[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f5_Gjd-szIrlIQ1AkCuPgIdEks1V1WnaRfj5LZ8rVTm0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":39,"analysis":143,"fingerprints":370},"sign-in-with-essentials","Sign In With Socials (Google, Apple, Microsoft)","1.4.41","Puvox Software","https:\u002F\u002Fprofiles.wordpress.org\u002Fpuvoxsoftware\u002F","\u003Cp>Allow users to login with Google\u002FMicrosoft\u002FApple accounts. Lightweight, no bloatware packages included.\u003Cbr \u002F>\nUseful for sites that need a quick way for their users to sign-in.\u003C\u002Fp>\n\u003Ch4>Available Options\u003C\u002Fh4>\n\u003Cp>See all available options and their description on plugin’s settings page. Here are some of them:\u003Cbr \u002F>\n* Show\u002FHide the “Sign In with” button on the login form\u003Cbr \u002F>\n* If a user is not already registered, during sign-in an account can be created for that email address (aliases are not allowed by default)\u003Cbr \u002F>\n* If a user is already logged in to target social provider, they will be automatically redirected without much fuss\u003Cbr \u002F>\n* Restrict users to be coming from only specific domain(s)\u003Cbr \u002F>\n* Connect existing user accounts.\u003Cbr \u002F>\n* WP-CLI available! See \u003Ccode>\u002Fsrc\u002Fincludes\u002Fclass-wp-cli.php\u003C\u002Fcode> header for supported list.\u003Cbr \u002F>\n* One redirect-back link \u003Ccode>https:\u002F\u002FYOURDOMAIN.TLD\u002F_AUTH_RESPONSE_SIWE_\u003C\u002Fcode> for all providers.\u003C\u002Fp>\n\u003Ch4>Programmatic access\u003C\u002Fh4>\n\u003Cp>Public functions:\u003Cbr \u002F>\n* \u003Ccode>siwe_authenticate_user($code, $state, $error = null)\u003C\u002Fcode>\u003Cbr \u002F>\n* \u003Ccode>siwe_get_auth_url()\u003C\u002Fcode>\u003Cbr \u002F>\n* \u003Ccode>siwe_get_buttons()\u003C\u002Fcode>\u003C\u002Fp>\n\u003Cp>Hooks:\u003Cbr \u002F>\n* dozens of hooks, look into any source file to find out specific part\u003C\u002Fp>\n","Adds functionality \"Sign in with\" Google\u002FMicrosoft\u002FApple (beta version)",60,1728,100,1,"2025-04-05T12:11:00.000Z","6.7.5","6.0","7.0",[20,21,22,23,24],"apple","google","login","microsoft","register","https:\u002F\u002Fwww.github.com\u002Fpuvox\u002Fsign-in-with-essentials","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsign-in-with-essentials.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"puvoxsoftware",16,51190,94,540,75,"2026-04-04T14:19:06.523Z",[40,63,84,102,119],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":27,"num_ratings":27,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":60,"download_link":61,"security_score":62,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"addonify-recaptcha-for-edd","Addonify – reCaptcha For EDD","1.0.14","Addonify","https:\u002F\u002Fprofiles.wordpress.org\u002Faddonify\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Faddonify.com\u002F\" rel=\"nofollow ugc\">Addonify reCAPTCHA For EDD\u003C\u002Fa> is a simple plugin that adds Google reCaptcha in Easy Digital Downloads login and registration forms. Enable reCaptcha from Dashboard > EDD Setting > reCaptcha.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>FEATURES:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>✅ Add Google reCaptcha v2 in EDD login forms.\u003Cbr \u002F>\n✅ Add Google reCaptcha v2 in EDD register forms.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>KNOWN LIMITATIONS:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>❌ We have not tested this plugin in WP Multisite.\u003Cbr \u002F>\n❌ EDD login submit button is clickable even without passing reCaptcha validation.\u003Cbr \u002F>\n❌ EDD registration submit button is clickable even without passing reCaptcha validation.\u003Cbr \u002F>\n❌ Only supports Google reCaptcha v2 no-robot checkbox.\u003C\u002Fp>\n","Addonify reCAPTCHA for EDD is a simple plugin that adds Google reCaptcha in Easy Digital Downloads login and registration forms.",70,4468,"2025-03-25T05:31:00.000Z","6.8.5","5.0","7.4.0",[55,56,57,58,59],"edd-recaptcha","google-recaptcha","login-recaptcha","recaptcha","register-recaptcha","https:\u002F\u002Faddonify.com\u002Fdownloads\u002Frecaptcha-for-edd","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Faddonify-recaptcha-for-edd.1.0.14.zip",92,{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":71,"downloaded":72,"rating":27,"num_ratings":27,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":76,"tags":77,"homepage":82,"download_link":83,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"thinkcaptcha","ThinkCaptcha – Login Captcha, Register Captcha & Checkout reCAPTCHA","1.1.6","ThinkPlugin","https:\u002F\u002Fprofiles.wordpress.org\u002Fthinkplugin\u002F","\u003Cp>\u003Cstrong>Enhance Your Website’s Login Security with the Power of Google reCAPTCHA\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Are you tired of spam registrations, brute-force login attacks, and junk form submissions?\u003Cbr \u002F>\nThinkCaptcha is the definitive \u003Cstrong>Google reCAPTCHA\u003C\u002Fstrong> plugin for WordPress, designed to provide maximum \u003Cstrong>login security\u003C\u002Fstrong> with a simple and modern interface.\u003Cbr \u002F>\nThinkCaptcha allows you to easily add a \u003Cstrong>login captcha\u003C\u002Fstrong>, \u003Cstrong>register captcha\u003C\u002Fstrong>, and password reset captcha to your most vulnerable forms using Google’s user-friendly “I’m not a robot” checkbox (reCAPTCHA v2).\u003Cbr \u002F>\nThis is the ultimate \u003Cstrong>spam protection\u003C\u002Fstrong> and \u003Cstrong>bot protection\u003C\u002Fstrong> your site needs.\u003Cbr \u002F>\n\u003Cstrong>Free Features for Essential Security:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>WordPress Login Captcha\u003C\u002Fstrong>: Implement a secure \u003Cstrong>login captcha\u003C\u002Fstrong> on your \u003Ccode>\u002Fwp-login.php\u003C\u002Fcode> page to stop brute-force attacks and enhance \u003Cstrong>login security\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce Login Captcha\u003C\u002Fstrong>: Protect your customer accounts by adding a \u003Cstrong>WooCommerce captcha\u003C\u002Fstrong> to the login form.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce Register Captcha\u003C\u002Fstrong>: Stop fake user sign-ups with a robust \u003Cstrong>register captcha\u003C\u002Fstrong> on your WooCommerce registration form.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Password Reset Captcha\u003C\u002Fstrong>: Secure both WordPress and WooCommerce password reset forms from bot abuse.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Optimized for Performance\u003C\u002Fstrong>: The Google reCAPTCHA script loads asynchronously and only on pages where it is needed.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>🚀 Upgrade to ThinkCaptcha Pro for Ultimate Form Security!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Spammers target every form on your site.\u003Cbr \u002F>\nThinkCaptcha Pro extends this powerful \u003Cstrong>reCAPTCHA\u003C\u002Fstrong> protection to create a comprehensive security shield.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>WooCommerce Checkout Captcha\u003C\u002Fstrong>: The best way to prevent fraudulent orders and spam.\u003Cbr \u002F>\nAdd a \u003Cstrong>checkout captcha\u003C\u002Fstrong> to your WooCommerce checkout page.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Contact Form 7 reCAPTCHA\u003C\u002Fstrong>: Our most requested feature!\u003Cbr \u002F>\nAdd a \u003Cstrong>Contact Form 7 reCAPTCHA\u003C\u002Fstrong> to every contact form and eliminate junk mail forever.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WPForms Captcha\u003C\u002Fstrong>: Secure all forms created with WPForms with a powerful \u003Cstrong>WPForms captcha\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Register Captcha\u003C\u002Fstrong>: Block spambots from creating user accounts on your main WordPress registration form with a secure \u003Cstrong>register captcha\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fthinkplugin.com\u002Fthinkcaptcha-pro\u002F\" rel=\"nofollow ugc\">Secure your entire website today. Get ThinkCaptcha Pro Now!\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Third-Party Service Disclosure\u003C\u002Fh3>\n\u003Cp>This plugin connects to the Google reCAPTCHA service to protect forms from bots and spam.\u003Cbr \u002F>\n* \u003Cstrong>Service Used:\u003C\u002Fstrong> Google reCAPTCHA (a service provided by Google LLC).\u003Cbr \u002F>\n* \u003Cstrong>What Data is Sent:\u003C\u002Fstrong> To verify if a user is human, this service collects and sends hardware and software information, such as device and application data, to Google.\u003Cbr \u002F>\nThe user’s IP address is also collected.\u003Cbr \u002F>\n* \u003Cstrong>When Data is Sent:\u003C\u002Fstrong> This data is sent whenever a form protected by this plugin is displayed and submitted.\u003Cbr \u002F>\n* \u003Cstrong>Links to Policies:\u003C\u002Fstrong> The use of the Google reCAPTCHA service is subject to Google’s \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fprivacy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fterms\" rel=\"nofollow ugc\">Terms of Service\u003C\u002Fa>.\u003C\u002Fp>\n","Secure WordPress & WooCommerce forms with Google reCAPTCHA. Stop spam, bots, and brute-force attacks effectively.",40,333,"2025-11-30T10:34:00.000Z","6.9.4","5.5","",[56,78,79,80,81],"login-captcha","register-captcha","security","woocommerce-captcha","https:\u002F\u002Fthinkplugin.com\u002Fthinkcaptcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fthinkcaptcha.1.1.6.zip",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":27,"num_ratings":27,"last_updated":94,"tested_up_to":74,"requires_at_least":95,"requires_php":96,"tags":97,"homepage":100,"download_link":101,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"titan-social-login","Titan Social Login","1.0.2","r0bodev","https:\u002F\u002Fprofiles.wordpress.org\u002Fr0bodev\u002F","\u003Cp>Titan Social Login adds OAuth-based sign-in to WordPress so visitors can use their existing social accounts instead of creating new passwords.\u003C\u002Fp>\n\u003Ch4>Included providers\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Amazon\u003C\u002Fli>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Google\u003C\u002Fli>\n\u003Cli>X (Twitter)\u003C\u002Fli>\n\u003Cli>Microsoft\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Key features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Adds login buttons to the WordPress login, registration, and lost password screens.\u003C\u002Fli>\n\u003Cli>Optional social login on comment forms.\u003C\u002Fli>\n\u003Cli>Account linking inside WordPress user profiles.\u003C\u002Fli>\n\u003Cli>Shortcodes: [tsl_login], [tsl_account_links].\u003C\u002Fli>\n\u003Cli>Popup or same-window authentication, configurable for desktop and mobile.\u003C\u002Fli>\n\u003Cli>Custom redirect after login or first registration.\u003C\u002Fli>\n\u003Cli>Design controls for layout, spacing, labels, and button styles.\u003C\u002Fli>\n\u003Cli>Placeholder emails for providers that do not return an email address.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin uses external OAuth providers for authentication. See the “External Services” section for details.\u003C\u002Fp>\n\u003Ch4>Privacy\u003C\u002Fh4>\n\u003Cp>Titan Social Login does not collect or send any usage telemetry. OAuth requests go directly to the enabled provider during login. The plugin stores its configuration in your WordPress database.\u003C\u002Fp>\n\u003Ch4>Additional features in the Pro version\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>30+ OAuth providers including Apple, Discord, GitHub, Steam, Telegram, Twitch, Spotify, and more.\u003C\u002Fli>\n\u003Cli>Premium integrations for WooCommerce, BuddyPress, Ultimate Member, and Easy Digital Downloads.\u003C\u002Fli>\n\u003Cli>Statistics dashboard to monitor social login performance.\u003C\u002Fli>\n\u003Cli>Premium updates and priority support.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Pro version and pricing: \u003Ca href=\"https:\u002F\u002Ftitan.r0bo.dev\u002F#pro\" rel=\"nofollow ugc\">https:\u002F\u002Ftitan.r0bo.dev\u002F#pro\u003C\u002Fa>\u003Cbr \u002F>\nDemo: \u003Ca href=\"https:\u002F\u002Ftitan.r0bo.dev\u002Fwp-login.php\" rel=\"nofollow ugc\">https:\u002F\u002Ftitan.r0bo.dev\u002Fwp-login.php\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>Titan Social Login connects to third-party OAuth providers to authenticate users. Requests are made only when an administrator enables a provider and a user clicks a login button.\u003C\u002Fp>\n\u003Cp>Data sent during OAuth:\u003Cbr \u002F>\n– Authorization request: client_id, redirect_uri, response_type, scope, state\u003Cbr \u002F>\n– Token exchange: code, client_id, client_secret (if required), redirect_uri\u003Cbr \u002F>\n– Profile request: access_token\u003C\u002Fp>\n\u003Cp>Data received from providers:\u003Cbr \u002F>\n– Provider user ID, name, email address, and profile picture (when available)\u003C\u002Fp>\n\u003Cp>Services used:\u003Cbr \u002F>\n– Google OAuth API (accounts.google.com, oauth2.googleapis.com, www.googleapis.com). Terms: https:\u002F\u002Fpolicies.google.com\u002Fterms Privacy: https:\u002F\u002Fpolicies.google.com\u002Fprivacy\u003Cbr \u002F>\n– Facebook Login (www.facebook.com, graph.facebook.com). Terms: https:\u002F\u002Fwww.facebook.com\u002Flegal\u002Fterms Privacy: https:\u002F\u002Fwww.facebook.com\u002Fprivacy\u002Fpolicy\u003Cbr \u002F>\n– Amazon Login (www.amazon.com, api.amazon.com). Terms: https:\u002F\u002Fwww.amazon.com\u002Fgp\u002Fhelp\u002Fcustomer\u002Fdisplay.html?nodeId=508088 Privacy: https:\u002F\u002Fwww.amazon.com\u002Fgp\u002Fhelp\u002Fcustomer\u002Fdisplay.html?nodeId=468496\u003Cbr \u002F>\n– Microsoft identity platform (login.microsoftonline.com, graph.microsoft.com). Terms: https:\u002F\u002Fwww.microsoft.com\u002Fservicesagreement Privacy: https:\u002F\u002Fprivacy.microsoft.com\u002Fprivacystatement\u003Cbr \u002F>\n– X (Twitter) OAuth 2.0 (twitter.com, api.twitter.com). Terms: https:\u002F\u002Ftwitter.com\u002Fen\u002Ftos Privacy: https:\u002F\u002Ftwitter.com\u002Fen\u002Fprivacy\u003C\u002Fp>\n\u003Cp>No external requests are made unless the provider is enabled and a user initiates login.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>PHP code (and any JS that links to WordPress APIs) is licensed under the GNU General Public License v2.0 or later (GPL-2.0-or-later). See \u002Flicense.txt.\u003Cbr \u002F>\nBrand icons in \u002Fassets\u002Fimages\u002Ficons are trademarks of their respective owners and are included for identification purposes only. See \u002FTHIRD-PARTY-NOTICES.txt.\u003Cbr \u002F>\nTrademarks belong to their respective owners; this plugin is not affiliated with or endorsed by them.\u003C\u002Fp>\n","One-click social login and account linking for Amazon, Facebook, Google, X (Twitter), and Microsoft.",10,111,"2026-01-07T12:49:00.000Z","5.3","7.2",[98,21,22,24,99],"auth","social-login","https:\u002F\u002Ftitan.r0bo.dev","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftitan-social-login.1.0.2.zip",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":27,"downloaded":110,"rating":27,"num_ratings":27,"last_updated":111,"tested_up_to":112,"requires_at_least":113,"requires_php":18,"tags":114,"homepage":116,"download_link":117,"security_score":118,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"kgr-login-with-google","KGR Login with Google","1.2","Konstantinos Raktivan","https:\u002F\u002Fprofiles.wordpress.org\u002Fconstracti\u002F","\u003Cp>Login or register to WP usign Sign In with Google.\u003C\u002Fp>\n","Login or register to WP usign Sign In with Google.",838,"2021-12-06T14:09:00.000Z","5.8.13","3.1.0",[21,22,115,24],"oauth2","https:\u002F\u002Fgithub.com\u002Fconstracti\u002Fkgr-login-with-google","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fkgr-login-with-google.1.2.zip",85,{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":129,"num_ratings":130,"last_updated":131,"tested_up_to":74,"requires_at_least":17,"requires_php":132,"tags":133,"homepage":138,"download_link":139,"security_score":140,"vuln_count":141,"unpatched_count":27,"last_vuln_date":142,"fetched_at":29},"woocommerce-payments","WooPayments: Integrated WooCommerce Payments","10.6.0","WooCommerce","https:\u002F\u002Fprofiles.wordpress.org\u002Fwoocommerce\u002F","\u003Cp>\u003Cstrong>Payments made simple, with no monthly fees – designed exclusively for WooCommerce stores.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Securely accept major credit and debit cards, and allow customers to pay you directly without leaving your WooCommerce store. View and manage transactions from one convenient place – your WordPress dashboard.\u003C\u002Fp>\n\u003Cp>See payments, track cash flow into your bank account, manage refunds, and stay on top of disputes without the hassle of having to log into a separate payment processor.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Manage transactions from the comfort of your store\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Features previously only available on your payment provider’s website are now part of your store’s \u003Cstrong>integrated payments dashboard\u003C\u002Fstrong>. This enables you to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>View the details of \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fdocument\u002Fwoopayments\u002Fmanaging-money\u002F\" rel=\"nofollow ugc\">payments, refunds, and other transactions\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>View and respond to \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fdocument\u002Fwoopayments\u002Ffraud-and-disputes\u002Fmanaging-disputes\u002F\" rel=\"nofollow ugc\">disputes and chargebacks\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fdocument\u002Fwoopayments\u002Fpayouts\u002F\" rel=\"nofollow ugc\">Track payouts\u003C\u002Fa> into your bank account or debit card.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Pay as you go\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>WooPayments is \u003Cstrong>free to install\u003C\u002Fstrong>, with \u003Cstrong>no setup fees or monthly fees\u003C\u002Fstrong>. Our pay-as-you-go pricing model means we’re incentivized to help you succeed! \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fdocument\u002Fwoopayments\u002Ffees\u002F\" rel=\"nofollow ugc\">Read more about transaction fees\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Supported by the WooCommerce team\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Our global support team is available to answer questions you may have about WooPayments installation, setup, or use. For assistance, \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fmy-account\u002Fcontact-support\u002F?select=5278104\" rel=\"nofollow ugc\">open a ticket on woocommerce.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Getting Started\u003C\u002Fh3>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WordPress 6.0 or newer.\u003C\u002Fli>\n\u003Cli>WooCommerce 7.6 or newer.\u003C\u002Fli>\n\u003Cli>PHP 7.3 or newer.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Try it now\u003C\u002Fh4>\n\u003Cp>To try WooPayments (previously WooCommerce Payments) on your store, simply \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce-payments\u002F#installation\" rel=\"ugc\">install it\u003C\u002Fa> and follow the prompts. Please see our \u003Ca href=\"https:\u002F\u002Fwoocommerce.com\u002Fdocument\u002Fwoopayments\u002Fstartup-guide\u002F\" rel=\"nofollow ugc\">Startup Guide\u003C\u002Fa> for a full walkthrough of the process.\u003C\u002Fp>\n","Securely accept credit and debit cards on your WooCommerce store. Manage payments without leaving your WordPress dashboard. Only with WooPayments.",900000,42264155,62,134,"2026-03-11T15:29:00.000Z","7.4",[134,135,136,137,120],"apple-pay","credit-card","google-pay","payment","https:\u002F\u002Fwoocommerce.com\u002Fpayments\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoocommerce-payments.10.6.0.zip",89,7,"2026-03-30 16:13:16",{"attackSurface":144,"codeSignals":230,"taintFlows":288,"riskAssessment":357,"analyzedAt":369},{"hooks":145,"ajaxHandlers":226,"restRoutes":227,"shortcodes":228,"cronEvents":229,"entryPointCount":27,"unprotectedCount":27},[146,153,157,161,166,170,173,176,178,180,182,184,187,190,195,198,201,205,208,210,213,217,220,223],{"type":147,"name":148,"callback":149,"priority":150,"file":151,"line":152},"filter","siwe_get_auth_url_callback","get_auth_url_callback",5,"sign-in-with-essentials.php",144,{"type":147,"name":154,"callback":155,"priority":150,"file":151,"line":156},"siwe_authenticate_user_callback","authenticate_user_callback",145,{"type":147,"name":158,"callback":159,"priority":150,"file":151,"line":160},"siwe_get_signin_buttons","get_signin_buttons",146,{"type":162,"name":163,"callback":164,"file":151,"line":165},"action","plugins_loaded","anonymous",190,{"type":162,"name":167,"callback":164,"file":168,"line":169},"admin_init","src\\class-siwe-admin.php",41,{"type":162,"name":171,"callback":164,"file":168,"line":172},"admin_menu",42,{"type":162,"name":174,"callback":164,"file":168,"line":175},"admin_enqueue_scripts",43,{"type":162,"name":167,"callback":164,"file":168,"line":177},44,{"type":162,"name":167,"callback":164,"file":168,"line":179},45,{"type":162,"name":167,"callback":164,"file":168,"line":181},46,{"type":162,"name":167,"callback":164,"file":168,"line":183},47,{"type":162,"name":185,"callback":164,"file":168,"line":186},"edit_user_profile",48,{"type":162,"name":188,"callback":164,"file":168,"line":189},"show_user_profile",49,{"type":147,"name":191,"callback":192,"priority":193,"file":168,"line":194},"authenticate","closure",1000,564,{"type":162,"name":196,"callback":192,"file":168,"line":197},"admin_print_scripts",660,{"type":162,"name":199,"callback":192,"priority":150,"file":168,"line":200},"personal_options_update",670,{"type":162,"name":202,"callback":164,"file":203,"line":204},"login_enqueue_scripts","src\\class-siwe-public.php",28,{"type":162,"name":206,"callback":164,"file":203,"line":207},"wp_enqueue_scripts",29,{"type":162,"name":202,"callback":164,"file":203,"line":209},30,{"type":162,"name":211,"callback":164,"file":203,"line":212},"login_footer",32,{"type":162,"name":214,"callback":164,"file":215,"line":216},"login_init","src\\includes\\class-siwe-handlers.php",52,{"type":162,"name":218,"callback":164,"file":215,"line":219},"template_redirect",53,{"type":162,"name":221,"callback":164,"file":215,"line":222},"init",54,{"type":147,"name":224,"callback":164,"file":215,"line":225},"login_message",65,[],[],[],[],{"dangerousFunctions":231,"sqlUsage":237,"outputEscaping":239,"fileOperations":14,"externalRequests":282,"nonceChecks":283,"capabilityChecks":141,"bundledLibraries":284},[232],{"fn":233,"file":234,"line":235,"context":236},"assert","src\\includes\\class-siwe-wpcli.php",225,"assert( $value === '1' || $value === '0' , 'value should be 1 or 0' );",{"prepared":27,"raw":27,"locations":238},[],{"escaped":240,"rawEcho":241,"locations":242},50,20,[243,246,248,250,252,254,256,258,260,262,264,266,268,270,272,274,276,278,280,281],{"file":168,"line":244,"context":245},114,"raw output",{"file":168,"line":247,"context":245},121,{"file":168,"line":249,"context":245},133,{"file":168,"line":251,"context":245},147,{"file":168,"line":253,"context":245},160,{"file":168,"line":255,"context":245},172,{"file":168,"line":257,"context":245},184,{"file":168,"line":259,"context":245},201,{"file":168,"line":261,"context":245},236,{"file":168,"line":263,"context":245},248,{"file":168,"line":265,"context":245},287,{"file":168,"line":267,"context":245},306,{"file":168,"line":269,"context":245},313,{"file":168,"line":271,"context":245},327,{"file":168,"line":273,"context":245},331,{"file":168,"line":275,"context":245},471,{"file":168,"line":277,"context":245},513,{"file":168,"line":279,"context":245},602,{"file":168,"line":279,"context":245},{"file":168,"line":279,"context":245},2,3,[285],{"name":286,"version":28,"knownCves":287},"Guzzle",[],[289,308,316,331,344],{"entryPoint":290,"graph":291,"unsanitizedCount":14,"severity":307},"auth_redirect (src\\includes\\class-siwe-handlers.php:75)",{"nodes":292,"edges":304},[293,298],{"id":294,"type":295,"label":296,"file":215,"line":297},"n0","source","$_GET",76,{"id":299,"type":300,"label":301,"file":215,"line":302,"wp_function":303},"n1","sink","wp_redirect() [Open Redirect]",87,"wp_redirect",[305],{"from":294,"to":299,"sanitized":306},false,"medium",{"entryPoint":309,"graph":310,"unsanitizedCount":14,"severity":307},"\u003Cclass-siwe-handlers> (src\\includes\\class-siwe-handlers.php:0)",{"nodes":311,"edges":314},[312,313],{"id":294,"type":295,"label":296,"file":215,"line":297},{"id":299,"type":300,"label":301,"file":215,"line":302,"wp_function":303},[315],{"from":294,"to":299,"sanitized":306},{"entryPoint":317,"graph":318,"unsanitizedCount":27,"severity":330},"process_settings_import (src\\class-siwe-admin.php:520)",{"nodes":319,"edges":327},[320,323],{"id":294,"type":295,"label":321,"file":168,"line":322},"$_FILES",544,{"id":299,"type":300,"label":324,"file":168,"line":325,"wp_function":326},"file_get_contents() [SSRF\u002FLFI]",546,"file_get_contents",[328],{"from":294,"to":299,"sanitized":329},true,"low",{"entryPoint":332,"graph":333,"unsanitizedCount":27,"severity":330},"add_connect_button_to_profile (src\\class-siwe-admin.php:582)",{"nodes":334,"edges":342},[335,338],{"id":294,"type":295,"label":336,"file":168,"line":337},"$_GET (x2)",588,{"id":299,"type":300,"label":339,"file":168,"line":340,"wp_function":341},"echo() [XSS]",600,"echo",[343],{"from":294,"to":299,"sanitized":329},{"entryPoint":345,"graph":346,"unsanitizedCount":27,"severity":330},"\u003Cclass-siwe-admin> (src\\class-siwe-admin.php:0)",{"nodes":347,"edges":354},[348,349,350,352],{"id":294,"type":295,"label":321,"file":168,"line":322},{"id":299,"type":300,"label":324,"file":168,"line":325,"wp_function":326},{"id":351,"type":295,"label":336,"file":168,"line":337},"n2",{"id":353,"type":300,"label":339,"file":168,"line":340,"wp_function":341},"n3",[355,356],{"from":294,"to":299,"sanitized":329},{"from":351,"to":353,"sanitized":329},{"summary":358,"deductions":359},"The \"sign-in-with-essentials\" plugin v1.4.41 exhibits a generally good security posture, with no known vulnerabilities or CVEs recorded. The code analysis reveals strong practices in several areas, including 100% use of prepared statements for SQL queries and a good proportion of output escaping. The presence of nonce and capability checks, along with the bundling of Guzzle (a well-maintained library), further contributes to its robustness. However, there are a few areas that warrant attention. The use of the `assert` function, while potentially not directly exploitable without specific conditions, is considered a dangerous function and can be a vector for unexpected behavior or even security issues in certain contexts. Furthermore, the taint analysis indicates two flows with unsanitized paths, which, despite not being flagged as critical or high severity in this analysis, represent potential points of weakness if an attacker can manipulate input to reach sensitive code or files. The lack of any recorded past vulnerabilities is a positive indicator, suggesting consistent development focus on security, but it's important to remain vigilant with the identified code signals.",[360,362,365,367],{"reason":361,"points":150},"Dangerous function detected: assert",{"reason":363,"points":364},"Taint flow with unsanitized paths detected",8,{"reason":366,"points":283},"File operations detected (potential for misuse)",{"reason":368,"points":283},"External HTTP requests detected (potential for SSRF)","2026-03-16T21:50:48.563Z",{"wat":371,"direct":379},{"assetPaths":372,"generatorPatterns":376,"scriptPaths":377,"versionParams":378},[373,374,375],"\u002Fwp-content\u002Fplugins\u002Fsign-in-with-essentials\u002Fassets\u002Fjs\u002Fsiwe-vendor.js","\u002Fwp-content\u002Fplugins\u002Fsign-in-with-essentials\u002Fassets\u002Fjs\u002Ffrontend.js","\u002Fwp-content\u002Fplugins\u002Fsign-in-with-essentials\u002Fassets\u002Fcss\u002Ffrontend.css",[],[373,374],[],{"cssClasses":380,"htmlComments":385,"htmlAttributes":386,"restEndpoints":389,"jsGlobals":390,"shortcodeOutput":392},[381,382,383,384],"siwe-social-login-button","siwe-apple-login","siwe-google-login","siwe-microsoft-login",[],[387,388],"data-provider","data-nonce",[],[391],"siwe_frontend_params",[]]