[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fptnKONHn7H-WJoehXZ7tZz2Fy8crStJabp_E6_FtTWw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":18,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":38,"analysis":126,"fingerprints":186},"unauthorised-login-redirect","Unauthorised Login Redirect","0.3.9.1","RSimpson","https:\u002F\u002Fprofiles.wordpress.org\u002Frsimpson\u002F","\u003Cp>This plugin allows you to effectively hide your wp-login.php and wp-admin by requiring that you access it via a custom URL of your specification, with every other request being redirected to a different URL of your specification.\u003C\u002Fp>\n","This plugin allows you to effectively hide your wp-login.php and wp-admin by requiring that you access it via a custom URL.",200,5874,86,4,"2023-12-21T03:14:00.000Z","6.4.8","4.3","",[20,21,22,23,24],"login","redirect","security","wp-login","wp-admin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Funauthorised-login-redirect.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":26,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"rsimpson",2,700,30,84,"2026-04-04T02:44:36.211Z",[39,61,78,95,108],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":59,"download_link":60,"security_score":49,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"admin-login-hide-pti","Admin Login Hide – PTI","1.0.3","PTI WebTech","https:\u002F\u002Fprofiles.wordpress.org\u002Fptiwebtech2025\u002F","\u003Cp>\u003Cstrong>Admin Login Hide – PTI\u003C\u002Fstrong> helps protect your WordPress site by hiding or customizing the default login URLs (\u003Ccode>wp-login.php\u003C\u002Fcode> and \u003Ccode>wp-admin\u003C\u002Fcode>). This helps reduce automated bot attacks, brute-force attempts, and unauthorized login access.\u003C\u002Fp>\n\u003Cp>With just a few clicks, you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Change the default login URL to a custom path\u003C\u002Fli>\n\u003Cli>Prevent access to the default \u003Ccode>wp-login.php\u003C\u002Fcode> and \u003Ccode>wp-admin\u003C\u002Fcode> paths\u003C\u002Fli>\n\u003Cli>Improve your site’s overall login security\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Perfect for WordPress users who want a lightweight, easy-to-use security enhancement without needing complex settings or heavy plugins.\u003C\u002Fp>\n","Easily hide or customize your WordPress login URL to enhance security and prevent unauthorized access.",10,347,100,3,"2025-07-01T05:30:00.000Z","6.8.5","5.0","7.2",[56,57,22,24,58],"custom-login-url","hide-login","wp-login-php","https:\u002F\u002Fgithub.com\u002Fptiwebtech\u002Fadmin-login-hide-pti","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-login-hide-pti.1.0.3.zip",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":47,"downloaded":69,"rating":27,"num_ratings":27,"last_updated":70,"tested_up_to":71,"requires_at_least":72,"requires_php":73,"tags":74,"homepage":76,"download_link":77,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"swiftninjapro-wp-login-whitelist-ip","WP-Login and WP-Admin Whitelist","1.11.1","SwiftNinjaPro","https:\u002F\u002Fprofiles.wordpress.org\u002Fswiftninjapro\u002F","\u003Cp>A Plugin That only allows whitelisted IP’s, or optionally whitelisted browsers, to access wp-login.\u003Cbr \u002F>\nThis plugin does Not effect front-end login plugins.\u003Cbr \u002F>\nIf an IP is not whitelisted, the wp-login page will be killed and replaced with a message saying “your IP\u002FBrowser is not whitelisted”, or optionally redirect the user to 404 page instead.\u003C\u002Fp>\n\u003Cp>A better way to hide wp-login. You can add a list of admin IP’s to this plugin, where you want to allow usage of wp-login.\u003Cbr \u002F>\nEven if you have other users that login, its better to use another plugin for a more secure front end login, and this plugin will only allow a specific list of IP’s to access the wp-login page.\u003Cbr \u002F>\nYou can also (optionally) have this plugin attempt to redirect anyone to 404 page, if they try and access wp-login without the right IP.\u003Cbr \u002F>\nYou can also choose to disable the 404 redirect, and instead tell users there IP is not whitelisted, and that they should contact the admin if this is in error.\u003Cbr \u002F>\nThe plugin does Not block wp-admin, so once logged in, you can still edit your site on the go.\u003Cbr \u002F>\nThe plugin also has an option to whitelist your favorite common browsers to wp-login. This means you can keep users from accessing the wp-login page, simply because there using Internet Explore, and not what you chose to allow.\u003Cbr \u002F>\nThere is another option (which may return false positives), that attempts to check if the source of an IP is commonly used by a proxy server, and can block proxy IP’s to try and reduce spoofing.\u003C\u002Fp>\n","A Plugin That only allows whitelisted IP's, or optionally whitelisted browsers, to access wp-login, or optionally wp-admin.",2507,"2020-11-04T18:56:00.000Z","5.5.18","3.0.1","5.2.4",[20,22,75,23,24],"whitelist","https:\u002F\u002Fwww.swiftninjapro.com\u002Fplugins\u002Fwordpress\u002F?plugin=swiftninjapro-wp-login-whitelist-ip","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fswiftninjapro-wp-login-whitelist-ip.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":27,"downloaded":86,"rating":27,"num_ratings":27,"last_updated":18,"tested_up_to":87,"requires_at_least":88,"requires_php":89,"tags":90,"homepage":92,"download_link":93,"security_score":49,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":94},"basic-auth-for-wp-admin","Basic Auth for WP-Admin","1.0","Walid Sadfi","https:\u002F\u002Fprofiles.wordpress.org\u002Fevolurise\u002F","\u003Cp>This plugin adds an additional layer of security to your WordPress website by adding a basic authentication HTTP to the wp-admin and wp-login pages. This means that before accessing these pages, users will be prompted to enter a username and password. This can help to prevent unauthorized access to your website’s backend.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>This plugin was developed by Evolurise (https:\u002F\u002Fwww.evolurise.com\u002F)\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This program is free software; you can redistribute it and\u002For modify it under the terms of the GNU General Public License, version 2, as published by the Free Software Foundation. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.\u003C\u002Fp>\n\u003Cp>You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\u003C\u002Fp>\n","Add an additional layer of security with this super light plugin that adds a basic authentication HTTP to the wp-admin and wp-login pages.",2481,"6.1.10","3.0","5.6.20",[91,22,23,24],"basic-auth","https:\u002F\u002Fwww.evolurise.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbasic-auth-for-wp-admin.zip","2026-03-15T10:48:56.248Z",{"slug":96,"name":97,"version":98,"author":99,"author_profile":100,"description":101,"short_description":102,"active_installs":27,"downloaded":103,"rating":27,"num_ratings":27,"last_updated":104,"tested_up_to":105,"requires_at_least":53,"requires_php":54,"tags":106,"homepage":18,"download_link":107,"security_score":49,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"change-hide-login-url","Secure WordPress Admin – Change & Hide Login URL","1.2","Yasar Khalifa","https:\u002F\u002Fprofiles.wordpress.org\u002Fyasirkhalifa\u002F","\u003Cp>\u003Cstrong>Secure WordPress Admin – Change & Hide Login URL\u003C\u002Fstrong> improves your website’s login security by allowing you to replace the default WordPress login page (wp-login.php) with any custom slug of your choice. It also blocks direct access to both \u003Cstrong>wp-login.php\u003C\u002Fstrong> and \u003Cstrong>\u002Fwp-admin\u002F\u003C\u002Fstrong> for all non-logged-in users.\u003C\u002Fp>\n\u003Cp>Upon activation, the plugin automatically sets the custom login slug to \u003Cstrong>mysecretlogin\u003C\u002Fstrong>.\u003Cbr \u002F>\nExample:\u003Cbr \u002F>\n    https:\u002F\u002Fyourwebsite.com\u002Fmysecretlogin\u003C\u002Fp>\n\u003Cp>You can update the slug anytime from the settings page.\u003Cbr \u002F>\n\u003Cstrong>Important:\u003C\u002Fstrong> After changing the custom slug, go to \u003Cstrong>Settings \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Permalinks\u003C\u002Fstrong> and click \u003Cstrong>Save Changes\u003C\u002Fstrong> to ensure the new login URL works correctly.\u003C\u002Fp>\n\u003Cp>This plugin is lightweight, fast, and follows WordPress coding standards without modifying core files.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Change \u003Cstrong>wp-login.php\u003C\u002Fstrong> to a custom login slug  \u003C\u002Fli>\n\u003Cli>Default login slug automatically set to \u003Cstrong>mysecretlogin\u003C\u002Fstrong>  \u003C\u002Fli>\n\u003Cli>Blocks direct access to \u003Cstrong>wp-login.php\u003C\u002Fstrong>  \u003C\u002Fli>\n\u003Cli>Blocks unauthorized access to \u003Cstrong>\u002Fwp-admin\u002F\u003C\u002Fstrong>  \u003C\u002Fli>\n\u003Cli>Simple admin settings page to manage the slug  \u003C\u002Fli>\n\u003Cli>Fully translation-ready  \u003C\u002Fli>\n\u003Cli>Uses WordPress security best practices  \u003C\u002Fli>\n\u003Cli>Zero impact on site performance\u003C\u002Fli>\n\u003C\u002Ful>\n","Secure and customize your WordPress admin login by changing the default wp-login.php URL to a custom slug and blocking unauthorized access to wp-admin …",179,"2025-12-10T04:07:00.000Z","6.9.4",[56,20,22,23,24],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fchange-hide-login-url.zip",{"slug":109,"name":110,"version":111,"author":112,"author_profile":113,"description":114,"short_description":115,"active_installs":27,"downloaded":116,"rating":27,"num_ratings":27,"last_updated":18,"tested_up_to":117,"requires_at_least":118,"requires_php":119,"tags":120,"homepage":124,"download_link":125,"security_score":49,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":94},"custom-login-url-manager","Custom Login URL Manager – Hide Login Admin URL","1.1.2","WPDesigner","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpdesignerpl\u002F","\u003Cp>Custom Login URL Manager allows you to secure your WordPress site by changing the default login URL (wp-login.php) to a custom URL. This helps protect against unauthorized login attempts and automated bots trying to access your admin panel.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Custom Login URL\u003C\u002Fstrong>: Replace the default WordPress login URL with a custom one.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Login URL Redirect\u003C\u002Fstrong>: Redirect unauthorized access attempts (e.g., wp-login.php or wp-admin) to a specified URL, such as a custom error page or homepage.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User-Friendly Interface\u003C\u002Fstrong>: Easily configure your login URL and redirect settings through the WordPress admin panel.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Security Enhancement\u003C\u002Fstrong>: Hides the default login page, adding an extra layer of security to your website.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Translation Ready\u003C\u002Fstrong>: .pot file included for easy translation into different languages.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Languages\u003C\u002Fstrong>: Available in both English and Polish.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is free software; you can redistribute it and\u002For modify it under the terms of the GNU General Public License as published by the Free Software Foundation; version 2 of the License, or (at your option) any later version.\u003C\u002Fp>\n\u003Ch3>Donate Link\u003C\u002Fh3>\n\u003Cp>If you’d like to support the development of this plugin, consider donating at: https:\u002F\u002Fko-fi.com\u002Fwpdesigner\u003C\u002Fp>\n","Change the default WordPress login URL and redirect unauthorized attempts to a specified page for enhanced security.",1093,"6.6.5","6.2","7.2.5",[121,122,123,22,58],"custom-login","login-redirect","login-url","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcustom-login-url-manager\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcustom-login-url-manager.1.1.2.zip",{"attackSurface":127,"codeSignals":159,"taintFlows":177,"riskAssessment":178,"analyzedAt":185},{"hooks":128,"ajaxHandlers":155,"restRoutes":156,"shortcodes":157,"cronEvents":158,"entryPointCount":27,"unprotectedCount":27},[129,135,139,143,146,150],{"type":130,"name":131,"callback":132,"file":133,"line":134},"action","admin_enqueue_scripts","rs_ulr_css","unauthorised-login-redirect.php",49,{"type":130,"name":136,"callback":137,"file":133,"line":138},"admin_menu","rs_ulr_setup_menu",50,{"type":130,"name":140,"callback":141,"file":133,"line":142},"init","rs_ulr_activate",51,{"type":130,"name":140,"callback":144,"file":133,"line":145},"rs_ulr_redirect_out",52,{"type":130,"name":147,"callback":148,"file":133,"line":149},"template_redirect","rs_ulr_redirect_login",53,{"type":151,"name":152,"callback":153,"priority":47,"file":133,"line":154},"filter","plugin_action_links","rs_ulr_plugin_links",55,[],[],[],[],{"dangerousFunctions":160,"sqlUsage":161,"outputEscaping":163,"fileOperations":27,"externalRequests":27,"nonceChecks":175,"capabilityChecks":27,"bundledLibraries":176},[],{"prepared":27,"raw":27,"locations":162},[],{"escaped":164,"rawEcho":14,"locations":165},15,[166,170,172,173],{"file":167,"line":168,"context":169},"ulr\\ulr-admin-settings.php",21,"raw output",{"file":167,"line":171,"context":169},45,{"file":167,"line":142,"context":169},{"file":167,"line":174,"context":169},57,1,[],[],{"summary":179,"deductions":180},"The \"unauthorised-login-redirect\" plugin version 0.3.9.1 exhibits a strong security posture based on the provided static analysis and vulnerability history. The plugin has zero known CVEs and no recorded vulnerabilities, suggesting a well-maintained and secure codebase. The static analysis reveals a minimal attack surface with no AJAX handlers, REST API routes, shortcodes, or cron events that are exposed without authentication. Furthermore, the code demonstrates good security practices by exclusively using prepared statements for SQL queries, having a good rate of output escaping (79%), and implementing a nonce check. The absence of taint analysis findings, dangerous functions, file operations, and external HTTP requests further bolsters its security profile.",[181,183],{"reason":182,"points":14},"Output escaping is not 100%",{"reason":184,"points":50},"Capability checks are missing","2026-03-16T20:27:51.274Z",{"wat":187,"direct":194},{"assetPaths":188,"generatorPatterns":190,"scriptPaths":191,"versionParams":192},[189],"\u002Fwp-content\u002Fplugins\u002Funauthorised-login-redirect\u002Fulr\u002Fcss\u002Fstyle.css",[],[],[193],"unauthorised-login-redirect\u002Fulr\u002Fcss\u002Fstyle.css?ver=",{"cssClasses":195,"htmlComments":196,"htmlAttributes":198,"restEndpoints":199,"jsGlobals":200,"shortcodeOutput":201},[],[197],"Create a random string",[],[],[],[]]