[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fBb6lH-nLuQ4zN8bcEku0_24Fxicr1A783ErB0nGm8Ng":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":126,"fingerprints":211},"remove-admin-menus-by-role","Remove admin menus by role","1.37","manu225","https:\u002F\u002Fprofiles.wordpress.org\u002Fmanu225\u002F","\u003Cp>Select easily which admin menus to remove for which roles.\u003Cbr \u002F>\nA Pro version with more options is available: \u003Ca href=\"https:\u002F\u002Fwww.info-d-74.com\u002Fen\u002Fproduit\u002Fremove-admin-menus-by-role-pro-plugin-wordpress-2\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.info-d-74.com\u002Fen\u002Fproduit\u002Fremove-admin-menus-by-role-pro-plugin-wordpress-2\u002F\u003C\u002Fa>\u003C\u002Fp>\n","Select easily which admin menus to remove for which roles.",8000,65465,88,14,"2025-12-02T14:08:00.000Z","6.9.4","3.5","5.6",[20,21,22,23,24],"admin","hide","menu","remove","role","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fremove-admin-menus-by-role.1.37.zip",100,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},17,26850,29,94,"2026-04-04T05:30:39.688Z",[39,61,76,93,109],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":25,"tags":54,"homepage":25,"download_link":60,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"hide-admin-menu","Hide Admin Menu","1.1.2","Bhavin Thummar","https:\u002F\u002Fprofiles.wordpress.org\u002Fbhavinthummar\u002F","\u003Cp>This plugin gives the facility for hiding and showing the admin menu of the side and top bars.\u003C\u002Fp>\n\u003Cp>This plugin gives an easy way to hide admin menus by checking the checkbox of a particular menu in the form and then submitting the form so that checked menus hide from the admin.\u003C\u002Fp>\n\u003Cp>Admin also can hide menu according to the role of users.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"560\" height=\"315\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FLiXcE6aEvdI?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n","Using this plugin, we can hide the admin menu easily.",20000,124314,98,13,"2025-05-20T03:44:00.000Z","6.8.5","4.6",[55,56,57,58,59],"admin-menu-hide","admin-menu-plugin","admin-menu-show","menu-hide","user-role","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhide-admin-menu.1.1.2.zip",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":27,"downloaded":69,"rating":27,"num_ratings":70,"last_updated":71,"tested_up_to":16,"requires_at_least":72,"requires_php":25,"tags":73,"homepage":74,"download_link":75,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"hide-admin-icons","Hide Admin Icons","2.0.0","Plugin Pizza","https:\u002F\u002Fprofiles.wordpress.org\u002Fpluginpizza\u002F","\u003Cp>Hide Admin Icons hides the navigation menu icons and admin page title icons. The menu icons remain visible when the menu is in its collapsed state.\u003C\u002Fp>\n\u003Ch4>Bug Reports\u003C\u002Fh4>\n\u003Cp>Do you want to report a bug or suggest a feature for Hide Admin Icons? Best to do so in the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpluginpizza\u002Fhide-admin-icons\u002F\" rel=\"nofollow ugc\">Hide Admin Icons repository on GitHub\u003C\u002Fa>.\u003C\u002Fp>\n","Hides the icons in the admin navigation and admin page titles.",7855,1,"2026-01-02T21:42:00.000Z","2.7",[20,21,22,23],"http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fhide-admin-icons\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fhide-admin-icons.2.0.0.zip",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":28,"num_ratings":28,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":25,"tags":89,"homepage":90,"download_link":91,"security_score":92,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"gp-hide-menu-options-by-role","GP hide menu options by role","1.0.0","renemanqueros","https:\u002F\u002Fprofiles.wordpress.org\u002Frenemanqueros\u002F","\u003Cp>Allows site administrators to hide menu options on the admin menu to users in other roles.\u003Cbr \u002F>\nTo prevent getting locked out of the admin panel, the plug-in doesn’t hide options for users under the Administrator role.\u003Cbr \u002F>\nThis plug-in will add a new menu option under the settings menu.\u003C\u002Fp>\n","Hide admin menu options depending on the users role",10,1978,"2015-11-27T16:30:00.000Z","4.3.34","3.0.1",[20,21,22,24],"https:\u002F\u002Fgithub.com\u002Fgammapartners","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgp-hide-menu-options-by-role.zip",85,{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":84,"downloaded":101,"rating":28,"num_ratings":28,"last_updated":102,"tested_up_to":16,"requires_at_least":103,"requires_php":25,"tags":104,"homepage":107,"download_link":108,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"remove-administrators","Remove Administrators","1.0.2","DigitalME","https:\u002F\u002Fprofiles.wordpress.org\u002Fdigitalmeactivecampaign\u002F","\u003Cp>Do you develop websites for a living? Do you prefer to give your clients a level of access other than Administrator to prevent accidental damage? Maybe even a custom role? What if you wanted to hide the Admin user(s) from them altogether? This plugin does exactly that!\u003C\u002Fp>\n\u003Cp>Currently based off the ‘update_core’ permission, Remove Administrators hides all references to Admins from all other user roles on the dashboard. The next release will support configurable permissions and multisite installations.\u003C\u002Fp>\n\u003Ch3>Todo\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Add support for configurable permissions\u003C\u002Fli>\n\u003Cli>Add support for WordPress Multisite installations\u003C\u002Fli>\n\u003C\u002Ful>\n","Allows admins to hide the admin role from all other roles.",2187,"2026-02-04T17:25:00.000Z","3.0",[20,21,23,105,106],"roles","users","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fremove-administrators\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fremove-administrators.1.0.2.zip",{"slug":110,"name":111,"version":79,"author":112,"author_profile":113,"description":114,"short_description":115,"active_installs":28,"downloaded":116,"rating":28,"num_ratings":28,"last_updated":117,"tested_up_to":16,"requires_at_least":118,"requires_php":119,"tags":120,"homepage":124,"download_link":125,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"menuguard-labs-menu-control","MenuGuard Labs Menu Control","Shariar Mahmud Prince","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpexpertprince\u002F","\u003Cp>\u003Cstrong>MenuGuard Labs Menu Control\u003C\u002Fstrong> allows you to show or hide dashboard menus based on user roles. It is designed for developers who want to hand off a clean, simplified dashboard to their clients, preventing them from accessing settings that could break the site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Role-Based Control:\u003C\u002Fstrong> Hide specific menus and sub-menus for any user role.\u003Cbr \u002F>\n* \u003Cstrong>Developer Lock:\u003C\u002Fstrong> Lock the settings so other admins cannot change visibility rules.\u003Cbr \u002F>\n* \u003Cstrong>Client Handoff Mode:\u003C\u002Fstrong> Automatically hides sub-menus when the parent menu is hidden.\u003Cbr \u002F>\n* \u003Cstrong>Import\u002FExport:\u003C\u002Fstrong> Easily transfer your menu settings using JSON.\u003Cbr \u002F>\n* \u003Cstrong>Clean Interface:\u003C\u002Fstrong> Modern, responsive settings page.\u003C\u002Fp>\n","Control WordPress dashboard menu visibility per user role. Ideal for client handoff and simplifying the interface.",103,"2026-01-06T19:36:00.000Z","5.8","7.4",[121,122,123,59],"admin-menu","hide-menu","menu-editor","https:\u002F\u002Fprincewebdev.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmenuguard-labs-menu-control.1.0.0.zip",{"attackSurface":127,"codeSignals":148,"taintFlows":175,"riskAssessment":202,"analyzedAt":210},{"hooks":128,"ajaxHandlers":144,"restRoutes":145,"shortcodes":146,"cronEvents":147,"entryPointCount":28,"unprotectedCount":28},[129,136,140],{"type":130,"name":131,"callback":132,"priority":133,"file":134,"line":135},"action","admin_menu","register_remove_menu_admin_free",1000,"remove-admin-menus-by-role.php",90,{"type":130,"name":137,"callback":138,"file":134,"line":139},"admin_print_styles","remove_menu_admin_free_css",194,{"type":130,"name":141,"callback":142,"file":134,"line":143},"plugins_loaded","remove_menus_by_roles_textdomain",363,[],[],[],[],{"dangerousFunctions":149,"sqlUsage":166,"outputEscaping":172,"fileOperations":28,"externalRequests":28,"nonceChecks":70,"capabilityChecks":28,"bundledLibraries":174},[150,154,157,160,162,164],{"fn":151,"file":134,"line":152,"context":153},"unserialize",112,"$roles_selected = unserialize($profile->roles);",{"fn":151,"file":134,"line":155,"context":156},114,"$menus_hidden = unserialize($profile->menus_hidden);",{"fn":151,"file":134,"line":158,"context":159},116,"$submenus_hidden = unserialize($profile->submenus_hidden);",{"fn":151,"file":134,"line":161,"context":153},312,{"fn":151,"file":134,"line":163,"context":156},313,{"fn":151,"file":134,"line":165,"context":159},314,{"prepared":167,"raw":70,"locations":168},4,[169],{"file":134,"line":170,"context":171},83,"$wpdb->query() with variable interpolation",{"escaped":50,"rawEcho":28,"locations":173},[],[],[176,194],{"entryPoint":177,"graph":178,"unsanitizedCount":28,"severity":193},"remove_menu_admin_free (remove-admin-menus-by-role.php:204)",{"nodes":179,"edges":190},[180,185],{"id":181,"type":182,"label":183,"file":134,"line":184},"n0","source","$_POST['roles']",295,{"id":186,"type":187,"label":188,"file":134,"line":184,"wp_function":189},"n1","sink","query() [SQLi]","query",[191],{"from":181,"to":186,"sanitized":192},true,"low",{"entryPoint":195,"graph":196,"unsanitizedCount":28,"severity":193},"\u003Cremove-admin-menus-by-role> (remove-admin-menus-by-role.php:0)",{"nodes":197,"edges":200},[198,199],{"id":181,"type":182,"label":183,"file":134,"line":184},{"id":186,"type":187,"label":188,"file":134,"line":184,"wp_function":189},[201],{"from":181,"to":186,"sanitized":192},{"summary":203,"deductions":204},"The 'remove-admin-menus-by-role' plugin v1.37 exhibits a generally good security posture with several positive indicators. The absence of known CVEs, unpatched vulnerabilities, and recorded common vulnerability types is a strong sign of a well-maintained and secure plugin. Furthermore, the static analysis reveals a clean slate regarding critical and high severity taint flows, unsanitized paths, and external HTTP requests. All output appears to be properly escaped, and there are no direct file operations that could pose a risk. The use of prepared statements for the majority of SQL queries also demonstrates a good practice for preventing SQL injection vulnerabilities.\n\nHowever, there are specific concerns that warrant attention. The presence of the `unserialize` function six times within the code is a significant risk. If the data being unserialized originates from an untrusted source, it could lead to Remote Code Execution (RCE) vulnerabilities, as `unserialize` is known to be dangerous. Additionally, the plugin lacks capability checks for its entry points, relying solely on a single nonce check. This means that unauthorized users might be able to interact with the plugin's functionality if they can obtain a valid nonce, which is not a robust security measure on its own.\n\nIn conclusion, while the plugin benefits from a clean vulnerability history and good practices in areas like output escaping and SQL query preparation, the reliance on `unserialize` and the limited authorization checks represent substantial security weaknesses. The developers should prioritize addressing the `unserialize` usage and implement proper capability checks for all plugin interactions to mitigate these risks effectively.",[205,208],{"reason":206,"points":207},"Dangerous function 'unserialize' used",15,{"reason":209,"points":84},"No capability checks on entry points","2026-03-16T17:55:22.131Z",{"wat":212,"direct":220},{"assetPaths":213,"generatorPatterns":216,"scriptPaths":217,"versionParams":218},[214,215],"\u002Fwp-content\u002Fplugins\u002Fremove-admin-menus-by-role\u002Fimages\u002Ficon.png","\u002Fwp-content\u002Fplugins\u002Fremove-admin-menus-by-role\u002Fcss\u002Fadmin.css",[],[],[219],"remove-admin-menus-by-role\u002Fcss\u002Fadmin.css?ver=",{"cssClasses":221,"htmlComments":222,"htmlAttributes":223,"restEndpoints":224,"jsGlobals":225,"shortcodeOutput":226},[],[],[],[],[],[]]