[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fpkQB1rPmFKiUpEIgWaAfnvqlxoUHSh9OtpWhUr4UEOE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":16,"requires_php":16,"tags":17,"homepage":16,"download_link":21,"security_score":22,"vuln_count":23,"unpatched_count":23,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":33,"analysis":34,"fingerprints":128},"smart-wp-login","Smart WP Login","1.0.2","Nishant Kumar","https:\u002F\u002Fprofiles.wordpress.org\u002Fnishant_kumar\u002F","\u003Cp>Smart WP Login allows you to configure default WordPress Login, Registration or\u003Cbr \u002F>\nPassword Reset system to work with email and not username. You can enable this\u003Cbr \u002F>\nfeature individually on Login, Registration or Retrieve Password. So you can make\u003Cbr \u002F>\nonly \u003Cstrong>Login using Email\u003C\u002Fstrong>, \u003Cstrong>Registration using Email\u003C\u002Fstrong> or \u003Cstrong>Retrieve Password\u003Cbr \u002F>\nusing Email\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Enables you to use email instead of username to login, register or retrieve\u003Cbr \u002F>\npassword.\u003C\u002Fli>\n\u003Cli>Removes username field from WordPress login.\u003C\u002Fli>\n\u003Cli>Removes username field from WordPress registration.\u003C\u002Fli>\n\u003Cli>When using Login with Email, it changes the default WordPress login error and\u003Cbr \u002F>\ndoesn’t show username in error message.\u003C\u002Fli>\n\u003Cli>You can also change login, registration and retrieve password related message.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Note\u003C\u002Fh4>\n\u003Cp>Smart WP Login generates username automatically. Please see our FAQ section to\u003Cbr \u002F>\nlearn how it generates username.\u003C\u002Fp>\n","remove username, login, registration, password, authentication, wp-login, email, smart Requires at least: 3.1.0 Tested up to: 4.2.2 Stable tag: 1.0.",100,8319,60,4,"2015-06-19T07:19:00.000Z","",[18,19,20],"login-using-email","registration-using-email","retrieve-password-using-email","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsmart-wp-login.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":28,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":11,"avg_security_score":22,"avg_patch_time_days":30,"trust_score":31,"computed_at":32},"nishant_kumar",1,30,84,"2026-04-04T14:14:45.380Z",[],{"attackSurface":35,"codeSignals":105,"taintFlows":117,"riskAssessment":118,"analyzedAt":127},{"hooks":36,"ajaxHandlers":101,"restRoutes":102,"shortcodes":103,"cronEvents":104,"entryPointCount":23,"unprotectedCount":23},[37,43,48,52,57,61,65,69,72,76,79,83,85,88,93,97],{"type":38,"name":39,"callback":40,"priority":41,"file":42,"line":30},"filter","authenticate","callback_Authenticate",20,"swpl_engine.php",{"type":44,"name":45,"callback":46,"file":42,"line":47},"action","login_form_login","callback_LoginFormLogin",33,{"type":44,"name":49,"callback":50,"file":42,"line":51},"login_form_register","callback_LoginFormRegister",40,{"type":38,"name":53,"callback":54,"priority":55,"file":42,"line":56},"registration_errors","callback_RegistrationErrors",10,43,{"type":44,"name":58,"callback":59,"file":42,"line":60},"login_head","callback_LoginHead",54,{"type":44,"name":62,"callback":63,"file":42,"line":64},"login_footer","callback_LoginFooter",55,{"type":44,"name":66,"callback":67,"file":42,"line":68},"login_form_lostpassword","callback_LoginFormLostPassword",61,{"type":44,"name":70,"callback":67,"file":42,"line":71},"login_form_retrievepassword",62,{"type":38,"name":73,"callback":74,"priority":41,"file":42,"line":75},"gettext","callback_LoginFormGettext",131,{"type":38,"name":73,"callback":77,"priority":41,"file":42,"line":78},"callback_RegisterGettext",186,{"type":44,"name":80,"callback":81,"file":42,"line":82},"lost_password","callback_LostPassword",268,{"type":44,"name":80,"callback":81,"file":42,"line":84},273,{"type":38,"name":73,"callback":86,"priority":41,"file":42,"line":87},"callback_LostPasswordGettext",280,{"type":44,"name":89,"callback":90,"file":91,"line":92},"admin_enqueue_scripts","adminEnqueueStyle","swpl_settings.php",49,{"type":44,"name":94,"callback":95,"file":91,"line":96},"admin_menu","constructMenu",51,{"type":44,"name":98,"callback":99,"file":91,"line":100},"admin_init","registerSettings",53,[],[],[],[],{"dangerousFunctions":106,"sqlUsage":107,"outputEscaping":109,"fileOperations":23,"externalRequests":23,"nonceChecks":23,"capabilityChecks":23,"bundledLibraries":116},[],{"prepared":23,"raw":23,"locations":108},[],{"escaped":110,"rawEcho":110,"locations":111},2,[112,115],{"file":91,"line":113,"context":114},402,"raw output",{"file":91,"line":113,"context":114},[],[],{"summary":119,"deductions":120},"The \"smart-wp-login\" v1.0.2 plugin exhibits a generally strong security posture based on the provided static analysis.  The absence of any identified dangerous functions, raw SQL queries, file operations, or external HTTP requests is commendable.  The plugin also reports zero known vulnerabilities, which suggests a good track record. However, there are a few areas that warrant attention. The complete lack of nonce checks and capability checks across all entry points is a significant concern, as these are fundamental WordPress security mechanisms for preventing CSRF attacks and enforcing permissions. Furthermore, the 50% rate of improperly escaped output, while not catastrophic, could expose users to XSS vulnerabilities if the unescaped data originates from user input.  The zero taint flows and attack surface are positive but don't fully mitigate the risks associated with missing core security checks.",[121,123,125],{"reason":122,"points":55},"No nonce checks on entry points",{"reason":124,"points":55},"No capability checks on entry points",{"reason":126,"points":14},"50% of outputs not properly escaped","2026-03-16T21:05:10.862Z",{"wat":129,"direct":138},{"assetPaths":130,"generatorPatterns":133,"scriptPaths":134,"versionParams":135},[131,132],"\u002Fwp-content\u002Fplugins\u002Fsmart-wp-login\u002Fassets\u002Fcss\u002Fsmart-wp-login.css","\u002Fwp-content\u002Fplugins\u002Fsmart-wp-login\u002Fassets\u002Fjs\u002Fsmart-wp-login.js",[],[132],[136,137],"smart-wp-login\u002Fassets\u002Fcss\u002Fsmart-wp-login.css?ver=","smart-wp-login\u002Fassets\u002Fjs\u002Fsmart-wp-login.js?ver=",{"cssClasses":139,"htmlComments":142,"htmlAttributes":143,"restEndpoints":145,"jsGlobals":146,"shortcodeOutput":148},[140,141],"swpl-login-form-wrap","swpl-login-form-inner",[],[144],"data-swpl-login-options",[],[147],"swpl_login_object",[]]