[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fBrMNLKEx3TPaJ9Ag6FARFA5t1clovLAz7uFIGNvdz4o":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":36,"analysis":133,"fingerprints":177},"login-customiser","Login Customiser","0.1","Poetic Coding","https:\u002F\u002Fprofiles.wordpress.org\u002Fmikegrant\u002F","\u003Cp>A Simple plugin to customise WP-Login, allowing you to change where users are redirected to upon successful login.\u003C\u002Fp>\n","A Simple plugin to customise WP-Login, allowing you to change where users are redirected to upon successful login.",10,2229,0,"2013-08-21T08:03:00.000Z","3.6.1","2.9","",[19,20,21,22],"login","login-redirect","members","private","http:\u002F\u002Fwww.poeticcoding.co.uk\u002Fplugins\u002Flogin-customiser","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flogin-customiser.0.1.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":30,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":25,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"mikegrant",2,20,30,84,"2026-04-04T03:47:17.198Z",[37,58,77,98,117],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":56,"download_link":57,"security_score":47,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"private-website","Private Website – Login Required","0.2.9","roehler","https:\u002F\u002Fprofiles.wordpress.org\u002Froehler\u002F","\u003Cp>\u003Cstrong>Private Website – Login Required\u003C\u002Fstrong> is a simple and straightforward WordPress plugin designed to restrict access to your website. By activating this plugin, users must be logged in to view any content on your site. This is ideal for websites that host sensitive or exclusive content and want to ensure that only authenticated users can access it.\u003C\u002Fp>\n\u003Cp>There are no complicated settings to configure. Simply activate the plugin to enforce the login requirement and deactivate it to remove the restriction.\u003C\u002Fp>\n\u003Cp>This plugin was developed by \u003Ca href=\"https:\u002F\u002Froehler.nrw\" rel=\"nofollow ugc\">Robin Oehler\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>Private Website – Login Required uses \u003Ca href=\"https:\u002F\u002Fappsero.com\" rel=\"nofollow ugc\">Appsero\u003C\u002Fa> SDK to collect some telemetry data upon user’s confirmation. This helps us to troubleshoot problems faster & make product improvements.\u003C\u002Fp>\n\u003Cp>Appsero SDK does not gather any data by default. The SDK only starts gathering basic telemetry data when a user allows it via the admin notice. We collect the data to ensure a great user experience for all our users.\u003C\u002Fp>\n\u003Cp>Integrating Appsero SDK DOES NOT IMMEDIATELY start gathering data, without confirmation from users in any case.\u003C\u002Fp>\n\u003Cp>Learn more about how \u003Ca href=\"https:\u002F\u002Fappsero.com\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">Appsero collects and uses this data\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Bugs & Feedback\u003C\u002Fh3>\n\u003Cp>Your feedback is important to me. If you find mistakes, have wishes, ideas, or suggestions, please send an email to \u003Ca href=\"mailto:mail@roehler.nrw\" rel=\"nofollow ugc\">mail@roehler.nrw\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Legal notice (German): \u003Ca href=\"https:\u002F\u002Froehler.nrw\u002Fimpressum\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Froehler.nrw\u002Fimpressum\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>You are free to use it on any website across countries to protect the privacy of your users.\u003C\u002Fp>\n\u003Cp>Note: Activating this plugin cannot guarantee that your website is completely compliant with GDPR. When using Google Analytics, Facebook pixels, or other similar tools, additional measures may need to be taken.\u003C\u002Fp>\n","This plugin requires users to be logged in to view the website. Activate the plugin to enforce login, and deactivate it to remove the restriction.",200,2528,100,1,"2025-09-08T20:58:00.000Z","6.8.5","5.0","7.0",[19,21,22,54,55],"restrict-access","user-authentication","https:\u002F\u002Fwww.roehler.nrw","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprivate-website.0.2.9.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":31,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":17,"tags":72,"homepage":75,"download_link":76,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"simple-members-area","Simple Members Area","1.0","3pointross","https:\u002F\u002Fprofiles.wordpress.org\u002F3pointross\u002F","\u003Cp>There are a lot of really well done, inclusive membership plugins out there… but sometimes they are overkill. Simple Members Area\u003Cbr \u002F>\nallows you to setup a section of your site that logged in users can access in a matter of minutes.\u003C\u002Fp>\n\u003Cp>The premise is simple, you create your “members area” by creating pages and saving them as “private.” Then you can choose which\u003Cbr \u002F>\nprivate page your members should be redirected to upon login. Conceivably this page would have links to your other private pages\u003Cbr \u002F>\n(if there are any.)\u003C\u002Fp>\n\u003Cp>With this plugin you can have a default landing page or have a specific page for each user as well.\u003C\u002Fp>\n","A simple way to create and manage a members area in WordPress.",70,6755,90,"2014-08-26T14:24:00.000Z","3.9.40","3.8",[73,74,19,21,22],"area","client","http:\u002F\u002Fwww.3.7designs.co\u002Fblog\u002Fwordpress-simple-members-area","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-members-area.zip",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":85,"num_ratings":31,"last_updated":87,"tested_up_to":88,"requires_at_least":89,"requires_php":17,"tags":90,"homepage":96,"download_link":97,"security_score":25,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"buddyforms-custom-login-page","BuddyForms Custom Login","1.1.14","Themekraft","https:\u002F\u002Fprofiles.wordpress.org\u002Fthemekraft\u002F","\u003Cp>Create a fully customized login and registration experience for your WordPress website. Seamlessly integrates with BuddyPress. Ritch Features to enhance your user login and registration processes.\u003C\u002Fp>\n\u003Cp>Restrict content on your website. With this plugin, you can turn your website into a private network, accessible only to registered members. Customize the login and registration forms to match your site’s branding. You have full control over the login url, the login redirect and the registartion form.\u003C\u002Fp>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Custom Login Form\u003C\u002Fstrong>: Create a personalized login form that matches your website’s design and branding.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Restrict Content\u003C\u002Fstrong>: Choose which pages, posts, or custom post types should be accessible to the public and make the rest members only.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Private Network\u003C\u002Fstrong>: Transform your WordPress site into a private network by restricting access to non-registered users.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Members Only\u003C\u002Fstrong>: Ensure that your content is exclusive to registered members, providing them with a unique user experience.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Seamless integration with BuddyPress\u003C\u002Fh3>\n\u003Cp>Seamless integration with BuddyPress Use this plugin to create a custom BuddyPress Login\u003C\u002Fp>\n\u003Ch3>Create a Intranet with BuddyPress and Buddyforms\u003C\u002Fh3>\n\u003Ch3>Restrict the site access and create a private community\u003C\u002Fh3>\n\u003Cp>Restrict your site and network and enable acces to individuell pages or complete post types.\u003C\u002Fp>\n\u003Cp>Redirect logged off users to a login and create a private site or network\u003C\u002Fp>\n\u003Cp>Select public Accessible Pages\u003C\u002Fp>\n\u003Cp>Select public Accessible Post Types\u003C\u002Fp>\n\u003Ch3>Overwrite the default WordPress Login\u003C\u002Fh3>\n\u003Cp>Select the page you want to use for the global Login and define how to display the Login\u003Cbr \u002F>\n a) overwrite the page content\u003Cbr \u002F>\n b) Above the content\u003Cbr \u002F>\n c) Under the content\u003C\u002Fp>\n\u003Cp>Use the Login Block\u003C\u002Fp>\n\u003Cp>Its Gutenberg ready and can be used in any Gutenberg Editor as Login Block. Create Custom Logins with a Block\u003C\u002Fp>\n\u003Cp>Use the Shortcodes everywhere\u003C\u002Fp>\n\u003Cp>[bf_login_form]\u003C\u002Fp>\n\u003Ch3>Options:\u003C\u002Fh3>\n\u003Cp>redirect_url  –> is optional\u003Cbr \u002F>\nAfter successful login, redirect to the given URL\u003C\u002Fp>\n\u003Ch3>Label options\u003C\u002Fh3>\n\u003Cp>title –> is optional | default values: Login\u003Cbr \u002F>\nlabel_username –> is optional | default values: Username or Email Address\u003Cbr \u002F>\nlabel_password –> is optional | default values: Password\u003Cbr \u002F>\nlabel_remember –> is optional | default values: Remember Me\u003Cbr \u002F>\nlabel_log_in –> is optional | default values: Log In\u003Cbr \u002F>\nExamples\u003C\u002Fp>\n\u003Cp>[bf_login_form redirect_url=”\u002Ftest-shortcodes”]\u003C\u002Fp>\n\u003Ch3>Display Registration Link?\u003C\u002Fh3>\n\u003Cp>Select a registration page to rewrite the registration Link\u003C\u002Fp>\n\u003Ch3>Redirect after Login\u003C\u002Fh3>\n\u003Cp>Select a page you like to use for the redirect.\u003Cbr \u002F>\nredirect to the user profile or any custom URL\u003C\u002Fp>\n\u003Ch3>Documentation & Support\u003C\u002Fh3>\n\u003Cblockquote>\n\u003Ch4>Extensive Documentation and Support\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>All code is neat, clean and well documented (inline as well as in the documentation).\u003C\u002Fli>\n\u003Cli>The BuddyForms Documentation with many how-to’s will help you on your way.\u003C\u002Fli>\n\u003Cli>Find our Getting Started, How-to and Developer Docs on \u003Ca href=\"http:\u002F\u002Fdocs.buddyforms.com\u002F\" rel=\"nofollow ugc\">docs.buddyforms.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>or watch one of our \u003Ca href=\"https:\u002F\u002Fthemekraft.com\u002Fbuddyforms-videos\u002F\" rel=\"nofollow ugc\">Video Tutorials\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>If you still get stuck somewhere, our support gets you back on the right track. You can find all help buttons in your BuddyForms Settings Panel in your WP Dashboard and the Help Center!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fblockquote>\n","Custom Login, Custom Login Redirect, Custom Registartion Link, Registation Forms",60,8799,"2023-12-27T04:29:00.000Z","6.4.8","3.9",[91,92,93,94,95],"custom-login","login-form","members-only","private-network","restrict-content","https:\u002F\u002Fthemekraft.com\u002Fproducts\u002Fcustom-login\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbuddyforms-custom-login-page.1.1.14.zip",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":32,"downloaded":106,"rating":47,"num_ratings":107,"last_updated":108,"tested_up_to":109,"requires_at_least":110,"requires_php":111,"tags":112,"homepage":115,"download_link":116,"security_score":47,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"tr-register-only","TR Register Only","2.0.0","techieresource","https:\u002F\u002Fprofiles.wordpress.org\u002Ftechieresource\u002F","\u003Cp>\u003Cstrong>TR Register Only\u003C\u002Fstrong> makes your entire WordPress site private. Once enabled, only logged-in users can access any page, post, or custom post type. Everyone else is redirected to the login page (or a custom URL of your choice).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>✅ One-click enable\u002Fdisable toggle\u003C\u002Fli>\n\u003Cli>🔒 Role-based access control — set minimum required user role\u003C\u002Fli>\n\u003Cli>↩️ Redirect to WordPress login page or any custom URL\u003C\u002Fli>\n\u003Cli>💬 Custom message shown on the login page\u003C\u002Fli>\n\u003Cli>📋 Whitelist specific pages for public access (e.g. pricing, landing pages)\u003C\u002Fli>\n\u003Cli>🏠 Optionally whitelist the home\u002Ffront page\u003C\u002Fli>\n\u003Cli>📡 Optionally restrict REST API to authenticated users\u003C\u002Fli>\n\u003Cli>🧹 Clean uninstall — removes all data when deleted\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Perfect for:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Private\u002Fmembers-only communities\u003C\u002Fli>\n\u003Cli>Staging and development sites\u003C\u002Fli>\n\u003Cli>Corporate intranets\u003C\u002Fli>\n\u003Cli>Schools and educational platforms\u003C\u002Fli>\n\u003Cli>Subscription-based content sites\u003C\u002Fli>\n\u003C\u002Ful>\n","Restrict your WordPress site to registered\u002Flogged-in users only. Perfect for private communities, staging sites, and intranet portals.",4376,3,"2026-03-01T21:08:00.000Z","6.7.5","5.6","7.4",[19,93,22,113,114],"registration","restrict","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftr-register-only\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftr-register-only.2.0.0.zip",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":13,"downloaded":125,"rating":13,"num_ratings":13,"last_updated":126,"tested_up_to":127,"requires_at_least":51,"requires_php":111,"tags":128,"homepage":131,"download_link":132,"security_score":47,"vuln_count":13,"unpatched_count":13,"last_vuln_date":26,"fetched_at":27},"cfb-must-login","CFB Must Login","1.0.0","Code For Broke","https:\u002F\u002Fprofiles.wordpress.org\u002Fcodeforbroke\u002F","\u003Cp>Must Login is a lightweight, user-friendly plugin that allows you to require login for your entire site with just one click. Perfect for membership sites, private blogs, intranets, or any site that needs to restrict access to registered users only.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>One-Click Toggle\u003C\u002Fstrong> – Enable or disable login requirement instantly from the admin bar\u003C\u002Fli>\n\u003Cli>\u003Cstrong>REST API Protection\u003C\u002Fstrong> – Configurable authentication requirement for REST API endpoints\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Automatic Cache Clearing\u003C\u002Fstrong> – Automatically clears popular caching plugins when toggling protection\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Bar Status Indicator\u003C\u002Fstrong> – Always see at a glance whether login is required\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Simple Settings Page\u003C\u002Fstrong> – Easy-to-use settings interface\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Override\u003C\u002Fstrong> – Administrators always have access, even when login is required\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Redirects\u003C\u002Fstrong> – Users are redirected to login and then back to their intended page\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Selective Endpoint Access\u003C\u002Fstrong> – Allow specific REST API endpoints for forms and authentication\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cache Compatibility\u003C\u002Fstrong> – Works with WP Super Cache, W3 Total Cache, WP Rocket, and more\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No Configuration Needed\u003C\u002Fstrong> – Works perfectly out of the box\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lightweight\u003C\u002Fstrong> – Minimal impact on site performance\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Translation Ready\u003C\u002Fstrong> – Fully internationalized and ready for translation\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Install and activate the plugin\u003C\u002Fli>\n\u003Cli>Click the lock icon in the admin bar to toggle login requirement\u003C\u002Fli>\n\u003Cli>That’s it! Your site is now protected\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>When enabled, all visitors must log in to view any page on your site. Administrators can quickly toggle this on or off from anywhere on the site using the admin bar.\u003C\u002Fp>\n\u003Ch3>Developer Documentation\u003C\u002Fh3>\n\u003Ch4>Filters\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>cfb_must_login_redirect_url\u003C\u002Fstrong> – Customize the login redirect URL\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter('cfb_must_login_redirect_url', function($redirect_url, $redirect_to) {\n    return 'https:\u002F\u002Fexample.com\u002Fcustom-login';\n}, 10, 2);\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>cfb_must_login_allowed_rest_routes\u003C\u002Fstrong> – Allow additional REST API endpoints\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter('cfb_must_login_allowed_rest_routes', function($routes) {\n    $routes[] = '\u002Fmy-plugin\u002Fv1\u002Fpublic';\n    return $routes;\n});\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Actions\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>cfb_must_login_clear_cache\u003C\u002Fstrong> – Triggered when cache is cleared\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_action('cfb_must_login_clear_cache', function() {\n    \u002F\u002F Custom cache clearing logic\n});\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Capabilities\u003C\u002Fh4>\n\u003Cp>The plugin uses the \u003Ccode>cfb_must_login_manage\u003C\u002Fcode> capability, which is mapped to \u003Ccode>manage_options\u003C\u002Fcode> by default. You can customize this using the \u003Ccode>map_meta_cap\u003C\u002Fcode> filter.\u003C\u002Fp>\n","Require users to log in before viewing your site with easy admin toggle controls. Includes REST API protection and automatic cache clearing.",112,"2025-12-31T18:50:00.000Z","6.9.4",[19,21,22,129,130],"rest-api","security","https:\u002F\u002Fgithub.com\u002Fcodeforbroke\u002Fmust-login","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcfb-must-login.zip",{"attackSurface":134,"codeSignals":153,"taintFlows":164,"riskAssessment":165,"analyzedAt":176},{"hooks":135,"ajaxHandlers":149,"restRoutes":150,"shortcodes":151,"cronEvents":152,"entryPointCount":13,"unprotectedCount":13},[136,141,145],{"type":137,"name":138,"callback":139,"file":140,"line":32},"action","admin_init","registerOptions","login-customiser.php",{"type":137,"name":142,"callback":143,"file":140,"line":144},"admin_menu","adminMenu",21,{"type":137,"name":146,"callback":147,"priority":11,"file":140,"line":148},"login_redirect","redirect_login",23,[],[],[],[],{"dangerousFunctions":154,"sqlUsage":155,"outputEscaping":157,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":163},[],{"prepared":13,"raw":13,"locations":156},[],{"escaped":31,"rawEcho":31,"locations":158},[159,162],{"file":140,"line":160,"context":161},97,"raw output",{"file":140,"line":160,"context":161},[],[],{"summary":166,"deductions":167},"The \"login-customiser\" v0.1 plugin exhibits a generally positive security posture based on the provided static analysis. The absence of any reported vulnerabilities in its history, coupled with the lack of identified dangerous functions, SQL injection risks (all queries use prepared statements), and file operations, suggests a developer mindful of secure coding practices.  Furthermore, the complete lack of external HTTP requests and taint analysis findings is encouraging.  However, the analysis does highlight some areas for improvement.  The presence of unescaped output for 50% of the identified outputs is a concern, as this could potentially lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is not handled correctly. The complete lack of nonce and capability checks, while currently not exposing a direct attack surface according to the analysis, represents a potential weakness. If new entry points were introduced in future versions, these would immediately become exploitable without these fundamental security checks.",[168,171,174],{"reason":169,"points":170},"Unescaped output (50% of 4 total)",6,{"reason":172,"points":173},"No nonce checks",5,{"reason":175,"points":173},"No capability checks","2026-03-17T00:46:52.901Z",{"wat":178,"direct":183},{"assetPaths":179,"generatorPatterns":180,"scriptPaths":181,"versionParams":182},[],[],[],[],{"cssClasses":184,"htmlComments":185,"htmlAttributes":186,"restEndpoints":187,"jsGlobals":188,"shortcodeOutput":189},[],[],[],[],[],[]]