[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fBmpKKEDZXdaNXT1dBZG690MZV0JXEWfRfksROyGdcuo":3,"$fdGbpeC5dzBCASZRevMDTIYobodx7j6OLIA3YYdKgKC4":192,"$fSgQTeWZysjPYyn3ghwN1Ybw4GDa4kZqcbPzBtaaBYAw":197},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"discovery_status":30,"vulnerabilities":31,"developer":32,"crawl_stats":28,"alternatives":38,"analysis":139,"fingerprints":178},"presslabs-site-protection","Site Protection","1.3","Presslabs","https:\u002F\u002Fprofiles.wordpress.org\u002Fpresslabs\u002F","\u003Cp>Site protection plugin for dev instances to avoid indexing by search engines. Doesn’t allow access to the site without being logged-in.\u003C\u002Fp>\n\u003Cp>After you activate this plugin the site will return a 403 Forbidden HTTP status code if you are not logged-in.\u003C\u002Fp>\n","Site protection plugin for dev instances to avoid indexing by search engines. Doesn't allow access to the site without being logged-in.",10,3060,100,1,"2025-12-04T17:28:00.000Z","6.9.4","4.7","",[20,21,22,23,24],"avoid-indexing","login","presslabs","site-protection","template","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fpresslabs-site-protection\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpresslabs-site-protection.zip",0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":22,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":13,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},6,1410,25,94,"2026-05-20T03:02:06.022Z",[39,62,82,100,120],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":36,"num_ratings":49,"last_updated":50,"tested_up_to":16,"requires_at_least":51,"requires_php":52,"tags":53,"homepage":57,"download_link":58,"security_score":59,"vuln_count":60,"unpatched_count":27,"last_vuln_date":61,"fetched_at":29},"wp-w3all-phpbb-integration","WP w3all phpBB","3.0.4","axew3","https:\u002F\u002Fprofiles.wordpress.org\u002Faxewww\u002F","\u003Cp>WP w3all phpBB provides free user login and registration integration between a phpBB bulletin board and WordPress CMS.\u003C\u002Fp>\n\u003Ch4>Wp w3all phpBB integration\u003C\u002Fh4>\n\u003Cp>Integration cookie based between WordPress and phpBB installed on same and subdomains.\u003C\u002Fp>\n\u003Cp>After the setup and initialization of the plugin, WP users will automatically be added into phpBB when they register into WordPress (or in the case of old existent users, when they will login into WordPress), while without using the phpBB extension installed into phpBB, if users are allowed to register in phpBB, they will be added into WordPress when they will visit the WordPress side as logged in or at their first login in WordPress (or install the phpBB extension to add users at same time into WordPress when they register in phpBB). But you could use the plugin just only to transfer users between phpBB and WordPress by activating the plugin as not linked (read the help install page), or to show phpBB posts into a WordPress hosted into another domain\u003C\u002Fp>\n\u003Ch4>Widgets\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Login\u002Flogout widget (anyway users can login\u002Flogout\u002Fregister on any WordPress or phpBB login form)\u003C\u002Fli>\n\u003Cli>Last Topic Posts widget(Links, Links and Text, With or Without Avatars), Read\u002FUnread Topics\u002FPosts\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Auto Embed phpBB into WordPress Template\u003C\u002Fh4>\n\u003Cp>WP w3all phpBB is capable of running in iframe mode and automatically embedding phpBB into WordPress template. Setup for the iframe responsive embedded procedure is quick and quite easy!\u003C\u002Fp>\n\u003Ch4>WP to phpBB and phpBB to WP users\u003C\u002Fh4>\n\u003Cp>Transfer WP users into your phpBB forums and vice versa\u003C\u002Fp>\n\u003Ch4>phpBB avatars into WordPress options\u003C\u002Fh4>\n\u003Cp>Option to use phpBB avatars to replace WP Gravatars\u003C\u002Fp>\n\u003Ch4>WordPress MUMS ready\u003C\u002Fh4>\n\u003Cp>It is possible to integrate a WP Multisite network, but linking the same phpBB forum into each subsite\u003C\u002Fp>\n\u003Ch4>Shortcodes and more options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.axew3.com\u002Fw3\u002F2017\u002F07\u002Fwordpress-shortcode-phpbb-posts-into-wp-post\u002F\" rel=\"nofollow ugc\">Shortcode to display phpBB posts on WordPress posts\u002Fpages as formatted bbcode or plain text\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.axew3.com\u002Fw3\u002F2017\u002F09\u002Fwordpress-shortcode-last-phpbb-topics-posts-into-wp-post\u002F\" rel=\"nofollow ugc\">Shortcode to display recent phpBB Topics\u002FPosts on WordPress posts\u002Fpages\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.axew3.com\u002Fw3\u002Fwordpress-phpbb-integration-install\u002F\" rel=\"nofollow ugc\">Check the list of others available Shortcodes on the Common How To section of the install help page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Users Transfer options\u003C\u002Fli>\n\u003Cli>Check more options and features in the WP admin Settings -> WP_w3all (config page). More documentation can be found at the \u003Ca href=\"https:\u002F\u002Fwww.axew3.com\u002Fw3\u002Fwordpress-phpbb-integration-install\u002F\" rel=\"nofollow ugc\">WP w3all phpBB help page\u003C\u002Fa> and into inline plugin admin page hints\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WordPress phpBB integration without linking users\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.axew3.com\u002Fw3\u002F2018\u002F01\u002Fwordpress-phpbb-integration-without-linking-users\u002F\" rel=\"nofollow ugc\">Display phpBB posts and Last Topics Widgets into WordPress posts\u002Fpages, also cross domain, without linking users\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Help pages\u003C\u002Fh4>\n\u003Cp>WP w3all phpBB help page with common questions, setup and usage guides, and answers to frequently asked questions to be up and running in minutes are available here:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.axew3.com\u002Fw3\u002Fwordpress-phpbb-integration-install\u002F\" rel=\"nofollow ugc\">WP w3all phpBB help page\u003C\u002Fa>\u003C\u002Fp>\n","w3all WP phpBB integration - easy, light.",200,82112,31,"2025-10-12T07:39:00.000Z","6.0.0","7.2",[54,21,55,24,56],"integration","phpbb","user","http:\u002F\u002Faxew3.com\u002Fw3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-w3all-phpbb-integration.3.0.4.zip",99,2,"2025-04-09 00:00:00",{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":13,"num_ratings":14,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":18,"tags":75,"homepage":79,"download_link":80,"security_score":81,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"sewn-in-template-log-in","Sewn In Template Log In","1.1.4","Jupitercow","https:\u002F\u002Fprofiles.wordpress.org\u002Fjcow\u002F","\u003Cp>Creates a log in page at \u002Flogin\u002F and manages password recovery and user notification feedback for the log in process. Everything gets managed within your page.php template or page-login.php template in order to fit into the theme better.\u003C\u002Fp>\n\u003Cp>By default, this plugin creates a virtual page, but if you add a page with slug ‘login’, the plugin will begin to use that.\u003C\u002Fp>\n\u003Ch4>Add a redirect for logged in users\u003C\u002Fh4>\n\u003Cp>Controls where logged in users go when they login or when they visit the ‘\u002Flogin\u002F’ page. You can either return the post_id of the post\u002Fpage to send them to, or the slug of the post\u002Fpage to send them to.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u002F\u002F Redirect using post id\nadd_filter( 'sewn\u002Flogin\u002Flogged_in_redirect', 'custom_sewn_logged_in_redirect_id' );\nfunction custom_sewn_logged_in_redirect_id()\n{\n    return 4;\n}\n\n\n\n\u002F\u002F Redirect using post slug\nadd_filter( 'sewn\u002Flogin\u002Flogged_in_redirect', 'custom_sewn_logged_in_redirect_slug' );\nfunction custom_sewn_logged_in_redirect_slug()\n{\n    return 'post-slug';\n}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Sewn In Notification Box Support\u003C\u002Fh4>\n\u003Cp>If you install the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsewn-in-notifications\u002F\" rel=\"ugc\">Sewn In Notification Box\u003C\u002Fa>, this plugin will start using that. This is handy to keep all of your notifications in a centralized location.\u003C\u002Fp>\n","Creates a log in page at \u002Flogin\u002F and manages password recovery and user notification feedback for the log in process.",30,5060,"2015-12-22T04:00:00.000Z","4.4.34","3.6.1",[76,21,77,78],"log-in","template-login","themed-login","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsewn-in-template-login\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsewn-in-template-log-in.1.1.4.zip",85,{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":11,"downloaded":90,"rating":13,"num_ratings":91,"last_updated":92,"tested_up_to":93,"requires_at_least":94,"requires_php":18,"tags":95,"homepage":98,"download_link":99,"security_score":81,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"all-my-login-page","All my login page.","1.2","aplswd","https:\u002F\u002Fprofiles.wordpress.org\u002Faplswd\u002F","\u003Cp>Your login page will look different than regular WordPress login page.\u003Cbr \u002F>\nEnjoys with your new login page.\u003C\u002Fp>\n","All My Login Page is a wordpress plugin which allows you to add beautiful login page(template).",1887,4,"2015-10-06T08:15:00.000Z","3.4.2","3.0.1",[21,96,97,24],"login-page","login-template","http:\u002F\u002Faplswd.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fall-my-login-page.zip",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":27,"downloaded":108,"rating":27,"num_ratings":27,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":112,"tags":113,"homepage":118,"download_link":119,"security_score":81,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"admin-login-template","Admin login template","1.0.0","Enamul Haque Emon","https:\u002F\u002Fprofiles.wordpress.org\u002Fhaqueemon\u002F","\u003Cp>A WordPress plugin so that you change wp-admin layout also you can change dynamically all the labels of login\u002Fforgot-password form by installing this plugin\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Multiple Admin Login Template\u003C\u002Fli>\n\u003Cli>Website Logo & URL in Login Page\u003C\u002Fli>\n\u003Cli>Dynamically change all labels (Ex: Username or Email address label, password label, button text, error texts, empty texts, success texts, etc)\u003C\u002Fli>\n\u003Cli>Backlog visibility.\u003C\u002Fli>\n\u003C\u002Fol>\n","A WordPress plugin so that you change wp-admin layout also you can change dynamically all the labels of login\u002Fforgot-password form by install this plu &hellip;",3309,"2022-02-28T05:33:00.000Z","5.8.13","4.1","5.6",[21,114,115,116,117],"login-form","wordpress-admin-template","wordpress-login","wp-admin-template","https:\u002F\u002Fhaqueemon.me\u002Fwordpress\u002Fplugins\u002Fadmin-login-template","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-login-template.1.0.0.zip",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":27,"downloaded":128,"rating":13,"num_ratings":60,"last_updated":129,"tested_up_to":110,"requires_at_least":130,"requires_php":131,"tags":132,"homepage":136,"download_link":137,"security_score":81,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":138},"formulario-de-logueo","Setting up the WordPress login template","1.3.7","xurxo","https:\u002F\u002Fprofiles.wordpress.org\u002Fxurxo\u002F","\u003Cp>Custom Login plugin allows you to design some characteristics of the access login such as url of header, text of header, logo of header.\u003C\u002Fp>\n","Custom Login plugin allows you to design some characteristics of the access login such as url of header, text of header, logo of header.",1123,"2021-07-27T22:32:00.000Z","5.5","7.3",[133,21,97,134,135],"admin","wp-login","wp-admin","https:\u002F\u002Fwww.webferrol.com\u002Fwordpress\u002Fplugins\u002Floginwebferrol","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fformulario-de-logueo.zip","2026-04-06T09:54:40.288Z",{"attackSurface":140,"codeSignals":156,"taintFlows":166,"riskAssessment":167,"analyzedAt":177},{"hooks":141,"ajaxHandlers":152,"restRoutes":153,"shortcodes":154,"cronEvents":155,"entryPointCount":27,"unprotectedCount":27},[142,148],{"type":143,"name":144,"callback":145,"file":146,"line":147},"action","template_redirect","presslabs_site_protection_walled_garden","presslabs-site-protection.php",11,{"type":143,"name":149,"callback":150,"file":146,"line":151},"plugins_loaded","presslabs_site_protection_load_textdomain",28,[],[],[],[],{"dangerousFunctions":157,"sqlUsage":158,"outputEscaping":160,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":165},[],{"prepared":27,"raw":27,"locations":159},[],{"escaped":27,"rawEcho":14,"locations":161},[162],{"file":146,"line":163,"context":164},22,"raw output",[],[],{"summary":168,"deductions":169},"The plugin 'presslabs-site-protection' v1.3 exhibits a seemingly strong security posture based on the provided static analysis.  It boasts zero identified AJAX handlers, REST API routes, shortcodes, or cron events, resulting in a completely closed attack surface with no unprotected entry points. The code also shows positive signs with no dangerous functions, no file operations, and no external HTTP requests. Importantly, all SQL queries, if any existed, would be using prepared statements, and there are no recorded vulnerabilities in its history, indicating a clean track record.\n\nHowever, a significant concern arises from the lack of output escaping, with 100% of outputs being unescaped. This indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities, as data displayed to users might not be properly sanitized, allowing attackers to inject malicious scripts. Furthermore, the complete absence of nonce and capability checks, despite the potential for functionality to exist (even if not immediately apparent from the entry point analysis), suggests a potential lack of authorization and protection against CSRF attacks if any actions are performed. The lack of taint analysis flows is also unusual and could indicate either a very simple plugin or an incomplete analysis.\n\nIn conclusion, while the plugin appears to have a minimal attack surface and a clean vulnerability history, the unescaped output presents a critical and undeniable risk. The absence of nonce and capability checks also warrants caution. It's recommended to prioritize addressing the output escaping issue and investigate the implementation of authorization checks if any administrative or sensitive functions are present.",[170,172,175],{"reason":171,"points":33},"100% unescaped output",{"reason":173,"points":174},"0 capability checks",3,{"reason":176,"points":174},"0 nonce checks","2026-04-16T12:59:19.870Z",{"wat":179,"direct":185},{"assetPaths":180,"generatorPatterns":182,"scriptPaths":183,"versionParams":184},[181],"\u002Fwp-content\u002Fplugins\u002Fpresslabs-site-protection\u002Flanguages",[],[],[],{"cssClasses":186,"htmlComments":187,"htmlAttributes":188,"restEndpoints":189,"jsGlobals":190,"shortcodeOutput":191},[],[],[],[],[],[],{"error":193,"url":194,"statusCode":195,"statusMessage":196,"message":196},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fpresslabs-site-protection\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":91,"versions":198},[199,206,212,219],{"version":6,"download_url":200,"svn_tag_url":201,"released_at":28,"has_diff":202,"diff_files_changed":203,"diff_lines":28,"trac_diff_url":204,"vulnerabilities":205,"is_current":193},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpresslabs-site-protection.1.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fpresslabs-site-protection\u002Ftags\u002F1.3\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fpresslabs-site-protection%2Ftags%2F1.2&new_path=%2Fpresslabs-site-protection%2Ftags%2F1.3",[],{"version":85,"download_url":207,"svn_tag_url":208,"released_at":28,"has_diff":202,"diff_files_changed":209,"diff_lines":28,"trac_diff_url":210,"vulnerabilities":211,"is_current":202},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpresslabs-site-protection.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fpresslabs-site-protection\u002Ftags\u002F1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fpresslabs-site-protection%2Ftags%2F1.1&new_path=%2Fpresslabs-site-protection%2Ftags%2F1.2",[],{"version":213,"download_url":214,"svn_tag_url":215,"released_at":28,"has_diff":202,"diff_files_changed":216,"diff_lines":28,"trac_diff_url":217,"vulnerabilities":218,"is_current":202},"1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpresslabs-site-protection.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fpresslabs-site-protection\u002Ftags\u002F1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fpresslabs-site-protection%2Ftags%2F1.0&new_path=%2Fpresslabs-site-protection%2Ftags%2F1.1",[],{"version":220,"download_url":221,"svn_tag_url":222,"released_at":28,"has_diff":202,"diff_files_changed":223,"diff_lines":28,"trac_diff_url":28,"vulnerabilities":224,"is_current":202},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpresslabs-site-protection.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fpresslabs-site-protection\u002Ftags\u002F1.0\u002F",[],[]]