[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fXnLUx65owngTYh21H8_enmr69zPTHMCNdwmvsW_zyGU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":16,"download_link":23,"security_score":24,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":34,"analysis":146,"fingerprints":311},"monitor-login","Monitor Login","0.1.5","aixeiger","https:\u002F\u002Fprofiles.wordpress.org\u002Faixeiger\u002F","\u003Cp>Monitor Login helps you to monitor the user access login to your website, every time than a user log into your website, you will receive a very simply email with the Username, IP address, Browser, Platform and Internet service provider, this help you to maintain informed of where a usually a user login and help you to indentify if a user password is leaked if a login contain data from foreign ip addresses or internet service providers. And the plugin activation\u002Fdeactivation\u002Fdelete notications are included too, as the Theme switch notifications, this can be enabled or disabled in the configurations plugins section\u003C\u002Fp>\n\u003Ch3>How works\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Install the plugin\u003C\u002Fli>\n\u003Cli>That’s all\u003C\u002Fli>\n\u003Cli>For update the email for receive the notifications go to\u003C\u002Fli>\n\u003Cli>Settings -> Monitor Login\u003C\u002Fli>\n\u003Cli>And set the new email and save\u003C\u002Fli>\n\u003Cli>On the first installation the email will be the same as the wordpress installation\u003C\u002Fli>\n\u003Cli>On the first installaiton the plugins and themes notifications are enabled by default\u003C\u002Fli>\n\u003Cli>for enable or disable plugins or themes notifications change in this section\u003C\u002Fli>\n\u003C\u002Ful>\n","Every time than a user log into your website you will receive a simple email notify this.",30,1628,0,"2023-08-04T17:20:00.000Z","6.3.8","","7.4",[19,20,21,22,4],"access","access-login","login","monitor","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmonitor-login.0.1.5.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":31,"avg_patch_time_days":11,"trust_score":32,"computed_at":33},5,140,88,86,"2026-04-04T16:59:54.106Z",[35,59,85,104,123],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":45,"num_ratings":46,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":54,"download_link":55,"security_score":56,"vuln_count":57,"unpatched_count":13,"last_vuln_date":58,"fetched_at":26},"loginizer","Loginizer","2.0.6","Softaculous","https:\u002F\u002Fprofiles.wordpress.org\u002Fsoftaculous\u002F","\u003Cp>Loginizer is a WordPress plugin which helps you fight against bruteforce attack by blocking login for the IP after it reaches maximum retries allowed. You can blacklist or whitelist IPs for login using Loginizer. You can use various other features like Two Factor Auth, reCAPTCHA, PasswordLess Login, etc. to improve security of your website.\u003C\u002Fp>\n\u003Cp>Loginizer is actively used by more than 1000000+ WordPress websites.\u003C\u002Fp>\n\u003Cp>You can find our official documentation at \u003Ca href=\"https:\u002F\u002Floginizer.com\u002Fdocs\" rel=\"nofollow ugc\">https:\u002F\u002Floginizer.com\u002Fdocs\u003C\u002Fa>. We are also active in our community support forums on \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Floginizer\" rel=\"ugc\">wordpress.org\u003C\u002Fa> if you are one of our free users. Our Premium Support Ticket System is at \u003Ca href=\"https:\u002F\u002Floginizer.deskuss.com\" rel=\"nofollow ugc\">https:\u002F\u002Floginizer.deskuss.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Free Features :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Brute force protection. IPs trying to brute force your website will be blocked for 15 minutes after 3 failed login attempts. After multiple lockouts the IP is blocked for 24 hours. This is the default configuration and can be changed from Loginizer -> Brute force page in WordPress admin panel.\u003C\u002Fli>\n\u003Cli>Failed login attempts logs.\u003C\u002Fli>\n\u003Cli>Blacklist IPs\u003C\u002Fli>\n\u003Cli>Whitelist IPs\u003C\u002Fli>\n\u003Cli>Custom error messages on failed login.\u003C\u002Fli>\n\u003Cli>Permission check for important files and folders.\u003C\u002Fli>\n\u003Cli>Allow only Trusted IP.\u003C\u002Fli>\n\u003Cli>Blocked Screen in place of the Login page.\u003C\u002Fli>\n\u003Cli>Email Notification on successful login.\u003C\u002Fli>\n\u003Cli>Let users login with LinkedIn\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Get Support and Pro Features\u003C\u002Fh4>\n\u003Cp>Get professional support from our experts and pro features to take your site’s security to the next level with \u003Ca href=\"https:\u002F\u002Floginizer.com\u002Fpricing\" rel=\"nofollow ugc\">Loginizer-Security\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Pro Features :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>MD5 Checksum – of Core WordPress Files. The admin can check and ignore files as well.\u003C\u002Fli>\n\u003Cli>PasswordLess Login – At the time of Login, the username \u002F email address will be asked and an email will be sent to the email address of that account with a temporary link to login.\u003C\u002Fli>\n\u003Cli>Two Factor Auth via Email – On login, an email will be sent to the email address of that account with a temporary 6 digit code to complete the login.\u003C\u002Fli>\n\u003Cli>Two Factor Auth via App – The user can configure the account with a 2FA App like Google Authenticator, Authy, etc.\u003C\u002Fli>\n\u003Cli>Login Challenge Question – The user can setup a Challenge Question and Answer as an additional security layer. After Login, the user will need to answer the question to complete the login.\u003C\u002Fli>\n\u003Cli>reCAPTCHA – Google’s reCAPTCHA v3\u002Fv2, Cloudflare Turnstile, hCAPTCHA can be configured for the Login screen, Comments Section, Registration Form, etc. to prevent automated brute force attacks. Supports WooCommerce as well.\u003C\u002Fli>\n\u003Cli>Rename Login Page – The Admin can rename the login URL (slug) to something different from wp-login.php to prevent automated brute force attacks.\u003C\u002Fli>\n\u003Cli>Rename WP-Admin URL – The Admin area in WordPress is accessed via wp-admin. With loginizer you can change it to anything e.g. site-admin\u003C\u002Fli>\n\u003Cli>CSRF Protection – This helps in preventing CSRF attacks as it updates the admin URL with a session string which makes it difficult and nearly impossible for the attacker to predict the URL.\u003C\u002Fli>\n\u003Cli>Rename Login with Secrecy – If set, then all Login URL’s will still point to wp-login.php and users will have to access the New Login Slug by typing it in the browser.\u003C\u002Fli>\n\u003Cli>Disable XML-RPC – An option to simply disable XML-RPC in WordPress. Most of the WordPress users don’t need XML-RPC and can disable it to prevent automated brute force attacks.\u003C\u002Fli>\n\u003Cli>Rename XML-RPC – The Admin can rename the XML-RPC to something different from xmlrpc.php to prevent automated brute force attacks.\u003C\u002Fli>\n\u003Cli>Username Auto Blacklist – Attackers generally use common usernames like admin, administrator, or variations of your domain name \u002F business name. You can specify such username here and Loginizer will auto-blacklist the IP Address(s) of clients who try to use such username(s).\u003C\u002Fli>\n\u003Cli>New Registration Domain Blacklist – If you would like to ban new registrations from a particular domain, you can use this utility to do so.\u003C\u002Fli>\n\u003Cli>Change the Admin Username – The Admin can rename the admin username to something more difficult.\u003C\u002Fli>\n\u003Cli>Auto Blacklist IPs – IPs will be auto blacklisted, if certain usernames saved by the Admin are used to login by malicious bots \u002F users.\u003C\u002Fli>\n\u003Cli>Disable Pingbacks – Simple way to disable PingBacks.\u003C\u002Fli>\n\u003Cli>SSO – Single Sign-on, let any user access to your WordPress Dashboard without the need to share username or password.\u003C\u002Fli>\n\u003Cli>Limit Concurrent Logins – It prevents user to login from different devices concurrently, you can define how many devices you want to allow, and how you want to restrict the user when concurrent limit is reached.\u003C\u002Fli>\n\u003Cli>Social Login – Users can login or register with their Google, Github, Facebook, X (Twitter), Discord, Twitch, LinkedIn, Microsoft with support for WooCommerce and Ultimate Member.\u003C\u002Fli>\n\u003Cli>Key Less Social Login – Use Loginizer’s Social Auth for easy key less Social login configuration, now supports Google, GitHub, X, LinkedIn more to be added later\u003C\u002Fli>\n\u003Cli>Country Blocking – Block IPs from specific countries to restrict access to your website.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Features in Loginizer include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Blocks IP after maximum retries allowed\u003C\u002Fli>\n\u003Cli>Extended Lockout after maximum lockouts allowed\u003C\u002Fli>\n\u003Cli>Email notification to admin after max lockouts\u003C\u002Fli>\n\u003Cli>Blacklist IP\u002FIP range\u003C\u002Fli>\n\u003Cli>Whitelist IP\u002FIP range\u003C\u002Fli>\n\u003Cli>Check logs of failed attempts\u003C\u002Fli>\n\u003Cli>Create IP ranges\u003C\u002Fli>\n\u003Cli>Delete IP ranges\u003C\u002Fli>\n\u003Cli>Licensed under LGPLv2.1\u003C\u002Fli>\n\u003Cli>Safe & Secure\u003C\u002Fli>\n\u003C\u002Ful>\n","Loginizer is a WordPress security plugin which helps you fight against bruteforce attacks.",1000000,29791210,96,1020,"2026-03-02T12:38:00.000Z","6.9.4","3.0","5.5",[19,52,21,36,53],"admin","security","https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Floginizer\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Floginizer.2.0.6.zip",87,8,"2024-11-04 00:00:00",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":69,"num_ratings":70,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":74,"tags":75,"homepage":81,"download_link":82,"security_score":69,"vuln_count":83,"unpatched_count":13,"last_vuln_date":84,"fetched_at":26},"temporary-login-without-password","Temporary Login Without Password","1.9.7","storeapps","https:\u002F\u002Fprofiles.wordpress.org\u002Fstoreapps\u002F","\u003Cp>Create secure, self-expiring ⏱️, automatic login links 🔗 for WordPress. Give them to developers when they ask for admin access to your site. Or an editor for a quick review of work done. Login works just by opening the link, no password needed.\u003C\u002Fp>\n\u003Cp>Using the “Temporary Login Without Password” plugin you can create a self-expiring account for someone and give them a special link with which they can login to your WordPress without needing a username and password.\u003C\u002Fp>\n\u003Cp>You can choose when the login expires, as well as the role of the temporary account.\u003C\u002Fp>\n\u003Cp>Really useful when you need to give admin access to a developer for support or for performing routine tasks.\u003C\u002Fp>\n\u003Cp>Read \u003Ca href=\"https:\u002F\u002Fwww.storeapps.org\u002Fcreate-secure-login-without-password-for-wordpress\u002F\" rel=\"nofollow ugc\">this article\u003C\u002Fa> to know more about what’s the Current Problem – Creating a Separate Admin Login for Outsiders (Devs\u002F Guest bloggers) and how to avoid this pain, Top Benefits of using this plugin & Why and Who need Temporary Login links.\u003C\u002Fp>\n\u003Ch4>\u003Cstrong>Benefits of Temporary Logins\u003C\u002Fstrong>\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Cp>➡️  Create unlimited temporary logins\u003Cbr \u002F>\n  ➡️  Create temporary logins with any role\u003Cbr \u002F>\n  ➡️  No username & password required. Login with just a simple link\u003Cbr \u002F>\n  ➡️  Set account expiry. So, a temporary user can’t login after the expiry time\u003Cbr \u002F>\n  ➡️  Various expiration options like one day, one week, one month, and many more. Also, set a custom date\u003Cbr \u002F>\n  ➡️  Redirect user to a specific page after login\u003Cbr \u002F>\n  ➡️  Set a language for a temporary user\u003Cbr \u002F>\n  ➡️  See the last logged in time of a temporary user\u003Cbr \u002F>\n  ➡️  Also see, how many times a temporary user accessed your setup\u003Cbr \u002F>\n  ➡️  Track user activity with detailed logs to know what each temporary user did\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>\u003Cstrong>For Developers\u003C\u002Fstrong>\u003C\u002Fh4>\n\u003Cp>If you need an admin access to your client’s WordPress setup to resolve any issues, use following template to ask your client to give you a temporary access to their WordPress setup.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Hi {%customer_name%},\u003C\u002Fp>\n\u003Cp>To allow me to investigate on your site, install & activate the free WordPress plugin – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftemporary-login-without-password\u002F\" rel=\"ugc\">Temporary Login Without Password\u003C\u002Fa>, and give me admin access to your site via the temporary link generated. Once I’ll get the admin access, I’ll check your site & will try to resolve the issue.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note\u003C\u002Fstrong>:\u003Cbr \u002F>\n  Keep the expiry of a temporary login link for one month. Send the created login link as a reply to this email.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>Temporary Login Without Password Pro Features\u003C\u002Fh3>\n\u003Cp>➡️ Limit Link Usage: Set a maximum number of times a temporary login link can be used, ensuring controlled, secure access.\u003C\u002Fp>\n\u003Cp>➡️ Instant Admin Alerts: Receive notifications each time a temporary login is accessed, keeping you informed of all activity.\u003C\u002Fp>\n\u003Cp>➡️ Activity Log: View detailed activity of each temporary user to monitor what actions they performed while logged in.\u003C\u002Fp>\n\u003Cp>Ready to take your security and convenience to the next level?\u003Cbr \u002F>\n\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.icegram.com\u002F?buy-now=445245&qty=1&coupon=tlwp-pro-20&with-cart=1\" rel=\"nofollow ugc\">Upgrade to TLWP Pro\u003C\u002Fa>\u003C\u002Fstrong> today to unlock our advanced features. Experience the full power of secure, temporary, passwordless access for your WordPress \u002F WooCommerce site.\u003C\u002Fp>\n\u003Ch4>What users have to say about Temporary Login Without Password?\u003C\u002Fh4>\n\u003Cp>👉 \u003Cstrong>It works with WordPress.com business plan!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>I love this plugin! I got the impression that Temporary Login Without Password plugin would only work with WordPress.org sites. When I had a problem with another plugin, I reached out to their tech support. They recommended Temporary Login. I crossed my fingers, installed it, and it worked like a charm. No more worrying about possibly compromising my sites. When tech support was done, I went into the settings and revoked access. This is a game changer!\u003Cbr \u002F>\n  – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fit-works-with-wordpress-com-business-plan\u002F\" rel=\"ugc\">Suzanne Loeb\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>👉 \u003Cstrong>Convenient. No rabbit holes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>I can’t say I’ve used a whole bunch of these plugins, but I can say I’ve used 2 or 3. This one was the most straight forward and rushing through it I still didn’t run into any issues. The login was shot to the company I needed to let in and I was able to get back to marking things off of my checklist. Highly recommend to anyone that is needing to make a temporary user account for the first time. There’s literally nowhere to get confused from my personal experience\u003Cbr \u002F>\n  – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fconvenient-no-rabbit-holes\u002F\" rel=\"ugc\">Peter Higgins\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>👉 \u003Cstrong>Clear and efficient.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Clear and efficient. Nothing to add !\u003Cbr \u002F>\n  Continue like that !\u003Cbr \u002F>\n  Make the world of the web even more fun for all pro and amateur users!\u003Cbr \u002F>\n  – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fclear-and-efficient-2\u002F\" rel=\"ugc\">muten7\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>👉 \u003Cstrong>Excellent Plugin\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Having problems with another plugin the developer recommended TPWP. It does exactly as it states. The developer was able to identify the bug, done without comprising security. The fact it records the access you have granted is a another advantage.\u003Cbr \u002F>\n  – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fexcellent-plugin-3772\u002F\" rel=\"ugc\">mickpamg\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>👉 \u003Cstrong>A huge help and easy!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>This plugin was just what I needed to make it easy for support people to come in and get their assessments done then I don’t have to worry about revoking permission…this takes care of that for me! Love it!!!\u003Cbr \u002F>\n  – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fa-huge-help-and-easy\u002F\" rel=\"ugc\">bfauscette\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>Go to \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Ftemporary-login-without-password\u002Freviews\u002F\" rel=\"ugc\">Temporary Login Without Password plugin review section\u003C\u002Fa> and read our recent reviews.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Spread The Love ❤️\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>If you like Temporary Login Without Password, please leave a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Ftemporary-login-without-password\u002Freviews\u002F#new-post\" rel=\"ugc\">five stars ⭐⭐⭐⭐⭐\u003C\u002Fa> and also spread the word about it via \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fsharer.php?u=https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftemporary-login-without-password\u002F\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fintent\u002Ftweet?url=https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ftemporary-login-without-password\u002F\" rel=\"nofollow ugc\">Twitter\u003C\u002Fa>. That helps fellow website owners assess Temporary Login Without Password easily and benefit from it!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What’s Next\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>If you like this plugin then consider checking out our other solutions:\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Femail-subscribers\u002F\" rel=\"ugc\">Icegram Express\u003C\u002Fa> – A complete newsletter plugin which lets you collect leads, send automated new blog post notification emails, create & send broadcasts, and also manage them all in one single place.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ficegram-mailer\u002F\" rel=\"ugc\">Icegram Mailer\u003C\u002Fa> – Reliable built‑in email delivery for WordPress & WooCommerce with real‑time logs, analytics, and a free 200‑email plan.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ficegram\u002F\" rel=\"ugc\">Icegram Engage\u003C\u002Fa> – Popups, Welcome Bar, Opt-ins & Lead Generation plugin\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ficegram-rainmaker\u002F\" rel=\"ugc\">Icegram Collect\u003C\u002Fa> – Best form plugin on WordPress\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsmart-manager-for-wp-e-commerce\u002F\" rel=\"ugc\">Smart Manager\u003C\u002Fa> – Manage & Bulk edit Products, Orders & more..\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Foffermative-discount-pricing-related-products-upsell-funnels-for-woocommerce\u002F\" rel=\"ugc\">Offermative\u003C\u002Fa> – Dynamic discount pricing, related product recommendations, upsells and funnels for WooCommerce.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fduplicate-post-page-copy-clone-wp\u002F\" rel=\"ugc\">Post \u002F Page Duplicate\u003C\u002Fa> – Ultimate one‑click content duplicator for WordPress, letting you clone posts, pages & custom post types effortlessly\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ficegram-cookie-manager\u002F\" rel=\"ugc\">Icegram Cookie Manager\u003C\u002Fa> – Customizable cookie consent banner with privacy policy links and styling options for WordPress\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fswitch-user-login-by-icegram\u002F\" rel=\"ugc\">Switch User Login\u003C\u002Fa> – Instantly switch between WordPress user accounts from the admin bar for seamless testing, debugging, and multisite\u002FWooCommerce management\u003C\u002Fp>\n\u003Cp>Also, check our other \u003Ca href=\"https:\u002F\u002Fwww.storeapps.org\u002Fshop\u002F?utm_source=wprepo&utm_medium=tlwp&utm_campaign=sa_products_upsell&utm_content=readme\" rel=\"nofollow ugc\">Premium WooCommerce plugins.\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Do you use WooCommerce? Our analytics tool \u003Ca href=\"https:\u002F\u002Fwww.putler.com\u002F?utm_source=wprepo&utm_medium=tlwp&utm_campaign=putler_outreach&utm_content=readme\" rel=\"nofollow ugc\">Putler\u003C\u002Fa> will help you enriches your store data. Using Putler, you’ll understand your business better and make profitable decisions quickly.\u003C\u002Fp>\n","Create self-expiring, temporary admin accounts. Easily share direct login links (no need for username\u002Fpassword) with your developers or editors.",100000,1865629,100,1499,"2025-12-22T11:48:00.000Z","6.8.5","3.0.1","5.3",[76,77,78,79,80],"developer-access","magic-pin","passwordless-login","secure-login","temporary-access","http:\u002F\u002Fwww.storeapps.org\u002Fcreate-secure-login-without-password-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftemporary-login-without-password.1.9.7.zip",1,"2021-11-15 00:00:00",{"slug":86,"name":87,"version":88,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":93,"downloaded":94,"rating":95,"num_ratings":96,"last_updated":97,"tested_up_to":98,"requires_at_least":99,"requires_php":17,"tags":100,"homepage":101,"download_link":102,"security_score":103,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"temporary-login","Temporary Login","1.3.0","Elementor","https:\u002F\u002Fprofiles.wordpress.org\u002Felemntor\u002F","\u003Cp>Temporary Login creates a secure, temporary URL for easy access to your WP admin with no username and password. Share this URL with trusted support agents and colleagues in order to resolve issues quickly, and shut down access as soon as you’re done.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>FEATURES\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Grant access to your site with a single click; a temporary URL will be created that you can share for admin-level access to your site and it will automatically expire 7 days from creation.\u003C\u002Fli>\n\u003Cli>Extend access – need more time? No problem. Just click to extend access so that users don’t get locked out.\u003C\u002Fli>\n\u003Cli>All done? Revoke access and the link becomes inaccessible.\u003C\u002Fli>\n\u003Cli>Auto disable access – whether you forget to revoke access or lose track of the timing, there’s no need to worry. We will automatically disable the access URL at the expiration, within 7 days.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>CONTRIBUTION\u003C\u002Fh4>\n\u003Cp>Would you like to contribute to this plugin? You’re more than welcome to submit your pull requests on the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Felementor\u002Ftemporary-login\u002F\" rel=\"nofollow ugc\">GitHub repo\u003C\u002Fa>. Also, if you have any notes about the code, please open a ticket on the issue tracker.\u003C\u002Fp>\n","Create a secure, temporary URL for easy access to your WP admin.",40000,134160,80,4,"2024-11-26T16:13:00.000Z","6.7.5","6.2",[21,78,80,86],"https:\u002F\u002Felementor.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftemporary-login.1.3.0.zip",92,{"slug":105,"name":106,"version":107,"author":108,"author_profile":109,"description":110,"short_description":111,"active_installs":112,"downloaded":113,"rating":103,"num_ratings":114,"last_updated":115,"tested_up_to":98,"requires_at_least":116,"requires_php":74,"tags":117,"homepage":121,"download_link":122,"security_score":103,"vuln_count":13,"unpatched_count":13,"last_vuln_date":25,"fetched_at":26},"remove-dashboard-access-for-non-admins","Remove Dashboard Access","1.2.1","TrustedLogin","https:\u002F\u002Fprofiles.wordpress.org\u002Ftrustedlogin\u002F","\u003Cp>The easiest and safest way to restrict access to your WordPress site’s Dashboard and administrative menus. Remove Dashboard Access is a lightweight plugin that automatically redirects users who shouldn’t have access to the Dashboard to a custom URL of your choosing. Redirects can also be configured on a per-role\u002Fper-capability basis, allowing you to keep certain users out of the Dashboard, while retaining access for others.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Limit Dashboard access to user roles:\n\u003Cul>\n\u003Cli>Admins only\u003C\u002Fli>\n\u003Cli>Admins + editors\u003C\u002Fli>\n\u003Cli>Admins, editors, and authors\u003C\u002Fli>\n\u003Cli>or restrict by specific user capability\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Choose your own redirect URL\u003C\u002Fli>\n\u003Cli>Optionally allow users to edit their profiles\u003C\u002Fli>\n\u003Cli>Display a message on the login screen so users know why they’re being redirected\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Blocking access to the Dashboard is a great way to prevent clients from breaking their sites, prevent users from seeing things they shouldn’t, and to keep your site’s backend more secure.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Allow only users with roles or capabilities:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>You can restrict Dashboard access to Admins only, Editors or above, Authors or above, or by selecting a specific user capability.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Grant access to user profiles:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Optionally allow all users the ability to edit their profiles in the Dashboard. Users lacking the chosen capability won’t be able to access any other sections of the Dashboard.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Show a custom login message:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Supply a message to display on the login screen. Leaving this blank disables the message.\u003C\u002Fli>\n\u003C\u002Ful>\n","Disable Dashboard access for users of a specific role or capability. Disallowed users are redirected to a chosen URL. Get set up in seconds.",30000,467245,78,"2024-11-29T20:13:00.000Z","3.1.0",[19,118,119,21,120],"administration","dashboard","restrict","https:\u002F\u002Fwww.trustedlogin.com\u002Fremove-dashboard-access\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fremove-dashboard-access-for-non-admins.1.2.1.zip",{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":131,"downloaded":132,"rating":133,"num_ratings":134,"last_updated":135,"tested_up_to":72,"requires_at_least":136,"requires_php":16,"tags":137,"homepage":16,"download_link":143,"security_score":144,"vuln_count":83,"unpatched_count":13,"last_vuln_date":145,"fetched_at":26},"accessibility-by-audioeye","Accessibility by AudioEye","1.1.0","netopsae","https:\u002F\u002Fprofiles.wordpress.org\u002Fnetopsae\u002F","\u003Cp>AudioEye’s patented technology tests for over 400 accessibility and compliance issues, and fixes many of them automatically, reducing the time to make content accessible.\u003C\u002Fp>\n\u003Cp>You will get your first AudioEye Accessibility Score the moment you install AudioEye on your site. From then on, AudioEye monitors your site for new issues with every site visitor, detecting and fixing hundreds of errors, while also providing you with a reporting dashboard that identifies what we cannot fix and needs your attention.\u003C\u002Fp>\n\u003Cp>Technology can’t do it alone. With advanced plans, AudioEye has a team of certified accessibility experts who can help you throughout your accessibility journey. For those issues that we cannot fix automatically, we show you what the issue is, and how to address it on your site. If a lawsuit occurs, AudioEye is here to support you every step of the way.\u003C\u002Fp>\n\u003Cp>Note: Use of the AudioEye plugin requires an active subscription to an AudioEye Plan. See pricing \u003Ca href=\"https:\u002F\u002Fwww.audioeye.com\u002Fplans-and-pricing\" rel=\"nofollow ugc\">here\u003C\u002Fa>. A link to sign up for a new account is presented during the plugin activation process. To log into an existing AudioEye account, you will need to provide your AudioEye Site ID.\u003C\u002Fp>\n\u003Cp>Features included in all AudioEye base plans:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Path to compliance with ADA, Sec 508, AODA & more, using WCAG 2.1 AA\u003C\u002Fli>\n\u003Cli>AudioEye Trusted Certification​\u003C\u002Fli>\n\u003Cli>Usability toolbar with 24\u002F7 Helpdesk​\u003C\u002Fli>\n\u003Cli>Suite of AI-Powered Tests & Fixes​\u003C\u002Fli>\n\u003Cli>Access to Certified Accessibility Experts\u003C\u002Fli>\n\u003Cli>Basic Legal Support & Warranty​\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Features available in AudioEye custom plans:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Advanced Legal Support\u003C\u002Fli>\n\u003Cli>Manual Remediations\u003C\u002Fli>\n\u003Cli>Premium Support\u003C\u002Fli>\n\u003Cli>Custom Training\u003C\u002Fli>\n\u003C\u002Ful>\n","AudioEye automatically finds and fixes common accessibility issues on your site. This plugin provides an easy way to install AudioEye’s accessibility  &hellip;",1000,18860,66,7,"2025-12-16T17:07:00.000Z","5.1",[138,139,140,141,142],"accessibility","ada","compliance","monitoring","wcag","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Faccessibility-by-audioeye.zip",99,"2025-12-14 00:00:00",{"attackSurface":147,"codeSignals":183,"taintFlows":191,"riskAssessment":300,"analyzedAt":310},{"hooks":148,"ajaxHandlers":179,"restRoutes":180,"shortcodes":181,"cronEvents":182,"entryPointCount":13,"unprotectedCount":13},[149,155,159,164,168,171,175],{"type":150,"name":151,"callback":152,"file":153,"line":154},"action","admin_init","register_settings","src\\App.php",15,{"type":150,"name":156,"callback":157,"file":153,"line":158},"admin_menu","register_admin_menu",16,{"type":150,"name":160,"callback":161,"priority":162,"file":153,"line":163},"wp_login","send_login_alert",20,18,{"type":150,"name":165,"callback":166,"priority":162,"file":153,"line":167},"activated_plugin","send_activate_plug_alert",19,{"type":150,"name":169,"callback":170,"priority":162,"file":153,"line":162},"deactivated_plugin","send_deactivate_plug_alert",{"type":150,"name":172,"callback":173,"priority":162,"file":153,"line":174},"deleted_plugin","send_deleted_plug_alert",21,{"type":150,"name":176,"callback":177,"priority":162,"file":153,"line":178},"switch_theme","send_switch_theme_alert",22,[],[],[],[],{"dangerousFunctions":184,"sqlUsage":185,"outputEscaping":187,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":190},[],{"prepared":13,"raw":13,"locations":186},[],{"escaped":188,"rawEcho":13,"locations":189},55,[],[],[192,217,230,241,252,265],{"entryPoint":193,"graph":194,"unsanitizedCount":215,"severity":216},"send_login_alert (src\\App.php:128)",{"nodes":195,"edges":211},[196,201,205],{"id":197,"type":198,"label":199,"file":153,"line":200},"n0","source","$_SERVER (x2)",144,{"id":202,"type":203,"label":204,"file":153,"line":200},"n1","transform","→ get_login_tmpl()",{"id":206,"type":207,"label":208,"file":153,"line":209,"wp_function":210},"n2","sink","echo() [XSS]",389,"echo",[212,214],{"from":197,"to":202,"sanitized":213},false,{"from":202,"to":206,"sanitized":213},2,"medium",{"entryPoint":218,"graph":219,"unsanitizedCount":215,"severity":216},"send_activate_plug_alert (src\\App.php:162)",{"nodes":220,"edges":227},[221,223,225],{"id":197,"type":198,"label":199,"file":153,"line":222},190,{"id":202,"type":203,"label":224,"file":153,"line":222},"→ get_plug_tmpl()",{"id":206,"type":207,"label":208,"file":153,"line":226,"wp_function":210},448,[228,229],{"from":197,"to":202,"sanitized":213},{"from":202,"to":206,"sanitized":213},{"entryPoint":231,"graph":232,"unsanitizedCount":215,"severity":216},"send_deactivate_plug_alert (src\\App.php:209)",{"nodes":233,"edges":238},[234,236,237],{"id":197,"type":198,"label":199,"file":153,"line":235},237,{"id":202,"type":203,"label":224,"file":153,"line":235},{"id":206,"type":207,"label":208,"file":153,"line":226,"wp_function":210},[239,240],{"from":197,"to":202,"sanitized":213},{"from":202,"to":206,"sanitized":213},{"entryPoint":242,"graph":243,"unsanitizedCount":215,"severity":216},"send_deleted_plug_alert (src\\App.php:256)",{"nodes":244,"edges":249},[245,247,248],{"id":197,"type":198,"label":199,"file":153,"line":246},284,{"id":202,"type":203,"label":224,"file":153,"line":246},{"id":206,"type":207,"label":208,"file":153,"line":226,"wp_function":210},[250,251],{"from":197,"to":202,"sanitized":213},{"from":202,"to":206,"sanitized":213},{"entryPoint":253,"graph":254,"unsanitizedCount":215,"severity":216},"send_switch_theme_alert (src\\App.php:304)",{"nodes":255,"edges":262},[256,258,260],{"id":197,"type":198,"label":199,"file":153,"line":257},330,{"id":202,"type":203,"label":259,"file":153,"line":257},"→ get_theme_tmpl()",{"id":206,"type":207,"label":208,"file":153,"line":261,"wp_function":210},507,[263,264],{"from":197,"to":202,"sanitized":213},{"from":202,"to":206,"sanitized":213},{"entryPoint":266,"graph":267,"unsanitizedCount":299,"severity":216},"\u003CApp> (src\\App.php:0)",{"nodes":268,"edges":290},[269,272,273,274,276,278,280,282,284,286,288],{"id":197,"type":198,"label":270,"file":153,"line":271},"$_SERVER (x6)",320,{"id":202,"type":207,"label":208,"file":153,"line":209,"wp_function":210},{"id":206,"type":198,"label":199,"file":153,"line":200},{"id":275,"type":203,"label":204,"file":153,"line":200},"n3",{"id":277,"type":207,"label":208,"file":153,"line":209,"wp_function":210},"n4",{"id":279,"type":198,"label":270,"file":153,"line":222},"n5",{"id":281,"type":203,"label":224,"file":153,"line":222},"n6",{"id":283,"type":207,"label":208,"file":153,"line":226,"wp_function":210},"n7",{"id":285,"type":198,"label":199,"file":153,"line":257},"n8",{"id":287,"type":203,"label":259,"file":153,"line":257},"n9",{"id":289,"type":207,"label":208,"file":153,"line":261,"wp_function":210},"n10",[291,293,294,295,296,297,298],{"from":197,"to":202,"sanitized":292},true,{"from":206,"to":275,"sanitized":213},{"from":275,"to":277,"sanitized":213},{"from":279,"to":281,"sanitized":213},{"from":281,"to":283,"sanitized":213},{"from":285,"to":287,"sanitized":213},{"from":287,"to":289,"sanitized":213},10,{"summary":301,"deductions":302},"The \"monitor-login\" v0.1.5 plugin exhibits a generally strong security posture based on the provided static analysis.  The absence of any AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the plugin's attack surface.  Furthermore, the code demonstrates excellent practices by using prepared statements for all SQL queries and properly escaping all output.  The taint analysis reveals no critical or high-severity flows with unsanitized paths, which is a positive indicator. The plugin's vulnerability history is also clean, with no recorded CVEs, suggesting a history of secure development or diligent patching if issues have arisen in the past.\n\nHowever, there are a few areas that warrant attention. The static analysis reports 0 nonces and 0 capability checks. While the plugin's limited attack surface might make this less critical in this specific version, it represents a missed opportunity to implement robust security measures.  A significant concern identified in the taint analysis is that all 6 analyzed flows have unsanitized paths. Although these flows are not deemed critical or high severity, the presence of unsanitized paths, even in low-severity scenarios, can be a precursor to vulnerabilities if the plugin evolves or interacts with other components in unexpected ways.  The lack of any historical vulnerabilities is a good sign, but it doesn't fully compensate for the identified unsanitized paths.\n\nIn conclusion, \"monitor-login\" v0.1.5 appears to be a secure plugin due to its minimal attack surface and adherence to core security practices like prepared statements and output escaping. The absence of historical vulnerabilities is reassuring. However, the presence of unsanitized paths in all analyzed taint flows and the complete lack of nonce and capability checks represent potential weaknesses that should be addressed to further strengthen its security, especially if the plugin's functionality expands in future versions.",[303,306,308],{"reason":304,"points":305},"Unsanitized paths in taint flows",12,{"reason":307,"points":29},"Missing nonce checks",{"reason":309,"points":29},"Missing capability checks","2026-03-16T22:26:16.280Z",{"wat":312,"direct":317},{"assetPaths":313,"generatorPatterns":314,"scriptPaths":315,"versionParams":316},[],[],[],[],{"cssClasses":318,"htmlComments":319,"htmlAttributes":320,"restEndpoints":321,"jsGlobals":322,"shortcodeOutput":323},[],[],[],[],[],[]]