[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fZidDZt-hAcstgmdRQtLn2zWSMHZgqQ4Hm1iwIlFSlUg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":35,"analysis":140,"fingerprints":199},"sessionquota","SessionQuota","1.0.0","handyplugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fhandyplugins\u002F","\u003Cp>SessionQuota helps you prevent account sharing by controlling how many active sessions each user can have at the same time.\u003C\u002Fp>\n\u003Cp>Set a global session limit and choose what happens when the limit is reached: block the new login, logout the oldest session(s), or keep only the latest session (single-session mode).\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Global session limit\u003C\u002Fstrong>: Set a maximum number of concurrent sessions per user (\u003Ccode>0\u003C\u002Fcode> = unlimited).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enforcement modes\u003C\u002Fstrong>:\n\u003Cul>\n\u003Cli>\u003Cstrong>Block new login\u003C\u002Fstrong> when the limit is reached.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Logout oldest session(s)\u003C\u002Fstrong> required to stay within the limit.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Logout all other sessions\u003C\u002Fstrong> after a successful login (single-session mode).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Simple setup\u003C\u002Fstrong>: Manage settings from \u003Ccode>Settings -> SessionQuota\u003C\u002Fcode>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Enforcement Modes Explained\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>Block new login\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Rejects the new login attempt when the user is already at the limit.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Logout oldest session(s)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Terminates the oldest existing session(s) required to keep the user within the limit.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Logout all other sessions\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Keeps only the latest session and terminates all other sessions.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Contributing & Bug Reports\u003C\u002Fh4>\n\u003Cp>Bug reports and pull requests are welcome on GitHub: https:\u002F\u002Fgithub.com\u002FHandyPlugins\u002Fsessionquota\u003C\u002Fp>\n","Prevent account sharing by limiting concurrent user sessions in WordPress.",0,124,"2026-03-10T03:25:00.000Z","6.9.4","5.9","7.4",[18,19,20,21,22],"account-sharing","concurrent-login","concurrent-sessions","session","user-sessions","https:\u002F\u002Fgithub.com\u002FHandyPlugins\u002Fsessionquota","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsessionquota.1.0.0.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":25,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},10,8380,30,94,"2026-04-04T05:24:09.678Z",[36,58,78,102,120],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":44,"downloaded":45,"rating":46,"num_ratings":47,"last_updated":48,"tested_up_to":14,"requires_at_least":49,"requires_php":16,"tags":50,"homepage":56,"download_link":57,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"wp-persistent-login","Persistent Login","3.0.3","lukeseager","https:\u002F\u002Fprofiles.wordpress.org\u002Flukeseager\u002F","\u003Cp>Persistent Login keeps users logged into your website, limits the number of active logins allowed at one time and alerts users of new devices logging into their account.\u003C\u002Fp>\n\u003Ch3>Persistent Login: Keep wordpress users logged in forever\u003C\u002Fh3>\n\u003Cp>Persistent Login keeps users logged into your website unless they explicitly choose to log-out. It allows you to limit the number of active logins each user can have, and it alerts users of logins from new devices.\u003C\u002Fp>\n\u003Cp>Persistent Login requires little set-up, just install and save your users time by keeping them logged into your website securely, avoiding the annoyance of forgetting usernames & passwords.\u003C\u002Fp>\n\u003Cp>For added security, users can visit their Profile page in the WP Admin area to see how many sessions they have, what device was used and when they were last active. The user can choose to end any session with the click of a button.\u003C\u002Fp>\n\u003Ch3>Persistent Login\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Selects the ‘Remember Me’ box by default.\n\u003Cul>\n\u003Cli>If left checked, users will be kept logged in for 1 year\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Each time a user revisits your website, their login is extended to 1 year again\u003C\u002Fli>\n\u003Cli>Dashboard stats show you how many users are being kept logged in\u003C\u002Fli>\n\u003Cli>Force log-out all users with the click of a button\u003C\u002Fli>\n\u003Cli>Users can manage their active sessions from the Profile page in the admin area\u003C\u002Fli>\n\u003Cli>Support for common plugins out of the box\u003C\u002Fli>\n\u003Cli>Secure, fast and simple to use!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Active Logins\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Option to limit the number of active logins to 1 per user\u003C\u002Fli>\n\u003Cli>New logins can be blocked, or the users oldest login ended automatically\u003C\u002Fli>\n\u003Cli>Manage your own active logins from your Profile page in WP Admin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Login History\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Notify users of logins from new devices for improved security\u003C\u002Fli>\n\u003Cli>Set your own email notification message that is sent to users\u003C\u002Fli>\n\u003Cli>Allow users to see their login history from their Profile page in WP Admin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Top Tip\u003C\u002Fh3>\n\u003Cp>Once the plugin is installed, click the \u003Cstrong>End all Sessions\u003C\u002Fstrong> button from the Persistent Login settings page to encourage users to login again and be kept logged in forever!\u003C\u002Fp>\n\u003Ch3>Note\u003C\u002Fh3>\n\u003Cp>This plugin honours the ‘Remember Me’ checkbox. It is checked by default, but if it is unchecked the user won’t be remembered.\u003C\u002Fp>\n\u003Ch3>Premium Version\u003C\u002Fh3>\n\u003Cp>There is a premium version of the plugin for those who want more control. Visit \u003Ca href=\"https:\u002F\u002Fpersistentlogin.com\" rel=\"nofollow ugc\">persistentlogin.com\u003C\u002Fa> to learn more.\u003C\u002Fp>\n\u003Cp>The premium plan offers the following features:\u003C\u002Fp>\n\u003Cp>Premium Persistent Login Features\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Hide the ‘Remember Me’ checkbox, so that users are always remembered\u003C\u002Fli>\n\u003Cli>Manage which user roles have persistent login\u003C\u002Fli>\n\u003Cli>Set how long users are kept logged in for (up to 400 days)\u003C\u002Fli>\n\u003Cli>Session management for users: Users can see all logins with Block Editor and Shortcode support\u003C\u002Fli>\n\u003Cli>Session management for admins: End any users session from the admin area quickly and easily\u003C\u002Fli>\n\u003Cli>Priority Support direct from within WP admin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Premium Active Login Features\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Control which roles have active login limits applied\u003C\u002Fli>\n\u003Cli>Select exactly how many active logins users are allowed\u003C\u002Fli>\n\u003Cli>When the limit is reached: Auto-logout oldest login, let the user decide which session to end, or block the login.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Premium Login History Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Allow users to see their login history on the front-end with Block and Shortcode support.\u003C\u002Fli>\n\u003Cli>Account inavctivity emails: Notify users after a period of time without logging in.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Stop users being logged out of WordPress\u003C\u002Fh3>\n\u003Cp>Stop users being logged out of WordPress with Persistent Login plugin. Ensure extended login sessions, reduce frustration for administrators and visitors. By keeping users active, Persistent Login improves user experience, lowers bounce rates, and prevents disruptions.\u003C\u002Fp>\n\u003Cp>This plugin integrates seamlessly with WordPress to optimise session management without compromising security. Configure your preferences and let the plugin handle everything. You can customise durations for persistent logins and minimise repeated authentication prompts.\u003C\u002Fp>\n\u003Cp>Ultimately, this tool streamlines WordPress operations, ensures convenience, and provides peace of mind. Stop users being logged out of WordPress by installing  today and gain uninterrupted access to your website.\u003C\u002Fp>\n","Persistent Login keeps users logged into your website, limits the number of active logins allowed at one time and alerts users of new devices logging  &hellip;",7000,118900,78,25,"2026-02-08T07:41:00.000Z","5.0",[51,52,53,54,55],"active-logins","concurrent-logins","login","session-management","sessions","https:\u002F\u002Fpersistentlogin.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-persistent-login.3.0.3.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":11,"num_ratings":11,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":71,"tags":72,"homepage":75,"download_link":76,"security_score":77,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"wp-redis-user-session-storage","Redis User Session Storage","0.2","Erick Hitter","https:\u002F\u002Fprofiles.wordpress.org\u002Fethitter\u002F","\u003Cp>Store WordPress user session tokens in Redis rather than the usermeta table.\u003C\u002Fp>\n\u003Cp>This plugin was previously known as \u003Ccode>WP Redis User Session Storage\u003C\u002Fcode> and was renamed to comply with WordPress.org naming constraints. The previous class name is aliased to support existing extensions.\u003C\u002Fp>\n","Store WordPress session tokens in Redis rather than the usermeta table.",200,8962,"2022-07-16T22:26:00.000Z","6.0.11","4.0","5.6",[73,74,22],"session-storage","session-tokens","https:\u002F\u002Fethitter.com\u002Fplugins\u002Fredis-user-session-storage\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-redis-user-session-storage.0.2.zip",85,{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":33,"num_ratings":88,"last_updated":89,"tested_up_to":14,"requires_at_least":90,"requires_php":16,"tags":91,"homepage":97,"download_link":98,"security_score":99,"vuln_count":100,"unpatched_count":11,"last_vuln_date":101,"fetched_at":27},"inactive-logout","Inactive Logout","3.6.1","Deepen Bajracharya","https:\u002F\u002Fprofiles.wordpress.org\u002Fj_3rk\u002F","\u003Cp>Protect your WordPress users’ sessions from prying eyes and snoopers!\u003C\u002Fp>\n\u003Cp>The Inactive Logout plugin automatically terminates idle user sessions, safeguarding your site if users leave their sessions unattended.\u003C\u002Fp>\n\u003Cp>A simple plugin which is easy to configure and use. After installing and activating it, just set the idle timeout from the plugin settings. From then on, any unattended idle WordPress sessions will be automatically terminated. You can also display a custom message to users, warning them that their session is about to end.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Try it out ==> \u003Ca href=\"https:\u002F\u002Ftastewp.org\u002Fplugins\u002Finactive-logout\u002F\" title=\"Demo Link\" rel=\"nofollow ugc\">Demo\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>FEATURES:\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Change idle timeout time.\u003C\u002Fli>\n\u003Cli>Count down of 10 seconds before actual logout. You can remove this feature if you dont want it.\u003C\u002Fli>\n\u003Cli>Add only \u003Cstrong>Wake Up!\u003C\u002Fstrong> message where user will not logout but instead a wakeup message will be shown upon inactive.\u003C\u002Fli>\n\u003Cli>Custom Popup Message.\u003C\u002Fli>\n\u003Cli>Show idle message for non authenticated users or redirect them.\u003C\u002Fli>\n\u003Cli>Concurrent user logouts.\u003C\u002Fli>\n\u003Cli>Toast notification on Logout.\u003C\u002Fli>\n\u003Cli>Redirect to a Different Page instead of Popup box. Create a page such as timeout page and add your content there by creating a blank template or style it as you wish according to your theme.\u003C\u002Fli>\n\u003Cli>Multiple User Role Configurations for individual timeout and session logout redirects.\u003C\u002Fli>\n\u003Cli>Logout to custom page or existing page.\u003C\u002Fli>\n\u003Cli>Clean UI\u003C\u002Fli>\n\u003Cli>WooCommerce Supported.\u003C\u002Fli>\n\u003Cli>Multisite Support: Override all sites with one setting.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>EXTEND OTHER FEATURES:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Few of the key features to \u003Cstrong>\u003Ca href=\"https:\u002F\u002Finactive-logout.com\u002Fpricing\u002F\" title=\"Inactive Logout Pro\" rel=\"nofollow ugc\">Inactive Logout Pro\u003C\u002Fa>\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Auto browser close logout after defined duration.\u003C\u002Fli>\n\u003Cli>Fully functional multi-tab support.\u003C\u002Fli>\n\u003Cli>User Based Logout\u003C\u002Fli>\n\u003Cli>Track Visitors based on \u003Cstrong>(Login time, logout time, browser, online status, session duration, role, os, IP)\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Force Logout All Users\u003C\u002Fli>\n\u003Cli>Logout Specific User(s)\u003C\u002Fli>\n\u003Cli>Bulk Logout Users\u003C\u002Fli>\n\u003Cli>Concurrent Login Limits.\u003C\u002Fli>\n\u003Cli>Last Login Activity\u003C\u002Fli>\n\u003Cli>Override Multiple Login priority\u003C\u002Fli>\n\u003Cli>User Lock whenever certain limit login has been reached.\u003C\u002Fli>\n\u003Cli>Track user login sessions.\u003C\u002Fli>\n\u003Cli>Logout redirects.\u003C\u002Fli>\n\u003Cli>Login redirects.\u003C\u002Fli>\n\u003Cli>Email notification and email template overrides for Locked concurrent session.\u003C\u002Fli>\n\u003Cli>Disable inactive logout for specified pages according to your need. Check this \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgist.github.com\u002Ftechies23\u002F6d2852eedd6ae56c486056e021e4ee48\" title=\"documentation\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fstrong> for additional post type support.\u003C\u002Fli>\n\u003Cli>Disable native wordpress login popup after logout\u003C\u002Fli>\n\u003Cli>Modal Customizer\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>**See the \u003Ca href=\"https:\u002F\u002Finactive-logout.com\u002F\" title=\"Inactive Logout\" rel=\"nofollow ugc\">Inactive Logout\u003C\u002Fa> homepage for further information.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Please consider giving a \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Finactive-logout\u002Freviews\u002F#new-post\" title=\"5 star thumbs up\" rel=\"ugc\">5 star thumbs up\u003C\u002Fa> if you found this useful.\u003C\u002Fstrong>\u003C\u002Fp>\n","Automatically logout idle user sessions, with logout redirections and concurrent limit logins all in one place.",20000,656143,106,"2025-12-09T05:09:00.000Z","6.6",[92,93,94,95,96],"concurrent-login-limit","idle-logout","logout","security","user-redirection","https:\u002F\u002Finactive-logout.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finactive-logout.3.6.1.zip",96,3,"2025-10-31 13:27:51",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":110,"downloaded":111,"rating":112,"num_ratings":113,"last_updated":114,"tested_up_to":14,"requires_at_least":115,"requires_php":16,"tags":116,"homepage":118,"download_link":119,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"wp-native-php-sessions","Native PHP Sessions","1.4.5","Pantheon Systems","https:\u002F\u002Fprofiles.wordpress.org\u002Fgetpantheon\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Ftravis-ci.org\u002Fpantheon-systems\u002Fwp-native-php-sessions\" rel=\"nofollow ugc\">\u003C\u002Fa> \u003Ca href=\"https:\u002F\u002Fcircleci.com\u002Fgh\u002Fpantheon-systems\u002Fwp-native-php-sessions\u002Ftree\u002Fmaster\" rel=\"nofollow ugc\">\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>WordPress core does not use PHP sessions, but sometimes they are required by your use-case, a plugin or theme.\u003C\u002Fp>\n\u003Cp>This plugin implements PHP’s native session handlers, backed by the WordPress database. This allows plugins, themes, and custom code to safely use PHP \u003Ccode>$_SESSION\u003C\u002Fcode>s in a distributed environment where PHP’s default tempfile storage just won’t work.\u003C\u002Fp>\n\u003Cp>Note that primary development is on GitHub if you would like to contribute:\u003C\u002Fp>\n\u003Cp>https:\u002F\u002Fgithub.com\u002Fpantheon-systems\u002Fwp-native-php-sessions\u003C\u002Fp>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Cp>By default the session lifetime is set to 0, which is until the browser is closed.\u003C\u002Fp>\n\u003Cp>To override this use the \u003Ccode>pantheon_session_expiration\u003C\u002Fcode> filter before the Native PHP Sessions plugin is loaded. For example a small Must-use plugin (a.k.a. mu-plugin) could contain:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php\nfunction my_session_expiration_override() {\n    return 60*60*4; \u002F\u002F 4 hours\n}\nadd_filter( 'pantheon_session_expiration', 'my_session_expiration_override' );\u003Ch3>CLI Commands\u003C\u002Fh3>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>wp pantheon session add-index\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Added in 1.4.0. This command should be run if your installation of the plugin occurred before the addition of the primary ID key to the session table in version 1.2.2. You will be automatically notified when you visit any admin page if this is the case. If there’s no message, your version is good to go. Note that this command is non-destructive, a new table will be created and the existing one preserved in a backup state until you have verified that the upgrade is functioning as expected.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>wp pantheon session primary-key-finalize\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Added in 1.4.0. If you have run the \u003Ccode>add-index\u003C\u002Fcode> command and have verified that the new table is functioning correctly, running the \u003Ccode>primary-key-finalize\u003C\u002Fcode> command will perform a database cleanup and remove the backup table.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>wp pantheon session primary-key-revert\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Added in 1.4.0. If you have run the \u003Ccode>add-index\u003C\u002Fcode> command and something unexpected has occurred, just run the \u003Ccode>primary-key-revert\u003C\u002Fcode> command and the backup table will immediately be returned to being the active table.\u003C\u002Fp>\n\u003Ch4>WordPress Multisite\u003C\u002Fh4>\n\u003Cp>As of 1.4.2 the \u003Ccode>add-index\u003C\u002Fcode>, \u003Ccode>primary-key-add\u003C\u002Fcode> and \u003Ccode>primary-key-revert\u003C\u002Fcode> commands are fully multisite compatible.\u003C\u002Fp>\n\u003Ch3>Contributing\u003C\u002Fh3>\n\u003Cp>See \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpantheon-systems\u002Fwp-native-php-sessions\u002Fblob\u002Fmain\u002FCONTRIBUTING.md\" rel=\"nofollow ugc\">CONTRIBUTING.md\u003C\u002Fa> for information on contributing.\u003C\u002Fp>\n\u003Ch3>Troubleshooting\u003C\u002Fh3>\n\u003Cp>If you see an error like “Fatal error: session_start(): Failed to initialize storage module:” or “Warning: ini_set(): A session is active.”, then you likely have a plugin that is starting a session before WP Native PHP Sessions is loading.\u003C\u002Fp>\n\u003Cp>To fix, create a new file at \u003Ccode>wp-content\u002Fmu-plugins\u002F000-loader.php\u003C\u002Fcode> and include the following:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php\nif (file_exists(WP_PLUGIN_DIR . '\u002Fwp-native-php-sessions\u002Fpantheon-sessions.php')) {\n    require_once WP_PLUGIN_DIR . '\u002Fwp-native-php-sessions\u002Fpantheon-sessions.php';\n}\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>This mu-plugin will load WP Native PHP Sessions before all other plugins, while letting you still use the WordPress plugin updater to keep the plugin up-to-date.\u003C\u002Fp>\n","Use native PHP sessions and stay horizontally scalable. Better living through superior technology.",10000,1319188,98,16,"2025-12-04T16:13:00.000Z","5.3",[117,55],"comments","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-native-php-sessions\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-native-php-sessions.1.4.5.zip",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":112,"num_ratings":130,"last_updated":131,"tested_up_to":14,"requires_at_least":49,"requires_php":16,"tags":132,"homepage":135,"download_link":136,"security_score":137,"vuln_count":138,"unpatched_count":11,"last_vuln_date":139,"fetched_at":27},"loggedin","Loggedin – Limit Concurrent Sessions","2.0.4","Joel James","https:\u002F\u002Fprofiles.wordpress.org\u002Fjoelcj91\u002F","\u003Cp>Loggedin is a lightweight WordPress plugin that lets you easily limit the number of simultaneous active sessions a user can have. This is a crucial feature for membership sites, online courses, and other platforms where you need to prevent users from sharing their accounts.\u003C\u002Fp>\n\u003Ch3>🎁 Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Set Global Limits\u003C\u002Fstrong>: Define a maximum number of concurrent logins for all users.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Flexible Login Behavior\u003C\u002Fstrong>: Choose to either block new logins when the limit is reached or automatically log out the oldest session to allow a new one.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Prevent Account Sharing\u003C\u002Fstrong>: By limiting sessions, you can effectively stop users from sharing their login credentials with others.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin Control\u003C\u002Fstrong>: Easily force log out a user from the admin dashboard, giving you full control over active sessions.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Developer-Friendly\u003C\u002Fstrong>: The plugin is built with a hook-based architecture, making it highly customizable and extensible for developers.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>📦 Addons\u003C\u002Fh3>\n\u003Cp>Enhance LoggedIn’s functionality with these simple yet powerful \u003Ca href=\"https:\u002F\u002Fduckdev.com\u002Faddons\u002Floggedin\u002F\" rel=\"nofollow ugc\">add-ons\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fduckdev.com\u002Faddon\u002Flimit-per-user\u002F\" rel=\"nofollow ugc\">Limit Per User\u003C\u002Fa>\u003C\u002Fstrong>: For more granular control, the Limit Per User addon allows you to set specific login limits for individual users, overriding the global settings. This is perfect for offering different tiers of access or special privileges.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fduckdev.com\u002Faddon\u002Freal-time-logout\u002F\" rel=\"nofollow ugc\">Real-time Logout\u003C\u002Fa>\u003C\u002Fstrong>: This add-on ensures a truly seamless experience by checking for logouts in real time. When a user’s session is terminated in the background due to a login limit, the add-on will automatically refresh their page, instantly restricting access.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🐛 Bug Reports\u003C\u002Fh3>\n\u003Cp>Found a bug? We welcome your bug reports! Please report any issues directly on the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FJoel-James\u002Floggedin\u002Fissues\" rel=\"nofollow ugc\">Loggedin GitHub repository\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cem>Please note: GitHub is for bug reports and development-related issues only. For support, please use the WordPress.org support forums.\u003C\u002Fem>\u003C\u002Fp>\n","Lightweight plugin that limits an account to a specific number of concurrent logins.",8000,115897,110,"2026-01-02T06:30:00.000Z",[133,53,94,55,134],"limit","user-login","https:\u002F\u002Fduckdev.com\u002Fproducts\u002Floggedin-limit-active-logins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Floggedin.2.0.4.zip",99,1,"2024-09-30 19:43:37",{"attackSurface":141,"codeSignals":184,"taintFlows":194,"riskAssessment":195,"analyzedAt":198},{"hooks":142,"ajaxHandlers":180,"restRoutes":181,"shortcodes":182,"cronEvents":183,"entryPointCount":11,"unprotectedCount":11},[143,149,153,157,162,166,169,173,177],{"type":144,"name":145,"callback":146,"file":147,"line":148},"action","admin_menu","add_admin_menu","includes\\Admin\\Settings.php",38,{"type":144,"name":150,"callback":151,"file":147,"line":152},"admin_enqueue_scripts","enqueue_admin_assets",39,{"type":144,"name":154,"callback":155,"file":147,"line":156},"admin_init","register_settings",40,{"type":158,"name":159,"callback":160,"priority":30,"file":161,"line":99},"filter","wp_authenticate_user","enforce_limit","includes\\Core\\Engine\\SessionEnforcer.php",{"type":144,"name":163,"callback":164,"priority":165,"file":161,"line":112},"set_auth_cookie","enforce_on_auth_cookie",20,{"type":158,"name":167,"callback":168,"priority":30,"file":161,"line":25},"send_auth_cookies","maybe_prevent_auth_cookie_send",{"type":158,"name":170,"callback":171,"priority":30,"file":161,"line":172},"wp_login_errors","maybe_add_blocked_login_wp_error",102,{"type":144,"name":174,"callback":175,"file":176,"line":99},"admin_notices","anonymous","sessionquota.php",{"type":144,"name":178,"callback":175,"file":176,"line":179},"plugins_loaded",186,[],[],[],[],{"dangerousFunctions":185,"sqlUsage":186,"outputEscaping":188,"fileOperations":11,"externalRequests":11,"nonceChecks":11,"capabilityChecks":100,"bundledLibraries":193},[],{"prepared":11,"raw":11,"locations":187},[],{"escaped":165,"rawEcho":138,"locations":189},[190],{"file":147,"line":191,"context":192},284,"raw output",[],[],{"summary":196,"deductions":197},"The 'sessionquota' plugin version 1.0.0 presents a generally positive security posture based on the provided static analysis. The absence of any AJAX handlers, REST API routes, shortcodes, or cron events indicates a very limited attack surface, and importantly, no unprotected entry points were identified. The code also demonstrates good practices in utilizing prepared statements for all SQL queries and properly escaping a high percentage of its output.  Furthermore, the plugin has no recorded vulnerability history, including no known CVEs, which is a significant strength.",[],"2026-03-17T06:46:55.541Z",{"wat":200,"direct":209},{"assetPaths":201,"generatorPatterns":204,"scriptPaths":205,"versionParams":206},[202,203],"\u002Fwp-content\u002Fplugins\u002Fsessionquota\u002Fassets\u002Fbuild\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fsessionquota\u002Fassets\u002Fbuild\u002Fadmin.js",[],[203],[207,208],"sessionquota\u002Fassets\u002Fbuild\u002Fadmin.css?ver=","sessionquota\u002Fassets\u002Fbuild\u002Fadmin.js?ver=",{"cssClasses":210,"htmlComments":211,"htmlAttributes":212,"restEndpoints":213,"jsGlobals":214,"shortcodeOutput":215},[],[],[],[],[5],[]]