[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fG0hqWH9sxg4bNT_kYZVCM3nk5eOyRg73CtFK1Q0ruXk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":63,"crawl_stats":38,"alternatives":70,"analysis":171,"fingerprints":463},"login-sidebar-widget","Login Widget With Shortcode","6.1.2","aviplugins.com","https:\u002F\u002Fprofiles.wordpress.org\u002Favimegladon\u002F","\u003Cul>\n\u003Cli>This is a simple login form in the widget.\u003C\u002Fli>\n\u003Cli>Compatible with WordPress Multisite Installation.\u003C\u002Fli>\n\u003Cli>Use this shortcode [login_widget] to use login form in your pages\u002F posts. \u003C\u002Fli>\n\u003Cli>Just install the plugin and add the login widget in the sidebar. \u003C\u002Fli>\n\u003Cli>Change some ‘optional’ settings in \u003Ccode>Login Widget Settings\u003C\u002Fcode> (admin panel left side menu) and you are good to go. \u003C\u002Fli>\n\u003Cli>Add CSS as you prefer because the form structure is really very simple.\u003C\u002Fli>\n\u003Cli>Use this shortcode [forgot_password] in your page to display the forgot password form. Forgot password link can be added to login widget from plugin settings page.\u003C\u002Fli>\n\u003Cli>Login form is responsive.\u003C\u002Fli>\n\u003Cli>Plugin is compatible with \u003Cstrong>WPML\u003C\u002Fstrong> plugin. You can check the compatibility at \u003Ca href=\"https:\u002F\u002Fwpml.org\u002Fplugin\u002Flogin-widget-with-shortcode\u002F\" rel=\"nofollow ugc\">wpml.org\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FGIdsTLfH6Is?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>Other Optional Options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Add CAPTCHA security in admin and frontend login forms.\u003C\u002Fli>\n\u003Cli>Login Logs are stored in database ( IP, login status, login time ). PRO version has options to block IPs after certain numbers of wrong login attempts.\u003C\u002Fli>\n\u003Cli>You can choose the redirect page after login. It can be a page or a custom URL.\u003C\u002Fli>\n\u003Cli>Choose redirect page after logout.\u003C\u002Fli>\n\u003Cli>Choose user profile page.\u003C\u002Fli>\n\u003Cli>Easy CSS implementation from admin panel.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Facebook Login Widget (PRO)\u003C\u002Fh4>\n\u003Cp>There is a PRO version of this plugin that supports login with \u003Cstrong>Facebook, Google, Twitter, LinkedIn, Amazon and Instagram accounts. Get it for \u003C\u002Fstrong>\u003Cstrong>USD 6.00\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.aviplugins.com\u002Ffb-login-widget-pro\u002F\" rel=\"nofollow ugc\">Click here for more details\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fdemo.aviplugins.com\u002Flogin\u002F\" rel=\"nofollow ugc\">Click here for a Live Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The PRO version comes with a \u003Cstrong>FREE Content Restriction Addon\u003C\u002Fstrong>. Partial contents of Pages\u002F Posts or the complete Page\u002FPost can be hidden from visitors of your site.\u003C\u002Fli>\n\u003Cli>Compatible with \u003Cstrong>WooCommerce\u003C\u002Fstrong> plugin.\u003C\u002Fli>\n\u003Cli>Compatible with \u003Cstrong>WordPress Multisite\u003C\u002Fstrong> Installation.\u003C\u002Fli>\n\u003Cli>Login Logs are stored in database. IPs gets \u003Cstrong>Blocked\u003C\u002Fstrong> after a certain numbers of wrong login attempts. This ensures site’s security.\u003C\u002Fli>\n\u003Cli>IPs can be \u003Cstrong>Blocked\u003C\u002Fstrong> permanently from admin panel.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Captcha\u003C\u002Fstrong> login securiy in Frontend and Admin login Forms.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Restrict Admin panel Access\u003C\u002Fstrong> for selected user Roles. For example you can restrict Admin Panel access for “Subscriber” and “Contributor” from your site.\u003C\u002Fli>\n\u003Cli>Use Shortcode to display login form in Post or Page.\u003C\u002Fli>\n\u003Cli>Use only Social Icons for logging in. No need to put the entire login form.\u003C\u002Fli>\n\u003Cli>Change welcome text “Howdy” from plugin settings section.\u003C\u002Fli>\n\u003Cli>Manage Forgot Password Email Body.\u003C\u002Fli>\n\u003Cli>Easy CSS implementation from admin panel.\u003C\u002Fli>\n\u003Cli>And with other useful settings. \u003Ca href=\"https:\u002F\u002Fwww.aviplugins.com\u002Ffb-login-widget-pro\u002F\" rel=\"nofollow ugc\">Click here for details\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Social Login No Setup\u003C\u002Fh4>\n\u003Cp>The plugin supports login with 30+ sites. The most important part is that it requires no Setups, no Maintanance, no need to create any APPs, APIs, Client Ids, Client Secrets or anything. Get it for \u003Cstrong>USD 3.00\u003C\u002Fstrong>. Supported sites are listed below.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Google\u003C\u002Fli>\n\u003Cli>YouTube\u003C\u002Fli>\n\u003Cli>Google Drive\u003C\u002Fli>\n\u003Cli>Gmail\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>PayPal\u003C\u002Fli>\n\u003Cli>Yahoo\u003C\u002Fli>\n\u003Cli>Microsoft\u003C\u002Fli>\n\u003Cli>WordPress\u003C\u002Fli>\n\u003Cli>Amazon\u003C\u002Fli>\n\u003Cli>Github\u003C\u002Fli>\n\u003Cli>Tumblr\u003C\u002Fli>\n\u003Cli>Vimeo\u003C\u002Fli>\n\u003Cli>Reddit\u003C\u002Fli>\n\u003Cli>Dribbble\u003C\u002Fli>\n\u003Cli>Twitch\u003C\u002Fli>\n\u003Cli>Medium\u003C\u002Fli>\n\u003Cli>Discord\u003C\u002Fli>\n\u003Cli>Line\u003C\u002Fli>\n\u003Cli>Stack Exchange\u003C\u002Fli>\n\u003Cli>Stack Overflow\u003C\u002Fli>\n\u003Cli>Disqus\u003C\u002Fli>\n\u003Cli>Blogger\u003C\u002Fli>\n\u003Cli>Meetup\u003C\u002Fli>\n\u003Cli>Foursquare\u003C\u002Fli>\n\u003Cli>Yandex\u003C\u002Fli>\n\u003Cli>VKontakte\u003C\u002Fli>\n\u003Cli>Telegram\u003C\u002Fli>\n\u003Cli>Dropbox\u003C\u002Fli>\n\u003Cli>Fitbit\u003C\u002Fli>\n\u003Cli>Slack\u003C\u002Fli>\n\u003Cli>Deviantart\u003C\u002Fli>\n\u003Cli>Mailchimp\u003C\u002Fli>\n\u003Cli>Skype\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.aviplugins.com\u002Fsocial-login-no-setup\u002F\" rel=\"nofollow ugc\">Click here for more details\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fdemo.aviplugins.com\u002Fsocial-login\u002F\" rel=\"nofollow ugc\">Click here for Live Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Post your plugin related queries at \u003Ca href=\"https:\u002F\u002Fwww.aviplugins.com\u002Fsupport.php\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.aviplugins.com\u002Fsupport.php\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","This is a simple login form in the widget. This will allow users to login to the site from frontend.",6000,465398,76,29,"2024-03-25T11:33:00.000Z","6.4.8","2.0.2","",[20,21,22,23,24],"login","login-widget","sidebar-login","widget","widget-login","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flogin-sidebar-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flogin-sidebar-widget.6.1.2.zip",61,2,1,"2024-12-05 00:00:00","2026-03-15T15:16:48.613Z",[33,47],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":38,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":30,"updated_date":44,"references":45,"days_to_patch":38},"CVE-2024-54255","login-widget-with-shortcode-open-redirect","Login Widget With Shortcode \u003C= 6.1.2 - Open Redirect","The Login Widget With Shortcode plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 6.1.2. This is due to insufficient validation on the redirect url supplied. This makes it possible for unauthenticated attackers to redirect users to potentially malicious sites if they can successfully trick them into performing an action.",null,"\u003C=6.1.2","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","URL Redirection to Untrusted Site ('Open Redirect')","2024-12-12 13:58:45",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F9ce819fa-5c94-4116-9361-1de24619c27b?source=api-prod",{"id":48,"url_slug":49,"title":50,"description":51,"plugin_slug":4,"theme_slug":38,"affected_versions":52,"patched_in_version":53,"severity":54,"cvss_score":55,"cvss_vector":56,"vuln_type":57,"published_date":58,"updated_date":59,"references":60,"days_to_patch":62},"CVE-2014-6312","login-widget-with-shortcode-cross-site-scripting","Login Widget With Shortcode \u003C 3.2.1 - Cross-Site Scripting","Cross-site request forgery (CSRF) vulnerability in the Login Widget With Shortcode (login-sidebar-widget) plugin before 3.2.1 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via the custom_style_afo parameter on the login_widget_afo page to wp-admin\u002Foptions-general.php.","\u003C3.2.1","3.2.1","high",7.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:L","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2014-09-17 00:00:00","2024-01-22 19:56:02",[61],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fe10db126-a22e-4e15-a868-6fd9172fa805?source=api-prod",3415,{"slug":64,"display_name":7,"profile_url":8,"plugin_count":65,"total_installs":66,"avg_security_score":13,"avg_patch_time_days":67,"trust_score":68,"computed_at":69},"avimegladon",9,8360,617,62,"2026-04-05T09:22:18.504Z",[71,92,113,132,155],{"slug":22,"name":72,"version":73,"author":74,"author_profile":75,"description":76,"short_description":77,"active_installs":78,"downloaded":79,"rating":80,"num_ratings":81,"last_updated":82,"tested_up_to":83,"requires_at_least":84,"requires_php":85,"tags":86,"homepage":88,"download_link":89,"security_score":90,"vuln_count":91,"unpatched_count":91,"last_vuln_date":38,"fetched_at":31},"Sidebar Login","3.0.1","Mike Jolley","https:\u002F\u002Fprofiles.wordpress.org\u002Fmikejolley\u002F","\u003Cp>\u003Cem>Sidebar Login\u003C\u002Fem> adds a useful login widget which you can use to login from in the sidebar of your WordPress powered blog.\u003C\u002Fp>\n\u003Cp>Once a user logs in they are redirected back to the page they logged in from, rather than the admin panel (this is configurable).\u003C\u002Fp>\n\u003Cp>If you’d like to contribute code to the plugin you can do so via \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmikejolley\u002Fsidebar-login\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>If you’d like to contribute a translation, \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fsidebar-login\" rel=\"nofollow ugc\">the project is hosted on WordPress.org\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Usage\u003C\u002Fh4>\n\u003Cp>Simply go to \u003Ccode>Appearance > Widgets\u003C\u002Fcode> and drag “sidebar login” to the sidebar of your choice. Within the widget are several options you can use for changing the titles or the links displayed to the user.\u003C\u002Fp>\n\u003Cp>To use this widget in a template, use \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FFunction_Reference\u002Fthe_widget\" rel=\"nofollow ugc\">the \u003Ccode>the_widget()\u003C\u002Fcode> function\u003C\u002Fa> which WordPress provides.\u003C\u002Fp>\n\u003Ch4>Tags for titles + links\u003C\u002Fh4>\n\u003Cp>These tags can be used in the widget settings for titles + links and will be replaced at runtime.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>%username%\u003C\u002Fcode> – logged in users display name\u003C\u002Fli>\n\u003Cli>\u003Ccode>%userid%\u003C\u002Fcode> – logged in users ID\u003C\u002Fli>\n\u003Cli>\u003Ccode>%firstname%\u003C\u002Fcode> – logged in users firstname\u003C\u002Fli>\n\u003Cli>\u003Ccode>%lastname%\u003C\u002Fcode> – logged in users lastname\u003C\u002Fli>\n\u003Cli>\u003Ccode>%name%\u003C\u002Fcode> – logged in users firstname + lastname\u003C\u002Fli>\n\u003Cli>\u003Ccode>%nicename%\u003C\u002Fcode> – user nice name\u003C\u002Fli>\n\u003Cli>\u003Ccode>%admin_url%\u003C\u002Fcode> – url to WP admin\u003C\u002Fli>\n\u003Cli>\u003Ccode>%logout_url%\u003C\u002Fcode> – logout url\u003C\u002Fli>\n\u003Cli>\u003Ccode>%buddypress_profile_url%\u003C\u002Fcode> – Buddypress Profile URL\u003C\u002Fli>\n\u003Cli>\u003Ccode>%bbpress_profile_url%\u003C\u002Fcode> – Buddypress Profile URL\u003C\u002Fli>\n\u003Cli>\u003Ccode>%avatar%\u003C\u002Fcode> – User Avatar\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Filter Reference\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ccode>sidebar_login_include_css\u003C\u002Fcode> – return false to not include the CSS stylesheet\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_logged_in_links\u003C\u002Fcode> – An array of links shown when logged in.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_logged_out_links\u003C\u002Fcode> – An array of links shown when logged out.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_display\u003C\u002Fcode> – Return false to hide the widget.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_logged_in_title\u003C\u002Fcode> – The widget title shown when logged in.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_avatar_size\u003C\u002Fcode> – The avatar size – defaulted to 38 (thats in px)\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_logged_out_title\u003C\u002Fcode> – The widget title shown when logged out.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_form_args\u003C\u002Fcode> – Arguments for the wp_login_form function.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_login_redirect\u003C\u002Fcode> – Redirect URL after login.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_logout_redirect\u003C\u002Fcode> – the redirect after logging out.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_register_url\u003C\u002Fcode> – The URL for registration links.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_lost_password_url\u003C\u002Fcode> – The URL for lost password links.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_wp_login_form\u003C\u002Fcode> – The HTML of the Login form.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Action Reference\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ccode>sidebar_login_widget_start\u003C\u002Fcode> – Fired before the widget.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_{logged_in || logged_out}_content_start\u003C\u002Fcode> – Fired before the widget content.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_before_{logged_in || logged_out}_links\u003C\u002Fcode> – Fired before the links.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_after_{logged_in || logged_out}_links\u003C\u002Fcode> – Fire after the links.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_{logged_in || logged_out}_content_end\u003C\u002Fcode> – Fired after the widget content.\u003C\u002Fli>\n\u003Cli>\u003Ccode>sidebar_login_widget_end\u003C\u002Fcode> – Fired after the widget.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Notes\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Due to AJAX not working across different domains (see \u003Ca href=\"http:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FSame_origin_policy\" rel=\"nofollow ugc\">same_origin_policy\u003C\u002Fa>), AJAX logins will be disabled if your site it non-SSL, but the FORCE_SSL_ADMIN constant is set to true. Instead it will fallback to a traditional POST.\u003C\u002Fli>\n\u003C\u002Ful>\n","Easily add an ajax-enhanced login widget to your WordPress site sidebar.",10000,1048824,90,78,"2020-10-17T20:43:00.000Z","5.5.18","5.0","5.6",[20,21,87,22,23],"sidebar","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fsidebar-login\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsidebar-login.3.0.1.zip",85,0,{"slug":93,"name":94,"version":95,"author":96,"author_profile":97,"description":98,"short_description":99,"active_installs":100,"downloaded":101,"rating":102,"num_ratings":103,"last_updated":104,"tested_up_to":105,"requires_at_least":106,"requires_php":18,"tags":107,"homepage":111,"download_link":112,"security_score":90,"vuln_count":91,"unpatched_count":91,"last_vuln_date":38,"fetched_at":31},"sb-login","SB Login","2.5","Fida Al Hasan","https:\u002F\u002Fprofiles.wordpress.org\u002Ffida02\u002F","\u003Cp>Sb login widget that allows a user to login, register, reset their password, see recent activity, time, post and comment count, author info, in one place. You can also customize wordpress mail from name and address.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>A login and registration widget for your blog\u003C\u002Fli>\n\u003Cli>Tabs\u002Flinks for logged out users include login, register, and ‘lost password’.\u003C\u002Fli>\n\u003Cli>Captcha functionality included.\u003C\u002Fli>\n\u003Cli>Logged in users can see their name, avatar, logged in date, and comments\u002Fposts since sign in.\u003C\u002Fli>\n\u003Cli>User can see his\u002Fher recent viewed posts and recent comments made by him\u002Fher.\u003C\u002Fli>\n\u003Cli>User can see his ID, First joined date, total number of his\u002Fher posts, total number of comments made by him\u002Fher, user level, posts feed, comments feed.\u003C\u002Fli>\n\u003Cli>AJAX validation makes this thing run smooth\u003C\u002Fli>\n\u003Cli>Shortcode & PHP Code if you don’t want to use widget\u003C\u002Fli>\n\u003Cli>Options page for customizing the plugin\u003C\u002Fli>\n\u003Cli>User can add extra link\u003C\u002Fli>\n\u003Cli>This plugin is so light\u003C\u002Fli>\n\u003Cli>Smart & nice looking. You love it.\u003C\u002Fli>\n\u003Cli>Nice warning & success system.\u003C\u002Fli>\n\u003Cli>You can translate this plugin.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cp>Available translations are listed in the plugin’s admin page\u003C\u002Fp>\n\u003Cp>If you have made a translation file please send it to this \u003Ca href=\"mailto:fidaalhasan@gmail.com\" rel=\"nofollow ugc\">mail\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Why dont you rate the plugin if you like it !! 🙂\u003C\u002Fp>\n\u003Cp>Our team \u003Ca href=\"http:\u002F\u002Fwebcarezone.com\u002F\" rel=\"nofollow ugc\">Web Care Zone\u003C\u002Fa>.\u003C\u002Fp>\n","Sb login widget that allows a user to login, register, reset their password, see recent activity,time,post and comment count & many more in one pl &hellip;",70,36276,80,24,"2014-05-23T09:38:00.000Z","3.9.40","2.8",[20,108,93,109,110],"sb","sidebar-login-widget","wordpress-login-widget","http:\u002F\u002Fwebcarezone.com\u002Fprojects\u002Fsb-login.asp","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsb-login.2.5.zip",{"slug":114,"name":115,"version":116,"author":117,"author_profile":118,"description":119,"short_description":120,"active_installs":121,"downloaded":122,"rating":91,"num_ratings":91,"last_updated":123,"tested_up_to":124,"requires_at_least":125,"requires_php":18,"tags":126,"homepage":130,"download_link":131,"security_score":90,"vuln_count":91,"unpatched_count":91,"last_vuln_date":38,"fetched_at":31},"iw-profile","iw profile","1.4","Hamid Alinia","https:\u002F\u002Fprofiles.wordpress.org\u002Fglboy\u002F","\u003Cp>iw profile widget that allows a user to login, register, reset their password, see recent activity, time, post and comment count, author info, in one place. You can also customize wordpress mail from name and address.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>A login and registration widget for your blog\u003C\u002Fli>\n\u003Cli>Tabs\u002Flinks for logged out users include login, register, and ‘lost password’.\u003C\u002Fli>\n\u003Cli>Captcha functionality included.\u003C\u002Fli>\n\u003Cli>Logged in users can see their name, avatar, logged in date, and comments\u002Fposts since sign in.\u003C\u002Fli>\n\u003Cli>User can see his\u002Fher recent viewed posts and recent comments made by him\u002Fher.\u003C\u002Fli>\n\u003Cli>User can see his ID, First joined date, total number of his\u002Fher posts, total number of comments made by him\u002Fher, user level, posts feed, comments feed.\u003C\u002Fli>\n\u003Cli>AJAX validation makes this thing run smooth\u003C\u002Fli>\n\u003Cli>Shortcode & PHP Code if you don’t want to use widget\u003C\u002Fli>\n\u003Cli>Options page for customizing the plugin\u003C\u002Fli>\n\u003Cli>User can add extra link\u003C\u002Fli>\n\u003Cli>This plugin is so light\u003C\u002Fli>\n\u003Cli>Smart & nice looking. You love it.\u003C\u002Fli>\n\u003Cli>Nice warning & success system.\u003C\u002Fli>\n\u003Cli>You can translate this plugin.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cp>Available translations are listed in the plugin’s admin page\u003C\u002Fp>\n\u003Cp>If you have made a translation file please send it to this \u003Ca href=\"mailto:a.goodlookingboy@gmail.com\" rel=\"nofollow ugc\">mail\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Why dont you rate the plugin if you like it !! 🙂\u003C\u002Fp>\n\u003Cp>Our team \u003Ca href=\"http:\u002F\u002Fidehweb.com\u002F\" rel=\"nofollow ugc\">IDehweb\u003C\u002Fa>.\u003C\u002Fp>\n","iw profile is a login\u002Fregister form and profile which you need to set frontend beautiful profile and special use when you have set up woocommerce.",10,1641,"2016-05-27T12:06:00.000Z","4.4.34","3.2",[127,128,20,129,109],"iw","iw-login","profile","http:\u002F\u002FIDEHWEB.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fiw-profile.1.4.zip",{"slug":133,"name":134,"version":135,"author":136,"author_profile":137,"description":138,"short_description":139,"active_installs":140,"downloaded":141,"rating":142,"num_ratings":143,"last_updated":144,"tested_up_to":145,"requires_at_least":146,"requires_php":85,"tags":147,"homepage":152,"download_link":153,"security_score":80,"vuln_count":29,"unpatched_count":91,"last_vuln_date":154,"fetched_at":31},"login-widget-for-ultimate-member","Login Widget for Ultimate Member","1.1.3","SuitePlugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fsuiteplugins\u002F","\u003Cp>This extension is a simple login widget that will display a login form for Ultimate Member. Once logged in, users will have quick access to all their Ultimate Member tabs, Profile and Account Edit.\u003C\u002Fp>\n\u003Ch4>Using Login Form shortcode\u003C\u002Fh4>\n\u003Cp>You can use the shortcode [um_login_widget].\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Use the attribute \u003Cstrong>form_type\u003C\u002Fstrong> and the login form ID to display the appropriate login form. By default, the shortcode will display the default WordPress login. e.g [um_login_widget form_type=”6″]\u003C\u002Fli>\n\u003Cli>Use the attribute \u003Cstrong>hide_remember_me\u003C\u002Fstrong> and enter 1 to hide the remember me option. e.g [um_login_widget hide_remember_me=”1″]\u003C\u002Fli>\n\u003Cli>As of version 1.1.0, you have options to hide avatar, profile link, account link and profile tabs.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Other Ultimate Member Plugins\u003C\u002Fh4>\n\u003Cp>SuitePlugins is on the verge of creating some great addons for Ultimate Member. Here are a few that you may want to check out\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsuiteplugins.com\u002Fdownloads\u002Fgallery-for-ultimate-members\u002F?utm_source=wordpress&utm_medium=plugin&utm_content=login-widget\" rel=\"nofollow ugc\">Gallery\u003C\u002Fa> – \u003Cstrong>Most Popular\u003C\u002Fstrong> An easy drag and drop gallery for Ultimate Members.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsuiteplugins.com\u002Fdownloads\u002Fum-events-pro\u002F?utm_source=wordpress&utm_medium=plugin&utm_content=login-widget\" rel=\"nofollow ugc\">Events\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsuiteplugins.com\u002Fdownloads\u002Fdocs-for-ultimatemember\u002F?utm_source=wordpress&utm_medium=plugin&utm_content=login-widget\" rel=\"nofollow ugc\">Docs\u003C\u002Fa> – Let users upload files that can be seen publicly or privately\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsuiteplugins.com\u002Fdownloads\u002Fstories-for-ultimate-member\u002F?utm_source=wordpress&utm_medium=plugin&utm_content=login-widget\" rel=\"nofollow ugc\">Stories\u003C\u002Fa> – Allow users to have a journal or mini-blog from their profile.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsuiteplugins.com\u002Fdownloads\u002Fvisitors-for-ultimate-members\u002F?utm_source=wordpress&utm_medium=plugin&utm_content=login-widget\" rel=\"nofollow ugc\">Visitors\u003C\u002Fa> – Visitors allow users to see others that have visited their profile\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsuiteplugins.com\u002Fdownloads\u002Frelationships-for-ultimate-member\u002F?utm_source=wordpress&utm_medium=plugin&utm_content=login-widget\" rel=\"nofollow ugc\">Relationships\u003C\u002Fa> – Allow users to select family members and display them on their profile\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flogin-widget-for-ultimate-member\u002F?utm_source=wordpress&utm_medium=plugin&utm_content=login-widget\" rel=\"ugc\">Gallery Lite\u003C\u002Fa> – An easy drag and drop gallery for Ultimate Members.\u003C\u002Fli>\n\u003C\u002Ful>\n","Easily add a login widget that works with Ultimate Member",700,62441,74,6,"2025-02-22T18:32:00.000Z","6.7.5","4.0",[21,148,149,150,151],"ultimate-member","ultimate-member-login","ultimate-member-widget","ultimatemember-login","http:\u002F\u002Fwww.suiteplugins.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flogin-widget-for-ultimate-member.1.1.3.zip","2025-03-27 00:00:00",{"slug":156,"name":157,"version":158,"author":159,"author_profile":160,"description":161,"short_description":162,"active_installs":163,"downloaded":164,"rating":102,"num_ratings":143,"last_updated":165,"tested_up_to":124,"requires_at_least":166,"requires_php":18,"tags":167,"homepage":169,"download_link":170,"security_score":90,"vuln_count":91,"unpatched_count":91,"last_vuln_date":38,"fetched_at":31},"wp-sidebar-login","WP Sidebar Login","2.14","Pankaj Jha","https:\u002F\u002Fprofiles.wordpress.org\u002Fmasdiblogs\u002F","\u003Cp>WP Sidebar Login is an ajax enabled wordpress login has both a widget and a template tag to allow you to have a login form in the sidebar of your wordpress powered blog. It lets users login, and then redirects them back to the page they logged in from rather than the backend, it also shows error messages. This plugin adds the capability of placing a login widget in the sidebar with smooth AJAX login effects.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Works on all modern browsers.\u003C\u002Fli>\n\u003Cli>Work With all the cache plugins.\u003C\u002Fli>\n\u003Cli>Widget available.\u003C\u002Fli>\n\u003Cli>Simple configuration.\u003C\u002Fli>\n\u003Cli>Shortcode and template tags available just add  to your page.\u003C\u002Fli>\n\u003Cli>AJAX Login without refreshing your screen.\u003C\u002Fli>\n\u003Cli>Redirect back to the same page or as per the configuration\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\n\u003Ca href=\"http:\u002F\u002Fonlinewebapplication.com\u002Fwp-sidebar-login\u002F\" rel=\"nofollow ugc\">Plugin Home Page\u003C\u002Fa>\u003Cbr \u002F>\n\u003Cbr \u002F>\n\u003Ca href=\"http:\u002F\u002Fonlinewebapplication.com\" rel=\"nofollow ugc\">Author Site\u003C\u002Fa>|\u003Cbr \u002F>\n\u003C\u002Fp>\n\u003Ch4>Support Forums\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>[\u003Ca href=\"http:\u002F\u002Fonlinewebapplication.com\u002Fwp-sidebar-login\u002F\" rel=\"nofollow ugc\">Plugin Home Page\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Sidebar Login By \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fmikejolley\u002F\" rel=\"nofollow ugc\">mikejolley\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin used to easily add an ajax enabled wordpress login widget to your site's sidebar.",100,27222,"2016-02-03T18:05:00.000Z","3.0",[168,20,87,22,23],"admin","http:\u002F\u002Fonlinewebapplication.com\u002F2012\u002F07\u002Fwp-sidebar-login.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-sidebar-login.zip",{"attackSurface":172,"codeSignals":279,"taintFlows":362,"riskAssessment":447,"analyzedAt":462},{"hooks":173,"ajaxHandlers":268,"restRoutes":269,"shortcodes":270,"cronEvents":278,"entryPointCount":28,"unprotectedCount":91},[174,179,183,187,191,194,198,203,207,212,216,220,224,228,231,236,240,243,246,248,251,254,257,261,266],{"type":175,"name":176,"callback":177,"file":178,"line":143},"action","wp_head","custom_styles_ap","includes\\class-login-form.php",{"type":175,"name":180,"callback":181,"file":182,"line":143},"admin_menu","login_log_ap_menu","includes\\class-login-log.php",{"type":175,"name":184,"callback":185,"file":182,"line":186},"admin_init","login_log_ip_data",7,{"type":175,"name":188,"callback":189,"file":190,"line":143},"admin_enqueue_scripts","load_login_admin_style","includes\\class-scripts.php",{"type":175,"name":192,"callback":193,"file":190,"line":186},"wp_enqueue_scripts","load_login_front_style",{"type":175,"name":195,"callback":196,"file":197,"line":65},"login_form","security_add","includes\\class-security.php",{"type":199,"name":200,"callback":201,"priority":121,"file":197,"line":202},"filter","lostpassword_url","ap_lost_password_url_filter",14,{"type":175,"name":204,"callback":205,"priority":29,"file":197,"line":206},"ap_login_log_front","ap_login_log_front_action",17,{"type":199,"name":208,"callback":209,"priority":210,"file":197,"line":211},"authenticate","myplugin_auth_signon",30,18,{"type":175,"name":213,"callback":214,"file":197,"line":215},"login_ap_form","security_add_user",22,{"type":175,"name":217,"callback":218,"file":197,"line":219},"wp_login","check_ap_login_success",26,{"type":199,"name":221,"callback":222,"file":197,"line":223},"login_errors","check_ap_login_failed",27,{"type":175,"name":180,"callback":225,"file":226,"line":227},"login_widget_ap_menu","includes\\class-settings.php",102,{"type":175,"name":184,"callback":229,"file":226,"line":230},"login_widget_ap_save_settings",103,{"type":175,"name":232,"callback":233,"file":234,"line":235},"widgets_init","closure","login.php",66,{"type":175,"name":237,"callback":238,"file":234,"line":239},"init","login_validate",68,{"type":175,"name":237,"callback":241,"file":234,"line":242},"forgot_pass_validate",69,{"type":175,"name":244,"callback":245,"file":234,"line":142},"plugins_loaded","security_init",{"type":175,"name":244,"callback":247,"file":234,"line":13},"login_widget_ap_text_domain",{"type":199,"name":249,"callback":250,"priority":121,"file":234,"line":81},"lsw_login_errors","lsw_login_error_message",{"type":199,"name":252,"callback":253,"priority":121,"file":234,"line":102},"lwws_user_captcha_field","lwws_user_captcha_field_no_auto",{"type":199,"name":255,"callback":253,"priority":121,"file":234,"line":256},"lwws_admin_captcha_field",82,{"type":175,"name":258,"callback":259,"file":234,"line":260},"template_redirect","start_session_if_not_started",84,{"type":199,"name":262,"callback":263,"file":264,"line":265},"wp_mail_content_type","lsw_set_html_content_type","process.php",72,{"type":199,"name":262,"callback":263,"file":264,"line":267},136,[],[],[271,275],{"tag":272,"callback":273,"file":234,"line":274},"login_widget","login_widget_ap_shortcode",71,{"tag":276,"callback":277,"file":234,"line":265},"forgot_password","forgot_password_ap_shortcode",[],{"dangerousFunctions":280,"sqlUsage":281,"outputEscaping":289,"fileOperations":28,"externalRequests":91,"nonceChecks":342,"capabilityChecks":91,"bundledLibraries":361},[],{"prepared":143,"raw":28,"locations":282},[283,287],{"file":284,"line":285,"context":286},"functions.php",75,"$wpdb->query() with variable interpolation",{"file":182,"line":288,"context":286},37,{"escaped":290,"rawEcho":291,"locations":292},31,35,[293,296,299,301,303,304,306,308,310,312,314,316,318,320,322,324,326,328,330,332,333,335,338,340,343,344,346,347,348,351,353,355,356,358,360],{"file":294,"line":210,"context":295},"includes\\class-forgot-password.php","raw output",{"file":297,"line":298,"context":295},"includes\\class-form.php",23,{"file":297,"line":300,"context":295},36,{"file":297,"line":302,"context":295},65,{"file":297,"line":80,"context":295},{"file":297,"line":305,"context":295},114,{"file":297,"line":307,"context":295},141,{"file":297,"line":309,"context":295},164,{"file":178,"line":311,"context":295},45,{"file":178,"line":313,"context":295},49,{"file":178,"line":315,"context":295},53,{"file":178,"line":317,"context":295},122,{"file":178,"line":319,"context":295},133,{"file":321,"line":65,"context":295},"includes\\class-message.php",{"file":323,"line":302,"context":295},"includes\\class-paginate.php",{"file":197,"line":325,"context":295},87,{"file":327,"line":202,"context":295},"login-ap-widget.php",{"file":327,"line":329,"context":295},16,{"file":327,"line":331,"context":295},20,{"file":327,"line":291,"context":295},{"file":334,"line":28,"context":295},"view\\admin\\captcha.php",{"file":336,"line":337,"context":295},"view\\admin\\donate.php",3,{"file":339,"line":337,"context":295},"view\\admin\\help.php",{"file":341,"line":342,"context":295},"view\\admin\\login-log.php",4,{"file":341,"line":223,"context":295},{"file":341,"line":345,"context":295},28,{"file":341,"line":14,"context":295},{"file":341,"line":210,"context":295},{"file":349,"line":350,"context":295},"view\\admin\\settings.php",245,{"file":349,"line":352,"context":295},252,{"file":354,"line":29,"context":295},"view\\frontend\\after-login.php",{"file":354,"line":29,"context":295},{"file":357,"line":337,"context":295},"view\\frontend\\captcha.php",{"file":359,"line":342,"context":295},"view\\frontend\\login.php",{"file":359,"line":206,"context":295},[],[363,387,398,410,431],{"entryPoint":364,"graph":365,"unsanitizedCount":91,"severity":386},"login_widget_ap_save_settings (includes\\class-settings.php:9)",{"nodes":366,"edges":382},[367,371,376,380],{"id":368,"type":369,"label":370,"file":226,"line":103},"n0","source","$_REQUEST[$key] (x4)",{"id":372,"type":373,"label":374,"file":226,"line":103,"wp_function":375},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":377,"type":369,"label":378,"file":226,"line":379},"n2","$_POST['custom_style_ap']",38,{"id":381,"type":373,"label":374,"file":226,"line":379,"wp_function":375},"n3",[383,385],{"from":368,"to":372,"sanitized":384},true,{"from":377,"to":381,"sanitized":384},"low",{"entryPoint":388,"graph":389,"unsanitizedCount":91,"severity":386},"\u003Cclass-settings> (includes\\class-settings.php:0)",{"nodes":390,"edges":395},[391,392,393,394],{"id":368,"type":369,"label":370,"file":226,"line":103},{"id":372,"type":373,"label":374,"file":226,"line":103,"wp_function":375},{"id":377,"type":369,"label":378,"file":226,"line":379},{"id":381,"type":373,"label":374,"file":226,"line":379,"wp_function":375},[396,397],{"from":368,"to":372,"sanitized":384},{"from":377,"to":381,"sanitized":384},{"entryPoint":399,"graph":400,"unsanitizedCount":91,"severity":386},"login_validate (process.php:3)",{"nodes":401,"edges":408},[402,405],{"id":368,"type":369,"label":403,"file":264,"line":404},"$_POST['redirect']",33,{"id":372,"type":373,"label":406,"file":264,"line":404,"wp_function":407},"wp_redirect() [Open Redirect]","wp_redirect",[409],{"from":368,"to":372,"sanitized":384},{"entryPoint":411,"graph":412,"unsanitizedCount":91,"severity":386},"forgot_pass_validate (process.php:48)",{"nodes":413,"edges":428},[414,417,421,424],{"id":368,"type":369,"label":415,"file":264,"line":416},"$_GET",52,{"id":372,"type":373,"label":418,"file":264,"line":419,"wp_function":420},"get_row() [SQLi]",54,"get_row",{"id":377,"type":369,"label":422,"file":264,"line":423},"$_POST",106,{"id":381,"type":373,"label":425,"file":264,"line":426,"wp_function":427},"get_var() [SQLi]",119,"get_var",[429,430],{"from":368,"to":372,"sanitized":384},{"from":377,"to":381,"sanitized":384},{"entryPoint":432,"graph":433,"unsanitizedCount":91,"severity":386},"\u003Cprocess> (process.php:0)",{"nodes":434,"edges":443},[435,436,437,438,439,441],{"id":368,"type":369,"label":403,"file":264,"line":404},{"id":372,"type":373,"label":406,"file":264,"line":404,"wp_function":407},{"id":377,"type":369,"label":415,"file":264,"line":416},{"id":381,"type":373,"label":418,"file":264,"line":419,"wp_function":420},{"id":440,"type":369,"label":422,"file":264,"line":423},"n4",{"id":442,"type":373,"label":425,"file":264,"line":426,"wp_function":427},"n5",[444,445,446],{"from":368,"to":372,"sanitized":384},{"from":377,"to":381,"sanitized":384},{"from":440,"to":442,"sanitized":384},{"summary":448,"deductions":449},"The login-sidebar-widget plugin exhibits a mixed security posture. While the static analysis reveals a relatively small attack surface with no exposed AJAX handlers or REST API routes lacking permission checks, and a good proportion of SQL queries utilizing prepared statements, several concerning signals emerge. The output escaping is only properly implemented in 47% of cases, suggesting potential vulnerabilities related to Cross-Site Scripting (XSS). The presence of two file operations also warrants attention, though their specific nature and security implications are not detailed. Furthermore, the absence of capability checks, despite the presence of nonces, is a significant weakness, as it leaves functionality potentially accessible to unauthenticated or lower-privileged users.\n\nThe vulnerability history for this plugin is particularly concerning. With two known CVEs, one of which is currently unpatched and classified as high severity, the risk is elevated. The historical common vulnerability types, 'Open Redirect' and 'Cross-site Scripting', align with the static analysis findings regarding output escaping. The recent nature of the last vulnerability (December 2024) indicates ongoing security issues. The combination of code signals pointing to potential XSS and the documented history of XSS and redirection vulnerabilities paints a picture of a plugin that has struggled with secure coding practices, particularly in handling user input and output.\n\nIn conclusion, while the plugin has some strengths in limiting its direct attack surface, the significant number of unpatched vulnerabilities, particularly a high-severity one, coupled with concerns around output escaping and lack of capability checks, makes this plugin a notable security risk. Users should exercise extreme caution and consider alternatives or ensure thorough patching and mitigation strategies are in place.",[450,452,455,458,460],{"reason":451,"points":211},"Unpatched high severity CVE",{"reason":453,"points":454},"Low output escaping coverage",5,{"reason":456,"points":457},"No capability checks",8,{"reason":459,"points":186},"Known vulnerability for Open Redirect",{"reason":461,"points":186},"Known vulnerability for XSS","2026-03-16T18:03:23.475Z",{"wat":464,"direct":475},{"assetPaths":465,"generatorPatterns":472,"scriptPaths":473,"versionParams":474},[466,467,468,469,470,471],"\u002Fwp-content\u002Fplugins\u002Flogin-sidebar-widget\u002Fcss\u002Fstyle_login_admin.css","\u002Fwp-content\u002Fplugins\u002Flogin-sidebar-widget\u002Fjs\u002Fap.cookie.js","\u002Fwp-content\u002Fplugins\u002Flogin-sidebar-widget\u002Fjs\u002Fap-tabs.js","\u002Fwp-content\u002Fplugins\u002Flogin-sidebar-widget\u002Fcss\u002Fstyle_login_widget.css","\u002Fwp-content\u002Fplugins\u002Flogin-sidebar-widget\u002Fjs\u002Fjquery.validate.min.js","\u002Fwp-content\u002Fplugins\u002Flogin-sidebar-widget\u002Fjs\u002Fadditional-methods.js",[],[467,468,470,471],[],{"cssClasses":476,"htmlComments":477,"htmlAttributes":479,"restEndpoints":497,"jsGlobals":498,"shortcodeOutput":501},[],[478],"\u002F*\n\u002F*      |||||\n\u002F*    \u003C(`0_0`)>\n\u002F*    ()(afo)()\n\u002F*      ()-()\n *\u002F",[480,481,482,483,484,485,486,487,488,489,490,491,492,493,494,495,496],"login_ap_rem","login_ap_forgot_pass_link","login_ap_forgot_pass_page_url","login_ap_register_link","login_ap_register_page_url","lwws_extra_links_start","lwws_lost_password_link_a_tag","lwws_extra_links_separator","lwws_register_link_a_tag","lwws_extra_links_end","redirect_page","redirect_page_url","nonce_check_on_login","logout_redirect_page","link_in_username","lwws_username_link_a_tag","lwws_welcome_text",[],[499,500],"LSW_DIR_NAME","LSW_DIR_PATH",[502,503],"[login_widget]","[forgot_password]"]