[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fRTEUGSPhkk5rdsQ-RX44TF75HHBDdIkQGHHzb0mewCk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":40,"analysis":132,"fingerprints":216},"recent-logins","Recent Logins","1.0.0","Nazmul Ahsan","https:\u002F\u002Fprofiles.wordpress.org\u002Fmukto90\u002F","\u003Ch4>A great, must have and missing feature in WordPress!\u003C\u002Fh4>\n\u003Cp>Is there someone else logging in to your account? Keep an eye on your recent login records.\u003C\u002Fp>\n\u003Cp>This awesome plugin will help you see your latest login records including time of login, IP address, street address, city, country, location map, browser and OS info.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>It adds a ‘Last Login’ column in user manager page for admin, that helps admin to monitor user activities!\u003C\u002Fli>\n\u003Cli>Lists up to 50 of recent login records in user’s profile page, that includes user’s IP address, street address, location map, operating system and browser info!\u003C\u002Fli>\n\u003C\u002Ful>\n","Is there someone else logging in to your account? Keep an eye on your recent login records.",10,1627,60,2,"2016-04-23T14:27:00.000Z","4.6.30","3.0.0","",[20,21,22,23,24],"latest-login-records","latest-logins","login-history","login-record","recent-login","http:\u002F\u002Fmedhabi.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frecent-logins.1.0.0.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"mukto90",6,180,86,30,84,"2026-04-04T17:26:51.680Z",[41,61,81,99,114],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":47,"short_description":48,"active_installs":49,"downloaded":50,"rating":28,"num_ratings":28,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":18,"tags":54,"homepage":18,"download_link":59,"security_score":60,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"when-last-login-export-user-records","When Last Login – Export User Records","1.1","Andrew Lima","https:\u002F\u002Fprofiles.wordpress.org\u002Fandrewza\u002F","\u003Cp>An add-on to When Last Login which allows you to export all user login records into a CSV or JSON file. Get meaningful data at the click of a button.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Export user login records into a CSV file\u003C\u002Fli>\n\u003Cli>Export user login records into a JSON file\u003C\u002Fli>\n\u003Cli>Export user records with most recent login time into a CSV file\u003C\u002Fli>\n\u003Cli>Export user records with most recent login time into a JSON file\u003C\u002Fli>\n\u003C\u002Ful>\n","Export your user's login records into a CSV or JSON file in seconds.",600,7071,"2026-02-03T07:44:00.000Z","6.9.4","5.0",[55,56,57,58],"export-user-login-records","last-login","user-login-records","when-last-login","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwhen-last-login-export-user-records.1.1.zip",100,{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":28,"num_ratings":28,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":18,"tags":74,"homepage":78,"download_link":79,"security_score":80,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-users-login-history","WP Users Login History","1.2","Chetan Vaghela","https:\u002F\u002Fprofiles.wordpress.org\u002Fthechetanvaghela\u002F","\u003Cp>Track website’s users by their login related information like Last login Date\u002FTime, Environment\u002FServer IP address,Country\u002FCity\u002FContinent\u002FTimezone, Lat-long, Browser, Platform, Currency code\u002Fsymbol and many more.\u003C\u002Fp>\n\u003Ch3>Features And Options:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Display Logged in users Details.\u003C\u002Fli>\n\u003Cli>Add new Column to user listing oage.\u003C\u002Fli>\n\u003Cli>Mantain Login history from user profile page.\u003C\u002Fli>\n\u003Cli>Clear History of users.\u003C\u002Fli>\n\u003Cli>Compatible with WordPress multisite network\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Track user’s login details with the following attributes:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>Login\u003C\u002Fstrong> – Login Date-Time\u003C\u002Fli>\n\u003Cli>\u003Cstrong>IP Address\u003C\u002Fstrong> – Environment\u002FServer IP address\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Country\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>City\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Continent\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Timezone\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Latitude\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Longitude\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Browser\u003C\u002Fstrong> – Name and Version\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Operating System\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Currency\u003C\u002Fstrong> – Code and Symbol\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Compatible With\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-login-register-flow\u002F\" rel=\"ugc\">WP Login Register Flow\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Keywords\u003C\u002Fh3>\n\u003Cp>Logged user detail, Login Log, user log, log, tracker, admin, subscriber, editor, geo location, manager, report, statistics, activity\u003C\u002Fp>\n","Track website's users by their login related information like Last login Date\u002FTime, Environment\u002FServer IP address,Country\u002FCity\u002FContinent\u002FTimezone &hellip;",70,3168,"2024-05-01T13:45:00.000Z","6.5.8","6.2.2",[56,22,75,76,77],"login-log","mantain-login-history","user-detail","http:\u002F\u002Fchetanvaghela.cf\u002Fwp-users-login-history","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-users-login-history.zip",92,{"slug":82,"name":83,"version":84,"author":85,"author_profile":86,"description":87,"short_description":88,"active_installs":37,"downloaded":89,"rating":28,"num_ratings":28,"last_updated":90,"tested_up_to":91,"requires_at_least":53,"requires_php":92,"tags":93,"homepage":18,"download_link":98,"security_score":60,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"user-login-tracker","User Login Tracker","2.0.1","Irfan","https:\u002F\u002Fprofiles.wordpress.org\u002Firfanntk\u002F","\u003Cp>User Login Tracker helps WordPress site administrators monitor and analyze user login activity with powerful analytics and detailed reporting. Perfect for membership sites, e-commerce platforms, and any website that needs to track user engagement and activity patterns.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Visual Analytics Dashboard\u003C\u002Fstrong> – Interactive charts showing login trends and user activity patterns\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Real-time Login Tracking\u003C\u002Fstrong> – Automatically track every user login with detailed information\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User Activity History\u003C\u002Fstrong> – View complete login history for any user with timestamps and IP addresses\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dashboard Widget\u003C\u002Fstrong> – Quick overview of recent activity right on your WordPress dashboard\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Data Export\u003C\u002Fstrong> – Export login data in CSV format for external analysis\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Activity Status Indicators\u003C\u002Fstrong> – Instantly see which users are active or inactive\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Performance Optimized\u003C\u002Fstrong> – Fast, efficient database design that won’t slow down your site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mobile Responsive\u003C\u002Fstrong> – Works perfectly on all devices and screen sizes\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Why Choose User Login Tracker?\u003C\u002Fh4>\n\u003Cp>✅ \u003Cstrong>Easy Setup\u003C\u002Fstrong> – Install and start tracking immediately, no configuration required\u003Cbr \u002F>\n✅ \u003Cstrong>Lightweight\u003C\u002Fstrong> – Minimal impact on site performance with optimized code\u003Cbr \u002F>\n✅ \u003Cstrong>Secure\u003C\u002Fstrong> – Built with WordPress security best practices\u003Cbr \u002F>\n✅ \u003Cstrong>User-Friendly\u003C\u002Fstrong> – Clean, intuitive interface that anyone can use\u003Cbr \u002F>\n✅ \u003Cstrong>Comprehensive\u003C\u002Fstrong> – Track everything you need without overwhelming complexity\u003C\u002Fp>\n\u003Ch4>Perfect For\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Membership Sites\u003C\u002Fstrong> – Monitor member engagement and login patterns\u003C\u002Fli>\n\u003Cli>\u003Cstrong>E-commerce Stores\u003C\u002Fstrong> – Track customer activity and identify trends\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Business Websites\u003C\u002Fstrong> – Understand user behavior and site usage\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Educational Platforms\u003C\u002Fstrong> – Monitor student login activity\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Community Sites\u003C\u002Fstrong> – Track member participation and engagement\u003C\u002Fli>\n\u003C\u002Ful>\n","Monitor user login activity with advanced analytics, visual charts, and comprehensive tracking dashboard.",494,"2025-09-05T18:43:00.000Z","6.8.5","7.2",[22,94,95,96,97],"login-tracking","user-activity","user-login","user-monitoring","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-tracker.2.0.1.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":28,"downloaded":107,"rating":28,"num_ratings":28,"last_updated":108,"tested_up_to":91,"requires_at_least":53,"requires_php":92,"tags":109,"homepage":18,"download_link":113,"security_score":60,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"login-activity-tracker","Login Activity Tracker","1.6","Debjit Das","https:\u002F\u002Fprofiles.wordpress.org\u002Fdebjit98\u002F","\u003Cp>\u003Cstrong>Login Activity Tracker\u003C\u002Fstrong> records every user login attempt—both successful and failed. It provides an admin panel for viewing all login logs and a user panel for individual login history. The plugin includes color-coded statuses and styled pagination for a better user experience.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Logs all login attempts (success & failure)\u003C\u002Fli>\n\u003Cli>Shows login date\u003C\u002Fli>\n\u003Cli>Admin can view all user login activities\u003C\u002Fli>\n\u003Cli>Users can view their own login history\u003C\u002Fli>\n\u003Cli>Super admin login status highlighted\u003C\u002Fli>\n\u003Cli>Color-coded login statuses (success\u002Ffailure)\u003C\u002Fli>\n\u003Cli>Clean UI with pagination\u003C\u002Fli>\n\u003Cli>Lightweight and secure\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPLv2 or later.\u003C\u002Fp>\n","Tracks user login attempts and displays login logs with styled pagination for admins and users.",267,"2025-06-29T12:25:00.000Z",[110,111,96,112],"login-tracker","tracking","user-login-history","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flogin-activity-tracker.1.6.zip",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":28,"downloaded":122,"rating":60,"num_ratings":14,"last_updated":18,"tested_up_to":91,"requires_at_least":123,"requires_php":124,"tags":125,"homepage":129,"download_link":130,"security_score":60,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":131},"wp-easy-login","WP Easy Login – Remember Recent Usernames","1.0.3","Sumit Singh","https:\u002F\u002Fprofiles.wordpress.org\u002F5um17\u002F","\u003Cp>WP Easy Login remember the username of each user who logged-in to the site. Usernames are stored in the browser and displayed when you visit default login page of the website using the same browser.\u003Cbr \u002F>\nIt is very useful plugin when users have many accounts on the same site.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easy login by just entering the password and selecting an account for login\u003C\u002Fli>\n\u003Cli>Define the age of cookie to store the username in a browser\u003C\u002Fli>\n\u003Cli>Customize the users’ list by turning off\u002Fon Email, Role and Gravatar\u003C\u002Fli>\n\u003Cli>Customize hints and button labels\u003C\u002Fli>\n\u003Cli>Users can remove their accounts from the browser at any time.\u003C\u002Fli>\n\u003Cli>Works with WordPress default login page\u003C\u002Fli>\n\u003C\u002Ful>\n","WP Easy Login stores the recent logins and makes it easy for you to login by selecting an account.",2384,"4.9","7.0",[126,127,4,128],"easy-login","login","remember-username","https:\u002F\u002Fwww.secretsofgeeks.com\u002F2019\u002F10\u002Fwordpress-login-remember-recent-usernames.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-easy-login.1.0.3.zip","2026-03-15T10:48:56.248Z",{"attackSurface":133,"codeSignals":171,"taintFlows":202,"riskAssessment":203,"analyzedAt":215},{"hooks":134,"ajaxHandlers":167,"restRoutes":168,"shortcodes":169,"cronEvents":170,"entryPointCount":28,"unprotectedCount":28},[135,141,145,149,152,157,160,163],{"type":136,"name":137,"callback":138,"file":139,"line":140},"action","plugins_loaded","install","recent-logins.php",40,{"type":136,"name":142,"callback":143,"priority":11,"file":139,"line":144},"wp_login","add_log",41,{"type":136,"name":146,"callback":147,"file":139,"line":148},"show_user_profile","show_recent_logins",42,{"type":136,"name":150,"callback":147,"file":139,"line":151},"edit_user_profile",43,{"type":153,"name":154,"callback":155,"file":139,"line":156},"filter","manage_site-users-network_columns","manage_user_add_column",45,{"type":153,"name":158,"callback":155,"file":139,"line":159},"manage_users_columns",46,{"type":153,"name":161,"callback":155,"file":139,"line":162},"wpmu_users_columns",47,{"type":153,"name":164,"callback":165,"priority":11,"file":139,"line":166},"manage_users_custom_column","manage_user_show_content",48,[],[],[],[],{"dangerousFunctions":172,"sqlUsage":177,"outputEscaping":183,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":178,"bundledLibraries":201},[173],{"fn":174,"file":139,"line":175,"context":176},"unserialize",131,"$client = unserialize( $log->client ); ?>",{"prepared":28,"raw":178,"locations":179},1,[180],{"file":139,"line":181,"context":182},112,"$wpdb->get_results() with variable interpolation",{"escaped":28,"rawEcho":184,"locations":185},8,[186,189,190,192,194,196,198,199],{"file":139,"line":187,"context":188},133,"raw output",{"file":139,"line":187,"context":188},{"file":139,"line":191,"context":188},134,{"file":139,"line":193,"context":188},135,{"file":139,"line":195,"context":188},136,{"file":139,"line":197,"context":188},137,{"file":139,"line":197,"context":188},{"file":139,"line":200,"context":188},151,[],[],{"summary":204,"deductions":205},"The \"recent-logins\" plugin v1.0.0 presents a concerning security posture, despite a clean vulnerability history. While the plugin boasts a zero attack surface for common entry points like AJAX, REST API, shortcodes, and cron events, indicating good initial design in those areas, the code analysis reveals significant underlying risks. The presence of the `unserialize` function is a major red flag, especially when combined with the fact that no nonce checks are implemented. This combination can lead to remote code execution vulnerabilities if an attacker can control the data being unserialized.\n\nFurthermore, the plugin executes SQL queries without using prepared statements, increasing the risk of SQL injection attacks. The lack of output escaping on all identified outputs means that any data displayed by the plugin is vulnerable to cross-site scripting (XSS) attacks. Although there are no known CVEs, this does not negate the inherent risks identified in the code. The plugin demonstrates a clear weakness in secure coding practices, particularly around input validation and data sanitization, which could be easily exploited if an attacker can influence the serialized data or database inputs.",[206,208,211,213],{"reason":207,"points":184},"Unescaped output (all outputs)",{"reason":209,"points":210},"Raw SQL without prepare",5,{"reason":212,"points":11},"Dangerous function: unserialize",{"reason":214,"points":210},"Missing nonce checks","2026-03-17T00:30:30.561Z",{"wat":217,"direct":222},{"assetPaths":218,"generatorPatterns":219,"scriptPaths":220,"versionParams":221},[],[],[],[],{"cssClasses":223,"htmlComments":226,"htmlAttributes":227,"restEndpoints":228,"jsGlobals":229,"shortcodeOutput":230},[224,225],"recent-logins-wrap","recent-login-table",[],[],[],[],[]]