[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$ft416smZbzXuKe1m5Fja3m7ZIvZ8qv8005JwlE1KjvKk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":121,"fingerprints":243},"new-users-monitor","New Users Monitor","3.22","wpgear","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpgear\u002F","\u003Cp>Ext Security.\u003Cbr \u002F>\nYou may not know that your site has already been hacked.\u003Cbr \u002F>\nThere are many ways to add a new user to the system, without your knowledge.\u003Cbr \u002F>\nThis plugin will promptly notify you that a new user has registered on your site.\u003Cbr \u002F>\nNow the console has a widget that displays all new users.\u003C\u002Fp>\n\u003Cp>All new users will be highlighted in red until Admin confirm each of them in User-Profile.\u003Cbr \u002F>\nWith the active Option: “Deny Login if User is not confirmed”, you will sleep much more peacefully.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>This plugin has already helped out many times when some of our sites were hacked. But we quickly found out about it. And we were able to fast stop the problem.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Automatic scanning of the Users list on a schedule, and detect unauthorized addition to the DB.\u003C\u002Fli>\n\u003Cli>Notification to Administrator by e-mail.\u003C\u002Fli>\n\u003Cli>The “Users” Table has a sortable Column “Confirm” ON\u002FOFF. Users who are not Verified are highlighted in red.\u003C\u002Fli>\n\u003Cli>Option: “Allow to change Settings – only for Admin”. Default = ON\u003C\u002Fli>\n\u003Cli>Option: “Deny Login if User is not confirmed”. Default = ON\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadaptive-login-action\" rel=\"ugc\">Integration with “Adaptive Login Action”\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Ext Security. Automatic scanning of the Users list, detect unauthorized addition. Informs immediately Admin by email. Informative Widget.",10,1762,0,"2026-03-04T17:37:00.000Z","6.9.4","4.1","5.4",[19,20,21,22,23],"accept","login","members","security","users","https:\u002F\u002Fwpgear.xyz\u002Fnew-users-monitor","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnew-users-monitor.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},15,2270,97,33,86,"2026-04-04T00:45:44.452Z",[38,58,75,88,103],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":15,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":56,"download_link":57,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"expire-user-passwords","Expire User Passwords","1.4.2","Matt Miller","https:\u002F\u002Fprofiles.wordpress.org\u002Fmillermedianow\u002F","\u003Cp>Note: This is a forked version of the now unsupported \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fexpire-passwords\u002F\" rel=\"ugc\">Expire Passwords\u003C\u002Fa> plugin. The notes below are copied over from the original plugin and will be updated as relevant updates become available. Please help by contributing to the GitHub repository \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FMiller-Media\u002Fexpire-passwords\" rel=\"nofollow ugc\">Expire Passwords\u003C\u002Fa> on GitHub\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Did you find this plugin helpful? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Fexpire-user-passwords\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Harden the security of your site by preventing unauthorized access to stale user accounts.\u003C\u002Fp>\n\u003Cp>This plugin is also ideal for sites needing to meet certain industry security compliances – such as government, banking or healthcare.\u003C\u002Fp>\n\u003Cp>In the plugin settings you can set the maximum number of days users are allowed to use the same password (90 days by default), as well as which user roles will be required to reset their passwords regularly (non-Administrators by default).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Languages supported:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Albanian (Shqip)\u003C\u002Fli>\n\u003Cli>Arabic (العربية)\u003C\u002Fli>\n\u003Cli>Armenian (Հայերեն)\u003C\u002Fli>\n\u003Cli>Basque (Euskara)\u003C\u002Fli>\n\u003Cli>Bengali (বাংলা)\u003C\u002Fli>\n\u003Cli>Bulgarian (Български)\u003C\u002Fli>\n\u003Cli>Catalan (Català)\u003C\u002Fli>\n\u003Cli>Chinese Simplified (简体中文)\u003C\u002Fli>\n\u003Cli>Croatian (Hrvatski)\u003C\u002Fli>\n\u003Cli>Czech (Čeština)\u003C\u002Fli>\n\u003Cli>Danish (Dansk)\u003C\u002Fli>\n\u003Cli>Dutch (Nederlands)\u003C\u002Fli>\n\u003Cli>Estonian (Eesti)\u003C\u002Fli>\n\u003Cli>Finnish (Suomi)\u003C\u002Fli>\n\u003Cli>French (Français)\u003C\u002Fli>\n\u003Cli>Galician (Galego)\u003C\u002Fli>\n\u003Cli>Georgian (ქართული)\u003C\u002Fli>\n\u003Cli>German (Deutsch)\u003C\u002Fli>\n\u003Cli>Greek (Ελληνικά)\u003C\u002Fli>\n\u003Cli>Hebrew (עברית)\u003C\u002Fli>\n\u003Cli>Hindi (हिन्दी)\u003C\u002Fli>\n\u003Cli>Hungarian (Magyar)\u003C\u002Fli>\n\u003Cli>Indonesian (Bahasa Indonesia)\u003C\u002Fli>\n\u003Cli>Irish (Gaeilge)\u003C\u002Fli>\n\u003Cli>Italian (Italiano)\u003C\u002Fli>\n\u003Cli>Japanese (日本語)\u003C\u002Fli>\n\u003Cli>Korean (한국어)\u003C\u002Fli>\n\u003Cli>Latvian (Latviešu)\u003C\u002Fli>\n\u003Cli>Lithuanian (Lietuvių)\u003C\u002Fli>\n\u003Cli>Macedonian (Македонски)\u003C\u002Fli>\n\u003Cli>Norwegian (Norsk)\u003C\u002Fli>\n\u003Cli>Persian (فارسی)\u003C\u002Fli>\n\u003Cli>Persian – Afghanistan (دری)\u003C\u002Fli>\n\u003Cli>Polish (Polski)\u003C\u002Fli>\n\u003Cli>Portuguese – Brazil (Português do Brasil)\u003C\u002Fli>\n\u003Cli>Portuguese – Portugal (Português)\u003C\u002Fli>\n\u003Cli>Romanian (Română)\u003C\u002Fli>\n\u003Cli>Russian (Русский)\u003C\u002Fli>\n\u003Cli>Serbian (Српски)\u003C\u002Fli>\n\u003Cli>Slovak (Slovenčina)\u003C\u002Fli>\n\u003Cli>Slovenian (Slovenščina)\u003C\u002Fli>\n\u003Cli>Spanish (Español)\u003C\u002Fli>\n\u003Cli>Swedish (Svenska)\u003C\u002Fli>\n\u003Cli>Tamil (தமிழ்)\u003C\u002Fli>\n\u003Cli>Thai (ไทย)\u003C\u002Fli>\n\u003Cli>Turkish (Türkçe)\u003C\u002Fli>\n\u003Cli>Ukrainian (Українська)\u003C\u002Fli>\n\u003Cli>Urdu (اردو)\u003C\u002Fli>\n\u003Cli>Vietnamese (Tiếng Việt)\u003C\u002Fli>\n\u003Cli>Welsh (Cymraeg)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Development of this plugin is done \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FMiller-Media\u002Fexpire-passwords\" rel=\"nofollow ugc\">on GitHub\u003C\u002Fa>. Pull requests welcome. Please see \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FMiller-Media\u002Fexpire-passwords\u002Fissues\" rel=\"nofollow ugc\">issues reported\u003C\u002Fa> there before going to the plugin forum.\u003C\u002Fstrong>\u003C\u002Fp>\n","Require certain users to change their passwords on a regular basis.",3000,57937,84,5,"2026-02-17T09:27:00.000Z","4.0","8.1",[20,54,55,22,23],"membership","passwords","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fexpire-user-passwords.1.4.2.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":26,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":16,"requires_php":56,"tags":71,"homepage":56,"download_link":73,"security_score":74,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"prevent-concurrent-logins","Prevent Concurrent Logins","0.4.0","Frankie Jarrett","https:\u002F\u002Fprofiles.wordpress.org\u002Ffjarrett\u002F","\u003Cp>\u003Cstrong>Did you find this plugin helpful? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Fprevent-concurrent-logins\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Deters members\u002Fsubscribers from sharing their accounts with others\u003C\u002Fli>\n\u003Cli>Hardens security by destoying old sessions automatically\u003C\u002Fli>\n\u003Cli>Prompts old sessions to login again if they want to continue\u003C\u002Fli>\n\u003Cli>Ideal for membership sites and web applications\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Important:\u003C\u002Fstrong> If you plan to network-activate this plugin on a multisite network, please install the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fproper-network-activation\u002F\" rel=\"ugc\">Proper Network Activation\u003C\u002Fa> plugin \u003Cem>beforehand\u003C\u002Fem>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Development of this plugin is done \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffjarrett\u002Fprevent-concurrent-logins\" rel=\"nofollow ugc\">on GitHub\u003C\u002Fa>. Pull requests welcome. Please see \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffjarrett\u002Fprevent-concurrent-logins\u002Fissues\" rel=\"nofollow ugc\">issues reported\u003C\u002Fa> there before going to the plugin forum.\u003C\u002Fstrong>\u003C\u002Fp>\n","Prevents users from staying logged into the same account from multiple places.",900,17293,17,"2016-08-16T22:21:00.000Z","4.6.30",[20,54,22,72,23],"sensei","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprevent-concurrent-logins.0.4.0.zip",85,{"slug":76,"name":77,"version":78,"author":7,"author_profile":8,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":13,"num_ratings":13,"last_updated":83,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":84,"homepage":86,"download_link":87,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"users-login-monitor","Users Login Monitor","5.22","\u003Cp>Ext Security.\u003Cbr \u002F>\nDashboard & Daily-Digest about users activity.\u003Cbr \u002F>\nNow the console has a widget that displays last login users, whith: Date-Time, IP address (whith Whois info) and Device type\u002FBrowser.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Even without going to the site admin area, you will be informed about the activity of the current day.\u003C\u002Fli>\n\u003Cli>Any person can be a recipient of notifications. Not necessarily the Administrator.\u003C\u002Fli>\n\u003Cli>Now in the Admin console you have a new widget with a list of users in order of decreasing Login time.\u003C\u002Fli>\n\u003Cli>Determine and save the IP address, device and browser details, from which the was made Login. (if your server is configured correctly). For better informational content, in order to be able to determine the parameters of the User’s devices (OS, Browser, Type Device), you should have a PHP extension on the server: “Browscap”. Alternatively, you can use the Lite-Version – Plugin: “quick-browscap” from the official WP repository.\u003C\u002Fli>\n\u003Cli>It is important to understand that the time to enter the site and the time of the last activity of the user are different events.\u003C\u002Fli>\n\u003Cli>Displays “Login Success” Statistics for each User.\u003C\u002Fli>\n\u003Cli>Displays Count “Users Activity” in Admin Bar.\u003C\u002Fli>\n\u003C\u002Ful>\n","A freeware plugin, for daily-notify site administrator, about users who logged in during the day.",30,2487,"2026-02-26T09:01:00.000Z",[20,85,21,22,23],"logout","https:\u002F\u002Fwpgear.xyz\u002Fusers-login-monitor","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fusers-login-monitor.zip",{"slug":89,"name":90,"version":91,"author":62,"author_profile":63,"description":92,"short_description":93,"active_installs":94,"downloaded":95,"rating":96,"num_ratings":97,"last_updated":98,"tested_up_to":99,"requires_at_least":16,"requires_php":56,"tags":100,"homepage":56,"download_link":102,"security_score":74,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"user-session-control","User Session Control","0.3.1","\u003Cp>\u003Cstrong>Did you find this plugin helpful? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Fuser-session-control\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>WordPress 4.1 “Dinah” introduced the awesome power of user session management.\u003C\u002Fp>\n\u003Cp>However, you are limited to only being able to destroy your own sessions, and you cannot destroy them individually.\u003C\u002Fp>\n\u003Cp>This plugin allows Administrators to view and manage all sessions by all users on an individual basis.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Displays a custom “God view” screen of all active user sessions\u003C\u002Fli>\n\u003Cli>Sort sessions by user, role, creation date, expiry date or IP address\u003C\u002Fli>\n\u003Cli>Quickly and easily destroy sessions you think may be a security risk\u003C\u002Fli>\n\u003Cli>Respects the timezone, date format and time format saved under General Settings\u003C\u002Fli>\n\u003Cli>View all user sessions from all blogs on your network via the Network Admin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Languages supported:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003Cli>Deutsch\u003C\u002Fli>\n\u003Cli>Español\u003C\u002Fli>\n\u003Cli>Français\u003C\u002Fli>\n\u003Cli>Português\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Development of this plugin is done \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffjarrett\u002Fuser-session-control\" rel=\"nofollow ugc\">on GitHub\u003C\u002Fa>. Pull requests welcome. Please see \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffjarrett\u002Fuser-session-control\u002Fissues\" rel=\"nofollow ugc\">issues reported\u003C\u002Fa> there before going to the plugin forum.\u003C\u002Fstrong>\u003C\u002Fp>\n","View and manage all active user sessions in a custom admin screen.",700,10133,94,7,"2016-12-23T19:25:00.000Z","4.7.32",[20,22,101,23],"sessions","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-session-control.0.3.1.zip",{"slug":104,"name":105,"version":106,"author":107,"author_profile":108,"description":109,"short_description":110,"active_installs":111,"downloaded":112,"rating":26,"num_ratings":113,"last_updated":114,"tested_up_to":115,"requires_at_least":116,"requires_php":56,"tags":117,"homepage":56,"download_link":120,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"spiral-secure-session-manager","SPIRALセキュアセッションマネージャー","1.2.0","SPIRAL Inc.","https:\u002F\u002Fprofiles.wordpress.org\u002Fspiralplatform\u002F","\u003Cp>“SPIRALセキュアセッションマネージャー”は スパイラル株式会社 が提供するクラウド型ローコード開発プラットフォームSPIRALを利用し、安全な会員サイトを制作できるプラグインです。プログラム開発は一切不要。どなたでも簡単に会員サイトを作成することができます。\u003Cbr \u002F>\nプラグインの特長\u003Cbr \u002F>\n　・ログインフォームをウィジェットとして表示\u003Cbr \u002F>\n　・会員データは高セキュリティなSPIRALのデータベースにて安全に保管されます。\u003Cbr \u002F>\n　・SPIRALの会員データへの認証とセッション管理が自動で行えます。\u003Cbr \u002F>\n　・会員サイトを実現する複数のショートコードを提供\u003Cbr \u002F>\n　ショートコードを利用してWebコンテンツページをログインにより表示内容の切り分けができます。\u003Cbr \u002F>\n　また、会員属性によってもコンテンツ内容の表示の切り分けが可能です。\u003Cbr \u002F>\n　さらに、SPIRALのデータベースに保管されているデータをコンテンツページへ表示も可能です。\u003Cbr \u002F>\nプラグインの設定方法やショートコード情報などは\u003Ca href=\"https:\u002F\u002Fapl-support.pi-pe.co.jp\u002Fs3m\u002F\" rel=\"nofollow ugc\">サポートサイト\u003C\u002Fa>を参照してください。\u003Cbr \u002F>\n※SPIRALは スパイラル株式会社 の登録商標です。\u003C\u002Fp>\n\u003Cp>このプラグインは会員管理機能を提供するために第三者（外部）サービスを利用しています。\u003Cbr \u002F>\nプラグインを利用するには、\u003Ca href=\"https:\u002F\u002Fwww.spiral-platform.co.jp\u002Fservice\u002Fspiralv1\u002F\" rel=\"nofollow ugc\">SPIRAL ver.1\u003C\u002Fa> または \u003Ca href=\"https:\u002F\u002Fspiral.pi-pe.co.jp\u002F\" rel=\"nofollow ugc\">SPIRAL ver.2\u003C\u002Fa>の契約が別途必要です。\u003C\u002Fp>\n\u003Cp>“SPIRALセキュアセッションマネージャー” is a plugin that utilizes the cloud-based low-code development platform SPIRAL provided by SPIRAL Inc. , enabling the creation of secure membership sites. No programming is required, and anyone can easily create a membership site.\u003Cbr \u002F>\nPlugin Features:\u003Cbr \u002F>\n– Display the login form as a widget.\u003Cbr \u002F>\n– Member data is securely stored in SPIRAL’s high-security database.\u003Cbr \u002F>\n– Authentication to SPIRAL’s member data and session management are automatically handled.\u003Cbr \u002F>\n– Provides multiple shortcodes to create a membership site.\u003Cbr \u002F>\n– Use shortcodes to differentiate the display content of web content pages based on login status.\u003Cbr \u002F>\n– Additionally, content display differentiation based on member attributes is possible.\u003Cbr \u002F>\n– Furthermore, display data stored in SPIRAL’s database on content pages.\u003Cbr \u002F>\nFor information on plugin settings and shortcodes, please refer to the \u003Ca href=\"https:\u002F\u002Fapl-support.pi-pe.co.jp\u002Fs3m\u002F\" rel=\"nofollow ugc\">support site\u003C\u002Fa>.\u003Cbr \u002F>\n*SPIRAL is a registered trademark of SPIRAL Inc. .\u003C\u002Fp>\n\u003Cp>This plugin utilizes third-party (external) services to provide membership management functionality.\u003Cbr \u002F>\nTo use the plugin, a separate contract with \u003Ca href=\"https:\u002F\u002Fwww.spiral-platform.co.jp\u002Fservice\u002Fspiralv1\u002F\" rel=\"nofollow ugc\">SPIRAL ver.1\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fspiral.pi-pe.co.jp\u002F\" rel=\"nofollow ugc\">SPIRAL ver.2\u003C\u002Fa> is required.\u003C\u002Fp>\n\u003Ch3>Service Provider: SPIRAL Platform\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Service URL:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.spiral-platform.co.jp\u002Fservice\u002Fspiralv1\u002F\" rel=\"nofollow ugc\">SPIRAL ver.1\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Terms of Use:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.spiral-platform.co.jp\u002Fwp-content\u002Fuploads\u002Fuser\u002Fspiral\u002FSPIRALv1_agreement.pdf\" rel=\"nofollow ugc\">SPIRAL ver.1 Terms of Use\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Service URL:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fspiral.pi-pe.co.jp\u002F\" rel=\"nofollow ugc\">SPIRAL ver.2\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Terms of Use:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.pi-pe.co.jp\u002Farea\u002Ftable_file\u002FB1-K8B000270010O9k0E0E24000002000hj5\" rel=\"nofollow ugc\">SPIRAL ver.2 Terms of Use\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Usage Details\u003C\u002Fh4>\n\u003Cp>This plugin uses the SPIRAL API to enhance its features. The API requests are made to the following endpoints:\u003C\u002Fp>\n\u003Col>\n\u003Cli>API Endpoint:\n\u003Cul>\n\u003Cli>\u003Cstrong>Endpoint URL:\u003C\u002Fstrong> \u003Ccode>https:\u002F\u002Fapi.spiral-platform.com\u002Fv1\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Authentication Server API Endpoints:\n\u003Cul>\n\u003Cli>\u003Cstrong>Login\u002FCache API:\u003C\u002Fstrong> https:\u002F\u002Fs3m-api.smp.ne.jp\u002Fapi\u002Fv1\u002F\u003C\u002Fli>\n\u003Cli>\u003Cstrong>authentications:\u003C\u002Fstrong> https:\u002F\u002Fs3m-api.smp.ne.jp\u002Fapi\u002Fv1\u002Fauthentications\u002F\u003C\u002Fli>\n\u003Cli>\u003Cstrong>API Location Retrieval:\u003C\u002Fstrong> https:\u002F\u002Fs3m-locator.smp.ne.jp\u002Fapi\u002Fv1\u002Flocator\u002F , https:\u002F\u002Fwww.pi-pe.co.jp\u002Fapi\u002Flocator\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Activation:\u003C\u002Fstrong> https:\u002F\u002Fs3m-account.smp.ne.jp\u002Fapi\u002Fv1\u002F\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>You can review the service URLs and terms of use related to these services at the following links:\u003Cbr \u002F>\n– \u003Cstrong>Service URL:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.spiral-platform.co.jp\u002Fservice\u002Fspiralv1\u002F\" rel=\"nofollow ugc\">SPIRAL ver.1\u003C\u002Fa>\u003Cbr \u002F>\n– \u003Cstrong>Terms of Use:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.spiral-platform.co.jp\u002Fwp-content\u002Fuploads\u002Fuser\u002Fspiral\u002FSPIRALv1_agreement.pdf\" rel=\"nofollow ugc\">SPIRAL ver.1 Terms of Use\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Service URL:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fspiral.pi-pe.co.jp\u002F\" rel=\"nofollow ugc\">SPIRAL ver.2\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Terms of Use:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.pi-pe.co.jp\u002Farea\u002Ftable_file\u002FB1-K8B000270010O9k0E0E24000002000hj5\" rel=\"nofollow ugc\">SPIRAL ver.2 Terms of Use\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Please note that by using this plugin, you acknowledge and agree to the terms of use and privacy policy of SPIRAL.\u003Cbr \u002F>\nMake sure to review them to ensure compliance and understanding of how your data is handled.\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>SPIRALセキュアセッションマネージャー is designed as part of the creation and functionality of membership websites.\u003Cbr \u002F>\nYou can connect your membership website created with this plugin to the low-code development platform SPIRAL and sets the websites to send data to the database in SPIRAL accounts and also can decide which accounts the data is sent to.\u003Cbr \u002F>\nthe data is managed by who managed the accounts. SPIRAL Inc. processes without anyone seeing or touching the data.\u003Cbr \u002F>\nIf you have any questions regarding privacy, please feel free to \u003Ca href=\"https:\u002F\u002Fwww.pi-pe.co.jp\u002Fregist\u002Fis?SMPFORM=man-mcsepb-0e06c81b1a06832e44b64b391bc18b71&f000099823=WordPress%E3%83%97%E3%83%A9%E3%82%B0%E3%82%A4%E3%83%B3%20%E4%BC%9A%E5%93%A1%E7%AE%A1%E7%90%86&f000099824=https:\u002F\u002Fwww.pi-pe.co.jp\u002Fsolution\u002Fwp-mls\u002F\" rel=\"nofollow ugc\">contact us\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This plugin utilizes third-party (external) services to provide membership management functionality.\u003Cbr \u002F>\nTo use the plugin, a separate contract with \u003Ca href=\"https:\u002F\u002Fwww.spiral-platform.co.jp\u002Fservice\u002Fspiralv1\u002F\" rel=\"nofollow ugc\">SPIRAL ver.1\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fspiral.pi-pe.co.jp\u002F\" rel=\"nofollow ugc\">SPIRAL ver.2\u003C\u002Fa> is required.\u003Cbr \u002F>\nYou can review the service URLs and terms of use related to these services at the following links:\u003Cbr \u002F>\n– \u003Cstrong>Service URL:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.spiral-platform.co.jp\u002Fservice\u002Fspiralv1\u002F\" rel=\"nofollow ugc\">SPIRAL ver.1\u003C\u002Fa>\u003Cbr \u002F>\n– \u003Cstrong>Terms of Use:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.spiral-platform.co.jp\u002Fwp-content\u002Fuploads\u002Fuser\u002Fspiral\u002FSPIRALv1_agreement.pdf\" rel=\"nofollow ugc\">SPIRAL ver.1 Terms of Use\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Service URL:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fspiral.pi-pe.co.jp\u002F\" rel=\"nofollow ugc\">SPIRAL ver.2\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Terms of Use:\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.pi-pe.co.jp\u002Farea\u002Ftable_file\u002FB1-K8B000270010O9k0E0E24000002000hj5\" rel=\"nofollow ugc\">SPIRAL ver.2 Terms of Use\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Easily add secure membership management and authentication features to your WordPress site using SPIRAL&reg;.",40,1030,1,"2026-01-15T08:45:00.000Z","6.8.5","5.7",[118,20,54,22,119],"authentication","spiral","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspiral-secure-session-manager.1.2.0.zip",{"attackSurface":122,"codeSignals":191,"taintFlows":202,"riskAssessment":239,"analyzedAt":242},{"hooks":123,"ajaxHandlers":185,"restRoutes":186,"shortcodes":187,"cronEvents":188,"entryPointCount":13,"unprotectedCount":13},[124,130,135,139,143,147,151,155,159,163,168,172,177,181],{"type":125,"name":126,"callback":127,"file":128,"line":129},"action","admin_menu","NUM_create_menu","includes\\admin\\admin.php",13,{"type":131,"name":132,"callback":133,"file":128,"line":134},"filter","plugin_action_links_new-users-monitor\u002Fnew-users-monitor.php","NUM_Filter_plugin_action_links",28,{"type":125,"name":136,"callback":137,"file":128,"line":138},"edit_user_profile","NUM_Action_edit_user_profile",41,{"type":125,"name":140,"callback":141,"file":128,"line":142},"edit_user_profile_update","NUM_Action_edit_user_profile_update",72,{"type":131,"name":144,"callback":145,"file":128,"line":146},"manage_users_columns","NUM_Filter_manage_users_columns",117,{"type":131,"name":148,"callback":149,"priority":11,"file":128,"line":150},"manage_users_custom_column","NUM_Filter_manage_users_custom_column",125,{"type":131,"name":152,"callback":153,"file":128,"line":154},"manage_users_sortable_columns","NUM_Filter_manage_user_column_sortable",150,{"type":131,"name":156,"callback":157,"file":128,"line":158},"pre_user_query","NUM_Filter_pre_user_query",158,{"type":125,"name":160,"callback":161,"file":162,"line":129},"wp_dashboard_setup","NUM_Dashboard_Widgets_NewUsers","includes\\admin\\widgets.php",{"type":131,"name":164,"callback":165,"file":166,"line":167},"cron_schedules","cron_add_num_interval","includes\\schedules.php",18,{"type":125,"name":169,"callback":170,"file":166,"line":171},"num_scan_newusers","do_num_scan_newusers",42,{"type":125,"name":173,"callback":174,"file":175,"line":176},"init","NUM_Action_Init","new-users-monitor.php",35,{"type":125,"name":178,"callback":179,"file":175,"line":180},"admin_enqueue_scripts","NUM_Action_admin_style",44,{"type":131,"name":182,"callback":183,"priority":113,"file":175,"line":184},"wp_authenticate_user","NUM_Filter_wp_authenticate_user",59,[],[],[],[189],{"hook":169,"callback":169,"file":166,"line":190},38,{"dangerousFunctions":192,"sqlUsage":193,"outputEscaping":196,"fileOperations":13,"externalRequests":13,"nonceChecks":199,"capabilityChecks":200,"bundledLibraries":201},[],{"prepared":194,"raw":13,"locations":195},11,[],{"escaped":197,"rawEcho":13,"locations":198},79,[],2,4,[],[203],{"entryPoint":204,"graph":205,"unsanitizedCount":13,"severity":238},"\u003Coptions> (includes\\admin\\options.php:0)",{"nodes":206,"edges":233},[207,212,217,221,225,228],{"id":208,"type":209,"label":210,"file":211,"line":176},"n0","source","$_REQUEST (x4)","includes\\admin\\options.php",{"id":213,"type":214,"label":215,"file":211,"line":111,"wp_function":216},"n1","sink","update_option() [Settings Manipulation]","update_option",{"id":218,"type":209,"label":219,"file":211,"line":220},"n2","$_REQUEST (x2)",37,{"id":222,"type":214,"label":223,"file":211,"line":96,"wp_function":224},"n3","echo() [XSS]","echo",{"id":226,"type":209,"label":219,"file":211,"line":227},"n4",16,{"id":229,"type":214,"label":230,"file":211,"line":231,"wp_function":232},"n5","get_results() [SQLi]",209,"get_results",[234,236,237],{"from":208,"to":213,"sanitized":235},true,{"from":218,"to":222,"sanitized":235},{"from":226,"to":229,"sanitized":235},"low",{"summary":240,"deductions":241},"The \"new-users-monitor\" plugin v3.22 demonstrates a strong security posture based on the provided static analysis. The code exhibits excellent practices, with all identified SQL queries utilizing prepared statements and 100% of output being properly escaped. The absence of dangerous functions, file operations, and external HTTP requests further reinforces its secure design. Furthermore, the presence of nonce and capability checks indicates a commitment to securing entry points, even though the static analysis reported zero unprotected entry points.  The plugin's vulnerability history is also pristine, with no recorded CVEs, which suggests a history of stable and secure development. The lack of any taint analysis findings with unsanitized paths or critical\u002Fhigh severity issues is a significant positive indicator.  While the attack surface is minimal and reported as entirely protected, the plugin does have one cron event, which, while not flagged as unprotected, is a potential area for future scrutiny if the plugin's functionality evolves. Overall, the plugin appears to be well-developed and secure.",[],"2026-03-17T01:33:22.214Z",{"wat":244,"direct":251},{"assetPaths":245,"generatorPatterns":247,"scriptPaths":248,"versionParams":249},[246],"\u002Fwp-content\u002Fplugins\u002Fnew-users-monitor\u002Fincludes\u002Fadmin\u002Fadmin-style.css",[],[],[250],"new-users-monitor\u002Fincludes\u002Fadmin\u002Fadmin-style.css?ver=",{"cssClasses":252,"htmlComments":253,"htmlAttributes":255,"restEndpoints":259,"jsGlobals":260,"shortcodeOutput":261},[],[254],"\u003C!-- WPGear. New Users Monitor.\n * admin.php\n -->",[256,257,258,257,258,257,258],"id=\"box_bso_confirm\"","name=\"num_confirm\"","id=\"num_confirm\"",[],[],[]]