[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fjh5G5JGkgzXhed8iqFw5jwHIOTjGMbZUxC7ziPUQOPU":3,"$fin7oYjvjqb-yld_UF-z1muW9HQOY9vGNq3HMt1Aouoo":212,"$f3-J3zpuRtbMQezYIrUg3AE38z8D691MYzYc5fz4ocDU":217},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":16,"download_link":21,"security_score":22,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":24,"discovery_status":25,"vulnerabilities":26,"developer":27,"crawl_stats":23,"alternatives":34,"analysis":137,"fingerprints":184},"scalahosting-easy-login","Easy Login for ScalaHosting SPanel","1.6.1","WP Fix It - WordPress Experts","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpfixit\u002F","\u003Cp>ScalaHosting EASY Login – SPanel Only lets you embed a secure single-sign-on button into any post, page or widget area, giving administrators one-click access to your ScalaHosting SPanel or HostPanel.\u003C\u002Fp>\n\u003Cp>This plugin provides WordPress administrators with an easy way to integrate a secure single sign-on (SSO) experience into their ScalaHosting SPanel. Once configured, the [scalahosting] shortcode can be added anywhere in your content, displaying a customizable login button.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Adds [scalahosting] shortcode for login button\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Administrator-only access: non-admins see nothing\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Live button preview and styling options in the Tools ScalaHosting settings page\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Supports both ‘\u002Fspanel’ and ‘\u002Fhostpanel’ login paths\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Button color, hover color, text color & size configurable\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Secure SSO via ScalaHosting API with nonce protection\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Adds a secure, one-click EASY login button for administrators to your ScalaHosting control panel via a simple [scalahosting] shortcode.",0,235,"2025-08-11T19:45:00.000Z","6.8.5","5.0","",[18,19,20],"easy-login","scalahosting","sso-login","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fscalahosting-easy-login.1.6.1.zip",100,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":28,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":22,"avg_patch_time_days":31,"trust_score":32,"computed_at":33},"wpfixit",10,8650,30,94,"2026-05-20T00:17:29.609Z",[35,58,80,99,117],{"slug":36,"name":37,"version":38,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":43,"downloaded":44,"rating":45,"num_ratings":46,"last_updated":47,"tested_up_to":14,"requires_at_least":48,"requires_php":16,"tags":49,"homepage":16,"download_link":54,"security_score":55,"vuln_count":56,"unpatched_count":11,"last_vuln_date":57,"fetched_at":24},"dologin","DoLogin Security","4.3","WPDO","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpdo5ea\u002F","\u003Cp>In one click, your WordPress login page will be pretected with the smart brute force attack protection! Any login attempts more than 6 in 10 minutes (default value) will be limited.\u003C\u002Fp>\n\u003Cp>Limit the number of login attempts through both the login and the auth cookies.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Two-factor Authentication login.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Text SMS message passcode for 2nd step verification support.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Cloudflare Turnstile (better than Google reCAPTCHA).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>GeoLocation (Continent\u002FCountry\u002FCity) or IP range to limit login attempts.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Passwordless login link.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Support Whitelist and Blacklist.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>GDPR compliant. With this feature turned on, all logged IPs get obfuscated (md5-hashed).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>WooCommerce Login supported.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>XMLRPC gateway protection.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>API\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Call the function \u003Ccode>$link = function_exists( 'dologin_gen_link' ) ? dologin_gen_link( 'your plugin name or tag' ) : '';\u003C\u002Fcode> to generate one passwordless login link for the current user.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Call the function \u003Ccode>$link = function_exists( 'dologin_gen_link' ) ? dologin_gen_link( 'note\u002Ftip for this generation', $user_id ) : '';\u003C\u002Fcode> to generate a passwordless login link for the user which ID is \u003Ccode>$user_id\u003C\u002Fcode>.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The generated one-time used link will be expired after 7 days.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Define const \u003Ccode>SILENCE_INSTALL\u003C\u002Fcode> to avoid redirecting to setting page after installtion.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>CLI\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>List all passwordless links: \u003Ccode>wp dologin list\u003C\u002Fcode>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Generate a passwordless link for one username (for the login name \u003Ccode>root\u003C\u002Fcode>): \u003Ccode>wp dologin gen root\u003C\u002Fcode>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Delete a passwordless link w\u002F the ID in list (for the record w\u002F ID 5): \u003Ccode>wp dologin del 5\u003C\u002Fcode>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How GeoLocation works\u003C\u002Fh4>\n\u003Cp>When visitors hit the login page, this plugin will lookup the Geolocation info from API, compare the Geolocation setting (if has) with the whitelist\u002Fblacklist to decide if allow login attempts.\u003C\u002Fp>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>The online IP lookup service is provided by https:\u002F\u002Fwww.doapi.us. The provider’s privacy policy is https:\u002F\u002Fwww.doapi.us\u002Fprivacy.\u003C\u002Fp>\n\u003Cp>Based on the original code from Limit Login Attemps plugin and Limit Login Attemps Reloaded plugin.\u003C\u002Fp>\n","Easy Login. 2FA login. Passwordless login. Cloudflare Turnstile reCAPTCHA. GeoLocation (Continent\u002FCountry\u002FCity)\u002FIP range to limit login attempts.",7000,164314,90,13,"2025-06-11T14:21:00.000Z","4.0",[50,51,18,52,53],"2fa-login","cloudflare-turnstile-recaptcha","geolocation-login-limit","login-security","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdologin.4.3.zip",98,4,"2023-10-24 00:00:00",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":29,"downloaded":66,"rating":22,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":16,"tags":71,"homepage":76,"download_link":77,"security_score":78,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":79},"mindstien-quick-login","Mindstien Quick Login","1.0","Mindstien Technologies","https:\u002F\u002Fprofiles.wordpress.org\u002Fmindstien\u002F","\u003Cp>\u003Cstrong>Login Without Password\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How this works ?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Save your secret code in plugin option page, it should be easy to remember for you. Secret code does not have to be strong like password its for you so you can remember easily. To login, visit your site with ?x=ZZZZ at the end of url, where ZZZZ is the secret code you just saved. You will soon receive the email containing the quick login link on your registered email address. You can click on the link and you will be taken direct to your wp-admin dashboard (bypassing login form).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Why This Plugin ?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>If you are one of those people who think why they need this plugin, why can not they just login using username\u002Fpasswords ? Well, personally I manage multiple wordpress blogs and I have to keep the password strong and different for each blog for security reason, now its always become hard for me to remember the password and each time I forget password and I have to go through the forget passwords link. Some time I also forget username too (b’cos I don’t use default username as ‘admin’ or my own name for security purpose), in such cases I go to the wordpress database via phpmyadmin (cpanel) and reset the username\u002Fpassword there. So that is why this plugin… Enjoy the safest and easiest way of quick login without need of remembering those ugly (yet strong) passwords.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Is it safe ?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Yes, its safe because\u003C\u002Fp>\n\u003Cpre>\u003Ccode>1. Only you will know the secret code,\n1. It will send email to only user's email who has saved secret code (you)\n1. The quick login link in your email will only work for you, ie. link will be valid for the same computer, same browser and same browser session and only once. Link will do nothing if you visit from different computer\u002Fbrowser etc. Link will work only once.\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Got question or suggestion ?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Your questions and suggestions are very valuable to us, as they help us improve our work and to serve you better. Please give your valuable feedbacks as a review of the plugin or visit us at \u003Ca href=\"http:\u002F\u002Fwww.mindstien.com\" rel=\"nofollow ugc\">Mindstien Technologies\u003C\u002Fa> to contact us.\u003C\u002Fp>\n\u003Cp>Hire plugin author for your \u003Ca href=\"http:\u002F\u002Fwww.freelancer.com\u002Fu\u002Fmindstiente.html\" rel=\"nofollow ugc\">WordPress Development\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Visit official website for this plugin at \u003Ca href=\"http:\u002F\u002Fwww.mindstien.com\" rel=\"nofollow ugc\">Mindstien Technologies\u003C\u002Fa>.\u003C\u002Fp>\n","Forget Username\u002FPassword, Remember just one code for all of your wp sites.",1841,2,"2014-09-13T08:30:00.000Z","4.0.38","3.0",[18,72,73,74,75],"email-login","quick-login","secure-login","wp-login","http:\u002F\u002Fwww.mindstien.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmindstien-quick-login.1.0.zip",85,"2026-03-15T15:16:48.613Z",{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":11,"downloaded":88,"rating":22,"num_ratings":89,"last_updated":90,"tested_up_to":91,"requires_at_least":15,"requires_php":92,"tags":93,"homepage":97,"download_link":98,"security_score":78,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":24},"ljpc-easy-login-client","LJPc Easy Login Client","1.0.2","Lars Jansen","https:\u002F\u002Fprofiles.wordpress.org\u002Flars-2\u002F","\u003Cp>Create an account at https:\u002F\u002Fwww.easy-login.nl, install this plugin and easily login to this website.\u003Cbr \u002F>\nWhen this plugin gets deleted, the users will also be deleted and the users’ content will be reassigned to a remaining admin.\u003C\u002Fp>\n\u003Cp>It also works with multisites.\u003C\u002Fp>\n","Create an account at https:\u002F\u002Fwww.easy-login.nl, install this plugin and easily login to this website.",864,1,"2022-02-01T08:16:00.000Z","5.9.0","7.0",[94,18,95,96],"easy","ljpc","login","https:\u002F\u002Fwww.easy-login.nl\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fljpc-easy-login-client.1.0.2.zip",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":11,"downloaded":107,"rating":11,"num_ratings":11,"last_updated":108,"tested_up_to":14,"requires_at_least":109,"requires_php":110,"tags":111,"homepage":115,"download_link":116,"security_score":22,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":24},"password-less-login","Password Less Login","1.0.0.1","Sadekur Rahman","https:\u002F\u002Fprofiles.wordpress.org\u002Fsadekur\u002F","\u003Cp>\u003Cstrong>Password Less Login\u003C\u002Fstrong> is a passwordless and OTP-based login system for WordPress.\u003Cbr \u002F>\nEvery user — both existing and new — must verify their identity using a \u003Cstrong>One-Time Password (OTP)\u003C\u002Fstrong> sent to their email before being logged in.\u003C\u002Fp>\n\u003Cp>This ensures that no one can access an account without confirming ownership of the email address, providing a secure, passwordless authentication process.\u003C\u002Fp>\n\u003Ch3>How It Works\u003C\u002Fh3>\n\u003Col>\n\u003Cli>The user enters their email address.\u003C\u002Fli>\n\u003Cli>The plugin sends a \u003Cstrong>6-digit OTP\u003C\u002Fstrong> to that email.\u003C\u002Fli>\n\u003Cli>The user enters the OTP:\n\u003Cul>\n\u003Cli>If the email exists \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> the user is securely logged in.\u003C\u002Fli>\n\u003Cli>If the email is new \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> the user provides a username, verifies the OTP, and a new account is created automatically.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>The OTP is valid for \u003Cstrong>10 minutes\u003C\u002Fstrong> and expires after use.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Note:\u003C\u002Fstrong> The plugin never logs in users without OTP verification.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>Key Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>OTP-Based Authentication for All Users\u003C\u002Fstrong> – Both existing and new users must verify the OTP before login.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Passwordless Login\u003C\u002Fstrong> – Securely log in using only your email and OTP.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto User Registration\u003C\u002Fstrong> – New users can register instantly after OTP verification.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Temporary OTP (10 Minutes)\u003C\u002Fstrong> – Each OTP expires after 10 minutes and can only be used once.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Rate Limiting\u003C\u002Fstrong> – Prevents brute-force or spam OTP requests (maximum 5 per 15 minutes per email).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Nonce Verification\u003C\u002Fstrong> – Protects REST API endpoints from unauthorized access.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Secure Email Handling\u003C\u002Fstrong> – Emails are hashed when stored in transients to protect user data.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Streamlined User Experience\u003C\u002Fstrong> – Clean, minimal login flow with conditional fields for existing vs. new users.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Why Choose Password Less Login?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>No passwords to remember or reset.\u003C\u002Fli>\n\u003Cli>OTP verification ensures true ownership of email.\u003C\u002Fli>\n\u003Cli>Protects against brute-force attacks.\u003C\u002Fli>\n\u003Cli>Simple setup – works with the native WordPress login page.\u003C\u002Fli>\n\u003Cli>Modern and user-friendly design.\u003C\u002Fli>\n\u003Cli>Reduces “Forgot Password” support requests.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Go to your WordPress login page.\u003C\u002Fli>\n\u003Cli>Enter your email address and click “Send OTP”.\u003C\u002Fli>\n\u003Cli>Check your email for the OTP.\u003C\u002Fli>\n\u003Cli>Enter the OTP in the login form:\n\u003Cul>\n\u003Cli>If your account exists, you’ll be logged in.\u003C\u002Fli>\n\u003Cli>If not, you’ll be prompted to provide a username before registration and login.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>You’ll be redirected to your dashboard after successful verification.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is released under the GPL license. You are free to use and modify it.\u003C\u002Fp>\n\u003Cp>For support, contact: \u003Ca href=\"mailto:sadekur0rahman@gmail.com\" rel=\"nofollow ugc\">sadekur0rahman@gmail.com\u003C\u002Fa>\u003C\u002Fp>\n","A powerful and easy-to-use WordPress plugin for passwordless and OTP-based login.",273,"2026-01-07T16:26:00.000Z","5.9","7.4",[18,112,113,114,74],"email-authentication","otp-login","passwordless-login","https:\u002F\u002Fgithub.com\u002Fsadekur\u002Fpassword-less-login","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpassword-less-login.zip",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":11,"downloaded":125,"rating":22,"num_ratings":89,"last_updated":126,"tested_up_to":14,"requires_at_least":127,"requires_php":128,"tags":129,"homepage":135,"download_link":136,"security_score":22,"vuln_count":11,"unpatched_count":11,"last_vuln_date":23,"fetched_at":24},"saml-identity-provider-by-wpintegrals","SAML IDP – Login with WordPress Users via SAML SSO","2.1.3","WPIntegrals","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpintegrals\u002F","\u003Cp>\u003Cstrong>================ WARNING ==============================\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>‼️ \u003Cstrong>Important:\u003C\u002Fstrong> This plugin is \u003Cstrong>deprecated\u003C\u002Fstrong> and \u003Cstrong>no longer maintained\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>This plugin has been discontinued due to issues discovered during a recent review that prevent us from continuing to work on it. To ensure user safety, reliability, and compliance with platform requirements, we have withdrawn active development and updates. The plugin will no longer receive bug fixes, improvements, or security patches.\u003C\u002Fp>\n\u003Cp>We recommend \u003Cstrong>switching to a supported alternative\u003C\u002Fstrong> to maintain a stable and secure environment.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>========================================================\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The \u003Cstrong>WordPress SAML IDP\u003C\u002Fstrong> plugin converts your WordPress site into a \u003Cstrong>SAML 2.0 compliant Identity Provider\u003C\u002Fstrong>. With this plugin, your users can \u003Cstrong>log in to any SAML-enabled Service Provider (SP)\u003C\u002Fstrong> using their WordPress credentials through \u003Cstrong>secure SAML SSO (Single Sign-On)\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Whether you want to provide \u003Cstrong>Tableau SSO\u003C\u002Fstrong>, \u003Cstrong>Zoom SSO\u003C\u002Fstrong>, \u003Cstrong>Moodle LMS login\u003C\u002Fstrong>, or \u003Cstrong>Thinkific Single Sign-On\u003C\u002Fstrong>, our plugin enables seamless identity federation between your WordPress site and a wide range of third-party platforms.\u003C\u002Fp>\n\u003Cp>This plugin is perfect for organizations that use WordPress as their central user hub and want to extend secure authentication to other applications.\u003C\u002Fp>\n\u003Ch3>🔐 Key Use Cases:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Login with WordPress into Tableau\u003C\u002Fstrong> (Tableau Server, Tableau Online, Tableau Cloud)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Moodle LMS SSO integration\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Zoom SSO login\u003C\u002Fstrong> using WordPress credentials\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Canvas LMS, Absorb LMS, TalentLMS, Thinkific, Flagship LMS SSO\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Freshdesk, Zoho CRM, Zendesk, HubSpot, Nextcloud login\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>AWS Cognito SSO from WordPress\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Login with WordPress users to third-party apps via SAML 2.0\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>✅ Who Is It For?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Educational Institutions using Moodle, Canvas, Thinkific, TalentLMS, Absorb LMS\u003C\u002Fli>\n\u003Cli>Enterprises needing Tableau, Zoho, Zoom, Zendesk, AWS Cognito SSO\u003C\u002Fli>\n\u003Cli>Developers building secure SAML integrations\u003C\u002Fli>\n\u003Cli>Membership sites and communities using WordPress as an Identity Provider\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Supported Platforms & Service Providers\u003C\u002Fh3>\n\u003Cp>This plugin supports Single Sign-On from WordPress to any SAML 2.0 compliant application. Below is a sample list of integrations:\u003C\u002Fp>\n\u003Cp>🟢 \u003Cstrong>Business Tools\u003C\u002Fstrong>\u003Cbr \u002F>\n– Tableau Online \u002F Tableau Server \u002F Tableau Cloud\u003Cbr \u002F>\n– Zoho CRM \u002F Zoho One\u003Cbr \u002F>\n– Freshdesk (Agents & Contacts)\u003Cbr \u002F>\n– Zoom\u003Cbr \u002F>\n– HubSpot\u003Cbr \u002F>\n– Zendesk\u003Cbr \u002F>\n– AWS Cognito\u003Cbr \u002F>\n– Higher Logic\u003Cbr \u002F>\n– ServiceNow\u003C\u002Fp>\n\u003Cp>🟢 \u003Cstrong>LMS Platforms\u003C\u002Fstrong>\u003Cbr \u002F>\n– Moodle LMS Login\u003Cbr \u002F>\n– Canvas LMS SSO\u003Cbr \u002F>\n– Absorb LMS Login\u003Cbr \u002F>\n– TalentLMS Login\u003Cbr \u002F>\n– Thinkific Single Sign-On\u003Cbr \u002F>\n– Flagship LMS SSO\u003Cbr \u002F>\n– Panopto\u003Cbr \u002F>\n– iSpring\u003Cbr \u002F>\n– LearnUpon\u003Cbr \u002F>\n– Tovuti LMS\u003Cbr \u002F>\n– 360Learning\u003C\u002Fp>\n\u003Cp>🟢 \u003Cstrong>Others\u003C\u002Fstrong>\u003Cbr \u002F>\n– Nextcloud Login\u003Cbr \u002F>\n– LinkedIn Learning\u003Cbr \u002F>\n– BlueJeans\u003Cbr \u002F>\n– Klipfolio\u003Cbr \u002F>\n– Mendix\u003Cbr \u002F>\n– Liferay\u003Cbr \u002F>\n– SAP Litmos\u003Cbr \u002F>\n– Documoto\u003C\u002Fp>\n\u003Cp>And \u003Cstrong>any other SAML 2.0 compatible Service Provider\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>🔑 \u003Cstrong>WordPress as a SAML Identity Provider (IDP)\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>🔐 \u003Cstrong>Secure SAML-based authentication\u003C\u002Fstrong> using WordPress login\u003C\u002Fli>\n\u003Cli>🚀 \u003Cstrong>SSO support for any SAML 2.0 Service Provider\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>📄 \u003Cstrong>SP metadata XML generation and configuration\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>🔄 \u003Cstrong>Single Logout (SLO)\u003C\u002Fstrong> – End sessions on both sides (Premium)\u003C\u002Fli>\n\u003Cli>📌 \u003Cstrong>Support for multiple Service Providers\u003C\u002Fstrong> (Premium)\u003C\u002Fli>\n\u003Cli>🧩 \u003Cstrong>Attribute & Role Mapping\u003C\u002Fstrong> from WordPress to SP (Premium)\u003C\u002Fli>\n\u003Cli>🧠 \u003Cstrong>Works with custom WordPress login pages\u003C\u002Fstrong> (Premium)\u003C\u002Fli>\n\u003Cli>📁 \u003Cstrong>Shortcodes & Widgets\u003C\u002Fstrong> for SAML SSO links\u003C\u002Fli>\n\u003Cli>🧪 \u003Cstrong>SAML Request & Response signing\u002Fencryption\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Special Use-Cases\u003C\u002Fh3>\n\u003Ch3>🎓 WordPress as SAML IDP for LMS Systems\u003C\u002Fh3>\n\u003Cp>Easily allow WordPress users to SSO into \u003Cstrong>Moodle\u003C\u002Fstrong>, \u003Cstrong>Canvas\u003C\u002Fstrong>, \u003Cstrong>TalentLMS\u003C\u002Fstrong>, \u003Cstrong>Thinkific\u003C\u002Fstrong>, \u003Cstrong>Absorb LMS\u003C\u002Fstrong>, and \u003Cstrong>Flagship LMS\u003C\u002Fstrong>. Share courses from WordPress and authenticate into your LMS seamlessly.\u003C\u002Fp>\n\u003Ch3>📊 Tableau SSO\u003C\u002Fh3>\n\u003Cp>Use your WordPress userbase to log in to Tableau. Supports:\u003Cbr \u002F>\n– \u003Cstrong>Tableau Online \u002F Server \u002F Cloud SSO\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>🧠 Zoom SSO via WordPress\u003C\u002Fh3>\n\u003Cp>Restrict access to Zoom meetings\u002Fwebinars by allowing only authenticated WordPress users via SAML SSO.\u003C\u002Fp>\n","‼️ Important - This plugin is deprecated and no longer maintained.",459,"2025-11-14T10:18:00.000Z","4.6","7.2",[130,131,132,133,134],"moodle-lms-login","saml-idp","tableau-server-sso","thinkific-sso","zoom-sso-login","https:\u002F\u002Fwpexion.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsaml-identity-provider-by-wpintegrals.zip",{"attackSurface":138,"codeSignals":161,"taintFlows":174,"riskAssessment":175,"analyzedAt":183},{"hooks":139,"ajaxHandlers":155,"restRoutes":156,"shortcodes":157,"cronEvents":160,"entryPointCount":89,"unprotectedCount":11},[140,146,149,152],{"type":141,"name":142,"callback":143,"file":144,"line":145},"action","admin_enqueue_scripts","anonymous","easy-login-scalahosting-.php",37,{"type":141,"name":147,"callback":143,"file":144,"line":148},"admin_init",67,{"type":141,"name":150,"callback":143,"file":144,"line":151},"admin_menu",80,{"type":141,"name":153,"callback":154,"file":144,"line":12},"init","closure",[],[],[158],{"tag":19,"callback":143,"file":144,"line":159},231,[],{"dangerousFunctions":162,"sqlUsage":163,"outputEscaping":165,"fileOperations":11,"externalRequests":89,"nonceChecks":89,"capabilityChecks":67,"bundledLibraries":173},[],{"prepared":11,"raw":11,"locations":164},[],{"escaped":166,"rawEcho":67,"locations":167},27,[168,171],{"file":144,"line":169,"context":170},162,"raw output",{"file":144,"line":172,"context":170},163,[],[],{"summary":176,"deductions":177},"The scalohosting-easy-login plugin v1.6.1 exhibits a generally good security posture based on the provided static analysis.  The absence of dangerous functions, SQL injection vulnerabilities (due to prepared statements), and file operations is highly positive.  Furthermore, the presence of nonce and capability checks, along with a high percentage of properly escaped output, indicates a conscious effort towards secure coding practices.\n\nHowever, there are minor areas for attention. The single shortcode represents an entry point, and while the analysis shows no unprotected entry points, any shortcode, if not meticulously secured against potential injection through its attributes, can pose a risk. The single external HTTP request warrants scrutiny to ensure it is not susceptible to man-in-the-middle attacks or does not leak sensitive information. The zero taint analysis flows are also a positive sign, suggesting no obvious pathways for malicious data to be processed unsafely.  The lack of any recorded vulnerabilities in its history is a strong indicator of historical security diligence.\n\nIn conclusion, the plugin appears to be well-developed from a security perspective, with robust defenses against common attack vectors. The strengths lie in its avoidance of critical vulnerabilities like raw SQL and dangerous functions, and its use of WordPress security best practices. The primary potential concern, though minor based on this data, lies in the shortcode's implementation and the nature of its external HTTP request, which should be reviewed for completeness.",[178,181],{"reason":179,"points":180},"Potential risk in shortcode usage",3,{"reason":182,"points":67},"External HTTP request needs review","2026-03-17T05:43:41.563Z",{"wat":185,"direct":192},{"assetPaths":186,"generatorPatterns":189,"scriptPaths":190,"versionParams":191},[187,188],"\u002Fwp-content\u002Fplugins\u002Fscalahosting-easy-login\u002Fassets\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fscalahosting-easy-login\u002Fassets\u002Fadmin-preview.js",[],[],[],{"cssClasses":193,"htmlComments":195,"htmlAttributes":196,"restEndpoints":208,"jsGlobals":209,"shortcodeOutput":210},[194],"scala-logo",[],[197,198,199,200,201,202,203,204,205,206,207],"name=\"easyloginforscala_api_key\"","name=\"easyloginforscala_api_url\"","name=\"easyloginforscala_panel_path\"","name=\"easyloginforscala_admin_email\"","name=\"easyloginforscala_accountuser\"","name=\"easyloginforscala_username\"","name=\"easyloginforscala_shortcode_text\"","name=\"easyloginforscala_btn_color\"","name=\"easyloginforscala_btn_hover\"","name=\"easyloginforscala_btn_textcolor\"","name=\"easyloginforscala_btn_textsize\"",[],[],[211],"[scalahosting]",{"error":213,"url":214,"statusCode":215,"statusMessage":216,"message":216},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fscalahosting-easy-login\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":67,"versions":218},[219,225],{"version":6,"download_url":21,"svn_tag_url":220,"released_at":23,"has_diff":221,"diff_files_changed":222,"diff_lines":23,"trac_diff_url":223,"vulnerabilities":224,"is_current":213},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fscalahosting-easy-login\u002Ftags\u002F1.6.1\u002F",false,[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fscalahosting-easy-login%2Ftags%2F1.6&new_path=%2Fscalahosting-easy-login%2Ftags%2F1.6.1",[],{"version":226,"download_url":227,"svn_tag_url":228,"released_at":23,"has_diff":221,"diff_files_changed":229,"diff_lines":23,"trac_diff_url":23,"vulnerabilities":230,"is_current":221},"1.6","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fscalahosting-easy-login.1.6.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fscalahosting-easy-login\u002Ftags\u002F1.6\u002F",[],[]]