[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f_tMu5pLnVHTonqDpYJNsectYdjGBJ3GEvCtLajixrLg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":39,"analysis":136,"fingerprints":202},"remove-dashboard-access-for-non-admins","Remove Dashboard Access","1.2.1","TrustedLogin","https:\u002F\u002Fprofiles.wordpress.org\u002Ftrustedlogin\u002F","\u003Cp>The easiest and safest way to restrict access to your WordPress site’s Dashboard and administrative menus. Remove Dashboard Access is a lightweight plugin that automatically redirects users who shouldn’t have access to the Dashboard to a custom URL of your choosing. Redirects can also be configured on a per-role\u002Fper-capability basis, allowing you to keep certain users out of the Dashboard, while retaining access for others.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Limit Dashboard access to user roles:\n\u003Cul>\n\u003Cli>Admins only\u003C\u002Fli>\n\u003Cli>Admins + editors\u003C\u002Fli>\n\u003Cli>Admins, editors, and authors\u003C\u002Fli>\n\u003Cli>or restrict by specific user capability\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Choose your own redirect URL\u003C\u002Fli>\n\u003Cli>Optionally allow users to edit their profiles\u003C\u002Fli>\n\u003Cli>Display a message on the login screen so users know why they’re being redirected\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Blocking access to the Dashboard is a great way to prevent clients from breaking their sites, prevent users from seeing things they shouldn’t, and to keep your site’s backend more secure.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Allow only users with roles or capabilities:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>You can restrict Dashboard access to Admins only, Editors or above, Authors or above, or by selecting a specific user capability.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Grant access to user profiles:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Optionally allow all users the ability to edit their profiles in the Dashboard. Users lacking the chosen capability won’t be able to access any other sections of the Dashboard.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Show a custom login message:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Supply a message to display on the login screen. Leaving this blank disables the message.\u003C\u002Fli>\n\u003C\u002Ful>\n","Disable Dashboard access for users of a specific role or capability. Disallowed users are redirected to a chosen URL. Get set up in seconds.",30000,467245,92,78,"2024-11-29T20:13:00.000Z","6.7.5","3.1.0","5.3",[20,21,22,23,24],"access","administration","dashboard","login","restrict","https:\u002F\u002Fwww.trustedlogin.com\u002Fremove-dashboard-access\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fremove-dashboard-access-for-non-admins.1.2.1.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"trustedlogin",3,31010,90,30,87,"2026-04-04T07:08:15.670Z",[40,61,82,101,119],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":50,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":55,"tags":56,"homepage":58,"download_link":59,"security_score":50,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":60},"admin-only-dashboard","Disable Dashboard Access","1.2.5","Ga Satrya","https:\u002F\u002Fprofiles.wordpress.org\u002Fgasatrya\u002F","\u003Cp>Remove dashboard access to non-admin users and easily control who can access your WordPress dashboard with simple configuration. By default, only administrators are allowed, but you can now whitelist specific trusted users by username—perfect for developers, VAs, or contractors.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features include\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Whitelist specific users by username\u003C\u002Fli>\n\u003Cli>Session expiration controls (1-24 hours)\u003C\u002Fli>\n\u003Cli>Option to apply session timeout to administrators\u003C\u002Fli>\n\u003Cli>Custom redirect URL for blocked users\u003C\u002Fli>\n\u003Cli>Secure, validated, and sanitized settings\u003C\u002Fli>\n\u003Cli>Hide admin toolbar for non-authorized users\u003C\u002Fli>\n\u003Cli>Developer-friendly filters for advanced customization\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Why Choose Disable Dashboard Access?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Maximum Protection\u003C\u002Fstrong>: Instantly block unauthorized users from accessing sensitive dashboard areas.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Effortless Whitelisting\u003C\u002Fstrong>: Grant dashboard access to trusted users (developers, VAs, contractors) without changing their roles. Just add their usernames!\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Session Security\u003C\u002Fstrong>: Automatically log out users after a set period for bulletproof session management. Choose from multiple timeout intervals and apply to all users or just non-admins.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Redirects\u003C\u002Fstrong>: Guide blocked users to a branded page or helpful resource instead of the generic homepage.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Zero Configuration Needed\u003C\u002Fstrong>: Works out of the box—only administrators can access the dashboard until you customize settings.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Perfect For:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Website owners who want peace of mind\u003C\u002Fli>\n\u003Cli>Agencies and developers managing multiple sites\u003C\u002Fli>\n\u003Cli>Teams needing granular dashboard access\u003C\u002Fli>\n\u003Cli>Anyone serious about WordPress security\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Protect your site, empower your workflow, and deliver a professional experience—all with one lightweight plugin.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.ctaflow.com\u002Fplugins\u002Fadmin-only-dashboard\u002F\" rel=\"nofollow ugc\">Read more detail\u003C\u002Fa>\u003C\u002Fp>\n","Disable Dashboard Access: Only admins can access the dashboard by default. Whitelist trusted users easily, quick setup, and secure.",10,1872,100,1,"","6.9.4","6.5","7.0",[20,22,23,57,24],"membership","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadmin-only\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-only-dashboard.1.2.5.zip","2026-03-15T10:48:56.248Z",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":50,"num_ratings":71,"last_updated":72,"tested_up_to":73,"requires_at_least":74,"requires_php":55,"tags":75,"homepage":78,"download_link":79,"security_score":80,"vuln_count":51,"unpatched_count":27,"last_vuln_date":81,"fetched_at":29},"slash-admin","Slash Admin","3.8.3","Giorgos Sarigiannidis","https:\u002F\u002Fprofiles.wordpress.org\u002Fgsarig\u002F","\u003Cp>Slash Admin gathers some common functions that you probably need in most of your websites. The plugin lets you change various different options in a WordPress website, keeps them active even if you switch your theme and helps you create a friendlier Admin Panel for you and your editors.\u003C\u002Fp>\n\u003Cp>If you are lost with the many options, here’s a presentation of the plugin’s \u003Ca href=\"https:\u002F\u002Fwww.gsarigiannidis.gr\u002Fslash-admin-best-features\u002F\" rel=\"nofollow ugc\">best features\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>\u003Cem>Frontend\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Option to point to a static splash page.\u003C\u002Fli>\n\u003Cli>Option to convert email addresses characters to HTML entities to block spam bots.\u003C\u002Fli>\n\u003Cli>Show EU Cookie Law consent message (check screenshots about available options). Since v.3.0 it also supports WPML for different message per language.\u003C\u002Fli>\n\u003Cli>Add a “Loading” animation which hides itself when the page is fully loaded\u003C\u002Fli>\n\u003Cli>Enqueue your own Google Web Fonts, with option to load it locally for better performance and privacy\u003C\u002Fli>\n\u003Cli>Get rid of the word “Category:” in front of the Archive title (usually needed if your theme uses the_archive_title()).\u003C\u002Fli>\n\u003Cli>Add excerpt support to pages.\u003C\u002Fli>\n\u003Cli>Enable the use of shortcodes in widgets.\u003C\u002Fli>\n\u003Cli>Display a warning for users of old versions of Internet Explorer (IE8 or older). Yes, sadly there are still people who use Internet Explorer 8…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Administration\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Insert Google Analytics tracking code (so as you don’t have to remember re-entering it in case you switch themes in the future)\u003C\u002Fli>\n\u003Cli>Hide Site Health from everyone except from a selected Admin (\u003Ca href=\"https:\u002F\u002Fwww.gsarigiannidis.gr\u002Fhow-to-hide-wordpress-site-health-from-everyone-but-you\u002F\" rel=\"nofollow ugc\">read more\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Hide ACF options from everyone except from the selected Admin\u003C\u002Fli>\n\u003Cli>Since WordPress 5.2 there is a built-in feature that detects when a plugin or theme causes a fatal error on your site, and notifies you with this automated email. By default, it will be sent to the admin email. Slash Admin allows you to override it (you can also add multiple recipients if you like). \u003Ca href=\"https:\u002F\u002Fwww.gsarigiannidis.gr\u002Fhow-to-hide-wordpress-site-health-from-everyone-but-you\u002F\" rel=\"nofollow ugc\">Read more\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Change the address that receives the Plugin and Theme auto-update email notifications\u003C\u002Fli>\n\u003Cli>Make WordPress respect the order of the tags you insert in a post (\u003Ca href=\"https:\u002F\u002Fwww.gsarigiannidis.gr\u002Fwordpress-post-tags-order\" rel=\"nofollow ugc\">read more\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Limit the number of revisions that WordPress keeps for each post (keeps the database cleaner)\u003C\u002Fli>\n\u003Cli>Prevent Post Updates and Deletion After a Set Period. Useful if you have many editors or in cases where an editor’s account is compromised, adding spam code to the posts (by disallowing editing of older posts you limit the damage)\u003C\u002Fli>\n\u003Cli>Enable Jetpack development mode\u003C\u002Fli>\n\u003Cli>Move Jetpack share and like buttons\u003C\u002Fli>\n\u003Cli>Maintenance mode. If checked, non-Admins will not be able to acess the WordPress backend and they will see a customizable message instead. Useful if you want to perform some maintenance work to your website and you don’t want your Editors to add or modify the content before you finish. Admins are not affected and they can always login as usual.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Login screen\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Add your custom logo at the WordPress log-in screen\u003C\u002Fli>\n\u003Cli>Make the login screen logo (custom or default) linking to your website’s homepage instead of wordpress.org\u003C\u002Fli>\n\u003Cli>After login, redirect users at the homepage instead of their profile page\u003C\u002Fli>\n\u003Cli>Disable the Admin Bar for all users except Administrators. Applies only to the front-end. It’s useful if you want your site to be visible only to logged-in users (e.g. during developement phase), but you don’t want them to access the dashboard or get confused with the admin bar\u003C\u002Fli>\n\u003Cli>Add your custom CSS to the login screen to completely change its appearance\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Non-admins\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Hide unnecessary options from the Admin menu for non admins (so editors won’t get overwhelmed with options that have no meaning for the current website).\u003C\u002Fli>\n\u003Cli>Disable tags and categories\u003C\u002Fli>\n\u003Cli>Hide specific pages from non admins. For example, you might not want your editors to have access to the static frontpage, the blog page or pages that you use as page templates.\u003C\u002Fli>\n\u003Cli>Allow editors to manage Menus and Widgets and access some other appearance settings previously acessible only to admins (for example, you might want to give your client the option to modify the website’s menu, but you would rather avoid making him\u002Fher an administrator).\u003C\u002Fli>\n\u003Cli>Hide notices about updating WordPress and other plugins for all users except from Admins (sometimes clients get confused with those notices and think that there is something wrong with the website).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>White label backend\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Change the “Howdy” message at the top right corner of the admin (both backend and logged-in frontend)\u003C\u002Fli>\n\u003Cli>Change the default footer text at the admin\u003C\u002Fli>\n\u003Cli>Replace the WordPress logo at the top left corner of the admin bar with your own (both backend and logged-in frontend)\u003C\u002Fli>\n\u003Cli>Replace the default Welcome message at the Dashboard with your own\u003C\u002Fli>\n\u003Cli>Add a Dashboard Widget to provide general or commercial information to your clients (for example: your contact info or links to support documentation)\u003C\u002Fli>\n\u003Cli>Add your own custom CSS for the Admin area\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Performance\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable Emojis\u003C\u002Fli>\n\u003Cli>Disable wp-embed script from the frontend or load it conditionally\u003C\u002Fli>\n\u003Cli>DNS prefetching notifies the client that there are assets we’ll need later from a specific URL (outside our website’s domain) so the browser can resolve the DNS as quickly as possible.\u003C\u002Fli>\n\u003Cli>Link prefetching and prerendering. Link prefetching is a browser mechanism, which utilizes browser idle time to download or prefetch documents that the user might visit in the near future. A web page provides a set of prefetching hints to the browser, and after the browser is finished loading the page, it begins silently prefetching specified documents and stores them in its cache. When the user visits one of the prefetched documents, it can be served up quickly out of the browser’s cache. Prerendering downloads and renders the entire page and hides it from the user until it is requested, therefore, it should be used with caution.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Shortcodes\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>If you manually include email addresses in your posts, you should consider disguising them in order to “fool” e-mail harvesters (check FAQ for details).\u003C\u002Fli>\n\u003Cli>Show a telephone number in a way that it is clickable. When clicked, if you are on a mobile device it opens the phone’s dialer and if you are on a desktop computer it prompts to make a call via a related program (e.g. Skype).\u003C\u002Fli>\n\u003Cli>If you develop your site on localhost or on a temporary URL, you might want to avoid absolute URLs inside posts and pages. That way you don’t need to update your links after migrating to your actual domain (check FAQ for details). \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Development functions\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Using \u003Ccode>slash_dump()\u003C\u002Fcode> instead of \u003Ccode>var_dump()\u003C\u002Fcode> will wrap the output in \u003Ccode>\u003Cpre>\u003C\u002Fpre>\u003C\u002Fcode> tags, for better readability. \u003Ccode>slash_admin_dump()\u003C\u002Fcode> does the same thing, only this time the output is only visible to admins (can be handy if you want to debug a live site).\u003C\u002Fli>\n\u003Cli>Show warnings if the site is on air and debug mode is still on and if the site is on localhost and debug mode is off. Also, show warning if the website is on air and you have chosen to hide it from Search Engines.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Notifications\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Slash Admin displays the following notifications:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>A list with the users who logged in during the past 15 minutes (except from you, obviously)\u003C\u002Fli>\n\u003Cli>A warning when debug mode is enabled (you should enable it when developing, but disable it when the site goes live)\u003C\u002Fli>\n\u003Cli>A warning when your site is hidden from search engines\u003C\u002Fli>\n\u003C\u002Ful>\n","Dozens of settings aiming at creating a friendlier administration environment for both Administrators and Editors.",500,27689,9,"2024-03-01T12:59:00.000Z","6.4.8","5.0",[76,21,22,23,77],"admin","wordpress","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fslash-admin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fslash-admin.3.8.3.zip",84,"2024-04-23 00:00:00",{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":50,"num_ratings":51,"last_updated":92,"tested_up_to":93,"requires_at_least":74,"requires_php":55,"tags":94,"homepage":99,"download_link":100,"security_score":50,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"private-website","Private Website – Login Required","0.2.9","roehler","https:\u002F\u002Fprofiles.wordpress.org\u002Froehler\u002F","\u003Cp>\u003Cstrong>Private Website – Login Required\u003C\u002Fstrong> is a simple and straightforward WordPress plugin designed to restrict access to your website. By activating this plugin, users must be logged in to view any content on your site. This is ideal for websites that host sensitive or exclusive content and want to ensure that only authenticated users can access it.\u003C\u002Fp>\n\u003Cp>There are no complicated settings to configure. Simply activate the plugin to enforce the login requirement and deactivate it to remove the restriction.\u003C\u002Fp>\n\u003Cp>This plugin was developed by \u003Ca href=\"https:\u002F\u002Froehler.nrw\" rel=\"nofollow ugc\">Robin Oehler\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>Private Website – Login Required uses \u003Ca href=\"https:\u002F\u002Fappsero.com\" rel=\"nofollow ugc\">Appsero\u003C\u002Fa> SDK to collect some telemetry data upon user’s confirmation. This helps us to troubleshoot problems faster & make product improvements.\u003C\u002Fp>\n\u003Cp>Appsero SDK does not gather any data by default. The SDK only starts gathering basic telemetry data when a user allows it via the admin notice. We collect the data to ensure a great user experience for all our users.\u003C\u002Fp>\n\u003Cp>Integrating Appsero SDK DOES NOT IMMEDIATELY start gathering data, without confirmation from users in any case.\u003C\u002Fp>\n\u003Cp>Learn more about how \u003Ca href=\"https:\u002F\u002Fappsero.com\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">Appsero collects and uses this data\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Bugs & Feedback\u003C\u002Fh3>\n\u003Cp>Your feedback is important to me. If you find mistakes, have wishes, ideas, or suggestions, please send an email to \u003Ca href=\"mailto:mail@roehler.nrw\" rel=\"nofollow ugc\">mail@roehler.nrw\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Legal notice (German): \u003Ca href=\"https:\u002F\u002Froehler.nrw\u002Fimpressum\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Froehler.nrw\u002Fimpressum\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>You are free to use it on any website across countries to protect the privacy of your users.\u003C\u002Fp>\n\u003Cp>Note: Activating this plugin cannot guarantee that your website is completely compliant with GDPR. When using Google Analytics, Facebook pixels, or other similar tools, additional measures may need to be taken.\u003C\u002Fp>\n","This plugin requires users to be logged in to view the website. Activate the plugin to enforce login, and deactivate it to remove the restriction.",200,2528,"2025-09-08T20:58:00.000Z","6.8.5",[23,95,96,97,98],"members","private","restrict-access","user-authentication","https:\u002F\u002Fwww.roehler.nrw","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprivate-website.0.2.9.zip",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":109,"downloaded":110,"rating":27,"num_ratings":27,"last_updated":111,"tested_up_to":112,"requires_at_least":113,"requires_php":52,"tags":114,"homepage":116,"download_link":117,"security_score":118,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"simple-login-redirect","Simple Login Redirect","1.12","kegentile","https:\u002F\u002Fprofiles.wordpress.org\u002Fkegentile\u002F","\u003Cp>This plugin will add a field to users’ profiles specifically for redirecting the user upon a successful login.  If no redirect is specified the standard login rules will apply.  It doesn’t currently support bulk redirects as in the instance of redirecting users with a specific role.  Simple Login Redirect does support local redirects and redirects that point to another site.\u003C\u002Fp>\n","Adds a field to the user's profile for redirection upon login.",50,7757,"2010-11-27T15:41:00.000Z","3.1.4","2.7",[76,21,22,23,115],"redirect","http:\u002F\u002Fwww.wpinsideout.com\u002Fplugins\u002Fa-simple-redirect","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-login-redirect.zip",85,{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":48,"downloaded":127,"rating":27,"num_ratings":27,"last_updated":128,"tested_up_to":129,"requires_at_least":130,"requires_php":131,"tags":132,"homepage":134,"download_link":135,"security_score":118,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"elvez-control-access","Elvez Control Access","1.1.4","株式会社エルブズ","https:\u002F\u002Fprofiles.wordpress.org\u002Felvezcojp\u002F","\u003Cp>Control the access of non-logged-in users for each posts and pages.\u003C\u002Fp>\n\u003Cp>投稿や固定ページごとにログインしていないユーザーのアクセスを制御できます。\u003C\u002Fp>\n\u003Cp>KEY FEATURES\u003Cbr \u002F>\n* Control an access per posts and pages\u003C\u002Fp>\n\u003Cp>PREMIUM FEATURES:\u003Cbr \u002F>\n* Setting redirect page\u003Cbr \u002F>\n* Control access to Woocommerce pages\u003C\u002Fp>\n\u003Cp>他にも\u003Ca href=\"https:\u002F\u002Fshop.elvez.co.jp\u002Fproduct-category\u002Fwordpress%e3%83%97%e3%83%a9%e3%82%b0%e3%82%a4%e3%83%b3\u002F\" rel=\"nofollow ugc\">使いやすいWordpressプラグイン\u003C\u002Fa>をご用意しています。\u003Cbr \u002F>\nWe provide other \u003Ca href=\"https:\u002F\u002Fshop.elvez.co.jp\u002Fproduct-category\u002Fwordpress%e3%83%97%e3%83%a9%e3%82%b0%e3%82%a4%e3%83%b3\u002F\" rel=\"nofollow ugc\">useful WordPress plugins\u003C\u002Fa>.\u003C\u002Fp>\n","Control the access of non-logged-in users for each posts and pages.",1695,"2021-12-06T00:38:00.000Z","5.8.13","5.2","7.2",[20,133,23,115,24],"control","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Felvez-control-access","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Felvez-control-access.zip",{"attackSurface":137,"codeSignals":186,"taintFlows":197,"riskAssessment":198,"analyzedAt":201},{"hooks":138,"ajaxHandlers":182,"restRoutes":183,"shortcodes":184,"cronEvents":185,"entryPointCount":27,"unprotectedCount":27},[139,145,149,153,157,162,166,170,173,177],{"type":140,"name":141,"callback":142,"file":143,"line":144},"action","init","load_textdomain","inc\\class.rda-options.php",69,{"type":140,"name":146,"callback":147,"file":143,"line":148},"admin_menu","options_page",72,{"type":140,"name":150,"callback":151,"file":143,"line":152},"admin_init","settings",73,{"type":140,"name":154,"callback":155,"file":143,"line":156},"admin_head-settings_page_dashboard-access","access_switch_js",74,{"type":158,"name":159,"callback":160,"priority":48,"file":143,"line":161},"filter","plugin_action_links","settings_link",77,{"type":158,"name":163,"callback":164,"file":143,"line":165},"login_message","output_login_message",80,{"type":140,"name":141,"callback":167,"file":168,"line":169},"is_user_allowed","inc\\class.rda-remove-access.php",52,{"type":140,"name":150,"callback":171,"file":168,"line":172},"dashboard_redirect",81,{"type":140,"name":174,"callback":175,"file":168,"line":176},"admin_head","hide_menus",82,{"type":140,"name":178,"callback":179,"priority":180,"file":168,"line":181},"admin_bar_menu","hide_toolbar_items",999,83,[],[],[],[],{"dangerousFunctions":187,"sqlUsage":188,"outputEscaping":190,"fileOperations":27,"externalRequests":27,"nonceChecks":27,"capabilityChecks":51,"bundledLibraries":196},[],{"prepared":27,"raw":27,"locations":189},[],{"escaped":191,"rawEcho":51,"locations":192},29,[193],{"file":143,"line":194,"context":195},471,"raw output",[],[],{"summary":199,"deductions":200},"The plugin \"remove-dashboard-access-for-non-admins\" v1.2.1 demonstrates a strong security posture based on the provided static analysis. It has a minimal attack surface with no detected AJAX handlers, REST API routes, shortcodes, or cron events. The code also adheres to good security practices, with all SQL queries using prepared statements and an exceptionally high percentage of outputs being properly escaped. The presence of a capability check further indicates an attempt to enforce access control.\n\nNo critical or high-severity vulnerabilities were found in the static analysis, and importantly, the plugin has no known CVEs, indicating a clean historical record. The absence of dangerous functions, file operations, and external HTTP requests, coupled with zero taint flows, suggests a lack of common attack vectors. While the lack of nonce checks on AJAX handlers is not a concern due to the absence of any AJAX handlers, the overall lack of any detected vulnerabilities or weaknesses is a significant strength.\n\nIn conclusion, this plugin appears to be very secure. Its minimal attack surface, adherence to secure coding practices like prepared statements and output escaping, and a clean vulnerability history all contribute to a low-risk profile. The single capability check suggests its intended function of restricting dashboard access is likely implemented safely. There are no apparent weaknesses that warrant significant concern based on this analysis.",[],"2026-03-16T17:23:30.805Z",{"wat":203,"direct":212},{"assetPaths":204,"generatorPatterns":207,"scriptPaths":208,"versionParams":209},[205,206],"\u002Fwp-content\u002Fplugins\u002Fremove-dashboard-access-for-non-admins\u002Finc\u002Fcss\u002Frda-admin.css","\u002Fwp-content\u002Fplugins\u002Fremove-dashboard-access-for-non-admins\u002Finc\u002Fjs\u002Frda-admin.js",[],[206],[210,211],"remove-dashboard-access-for-non-admins\u002Finc\u002Fcss\u002Frda-admin.css?ver=","remove-dashboard-access-for-non-admins\u002Finc\u002Fjs\u002Frda-admin.js?ver=",{"cssClasses":213,"htmlComments":214,"htmlAttributes":215,"restEndpoints":217,"jsGlobals":218,"shortcodeOutput":221},[],[],[216],"id=\"rda-options-form\"",[],[219,220],"window.rda_admin","var rda_admin",[]]