[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f3UUnd822rDlPmNfmymqHXGN7s0o72lj4JWXYkZ6tBR4":3,"$fV3vq3CXGX09OB6enJ8qTU5bJPd7dmG7tLEtNoOQvSsg":255,"$frGmRD2M5q8NzLuGbNBi-AVmjVpbNCjZfavAtbhXKrr4":260},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":33,"crawl_stats":29,"alternatives":37,"analysis":139,"fingerprints":193},"user-groups-restrictions","User Groups Restrictions","1.0","asadowski10","https:\u002F\u002Fprofiles.wordpress.org\u002Fasadowski10\u002F","\u003Cp>Extend of user-groups plugin, this plugin allows you to restrict access to users groups in back-end and front-end on page.\u003C\u002Fp>\n","Extend of user-groups plugin, this plugin allows you to restrict access to users groups in back-end and front-end on page.",10,3463,100,1,"2013-06-23T20:00:00.000Z","3.5.2","3.0","",[20,21,22,23,24],"groups","restriction","user","user-groups","users","http:\u002F\u002Fwww.beapi.fr","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-groups-restrictions.zip",85,0,null,"2026-03-15T15:16:48.613Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},30,84,"2026-05-20T00:33:45.056Z",[38,58,80,97,119],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":13,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":18,"tags":52,"homepage":18,"download_link":56,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":57},"extended-crm-for-users-insights","Extended CRM for Users Insights","1.2.1","Deni","https:\u002F\u002Fprofiles.wordpress.org\u002Fdenizz\u002F","\u003Cp>Extends the default CRM functionality and user management of the \u003Ca href=\"https:\u002F\u002Fusersinsights.com\u002F?utm_source=wprepo&utm_campaign=crm\" rel=\"nofollow ugc\">Users Insights plugin\u003C\u002Fa> with the following features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>User Notes: adds an option to create sticky notes. Each note in the \u003Ca href=\"https:\u002F\u002Fusersinsights.com\u002Fwordpress-user-profile-pages\u002F\" rel=\"nofollow ugc\">user profile section\u003C\u002Fa> has an option to be sticked to top. The sticky notes are in a different color so they can be different from the regular notes.\u003C\u002Fli>\n\u003Cli>User Notes: adds a “Last Note Date” field to the Users Insights users table. It shows the date of the last note and allows to order and \u003Ca href=\"https:\u002F\u002Fusersinsights.com\u002Fwordpress-users-smart-filters\u002F\" rel=\"nofollow ugc\">filter the user list\u003C\u002Fa> by the last note date. This can be useful for the user management if you need to see the latest user notes.\u003C\u002Fli>\n\u003Cli>User Notes: adds a “Note Content” filter that allows searching by note content\u003C\u002Fli>\n\u003Cli>Custom User Fields : improves the creation and management of the \u003Ca href=\"https:\u002F\u002Fusersinsights.com\u002Fwordpress-custom-user-fields\u002F\" rel=\"nofollow ugc\">custom user fields\u003C\u002Fa> by adding an option to select existing user meta keys. It lists all of the existing user meta keys, except the WordPress core keys and the private keys (starting with _). Just like the regular custom user fields, you can use these custom fields to filter or order the user list.\u003C\u002Fli>\n\u003Cli>User Groups: adds an option to select an icon when creating a \u003Ca href=\"https:\u002F\u002Fusersinsights.com\u002Fwordpress-user-groups\u002F\" rel=\"nofollow ugc\">user group\u003C\u002Fa>. After that, the group is displayed with the icon in the users table and user profile section. The group icons can be managed from the User Groups section of Users Insights.\u003C\u002Fli>\n\u003Cli>User Groups: extends the default color options with darker colors, so that when icons are used for user groups, they can be better visible with darker colors.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdeni000zz\u002Fextended-crm-for-users-insights\" rel=\"nofollow ugc\">Extended CRM for Users Insights on GitHub\u003C\u002Fa> – help us improve Extended CRM for Users Insights, pull requests are welcome on GitHub\u003C\u002Fp>\n","Extends the CRM functionality of Users Insights - adds new management options to the user groups, user notes and custom user fields features",500,12420,2,"2025-07-17T03:55:00.000Z","6.8.5","4.4",[53,22,23,54,55],"crm","user-management","user-meta","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fextended-crm-for-users-insights.zip","2026-04-16T10:56:18.058Z",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":68,"num_ratings":69,"last_updated":70,"tested_up_to":71,"requires_at_least":51,"requires_php":72,"tags":73,"homepage":77,"download_link":78,"security_score":79,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":57},"bp-default-data","BuddyPress Default Data","1.4.0","Slava Abakumov","https:\u002F\u002Fprofiles.wordpress.org\u002Fslaffik\u002F","\u003Cp>Plugin will create lots of users, messages, friends connections, groups, topics, activity items, profile data – useful for testing purpose.\u003C\u002Fp>\n\u003Cp>All imported users will have avatars, generated by 8biticon.com and displayed by Gravatar.\u003C\u002Fp>\n\u003Cp>Please use this plugin with caution and not on a live site! Again, USE FOR TESTING THEMES AND PLUGINGS, NOT ON A STAGING SITE WITH LIVE DATA. Plugin should not mess with your live data, but not guaranteed.\u003C\u002Fp>\n\u003Cp>Clear BuddyPress button will delete all data, that was generated by this plugin: messages, groups, notifications, friends, forum posts, xprofile. Plugin won’t reimport data if clicked twice.\u003C\u002Fp>\n\u003Cp>And turn off email notifications in profile (friendship accepted and messages received) – or you will spam yourself 🙂 Imported users have these settings already turned off.\u003C\u002Fp>\n","Plugin will create lots of users, messages, friends connections, groups, topics, activity items, profile data - useful for testing purpose.",400,73182,78,22,"2024-11-30T22:53:00.000Z","6.7.5","5.3",[74,20,75,76,24],"buddypress","import","messages","https:\u002F\u002Fovirium.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-default-data.1.4.0.zip",92,{"slug":23,"name":81,"version":82,"author":83,"author_profile":84,"description":85,"short_description":86,"active_installs":87,"downloaded":88,"rating":89,"num_ratings":90,"last_updated":91,"tested_up_to":92,"requires_at_least":93,"requires_php":18,"tags":94,"homepage":18,"download_link":96,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":57},"User Groups","1.3.1","Zack Katz","https:\u002F\u002Fprofiles.wordpress.org\u002Fkatzwebdesign\u002F","\u003Ch3>Group Your Users\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Add descriptions to user groups\u003C\u002Fli>\n\u003Cli>Assign colors to user groups\u003C\u002Fli>\n\u003Cli>View all users in a group\u003C\u002Fli>\n\u003Cli>Add users to more than one group at a time\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The User Groups plugin does not modify user capabilities, limit access, or anything like that. This plugin does one thing, and does it well: create groups and organize your users by that group.\u003C\u002Fp>\n\u003Cp>Works beautifully with the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Frich-text-tags\u002F\" rel=\"ugc\">Rich Text Tags\u003C\u002Fa> plugin for adding WYSIWYG descriptions to the User Groups.\u003C\u002Fp>\n","Group Your Users",300,20930,80,9,"2016-04-11T21:41:00.000Z","4.5.33","2.8",[20,22,95,24],"user-group","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-groups.zip",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":105,"downloaded":106,"rating":107,"num_ratings":108,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":18,"tags":112,"homepage":117,"download_link":118,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":57},"restrict-usernames","Restrict Usernames","3.7","Scott Reilly","https:\u002F\u002Fprofiles.wordpress.org\u002Fcoffee2code\u002F","\u003Cp>This plugin allows you to restrict the usernames that new users may use when registering for your site.\u003C\u002Fp>\n\u003Cp>If open registration is enabled for your site (via Settings -> General -> Membership (“Anyone can register”)), WordPress allows visitors to register for an account on your blog. By default, any username they choose is allowed so long as it isn’t an already existing account and it doesn’t include invalid (i.e. non-alphanumeric) characters.\u003C\u002Fp>\n\u003Cp>Possible reasons for wanting to restrict certain usernames:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Prevent usernames that contain foul, offensive, or otherwise undesired words\u003C\u002Fli>\n\u003Cli>Prevent squatting on usernames that you may want to use in the future (but don’t want to actually create the account for just yet) (essentially placing a hold on the username)\u003C\u002Fli>\n\u003Cli>Prevent official-sounding usernames from being used (i.e. help, support, pr, info, sales)\u003C\u002Fli>\n\u003Cli>Prevent official username syntax from being used (i.e. if all of your administrators use a prefix to identify themselves, you don’t want a visitor to use that prefix)\u003C\u002Fli>\n\u003Cli>Prevent spaces from being used in a username (which WordPress allows by default)\u003C\u002Fli>\n\u003Cli>Require that a username starts with, ends with, or contain one of a set of substrings (i.e. “support_”, “admin_”)\u003C\u002Fli>\n\u003Cli>Require a minimum number of characters for usernames\u003C\u002Fli>\n\u003Cli>Limit usernames to a maximum number of characters\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>When attempting to register with a restricted username, the visitor will be given an error notice that says:\u003Cbr \u002F>\nERROR: This username is invalid. Please enter a valid username.\u003C\u002Fp>\n\u003Cp>NOTE: This plugin does not put any restrictions on usernames that the admin chooses for users when creating user accounts from within the WordPress admin. This only restricts the names that users choose themselves when registering for your site.\u003C\u002Fp>\n\u003Cp>SPECIAL NOTE: Many membership plugins implement their own user registration handling that often bypasses checks (and hooks) performed by WordPress. As such, it is unlikely that the plugin is compatible with them without special plugin-specific amendments.\u003C\u002Fp>\n\u003Cp>Compatible with Multisite and BuddyPress as well.\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"http:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Frestrict-usernames\u002F\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frestrict-usernames\u002F\" rel=\"ugc\">Plugin Directory Page\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fcoffee2code\u002Frestrict-usernames\u002F\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa> | \u003Ca href=\"http:\u002F\u002Fcoffee2code.com\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Hooks\u003C\u002Fh3>\n\u003Cp>The plugin exposes one filter for hooking. Typically, customizations utilizing this hook would be put into your active theme’s functions.php file, or used by another plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>c2c_restrict_usernames-validate (filter)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The ‘c2c_restrict_usernames-validate’ hook allows you to add your own customized checks for the username being registered. You can add additional restrictions or override the assessment performed by the plugin.\u003C\u002Fp>\n\u003Cp>Arguments:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>$valid (boolean): The assessment by the plugin about the validity of the username based on settings. True means username can be used.\u003C\u002Fli>\n\u003Cli>$username (string): The username being registered.\u003C\u002Fli>\n\u003Cli>$settings (array): The plugin’s settings.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Example:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u002F**\n * Add custom checks on usernames.\n *\n * Specifically, prevent use of usernames ending in numbers.\n *\n * @param bool   $valid    True if the username is valid, false if not.\n * @param string $username The username.\n * @param array  $options  Plugin options.\n *\u002F\nfunction my_restrict_usernames_check( $valid, $username, $options ) {\n    \u002F\u002F Only do additional checking if the plugin has already performed its\n    \u002F\u002F checks and deemed the username valid.\n    if ( $valid ) {\n        \u002F\u002F Don't allow usernames to end in numbers.\n        if ( preg_match( '\u002F[0-9]+$\u002F', $username ) ) {\n            $valid = false;\n        }\n    }\n    return $valid;\n}\nadd_filter( 'c2c_restrict_usernames-validate', 'my_restrict_usernames_check', 10, 3 );\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Restrict the usernames that new users may use when registering for your site.",200,24360,72,14,"2018-06-21T05:36:00.000Z","4.9.29","4.7",[113,114,115,116,24],"registration","restrictions","signup","username","http:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Frestrict-usernames\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frestrict-usernames.3.7.zip",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":13,"num_ratings":14,"last_updated":129,"tested_up_to":130,"requires_at_least":131,"requires_php":132,"tags":133,"homepage":137,"download_link":138,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":57},"bp-groups-import-users","BP GROUPS IMPORT USERS","1.1","VibeThemes","https:\u002F\u002Fprofiles.wordpress.org\u002Fvibethemes\u002F","\u003Cp>BP GROUPS IMPORT USERS plugin is a free plugin developed to help users to bulk import users into a buddypress group. If the user is not registered on the website then the user will get registered automatically and an activation email will be sent to them. The users will have to activate their account through the email to get reflected in the group members.\u003C\u002Fp>\n\u003Cp>Tutorial On how to setup and get started : \u003Ca href=\"https:\u002F\u002Fwplms.io\u002Fsupport\u002Fknowledge-base\u002Fbulk-add-students-to-batch-via-csv\u002F\" rel=\"nofollow ugc\">link\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Also checkout our Project WPLMS : \u003Ca href=\"https:\u002F\u002Fwplms.io\u002F\" rel=\"nofollow ugc\">Learning Management system for WordPress\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>More Information\u003C\u002Fh4>\n\u003Cp>Visit the \u003Ca href=\"https:\u002F\u002Fvibethemes.com\u002F\" rel=\"nofollow ugc\">VibeThemes\u003C\u002Fa> for documentation, support, and information on getting involved in the project.\u003C\u002Fp>\n","BP GROUPS IMPORT USERS helps users to import bulk users into a buddypress group.",40,4131,"2020-02-02T01:51:00.000Z","5.3.21","3.6","7.2",[134,120,75,135,136],"bp","import-bulk-users","import-users","http:\u002F\u002Fwww.Vibethemes.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-groups-import-users.1.1.zip",{"attackSurface":140,"codeSignals":176,"taintFlows":186,"riskAssessment":187,"analyzedAt":192},{"hooks":141,"ajaxHandlers":172,"restRoutes":173,"shortcodes":174,"cronEvents":175,"entryPointCount":28,"unprotectedCount":28},[142,147,150,154,158,160,162,167],{"type":143,"name":144,"callback":144,"file":145,"line":146},"action","pre_get_posts","inc\\class.admin.edit.php",4,{"type":143,"name":148,"callback":148,"file":145,"line":149},"admin_init",5,{"type":151,"name":152,"callback":152,"file":145,"line":153},"filter","page_attributes_dropdown_pages_args",6,{"type":143,"name":155,"callback":155,"priority":156,"file":157,"line":146},"init",11,"inc\\class.admin.php",{"type":143,"name":159,"callback":159,"priority":11,"file":157,"line":149},"save_post",{"type":143,"name":161,"callback":161,"priority":11,"file":157,"line":153},"add_meta_boxes",{"type":143,"name":163,"callback":164,"file":165,"line":166},"admin_notices","notice_plugin_user","user-groups-restrictions.php",44,{"type":143,"name":168,"callback":169,"priority":170,"file":165,"line":171},"plugins_loaded","init_user_groups_restrictions",201,55,[],[],[],[],{"dangerousFunctions":177,"sqlUsage":178,"outputEscaping":180,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":149,"bundledLibraries":185},[],{"prepared":28,"raw":28,"locations":179},[],{"escaped":146,"rawEcho":14,"locations":181},[182],{"file":165,"line":183,"context":184},49,"raw output",[],[],{"summary":188,"deductions":189},"The user-groups-restrictions v1.0 plugin exhibits a generally good security posture based on the provided static analysis. The absence of identified dangerous functions, raw SQL queries, file operations, and external HTTP requests is highly commendable. Furthermore, the plugin demonstrates a commitment to security by utilizing prepared statements for all SQL queries and applying output escaping to a high percentage of outputs. The presence of capability checks suggests an effort to control access to plugin functionalities.\n\nHowever, a significant concern arises from the complete lack of nonce checks. While capability checks are in place, nonces are a critical defense against Cross-Site Request Forgery (CSRF) attacks, especially for actions initiated via AJAX or other direct user interactions. The absence of any identified attack surface entries (AJAX handlers, REST API routes, shortcodes, cron events) is positive, but this doesn't negate the importance of nonces for any potential future or existing (though not identified) entry points.\n\nThe plugin's vulnerability history is clean, with no recorded CVEs. This is a strong indicator that the plugin has historically been maintained with security in mind. The lack of critical or high-severity taint flows also reinforces the impression of a well-developed codebase. The strengths lie in its secure handling of data processing and SQL, while the primary weakness is the absence of CSRF protection.",[190],{"reason":191,"points":11},"Missing nonce checks","2026-03-17T00:11:47.617Z",{"wat":194,"direct":203},{"assetPaths":195,"generatorPatterns":199,"scriptPaths":200,"versionParams":201},[196,197,198],"\u002Fwp-content\u002Fplugins\u002Fuser-groups-restrictions\u002Finc\u002Fclass.admin.php","\u002Fwp-content\u002Fplugins\u002Fuser-groups-restrictions\u002Finc\u002Fclass.admin.edit.php","\u002Fwp-content\u002Fplugins\u002Fuser-groups-restrictions\u002Fuser-groups-restrictions.php",[],[],[202],"user-groups-restrictions\u002Fuser-groups-restrictions.php?ver=",{"cssClasses":204,"htmlComments":205,"htmlAttributes":249,"restEndpoints":252,"jsGlobals":253,"shortcodeOutput":254},[],[206,207,208,209,210,211,212,213,214,215,216,217,218,219,220,221,222,223,224,225,226,227,228,229,230,231,232,233,234,235,236,237,238,239,240,241,242,243,244,245,246,247,248],"\u003C!-- Folder name -->","\u003C!-- Call admin class -->","\u003C!-- Be careful, you must install and activate the plugin 'user-groups' to run it. Thank you -->","\u003C!-- Load translations -->","\u003C!-- Admin -->","\u003C!-- Test admin role -->","\u003C!-- Test if current post type is a page ! -->","\u003C!-- Test main query ? -->","\u003C!-- NOTE: admin screens also have a main query and this function can be used to detect it there. -->","\u003C!-- Test is user have group -->","\u003C!-- Get users groups -->","\u003C!-- Build slug array -->","\u003C!-- Add tax_query to main query -->","\u003C!-- Redirect if unauthorized user -->","\u003C!-- Is admin user ? -->","\u003C!-- Not an edit page ? -->","\u003C!-- No action on edit page ? -->","\u003C!-- Get current page with post_id -->","\u003C!-- Out if page empty -->","\u003C!-- Out if is not a page -->","\u003C!-- Get user infos -->","\u003C!-- Out if no user -->","\u003C!--Get ids of user's groups-->","\u003C!--Get ids of page's groups-->","\u003C!-- Out if is empty -->","\u003C!-- Check between user's groups and page's groups if results. -->","\u003C!-- Redirect if results -->","\u003C!-- Limit to curent user attributes pages metabox -->","\u003C!-- Return all pages for admin -->","\u003C!-- Return all page if is not user -->","\u003C!-- Get user groups -->","\u003C!-- Return all if user doesn't have a group -->","\u003C!-- Get all ids of authorized pages for current user -->","\u003C!-- Include to drowpdown_args the results of query -->","\u003C!-- Register taxonomy if doesn't exist -->","\u003C!-- Set or delete relationship on save post -->","\u003C!-- Don't do anything when autosave -->","\u003C!-- Save only when relation post type is called before. -->","\u003C!-- Get current post object -->","\u003C!-- Delete object term relationship -->","\u003C!-- Set relation -->","\u003C!-- Test if checkbox is checked -->","\u003C!-- Loop for set relation on child page -->",[250,251],"data-bugr-metabox","data-groupids",[],[],[],{"error":256,"url":257,"statusCode":258,"statusMessage":259,"message":259},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fuser-groups-restrictions\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":28,"versions":261},[]]