[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f6YVcFJO1qnBuJtVVYbiiLfeJQV-x5XzmbqiGeylUJlM":3},{"slug":4,"name":5,"version":6,"author":5,"author_profile":7,"description":8,"short_description":9,"active_installs":10,"downloaded":11,"rating":10,"num_ratings":12,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":57,"crawl_stats":36,"alternatives":62,"analysis":156,"fingerprints":366},"productdyno","ProductDyno","1.0.26","https:\u002F\u002Fprofiles.wordpress.org\u002Ffrazahmed\u002F","\u003Cp>A new way to securely deliver ALL of your digital content, license your software\u002Fplugins and much more – All without the headaches of using complex, limiting or expensive software services…\u003C\u002Fp>\n\u003Cp>WORDPRESS PLUGIN MAKES IT EASY TO SECURE YOUR WORDPRESS PAGES!\u003C\u002Fp>\n\u003Cp>If you run your website on WordPress, you’re in luck because we’ve created a plugin that makes it super easy to secure your content directly into your WordPress pages! We’ve worked hard to make sure your secure content isn’t compromised!\u003C\u002Fp>\n\u003Cp>WHAT IS UNIQUE ABOUT THIS PLUGIN THAN OTHER MEMBERSHIP PLUGINS?\u003Cbr \u002F>\nUnlike other WordPress membership plugins, ProductDyno WordPress Plugin allows you to run any number of membership programs under one domain.\u003C\u002Fp>\n\u003Cp>Note: You will need an active ProductDyno account to use this plugin.\u003C\u002Fp>\n\u003Ch3>Here’s What ProductDyno Can Do For You!\u003C\u002Fh3>\n\u003Cp>Have a peek below at a system that will remove every obstacle you have when creating, delivering and securing your content.\u003C\u002Fp>\n\u003Ch4>UNLIMITED CLIENTS\u003C\u002Fh4>\n\u003Cp>Zero restrictions on how many members you can have in your account. Sell 100 products or 100,000 products – It’s up to you!.\u003C\u002Fp>\n\u003Ch4>UNLIMITED DOWNLOADS\u003C\u002Fh4>\n\u003Cp>Zero restrictions on how many times your products are downloaded. Single files, streaming content, bundles, zips – No limits.\u003C\u002Fp>\n\u003Ch4>UNLIMITED PRODUCTS\u003C\u002Fh4>\n\u003Cp>Act now and grab a VIP level account and you can protect all your current and future products all under one powerful dashboard.\u003C\u002Fp>\n\u003Ch4>AMAZING INTEGRATIONS\u003C\u002Fh4>\n\u003Cp>ProductDyno provides seamless connections to payment platforms, autoresponder\u002Fmail services plus webhooks \u002F Zapier integration.\u003C\u002Fp>\n\u003Ch4>FUTUREPROOF PLATFORM\u003C\u002Fh4>\n\u003Cp>At ProductDyno we’re committed to ongoing platform development to guarantee long-term scalability & value for users.\u003C\u002Fp>\n\u003Ch4>USER MANAGEMENT\u003C\u002Fh4>\n\u003Cp>Quickly track orders, customers, downloads and much more. Everything at your fingertips so you stay on top of your business.\u003C\u002Fp>\n\u003Ch4>FULLY AUTOMATED SYSTEM\u003C\u002Fh4>\n\u003Cp>Once set the product delivery\u002Fuser management system is fully automated freeing up your time for other business tasks.\u003C\u002Fp>\n\u003Ch4>DELIVERS ACCESS EMAIL\u003C\u002Fh4>\n\u003Cp>No more form filling for your buyers. The second their purchase is complete they’ll receive access creditials without delay.\u003C\u002Fp>\n\u003Ch4>REVOKE PRODUCT ACCESS\u003C\u002Fh4>\n\u003Cp>Deter serial refunders and prevent ‘digital pirates’ from accessing your products with just a simple click of your mouse.\u003C\u002Fp>\n","DISCOVER THE EASIEST WAY TO SELL, LICENSE & SECURELY DELIVER ANY TYPE OF DIGITAL PRODUCT!",80,6446,5,"2025-08-18T14:37:00.000Z","6.8.5","3.0.1","5.2.4",[18,19,20,21,22],"digital-product","licensing","member-management","membership","membership-site","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fproductdyno.1.0.26.zip",99,2,0,"2025-03-10 16:21:40","2026-03-15T15:16:48.613Z",[31,47],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":38,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":28,"updated_date":43,"references":44,"days_to_patch":46},"CVE-2024-13413","productdyno-reflected-cross-site-scripting-via-res-parameter","ProductDyno \u003C= 1.0.24 - Reflected Cross-Site Scripting via 'res' Parameter","The ProductDyno plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘res’ parameter in all versions up to, and including, 1.0.24 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts into pages that execute if they can successfully trick a user into performing an action such as clicking on a link. This vulnerability is potentially a duplicate of CVE-2025-22320.",null,"\u003C=1.0.24","1.0.25","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-03-11 04:21:46",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ffdc1289a-abd1-43db-89b7-3e81878a0f9a?source=api-prod",1,{"id":48,"url_slug":49,"title":50,"description":51,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":38,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":52,"updated_date":53,"references":54,"days_to_patch":56},"CVE-2025-22320","productdyno-reflected-cross-site-scripting","ProductDyno \u003C= 1.0.24 - Reflected Cross-Site Scripting","The ProductDyno plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in all versions up to, and including, 1.0.24 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.","2025-01-03 00:00:00","2025-03-06 21:00:44",[55],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F6e4cc3e9-736c-47aa-b383-bd98377f51e1?source=api-prod",63,{"slug":58,"display_name":5,"profile_url":7,"plugin_count":46,"total_installs":10,"avg_security_score":25,"avg_patch_time_days":59,"trust_score":60,"computed_at":61},"frazahmed",32,87,"2026-04-04T19:06:16.269Z",[63,84,106,122,138],{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":71,"downloaded":72,"rating":73,"num_ratings":26,"last_updated":74,"tested_up_to":75,"requires_at_least":76,"requires_php":77,"tags":78,"homepage":82,"download_link":83,"security_score":73,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"groups-for-membermouse","Groups for MemberMouse","2.4.3","Matt Mintun","https:\u002F\u002Fprofiles.wordpress.org\u002Fmintunmedia\u002F","\u003Cp>\u003Cem>Groups for MemberMouse\u003C\u002Fem> is one of the most sought after add-ons for MemberMouse, allowing you to offer memberships to businesses, schools, sports teams, and other users who need the ability to give access to your membership site to their team members.\u003C\u002Fp>\n\u003Cp>Groups allows you to extend MemberMouse’s premium Member Management tool with the ability to sell “seats of membership” to your members. This gives your members the capability to add their own users to their own account. The beauty is that you can increase your profit by allowing your members to purchase membership with any varying amount of seats:\u003C\u002Fp>\n\u003Cp>3 seats: $100\u002Fmo\u003Cbr \u002F>\n5 seats: $120\u002Fmo\u003Cbr \u002F>\n10 seats: $200\u002Fmo\u003C\u002Fp>\n\u003Cp>This is the perfect solution for many different business models wanting to offer seats of membership:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>B2B\u003C\u002Fli>\n\u003Cli>Coaches\u003C\u002Fli>\n\u003Cli>Churches\u003C\u002Fli>\n\u003Cli>Sales Teams\u003C\u002Fli>\n\u003Cli>and many more!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Groups for MemberMouse REQUIRES MemberMouse in order to run.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Some features include\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Sell seats of membership to your products and memberships.\u003C\u002Fli>\n\u003Cli>Offers support for the same subscriptions\u002Fpricing plans that MemberMouse does.\u003C\u002Fli>\n\u003Cli>Integrates directly with MemberMouse\u003C\u002Fli>\n\u003Cli>Dedicated Leader Management Screen – Leaders are able to manage their groups easily from a dedicated mangement screen.\u003C\u002Fli>\n\u003Cli>Easy to Manage for Admins – Easily create or remove groups, add any kind of payment plan to your group products, and add and remove members from specific groups.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Thanks to the Github Community\u003C\u002Fstrong>\u003Cbr \u002F>\nThank you to the Github community for contributing to the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmintunmedia\u002Fgroups-for-membermouse\" rel=\"nofollow ugc\">plugin’s codebase\u003C\u002Fa> and for bringing it to the state is in today. Mintun Media decided to take ownership of the codebase and has enhanced its security, stability, and WordPress compatibility. We look forward to working with the Github and WordPress communities to add new features all while adhering to WordPress coding standards. We also encourage you to make a pull request if you see any issues or have ideas to enhance the plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Shortcodes and URLs\u003C\u002Fstrong>\u003Cbr \u002F>\nYou’ll need to add a special shortcode to your checkout page in between the \u003Ccode>[MM_Form type=\"checkout\"]\u003C\u002Fcode> and \u003Ccode>[\u002FMM_Form]\u003C\u002Fcode> tags. This shortcode may have a different ID than the one displayed here: \u003Ccode>[MM_Form_Field type=\"custom-hidden\" id=\"1\"]\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>You’ll want to place a shortcode on the Group Leader’s payment confirmation page, this shows them their member signup link (which they’ll use to send to the people they want to invite to your membership): \u003Ccode>[MM_Group_SignUp_Link]\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>Important: You can add the \u003Ccode>[MM_Group_SignUp_Link]\u003C\u002Fcode> shortcode anywhere. The Payment Confirmation page may not be the most ideal place to put this shortcode.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Group Leader Management Page\u003C\u002Fstrong>\u003Cbr \u002F>\n    [MM_Group_Leader_Dashboard signup-link=’hide’ add-member=’show’ action-column=’hide’]\u003Cbr \u002F>\nYou can add the front-end Group Leader Dashboard to any page with this shortcode! This dashboard allows your Group Leaders to add members, delete members, grab their group sign up link and see all the members in their group.\u003C\u002Fp>\n\u003Cp>Shortcode Attributes aren’t required. They default to “show”. If you want to hide them, you can set them to “hide”\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Group Member View Only Listing\u003C\u002Fstrong>\u003Cbr \u002F>\n    [MM_Group_Member_List]\u003Cbr \u002F>\nDisplays a member list (like the Group Leader Dashboard but without admin features) for members of the group to view other members.\u003C\u002Fp>\n","Groups for MemberMouse allows you to sell \"seats\" of membership to a Group Leader or Business.",10,4167,100,"2025-09-26T17:50:00.000Z","6.6.5","4.8","5.6",[79,20,80,22,81],"groups","membermouse","mm-groups","https:\u002F\u002Fwww.mintunmedia.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgroups-for-membermouse.zip",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":73,"num_ratings":94,"last_updated":95,"tested_up_to":96,"requires_at_least":97,"requires_php":98,"tags":99,"homepage":104,"download_link":105,"security_score":73,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"handyplugins-paddlepress","HandyPlugins PaddlePress – Paddle Integration for WordPress","2.5.1","handyplugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fhandyplugins\u002F","\u003Cp>PaddlePress is a standalone payments plugin that connects Paddle with WordPress. Simply set up a Paddle account and start accepting credit cards on your WordPress site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Plugin Website\u003C\u002Fstrong>: \u003Ca href=\"https:\u002F\u002Fhandyplugins.co\u002Fpaddlepress-pro\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fhandyplugins.co\u002Fpaddlepress-pro\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>PaddlePress PRO Features\u003C\u002Fh4>\n\u003Cp>PaddlePress PRO provides additional functionalities to integrate Paddle with WordPress. PRO features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Customer Dashboard: Let your members easily view and manage their account details.\u003C\u002Fli>\n\u003Cli>Membership Levels: Create an unlimited number of membership packages and map with your Paddle products or plans.\u003C\u002Fli>\n\u003Cli>Restrict Contents: Restrict your contents to particular membership levels easily.\u003C\u002Fli>\n\u003Cli>Downloads: Downloadable items are available under the customer’s account page. You can limit access to files based on the plans that customers have.\u003C\u002Fli>\n\u003Cli>Website License Management: If you decide to sell domain based licensing keys. You can let your users register their domains.\u003C\u002Fli>\n\u003Cli>Subscription Upgrades and Downgrades: Customers can move between subscription levels and only pay the difference.\u003C\u002Fli>\n\u003Cli>Emails: Send welcome emails to new members, email payment receipts, and remind members before their account expires automatically.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>By upgrading to PaddlePress PRO you also get access to one-on-one help from our knowledgeable support team and our extensive documentation site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fhandyplugins.co\u002Fpaddlepress-pro\u002F\" rel=\"nofollow ugc\">Learn more about PaddlePress Pro\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>WHO IS HANDYPLUGINS PADDLEPRESS PRO FOR?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Website owners who want to sell “members-only” digital content or provide SaaS functionality on their WordPress website. \u003Ca href=\"https:\u002F\u002Fhandyplugins.co\u002Fdocs\u002Fhow-to-set-up-a-membership-website\u002F\" rel=\"nofollow ugc\">Learn how to do that\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>WordPress developers who want to sell WordPress \u003Ca href=\"https:\u002F\u002Fhandyplugins.co\u002Fdocs\u002Fupdater-implementation-for-wordpress-plugins\u002F\" rel=\"nofollow ugc\">plugins\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fhandyplugins.co\u002Fdocs\u002Fupdater-implementation-for-wordpress-themes\u002F\" rel=\"nofollow ugc\">themes\u003C\u002Fa>.\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fhandyplugins.co\u002Fdocs\u002Frelease-a-new-wordpress-product\u002F\" rel=\"nofollow ugc\">Checkout\u003C\u002Fa> how easy to manage releases with HandyPlugins PaddlePress Pro.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Contributing & Bug Report\u003C\u002Fh4>\n\u003Cp>Bug reports and pull requests are welcome on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FHandyPlugins\u002Fhandyplugins-paddlepress\" rel=\"nofollow ugc\">Github\u003C\u002Fa>. Some of our features are pro only, please consider before sending PR.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>If you like this plugin, then consider checking out our other projects:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fhandyplugins.co\u002Fmagic-login-pro\u002F\" rel=\"friend nofollow ugc\">Magic Login Pro\u003C\u002Fa> – Easy, secure, and passwordless authentication for WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fhandyplugins.co\u002Feasy-text-to-speech\u002F\" rel=\"friend nofollow ugc\">Easy Text-to-Speech for WordPress\u003C\u002Fa> – Transform your textual content into high-quality synthesized speech.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fhandyplugins.co\u002Fhandywriter\u002F\" rel=\"friend nofollow ugc\">Handywriter\u003C\u002Fa> – AI-powered writing assistant that can help you create content for your WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fhandyplugins.co\u002Fwp-accessibility-toolkit\u002F\" rel=\"friend nofollow ugc\">WP Accessibility Toolkit\u003C\u002Fa> – A collection of tools to help you make your WordPress more accessible.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpoweredcache.com\u002F\" rel=\"friend nofollow ugc\">Powered Cache\u003C\u002Fa> – Caching and Optimization for WordPress – Easily Improve PageSpeed & Web Vitals Score\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Documentation\u003C\u002Fh4>\n\u003Cp>Our documentation can be found on \u003Ca href=\"https:\u002F\u002Fhandyplugins.co\u002Fdocs-category\u002Fpaddlepress-pro\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fhandyplugins.co\u002Fdocs-category\u002Fpaddlepress-pro\u002F\u003C\u002Fa>\u003C\u002Fp>\n","Easily accept credit card payments on your WordPress site with Paddle",70,6509,7,"2025-11-23T12:45:00.000Z","6.9.4","5.0","7.2.5",[21,100,101,102,103],"paddle","paddlepress","payment","software-licensing","https:\u002F\u002Fhandyplugins.co\u002Fpaddlepress-pro\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhandyplugins-paddlepress.2.5.1.zip",{"slug":107,"name":108,"version":109,"author":110,"author_profile":111,"description":112,"short_description":113,"active_installs":27,"downloaded":114,"rating":27,"num_ratings":27,"last_updated":115,"tested_up_to":96,"requires_at_least":97,"requires_php":23,"tags":116,"homepage":120,"download_link":121,"security_score":73,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"lck-cloud-connector","LCK cloud Connector","1.0.6","LCK cloud","https:\u002F\u002Fprofiles.wordpress.org\u002Flckcloud\u002F","\u003Cp>\u003Cstrong>Securely turn your existing WordPress content into “Members Only” pages. This plugin provides professional access control and member management.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>“LCK cloud Connector” is an official plugin designed to integrate advanced membership features into your WordPress site without complex coding.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Roles of This Plugin:\u003C\u002Fstrong>\u003Cbr \u002F>\nYou can easily set “access restrictions” for existing pages, posts, and categories. By implementing a system where only logged-in users can access specific content, you can properly control the range of information disclosure.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Security by Data Isolation:\u003C\u002Fstrong>\u003Cbr \u002F>\nUnlike standard membership plugins, it does not store sensitive member data (names, passwords, payment info, etc.) in your WordPress database. By isolating and managing data within the secure LCK cloud environment, you can minimize security risks for your website.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features and Solutions:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Membership Management:\u003C\u002Fstrong> Seamless integration and stable operation with LCK cloud.\u003Cbr \u002F>\n* \u003Cstrong>Access Control:\u003C\u002Fstrong> “Members Only” settings for individual pages or entire categories.\u003Cbr \u002F>\n* \u003Cstrong>Automatic Redirect:\u003C\u002Fstrong> Automatically guides non-logged-in users to the secure login screen.\u003Cbr \u002F>\n* \u003Cstrong>No-Code Design:\u003C\u002Fstrong> Admin interface that eliminates the need to edit WordPress \u003Ccode>functions.php\u003C\u002Fcode>.\u003Cbr \u002F>\n* \u003Cstrong>High Reliability:\u003C\u002Fstrong> Provided by a registered “Telecommunications Business Operator (Notification No. E-02-04640)” with the Kinki Bureau of Telecommunications in Japan.\u003C\u002Fp>\n\u003Cp>Ideal for corporate portals, member-only media, and internal document sharing sites. It supports smooth website operation as a secure “Membership Management WordPress” solution.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Related Resources:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwww.lck-cloud.jp\u002F\" rel=\"nofollow ugc\">LCK cloud Official Website\u003C\u002Fa> – Service details and features.\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwww.lck-cloud.jp\u002Fmembership-site-creation-guide.html\" rel=\"nofollow ugc\">Membership Site Building Guide\u003C\u002Fa> – Case studies and how to build a membership site.\u003C\u002Fp>\n\u003Ch3>日本語説明\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>WordPressサイトに閲覧制限とセキュアな会員管理機能を。既存のコンテンツを「ログイン限定」へ切り替えるためのプラグインです。\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>「LCK cloud Connector」は、既存のWordPressサイトを活用して、安全な会員制サイトを構築するための公式コネクタです。\u003C\u002Fp>\n\u003Cp>\u003Cstrong>【本プラグインの主な役割】\u003C\u002Fstrong>\u003Cbr \u002F>\n特別なカスタマイズを行うことなく、固定ページ、投稿、カテゴリーに対して「閲覧制限」を設定できます。 特定のユーザーのみがログインしてアクセスできる仕組みを導入することで、情報公開の範囲を適切に制御することが可能です。\u003C\u002Fp>\n\u003Cp>\u003Cstrong>【データ隔離によるセキュリティ設計】\u003C\u002Fstrong>\u003Cbr \u002F>\n会員の個人データ（名前、パスワード、決済情報等）をWordPress側のデータベース内に保持しない設計を採用しています。 国内の専用環境（LCK cloud）でデータを隔離して一元管理する仕組みにより、サイト運営におけるセキュリティのリスクを最小限に抑えられます。\u003C\u002Fp>\n\u003Cp>\u003Cstrong>【主な機能と運用ニーズへの対応】\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>会員管理 WordPress 連携:\u003C\u002Fstrong> LCK cloudとの同期による、安定したメンバーシップ運用。\u003Cbr \u002F>\n* \u003Cstrong>閲覧制限・アクセス制御:\u003C\u002Fstrong> ページやカテゴリー単位での「ログイン限定」設定機能。\u003Cbr \u002F>\n* \u003Cstrong>認証画面への誘導:\u003C\u002Fstrong> 未ログイン者が制限ページにアクセスした際の自動リダイレクト。\u003Cbr \u002F>\n* \u003Cstrong>ノーコード設計:\u003C\u002Fstrong> \u003Ccode>functions.php\u003C\u002Fcode> などのプログラム編集をせず、管理画面から設定可能。\u003Cbr \u002F>\n* \u003Cstrong>国内データセンターの利用:\u003C\u002Fstrong> 総務省近畿総合通信局届出済みの電気通信事業者（届出番号 E-02-04640）による提供・運営。\u003C\u002Fp>\n\u003Cp>法人向けのポータルサイト、会員限定のメディア、社内用資料共有サイトなど、高い信頼性と分かりやすい「会員サイトの作り方」を必要とする環境に適しています。 セキュリティと利便性の両立を目的とした「会員管理 WordPress」のソリューションとして、円滑なサイト運営を支援します。\u003C\u002Fp>\n\u003Cp>\u003Cstrong>【関連リソース】\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwww.lck-cloud.jp\u002F\" rel=\"nofollow ugc\">LCK cloud 公式サイト\u003C\u002Fa> – サービスの詳細はこちら\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fwww.lck-cloud.jp\u002Fmembership-site-creation-guide.html\" rel=\"nofollow ugc\">会員サイト構築ガイド\u003C\u002Fa> – 具体的な導入事例や会員サイトの作り方を解説\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>This plugin connects to LCK cloud to provide membership authentication and access control services.\u003Cbr \u002F>\n– Purpose: It is used to verify the user’s membership status and control access to restricted pages or categories.\u003Cbr \u002F>\n– Data sent: During access verification, the plugin sends the following data to the LCK cloud server: Registration Number (uno), Group ID (grp), Session ID (cid\u002Flck_cloud_in), and the current Request URL (r).\u003Cbr \u002F>\n– Service provider: LCK cloud\u003Cbr \u002F>\n– Terms of Service: https:\u002F\u002Fwww.lck-cloud.jp\u002Fagree.html\u003Cbr \u002F>\n– Privacy Policy: https:\u002F\u002Fwww.lck-cloud.jp\u002Fprivacy.html\u003C\u002Fp>\n","Easily restrict access to your existing WordPress pages and posts. Official connector to build secure membership sites with LCK cloud.",202,"2026-02-09T02:06:00.000Z",[117,118,20,21,119],"access-control","login-redirect","security","https:\u002F\u002Fwww.lck-cloud.jp\u002Fplugin.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flck-cloud-connector.1.0.6.zip",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":27,"downloaded":130,"rating":27,"num_ratings":27,"last_updated":131,"tested_up_to":14,"requires_at_least":97,"requires_php":132,"tags":133,"homepage":136,"download_link":137,"security_score":73,"vuln_count":27,"unpatched_count":27,"last_vuln_date":36,"fetched_at":29},"memberglut","MemberGlut – Role & User Management","1.1.0","AppGlut","https:\u002F\u002Fprofiles.wordpress.org\u002Fappglut\u002F","\u003Cp>🚀 \u003Cstrong>Transform your WordPress site into a powerful membership platform with MemberGlut!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>MemberGlut is the ultimate membership management solution that empowers you to create sophisticated user hierarchies, implement granular access controls, and monetize your content like never before. Whether you’re launching a premium community, educational platform, or exclusive content site, MemberGlut delivers enterprise-level functionality with WordPress simplicity.\u003C\u002Fp>\n\u003Cp>✨ \u003Cstrong>🎯 Key Features That Set Us Apart:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>🔐 \u003Cstrong>Advanced Role Management\u003C\u002Fstrong>\u003Cbr \u002F>\n* Create unlimited custom member roles with unique capabilities\u003Cbr \u002F>\n* Intuitive drag-and-drop role hierarchy system\u003Cbr \u002F>\n* Fine-grained permission controls for maximum flexibility\u003C\u002Fp>\n\u003Cp>👥 \u003Cstrong>Smart Membership Control\u003C\u002Fstrong>\u003Cbr \u002F>\n* Automated role assignments based on user behavior\u003Cbr \u002F>\n* Time-based membership expiration and renewals\u003Cbr \u002F>\n* Comprehensive member lifecycle tracking\u003C\u002Fp>\n\u003Cp>🛡️ \u003Cstrong>Content Protection Made Easy\u003C\u002Fstrong>\u003Cbr \u002F>\n* Protect posts, pages, and custom content types\u003Cbr \u002F>\n* Whole site login control – restrict entire site to logged-in users\u003Cbr \u002F>\n* Customizable restriction messages and redirect pages\u003Cbr \u002F>\n* Seamless integration with existing WordPress content\u003C\u002Fp>\n\u003Cp>📊 \u003Cstrong>Professional Admin Experience\u003C\u002Fstrong>\u003Cbr \u002F>\n* Beautiful, responsive admin dashboard\u003Cbr \u002F>\n* Real-time membership analytics and reporting\u003Cbr \u002F>\n* Bulk member management tools for efficiency\u003C\u002Fp>\n\u003Cp>🌍 \u003Cstrong>Built for Growth\u003C\u002Fstrong>\u003Cbr \u002F>\n* Translation-ready with complete .pot file included\u003Cbr \u002F>\n* Developer-friendly hooks and filters for customization\u003Cbr \u002F>\n* Optimized for performance and scalability\u003C\u002Fp>\n\u003Cp>🎖️ \u003Cstrong>Ready-to-Use Member Tiers:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>⭐ \u003Cstrong>Basic Member\u003C\u002Fstrong> – Perfect starter access with essential reading permissions\u003Cbr \u002F>\n💎 \u003Cstrong>Premium Member\u003C\u002Fstrong> – Enhanced experience with premium content access\u003Cbr \u002F>\n👑 \u003Cstrong>VIP Member\u003C\u002Fstrong> – Ultimate access to all exclusive content and features\u003C\u002Fp>\n\u003Cp>🚀 \u003Cstrong>Unlock Premium Power (Pro Features):\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>💼 \u003Cstrong>Business Essentials\u003C\u002Fstrong>\u003Cbr \u002F>\n* Unlimited custom roles and capabilities\u003Cbr \u002F>\n* Advanced content restriction engine\u003Cbr \u002F>\n* Automated membership renewals and notifications\u003C\u002Fp>\n\u003Cp>💰 \u003Cstrong>Revenue Generation\u003C\u002Fstrong>\u003Cbr \u002F>\n* Seamless payment gateway integration\u003Cbr \u002F>\n* Subscription management and billing\u003Cbr \u002F>\n* Advanced pricing models and discounts\u003C\u002Fp>\n\u003Cp>📈 \u003Cstrong>Growth & Analytics\u003C\u002Fstrong>\u003Cbr \u002F>\n* Comprehensive member analytics dashboard\u003Cbr \u002F>\n* Import\u002FExport tools for member management\u003Cbr \u002F>\n* A\u002FB testing for membership funnels\u003C\u002Fp>\n\u003Cp>🎨 \u003Cstrong>Enhanced User Experience\u003C\u002Fstrong>\u003Cbr \u002F>\n* Custom registration and login forms with professional styling\u003Cbr \u002F>\n* Advanced shortcode system with extensive documentation\u003Cbr \u002F>\n* Personalized member dashboards\u003Cbr \u002F>\n* Email automation and member communications\u003C\u002Fp>\n\u003Cp>🏆 \u003Cstrong>Perfect Solution For:\u003C\u002Fstrong>\u003Cbr \u002F>\n🌟 Membership & Subscription Sites\u003Cbr \u002F>\n🎓 Online Learning Platforms\u003Cbr \u002F>\n💼 Professional Communities\u003Cbr \u002F>\n📚 Premium Content Publishers\u003Cbr \u002F>\n🛍️ Exclusive E-commerce Stores\u003Cbr \u002F>\n🎪 Event & Workshop Organizers\u003C\u002Fp>\n\u003Cp>Ready to revolutionize your membership experience? Join thousands of satisfied site owners who trust MemberGlut for their membership needs!\u003C\u002Fp>\n","A powerful membership plugin with custom roles, capabilities, and access control. Create unlimited member roles and manage site access with ease.",1199,"2025-08-08T14:46:00.000Z","7.4",[117,134,20,21,135],"content-protection","user-roles","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmemberglut\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmemberglut.1.1.0.zip",{"slug":22,"name":139,"version":140,"author":141,"author_profile":142,"description":143,"short_description":144,"active_installs":27,"downloaded":145,"rating":27,"num_ratings":27,"last_updated":23,"tested_up_to":146,"requires_at_least":97,"requires_php":77,"tags":147,"homepage":151,"download_link":152,"security_score":153,"vuln_count":46,"unpatched_count":27,"last_vuln_date":154,"fetched_at":155},"MemberSonic Lite Membership Site Plugin","2.0.2","Plugin Results","https:\u002F\u002Fprofiles.wordpress.org\u002Fplugin-results\u002F","\u003Cp>Protect and sell your content, perfect for subscription sites, or selling individual downloadable products.\u003C\u002Fp>\n\u003Cp>Features Include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Unlimited membership levels\u002Fproducts\u003C\u002Fli>\n\u003Cli>Automatically creates member accounts\u003C\u002Fli>\n\u003Cli>Create free levels or sell access through Paypal\u003C\u002Fli>\n\u003Cli>Customized welcome emails\u003C\u002Fli>\n\u003Cli>Single view content protection settings screen\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.membersonic.com\u002F\" rel=\"nofollow ugc\">Upgrade To MemberSonic Pro Here.\u003C\u002Fa>\u003C\u002Fp>\n","Protect and sell your content, perfect for subscription sites, or selling individual downloadable products.",4335,"5.6.17",[134,148,22,149,150],"members","memberships","membersonic","https:\u002F\u002Fwww.membersonic.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmembership-site.zip",98,"2016-06-28 00:00:00","2026-03-15T10:48:56.248Z",{"attackSurface":157,"codeSignals":212,"taintFlows":269,"riskAssessment":348,"analyzedAt":365},{"hooks":158,"ajaxHandlers":194,"restRoutes":208,"shortcodes":209,"cronEvents":210,"entryPointCount":211,"unprotectedCount":211},[159,165,168,170,173,176,179,182,185,188,190],{"type":160,"name":161,"callback":162,"file":163,"line":164},"action","plugins_loaded","anonymous","includes\\class-productdyno.php",142,{"type":160,"name":166,"callback":162,"file":163,"line":167},"admin_enqueue_scripts",157,{"type":160,"name":166,"callback":162,"file":163,"line":169},158,{"type":160,"name":171,"callback":162,"file":163,"line":172},"admin_menu",161,{"type":160,"name":174,"callback":162,"file":163,"line":175},"add_meta_boxes",164,{"type":160,"name":177,"callback":162,"file":163,"line":178},"admin_post_pd_verify_api_key",167,{"type":160,"name":180,"callback":162,"file":163,"line":181},"save_post",170,{"type":160,"name":183,"callback":162,"file":163,"line":184},"init",185,{"type":160,"name":186,"callback":162,"file":163,"line":187},"wp_enqueue_scripts",200,{"type":160,"name":186,"callback":162,"file":163,"line":189},201,{"type":191,"name":192,"callback":162,"file":163,"line":193},"filter","template_include",203,[195,199,202,205],{"action":196,"nopriv":197,"callback":162,"hasNonce":197,"hasCapCheck":197,"file":163,"line":198},"pd_get_products",false,173,{"action":200,"nopriv":197,"callback":162,"hasNonce":197,"hasCapCheck":197,"file":163,"line":201},"pd_get_collections",176,{"action":203,"nopriv":197,"callback":162,"hasNonce":197,"hasCapCheck":197,"file":163,"line":204},"pd_get_collection_products",179,{"action":206,"nopriv":197,"callback":162,"hasNonce":197,"hasCapCheck":197,"file":163,"line":207},"pd_clear_all_cache_data",182,[],[],[],4,{"dangerousFunctions":213,"sqlUsage":214,"outputEscaping":216,"fileOperations":27,"externalRequests":267,"nonceChecks":27,"capabilityChecks":27,"bundledLibraries":268},[],{"prepared":46,"raw":27,"locations":215},[],{"escaped":217,"rawEcho":218,"locations":219},45,24,[220,224,226,227,229,231,233,234,236,238,240,241,243,245,247,248,250,252,254,256,258,261,263,265],{"file":221,"line":222,"context":223},"admin\\class-productdyno-admin.php",272,"raw output",{"file":221,"line":225,"context":223},277,{"file":221,"line":225,"context":223},{"file":221,"line":228,"context":223},282,{"file":221,"line":230,"context":223},292,{"file":221,"line":232,"context":223},297,{"file":221,"line":232,"context":223},{"file":221,"line":235,"context":223},302,{"file":221,"line":237,"context":223},312,{"file":221,"line":239,"context":223},317,{"file":221,"line":239,"context":223},{"file":221,"line":242,"context":223},322,{"file":221,"line":244,"context":223},331,{"file":221,"line":246,"context":223},336,{"file":221,"line":246,"context":223},{"file":221,"line":249,"context":223},348,{"file":221,"line":251,"context":223},372,{"file":221,"line":253,"context":223},397,{"file":221,"line":255,"context":223},424,{"file":221,"line":257,"context":223},448,{"file":259,"line":260,"context":223},"public\\class-productdyno-public.php",1040,{"file":259,"line":262,"context":223},1077,{"file":259,"line":264,"context":223},1193,{"file":259,"line":266,"context":223},1194,3,[],[270,286,309,323,335],{"entryPoint":271,"graph":272,"unsanitizedCount":26,"severity":39},"_pd_show_alert (public\\class-productdyno-public.php:1150)",{"nodes":273,"edges":284},[274,279],{"id":275,"type":276,"label":277,"file":259,"line":278},"n0","source","$_GET (x2)",1153,{"id":280,"type":281,"label":282,"file":259,"line":264,"wp_function":283},"n1","sink","echo() [XSS]","echo",[285],{"from":275,"to":280,"sanitized":197},{"entryPoint":287,"graph":288,"unsanitizedCount":267,"severity":39},"\u003Cclass-productdyno-public> (public\\class-productdyno-public.php:0)",{"nodes":289,"edges":305},[290,291,292,296,300],{"id":275,"type":276,"label":277,"file":259,"line":278},{"id":280,"type":281,"label":282,"file":259,"line":264,"wp_function":283},{"id":293,"type":276,"label":294,"file":259,"line":295},"n2","$_GET['_pd_reset_code']",944,{"id":297,"type":298,"label":299,"file":259,"line":295},"n3","transform","→ _pd_get_page_html()",{"id":301,"type":281,"label":302,"file":259,"line":303,"wp_function":304},"n4","wp_remote_get() [SSRF]",992,"wp_remote_get",[306,307,308],{"from":275,"to":280,"sanitized":197},{"from":293,"to":297,"sanitized":197},{"from":297,"to":301,"sanitized":197},{"entryPoint":310,"graph":311,"unsanitizedCount":46,"severity":322},"pd_verify_api_key (admin\\class-productdyno-admin.php:147)",{"nodes":312,"edges":320},[313,316],{"id":275,"type":276,"label":314,"file":221,"line":315},"$_POST",149,{"id":280,"type":281,"label":317,"file":221,"line":318,"wp_function":319},"update_option() [Settings Manipulation]",168,"update_option",[321],{"from":275,"to":280,"sanitized":197},"low",{"entryPoint":324,"graph":325,"unsanitizedCount":211,"severity":322},"\u003Cclass-productdyno-admin> (admin\\class-productdyno-admin.php:0)",{"nodes":326,"edges":332},[327,328,329,331],{"id":275,"type":276,"label":314,"file":221,"line":315},{"id":280,"type":281,"label":317,"file":221,"line":318,"wp_function":319},{"id":293,"type":276,"label":330,"file":221,"line":315},"$_POST (x3)",{"id":297,"type":281,"label":282,"file":221,"line":251,"wp_function":283},[333,334],{"from":275,"to":280,"sanitized":197},{"from":293,"to":297,"sanitized":197},{"entryPoint":336,"graph":337,"unsanitizedCount":27,"severity":322},"\u003Cproductdyno-admin-display> (admin\\partials\\productdyno-admin-display.php:0)",{"nodes":338,"edges":345},[339,343],{"id":275,"type":276,"label":340,"file":341,"line":342},"$_GET","admin\\partials\\productdyno-admin-display.php",17,{"id":280,"type":281,"label":282,"file":341,"line":344,"wp_function":283},95,[346],{"from":275,"to":280,"sanitized":347},true,{"summary":349,"deductions":350},"The Productdyno plugin v1.0.26 exhibits a concerning security posture primarily due to a significant number of unprotected entry points.  The static analysis reveals four AJAX handlers that lack authentication checks, presenting a direct attack vector for unauthenticated users. While the plugin demonstrates good practices with SQL queries being prepared and a reasonable percentage of output escaping, the absence of nonce and capability checks on these critical AJAX endpoints is a major oversight.  Taint analysis also highlights four flows with unsanitized paths, although thankfully no critical or high severity vulnerabilities were identified in this area.\n\nThe plugin's vulnerability history, with two known medium-severity CVEs related to Cross-Site Scripting (XSS), reinforces the concern about input sanitization and output escaping. The fact that these vulnerabilities are marked as 'currently unpatched' is a significant red flag, suggesting that even if the current version (1.0.26) might not be directly affected, past issues indicate a potential for similar weaknesses to resurface or be present in other parts of the code. The last vulnerability was reported recently, implying ongoing security challenges.\n\nIn conclusion, while the plugin shows some positive signs regarding SQL handling and a majority of output escaping, the unauthenticated AJAX endpoints and the history of XSS vulnerabilities create a notable risk. The lack of proper authorization checks on multiple entry points is a critical flaw that attackers could exploit to perform unauthorized actions. Users of this plugin should exercise caution and ensure they have robust security measures in place.",[351,353,356,358,360,362],{"reason":352,"points":71},"AJAX handlers without auth checks",{"reason":354,"points":355},"Unsanitized paths in taint flows",8,{"reason":357,"points":71},"Medium severity XSS vulnerabilities historically",{"reason":359,"points":12},"No nonce checks",{"reason":361,"points":12},"No capability checks",{"reason":363,"points":364},"Output escaping not fully implemented",6,"2026-03-16T21:28:29.227Z",{"wat":367,"direct":375},{"assetPaths":368,"generatorPatterns":371,"scriptPaths":372,"versionParams":373},[369,370],"\u002Fwp-content\u002Fplugins\u002Fproductdyno\u002Fadmin\u002Fcss\u002Fproductdyno-admin.css","\u002Fwp-content\u002Fplugins\u002Fproductdyno\u002Fadmin\u002Fjs\u002Fproductdyno-admin.js",[],[370],[374,4],"productdyno-admin",{"cssClasses":376,"htmlComments":378,"htmlAttributes":380,"restEndpoints":382,"jsGlobals":383,"shortcodeOutput":385},[377],"pd-admin-page",[379],"PD Plugin dashboard page",[381],"data-productdyno-api-key",[],[384,4],"ProductdynoAdmin",[]]