[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f8UO9K0EX9S4otJCDQpL16oSOkMYmDXWgdxpoqkWHdJU":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":36,"analysis":150,"fingerprints":204},"o3world-members-only-categories","O3World Members-Only Categories","1.03","kris-o3world","https:\u002F\u002Fprofiles.wordpress.org\u002Fkris-o3world\u002F","\u003Cp>If you’d like to make the content on your site visible only to certain users using categories, look no further!\u003C\u002Fp>\n\u003Cp>Designate certain categories as “members-only” via \u003Cstrong>Privacy Settings\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>An administrator may then assign a user to them via \u003Cstrong>Profile\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Only content belonging to “public” categories (any top-level category you do not designate as “members-only”), and categories assigned to the logged-in user, and all subcategories of either, will be visible.\u003C\u002Fp>\n\u003Cp>I would like to thank the action hook \u003Cstrong>pre_get_posts\u003C\u002Fstrong>, without which this plugin would not have been possible.\u003C\u002Fp>\n\u003Ch3>O3World\u003C\u002Fh3>\n\u003Cp>This plugin was created by kris@o3world.com\u003C\u002Fp>\n\u003Cp>We’re an online marketing strategy \u002F custom web and mobile development agency in Philadelphia.\u003C\u002Fp>\n\u003Cp>Among other things, we love WordPress.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fo3world.com\" rel=\"nofollow ugc\">http:\u002F\u002Fo3world.com\u003C\u002Fa>\u003C\u002Fp>\n","Designate categories as \"members-only\" via 'Privacy Settings.' Assign them to users via 'Profile.'",10,4509,20,1,"2012-01-05T22:26:00.000Z","3.3.0","3.0.0","",[20,21,22,23,24],"access","assign","categories","content","users","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fo3world-members-only-categories\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fo3world-members-only-categories.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},30,84,"2026-04-05T02:09:24.814Z",[37,53,78,105,128],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":11,"downloaded":45,"rating":28,"num_ratings":28,"last_updated":46,"tested_up_to":47,"requires_at_least":47,"requires_php":18,"tags":48,"homepage":51,"download_link":52,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"user-cats-manager","User-Cats Manager","2.1","dgmike","https:\u002F\u002Fprofiles.wordpress.org\u002Fdgmike\u002F","\u003Cp>Provides to admin users a way to select what categorie determined users can write. (administrators have access to all categories)\u003C\u002Fp>\n","Provides to admin users a way to select what categorie determined users can write. (administrators have access to all categories)",10270,"2008-07-14T04:13:00.000Z","2.5",[20,22,49,50,24],"level","preferences","http:\u002F\u002Fdgmike.wordpress.com\u002Fuser-cats-manager","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-cats-manager.2.1.zip",{"slug":54,"name":55,"version":56,"author":57,"author_profile":58,"description":59,"short_description":60,"active_installs":61,"downloaded":62,"rating":34,"num_ratings":63,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":67,"tags":68,"homepage":18,"download_link":74,"security_score":75,"vuln_count":76,"unpatched_count":28,"last_vuln_date":77,"fetched_at":30},"advanced-access-manager","Advanced Access Manager – Access Governance for WordPress","7.1.0","AAM Plugin","https:\u002F\u002Fprofiles.wordpress.org\u002Fvasyltech\u002F","\u003Cp>\u003Cstrong>Advanced Access Manager (AAM)\u003C\u002Fstrong> introduces \u003Cstrong>Access Governance for WordPress\u003C\u002Fstrong> – a systematic approach to securing your site by controlling who can access what, when, and why.\u003C\u002Fp>\n\u003Cp>Most WordPress security plugins focus on external threats like malware, firewalls, and brute-force attacks. AAM addresses the \u003Cstrong>root cause of the #1 WordPress security risk: broken access controls, excessive privileges, and misconfigured roles\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Instead of reacting to attacks, AAM helps you \u003Cstrong>design security into your WordPress site\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Ch4>What Access Governance means in practice\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Mitigate Broken Access Controls\u003C\u002Fstrong>. Ensure roles, users, and permissions are correctly configured to prevent unauthorized actions and privilege escalation.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Eliminate Excessive Privileges\u003C\u002Fstrong>. Identify overpowered users and reduce access to critical functionality, admin areas, and APIs.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Secure Content by Design\u003C\u002Fstrong>. Control who can view, edit, publish, or delete posts, pages, media, taxonomies, and custom content types.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Govern Access with Policy\u003C\u002Fstrong>. Define access rules using JSON Access Policies — portable, auditable, and automation-friendly.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Build Custom Security Logic\u003C\u002Fstrong>. Use the AAM PHP Framework to create advanced, programmatic access controls tailored to your application.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Security Audit\u003C\u002Fstrong>. Detect risky role assignments, misconfigurations, and compromised accounts.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Granular Access Control\u003C\u002Fstrong>. Manage permissions for any user, role, or visitor with precision.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Role & Capability Management\u003C\u002Fstrong>. Customize WordPress roles and capabilities beyond defaults.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin & Menu Control\u003C\u002Fstrong>. Restrict dashboard areas and tailor the admin experience per user or role.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>API & Endpoint Protection\u003C\u002Fstrong>. Secure REST and XML-RPC access with fine-grained controls.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Modern Authentication Options\u003C\u002Fstrong>. Support passwordless and secure login flows.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Developer-Ready Framework\u003C\u002Fstrong>. Extend WordPress security using AAM’s powerful SDK.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Ad-Free & Transparent\u003C\u002Fstrong>. – No ads, no tracking, no bloat.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Built for Security-Conscious WordPress Users\u003C\u002Fh4>\n\u003Cp>AAM is trusted by \u003Cstrong>150,000+ websites\u003C\u002Fstrong> to deliver enterprise-grade access control without unnecessary complexity. Whether you’re a site owner, agency, developer, or security professional, AAM gives you \u003Cstrong>full control over WordPress access — by design\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Most core features are free. Advanced capabilities are available via premium add-ons.\u003C\u002Fp>\n\u003Cp>No hidden tracking. No data collection. No unwanted changes.\u003Cbr \u002F>\nJust \u003Cstrong>security you can reason about, audit, and trust\u003C\u002Fstrong>.\u003C\u002Fp>\n","Access Governance for WordPress. Control roles, users, content, admin areas, and APIs to prevent broken access controls and excessive privileges.",100000,7384389,420,"2026-03-08T15:53:00.000Z","6.9.4","5.8.0","5.6.0",[69,70,71,72,73],"access-governance","api-security","restricted-content","security","user-roles","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-access-manager.7.1.0.zip",95,11,"2024-03-20 00:00:00",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":88,"num_ratings":89,"last_updated":90,"tested_up_to":91,"requires_at_least":92,"requires_php":93,"tags":94,"homepage":100,"download_link":101,"security_score":102,"vuln_count":103,"unpatched_count":28,"last_vuln_date":104,"fetched_at":30},"content-control","Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More","2.6.5","Daniel Iser","https:\u002F\u002Fprofiles.wordpress.org\u002Fdanieliser\u002F","\u003Cp>Content Control is a transformative plugin, allowing you to fine-tune every aspect of your WordPress website’s content. Decide who gets to see what, where, and when – be it pages, posts, widgets, or individual block visibility using our handy shortcode. Your content, your rules, executed perfectly!\u003C\u002Fp>\n\u003Cp>Content Control is intuitive and powerful, designed for all users—whether logged in, holding specific roles, or even guests. Need top-tier content restriction or a dependable access manager for your site? Look no further. We’ve expanded our controls to include Gutenberg and Full Site Editor, giving you unmatched command.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cp>Discover what Content Control brings to your table:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Full control over your site’s content, restrict user access with ease!.\u003C\u002Fli>\n\u003Cli>Create a \u003Cstrong>Paid Membership\u003C\u002Fstrong> sites using your favorite or existing ecommerce plugins.\u003C\u002Fli>\n\u003Cli>Set up a seamless paywall for your content, providing teasers for users and prompting them to purchase access.\u003C\u002Fli>\n\u003Cli>Per block controls for Gutenberg and Full Site Editor, including user roles, device type, and more.\n\u003Cul>\n\u003Cli>Responsive block controls with customizable breakpoints.\u003C\u002Fli>\n\u003Cli>Control block visibility by user status, roles, device type & more.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Restrict access to pages, posts, widgets, and individual blocks based on user status, roles, device type & more.\u003C\u002Fli>\n\u003Cli>Offer membership tools for crafting membership access and members-only content.\u003C\u002Fli>\n\u003Cli>Provide responsive block designs that adapt to varying device sizes.\u003C\u002Fli>\n\u003Cli>Lockdown content selectively for improved user experiences.\u003C\u002Fli>\n\u003Cli>Implement role-based redirections to guide users effectively.\u003C\u002Fli>\n\u003Cli>Unlock the power of subscription content and monetization strategies.\u003C\u002Fli>\n\u003Cli>Safeguard specific categories, tags, custom post types, and custom taxonomies.\u003C\u002Fli>\n\u003Cli>Manage access to \u003Ca href=\"https:\u002F\u002Fwww.hongkiat.com\u002Fblog\u002Fwordpress-attachment-pages\u002F\" rel=\"nofollow ugc\">media attachment pages\u003C\u002Fa> for logged in\u002Fout users or specific user roles.\u003C\u002Fli>\n\u003Cli>Display a custom message to users who do not have permission to view the content.\u003C\u002Fli>\n\u003Cli>Display specific content on a page or post to logged in users only, specific user roles, or logged out users.\u003C\u002Fli>\n\u003Cli>Redirect users without access permission to a login page, website homepage, or a custom URL.\u003C\u002Fli>\n\u003Cli>Highlight subscriber-only content for premium users.\u003C\u002Fli>\n\u003Cli>Use the \u003Ccode>[content_control]\u003C\u002Fcode> shortcode to protect content inline and cater to subscriber preferences.\u003C\u002Fli>\n\u003Cli>Control widget visibility by selecting the user type that can view each widget.\u003C\u002Fli>\n\u003Cli>Conditionally show coming soon or maintenance mode pages based on various rules.\u003C\u002Fli>\n\u003Cli>Restrict access to your site’s REST API endpoints.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcontentcontrolplugin.com\u002Fdocs\u002F?utm_campaign=plugin-info&utm_source=readme-description&utm_medium=wordpress&utm_content=documentation-link\" rel=\"nofollow ugc\">Content Control Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Pro Features\u003C\u002Fh4>\n\u003Cp>Content Control Pro, with advanced features like:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Content Teasers for Paywalls, giving your users a sneak peek, leaving them wanting more.\u003C\u002Fli>\n\u003Cli>Optimize your WooCommerce & Easy Digital Downloads (EDD) & Paid Memberships Pro experiences with advanced rules.\u003C\u002Fli>\n\u003Cli>Schedule blocks, controlling content visibility timings using customizable scheduling rules.\u003C\u002Fli>\n\u003Cli>Dive deeper with advanced block rules and a boolean editor.\u003C\u002Fli>\n\u003Cli>Customize login, registration & recovery page urls. Custom login urls give a more personalized user experience.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcontentcontrolplugin.com\u002Fpricing\u002F?utm_campaign=plugin-info&utm_source=readme-description&utm_medium=wordpress&utm_content=upgrade-link\" rel=\"nofollow ugc\">Upgrade to Content Control Pro\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note\u003C\u002Fstrong>: Content Control handles media access via content on media attachment pages but won’t restrict direct server-level access to media files.\u003C\u002Fp>\n\u003Ch4>Passionately Crafted by Code Atlantic\u003C\u002Fh4>\n\u003Cp>At \u003Ca href=\"https:\u002F\u002Fcode-atlantic.com\" title=\"Code Atlantic - High Quality WordPress Plugins\" rel=\"nofollow ugc\">Code Atlantic\u003C\u002Fa>, we’re passionate about crafting tools that empower your digital journey. Content Control is a testament to our commitment to quality.\u003C\u002Fp>\n\u003Cp>Dive into some of our renowned plugins:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwppopupmaker.com\" title=\"#1 Popup & Marketing Plugin for WordPress\" rel=\"nofollow ugc\">Popup Maker\u003C\u002Fa>\u003C\u002Fstrong> – The #1 Popup & Marketing Plugin for WordPress\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fuser-menus\u002F\" title=\"Show, Hide & Customize Menu Items For Different Users\" rel=\"ugc\">User Menus\u003C\u002Fa>\u003C\u002Fstrong> – Innovatively Show, Hide & Customize Menu Items\u003C\u002Fli>\n\u003C\u002Ful>\n","Restrict content based on login status, user roles, device type & more. Monetize your content with a paywall or members-only content.",40000,871139,98,575,"2025-05-27T08:57:00.000Z","6.8.5","6.2","7.4",[95,96,97,98,99],"access-control","content-restriction","maintenance-mode","members-only","membership","https:\u002F\u002Fcontentcontrolplugin.com\u002F?utm_campaign=plugin-info&utm_source=php-file-header&utm_medium=plugin-ui&utm_content=plugin-uri","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontent-control.2.6.5.zip",96,4,"2025-05-07 00:00:00",{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":113,"downloaded":114,"rating":115,"num_ratings":116,"last_updated":117,"tested_up_to":91,"requires_at_least":118,"requires_php":119,"tags":120,"homepage":123,"download_link":124,"security_score":125,"vuln_count":126,"unpatched_count":28,"last_vuln_date":127,"fetched_at":30},"restrict-user-access","Restrict User Access – Ultimate Membership & Content Protection","2.8","Joachim Jensen","https:\u002F\u002Fprofiles.wordpress.org\u002Fintoxstudio\u002F","\u003Cp>\u003Cstrong>Restrict User Access is a fast and simple Membership Plugin for WordPress. Restrict your content in minutes, NOT hours.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Quickly set up a paid membership site where your users can get different levels such as Platinum, Gold, or Free. Then, grant those levels when a user purchases a product in WooCommerce.\u003C\u002Fp>\n\u003Ch3>👥 Unlimited Access Levels\u003C\u002Fh3>\n\u003Cp>Users can have multiple levels, and you control how long memberships should last. When unauthorized users try to access restricted content, you can redirect them to another URL or display a teaser.\u003C\u002Fp>\n\u003Ch3>⚡ Level Membership Automations\u003C\u002Fh3>\n\u003Cp>Automatically add levels to your users based on something they do (Triggers) or something they are (Traits):\u003C\u002Fp>\n\u003Cul>\n\u003Cli>User Registration\u003C\u002Fli>\n\u003Cli>User Roles\u003C\u002Fli>\n\u003Cli>Logged-in or Guests\u003C\u002Fli>\n\u003Cli>WooCommerce Purchases\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads Purchases\u003C\u002Fli>\n\u003Cli>BuddyPress Member Types\u003C\u002Fli>\n\u003Cli>GiveWP Donations\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🔒 Contextual Content Protection\u003C\u002Fh3>\n\u003Cp>Prevent unauthorized users from visiting your posts, pages, or categories. You can even combine the conditions: protect all posts tagged “Premium” written by a select author.\u003C\u002Fp>\n\u003Cp>The following Access Conditions are available out of the box:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Posts, Pages & Custom Post Types\u003C\u002Fli>\n\u003Cli>Content with Tags, Categories, or Custom Taxonomies\u003C\u002Fli>\n\u003Cli>Content written by select Authors\u003C\u002Fli>\n\u003Cli>Page Templates\u003C\u002Fli>\n\u003Cli>Blog Page & Post Type Archives\u003C\u002Fli>\n\u003Cli>Author Archives\u003C\u002Fli>\n\u003Cli>Taxonomy Archives\u003C\u002Fli>\n\u003Cli>Front Page, Search Results, 404 Not Found Page\u003C\u002Fli>\n\u003Cli>bbPress Profiles, Forums & Topics\u003C\u002Fli>\n\u003Cli>BuddyPress Profile Sections\u003C\u002Fli>\n\u003Cli>Languages (Polylang, qTranslate X, TranslatePress, Transposh, Weglot, WPML)\u003C\u002Fli>\n\u003Cli>Pods Pages\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Note that Access Conditions do not apply to content displayed in lists.\u003C\u002Fp>\n\u003Ch3>✅ Grant & Deny Capabilities\u003C\u002Fh3>\n\u003Cp>The easy-to-use WordPress User Manager gives you full control over the capabilities the members should or shouldn’t have. Access Level Capabilities will override the permissions set by roles or other plugins.\u003C\u002Fp>\n\u003Ch3>👁️ Hide Admin Bar & Nav Menu Visibility\u003C\u002Fh3>\n\u003Cp>Disable the admin bar for select levels and control what menu items members can see. You can even hide any widget area created with \u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fwordpress-sidebars\u002F?utm_source=readme&utm_medium=referral&utm_content=section&utm_campaign=rua\" rel=\"nofollow ugc\">Content Aware Sidebars\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>🤖 Restrict Content from Other Plugins\u003C\u002Fh3>\n\u003Cp>Restrict User Access autodetects Custom Post Types and Taxonomies created by any plugin or theme. Built-in support for some of the most popular WordPress plugins means that you e.g. can restrict access to bbPress forums or multilingual content.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>bbPress\u003C\u002Fli>\n\u003Cli>BuddyPress\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads\u003C\u002Fli>\n\u003Cli>Pods\u003C\u002Fli>\n\u003Cli>Polylang\u003C\u002Fli>\n\u003Cli>TranslatePress\u003C\u002Fli>\n\u003Cli>WooCommerce\u003C\u002Fli>\n\u003Cli>Weglot\u003C\u002Fli>\n\u003Cli>WPML\u003C\u002Fli>\n\u003Cli>and more …\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🛡️ WordPress Security Enhancements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>WP REST API Content Protection\u003C\u002Fstrong>\u003Cbr \u002F>\nEnforces PoLA to minimize attack surfaces and stop threat actors from harvesting your data\u003C\u002Fli>\n\u003Cli>\u003Cstrong>How to display content in lists\u003C\u002Fstrong>\u003Cbr \u002F>\nDisplay excerpts only or hide content when post types are displayed in blog, archives, search results, lists, etc.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>📑 Restrict Content with Shortcodes\u003C\u002Fh3>\n\u003Cp>Fine-tune content visibility in your posts or pages by adding simple shortcodes:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[restrict level=\"platinum\"]\nThis content can only be seen by users with Platinum level or above.\n[\u002Frestrict]\n\n[restrict level=\"!platinum\"]\nThis content can only be seen by users without Platinum level or above.\n[\u002Frestrict]\n\n[restrict role=\"editor,contributor\" page=\"1\"]\nThis content can only be seen by editors and contributors.\nOther users will see content from page with ID 1.\n[\u002Frestrict]\n\n[login-form]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>👋 Developer-friendly API\u003C\u002Fh3>\n\u003Cp>Restrict User Access makes it super easy for developers to programmatically customize WordPress access control by adding a few lines of code to theme templates.\u003C\u002Fp>\n\u003Ch4>Example – Add level to current user\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>rua_get_user()->add_level($level_id);\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Example – Check if current user has an active level membership\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>if(rua_get_user()->has_level($level_id)) {\n    \u002F\u002Fshow restricted content\n} else {\n    \u002F\u002Fshow content if unauthorized\n}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fdocs\u002Frestrict-user-access\u002Fdeveloper-api\u002F?utm_source=readme&utm_medium=referral&utm_content=section&utm_campaign=rua\" rel=\"nofollow ugc\">View full RUA PHP API documentation here.\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>🎛️ Premium Add-ons for Restrict User Access\u003C\u002Fh3>\n\u003Cp>Complete your WordPress membership site with these powerful extensions\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fproducts\u002Fcategory\u002Frestrict-user-access\u002F?utm_source=readme&utm_medium=referral&utm_content=acf&utm_campaign=rua\" rel=\"nofollow ugc\">ACF Restriction\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nRestrict content that contain data from Advanced Custom Fields plugin\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fproducts\u002Fcategory\u002Frestrict-user-access\u002F?utm_source=readme&utm_medium=referral&utm_content=date&utm_campaign=rua\" rel=\"nofollow ugc\">Date Restriction\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nRestrict content based on the time it was published\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fproducts\u002Fcategory\u002Frestrict-user-access\u002F?utm_source=readme&utm_medium=referral&utm_content=metabox&utm_campaign=rua\" rel=\"nofollow ugc\">Meta Box Restriction\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nRestrict content that contain data from Meta Box plugin\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fproducts\u002Fcategory\u002Frestrict-user-access\u002F?utm_source=readme&utm_medium=referral&utm_content=timelock&utm_campaign=rua\" rel=\"nofollow ugc\">Timelock\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nDetermine when to enable or disable select Access Conditions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fproducts\u002Fcategory\u002Frestrict-user-access\u002F?utm_source=readme&utm_medium=referral&utm_content=url&utm_campaign=rua\" rel=\"nofollow ugc\">URL Restriction\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nRestrict content based on the WordPress URL, with wildcard support\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fproducts\u002Fcategory\u002Frestrict-user-access\u002F?utm_source=readme&utm_medium=referral&utm_content=visibility&utm_campaign=rua\" rel=\"nofollow ugc\">Visibility Control\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nHide content from blog, search results, archives, custom lists, WP REST API, and more\u003C\u002Fli>\n\u003C\u002Ful>\n","Create Access Levels and restrict any post, page, category, etc. Supports bbPress, BuddyPress, WooCommerce, WPML, and more.",10000,617933,86,94,"2025-10-06T06:48:00.000Z","5.8","7.2",[95,121,122,96,99],"bbpress","capabilities","https:\u002F\u002Fdev.institute\u002Fwordpress-memberships\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frestrict-user-access.2.8.zip",99,2,"2024-03-18 00:00:00",{"slug":129,"name":130,"version":131,"author":132,"author_profile":133,"description":134,"short_description":135,"active_installs":113,"downloaded":136,"rating":137,"num_ratings":138,"last_updated":139,"tested_up_to":65,"requires_at_least":140,"requires_php":141,"tags":142,"homepage":148,"download_link":149,"security_score":137,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"simpletoc","SimpleTOC – Table of Contents Block","6.9.8","Marc Tönsing","https:\u002F\u002Fprofiles.wordpress.org\u002Fmarcdk\u002F","\u003Cp>Add a Table of Contents block to your posts and pages. The TOC is a nested list of links to all heading found in the post or page. To use it, simply add a block and search for “SimpleTOC” or just “TOC”.\u003C\u002Fp>\n\u003Cp>The maximum depth of the toc can be configured in in the blocks’ sidebar among many other options. There can hide the headline “Table of Contents” and add your own by using a normal heading block.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.tastewp.com\u002Fsimpletoc\" rel=\"nofollow ugc\">Spin up\u003C\u002Fa> a new WordPress instance with the SimpleTOC plugin already installed.\u003C\u002Fp>\n\u003Ch4>User Feedback\u003C\u002Fh4>\n\u003Cblockquote>\n\u003Cp>“It is lightweight, stable, and fully compatible with WordPress Full Site Editing. A reliable solution that integrates seamlessly and performs exactly as expected.”\u003Cbr \u002F>\n  — \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fgood-job-1889\u002F\" rel=\"ugc\">@js100 on wordpress.org\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>“Does the job perfectly, and adds no bloat.”\u003Cbr \u002F>\n  — \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fdoes-the-job-perfectly-and-adds-no-bloat\u002F\" rel=\"ugc\">@clicknathan on wordpress.org\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>“Simple yet powerful. Great plugin that does exactly what you need.”\u003Cbr \u002F>\n  — \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fsimple-yet-powerful-106\u002F\" rel=\"ugc\">@mixey on wordpress.org\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Accessibility\u003C\u002Fh4>\n\u003Cp>This plugin is designed & developed for WCAG 2.2 level AA conformance. The plugin is tested with assistive technology and intended to be accessible, however some third party plugins or themes may affect the individual accessibility on a given website. If you find an accessibility issue, please \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmtoensing\u002Fsimpletoc\u002Fissues\" rel=\"nofollow ugc\">let us know\u003C\u002Fa> and we’ll try to address it promptly.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Designed for Gutenberg.\u003C\u002Fli>\n\u003Cli>Zero configuration: Add the SimpleTOC block to your post and that’s it. \u003C\u002Fli>\n\u003Cli>Minimal and valid HTML output.\u003C\u002Fli>\n\u003Cli>Utilizes the browser’s built-in details tag for a collapsible interface.\u003C\u002Fli>\n\u003Cli>No JavaScript or CSS added. Unless you activate the accordion menu.\u003C\u002Fli>\n\u003Cli>Style SimpleTOC with Gutenberg’s native group styling options.\u003C\u002Fli>\n\u003Cli>Inherits the style of your theme.\u003C\u002Fli>\n\u003Cli>Smooth scrolling effect using CSS. \u003C\u002Fli>\n\u003Cli>Accessibility built-in by following web standards.\u003C\u002Fli>\n\u003Cli>Optional ARIA Label and navigation role attributes.\u003C\u002Fli>\n\u003Cli>Translated in \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fsimpletoc\u002F\" rel=\"nofollow ugc\">multiple languages\u003C\u002Fa>. Including German, Japanese, Chinese (Taiwan), Dutch, Brazilian Portuguese, French, Spanish and Latvia.\u003C\u002Fli>\n\u003Cli>Ideal for creating a Frequently Asked Questions section on your website.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Customization\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Administrators can utilize global settings to supersede the individual block settings.\u003C\u002Fli>\n\u003Cli>Add background and text color with Gutenberg groups.\u003C\u002Fli>\n\u003Cli>Native block support for wide and full width.\u003C\u002Fli>\n\u003Cli>Control the maximum depth of the headings.\u003C\u002Fli>\n\u003Cli>Choose between an ordered, bullet HTML list. Or indent the list.\u003C\u002Fli>\n\u003Cli>Select a heading level or turn it into a paragraph.\u003C\u002Fli>\n\u003Cli>Disable the h2 heading of the TOC block and add your own.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Compatibility\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>GeneratePress and Rank Math support.\u003C\u002Fli>\n\u003Cli>Works with popular AMP plugins.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How to contribute\u003C\u002Fh4>\n\u003Cp>SimpleTOC is open-source and developed on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmtoensing\u002FSimpleTOC\" rel=\"nofollow ugc\">GitHub Pages\u003C\u002Fa>. If you find a bug or have an idea for a feature please feel free to contribute and create a pull request.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>This plugin is forked from \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpdewouters\u002Fgutentoc\" rel=\"nofollow ugc\">pdewouters\u003C\u002Fa> and uses code from \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fshazahm1\u002FEasy-Table-of-Contents\" rel=\"nofollow ugc\">Easy-Table-of-Contents\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Many thanks to \u003Ca href=\"https:\u002F\u002Ftomjn.com\" rel=\"nofollow ugc\">Tom J Nowell\u003C\u002Fa> and and Sally CJ who both helped me a lot with my questions over at wordpress.stackexchange.com\u003C\u002Fp>\n\u003Cp>And many more thanks to all the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmtoensing\u002Fsimpletoc\u002Fgraphs\u002Fcontributors\" rel=\"nofollow ugc\">developers on GitHub\u003C\u002Fa> who helped me making SimpleTOC what it is today!\u003C\u002Fp>\n\u003Cp>Thanks to Quintus Valerius Soranus for inventing the Table of Contents around 100 BC.\u003C\u002Fp>\n","SEO-friendly Table of Contents Gutenberg block. No JavaScript and no CSS means faster loading.",524061,100,75,"2026-02-26T07:03:00.000Z","5.9","7.3",[143,144,145,146,147],"accessibility","block","table","table-of-contents","toc","https:\u002F\u002Fmarc.tv\u002Fsimpletoc-wordpress-inhaltsverzeichnis-plugin-gutenberg\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimpletoc.6.9.8.zip",{"attackSurface":151,"codeSignals":181,"taintFlows":193,"riskAssessment":194,"analyzedAt":203},{"hooks":152,"ajaxHandlers":177,"restRoutes":178,"shortcodes":179,"cronEvents":180,"entryPointCount":28,"unprotectedCount":28},[153,159,163,166,170,173],{"type":154,"name":155,"callback":156,"file":157,"line":158},"action","admin_init","o3_moc_admin_init","o3world-members-only-categories.php",246,{"type":154,"name":160,"callback":161,"file":157,"line":162},"show_user_profile","o3_moc_edit_user",248,{"type":154,"name":164,"callback":161,"file":157,"line":165},"edit_user_profile",249,{"type":154,"name":167,"callback":168,"file":157,"line":169},"personal_options_update","o3_moc_update_user",251,{"type":154,"name":171,"callback":168,"file":157,"line":172},"edit_user_profile_update",252,{"type":154,"name":174,"callback":175,"file":157,"line":176},"pre_get_posts","o3_moc_set_query",254,[],[],[],[],{"dangerousFunctions":182,"sqlUsage":183,"outputEscaping":185,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":126,"bundledLibraries":192},[],{"prepared":28,"raw":28,"locations":184},[],{"escaped":28,"rawEcho":126,"locations":186},[187,190],{"file":157,"line":188,"context":189},51,"raw output",{"file":157,"line":191,"context":189},137,[],[],{"summary":195,"deductions":196},"The static analysis of the \"o3world-members-only-categories\" plugin version 1.03 indicates a generally good security posture due to the absence of identified dangerous functions, external requests, file operations, and SQL queries that are not using prepared statements. The plugin also demonstrates a limited attack surface with no AJAX handlers, REST API routes, shortcodes, or cron events, and notably, zero unprotected entry points. The vulnerability history is clean, with no recorded CVEs, suggesting a history of stable and secure code.\n\nHowever, a significant concern arises from the complete lack of output escaping. This means that any data rendered by the plugin could potentially be vulnerable to cross-site scripting (XSS) attacks if it's not properly sanitized before being displayed to users. Additionally, while capability checks are present, the absence of nonce checks in the zero identified entry points is a notable oversight, potentially leaving the plugin open to cross-site request forgery (CSRF) attacks on any functionality that might exist but wasn't detected by the static analysis tools.\n\nIn conclusion, the plugin benefits from a small attack surface and a clean vulnerability history. The primary weaknesses lie in the complete omission of output escaping and the potential for CSRF due to missing nonce checks on entry points, even if these entry points are currently unexposed or unverified. Addressing the output escaping and nonce check issues would significantly improve the plugin's security.",[197,200],{"reason":198,"points":199},"Output escaping is not implemented",8,{"reason":201,"points":202},"No nonce checks found",5,"2026-03-17T00:54:46.920Z",{"wat":205,"direct":210},{"assetPaths":206,"generatorPatterns":207,"scriptPaths":208,"versionParams":209},[],[],[],[],{"cssClasses":211,"htmlComments":212,"htmlAttributes":214,"restEndpoints":219,"jsGlobals":220,"shortcodeOutput":221},[],[213],"\u003C!---- this space left intentionally blank ---->",[215,216,217,218],"name=\"o3_moc_cats\"","id=\"o3_moc_cats\"","name=\"o3_moc_cat_.*\"","id=\"o3_moc_cat_.*\"",[],[],[]]