[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fSIZQtLNZB-fNZ-bseu45t6MqwdSd7WSFUZyZKU9QhHs":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":17,"tags":18,"homepage":17,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":26,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":45,"crawl_stats":35,"alternatives":51,"analysis":147,"fingerprints":196},"restrict-anonymous-access","Restrict Anonymous Access","1.2.1","Christian Leuenberg","https:\u002F\u002Fprofiles.wordpress.org\u002Fcleuenberg\u002F","\u003Cp>This plugin helps you to hide certain parts of your content like a paragraph or an image etc. to logged-out users or users of any other role with just a simple shortcode.\u003C\u002Fp>\n\u003Cp>Customize the shortcode in order to display a special note to your users, apply custom CSS classes for your own design or hide the restricted parts completely.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>text within shortcode \u003Ccode>[member][\u002Fmember]\u003C\u002Fcode> is not visible to anonymous users\u003C\u002Fli>\n\u003Cli>hide content based on user roles (subscriber, contributor, author, editor, admin)\u003C\u002Fli>\n\u003Cli>restricted text can be replaced with info text box\u003C\u002Fli>\n\u003Cli>info text can be customized\u003C\u002Fli>\n\u003Cli>comes with a handy TinyMCE button for quick access\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fn3M4C4aktuU?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n","Adds a shortcode to restrict content from anonymous users.",90,3291,100,3,"2025-01-21T09:58:00.000Z","6.7.5","",[19,20,21,22],"access-control","capabilities","restrict-content","user-access","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frestrict-anonymous-access.1.2.1.zip",91,1,0,"2025-01-24 00:00:00","2026-03-15T15:16:48.613Z",[30],{"id":31,"url_slug":32,"title":33,"description":34,"plugin_slug":4,"theme_slug":35,"affected_versions":36,"patched_in_version":6,"severity":37,"cvss_score":38,"cvss_vector":39,"vuln_type":40,"published_date":27,"updated_date":41,"references":42,"days_to_patch":44},"CVE-2025-24610","restrict-anonymous-access-authenticated-contributor-stored-cross-site-scripting","Restrict Anonymous Access \u003C= 1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting","The Restrict Anonymous Access plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=1.2","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-01-28 18:52:25",[43],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F08ecde76-3249-4be2-81b8-cccc60f73063?source=api-prod",5,{"slug":46,"display_name":7,"profile_url":8,"plugin_count":47,"total_installs":48,"avg_security_score":49,"avg_patch_time_days":44,"trust_score":24,"computed_at":50},"cleuenberg",4,1080,87,"2026-04-04T11:07:06.445Z",[52,71,87,111,130],{"slug":53,"name":54,"version":55,"author":56,"author_profile":57,"description":58,"short_description":59,"active_installs":26,"downloaded":60,"rating":13,"num_ratings":25,"last_updated":61,"tested_up_to":62,"requires_at_least":63,"requires_php":64,"tags":65,"homepage":69,"download_link":70,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":35,"fetched_at":28},"access-guard","Access Guard","1.0.1","Nitin Prakash","https:\u002F\u002Fprofiles.wordpress.org\u002Fnitin247\u002F","\u003Cp>Access Guard is a comprehensive WordPress plugin that enhances access protection, controls user permissions, and provides IP banning functionality. With Access Guard, you can safeguard your website from malicious users, protect sensitive content, and strengthen overall security measures.\u003C\u002Fp>\n\u003Ch3>Free Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>IP Blocking: Easily ban specific IP addresses or IP ranges to prevent unwanted traffic and protect your website from malicious users.\u003C\u002Fli>\n\u003Cli>Customizable Ban Messages: Personalize the messages displayed to blocked users, providing instructions or redirecting them to alternative content.\u003C\u002Fli>\n\u003Cli>User Role-Based Access Control: Define access permissions for different user roles, restricting content visibility or interaction based on user roles.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Coming Soon\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Password Protection: Add password protection to specific pages or posts, granting access only to those who enter the correct password.\u003C\u002Fli>\n\u003Cli>Time-Based Access Control: Set time-based restrictions to make content available for a limited period, perfect for time-sensitive promotions or temporary exclusivity.\u003C\u002Fli>\n\u003Cli>IP Whitelisting: Whitelist specific IP addresses or IP ranges, allowing access only to designated users or regions.\u003C\u002Fli>\n\u003Cli>Activity Logging: Keep track of user activities, including IP ban events and access attempts, to monitor website security.\u003C\u002Fli>\n\u003Cli>Basic Brute Force Protection: Implement basic protection against brute force attacks by limiting login attempts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Paid Features ( Coming Soon )\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Advanced Brute Force Protection: Enhance login security with advanced measures like CAPTCHA verification, two-factor authentication, and login attempt limiting.\u003C\u002Fli>\n\u003Cli>Advanced IP Blocking: Unlock advanced IP blocking options, such as blocking entire countries or regions based on IP geolocation data.\u003C\u002Fli>\n\u003Cli>Advanced Access Control Rules: Create complex access control rules based on user roles, specific conditions, or custom criteria.\u003C\u002Fli>\n\u003Cli>Advanced Activity Logging and Notifications: Receive detailed email notifications for critical events, and access comprehensive activity logs with advanced filtering and search options.\u003C\u002Fli>\n\u003Cli>Multisite Support: Extend Access Guard’s capabilities to WordPress multisite installations, managing access and IP blocking across multiple sites.\u003C\u002Fli>\n\u003Cli>Developer API: Utilize a developer-friendly API to extend Access Guard’s functionality or integrate it with other plugins or custom solutions.\u003C\u002Fli>\n\u003Cli>Priority Support: Access premium support channels, including priority email support and dedicated assistance from the plugin developers.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the GPLv2 or later. For more details, see the License URI mentioned above.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For any support inquiries or feature requests, please email \u003Ca href=\"mailto:neebplugins@gmail.com\" rel=\"nofollow ugc\">neebplugins@gmail.com\u003C\u002Fa> or contact \u003Ca href=\"https:\u002F\u002Fneebplugins.com\u002Fsupport-desk\u002F\" rel=\"nofollow ugc\">Support Desk\u003C\u002Fa>\u003C\u002Fp>\n","Access Guard enhances security by managing user permissions and banning IPs to protect sensitive content.",1393,"2025-04-21T08:21:00.000Z","6.8.5","6.2","7.4",[66,19,67,21,68],"access-protection","ip-blocking","user-access-manager","https:\u002F\u002Fneebplugins.com\u002Faccess-guard","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Faccess-guard.1.0.1.zip",{"slug":72,"name":73,"version":74,"author":75,"author_profile":76,"description":77,"short_description":78,"active_installs":26,"downloaded":79,"rating":26,"num_ratings":26,"last_updated":80,"tested_up_to":81,"requires_at_least":17,"requires_php":17,"tags":82,"homepage":17,"download_link":85,"security_score":86,"vuln_count":26,"unpatched_count":26,"last_vuln_date":35,"fetched_at":28},"content-management-control","Content management control","1.0.0","slayerh","https:\u002F\u002Fprofiles.wordpress.org\u002Fslayerh\u002F","\u003Cp>Allows administrator to restrict post editing by editors and other non-administrative users.\u003C\u002Fp>\n","Allows administrator to restrict post editing.",1022,"2018-10-25T14:56:00.000Z","4.9.29",[19,20,83,21,84],"members","restrict-editing","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontent-management-control.zip",85,{"slug":88,"name":89,"version":90,"author":91,"author_profile":92,"description":93,"short_description":94,"active_installs":95,"downloaded":96,"rating":97,"num_ratings":98,"last_updated":99,"tested_up_to":62,"requires_at_least":100,"requires_php":101,"tags":102,"homepage":106,"download_link":107,"security_score":108,"vuln_count":109,"unpatched_count":26,"last_vuln_date":110,"fetched_at":28},"restrict-user-access","Restrict User Access – Ultimate Membership & Content Protection","2.8","Joachim Jensen","https:\u002F\u002Fprofiles.wordpress.org\u002Fintoxstudio\u002F","\u003Cp>\u003Cstrong>Restrict User Access is a fast and simple Membership Plugin for WordPress. Restrict your content in minutes, NOT hours.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Quickly set up a paid membership site where your users can get different levels such as Platinum, Gold, or Free. Then, grant those levels when a user purchases a product in WooCommerce.\u003C\u002Fp>\n\u003Ch3>👥 Unlimited Access Levels\u003C\u002Fh3>\n\u003Cp>Users can have multiple levels, and you control how long memberships should last. When unauthorized users try to access restricted content, you can redirect them to another URL or display a teaser.\u003C\u002Fp>\n\u003Ch3>⚡ Level Membership Automations\u003C\u002Fh3>\n\u003Cp>Automatically add levels to your users based on something they do (Triggers) or something they are (Traits):\u003C\u002Fp>\n\u003Cul>\n\u003Cli>User Registration\u003C\u002Fli>\n\u003Cli>User Roles\u003C\u002Fli>\n\u003Cli>Logged-in or Guests\u003C\u002Fli>\n\u003Cli>WooCommerce Purchases\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads Purchases\u003C\u002Fli>\n\u003Cli>BuddyPress Member Types\u003C\u002Fli>\n\u003Cli>GiveWP Donations\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🔒 Contextual Content Protection\u003C\u002Fh3>\n\u003Cp>Prevent unauthorized users from visiting your posts, pages, or categories. You can even combine the conditions: protect all posts tagged “Premium” written by a select author.\u003C\u002Fp>\n\u003Cp>The following Access Conditions are available out of the box:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Posts, Pages & Custom Post Types\u003C\u002Fli>\n\u003Cli>Content with Tags, Categories, or Custom Taxonomies\u003C\u002Fli>\n\u003Cli>Content written by select Authors\u003C\u002Fli>\n\u003Cli>Page Templates\u003C\u002Fli>\n\u003Cli>Blog Page & Post Type Archives\u003C\u002Fli>\n\u003Cli>Author Archives\u003C\u002Fli>\n\u003Cli>Taxonomy Archives\u003C\u002Fli>\n\u003Cli>Front Page, Search Results, 404 Not Found Page\u003C\u002Fli>\n\u003Cli>bbPress Profiles, Forums & Topics\u003C\u002Fli>\n\u003Cli>BuddyPress Profile Sections\u003C\u002Fli>\n\u003Cli>Languages (Polylang, qTranslate X, TranslatePress, Transposh, Weglot, WPML)\u003C\u002Fli>\n\u003Cli>Pods Pages\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Note that Access Conditions do not apply to content displayed in lists.\u003C\u002Fp>\n\u003Ch3>✅ Grant & Deny Capabilities\u003C\u002Fh3>\n\u003Cp>The easy-to-use WordPress User Manager gives you full control over the capabilities the members should or shouldn’t have. Access Level Capabilities will override the permissions set by roles or other plugins.\u003C\u002Fp>\n\u003Ch3>👁️ Hide Admin Bar & Nav Menu Visibility\u003C\u002Fh3>\n\u003Cp>Disable the admin bar for select levels and control what menu items members can see. You can even hide any widget area created with \u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fwordpress-sidebars\u002F?utm_source=readme&utm_medium=referral&utm_content=section&utm_campaign=rua\" rel=\"nofollow ugc\">Content Aware Sidebars\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>🤖 Restrict Content from Other Plugins\u003C\u002Fh3>\n\u003Cp>Restrict User Access autodetects Custom Post Types and Taxonomies created by any plugin or theme. Built-in support for some of the most popular WordPress plugins means that you e.g. can restrict access to bbPress forums or multilingual content.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>bbPress\u003C\u002Fli>\n\u003Cli>BuddyPress\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads\u003C\u002Fli>\n\u003Cli>Pods\u003C\u002Fli>\n\u003Cli>Polylang\u003C\u002Fli>\n\u003Cli>TranslatePress\u003C\u002Fli>\n\u003Cli>WooCommerce\u003C\u002Fli>\n\u003Cli>Weglot\u003C\u002Fli>\n\u003Cli>WPML\u003C\u002Fli>\n\u003Cli>and more …\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🛡️ WordPress Security Enhancements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>WP REST API Content Protection\u003C\u002Fstrong>\u003Cbr \u002F>\nEnforces PoLA to minimize attack surfaces and stop threat actors from harvesting your data\u003C\u002Fli>\n\u003Cli>\u003Cstrong>How to display content in lists\u003C\u002Fstrong>\u003Cbr \u002F>\nDisplay excerpts only or hide content when post types are displayed in blog, archives, search results, lists, etc.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>📑 Restrict Content with Shortcodes\u003C\u002Fh3>\n\u003Cp>Fine-tune content visibility in your posts or pages by adding simple shortcodes:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[restrict level=\"platinum\"]\nThis content can only be seen by users with Platinum level or above.\n[\u002Frestrict]\n\n[restrict level=\"!platinum\"]\nThis content can only be seen by users without Platinum level or above.\n[\u002Frestrict]\n\n[restrict role=\"editor,contributor\" page=\"1\"]\nThis content can only be seen by editors and contributors.\nOther users will see content from page with ID 1.\n[\u002Frestrict]\n\n[login-form]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>👋 Developer-friendly API\u003C\u002Fh3>\n\u003Cp>Restrict User Access makes it super easy for developers to programmatically customize WordPress access control by adding a few lines of code to theme templates.\u003C\u002Fp>\n\u003Ch4>Example – Add level to current user\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>rua_get_user()->add_level($level_id);\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Example – Check if current user has an active level membership\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>if(rua_get_user()->has_level($level_id)) {\n    \u002F\u002Fshow restricted content\n} else {\n    \u002F\u002Fshow content if unauthorized\n}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fdocs\u002Frestrict-user-access\u002Fdeveloper-api\u002F?utm_source=readme&utm_medium=referral&utm_content=section&utm_campaign=rua\" rel=\"nofollow ugc\">View full RUA PHP API documentation here.\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>🎛️ Premium Add-ons for Restrict User Access\u003C\u002Fh3>\n\u003Cp>Complete your WordPress membership site with these powerful extensions\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fproducts\u002Fcategory\u002Frestrict-user-access\u002F?utm_source=readme&utm_medium=referral&utm_content=acf&utm_campaign=rua\" rel=\"nofollow ugc\">ACF Restriction\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nRestrict content that contain data from Advanced Custom Fields plugin\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fproducts\u002Fcategory\u002Frestrict-user-access\u002F?utm_source=readme&utm_medium=referral&utm_content=date&utm_campaign=rua\" rel=\"nofollow ugc\">Date Restriction\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nRestrict content based on the time it was published\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fproducts\u002Fcategory\u002Frestrict-user-access\u002F?utm_source=readme&utm_medium=referral&utm_content=metabox&utm_campaign=rua\" rel=\"nofollow ugc\">Meta Box Restriction\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nRestrict content that contain data from Meta Box plugin\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fproducts\u002Fcategory\u002Frestrict-user-access\u002F?utm_source=readme&utm_medium=referral&utm_content=timelock&utm_campaign=rua\" rel=\"nofollow ugc\">Timelock\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nDetermine when to enable or disable select Access Conditions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fproducts\u002Fcategory\u002Frestrict-user-access\u002F?utm_source=readme&utm_medium=referral&utm_content=url&utm_campaign=rua\" rel=\"nofollow ugc\">URL Restriction\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nRestrict content based on the WordPress URL, with wildcard support\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdev.institute\u002Fproducts\u002Fcategory\u002Frestrict-user-access\u002F?utm_source=readme&utm_medium=referral&utm_content=visibility&utm_campaign=rua\" rel=\"nofollow ugc\">Visibility Control\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nHide content from blog, search results, archives, custom lists, WP REST API, and more\u003C\u002Fli>\n\u003C\u002Ful>\n","Create Access Levels and restrict any post, page, category, etc. Supports bbPress, BuddyPress, WooCommerce, WPML, and more.",10000,617933,86,94,"2025-10-06T06:48:00.000Z","5.8","7.2",[19,103,20,104,105],"bbpress","content-restriction","membership","https:\u002F\u002Fdev.institute\u002Fwordpress-memberships\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frestrict-user-access.2.8.zip",99,2,"2024-03-18 00:00:00",{"slug":112,"name":113,"version":114,"author":115,"author_profile":116,"description":117,"short_description":118,"active_installs":119,"downloaded":120,"rating":13,"num_ratings":47,"last_updated":121,"tested_up_to":122,"requires_at_least":123,"requires_php":64,"tags":124,"homepage":127,"download_link":128,"security_score":108,"vuln_count":25,"unpatched_count":26,"last_vuln_date":129,"fetched_at":28},"bp-restrict","Restrictions for BuddyPress","1.5.3","SeventhQueen","https:\u002F\u002Fprofiles.wordpress.org\u002Fseventhqueen\u002F","\u003Cp>\u003Cstrong>Restrictions for BuddyPress\u003C\u002Fstrong> gives you full control over who can see and access your BuddyPress community pages. Hide profiles, groups, activity, and messages from visitors, non-members, or specific membership levels.\u003C\u002Fp>\n\u003Cp>Perfect for \u003Cstrong>membership sites\u003C\u002Fstrong>, \u003Cstrong>private communities\u003C\u002Fstrong>, \u003Cstrong>paid networks\u003C\u002Fstrong>, and \u003Cstrong>gated BuddyPress installations\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Ch4>What You Can Restrict\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Members Directory\u003C\u002Fstrong> — Hide the full members list from visitors or non-members\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Member Profiles\u003C\u002Fstrong> — Control who can view individual BuddyPress profiles\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Groups Directory\u003C\u002Fstrong> — Restrict access to the groups listing page\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Single Group Pages\u003C\u002Fstrong> — Lock individual group pages behind membership\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Site-Wide Activity\u003C\u002Fstrong> — Hide the activity stream from unauthorized users\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Private Messages\u003C\u002Fstrong> — Restrict messaging to specific membership levels\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Membership Integration\u003C\u002Fh4>\n\u003Cp>Seamlessly integrates with \u003Cstrong>Paid Memberships Pro (PMPro)\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Apply restrictions based on your existing membership levels\u003C\u002Fli>\n\u003Cli>Show upgrade prompts to non-members trying to access restricted content\u003C\u002Fli>\n\u003Cli>Mix and match — some areas free, some members-only\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Free Access by Profile Field\u003C\u002Fh4>\n\u003Cp>Grant free access to specific BuddyPress members based on a \u003Cstrong>profile field value\u003C\u002Fstrong> — no membership plugin required. Ideal for:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Giving VIP access to users with a specific role or profile attribute\u003C\u002Fli>\n\u003Cli>Creating tiered access without a full membership setup\u003C\u002Fli>\n\u003Cli>Whitelisting beta testers or early adopters\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>BuddyBoss Compatible\u003C\u002Fh4>\n\u003Cp>Fully compatible with \u003Cstrong>BuddyBoss Platform\u003C\u002Fstrong>, so your restrictions work whether you’re running classic BuddyPress or BuddyBoss.\u003C\u002Fp>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Install and activate the plugin\u003C\u002Fli>\n\u003Cli>Go to \u003Cstrong>Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> BP Restrict\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Choose which BuddyPress areas to restrict\u003C\u002Fli>\n\u003Cli>Select restriction type: visitors, all non-members, or specific membership levels\u003C\u002Fli>\n\u003Cli>Set a custom redirect URL or restriction message\u003C\u002Fli>\n\u003Cli>Done — your community is protected\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Use Cases\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Private communities\u003C\u002Fstrong> — Only logged-in members can browse profiles and groups\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Paid membership sites\u003C\u002Fstrong> — Gate BuddyPress features behind PMPro membership levels\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Corporate intranets\u003C\u002Fstrong> — Restrict the social layer to employees only\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Online courses\u003C\u002Fstrong> — Let students access the community, hide it from everyone else\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dating sites\u003C\u002Fstrong> — Require membership to view profiles or send messages\u003C\u002Fli>\n\u003C\u002Ful>\n","Restrict BuddyPress profiles, groups, activity, and messages by login status, membership level, or profile field.",400,17570,"2026-02-24T10:02:00.000Z","6.9.4","5.0",[19,125,105,126,21],"buddypress","pmpro","http:\u002F\u002Fwordpress.org\u002Fplugins","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-restrict.1.5.3.zip","2025-11-17 20:52:43",{"slug":131,"name":132,"version":133,"author":134,"author_profile":135,"description":136,"short_description":137,"active_installs":138,"downloaded":139,"rating":13,"num_ratings":25,"last_updated":140,"tested_up_to":62,"requires_at_least":141,"requires_php":64,"tags":142,"homepage":145,"download_link":146,"security_score":13,"vuln_count":26,"unpatched_count":26,"last_vuln_date":35,"fetched_at":28},"content-restrictor-for-divi","Divi Content Restrictor","2.0.0","wptools","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpt00ls\u002F","\u003Cp>Conditionally restrict partial content on divi page. Divi visual builder compatible. Grant access to logged-in users, users belonging to any\u002Fall selected roles. Integration with third-party plugins like “WooCommerce Membership”, “MemberPress”, “Restrict Content Pro” & “Custom WordPress Filter”.\u003C\u002Fp>\n\u003Ch3>Restrict Content On Divi Page\u003C\u002Fh3>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FFH2uT690fSs?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Conditionally restrict\u003C\u002Fstrong> access to \u003Cstrong>partial content\u003C\u002Fstrong> on a \u003Cstrong>divi section\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>100% divi visual builder compatibility.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>This plugin restricts content on divi section. Its 100% compatible with divi visual builder.\u003C\u002Fp>\n\u003Cp>We’ve added \u003Cstrong>Restrict Content\u003C\u002Fstrong> & \u003Cstrong>Un-Authorized Text\u003C\u002Fstrong> settings toggle on divi section module. Its on the \u003Cstrong>Advanced tab\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>In the \u003Cstrong>Restrict Content\u003C\u002Fstrong> toggle, setup all the conditions for restricting content like\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Show content to logged-in users\u003C\u002Fli>\n\u003Cli>Show content to users with specific roles (Premium Version)\u003C\u002Fli>\n\u003Cli>Show content based on third-party plugin’s like\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fbit.ly\u002F2JNNyEA\" rel=\"nofollow ugc\">Restrict Content Pro\u003C\u002Fa> (Premium Version)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fbit.ly\u002F2X8dk9w\" rel=\"nofollow ugc\">MemberPress\u003C\u002Fa> (Premium Version)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fbit.ly\u002F3rWA0Ib\" rel=\"nofollow ugc\">WooCommerce Membership\u003C\u002Fa> (Premium Version)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>In the \u003Cstrong>Un-Authorized Text\u003C\u002Fstrong> settings toggle, set the un-authorized text message and text styles.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Restrict content on all section types. For example regular, full-width and specialty divi sections\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>Premium\u003C\u002Fh3>\n\u003Cp>Premium plugin is available at \u003Ca href=\"https:\u002F\u002Fwptools.app\u002Fwordpress-plugin\u002Fdivi-content-restrictor\u002F?utm_source=wp&utm_medium=plugin-page&utm_campaign=restrict-content&utm_content=description\" rel=\"nofollow ugc\">https:\u002F\u002Fwptools.app\u002Fwordpress-plugin\u002Fdivi-content-restrictor\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Features are:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Content restriction using \u003Cstrong>User Roles\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Content restriction using \u003Cstrong>WooCommerce Memberships\u003C\u002Fstrong> plugin\u003C\u002Fli>\n\u003Cli>Content restriction using \u003Cstrong>Restrict Content Pro\u003C\u002Fstrong> plugin\u003C\u002Fli>\n\u003Cli>Content restriction using \u003Cstrong>MemberPress\u003C\u002Fstrong> plugin\u003C\u002Fli>\n\u003Cli>Content restriction using \u003Cstrong>Custom WordPress Filter\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n","Conditionally restrict partial content on divi page. Divi visual builder compatible. Grant access to logged-in users, users belonging to any\u002Fall selec &hellip;",200,5875,"2025-11-05T08:27:00.000Z","4.5",[143,144],"divi-content-access-control","divi-restrict-content","https:\u002F\u002Fwptools.app","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontent-restrictor-for-divi.2.0.0.zip",{"attackSurface":148,"codeSignals":177,"taintFlows":186,"riskAssessment":187,"analyzedAt":195},{"hooks":149,"ajaxHandlers":169,"restRoutes":170,"shortcodes":171,"cronEvents":176,"entryPointCount":25,"unprotectedCount":26},[150,156,160,165],{"type":151,"name":152,"callback":153,"file":154,"line":155},"action","plugins_loaded","raa_load_textdomain","restrict-anonymous-access.php",40,{"type":151,"name":157,"callback":158,"file":154,"line":159},"wp_enqueue_scripts","raa_load_scripts",46,{"type":161,"name":162,"callback":163,"file":154,"line":164},"filter","mce_external_plugins","raa_enqueue_plugin_scripts",125,{"type":161,"name":166,"callback":167,"file":154,"line":168},"mce_buttons","raa_register_buttons_editor",132,[],[],[172],{"tag":173,"callback":174,"file":154,"line":175},"member","raa_member_check_shortcode",118,[],{"dangerousFunctions":178,"sqlUsage":179,"outputEscaping":181,"fileOperations":26,"externalRequests":26,"nonceChecks":26,"capabilityChecks":184,"bundledLibraries":185},[],{"prepared":26,"raw":26,"locations":180},[],{"escaped":182,"rawEcho":26,"locations":183},10,[],6,[],[],{"summary":188,"deductions":189},"The restrict-anonymous-access plugin version 1.2.1 demonstrates a generally strong security posture based on the provided static analysis.  It effectively utilizes prepared statements for SQL queries and ensures all identified output is properly escaped, indicating good practices in preventing common web vulnerabilities.  The absence of dangerous functions, file operations, and external HTTP requests further minimizes the potential attack surface.  Furthermore, the plugin implements capability checks, which is a positive sign for controlling access to sensitive features.\n\nHowever, a critical concern arises from the lack of nonce checks across its entry points. With only one identified shortcode as an entry point and no explicit mention of nonce verification for it, there's a potential for Cross-Site Request Forgery (CSRF) attacks. While no critical or high severity taint flows were detected in the code analysis, the historical presence of a medium severity Cross-Site Scripting (XSS) vulnerability, even if patched, suggests that user-supplied input should always be treated with extreme caution.  The fact that there's a known CVE in its history, even if unpatched at present, warrants attention.\n\nIn conclusion, while the plugin has commendable security features like proper SQL handling and output escaping, the absence of nonce checks presents a significant weakness that could be exploited.  The historical XSS vulnerability, although past, highlights the importance of ongoing vigilance and robust input validation, particularly for the shortcode entry point.",[190,193],{"reason":191,"points":192},"Missing nonce checks on entry points",8,{"reason":194,"points":44},"Historical medium severity XSS vulnerability","2026-03-16T21:21:18.983Z",{"wat":197,"direct":204},{"assetPaths":198,"generatorPatterns":200,"scriptPaths":201,"versionParams":203},[199],"\u002Fwp-content\u002Fplugins\u002Frestrict-anonymous-access\u002Fcss\u002Fstyles.css",[],[202],"\u002Fwp-content\u002Fplugins\u002Frestrict-anonymous-access\u002Findex.js",[],{"cssClasses":205,"htmlComments":207,"htmlAttributes":208,"restEndpoints":210,"jsGlobals":211,"shortcodeOutput":212},[206],"raa-box-info",[],[209],"data-mce-selected",[],[],[213,214,214],"\u003Cdiv class=\"raa-box-info","\u003Cp>This section is only available to registered users.\u003C\u002Fp>"]