[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f4G2GUVxi9TnnFcLw6s9xXM_EmqJiRbwCVsomGJ-c4L0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":79,"fingerprints":170},"login-timeout-sessions","Login Timeout Sessions","1.2.1","Galaxy Weblinks","https:\u002F\u002Fprofiles.wordpress.org\u002Fgalaxyweblinks\u002F","\u003Cp>Allows you the ability to set login session \u002F expiry Settings on user capacities by admin panel.\u003C\u002Fp>\n\u003Cp>By default the capabilities of the user are not defined in WordPress, for enhanced security their capabilities have a limit for the modification of site data, removal and creation.\u003C\u002Fp>\n\u003Ch3>Key Feature Comes with Login Timeout Sessions Plugin\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Set new login session.\u003C\u002Fli>\n\u003Cli>Set login ‘Remember me’ session.\u003C\u002Fli>\n\u003Cli>Set special timeout session for Users with a specific capability.\u003C\u002Fli>\n\u003Cli>For example: You can set a longer or shorter login time for administrators with the “edit_theme_options” capability. (see Roles and Capabilities in WordPress Codex).\u003C\u002Fli>\n\u003Cli>Use the default WordPress behaviours.\u003C\u002Fli>\n\u003Cli>Add Updates panel (Settings > Login Sessions).\u003C\u002Fli>\n\u003Cli>Deactivate restore default WordPress behavior.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Here’s a link to the documentation for the plugin. This will help you learn more about its features and how to use it.\u003Cbr \u002F>\n\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwp-plugins.galaxyweblinks.com\u002Fwp-plugins\u002Flogin-timeout-sessions\u002Fdoc\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nFor any feedback or queries regarding this plugin, please contact our \u003Ca href=\"https:\u002F\u002Fwp-plugins.galaxyweblinks.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">Support team\u003C\u002Fa>.\u003C\u002Fp>\n","Allows you the ability to set login session \u002F expiry Settings on user capacities by admin panel.",300,4349,70,2,"2025-11-05T11:00:00.000Z","6.8.5","5.5","7.0",[20,4,21,22],"login-session","session-expired","set-login-expiry","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Flogin-timeout-sessions\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flogin-timeout-sessions.1.2.1.zip",100,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"galaxyweblinks",40,24800,97,310,77,"2026-04-04T06:46:42.421Z",[39,59],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":26,"num_ratings":26,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":56,"download_link":57,"security_score":58,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"limit-login-sessions","Limit Login Session","1.0.0","Bhavey Bansal","https:\u002F\u002Fprofiles.wordpress.org\u002Fbbansmusic\u002F","\u003Cp>Limit Login Sessions plugin allows you the manage the number for login sessions from same account.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Maintain concurrent logins\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>set the number of session you want to allow for a user at one time, and this plugin will not let user to login with another session.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Quality, flexible, multilingual support.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>This plugin is flexible and can be extended easily.\u003C\u002Fli>\n\u003Cli>Support for multi language websites.\u003C\u002Fli>\n\u003C\u002Ful>\n","Limits the multiple login sessions from same account.",10,1007,"2020-08-04T11:13:00.000Z","5.4.19","4.9.0","5.6",[54,40,55],"blog-multiple-sessions","php","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flimit-login-sessions.zip",85,{"slug":60,"name":61,"version":42,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":26,"downloaded":66,"rating":26,"num_ratings":26,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":70,"tags":71,"homepage":77,"download_link":78,"security_score":25,"vuln_count":26,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28},"extendmate-session-manager","Extendmate Session Manager – Monitor & Control User Sessions and Force Logout From Admin and Frontend","extendmate.com","https:\u002F\u002Fprofiles.wordpress.org\u002Fextendmate\u002F","\u003Cp>Manage active sessions directly from admin dashboard or through frontend shortcodes. It improves account security by allowing session control per device.\u003C\u002Fp>\n\u003Ch4>Admin Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Sessions Column\u003C\u002Fstrong>: View the number of active sessions for each user directly in the user list.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Session Count Display\u003C\u002Fstrong>: View session counts on user profile page.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Detailed Session View\u003C\u002Fstrong>: Click on any user’s session count to view comprehensive session details in a popup.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Quick Access\u003C\u002Fstrong>: Click the session count on user profile page to open the same detailed session management popup.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Session Information\u003C\u002Fstrong>: See IP address, login date\u002Ftime, session expiry date\u002Ftime etc.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Individual Session Control\u003C\u002Fstrong>: Destroy specific sessions with a single-click logout options.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Bulk Logout\u003C\u002Fstrong>: Quickly log out multiple users at once using the bulk action feature in the user listing.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Bulk Session Management\u003C\u002Fstrong>: Select multiple sessions of a user and log them out simultaneously.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multisite Compatible\u003C\u002Fstrong>: The plugin is compatible with WordPress Multisite networks.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Frontend Display With Shortcode\u003C\u002Fh4>\n\u003Cp>Display user sessions in a modern card-based layout on any page using the simple shortcode: \u003Ccode>[emsm_session_list]\u003C\u002Fcode>.\u003Cbr \u002F>\nThis will show the list of active sessions for the currently logged-in user only.\u003Cbr \u002F>\nThis is intended to help users control their own account security.\u003C\u002Fp>\n\u003Ch4>Shortcode Parameters\u003C\u002Fh4>\n\u003Cp>Customize the frontend session display using the following attributes within the \u003Ccode>[emsm_session_list]\u003C\u002Fcode> shortcode:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>fontawesome_enable\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Enables or disables FontAwesome icons.\u003Cbr \u002F>\nAccepted values: true or any other value (treated as false)\u003Cbr \u002F>\nDefault: true\u003C\u002Fp>\n\u003Cpre>\u003Ccode>fontawesome_version\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Specifies the major version of FontAwesome to load.\u003Cbr \u002F>\nAccepted values: Version string (e.g. 6.5.1)\u003Cbr \u002F>\nDefault: 7.0.0\u003C\u002Fp>\n\u003Cpre>\u003Ccode>fontawesome_cdn\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Provides the full URL to a custom FontAwesome CSS file.\u003Cbr \u002F>\nThis overrides the default FontAwesome source used by the plugin.\u003Cbr \u002F>\nAccepted values: Valid URL\u003Cbr \u002F>\nDefault: Plugin’s local asset path\u003C\u002Fp>\n\u003Cpre>\u003Ccode>limit\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Defines the maximum number of session cards to display on the frontend.\u003Cbr \u002F>\nAccepted values: Positive integer (e.g. 5, 20)\u003Cbr \u002F>\nDefault: 10\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Important Note:\u003C\u002Fstrong> If you provide fontawesome_cdn, also set fontawesome_version for proper loading.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Usage Example:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[emsm_session_list limit=\"5\"]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Frontend Session Management\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Current Session Highlight\u003C\u002Fstrong>: The current active session always appears at the top of the list.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Organized Display\u003C\u002Fstrong>: Sessions are ordered by login time (newest first).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Individual Logout\u003C\u002Fstrong>: Log out specific devices with “Log Out This Device” buttons on each session card.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Bulk Logout Option\u003C\u002Fstrong>: Use the “Log Out Everywhere Else” button to keep only your current session active.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Template Overrides\u003C\u002Fh4>\n\u003Cp>Developers can override the plugin’s frontend templates by placing custom template files in the active theme.\u003Cbr \u002F>\nThis allows for complete customization of the session list display without modifying the plugin’s core files.\u003C\u002Fp>\n\u003Ch4>How to Override Templates\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\n\u003Cp>In your active theme’s root directory, create a new folder called:\u003Cbr \u002F>\n   extendmate-session-manager\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Copy the template files you wish to customize from the plugin’s directory:\u003Cbr \u002F>\n   wp-content\u002Fplugins\u002Fextendmate-session-manager\u002Finc\u002Ftemplate\u002Ffrontend\u002F\u003Cbr \u002F>\nto your theme’s new directory:\u003Cbr \u002F>\n   wp-content\u002Fthemes\u002Fyour-theme\u002Fextendmate-session-manager\u002F\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Edit the copied template files in your theme directory. The plugin will automatically use these custom templates instead of the default ones.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Enabling Template Overrides\u003C\u002Fh4>\n\u003Cp>Template overrides are disabled by default. To enable this feature, use the following filter:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter( 'emsm_enable_template_overrides', '__return_true' );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Ch4>Admin Dashboard\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Navigate to Users > All Users to see the new “Sessions” column.\u003C\u002Fli>\n\u003Cli>Click on any session count to view detailed session information.\u003C\u002Fli>\n\u003Cli>Use bulk actions to log out multiple users at once.\u003C\u002Fli>\n\u003Cli>Visit individual user profiles to see session counts and manage sessions for specific users.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Frontend Display\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Add the shortcode \u003Ccode>[emsm_session_list]\u003C\u002Fcode> to any page where you want to display session information.\u003C\u002Fli>\n\u003Cli>Customize the display using the available shortcode attributes.\u003C\u002Fli>\n\u003Cli>Users can manage their own sessions directly from the frontend.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Hooks\u003C\u002Fh3>\n\u003Cp>For detailed technical information on action and filter hooks for developers, please see the complete \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fextendmate\u002Fwordpress-plugin-session-manager\u002Fblob\u002Fmain\u002Fdocs\u002Fhooks.md\" rel=\"nofollow ugc\">Hooks Reference\u003C\u002Fa>.\u003C\u002Fp>\n","Manage active sessions directly from admin dashboard or through frontend shortcodes.",103,"2026-03-15T01:52:00.000Z","6.9.4","6.0","7.4",[72,73,74,75,76],"active-sessions","force-logout","login-sessions","session-tracking","user-activity","https:\u002F\u002Fextendmate.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fextendmate-session-manager.1.0.0.zip",{"attackSurface":80,"codeSignals":121,"taintFlows":159,"riskAssessment":160,"analyzedAt":169},{"hooks":81,"ajaxHandlers":117,"restRoutes":118,"shortcodes":119,"cronEvents":120,"entryPointCount":26,"unprotectedCount":26},[82,88,93,97,101,105,109,113],{"type":83,"name":84,"callback":85,"priority":86,"file":87,"line":58},"filter","auth_cookie_expiration","lts_login_timeout_sessions_auth_expiry_filter",99,"login-timeout-sessions.php",{"type":89,"name":90,"callback":91,"file":87,"line":92},"action","init","lts_login_timeout_sessions_init_level_callback",149,{"type":89,"name":94,"callback":95,"file":87,"line":96},"admin_menu","lts_login_timeout_sessions_menu_page_register",163,{"type":83,"name":98,"callback":99,"priority":47,"file":87,"line":100},"plugin_action_links","lts_login_timeout_sessions_add_action_link",166,{"type":89,"name":102,"callback":103,"file":87,"line":104},"admin_notices","lts_login_timeout_sessions_upgrade_notice",322,{"type":89,"name":106,"callback":107,"file":87,"line":108},"admin_init","lts_login_timeout_sessions_admin_init_callback",468,{"type":83,"name":110,"callback":111,"priority":47,"file":87,"line":112},"plugin_row_meta","lts_add_custom_plugin_links",873,{"type":89,"name":114,"callback":115,"file":87,"line":116},"admin_enqueue_scripts","lts_admin_enqueue_style",895,[],[],[],[],{"dangerousFunctions":122,"sqlUsage":123,"outputEscaping":125,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":157,"bundledLibraries":158},[],{"prepared":26,"raw":26,"locations":124},[],{"escaped":13,"rawEcho":126,"locations":127},14,[128,131,133,135,137,139,141,143,145,147,149,151,153,155],{"file":87,"line":129,"context":130},564,"raw output",{"file":87,"line":132,"context":130},565,{"file":87,"line":134,"context":130},566,{"file":87,"line":136,"context":130},602,{"file":87,"line":138,"context":130},603,{"file":87,"line":140,"context":130},604,{"file":87,"line":142,"context":130},648,{"file":87,"line":144,"context":130},672,{"file":87,"line":146,"context":130},696,{"file":87,"line":148,"context":130},697,{"file":87,"line":150,"context":130},698,{"file":87,"line":152,"context":130},735,{"file":87,"line":154,"context":130},736,{"file":87,"line":156,"context":130},737,1,[],[],{"summary":161,"deductions":162},"The \"login-timeout-sessions\" v1.2.1 plugin exhibits a generally strong security posture based on the provided static analysis and vulnerability history.  The absence of any identified dangerous functions, external HTTP requests, file operations, or SQL queries that don't use prepared statements is a significant strength. The fact that all analyzed SQL queries use prepared statements also indicates good development practices in handling database interactions.\n\nHowever, there are a few areas that warrant attention.  The 100% unescaped output rate on the 83% of outputs that are not properly escaped suggests a potential for Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is reflected without proper sanitization. While the total number of outputs is not excessively high, this is a common vector for attacks.  Additionally, the absence of any nonce checks, combined with a single capability check, suggests that the plugin might not be robustly protecting all of its functionalities from unauthorized access or manipulation, especially if there were any unprotected entry points found.\n\nGiven the complete lack of any known vulnerabilities (CVEs) or recorded vulnerability history, this plugin appears to have been developed with security in mind and has maintained this track record. This suggests a commitment to secure coding. In conclusion, while the plugin demonstrates excellent practices in areas like SQL handling and the absence of dangerous functions, the unescaped output and lack of comprehensive nonce checks present minor, but addressable, security concerns.",[163,166],{"reason":164,"points":165},"Output not properly escaped (17% of total)",5,{"reason":167,"points":168},"No nonce checks implemented",3,"2026-03-16T19:57:36.495Z",{"wat":171,"direct":180},{"assetPaths":172,"generatorPatterns":175,"scriptPaths":176,"versionParams":177},[173,174],"\u002Fwp-content\u002Fplugins\u002Flogin-timeout-sessions\u002Fassets\u002Fcss\u002Flogin-timeout-sessions.css","\u002Fwp-content\u002Fplugins\u002Flogin-timeout-sessions\u002Fassets\u002Fjs\u002Flogin-timeout-sessions.js",[],[174],[178,179],"login-timeout-sessions\u002Fassets\u002Fcss\u002Flogin-timeout-sessions.css?ver=","login-timeout-sessions\u002Fassets\u002Fjs\u002Flogin-timeout-sessions.js?ver=",{"cssClasses":181,"htmlComments":183,"htmlAttributes":185,"restEndpoints":186,"jsGlobals":187,"shortcodeOutput":189},[182],"lts-login-timeout-sessions-settings",[184],"\u003C!-- Login Timeout Sessions Settings -->",[],[],[188],"LTS_Login_Timeout_Sessions",[]]