[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f2GjzMa7VyAASE8ClzxV4BYo0E3ImmaQFfa6Md2OQFOo":3,"$foeDYFARgXvPgLSwibtSOJq4wIsucksbQoOpYoRiqggE":539,"$fHFECVoq9-PJXqPWO7Yr0ZqN5lDHdD00rsUMOzDQo0pk":543},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"discovery_status":32,"vulnerabilities":33,"developer":90,"crawl_stats":39,"alternatives":96,"analysis":203,"fingerprints":418},"user-login-history","User Login History","2.1.8","Faiyaz Alam","https:\u002F\u002Fprofiles.wordpress.org\u002Ffaiyazalam\u002F","\u003Cp>The plugin helps you to track any visitor’s login details with the following attributes:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>Login\u003C\u002Fstrong> – Login Date-Time\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Logout\u003C\u002Fstrong> – Logout Date-Time\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Last Seen\u003C\u002Fstrong> – Last Seen Date-Time\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Login Status\u003C\u002Fstrong> – Logged in\u002FLogged out\u002FFailed\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Online Status\u003C\u002Fstrong> – Online\u002FOffline\u002FIdle\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Session Duration\u003C\u002Fstrong> – How long the user stayed on your website per session.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User ID\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Username\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Current Role\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Old Role\u003C\u002Fstrong> – The role while user gets logged in into your website.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Browser\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Operating System\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>IP Address\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Country Name and Country Code\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Timezone\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mobile \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Ffeatures\" title=\"View All Features\" rel=\"nofollow ugc\">(Pro Feature)\u003C\u002Fa>\u003C\u002Fstrong> – Whether the user loggedin with a mobile (e.g. tablet and mobile phone) device.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Proxy IP \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Ffeatures\" title=\"View All Features\" rel=\"nofollow ugc\">(Pro Feature)\u003C\u002Fa>\u003C\u002Fstrong> – Whether the user loggedin from a proxy IP.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002F\" rel=\"nofollow ugc\">User Login History Free Version\u003C\u002Fa> plugin has all the basic features that will help you to know your website visitors. The \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Ffeatures\" title=\"View All Features\" rel=\"nofollow ugc\">User Login History Pro Version\u003C\u002Fa> plugin has some more premium and useful features along with all the basic features.\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>AUTO LOGOUT \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Ffeatures\" title=\"View All Features\" rel=\"nofollow ugc\">(Pro Feature)\u003C\u002Fa>\u003C\u002Fstrong> – Automatically logout idle users every ‘X’ minute.\u003Cbr \u002F>\nYou can also specify roles.\u003Cbr \u002F>\nThis feature is built on WordPress Cron Job.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>IP ADDRESS CONTROL \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Ffeatures\" title=\"View All Features\" rel=\"nofollow ugc\">(Pro Feature)\u003C\u002Fa>\u003C\u002Fstrong> – Allows you to control of masking and hiding of user’s IP address.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>EMAIL ALERT \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Ffeatures\" title=\"View All Features\" rel=\"nofollow ugc\">(Pro Feature)\u003C\u002Fa>\u003C\u002Fstrong> – Allows you to get notified via email for success\u002Ffailed login.\u003Cbr \u002F>\nYou can also specify roles and modify email templates.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>AUTO DELETE OLD RECORDS \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Ffeatures\" title=\"View All Features\" rel=\"nofollow ugc\">(Pro Feature)\u003C\u002Fa>\u003C\u002Fstrong> – Automatically delete the records older than ‘X’ days.\u003Cbr \u002F>\nYou can also specify the roles.\u003Cbr \u002F>\nThis feature is built on WordPress Cron Job.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>TRACK SPECIFIC ROLES \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Ffeatures\" title=\"View All Features\" rel=\"nofollow ugc\">(Pro Feature)\u003C\u002Fa>\u003C\u002Fstrong> – Allows you to track specific roles only.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>CSV SEPARATOR \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Ffeatures\" title=\"View All Features\" rel=\"nofollow ugc\">(Pro Feature)\u003C\u002Fa>\u003C\u002Fstrong> – Allows you to enter a CSV separator for CSV export.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>REPORT – TIMESHEET \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Ffeatures\" title=\"View All Features\" rel=\"nofollow ugc\">(Pro Feature)\u003C\u002Fa>\u003C\u002Fstrong> – Generate a timesheet report\u003C\u002Fli>\n\u003Cli>\u003Cstrong>REPORT –  NO LOGIN LIST \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Ffeatures\" title=\"View All Features\" rel=\"nofollow ugc\">(Pro Feature)\u003C\u002Fa>\u003C\u002Fstrong> – Generate a report of users who have not login for a given date range\u003C\u002Fli>\n\u003Cli>\u003Cstrong>REPORT – LOGIN DEVICE \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Ffeatures\" title=\"View All Features\" rel=\"nofollow ugc\">(Pro Feature)\u003C\u002Fa>\u003C\u002Fstrong> – Generate report of login count based on IP address\u003C\u002Fli>\n\u003Cli>\u003Cstrong>LOGIN TIME TRACKER\u003C\u002Fstrong> – Tracks the date and time of user’s login, logout, last seen, etc.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>LOGIN STATUS TRACKER\u003C\u002Fstrong> – Tracks user’s login status to check if the user is logged in, logged out, failed, etc.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>ONLINE STATUS TRACKER\u003C\u002Fstrong> – Tracks user’s online status to check if the user is online, idle or offline.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>USER INFORMATION TRACKER\u003C\u002Fstrong> – Tracks user’s old role, current role, username, etc.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>DEVICE INFORMATION TRACKER\u003C\u002Fstrong> – Tracks user’s operating system and browser.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>GEO LOCATION TRACKER\u003C\u002Fstrong> – Tracks user’s timezone and country based on IP address.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>ADVANCED SEARCH FILTER\u003C\u002Fstrong> – Filters the records.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>CSV EXPORTER\u003C\u002Fstrong> – Exports the records in csv format.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>CUSTOMIZABLE SHORTCODE\u003C\u002Fstrong> – Renders the records on front-end.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>PREFERABLE TIMEZONE (DEPRECATED! Will be removed in 3.0)\u003C\u002Fstrong> – You can select your preferred timezone to be used for the listing table.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>MULTISITE NETWORK\u003C\u002Fstrong> – On the network admin area, you can see the listing table which shows all the records fetched from all the blogs of the current network. \u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cp>You can download the language files from \u003Ca href=\"https:\u002F\u002Ftranslate.WordPress.org\u002Fprojects\u002Fwp-plugins\u002Fuser-login-history\" title=\"Click here to download the language file for the plugin.\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Do you want to translate this plugin to another language?\u003C\u002Fp>\n\u003Cp>I recommend using \u003Ca href=\"http:\u002F\u002Fpoedit.net\u002F\" rel=\"nofollow ugc\">POEdit\u003C\u002Fa> or if you prefer to do it straight from the WordPress admin interface use \u003Ca href=\"https:\u002F\u002FWordPress.org\u002Fplugins\u002Floco-translate\u002F\" rel=\"ugc\">Loco Translate\u003C\u002Fa>.\u003Cbr \u002F>\nWhen you’re done, post your file on this \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffaiyazalam\u002FWordPress-plugin-user-login-history\u002Fissues\u002F6\" rel=\"nofollow ugc\">issue\u003C\u002Fa>.\u003Cbr \u002F>\n.\u003Cbr \u002F>\nYou can also translate the plugin \u003Ca href=\"https:\u002F\u002Ftranslate.WordPress.org\u002Fprojects\u002Fwp-plugins\u002Fuser-login-history\" rel=\"nofollow ugc\">online\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>How to use the plugin?\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\n\u003Cp>To see all the tracked records in admin, click on the plugin menu shown in the left sidebar.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>To see all the tracked records of current logged in users in frontend, use the following shortcode:\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Basic Usage of Shortcode\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cp>In your template file:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php echo do_shortcode('[user_login_history]'); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>In your content:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[user_login_history]\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Advanced Usage of Shortcode\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cp>In your template file:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php echo do_shortcode(\"[user_login_history limit='20' reset_link='custom-uri' columns='ip_address,time_login' date_format='Y-m-d' time_format='H:i:s']\"); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>In your content:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[user_login_history limit='20' reset_link='custom-uri' columns='ip_address,time_login' date_format='Y-m-d' time_format='H:i:s']\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Shortcode Parameters\u003C\u002Fh4>\n\u003Cp>You can use the shortcode to display the login list of the current user. It does not display the login list of other users.\u003Cbr \u002F>\nHere is the list of all the parameters that you can use in the shortcode. All the parameters are optional.\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>title – Title of the listing table. Default is: empty string\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>limit – Number of records per page. Default is: 20\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>reset_link – Custom URI of the listing page. For the input “my-login-history”, it will render a reset link with the following URL:\u003Cbr \u002F>\nwww.example.com\u002Fmy-login-history\u003Cbr \u002F>\nDefault is the full permalink of the current post or page.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>date_format – A valid date format. Default is:\u003C\u002Fp>\n\u003Cp>Y-m-d\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>time_format – A valid time format. Default is:\u003C\u002Fp>\n\u003Cp>H:i:s\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>show_timezone_selector – Whether you want to show timezone selector or not. Any value other than “true” will be treated as “false”. Default is:\u003Cbr \u002F>\ntrue\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>roles \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Ffeatures\" title=\"View All Features\" rel=\"nofollow ugc\">(Pro Feature)\u003C\u002Fa>:\u003Cbr \u002F>\nIt allows you to set role(s) in the shortcode parameter so that you can see the login list of other users who belong to the role(s).\u003C\u002Fp>\n\u003Cp>[user_login_history roles=’administrator, editor’]\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>columns – List of column keys used to render columns on the listing table. Default keys are:\u003C\u002Fp>\n\u003Cp>operating_system, browser, time_login, time_logout\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Available Column Keys:\u003C\u002Fp>\n\u003Cp>user_id, username, role, old_role, ip_address, country_name, browser, operating_system, timezone, user_agent, duration, time_last_seen, time_login, time_logout, login_status\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Geo Tracking\u003C\u002Fh4>\n\u003Cp>The plugin uses \u003Ca href=\"https:\u002F\u002Ftools.keycdn.com\u002Fgeo\" rel=\"nofollow ugc\">a free third party service\u003C\u002Fa> to detect country and timezone based on IP address. Many projects are using this free service due to which sometimes the server of the service provider becomes slow. This may affect the login functionality of your website. Hence it is recommended that you do not enable this functionality unless you have paid service or reliable service. If you have a paid service, you can \u003Ca href=\"https:\u002F\u002Fuserloginhistory.com\u002Fcontact\u002F\" rel=\"nofollow ugc\">contact us\u003C\u002Fa> to integrate it.\u003C\u002Fp>\n\u003Ch4>Login Statuses\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\n\u003Cp>Logged in – If the user gets logged in successfully.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Logged out – If the user clicks on logout button and gets logged out successfully.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Failed – If the user enters invalid credentials.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Blocked (DEPRECATED! Will be removed in 3.0) – This is used for the multisite network. By default, a user can login to any blog and then WordPress redirects to the blog on which the user is associated. The plugin saves login info at the blog on which the user logged in but cannot not save the information of the blog on which WordPress redirects the user. You can prevent this behavior by using the plugin setting. Please note that we already removed this status from the pro version plugin but not from the free version yet.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Unknown (DEPRECATED! Will be removed in 3.0) – Since we have added a new column “Login Status” in the version 1.7.0, its value will be empty in the database table after upgrading to 1.7.0. To filter such records, you can use this status.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Note\u003C\u002Fstrong> – In case, a user log in with “Remember Me” and then closes his browser without doing logout, it will show the login status as “Logged in”.\u003C\u002Fp>\n\u003Ch4>Bug Fixes\u003C\u002Fh4>\n\u003Cp>If you find any bug, please create a topic with a step by step description to reproduce the bug.\u003Cbr \u002F>\nPlease search the forum before creating a new topic.\u003C\u002Fp>\n\u003Ch4>Keywords\u003C\u002Fh4>\n\u003Cp>user log, log, logger, detector, tracker, membership,\u003Cbr \u002F>\nregister, sign up, admin, subscriber, editor, contributor, geo location,\u003Cbr \u002F>\nprofile, front end registration, manager, report, statistics, activity, user role editor\u003C\u002Fp>\n","Helps you to know your website's visitors by tracking their login related information like login\u002Flogout time, country, browser and many more.",10000,276579,92,28,"2026-03-17T04:55:00.000Z","6.9.4","6.2","7.4",[20,21,22,23,24],"brute-force","history","login-activity","login-log","login-tacker","http:\u002F\u002Fuserloginhistory.com\u002Fhome\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.2.1.8.zip",95,4,0,"2025-05-07 00:00:00","2026-04-16T10:56:18.058Z","no_bundle",[34,52,69,76],{"id":35,"url_slug":36,"title":37,"description":38,"plugin_slug":4,"theme_slug":39,"affected_versions":40,"patched_in_version":41,"severity":42,"cvss_score":43,"cvss_vector":44,"vuln_type":45,"published_date":30,"updated_date":46,"references":47,"days_to_patch":49,"patch_diff_files":50,"patch_trac_url":39,"research_status":39,"research_verified":51,"research_rounds_completed":29,"research_plan":39,"research_summary":39,"research_vulnerable_code":39,"research_fix_diff":39,"research_exploit_outline":39,"research_model_used":39,"research_started_at":39,"research_completed_at":39,"research_error":39,"poc_status":39,"poc_video_id":39,"poc_summary":39,"poc_steps":39,"poc_tested_at":39,"poc_wp_version":39,"poc_php_version":39,"poc_playwright_script":39,"poc_exploit_code":39,"poc_has_trace":51,"poc_model_used":39,"poc_verification_depth":39},"CVE-2025-47676","user-login-history-authenticated-contributor-stored-cross-site-scripting","User Login History \u003C= 2.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting","The User Login History plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 2.1.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=2.1.6","2.1.7","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-06-17 14:10:20",[48],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F731a42fa-d48c-475e-8868-0ff5603b65de?source=api-prod",42,[],false,{"id":53,"url_slug":54,"title":55,"description":56,"plugin_slug":4,"theme_slug":39,"affected_versions":57,"patched_in_version":58,"severity":59,"cvss_score":60,"cvss_vector":61,"vuln_type":62,"published_date":63,"updated_date":64,"references":65,"days_to_patch":67,"patch_diff_files":68,"patch_trac_url":39,"research_status":39,"research_verified":51,"research_rounds_completed":29,"research_plan":39,"research_summary":39,"research_vulnerable_code":39,"research_fix_diff":39,"research_exploit_outline":39,"research_model_used":39,"research_started_at":39,"research_completed_at":39,"research_error":39,"poc_status":39,"poc_video_id":39,"poc_summary":39,"poc_steps":39,"poc_tested_at":39,"poc_wp_version":39,"poc_php_version":39,"poc_playwright_script":39,"poc_exploit_code":39,"poc_has_trace":51,"poc_model_used":39,"poc_verification_depth":39},"WF-2c25a344-4876-4ba8-bbc6-d1a32f4b1d08-user-login-history","user-login-history-sql-injection-via-order-by","User Login History \u003C= 1.7.0 - SQL Injection via Order By","The User Login History for WordPress is vulnerable to  SQL Injection via the 'orderby' parameter in versions up to, and including, 1.7.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.  This makes it possible for authenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.",">=1.7.0 \u003C=1.7.0","1.7.1","high",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')","2019-03-16 00:00:00","2024-01-22 19:56:02",[66],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F2c25a344-4876-4ba8-bbc6-d1a32f4b1d08?source=api-prod",1774,[],{"id":70,"url_slug":71,"title":72,"description":56,"plugin_slug":4,"theme_slug":39,"affected_versions":57,"patched_in_version":58,"severity":59,"cvss_score":60,"cvss_vector":61,"vuln_type":62,"published_date":63,"updated_date":64,"references":73,"days_to_patch":67,"patch_diff_files":75,"patch_trac_url":39,"research_status":39,"research_verified":51,"research_rounds_completed":29,"research_plan":39,"research_summary":39,"research_vulnerable_code":39,"research_fix_diff":39,"research_exploit_outline":39,"research_model_used":39,"research_started_at":39,"research_completed_at":39,"research_error":39,"poc_status":39,"poc_video_id":39,"poc_summary":39,"poc_steps":39,"poc_tested_at":39,"poc_wp_version":39,"poc_php_version":39,"poc_playwright_script":39,"poc_exploit_code":39,"poc_has_trace":51,"poc_model_used":39,"poc_verification_depth":39},"WF-6fb2d9ec-1082-4209-9fc9-6f10ba3a2398-user-login-history","user-login-history-sql-injection-via-orderby","User Login History \u003C= 1.7.0 - SQL Injection via OrderBy",[74],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F6fb2d9ec-1082-4209-9fc9-6f10ba3a2398?source=api-prod",[],{"id":77,"url_slug":78,"title":79,"description":80,"plugin_slug":4,"theme_slug":39,"affected_versions":81,"patched_in_version":82,"severity":42,"cvss_score":83,"cvss_vector":84,"vuln_type":45,"published_date":85,"updated_date":64,"references":86,"days_to_patch":88,"patch_diff_files":89,"patch_trac_url":39,"research_status":39,"research_verified":51,"research_rounds_completed":29,"research_plan":39,"research_summary":39,"research_vulnerable_code":39,"research_fix_diff":39,"research_exploit_outline":39,"research_model_used":39,"research_started_at":39,"research_completed_at":39,"research_error":39,"poc_status":39,"poc_video_id":39,"poc_summary":39,"poc_steps":39,"poc_tested_at":39,"poc_wp_version":39,"poc_php_version":39,"poc_playwright_script":39,"poc_exploit_code":39,"poc_has_trace":51,"poc_model_used":39,"poc_verification_depth":39},"CVE-2017-15867","user-login-history-plugin-cross-site-scripting","User Login History Plugin \u003C= 1.5.2 - Cross-Site Scripting","Multiple cross-site scripting (XSS) vulnerabilities in the user-login-history plugin through 1.5.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) date_from, (2) date_to, (3) user_id, (4) username, (5) country_name, (6) browser, (7) operating_system, or (8) ip_address parameter to admin\u002Fpartials\u002Flisting\u002Flisting.php.","\u003C1.6","1.6",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","2017-10-26 00:00:00",[87],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F3b5dc0af-90cf-41dd-a77b-4b99f267c0d9?source=api-prod",2280,[],{"slug":91,"display_name":7,"profile_url":8,"plugin_count":92,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":93,"trust_score":94,"computed_at":95},"faiyazalam",1,1468,76,"2026-05-20T04:00:01.632Z",[97,117,138,158,181],{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":29,"downloaded":105,"rating":29,"num_ratings":29,"last_updated":106,"tested_up_to":16,"requires_at_least":107,"requires_php":108,"tags":109,"homepage":113,"download_link":114,"security_score":115,"vuln_count":29,"unpatched_count":29,"last_vuln_date":39,"fetched_at":116},"joes-recent-users-activity","Joe's Recent Users Activity","2.6","Joe","https:\u002F\u002Fprofiles.wordpress.org\u002Fjoewa1980\u002F","\u003Cp>A mobile responsive lightweight plugin displaying the most recent 100 logged-in users and their last viewed page in the admin area accessible via a ‘Recent Activity’ admin menu link.\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>User ID\u003C\u002Fstrong> – The user ID associated with the logged in party\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Username\u003C\u002Fstrong> – The currently logged-in user’s username, linking to the user’s profile page\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Role\u003C\u002Fstrong> – The user’s current role within the WordPress installation\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Last Page Viewed\u003C\u002Fstrong> – The front-end page the user last viewed. Admin pages and callbacks are not logged, linking to the page itself\u003C\u002Fli>\n\u003Cli>\u003Cstrong>IP Address\u003C\u002Fstrong> – The user’s IP address\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Last Login\u003C\u002Fstrong> – The date and time of the user’s most recent login using the date format set within the WordPress installation\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Time active\u003C\u002Fstrong> – The time from the last login time to the most recenty viewed page\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>‘Top 10 Exited Pages’ shows the five most common pages for logged-in visitors to see before they leave the site.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>A mobile responsive lightweight plugin displaying the most recent 100 logged-in users and their last viewed page in the admin area accessible via a ‘Recent Activity’ admin menu link. A section called, ‘Top 10 Exited Pages’ shows the ten most common pages for logged-in visitors to see before they leave the site.\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cp>None currently, but it is such a simple plugin there really is not much language to consider.\u003C\u002Fp>\n\u003Ch4>How to use the plugin?\u003C\u002Fh4>\n\u003Col>\n\u003Cli>To see all the tracked records in admin, click on the plugin menu shown in the left sidebar.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Bug Fixes\u003C\u002Fh4>\n\u003Cp>If you find any bug, please create a topic with a step by step description to reproduce the bug.\u003Cbr \u002F>\nPlease search the forum before creating a new topic.\u003C\u002Fp>\n\u003Ch4>Keywords\u003C\u002Fh4>\n\u003Cp>user log, log, logger, detector, tracker, membership, register, sign up, admin, subscriber, editor, contributor, geo location, profile, front end registration, manager, report, statistics, activity, user role editor\u003C\u002Fp>\n\u003Ch3>Third Party Code Integration\u003C\u002Fh3>\n\u003Cp>A PayPal Donate button is integrated into the plugin page if users would like to support the developer. The code used is shown at https:\u002F\u002Fdeveloper.paypal.com\u002Fsdk\u002Fdonate\u002F and PayPal’s privacy terms can be read at https:\u002F\u002Fwww.paypal.com\u002Fmyaccount\u002Fprivacy\u002Fprivacyhub\u002F\u003C\u002Fp>\n","A mobile-responsive plugin showing the last 100 logged-in users & their last page in admin via a 'Recent Activity' menu.",955,"2025-11-28T09:03:00.000Z","5.0.0","5.6.40",[110,21,23,111,112],"brute-force-indicator","rename-admin","security","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjoes-recent-users-activity.zip",100,"2026-04-06T09:54:40.288Z",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":125,"downloaded":126,"rating":29,"num_ratings":29,"last_updated":127,"tested_up_to":128,"requires_at_least":129,"requires_php":113,"tags":130,"homepage":135,"download_link":136,"security_score":137,"vuln_count":29,"unpatched_count":29,"last_vuln_date":39,"fetched_at":31},"wp-users-login-history","WP Users Login History","1.2","Chetan Vaghela","https:\u002F\u002Fprofiles.wordpress.org\u002Fthechetanvaghela\u002F","\u003Cp>Track website’s users by their login related information like Last login Date\u002FTime, Environment\u002FServer IP address,Country\u002FCity\u002FContinent\u002FTimezone, Lat-long, Browser, Platform, Currency code\u002Fsymbol and many more.\u003C\u002Fp>\n\u003Ch3>Features And Options:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Display Logged in users Details.\u003C\u002Fli>\n\u003Cli>Add new Column to user listing oage.\u003C\u002Fli>\n\u003Cli>Mantain Login history from user profile page.\u003C\u002Fli>\n\u003Cli>Clear History of users.\u003C\u002Fli>\n\u003Cli>Compatible with WordPress multisite network\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Track user’s login details with the following attributes:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>Login\u003C\u002Fstrong> – Login Date-Time\u003C\u002Fli>\n\u003Cli>\u003Cstrong>IP Address\u003C\u002Fstrong> – Environment\u002FServer IP address\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Country\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>City\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Continent\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Timezone\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Latitude\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Longitude\u003C\u002Fstrong> (Based on IP Address)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Browser\u003C\u002Fstrong> – Name and Version\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Operating System\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Currency\u003C\u002Fstrong> – Code and Symbol\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Compatible With\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-login-register-flow\u002F\" rel=\"ugc\">WP Login Register Flow\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Keywords\u003C\u002Fh3>\n\u003Cp>Logged user detail, Login Log, user log, log, tracker, admin, subscriber, editor, geo location, manager, report, statistics, activity\u003C\u002Fp>\n","Track website's users by their login related information like Last login Date\u002FTime, Environment\u002FServer IP address,Country\u002FCity\u002FContinent\u002FTimezone …",70,3234,"2024-05-01T13:45:00.000Z","6.5.8","6.2.2",[131,132,23,133,134],"last-login","login-history","mantain-login-history","user-detail","http:\u002F\u002Fchetanvaghela.cf\u002Fwp-users-login-history","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-users-login-history.zip",85,{"slug":139,"name":140,"version":141,"author":142,"author_profile":143,"description":144,"short_description":145,"active_installs":146,"downloaded":147,"rating":148,"num_ratings":149,"last_updated":150,"tested_up_to":16,"requires_at_least":151,"requires_php":113,"tags":152,"homepage":113,"download_link":156,"security_score":148,"vuln_count":28,"unpatched_count":29,"last_vuln_date":157,"fetched_at":31},"limit-login-attempts-reloaded","Limit Login Attempts Reloaded – Login Security, 2FA, Brute Force Protection & Firewall","3.1.0","WPChef","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpchefgadget\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.limitloginattempts.com\" rel=\"nofollow ugc\">Limit Login Attempts Reloaded\u003C\u002Fa> functions as a robust deterrent against \u003Ca href=\"https:\u002F\u002Fwww.limitloginattempts.com\u002Fcracking-the-code-unveiling-the-mechanics-behind-brute-force-attacks\u002F\" rel=\"nofollow ugc\">brute force attacks\u003C\u002Fa>, bolstering your website’s security measures and optimizing its performance. It achieves this by \u003Cstrong>restricting the number of login attempts allowed\u003C\u002Fstrong>. This applies not only to the standard login method, but also to XMLRPC, Woocommerce, and custom login pages. With more than 2.5 million active users, this plugin fulfills all your login security requirements.\u003C\u002Fp>\n\u003Cp>The plugin functions by automatically preventing further attempts from a particular Internet Protocol (IP) address and\u002For username once a predetermined limit of retries has been surpassed. This significantly weakens the effectiveness of brute force attacks on your website.\u003C\u002Fp>\n\u003Cp>By default, WordPress permits an unlimited number of login attempts, posing a vulnerability where passwords can be easily deciphered through brute force methods.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Limit Login Attempts Reloaded Premium (Try Free with \u003Ca href=\"https:\u002F\u002Fwww.limitloginattempts.com\u002Fpremium-security-zero-cost-discover-the-benefits-of-micro-cloud\u002F\" rel=\"nofollow ugc\">Micro Cloud\u003C\u002Fa>)\u003C\u002Fstrong>\u003Cbr \u002F>\nUpgrade to \u003Ca href=\"https:\u002F\u002Fwww.limitloginattempts.com\u002Fplans\u002F\" rel=\"nofollow ugc\">Limit Login Attempts Reloaded Premium\u003C\u002Fa> to extend cloud-based protection to the Limit Login Attempts Reloaded plugin, thereby enhancing your login security. The premium version includes a range of highly beneficial features, including \u003Ca href=\"https:\u002F\u002Fwww.limitloginattempts.com\u002Ffeatures\u002Fip-intelligence\u002F\" rel=\"nofollow ugc\">IP intelligence\u003C\u002Fa> to \u003Cstrong>detect, counter and deny malicious login attempts\u003C\u002Fstrong>. Your \u003Ca href=\"https:\u002F\u002Fwww.limitloginattempts.com\u002Ffailed-login-attempts-in-wordpress\u002F\" rel=\"nofollow ugc\">failed login attempts\u003C\u002Fa> will be safely neutralized in the cloud so your website can function at its optimal performance during an attack.\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FJfkvIiQft14?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>Features (Free Version):\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>2FA\u003C\u002Fstrong> – Enable two-factor authentication for extra login security.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Limit Logins\u003C\u002Fstrong> – Limit the number of retry attempts when logging in (per each IP).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Configurable Lockout Timings\u003C\u002Fstrong> – Modify the amount of time a user or IP must wait after a lockout.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Remaining Tries\u003C\u002Fstrong> – Informs the user about the remaining retries or lockout time on the login page.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lockout Email Notifications\u003C\u002Fstrong> – Informs the admin via email of lockouts.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Denied Attempt Logs\u003C\u002Fstrong> – View a log of all denied attempts and lockouts.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>IP & Username Safelist\u002FDenylist\u003C\u002Fstrong> – Control access to usernames and IPs.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>New User Registration Protection (Micro Cloud Accounts)\u003C\u002Fstrong> – Protects default WP registration.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Sucuri\u003C\u002Fstrong> compatibility.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Wordfence\u003C\u002Fstrong> compatibility.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Ultimate Member\u003C\u002Fstrong> compatibility.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WPS Hide Login\u003C\u002Fstrong> compatibility.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>MemberPress\u003C\u002Fstrong> compatibility.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>XMLRPC\u003C\u002Fstrong> gateway protection.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Woocommerce\u003C\u002Fstrong> login page protection.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi-site compatibility\u003C\u002Fstrong> with extra MU settings.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>GDPR\u003C\u002Fstrong> compliant.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom IP origins support\u003C\u002Fstrong> (Cloudflare, Sucuri, etc.).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>llar_admin\u003C\u002Fstrong> own capability.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features (Premium Version):\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Performance Optimizer\u003C\u002Fstrong> – Offload the burden of excessive failed logins from your server to protect your server resources, resulting in improved speed and efficiency of your website.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enhanced IP Intelligence\u003C\u002Fstrong> – Identify repetitive and suspicious login attempts to detect potential brute force attacks. IPs with known malicious activity are stored and used to help prevent and counter future attacks.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enhanced Throttling\u003C\u002Fstrong> – Longer lockout intervals each time a malicious IP or username tries to login unsuccessfully.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Deny By Country\u003C\u002Fstrong> – \u003Ca href=\"https:\u002F\u002Fwww.limitloginattempts.com\u002Fblock-logins-by-country-in-wordpress\u002F\" rel=\"nofollow ugc\">Block logins by country\u003C\u002Fa> by simply selecting the countries you want to deny.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto IP Denylist\u003C\u002Fstrong> – Automatically add IP addresses to your active cloud deny list that repeatedly fail login attempts.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>New User Registration Protection\u003C\u002Fstrong> – Protects default WP registration.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Global Denylist Protection\u003C\u002Fstrong> – Utilize our active cloud IP data from thousands of websites in the LLAR network.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Synchronized Lockouts\u003C\u002Fstrong> –  Lockout IP data can be shared between multiple domains for enhanced protection in your network.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Synchronized Safelist\u002FDenylist\u003C\u002Fstrong> – Safelist\u002FDenylist IP and username data can be shared between multiple domains.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Premium Support\u003C\u002Fstrong> – Email support with a security tech.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto Backups of All IP Data\u003C\u002Fstrong> – Store your active IP data in the cloud.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Successful Logins Log\u003C\u002Fstrong> – Store successful logins in the cloud including IP info, city, state and lat\u002Flong.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enhanced lockout logs\u003C\u002Fstrong> – Gain valuable insights into the origins of IPs that are attempting logins.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>CSV Download of IP Data\u003C\u002Fstrong> – Download IP data direclty from the cloud.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Supports IPV6 Ranges For Safelist\u002FDenylist\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Unlock The Locked Admin\u003C\u002Fstrong> – Easily \u003Ca href=\"https:\u002F\u002Fwww.limitloginattempts.com\u002Fhow-to-unlock-your-site-if-you-are-locked-out-by-limit-login-attempts-reloaded\u002F\" rel=\"nofollow ugc\">unlock the locked admin\u003C\u002Fa> through the cloud.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>*Some features require higher level plans.\u003C\u002Fp>\n\u003Ch4>Upgrading from the old Limit Login Attempts plugin?\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Go to the Plugins section in your site’s backend.\u003C\u002Fli>\n\u003Cli>Remove the Limit Login Attempts plugin.\u003C\u002Fli>\n\u003Cli>Install the Limit Login Attempts Reloaded plugin.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>All your settings will be kept intact!\u003C\u002Fp>\n\u003Cp>Many languages are currently supported in the Limit Login Attempts Reloaded plugin but we welcome any additional ones.\u003C\u002Fp>\n\u003Cp>Help us bring Limit Login Attempts Reloaded to even more countries.\u003C\u002Fp>\n\u003Cp>Translations: Bulgarian, Brazilian Portuguese, Catalan, Chinese (Traditional), Czech, Dutch, Finnish, French, German, Hungarian, Norwegian, Persian, Romanian, Russian, Spanish, Swedish, Turkish\u003C\u002Fp>\n\u003Cp>Plugin uses standard actions and filters only.\u003C\u002Fp>\n\u003Cp>Based on the original code from Limit Login Attempts plugin by Johan Eenfeldt.\u003C\u002Fp>\n\u003Ch4>Branding Guidelines\u003C\u002Fh4>\n\u003Cp>Limit Login Attempts Reloaded™ is a trademark of Atlantic Silicon Inc. When writing about the plugin, please make sure to use Reloaded after Limit Login Attempts. Limit Login Attempts is the old plugin.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Limit Login Attempts Reloaded (correct)\u003C\u002Fli>\n\u003Cli>Limit Login Attempts (incorrect)\u003C\u002Fli>\n\u003C\u002Ful>\n","Stop password guessing attacks, secure WooCommerce, block bad IPs, block by countries (Pro), and add email 2FA. Lightweight with better performance.",2000000,83296786,98,1447,"2026-04-09T18:49:00.000Z","3.0",[153,20,154,112,155],"2fa","firewall","woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flimit-login-attempts-reloaded.3.1.0.zip","2023-12-20 00:00:00",{"slug":159,"name":160,"version":161,"author":162,"author_profile":163,"description":164,"short_description":165,"active_installs":166,"downloaded":167,"rating":13,"num_ratings":168,"last_updated":169,"tested_up_to":16,"requires_at_least":170,"requires_php":18,"tags":171,"homepage":176,"download_link":177,"security_score":178,"vuln_count":179,"unpatched_count":29,"last_vuln_date":180,"fetched_at":31},"better-wp-security","Solid Security – Password, Two Factor Authentication, and Brute Force Protection","9.4.7","StellarWP","https:\u002F\u002Fprofiles.wordpress.org\u002Fstellarwp\u002F","\u003Ch4>Reduce your WordPress website’s risk to nearly zero with Solid Security\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgo.solidwp.com\u002Fwporg-security-ithemes\" rel=\"nofollow ugc\">Formerly iThemes Security. Looking for iThemes? Learn more here.\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>On average, 30,000 websites are hacked every day.* Cyberattacks in the US increased by 57% in 2022.** Bad actors who want to hack your site, steal your data, and cripple your business are a 24\u002F7\u002F365 threat.\u003C\u002Fp>\n\u003Cp>You need a proactive, strategic approach to WordPress website security that protects your site from brute force attacks, malware infections, and other cyber threats.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgo.solidwp.com\u002Fsolid-security-pro\" rel=\"nofollow ugc\">Solid Security\u003C\u002Fa> shields your site from cyberattacks and prevents security vulnerabilities. It automatically locks out bad users identified by our Brute Force Protection Network that is nearly 1 million sites strong and leverages your own blacklist. It secures and protects your most commonly attacked part of your WordPress website – user login authentication.\u003C\u002Fp>\n\u003Cp>With Patchstack integration (Pro) protects your site before you even have a chance to address vulnerabilities and before a plugin or theme vendor or developer can even issue a patch.\u003C\u002Fp>\n\u003Cp>That’s 24\u002F7\u002F365 always-on truly Solid Security.\u003C\u002Fp>\n\u003Cp>\u003Ciframe loading=\"lazy\" title=\"Welcome to Solid Security, Part of the SolidWP Suite\" src=\"https:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F863249227?dnt=1&app_id=122963\" width=\"750\" height=\"422\" frameborder=\"0\" allow=\"autoplay; fullscreen; picture-in-picture; clipboard-write\">\u003C\u002Fiframe>\u003C\u002Fp>\n\u003Ch4>🌐 Secure your Website in Minutes\u003C\u002Fh4>\n\u003Cp>The Solid Security setup and onboarding experience allows anyone to secure their WordPress website in under 10 minutes, regardless of technical acumen. Knowing that you have enabled all the right security settings for your website will leave you feeling like your site has never been more secure.\u003C\u002Fp>\n\u003Ch4>📚 Security Site Templates to Fit Your Type of Site\u003C\u002Fh4>\n\u003Cp>Enabling the correct security settings based on the type of website you are building or maintaining is essential for proper security. An eCommerce site requires a different level of security than a basic blog. Solid Security Site Templates make it quick and easy to apply the right security settings for your website.\u003C\u002Fp>\n\u003Cp>Choose from six different site templates to apply the type of security your site needs:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>Ecommerce\u003C\u002Fstrong> – websites that sell products or services\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Network\u003C\u002Fstrong> – websites that connect people or communities\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Non-Profit\u003C\u002Fstrong> – websites that promote your cause and collect donations\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Blog\u003C\u002Fstrong> – websites that share your thoughts or start a conversation\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Portfolio\u003C\u002Fstrong> – websites that showcase your craft\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Brochure\u003C\u002Fstrong> – simple websites that promote your business\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>⌚ Real-Time Website Security Dashboard\u003C\u002Fh4>\n\u003Cp>Every day, lots of activity is happening on your website that you can’t see. Many of these activities can be related to your site’s security, so monitoring these events is vital to keeping your site secure.\u003C\u002Fp>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fgo.solidwp.com\u002Fsolid-security-pro\" rel=\"nofollow ugc\">Solid Security Pro\u003C\u002Fa> plugin provides a real-time WordPress security dashboard that monitors security-related events on your site around the clock. The Solid Security Dashboard is a dynamic dashboard with all your WordPress website’s security activity stats in one place, including brute force attacks, banned users, active lockouts, site scan results, and user security stats (Pro).\u003C\u002Fp>\n\u003Ch4>🗝️ WordPress Login Security\u003C\u002Fh4>\n\u003Cp>Setting up and maintaining proper WordPress configurations and managing user account access are essential aspects of hardening your site against threats and vulnerabilities. Basic and Pro include features that address both of these factors.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Two Factor Authentication (2FA)\u003C\u002Fstrong> – Make your WordPress login nearly impenetrable to attack by requiring users to enter a security code along with a password to login. The Solid Security plugin allows you to add two-factor authentication to your WordPress login with several authentication methods, including mobile apps like Authy and Google Authenticator, email, and backup codes.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Password Requirements\u003C\u002Fstrong> – Create and enforce a password policy for your users in less than a minute.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>reCAPTCHA\u003C\u002Fstrong> (Pro) – Stop bad bots from engaging in abusive activities on your website, such as attempting to break into your website using compromised passwords, posting spam, or even scraping your content.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Passwordless Logins\u003C\u002Fstrong> (Pro) – WordPress security made easy. Secure your user accounts with 2fa & strong passwords while allowing real users login with a click of a mouse.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Trusted Devices\u003C\u002Fstrong> (Pro) – Identify the devices you and other users use to block session hijacking attacks and limit Administrator privileges to Trusted Devices.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Automated Vulnerability Patching\u003C\u002Fstrong> (Pro) – Solid Security Pro includes Patchstack which patches vulnerabilities before you have a chance to and applies fixes even before a plugin developer or vendor has issued a patch.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Learn more about how \u003Ca href=\"https:\u002F\u002Fgo.solidwp.com\u002Fwporgpasswordless\" rel=\"nofollow ugc\">passwordless login is the future\u003C\u002Fa> and how Solid Security can help you implement it today.\u003C\u002Fp>\n\u003Ch4>👨‍👩‍👧‍👦 The Right Amount of Security for Every User Level\u003C\u002Fh4>\n\u003Cp>Different types of user levels require different levels of security. During the Solid Security setup process, you can identify your website’s key user groups. Once the different types of users are identified, you can apply the level of security that is just right for each user group.\u003C\u002Fp>\n\u003Cp>Here are a couple of examples of how User Groups are useful for securing your site:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>For Clients\u003C\u002Fstrong> – Let’s say you are configuring Solid Security on a client’s website. You will decide whether or not they are required to use two-factor authentication and if they should have access to the Solid Security settings.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>For Customers\u003C\u002Fstrong> – If you have an eCommerce website, you will decide whether or not you want to protect customer accounts with a password policy.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Privilege Escalation\u003C\u002Fstrong> (Pro) also adds a safe, secure way to grant temporary admin-level access to your website.\u003C\u002Fp>\n\u003Ch4>🤖 Block Bad Bots & Ban User Agents with Lockouts\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Ban Users\u003C\u002Fstrong> (Basic and Pro) – Permanently block repeat offenders from accessing your site.\u003Cbr \u002F>\nLocal Brute Force Protection – Automatically identify and stop the most common method of attack on WordPress sites.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Local Brute Force Protection\u003C\u002Fstrong> (Basic and Pro) – Automatically identify and stop the most common method of attack on WordPress sites.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Network Brute Force Protection\u003C\u002Fstrong> (Basic and Pro) – The network is the Solid Security community and is nearly one million websites strong. If someone tries to break into websites in the Solid Security community, Solid Security will block them across the network.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Magic Links\u003C\u002Fstrong> (Pro) – Security shouldn’t get in your way. Magic Links allow you to log in to your WordPress site while your username is locked out by the Solid Security Local Brute Force Protection feature.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🔍 Monitor Your Site’s Security Health\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>File Change Detection\u003C\u002Fstrong> (Basic and Pro) – Solid Security logs changes made to your website that can help detect malicious activity on your website.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Site Scanner (Basic and Pro)\u003C\u002Fstrong> – Schedule checks to run four times per day (Basic) or hourly (Pro) for known vulnerabilities of WordPress core file, plugins and themes. Using the Google Safe Browsing API, the Site Scan also checks your Google’s blocklist status and will alert you if Google has found any malware on your website.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Patchstack integration (Pro)\u003C\u002Fstrong> – Automated virtual patching of some vulnerabilities before you even have a chance to address them yourself, and before a plugin or theme vendor or developer can even issue a patch.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Site Scanner\u003C\u002Fstrong> (Pro) – Unlock Version Management to automatically apply a patch to vulnerable software detected by the Site Scan when one is available.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>User Logging\u003C\u002Fstrong> (Pro) – Keep a record of user activity in your WordPress security logs, including login\u002Flogout, user registration, adding\u002Fremoving plugins, switching themes, changes to posts and pages, and more.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Version Management\u003C\u002Fstrong> (Pro) – The Version Management feature in Solid Security Pro allows you to auto-update WordPress, plugins, and themes. Beyond that, Version Management also has options to harden your website when you are running outdated software and scan for old websites.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🧠 Smarter, More Actionable Vulnerability Prioritization\u003C\u002Fh4>\n\u003Cp>Not all vulnerabilities pose the same level of risk, and the traditional Common Vulnerability Scoring System (CVSS) score doesn’t always reflect the realities of running a WordPress site.\u003C\u002Fp>\n\u003Cp>Solid Security now uses the Patchstack Priority score, which goes beyond CVSS to provide a real-world risk assessment tailored to WordPress. It factors in how likely a vulnerability is to be exploited and its actual impact on your site.\u003C\u002Fp>\n\u003Cp>With Patchstack Priority, you get a clearer picture of what really matters, helping you focus on the vulnerabilities that pose the greatest risk, and worry less about noise from low-impact issues.\u003C\u002Fp>\n\u003Ch4>🛠️ Website Security Utilities\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Enforce SSL\u003C\u002Fstrong> – Force all connections to the website to be made over SSL\u002FTLS.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Database Backups\u003C\u002Fstrong> – Create backups of your WordPress database. (Not a complete backup.)\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Geolocation\u003C\u002Fstrong> (Pro) – Improve Trusted Devices by connecting to an external location or mapping API.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🚀 Advanced Security Tools\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Identify Server IPs\u003C\u002Fstrong> – Prevent issues caused by inadvertently locking out your server IPs.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Change User ID 1\u003C\u002Fstrong> – Change the user ID for the first WordPress user, potentially preventing attacks that assume the user with ID1 exists and is an administrator.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Change Database Prefix\u003C\u002Fstrong> – Change the database prefix that WordPress uses, potentially preventing attacks that assume the database prefix is “wp_”.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Check File Permission\u003C\u002Fstrong> – See the file and directory permissions of key areas of your site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Server Config Rules\u003C\u002Fstrong> – View or flush the server security rules generated by Solid Security.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>wp-config.php Rules\u003C\u002Fstrong> – View or flush the wp-config.php security rules generated by Solid Security.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Change WordPress Salts\u003C\u002Fstrong> – Secure your site after a successful attack by changing the WordPress salts used to secure cookies and security tokens.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Hide Login URL\u003C\u002Fstrong> – change the login URL of your site, making it harder for bots to find your login page and attack it.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>🛟 Need Help?\u003C\u002Fh4>\n\u003Cp>Free support may be available with the community’s help in the WordPress.org support forums. Our Solid Security support team provides top-notch technical support to all our Solid Security Basic users there.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fgo.solidwp.com\u002Fsecurity-help-center\" rel=\"nofollow ugc\">Our Help Center will help you become an iThemes Security expert.\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Get additional peace of mind with professional support from our expert team and pro features to take your site’s security to the next level with Solid Security Pro.\u003C\u002Fp>\n\u003Ch4>Recover From a Hacked Site\u003C\u002Fh4>\n\u003Cp>Solid Security makes regular backups of your WordPress database, allowing you to get back online quickly in the event of a hack or security breach. Use Solid Security to create and email database backups on a customizable schedule.\u003C\u002Fp>\n\u003Cp>For complete site backups and the ability to restore or move WordPress to a new host or domain, check out \u003Ca href=\"https:\u002F\u002Fgo.solidwp.com\u002Fsecurity-basic-solid-backups\" rel=\"nofollow ugc\">Solid Backups\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Solid Central Integration\u003C\u002Fh4>\n\u003Cp>Manage more than one WordPress site? Release lockouts and keep your themes, plugins, and WordPress core up to date from one dashboard with \u003Ca href=\"https:\u002F\u002Fgo.solidwp.com\u002Fsecurity-basic-solid-central\" rel=\"nofollow ugc\">Solid Central\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>*Zippia. “30 Crucial Cybersecurity Statistics [2023]: Data, Trends And More” Zippia.com. Jun. 15, 2023, https:\u002F\u002Fwww.zippia.com\u002Fadvice\u002Fcybersecurity-statistics\u002F\u003C\u002Fp>\n\u003Cp>**https:\u002F\u002Fblog.checkpoint.com\u002F2023\u002F01\u002F05\u002F38-increase-in-2022-global-cyberattacks\u002F\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>Released under the terms of the GNU General Public License.\u003C\u002Fp>\n","Harden your site security with Login Security, Two-Factor Authentication (2FA), Vulnerability Scanner, Firewall, and more. Formerly iThemes Security.",700000,37682429,3982,"2026-03-30T13:53:00.000Z","6.5",[172,173,174,112,175],"brute-force-protection","malware","password-protection","two-factor-authentication","https:\u002F\u002Fsolidwp.com\u002Fproducts\u002Fsecurity","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbetter-wp-security.9.4.7.zip",93,19,"2024-06-20 00:00:00",{"slug":182,"name":183,"version":184,"author":185,"author_profile":186,"description":187,"short_description":188,"active_installs":189,"downloaded":190,"rating":148,"num_ratings":191,"last_updated":192,"tested_up_to":16,"requires_at_least":193,"requires_php":18,"tags":194,"homepage":199,"download_link":200,"security_score":27,"vuln_count":201,"unpatched_count":29,"last_vuln_date":202,"fetched_at":31},"simple-history","Simple History – Track, Log, and Audit WordPress Changes","5.26.0","Pär Thernström","https:\u002F\u002Fprofiles.wordpress.org\u002Feskapism\u002F","\u003Cp>Trusted by 300,000+ WordPress sites, rated 4.9 stars with \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fsimple-history\u002Freviews\u002F?filter=5\" rel=\"ugc\">430+ five-star reviews\u003C\u002Fa>, actively developed for 10+ years, and translated into 15+ languages.\u003C\u002Fp>\n\u003Cp>Simple History is the complete audit log for WordPress. It tracks every meaningful change — content edits, user logins, plugin updates, security events, and more — so site owners, teams, agencies, and developers always know who did what and when. Just install and activate; no configuration required.\u003C\u002Fp>\n\u003Ch3>🔍 How Simple History Helps in Real Situations\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Track what’s happening on your site\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cem>“Has anyone done anything today? Ah, Sarah uploaded the new press release and created an article for it. Great — now I don’t have to do that.”\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Identify issues and debug faster\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cem>“The site feels slow since yesterday. Has anyone done anything special? … Ah, Steven activated ‘naughty-plugin-x’, that must be it.”\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Keep freelancers & agencies accountable\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cem>“I hired a developer to optimize my site. But did they actually do anything? A quick glance at Simple History shows me exactly what they worked on.”\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Spot suspicious activity early\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cem>“I see three failed logins from an unfamiliar IP address overnight. Let me click the IP to check all activity from that address — just those attempts, nothing else. Good to know.”\u003C\u002Fem>\u003C\u002Fp>\n\u003Ch3>✨ What Simple History Tracks\u003C\u002Fh3>\n\u003Ch4>Security & Monitoring\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Failed user logins with IP tracking and filtering by type (wrong password vs. non-existent username)\u003C\u002Fli>\n\u003Cli>Core file integrity checks against official checksums\u003C\u002Fli>\n\u003Cli>Forced security auto-updates from WordPress.org\u003C\u002Fli>\n\u003Cli>Site Health status changes\u003C\u002Fli>\n\u003Cli>Admin page access denied events\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Content & Users\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Posts, pages, and custom post types — create, edit, delete, and homepage assignment\u003C\u002Fli>\n\u003Cli>Attachments with image edit details (crop, rotate, flip, scale) and thumbnail previews\u003C\u002Fli>\n\u003Cli>Taxonomies with detailed diffs of name, slug, description, and parent\u003C\u002Fli>\n\u003Cli>Comments, menus (with item-level detail), and widgets\u003C\u002Fli>\n\u003Cli>User profiles, logins, logouts, and role changes\u003C\u002Fli>\n\u003Cli>Notes — the collaboration feature in WordPress 6.9\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>System & Updates\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Plugin lifecycle: install, update, activate, deactivate, delete, and auto-update toggle\u003C\u002Fli>\n\u003Cli>Theme install, update, activate, switch, and delete\u003C\u002Fli>\n\u003Cli>WordPress core updates (manual and automatic)\u003C\u002Fli>\n\u003Cli>Translation and language pack updates\u003C\u002Fli>\n\u003Cli>Available update notifications\u003C\u002Fli>\n\u003Cli>Settings and option screen changes\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Privacy & Compliance\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Privacy data export and user data erasure requests\u003C\u002Fli>\n\u003Cli>Privacy page changes\u003C\u002Fli>\n\u003Cli>IP addresses anonymized by default — no cookies, no external fonts\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🔌 Built-in Third-Party Plugin Support\u003C\u002Fh3>\n\u003Cp>Simple History includes built-in logging for:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Jetpack\u003C\u002Fstrong> – Module activations and deactivations\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Advanced Custom Fields (ACF)\u003C\u002Fstrong> – Field group and field changes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User Switching\u003C\u002Fstrong> – User switch events\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WP Crontrol\u003C\u002Fstrong> – Cron event and schedule changes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enable Media Replace\u003C\u002Fstrong> – File replacement details\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Limit Login Attempts\u003C\u002Fstrong> – Login attempts, lockouts, and config changes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Redirection\u003C\u002Fstrong> – Redirect and group changes, global settings\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Duplicate Post\u003C\u002Fstrong> – Post and page cloning\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Beaver Builder\u003C\u002Fstrong> – Layout, template, and settings saves\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Is your plugin missing? Plugin authors can add support using the \u003Ca href=\"https:\u002F\u002Fsimple-history.com\u002Fdocs\u002Flogging-api\u002F?utm_source=wordpress_org&utm_medium=plugin_directory&utm_campaign=documentation&utm_content=readme_doc_logging_api\" rel=\"nofollow ugc\">logging API\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>💬 What Users Say\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fsimple-history\u002Freviews\u002F?filter=5\" rel=\"ugc\">430+ five-star reviews\u003C\u002Fa> on WordPress.org:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cem>“So far the best and most comprehensive logging plugin”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fso-far-the-best-and-most-comprehensive-logging-plugin\u002F\" rel=\"ugc\">@herrschuessler\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“The best history plugin I’ve found”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fthe-best-history-plugin-ive-found\u002F\" rel=\"ugc\">Rich Mehta\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Fantastic plugin I use on all sites”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Ffantastic-plugin-i-use-on-all-sites\u002F\" rel=\"ugc\">Duncan Michael-MacGregor\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“It is a standard plugin for all of our sites”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fit-is-a-standard-plugin-for-all-of-our-sites\u002F\" rel=\"ugc\">Mr Tibbs\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🚀 View Your Log Everywhere\u003C\u002Fh3>\n\u003Cp>Simple History starts tracking instantly after activation — no setup needed. It even imports recent activity so your log isn’t empty on day one. Access your log from:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Dashboard widget\u003C\u002Fstrong> – Activity stats summary and recent events\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Admin bar quick view\u003C\u002Fstrong> – Dropdown with latest events on any admin page\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Command palette\u003C\u002Fstrong> – Type “Simple History” to jump to the log for the current post\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dedicated admin page\u003C\u002Fstrong> – Full log with search, filters, and insights sidebar\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Email reports\u003C\u002Fstrong> – Weekly summary delivered to your inbox\u003C\u002Fli>\n\u003Cli>\u003Cstrong>RSS feed\u003C\u002Fstrong> – Password-protected feed for your favorite reader\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WP-CLI\u003C\u002Fstrong> – Command-line access for automation and scripting\u003C\u002Fli>\n\u003Cli>\u003Cstrong>REST API\u003C\u002Fstrong> – Programmatic access for custom integrations\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>📧 Weekly Email Reports – Stay Informed Without Logging In\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fsimple-history.com\u002Ffeatures\u002Femail-reports-weekly\u002F?utm_source=wordpress_org&utm_medium=plugin_directory&utm_campaign=documentation&utm_content=readme_doc_email_reports\" rel=\"nofollow ugc\">Weekly email reports\u003C\u002Fa> deliver a summary of your site’s activity every Monday morning — total activity, daily breakdown, key metrics (logins, content updates, plugin changes), and direct links to the full log.\u003C\u002Fp>\n\u003Cp>Perfect for site owners, agencies managing client sites, and teams who need regular updates without logging in. Enable it in settings and \u003Ca href=\"https:\u002F\u002Fsimple-history.com\u002Ffeatures\u002Femail-reports-weekly\u002F?utm_source=wordpress_org&utm_medium=plugin_directory&utm_campaign=documentation&utm_content=readme_doc_email_reports#example\" rel=\"nofollow ugc\">see what the email looks like\u003C\u002Fa> before turning it on.\u003C\u002Fp>\n\u003Ch3>🛠️ For Developers & Power Users\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>WP-CLI\u003C\u002Fstrong> – \u003Ca href=\"https:\u002F\u002Fsimple-history.com\u002Ffeatures\u002Fwp-cli-commands\u002F?utm_source=wordpress_org&utm_medium=plugin_directory&utm_campaign=documentation&utm_content=readme_doc_wp_cli_commands\" rel=\"nofollow ugc\">List, search, and export events\u003C\u002Fa> from the command line — perfect for automation and managing multiple sites\u003C\u002Fli>\n\u003Cli>\u003Cstrong>REST API\u003C\u002Fstrong> – Full programmatic access to query the log and add custom events. See the \u003Ca href=\"https:\u002F\u002Fsimple-history.com\u002Fdocs\u002F?utm_source=wordpress_org&utm_medium=plugin_directory&utm_campaign=documentation&utm_content=readme_doc_overview\" rel=\"nofollow ugc\">documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Logging API\u003C\u002Fstrong> – \u003Ca href=\"https:\u002F\u002Fsimple-history.com\u002Fdocs\u002Flogging-api\u002F?utm_source=wordpress_org&utm_medium=plugin_directory&utm_campaign=documentation&utm_content=readme_doc_logging_api\" rel=\"nofollow ugc\">Log your own events\u003C\u002Fa> from themes and plugins with a single line of code\u003C\u002Fli>\n\u003Cli>\u003Cstrong>RSS feed\u003C\u002Fstrong> – Subscribe to changes using any feed reader\u003C\u002Fli>\n\u003Cli>\u003Cstrong>AI & agent-friendly\u003C\u002Fstrong> – The REST API and RSS feed make Simple History accessible to AI agents and automated workflows like Claude Code\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Stealth Mode\u003C\u002Fstrong> – Run Simple History completely hidden from the admin interface via code; \u003Ca href=\"https:\u002F\u002Fsimple-history.com\u002Fadd-ons\u002Fpremium?utm_source=wordpress_org&utm_medium=plugin_directory&utm_campaign=documentation&utm_content=readme_doc_stealth_mode\" rel=\"nofollow ugc\">Premium\u003C\u002Fa> adds a GUI. Ideal for agencies and client sites\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🔆 Extend with Add-ons\u003C\u002Fh3>\n\u003Ch4>\u003Ca href=\"https:\u002F\u002Fsimple-history.com\u002Fadd-ons\u002Fpremium?utm_source=wordpress_org&utm_medium=plugin_directory&utm_campaign=documentation&utm_content=readme_doc_premium\" rel=\"nofollow ugc\">Simple History Premium\u003C\u002Fa>\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Alerts & Notifications\u003C\u002Fstrong> – Get notified instantly via Email, Slack, Discord, or Telegram when important events occur. Start quickly with preset rules for common scenarios or build custom rules filtered by event type, user, role, and log level.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Log Forwarding\u003C\u002Fstrong> – Stream events to external destinations: local log files, syslog servers (UDP\u002FTCP\u002FTLS), Datadog, Splunk, webhooks, or external MySQL\u002FMariaDB databases. Perfect for centralized logging, compliance, and backup.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Enhanced Controls\u003C\u002Fstrong> – Custom retention periods (or keep logs forever), CSV\u002FJSON export of filtered search results, post activity panel in the block editor, custom log entries for team decisions, stealth mode GUI, logger control to fine-tune which events are recorded, and an ad-free experience.\u003C\u002Fp>\n\u003Ch4>\u003Ca href=\"https:\u002F\u002Fsimple-history.com\u002Fadd-ons\u002Fwoocommerce\u002F?utm_source=wordpress_org&utm_medium=plugin_directory&utm_campaign=addons&utm_content=readme_addon_woocommerce\" rel=\"nofollow ugc\">WooCommerce Logger\u003C\u002Fa>\u003C\u002Fh4>\n\u003Cp>Track WooCommerce activity: orders, refunds, stock changes, product updates, pricing adjustments, settings modifications, and coupon usage.\u003C\u002Fp>\n\u003Ch4>\u003Ca href=\"https:\u002F\u002Fsimple-history.com\u002Fadd-ons\u002Fdebug-and-monitor\u002F?utm_source=wordpress_org&utm_medium=plugin_directory&utm_campaign=addons&utm_content=readme_addon_debug_monitor\" rel=\"nofollow ugc\">Debug and Monitor\u003C\u002Fa>\u003C\u002Fh4>\n\u003Cp>Monitor outgoing HTTP requests and emails, debug API calls, and see what’s happening under the hood. Essential for developers and support teams.\u003C\u002Fp>\n\u003Ch3>💚 Sponsor this project\u003C\u002Fh3>\n\u003Cp>If you like this plugin please consider \u003Ca href=\"https:\u002F\u002Fsimple-history.com\u002Fsponsor\u002F?utm_source=wordpress_org&utm_medium=plugin_directory&utm_campaign=sponsorship&utm_content=readme_sponsor_footer\" rel=\"nofollow ugc\">sponsoring the development of the free plugin\u003C\u002Fa>. The plugin has been free for over 10 years and will continue to be free.\u003C\u002Fp>\n","Track changes and user activities on your WordPress site. See who created a page, uploaded an attachment, and more, for a complete audit trail.",300000,11757333,468,"2026-04-12T09:59:00.000Z","6.3",[195,196,197,21,198],"activity","audit-log","event-log","user-tracking","https:\u002F\u002Fsimple-history.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-history.5.26.0.zip",5,"2026-03-22 00:00:00",{"attackSurface":204,"codeSignals":297,"taintFlows":312,"riskAssessment":406,"analyzedAt":417},{"hooks":205,"ajaxHandlers":290,"restRoutes":291,"shortcodes":292,"cronEvents":296,"entryPointCount":92,"unprotectedCount":29},[206,211,216,219,222,224,226,228,230,233,236,240,243,246,249,252,255,258,261,263,265,267,270,273,276,279,281,284,286,288],{"type":207,"name":208,"callback":208,"file":209,"line":210},"action","admin_enqueue_scripts","inc\u002Fadmin\u002Fclass-settings-api.php",35,{"type":207,"name":212,"callback":213,"file":214,"line":215},"wp_insert_site","anonymous","inc\u002Fcore\u002Fclass-init.php",104,{"type":207,"name":217,"callback":213,"file":214,"line":218},"wp_delete_site",105,{"type":207,"name":220,"callback":213,"file":214,"line":221},"admin_init",113,{"type":207,"name":220,"callback":213,"file":214,"line":223},114,{"type":207,"name":220,"callback":213,"file":214,"line":225},118,{"type":207,"name":208,"callback":213,"file":214,"line":227},121,{"type":207,"name":208,"callback":213,"file":214,"line":229},122,{"type":207,"name":231,"callback":213,"file":214,"line":232},"admin_menu",123,{"type":207,"name":234,"callback":213,"file":214,"line":235},"network_admin_menu",124,{"type":237,"name":238,"callback":213,"file":214,"line":239},"filter","set-screen-option",125,{"type":207,"name":241,"callback":213,"file":214,"line":242},"admin_notices",127,{"type":207,"name":244,"callback":213,"file":214,"line":245},"network_admin_notices",128,{"type":207,"name":247,"callback":213,"file":214,"line":248},"set_logged_in_cookie",130,{"type":207,"name":250,"callback":213,"file":214,"line":251},"wp_login_failed",131,{"type":207,"name":253,"callback":213,"file":214,"line":254},"wp_logout",132,{"type":207,"name":256,"callback":213,"file":214,"line":257},"init",133,{"type":207,"name":259,"callback":213,"file":214,"line":260},"attach_session_information",134,{"type":207,"name":220,"callback":213,"file":214,"line":262},136,{"type":207,"name":231,"callback":213,"file":214,"line":264},137,{"type":207,"name":256,"callback":213,"file":214,"line":266},139,{"type":207,"name":268,"callback":213,"file":214,"line":269},"show_user_profile",140,{"type":207,"name":271,"callback":213,"file":214,"line":272},"edit_user_profile",141,{"type":207,"name":274,"callback":213,"file":214,"line":275},"personal_options_update",142,{"type":207,"name":277,"callback":213,"file":214,"line":278},"edit_user_profile_update",143,{"type":207,"name":234,"callback":213,"file":214,"line":280},145,{"type":207,"name":282,"callback":213,"file":214,"line":283},"wp_enqueue_scripts",160,{"type":207,"name":282,"callback":213,"file":214,"line":285},161,{"type":207,"name":256,"callback":213,"file":214,"line":287},163,{"type":207,"name":256,"callback":213,"file":214,"line":289},164,[],[],[293],{"tag":294,"callback":213,"file":214,"line":295},"user_login_history",159,[],{"dangerousFunctions":298,"sqlUsage":299,"outputEscaping":302,"fileOperations":308,"externalRequests":92,"nonceChecks":309,"capabilityChecks":310,"bundledLibraries":311},[],{"prepared":300,"raw":29,"locations":301},25,[],{"escaped":303,"rawEcho":92,"locations":304},460,[305],{"file":209,"line":306,"context":307},679,"raw output",2,7,8,[],[313,348,362,376,391],{"entryPoint":314,"graph":315,"unsanitizedCount":29,"severity":347},"\u003Cclass-admin-login-list-table> (inc\u002Fadmin\u002Fclass-admin-login-list-table.php:0)",{"nodes":316,"edges":342},[317,323,328,331,335,337],{"id":318,"type":319,"label":320,"file":321,"line":322},"n0","source","$_REQUEST","inc\u002Fadmin\u002Fclass-admin-login-list-table.php",53,{"id":324,"type":325,"label":326,"file":321,"line":125,"wp_function":327},"n1","sink","get_results() [SQLi]","get_results",{"id":329,"type":319,"label":330,"file":321,"line":322},"n2","$_REQUEST (x2)",{"id":332,"type":325,"label":333,"file":321,"line":125,"wp_function":334},"n3","prepare (format string)() [SQLi]","prepare (format string)",{"id":336,"type":319,"label":320,"file":321,"line":322},"n4",{"id":338,"type":325,"label":339,"file":321,"line":340,"wp_function":341},"n5","get_var() [SQLi]",97,"get_var",[343,345,346],{"from":318,"to":324,"sanitized":344},true,{"from":329,"to":332,"sanitized":344},{"from":336,"to":338,"sanitized":344},"low",{"entryPoint":349,"graph":350,"unsanitizedCount":29,"severity":347},"\u003Cclass-network-admin-login-list-table> (inc\u002Fadmin\u002Fclass-network-admin-login-list-table.php:0)",{"nodes":351,"edges":359},[352,355,357,358],{"id":318,"type":319,"label":320,"file":353,"line":354},"inc\u002Fadmin\u002Fclass-network-admin-login-list-table.php",242,{"id":324,"type":325,"label":326,"file":353,"line":356,"wp_function":327},263,{"id":329,"type":319,"label":320,"file":353,"line":354},{"id":332,"type":325,"label":333,"file":353,"line":356,"wp_function":334},[360,361],{"from":318,"to":324,"sanitized":344},{"from":329,"to":332,"sanitized":344},{"entryPoint":363,"graph":364,"unsanitizedCount":29,"severity":347},"\u003Cfilter> (inc\u002Fadmin\u002Fviews\u002Fforms\u002Ffilter.php:0)",{"nodes":365,"edges":374},[366,370],{"id":318,"type":319,"label":367,"file":368,"line":369},"$_GET (x2)","inc\u002Fadmin\u002Fviews\u002Fforms\u002Ffilter.php",18,{"id":324,"type":325,"label":371,"file":368,"line":372,"wp_function":373},"echo() [XSS]",22,"echo",[375],{"from":318,"to":324,"sanitized":344},{"entryPoint":377,"graph":378,"unsanitizedCount":29,"severity":347},"get_rows (inc\u002Ffrontend\u002Fclass-frontend-login-list-table.php:282)",{"nodes":379,"edges":388},[380,384,386,387],{"id":318,"type":319,"label":381,"file":382,"line":383},"$_GET","inc\u002Ffrontend\u002Fclass-frontend-login-list-table.php",299,{"id":324,"type":325,"label":326,"file":382,"line":385,"wp_function":327},315,{"id":329,"type":319,"label":381,"file":382,"line":383},{"id":332,"type":325,"label":333,"file":382,"line":385,"wp_function":334},[389,390],{"from":318,"to":324,"sanitized":344},{"from":329,"to":332,"sanitized":344},{"entryPoint":392,"graph":393,"unsanitizedCount":29,"severity":347},"\u003Cclass-frontend-login-list-table> (inc\u002Ffrontend\u002Fclass-frontend-login-list-table.php:0)",{"nodes":394,"edges":402},[395,396,397,398,399,400],{"id":318,"type":319,"label":381,"file":382,"line":383},{"id":324,"type":325,"label":326,"file":382,"line":385,"wp_function":327},{"id":329,"type":319,"label":367,"file":382,"line":383},{"id":332,"type":325,"label":333,"file":382,"line":385,"wp_function":334},{"id":336,"type":319,"label":381,"file":382,"line":383},{"id":338,"type":325,"label":339,"file":382,"line":401,"wp_function":341},344,[403,404,405],{"from":318,"to":324,"sanitized":344},{"from":329,"to":332,"sanitized":344},{"from":336,"to":338,"sanitized":344},{"summary":407,"deductions":408},"The 'user-login-history' plugin v2.1.8 exhibits a generally strong security posture based on the static analysis. The code demonstrates excellent practices regarding SQL query handling, with 100% of queries using prepared statements, and robust output escaping, with 100% of outputs properly escaped. The absence of critical or high severity taint flows is also a positive indicator. The plugin also correctly implements nonce and capability checks for its identified entry points, which are limited to a single shortcode. \n\nHowever, the plugin's vulnerability history presents a significant concern. With a total of 4 known CVEs, including 2 high and 2 medium severity vulnerabilities, it indicates a recurring pattern of security weaknesses. The common vulnerability types being SQL Injection and Cross-site Scripting, despite the static analysis suggesting preparedness in these areas for the current version, highlight past issues that could potentially re-emerge or be introduced in future updates if not meticulously addressed. The most recent vulnerability being in 2025 suggests a recent history of security flaws.\n\nIn conclusion, while the current version of the plugin is technically well-implemented with good coding practices for data handling and input validation, the historical record of numerous past vulnerabilities, particularly those of high severity, necessitates caution. Users should remain vigilant about future updates and monitor for any newly disclosed vulnerabilities. The plugin's strengths lie in its current secure coding practices, but its weakness is the demonstrated historical tendency for security flaws.",[409,412,414],{"reason":410,"points":411},"Multiple high\u002Fmedium severity historical CVEs",20,{"reason":413,"points":411},"2 High severity known CVEs (unpatched)",{"reason":415,"points":416},"2 Medium severity known CVEs (unpatched)",10,"2026-04-16T10:59:46.862Z",{"wat":419,"direct":438},{"assetPaths":420,"generatorPatterns":428,"scriptPaths":429,"versionParams":430},[421,422,423,424,425,426,427],"\u002Fwp-content\u002Fplugins\u002Fuser-login-history\u002Finc\u002Fadmin\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Fuser-login-history\u002Finc\u002Fadmin\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fuser-login-history\u002Finc\u002Fadmin\u002Fcss\u002Flisting.css","\u002Fwp-content\u002Fplugins\u002Fuser-login-history\u002Finc\u002Fadmin\u002Fcss\u002Fuser-profile.css","\u002Fwp-content\u002Fplugins\u002Fuser-login-history\u002Finc\u002Fadmin\u002Fcss\u002Fsettings.css","\u002Fwp-content\u002Fplugins\u002Fuser-login-history\u002Finc\u002Fadmin\u002Fjs\u002Fuser-profile.js","\u002Fwp-content\u002Fplugins\u002Fuser-login-history\u002Finc\u002Fadmin\u002Fjs\u002Fsettings.js",[],[421,426,427],[431,432,433,434,435,436,437],"user-login-history\u002Finc\u002Fadmin\u002Fjs\u002Fadmin.js?ver=","user-login-history\u002Finc\u002Fadmin\u002Fcss\u002Fadmin.css?ver=","user-login-history\u002Finc\u002Fadmin\u002Fcss\u002Flisting.css?ver=","user-login-history\u002Finc\u002Fadmin\u002Fcss\u002Fuser-profile.css?ver=","user-login-history\u002Finc\u002Fadmin\u002Fcss\u002Fsettings.css?ver=","user-login-history\u002Finc\u002Fadmin\u002Fjs\u002Fuser-profile.js?ver=","user-login-history\u002Finc\u002Fadmin\u002Fjs\u002Fsettings.js?ver=",{"cssClasses":439,"htmlComments":450,"htmlAttributes":513,"restEndpoints":524,"jsGlobals":534,"shortcodeOutput":538},[440,441,442,443,444,445,446,447,448,449],"fa-user-login-history-wrap","faulh-settings-wrap","faulh-form-field","faulh-checkbox","faulh-text-input","faulh-select","faulh-submit-button","faulh-user-profile-wrapper","faulh-user-profile-block","faulh-admin-login-list-wrapper",[451,452,453,454,455,456,457,458,459,460,461,462,463,464,465,466,467,468,469,470,471,472,473,474,461,475,476,477,478,479,480,481,482,483,484,485,486,487,488,489,490,491,492,493,494,495,461,496,497,498,470,461,479,492,499,500,501,502,503,504,505,506,507,508,509,510,511,512],"Plugin Constants","Autoload Classes","Register Activation and Deactivation Hooks","The code that runs during plugin deactivation.","Plugin Singleton Container","Maintains a single copy of the plugin app object","Loads the plugin","Begins execution of the plugin","Backend Functionality","Initialize the class and set its properties.","Hooked with admin_init action.","Exports the login list in csv format","Checks whether the current page is the login listing page.","Gets the slug of the login listing page.","Enqueues scripts for the admin pages.","Enqueues styles for the admin pages.","Hooked with wp_enqueue_scripts action.","Enqueues scripts for the frontend.","Enqueues styles for the frontend.","Hooked with admin_menu action.","Adds admin menu items.","Adds submenu page for login listing.","Adds submenu page for settings.","Adds submenu page for user profile settings.","Register custom settings.","Register custom setting for user profile.","Hooked with admin_notices action.","Displays admin notices.","Hooked with admin_enqueue_scripts action.","Registering styles for the admin pages.","Registering scripts for the admin pages.","Hooked with manage_users_columns action.","Adds columns to the user profile list.","Hooked with manage_users_custom_column action.","Callback for displaying custom user profile columns.","Hooked with show_user_profile and edit_user_profile actions.","Adds fields to the user profile page.","Hooked with personal_options_update and edit_user_profile_update actions.","Saves user profile fields.","Hooked with plugin_action_links_{$plugin_basename} filter.","Adds action links to the plugin page.","Hooked with admin_footer action.","Adds custom javascript for the user profile page.","Hooked with delete_user action.","Deletes user login history when a user is deleted.","Initializes the listing table.","Hooked with plugins_loaded action.","Hooked with woocommerce_loaded action.","Hooked with the 'wp_login' action.","Hooked with the 'wp_logout' action.","Hooked with the 'login_init' action.","Hooked with the 'admin_init' action.","Hooked with the 'admin_enqueue_scripts' action.","Hooked with the 'admin_footer' action.","Hooked with the 'delete_user' action.","Hooked with 'template_redirect' action.","Hooked with 'admin_bar_menu' action.","Hooked with 'wp_head' action.","Hooked with 'wp_footer' action.","Hooked with 'rest_api_init' action.","Hooked with 'plugin_action_links_{$plugin_basename}' filter.","Hooked with 'the_content' filter.",[514,515,516,517,518,519,520,521,522,523],"data-plugin-name","data-plugin-version","data-action-url","data-ajax-url","data-nonce","data-delete-nonce","data-reset-nonce","data-user-id","data-field-name","data-field-id",[525,526,527,528,529,530,531,532,533],"\u002Fwp-json\u002Fuser-login-history\u002Fv1\u002Flogin","\u002Fwp-json\u002Fuser-login-history\u002Fv1\u002Flogout","\u002Fwp-json\u002Fuser-login-history\u002Fv1\u002Fget-login-history","\u002Fwp-json\u002Fuser-login-history\u002Fv1\u002Fdelete-login-entry","\u002Fwp-json\u002Fuser-login-history\u002Fv1\u002Fbulk-delete-login-entries","\u002Fwp-json\u002Fuser-login-history\u002Fv1\u002Freset-login-history","\u002Fwp-json\u002Fuser-login-history\u002Fv1\u002Fuser-profile-settings","\u002Fwp-json\u002Fuser-login-history\u002Fv1\u002Fget-settings","\u002Fwp-json\u002Fuser-login-history\u002Fv1\u002Fupdate-settings",[535,536,537],"admin_custom_object","user_profile_custom_object","settings_custom_object",[],{"error":344,"url":540,"statusCode":541,"statusMessage":542,"message":542},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fuser-login-history\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":544,"versions":545},17,[546,551,557,565,573,581,589,597,605,613,621,629,637,645,653,661,668],{"version":6,"download_url":26,"svn_tag_url":547,"released_at":39,"has_diff":51,"diff_files_changed":548,"diff_lines":39,"trac_diff_url":549,"vulnerabilities":550,"is_current":344},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F2.1.8\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F2.1.7&new_path=%2Fuser-login-history%2Ftags%2F2.1.8",[],{"version":41,"download_url":552,"svn_tag_url":553,"released_at":39,"has_diff":51,"diff_files_changed":554,"diff_lines":39,"trac_diff_url":555,"vulnerabilities":556,"is_current":51},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.2.1.7.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F2.1.7\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F2.1.6&new_path=%2Fuser-login-history%2Ftags%2F2.1.7",[],{"version":558,"download_url":559,"svn_tag_url":560,"released_at":39,"has_diff":51,"diff_files_changed":561,"diff_lines":39,"trac_diff_url":562,"vulnerabilities":563,"is_current":51},"2.1.6","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.2.1.6.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F2.1.6\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F2.1.5&new_path=%2Fuser-login-history%2Ftags%2F2.1.6",[564],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":566,"download_url":567,"svn_tag_url":568,"released_at":39,"has_diff":51,"diff_files_changed":569,"diff_lines":39,"trac_diff_url":570,"vulnerabilities":571,"is_current":51},"2.1.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.2.1.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F2.1.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F2.1.4&new_path=%2Fuser-login-history%2Ftags%2F2.1.5",[572],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":574,"download_url":575,"svn_tag_url":576,"released_at":39,"has_diff":51,"diff_files_changed":577,"diff_lines":39,"trac_diff_url":578,"vulnerabilities":579,"is_current":51},"2.1.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.2.1.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F2.1.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F2.1.3&new_path=%2Fuser-login-history%2Ftags%2F2.1.4",[580],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":582,"download_url":583,"svn_tag_url":584,"released_at":39,"has_diff":51,"diff_files_changed":585,"diff_lines":39,"trac_diff_url":586,"vulnerabilities":587,"is_current":51},"2.1.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.2.1.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F2.1.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F2.1.2&new_path=%2Fuser-login-history%2Ftags%2F2.1.3",[588],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":590,"download_url":591,"svn_tag_url":592,"released_at":39,"has_diff":51,"diff_files_changed":593,"diff_lines":39,"trac_diff_url":594,"vulnerabilities":595,"is_current":51},"2.1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.2.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F2.1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F2.1.1&new_path=%2Fuser-login-history%2Ftags%2F2.1.2",[596],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":598,"download_url":599,"svn_tag_url":600,"released_at":39,"has_diff":51,"diff_files_changed":601,"diff_lines":39,"trac_diff_url":602,"vulnerabilities":603,"is_current":51},"2.1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.2.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F2.1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F2.1.0&new_path=%2Fuser-login-history%2Ftags%2F2.1.1",[604],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":606,"download_url":607,"svn_tag_url":608,"released_at":39,"has_diff":51,"diff_files_changed":609,"diff_lines":39,"trac_diff_url":610,"vulnerabilities":611,"is_current":51},"2.1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.2.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F2.1.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F2.0.2&new_path=%2Fuser-login-history%2Ftags%2F2.1.0",[612],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":614,"download_url":615,"svn_tag_url":616,"released_at":39,"has_diff":51,"diff_files_changed":617,"diff_lines":39,"trac_diff_url":618,"vulnerabilities":619,"is_current":51},"2.0.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.2.0.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F2.0.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F2.0.1&new_path=%2Fuser-login-history%2Ftags%2F2.0.2",[620],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":622,"download_url":623,"svn_tag_url":624,"released_at":39,"has_diff":51,"diff_files_changed":625,"diff_lines":39,"trac_diff_url":626,"vulnerabilities":627,"is_current":51},"2.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.2.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F2.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F2.0.0&new_path=%2Fuser-login-history%2Ftags%2F2.0.1",[628],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":630,"download_url":631,"svn_tag_url":632,"released_at":39,"has_diff":51,"diff_files_changed":633,"diff_lines":39,"trac_diff_url":634,"vulnerabilities":635,"is_current":51},"2.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.2.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F2.0.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F1.7.4&new_path=%2Fuser-login-history%2Ftags%2F2.0.0",[636],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":638,"download_url":639,"svn_tag_url":640,"released_at":39,"has_diff":51,"diff_files_changed":641,"diff_lines":39,"trac_diff_url":642,"vulnerabilities":643,"is_current":51},"1.7.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.1.7.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F1.7.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F1.7.3&new_path=%2Fuser-login-history%2Ftags%2F1.7.4",[644],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":646,"download_url":647,"svn_tag_url":648,"released_at":39,"has_diff":51,"diff_files_changed":649,"diff_lines":39,"trac_diff_url":650,"vulnerabilities":651,"is_current":51},"1.7.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.1.7.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F1.7.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F1.7.2&new_path=%2Fuser-login-history%2Ftags%2F1.7.3",[652],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":654,"download_url":655,"svn_tag_url":656,"released_at":39,"has_diff":51,"diff_files_changed":657,"diff_lines":39,"trac_diff_url":658,"vulnerabilities":659,"is_current":51},"1.7.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.1.7.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F1.7.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F1.7.1&new_path=%2Fuser-login-history%2Ftags%2F1.7.2",[660],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":58,"download_url":662,"svn_tag_url":663,"released_at":39,"has_diff":51,"diff_files_changed":664,"diff_lines":39,"trac_diff_url":665,"vulnerabilities":666,"is_current":51},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.1.7.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F1.7.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fuser-login-history%2Ftags%2F1.7.0&new_path=%2Fuser-login-history%2Ftags%2F1.7.1",[667],{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41},{"version":669,"download_url":670,"svn_tag_url":671,"released_at":39,"has_diff":51,"diff_files_changed":672,"diff_lines":39,"trac_diff_url":39,"vulnerabilities":673,"is_current":51},"1.7.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-history.1.7.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fuser-login-history\u002Ftags\u002F1.7.0\u002F",[],[674,675,676],{"id":53,"url_slug":54,"title":55,"severity":59,"cvss_score":60,"vuln_type":62,"patched_in_version":58},{"id":70,"url_slug":71,"title":72,"severity":59,"cvss_score":60,"vuln_type":62,"patched_in_version":58},{"id":35,"url_slug":36,"title":37,"severity":42,"cvss_score":43,"vuln_type":45,"patched_in_version":41}]