Fcode> instead.\u003C\u002Fp>\n","This plugin allows passwords for password-protected pages\u002Fposts to be passed directly through the URL.",600,6736,6,"2025-06-21T19:23:00.000Z","5.4",[76,20,21,22,117],"url","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpassword-passthrough.zip",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":68,"num_ratings":129,"last_updated":130,"tested_up_to":131,"requires_at_least":132,"requires_php":17,"tags":133,"homepage":17,"download_link":136,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"p5","p5 : Plenty of Perishable Passwords for Protected Posts","1.4","Cyril Batillat","https:\u002F\u002Fprofiles.wordpress.org\u002Fcyrilbatillat\u002F","\u003Cp>By default, WordPress can protect each post with one and only password. This plugin gives you the possibility to assign multiple passwords on each post, with an expiration date.\u003C\u002Fp>\n","Specify multiple passwords for pages \u002F posts \u002F custom post  types. An expiration date can be set for each password.",40,3399,5,"2014-05-20T09:45:00.000Z","3.9.40","3.5",[134,20,135],"expiration","protected-posts","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fp5.1.4.zip",{"attackSurface":138,"codeSignals":150,"taintFlows":157,"riskAssessment":158,"analyzedAt":170},{"hooks":139,"ajaxHandlers":146,"restRoutes":147,"shortcodes":148,"cronEvents":149,"entryPointCount":27,"unprotectedCount":27},[140],{"type":141,"name":142,"callback":143,"file":144,"line":145},"filter","post_password_expires","__return_zero","wp-instant-cookie-expire.php",25,[],[],[],[],{"dangerousFunctions":151,"sqlUsage":152,"outputEscaping":154,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":156},[],{"prepared":27,"raw":27,"locations":153},[],{"escaped":27,"rawEcho":27,"locations":155},[],[],[],{"summary":159,"deductions":160},"The \"instant-cookie-expire\" v1.0.1 plugin exhibits a seemingly strong security posture based on the provided static analysis. There are no identified dangerous functions, SQL queries are all prepared, and output is consistently escaped. Furthermore, the plugin has no recorded vulnerability history, which is a positive indicator. The absence of file operations and external HTTP requests also reduces the potential attack surface.\n\nHowever, the most significant concern arising from this analysis is the complete lack of security checks, including nonce checks, capability checks, and any authentication or permission callbacks for its entry points. While the current analysis shows zero entry points, this might be a result of the analysis scope rather than an actual lack of potential entry points. If any functionality were to be added or if the analysis missed potential hooks, the absence of these fundamental security mechanisms would leave the plugin highly vulnerable to various attacks, especially if any user-controllable data is processed.\n\nIn conclusion, while the current codebase appears to be free of known vulnerabilities and follows good practices regarding SQL and output handling, the complete absence of any authentication or authorization checks is a critical oversight. This presents a significant potential risk should any user-facing functionality be exposed or developed in the future. The plugin's strength lies in its clean handling of data it processes, but its weakness is the lack of a safety net for its execution context.",[161,164,166,168],{"reason":162,"points":163},"No capability checks detected",10,{"reason":165,"points":163},"No nonce checks detected",{"reason":167,"points":163},"No auth checks on AJAX handlers",{"reason":169,"points":163},"No permission callbacks on REST API","2026-03-16T22:44:53.739Z",{"wat":172,"direct":177},{"assetPaths":173,"generatorPatterns":174,"scriptPaths":175,"versionParams":176},[],[],[],[],{"cssClasses":178,"htmlComments":179,"htmlAttributes":180,"restEndpoints":181,"jsGlobals":182,"shortcodeOutput":183},[],[],[],[],[],[],{"error":185,"url":186,"statusCode":187,"statusMessage":188,"message":188},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Finstant-cookie-expire\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":190,"versions":191},2,[192,199],{"version":6,"download_url":193,"svn_tag_url":194,"released_at":28,"has_diff":195,"diff_files_changed":196,"diff_lines":28,"trac_diff_url":197,"vulnerabilities":198,"is_current":185},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finstant-cookie-expire.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Finstant-cookie-expire\u002Ftags\u002F1.0.1\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Finstant-cookie-expire%2Ftags%2F1.0&new_path=%2Finstant-cookie-expire%2Ftags%2F1.0.1",[],{"version":200,"download_url":201,"svn_tag_url":202,"released_at":28,"has_diff":195,"diff_files_changed":203,"diff_lines":28,"trac_diff_url":28,"vulnerabilities":204,"is_current":195},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finstant-cookie-expire.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Finstant-cookie-expire\u002Ftags\u002F1.0\u002F",[],[]]