[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$frsLEq77GeaqOzF-kdZ1tOzj83ibPWCeBjzQxYCy9Yvg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":23,"download_link":24,"security_score":25,"vuln_count":26,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":57,"crawl_stats":36,"alternatives":65,"analysis":157,"fingerprints":351},"user-management","User Management","1.2","Saad Iqbal","https:\u002F\u002Fprofiles.wordpress.org\u002Fsaadiqbal\u002F","\u003Cp>User Management for WordPress gives you the power to manage users and their data from a centralized dashboard Import\u002FExport\u002FUpdate user data by roles and filters.\u003C\u002Fp>\n\u003Cp>User Management for WordPress gives admin the ability to import or export user details on a website. You can easily import or export WP users, roles, and capabilities via CSV file in just a few clicks.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Note:\u003C\u002Fstrong> This plugin is also compatible with the WooCommerce plugin\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Import user details via CSV file.\u003C\u002Fli>\n\u003Cli>Import WP user roles & capabilities via CSV file.\u003C\u002Fli>\n\u003Cli>Export details of WP users to a CSV file.\u003C\u002Fli>\n\u003Cli>Export specific users by roles and capabilities.\u003C\u002Fli>\n\u003Cli>Export specific users in general.\u003C\u002Fli>\n\u003Cli>Export roles and capabilities only.\u003C\u002Fli>\n\u003Cli>Export profile information with the user metadata (your custom field in CSV).\u003C\u002Fli>\n\u003Cli>Create\u002Fupdate user details easily.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>REQUIREMENTS\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress 5.0+\u003C\u002Fli>\n\u003Cli>PHP 7.0+\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Documentation\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwpexperts.io\u002Fdocumentation\u002Fuser-management\" rel=\"nofollow ugc\">Click Here\u003C\u002Fa> to read complete documentation of the product. The documentation includes a step-by-step installation and configuration guide, system specifications, troubleshooting, and support.\u003C\u002Fp>\n\u003Ch3>Major Update\u003C\u002Fh3>\n\u003Cp>This is major update of our plugin please make sure you have take backup before updating this plugin.\u003C\u002Fp>\n","User Import Export plugin allows you to export and import WordPress Users and Roles.",60,2777,0,"2024-12-09T07:50:00.000Z","6.7.5","6.7","7.0",[19,20,4,21,22],"user","user-approval","user-profiles","user-roles","https:\u002F\u002Fwpexperts.io","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-management.1.2.zip",66,2,1,"2025-01-14 00:00:00","2026-03-15T15:16:48.613Z",[31,45],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":28,"updated_date":42,"references":43,"days_to_patch":36},"CVE-2025-22736","user-management-authenticated-subscriber-privilege-escalation","User Management \u003C= 1.2 - Authenticated (Subscriber+) Privilege Escalation","The User Management plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to elevate their privileges to that of an administrator.",null,"\u003C=1.2","high",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Incorrect Privilege Assignment","2025-01-22 20:56:36",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fac23cd7d-193d-4fa1-8c1c-79ca92da98d7?source=api-prod",{"id":46,"url_slug":47,"title":48,"description":49,"plugin_slug":4,"theme_slug":36,"affected_versions":50,"patched_in_version":6,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":51,"published_date":52,"updated_date":53,"references":54,"days_to_patch":56},"CVE-2024-52403","user-management-authenticated-subscriber-arbitrary-file-upload","User Management \u003C= 1.1 - Authenticated (Subscriber+) Arbitrary File Upload","The User Management plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the in all versions up to, and including, 1.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.","\u003C=1.1","Unrestricted Upload of File with Dangerous Type","2024-11-13 00:00:00","2024-12-06 12:58:51",[55],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F130759b9-dc5d-4b0b-a0af-84e750b9b18b?source=api-prod",24,{"slug":58,"display_name":7,"profile_url":8,"plugin_count":59,"total_installs":60,"avg_security_score":61,"avg_patch_time_days":62,"trust_score":63,"computed_at":64},"saadiqbal",84,1428520,96,287,76,"2026-04-04T00:52:36.243Z",[66,88,107,124,140],{"slug":67,"name":68,"version":69,"author":7,"author_profile":8,"description":70,"short_description":71,"active_installs":72,"downloaded":73,"rating":74,"num_ratings":75,"last_updated":76,"tested_up_to":77,"requires_at_least":78,"requires_php":79,"tags":80,"homepage":84,"download_link":85,"security_score":74,"vuln_count":86,"unpatched_count":13,"last_vuln_date":87,"fetched_at":29},"new-user-approve","New User Approve","3.2.4","\u003Cp>🚀 \u003Ca href=\"https:\u002F\u002Fnewuserapprove.com\u002Fpricing\u002F?utm_source=wp_org&utm_medium=read_me\" rel=\"nofollow ugc\">Go Pro\u003C\u002Fa> | 📘 \u003Ca href=\"https:\u002F\u002Fnewuserapprove.com\u002Fdocumentation\u002Fintroduction\u002F?utm_source=wp_org&utm_medium=read_me\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> | 📱 \u003Ca href=\"https:\u002F\u002Fnewuserapprove.com\u002Fmobile-app\u002F?utm_source=wp_org&utm_medium=read_me\" rel=\"nofollow ugc\">Mobile App\u003C\u002Fa> | 💬 \u003Ca href=\"https:\u002F\u002Fnewuserapprove.com\u002Fget-in-touch\u002F?utm_source=wp_org&utm_medium=read_me\" rel=\"nofollow ugc\">Contact Us\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FKlhWmlfuaVg?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>Running a WordPress site is exciting but it also means you’re constantly battling spam registrations, fake accounts, and unwanted users. New User Approve works as a default WordPress registration system that does not let anyone sign up and instantly gain access. Because its your responsibility as a site owner as exactly who’s allowed into your site before any user log in.\u003C\u002Fp>\n\u003Cp>New User Approve comes is a powerful WordPress user approval plugin that puts you in full control of your community, membership site, online store, or private portal. With this manual user approval plugin, you can moderate user registration, protect your content, and keep your website free from unwanted registration requests.\u003Cbr \u002F>\nWhether you want to restrict user access before approval, prevent fake user signups, or simply make sure every new member is legit, New User Approve makes it easy, professional, and efficient.\u003C\u002Fp>\n\u003Ch3>⭐ New User Approve Offers Mobile App for Faster User Approvals ⭐\u003C\u002Fh3>\n\u003Cp>New User Approve also includes a dedicated mobile app that lets you manage registrations without opening your WordPress dashboard. It gives you quick access to every pending user and keeps your site protected even when you are away from your computer.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>With the mobile app, you can:\u003C\u002Fstrong>\u003Cbr \u002F>\n⚡ Review complete user profiles in a clean, mobile-friendly layout\u003Cbr \u002F>\n⚡ Approve or deny registrations with single tap\u003Cbr \u002F>\n⚡ Verify identities with clear, mobile-friendly user profiles\u003Cbr \u002F>\n⚡ Keep full control of who joins your site without logging into WordPress\u003Cbr \u002F>\n⚡ Stay updated with instant push notifications for every new signup\u003C\u002Fp>\n\u003Cp>This feature ensures you never miss an approval request and keeps your site consistently secure, responsive, and easy to manage from anywhere.\u003C\u002Fp>\n\u003Ch3>⭐ Why You Need New User Approve ⭐\u003C\u002Fh3>\n\u003Cp>Imagine running a membership site, community forum, or private business portal where quality and security matter. The last thing you want is spam bots flooding your database or strangers sneaking into confidential areas.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New User Approve helps you:\u003C\u002Fstrong>\u003Cbr \u002F>\n⚡ \u003Cstrong>Stop spam registrations\u003C\u002Fstrong> and fake accounts before they ever log in\u003Cbr \u002F>\n⚡ \u003Cstrong>Verify user identities\u003C\u002Fstrong> by reviewing each signup manually\u003Cbr \u002F>\n⚡ Maintain \u003Cstrong>complete control\u003C\u002Fstrong> over who becomes part of your community\u003Cbr \u002F>\n⚡ Create a \u003Cstrong>safe, trusted space\u003C\u002Fstrong> for your members or customers\u003C\u002Fp>\n\u003Cp>Unlike generic WordPress plugins that simply hide login pages, New User Approve adds a true \u003Cstrong>user verification before approval\u003C\u002Fstrong> process. It gives you confidence to grow your site without worrying about who’s lurking behind those new user accounts.\u003C\u002Fp>\n\u003Ch3>🛠 How It Works\u003C\u002Fh3>\n\u003Cp>Here’s how \u003Cstrong>New User Approve\u003C\u002Fstrong>, your go-to \u003Cstrong>member approval plugin\u003C\u002Fstrong>, transforms your registration flow:\u003C\u002Fp>\n\u003Cp>When someone registers on your WordPress site, you’ll receive an email alert. You can then decide to approve or deny their account. The plugin automatically emails the user to let them know the outcome.\u003C\u002Fp>\n\u003Cp>👁If approved, the user receives their login details and can access your site immediately.\u003Cbr \u002F>\n👁If denied, they’ll be kept out—and can’t even log in.\u003Cbr \u002F>\n👁Pending users stay locked out until you make a decision.\u003C\u002Fp>\n\u003Cp>This makes it simple to \u003Cstrong>restrict user access before approval\u003C\u002Fstrong> and ensure only the right people become part of your online community.\u003C\u002Fp>\n\u003Cp>Already have users on your website? No problem.\u003C\u002Fp>\n\u003Cp>Existing users stay approved automatically when you install New User Approve. You can also change someone’s approval status at any time, with easy search tools for managing pending, approved, or denied users.\u003C\u002Fp>\n\u003Ch3>⌛ Save Time with Zapier Automation\u003C\u002Fh3>\n\u003Cp>Want to work smarter? Connect \u003Cstrong>New User Approve\u003C\u002Fstrong> to Zapier to automate routine tasks.\u003Cbr \u002F>\nFor example:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Trigger a Slack message when a user is approved\u003C\u002Fli>\n\u003Cli>Add approved users to a Google Sheet\u003C\u002Fli>\n\u003Cli>Send emails through Gmail when someone’s denied\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>With Zapier, you can integrate the plugin with thousands of apps without writing a single line of code. It’s perfect for businesses looking to streamline their processes while maintaining strict \u003Cstrong>user verification before approval.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>🤝 Invite Trusted Users Instantly\u003C\u002Fh3>\n\u003Cp>Sometimes you want trusted people—like staff, VIPs, or clients—to skip the approval queue. With New User Approve’s invitation codes, you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>📜 Generate unique codes manually or automatically\u003C\u002Fli>\n\u003Cli>💳 Give those codes to users so they’re \u003Cstrong>auto-approved\u003C\u002Fstrong> upon registration\u003C\u002Fli>\n\u003Cli>💻 Manage, edit, or disable codes anytime\u003C\u002Fli>\n\u003Cli>🛒 Seamlessly integrate codes with WooCommerce registrations\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This feature makes it easier than ever to onboard important members without sacrificing security.\u003C\u002Fp>\n\u003Ch3>☀ A Fresh New Interface\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>New User Approve\u003C\u002Fstrong> has been redesigned with a crisp, modern look that’s clean and user-friendly. The updated interface is intuitive for admins and gives users confidence in your website’s professionalism.\u003C\u002Fp>\n\u003Cp>Whether you’re a WordPress beginner or seasoned WordPress user, managing new user approvals has never been easier or looked this good.\u003C\u002Fp>\n\u003Ch3>⭐ Compatible with Top Plugins\u003C\u002Fh3>\n\u003Cp>New User Approve integrates beautifully with popular WordPress plugins, including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WooCommerce\u003C\u002Fli>\n\u003Cli>MemberPress\u003C\u002Fli>\n\u003Cli>WP-Foro\u003C\u002Fli>\n\u003Cli>LearnDash\u003C\u002Fli>\n\u003Cli>Ultimate Member\u003C\u002Fli>\n\u003Cli>BuddyPress\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>So, whether you’re running a store, a membership site, or a thriving online community, this user approval plugin fits right in.\u003C\u002Fp>\n\u003Ch3>🖍 Customize Everything\u003C\u002Fh3>\n\u003Cp>For those who want complete flexibility, New User Approve lets you customize nearly every step of the user approval process:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Tailor the welcome message above the login or registration form\u003C\u002Fli>\n\u003Cli>Personalize messages for pending or denied users\u003C\u002Fli>\n\u003Cli>Craft unique notification emails for users and admins\u003C\u002Fli>\n\u003Cli>Suppress denial notifications if preferred\u003C\u002Fli>\n\u003Cli>Use HTML formatting in emails for a branded, professional look\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>There’s even a commercial add-on available at \u003Ca href=\"https:\u002F\u002Fnewuserapprove.com\u002Fpricing\u002F?utm_source=wp_org&utm_medium=read_me\" rel=\"nofollow ugc\">New User Approve\u003C\u002Fa> that unlocks additional powerful features for businesses and growing sites.\u003C\u002Fp>\n\u003Ch3>📌 Documentation\u003C\u002Fh3>\n\u003Cp>Need help getting started? \u003Ca href=\"https:\u002F\u002Fnewuserapprove.com\u002F?utm_source=wp_org&utm_medium=read_me\" rel=\"nofollow ugc\">View the detailed technical documentation here\u003C\u002Fa>. It walks you through every step of installing and configuring \u003Cstrong>New User Approve\u003C\u002Fstrong>, plus troubleshooting tips if you get stuck.\u003C\u002Fp>\n\u003Ch3>🔥 New User Approve Pro Features\u003C\u002Fh3>\n\u003Cp>Upgrade to the premium version for advanced features like:\u003C\u002Fp>\n\u003Cp>✔ Customizable Email Notifications\u003Cbr \u002F>\n✔ Invite-Only Registration\u003Cbr \u002F>\n✔ Bulk Invitation Code Generator\u003Cbr \u002F>\n✔ Email Invitation Codes\u003Cbr \u002F>\n✔ Import Invitation Codes\u003Cbr \u002F>\n✔ Auto-Approve Trusted Email Domains\u003Cbr \u002F>\n✔ Blacklist Generic or Suspicious Email Domains\u003Cbr \u002F>\n✔ Registration Deadlines\u003Cbr \u002F>\n✔ Auto-Approve Selected User Roles\u003Cbr \u002F>\n✔ User Role Change Requests\u003Cbr \u002F>\n✔ Extended Zapier Triggers\u003C\u002Fp>\n\u003Ch3>✨ Translations\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>New User Approve\u003C\u002Fstrong> is already available in many languages thanks to an amazing community of translators. You can help expand translations further with tools like Poedit.\u003C\u002Fp>\n\u003Cp>Current supported languages include:\u003C\u002Fp>\n\u003Cp>Belarusian, Brazilian Portuguese, Bulgarian, Catalan, Croatian, Czech, Danish, Dutch, Estonian, Finnish, French, German, Greek, Hebrew, Hungarian, Italian, Lithuanian, Persian, Polish, Romanian, Russian, Serbo-Croatian, Slovak, Spanish, Swedish.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New User Approve\u003C\u002Fstrong> isn’t just a plugin. It’s your ultimate solution for user verification before approval, helping you moderate user registration, prevent fake user signups, and stop spam registrations for good.\u003Cbr \u002F>\nIf you need a reliable manual user approval plugin for WordPress, get it now!\u003C\u002Fp>\n","WordPress user approval plugin to moderate registrations. Approve or deny real users and prevent fake signups to control who registers on site.",20000,847425,86,130,"2026-02-10T07:30:00.000Z","6.9.4","4.0","",[81,20,4,82,83],"registration","user-registration","users","http:\u002F\u002Fnewuserapprove.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnew-user-approve.zip",8,"2026-02-11 00:00:00",{"slug":89,"name":90,"version":91,"author":92,"author_profile":93,"description":94,"short_description":95,"active_installs":96,"downloaded":97,"rating":13,"num_ratings":13,"last_updated":79,"tested_up_to":15,"requires_at_least":16,"requires_php":98,"tags":99,"homepage":103,"download_link":104,"security_score":105,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":106},"domain-based-role-assignment","Domain Based Role Assignment","1.0.0","We Are Volume","https:\u002F\u002Fprofiles.wordpress.org\u002Fwearevolume\u002F","\u003Cp>Domain Based Role Assignment automatically assigns user roles based on their email domains during registration. It provides a simple admin interface to manage domain-to-role mappings and streamlines user role management.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Automatic Role Assignment: Automatically assigns roles to users based on their email domain during registration\u003C\u002Fli>\n\u003Cli>Domain Management: Easy-to-use admin interface to manage domain-role mappings\u003C\u002Fli>\n\u003Cli>Works with Role Editor: Compatible with all WordPress roles, including custom roles\u003C\u002Fli>\n\u003Cli>Simple Administration: Add, view, and delete domain rules through a clean admin interface\u003C\u002Fli>\n\u003Cli>Bulk User Management: When removing a domain rule, preserves user accounts while managing role assignments\u003C\u002Fli>\n\u003Cli>Security: Implements WordPress security best practices and nonce verification\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Cp>= Adding Domain Rules =\u003Cbr \u002F>\n1. Go to ‘Settings > Domain Role Assignment’ in your WordPress admin panel\u003Cbr \u002F>\n2. In the “Add New Domain Rule” section:\u003Cbr \u002F>\n   * Enter a domain (e.g., “example.com”)\u003Cbr \u002F>\n   * Select the role to assign\u003Cbr \u002F>\n   * Click “Add Domain Rule”\u003C\u002Fp>\n\u003Ch4>Managing Existing Rules\u003C\u002Fh4>\n\u003Col>\n\u003Cli>View all current domain rules in the “Current Domain Rules” table\u003C\u002Fli>\n\u003Cli>Each rule shows:\n\u003Cul>\n\u003Cli>The domain\u003C\u002Fli>\n\u003Cli>The assigned role\u003C\u002Fli>\n\u003Cli>Option to delete the rule\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Technical Details\u003C\u002Fh3>\n\u003Cp>Requires WordPress 5.0 or higher and PHP 7.2 or higher.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support:\u003Cbr \u002F>\n1. Check configuration\u003Cbr \u002F>\n2. Verify WordPress version compatibility\u003Cbr \u002F>\n3. Check error logs\u003Cbr \u002F>\n4. Ensure proper permissions\u003C\u002Fp>\n","Automatically assign WordPress user roles based on email domains during registration with an easy-to-use domain management interface.",10,364,"8.1",[100,101,102,4,22],"domain-management","email-domains","role-assignment","https:\u002F\u002Fwearevolume.com\u002Fdomain-based-role-assignment","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdomain-based-role-assignment.zip",100,"2026-03-15T10:48:56.248Z",{"slug":108,"name":109,"version":91,"author":110,"author_profile":111,"description":112,"short_description":113,"active_installs":96,"downloaded":114,"rating":13,"num_ratings":13,"last_updated":115,"tested_up_to":116,"requires_at_least":117,"requires_php":118,"tags":119,"homepage":122,"download_link":123,"security_score":105,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":29},"role-based-user-deleter","Role Based User Deleter","Sakib Hasan","https:\u002F\u002Fprofiles.wordpress.org\u002Fsakibhasan\u002F","\u003Cp>Role Based User Deleter is a lightweight and efficient WordPress plugin that allows administrators to delete users based on their roles. This plugin provides a simple and secure way to manage user accounts, ensuring that you can easily remove users who no longer need access to your site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Delete users based on selected roles (excluding administrators for safety).\u003Cbr \u002F>\n– User-friendly admin interface with a professional design.\u003Cbr \u002F>\n– Displays the total number of users for each role in the dropdown.\u003Cbr \u002F>\n– Secure deletion process with nonce verification.\u003Cbr \u002F>\n– Success message after user deletion with the count of deleted users.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, visit the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Frole-based-user-deleter\" rel=\"ugc\">plugin support forum\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by Sakib Hasan (https:\u002F\u002Fprofiles.wordpress.org\u002Fsakibhasan\u002F).\u003C\u002Fp>\n","Easily delete users based on their roles with Role Based User Deleter. Manage your WordPress users efficiently and securely.",344,"2025-04-26T18:18:00.000Z","6.8.5","5.6","7.4",[120,121,4,22],"admin-tools","delete-users","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frole-based-user-deleter","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frole-based-user-deleter.1.0.0.zip",{"slug":125,"name":126,"version":127,"author":128,"author_profile":129,"description":130,"short_description":131,"active_installs":96,"downloaded":132,"rating":13,"num_ratings":13,"last_updated":133,"tested_up_to":77,"requires_at_least":117,"requires_php":118,"tags":134,"homepage":138,"download_link":139,"security_score":105,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":29},"user-profile-dashboard-fields-control","User Profile Fields Control","1.1.0","Priyank Sukhadiya","https:\u002F\u002Fprofiles.wordpress.org\u002Fpriyanksukhadiya\u002F","\u003Cp>The User Profile Fields Control plugin is designed for administrators who want more control over the WordPress user experience. This plugin enables you to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Hide or Show Profile Fields\u003C\u002Fstrong> – Customize user profile fields based on user roles.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Tailor the Dashboard\u003C\u002Fstrong> – Control which fields appear on the WordPress dashboard for each user role.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enhanced User Management\u003C\u002Fstrong> – Improve the user experience by displaying only relevant information for each user role.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Compatible with Most Themes\u003C\u002Fstrong> – Works seamlessly with most WordPress themes, enhancing compatibility and ease of use.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>With the User Profile Fields Control plugin, you can streamline WordPress user management and customize the experience for each role.\u003C\u002Fp>\n","The User Profile Fields Control plugin allows you to manage WordPress user profile fields with role-based customization.",695,"2025-12-04T15:57:00.000Z",[135,136,137,4,22],"admin-customization","dashboard-control","profile-fields","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fuser-profile-dashboard-fields-control","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-profile-dashboard-fields-control.1.1.0.zip",{"slug":141,"name":142,"version":143,"author":144,"author_profile":145,"description":146,"short_description":147,"active_installs":13,"downloaded":148,"rating":13,"num_ratings":13,"last_updated":149,"tested_up_to":77,"requires_at_least":150,"requires_php":118,"tags":151,"homepage":155,"download_link":156,"security_score":105,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":29},"essential-user-rights","Essential User Rights","1.0.2","Stephan Wagner","https:\u002F\u002Fprofiles.wordpress.org\u002Fstephanwagnerme\u002F","\u003Cp>Essential User Rights is a lightweight plugin that helps you manage user permissions effortlessly:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Restrict editors to specific pages\u003C\u002Fli>\n\u003Cli>Limit media library access to a user’s own uploads\u003C\u002Fli>\n\u003Cli>No complex setup – just install and configure\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Perfect for WordPress sites where content management needs to be controlled without unnecessary complexity.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Developed by \u003Ca href=\"https:\u002F\u002Fstephanwagner.me\" rel=\"nofollow ugc\">Stephan Wagner\u003C\u002Fa>.\u003C\u002Fp>\n","Easily manage user permissions in WordPress. Restrict editors to specific pages and media. Simple setup - install, configure, and go!",444,"2026-01-05T10:39:00.000Z","5.0",[152,153,4,154,22],"page-access","permissions","user-rights","https:\u002F\u002Fstephanwagner.me\u002Fwordpress-plugins\u002Fessential-user-rights","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fessential-user-rights.1.0.2.zip",{"attackSurface":158,"codeSignals":211,"taintFlows":301,"riskAssessment":339,"analyzedAt":350},{"hooks":159,"ajaxHandlers":181,"restRoutes":207,"shortcodes":208,"cronEvents":209,"entryPointCount":210,"unprotectedCount":13},[160,166,171,174,177],{"type":161,"name":162,"callback":163,"file":164,"line":165},"action","init","handle_file_download","includes\\model.php",18,{"type":161,"name":167,"callback":168,"file":169,"line":170},"admin_menu","uiewp_register_admin_menu","users-imp-exp-wpexperts.php",23,{"type":161,"name":172,"callback":173,"file":169,"line":56},"admin_init","uiewp_settings",{"type":161,"name":172,"callback":175,"file":169,"line":176},"uiewp_register_export_field_settings",25,{"type":161,"name":178,"callback":179,"file":169,"line":180},"admin_enqueue_scripts","uiewp_scripts",26,[182,187,191,195,199,203],{"action":183,"nopriv":184,"callback":185,"hasNonce":186,"hasCapCheck":186,"file":164,"line":96},"export_all_users_ajax",false,"uiewp_export_all_users_callback",true,{"action":188,"nopriv":184,"callback":189,"hasNonce":186,"hasCapCheck":186,"file":164,"line":190},"export_users_by_roles","uiewp_export_users_by_roles_callback",11,{"action":192,"nopriv":184,"callback":193,"hasNonce":186,"hasCapCheck":186,"file":164,"line":194},"export_specific_users","uiewp_export_specific_users_callback",12,{"action":196,"nopriv":184,"callback":197,"hasNonce":186,"hasCapCheck":186,"file":164,"line":198},"export_roles_caps","uiewp_export_roles_caps_callback",13,{"action":200,"nopriv":184,"callback":201,"hasNonce":186,"hasCapCheck":186,"file":164,"line":202},"import_users","uiewp_import_users_callback",16,{"action":204,"nopriv":184,"callback":205,"hasNonce":186,"hasCapCheck":186,"file":164,"line":206},"import_roles_caps","uiewp_import_roles_caps_callback",17,[],[],[],6,{"dangerousFunctions":212,"sqlUsage":213,"outputEscaping":215,"fileOperations":224,"externalRequests":13,"nonceChecks":210,"capabilityChecks":210,"bundledLibraries":297},[],{"prepared":13,"raw":13,"locations":214},[],{"escaped":216,"rawEcho":217,"locations":218},47,49,[219,222,223,225,226,229,230,231,232,233,234,236,238,239,241,243,245,247,249,251,252,253,254,256,257,259,260,262,263,265,266,268,269,271,272,274,275,277,278,280,281,283,285,287,288,289,291,293,295],{"file":220,"line":26,"context":221},"includes\\settings_page.php","raw output",{"file":220,"line":86,"context":221},{"file":220,"line":224,"context":221},9,{"file":220,"line":96,"context":221},{"file":227,"line":228,"context":221},"includes\\view\\settings-view.php",4,{"file":227,"line":224,"context":221},{"file":227,"line":224,"context":221},{"file":227,"line":206,"context":221},{"file":227,"line":176,"context":221},{"file":227,"line":176,"context":221},{"file":227,"line":235,"context":221},33,{"file":227,"line":237,"context":221},40,{"file":227,"line":237,"context":221},{"file":227,"line":240,"context":221},48,{"file":227,"line":242,"context":221},56,{"file":227,"line":244,"context":221},64,{"file":227,"line":246,"context":221},72,{"file":227,"line":248,"context":221},80,{"file":227,"line":250,"context":221},88,{"file":227,"line":250,"context":221},{"file":227,"line":61,"context":221},{"file":227,"line":61,"context":221},{"file":227,"line":255,"context":221},104,{"file":227,"line":255,"context":221},{"file":227,"line":258,"context":221},112,{"file":227,"line":258,"context":221},{"file":227,"line":261,"context":221},120,{"file":227,"line":261,"context":221},{"file":227,"line":264,"context":221},128,{"file":227,"line":264,"context":221},{"file":227,"line":267,"context":221},136,{"file":227,"line":267,"context":221},{"file":227,"line":270,"context":221},144,{"file":227,"line":270,"context":221},{"file":227,"line":273,"context":221},152,{"file":227,"line":273,"context":221},{"file":227,"line":276,"context":221},160,{"file":227,"line":276,"context":221},{"file":227,"line":279,"context":221},168,{"file":227,"line":279,"context":221},{"file":169,"line":282,"context":221},122,{"file":169,"line":284,"context":221},127,{"file":169,"line":286,"context":221},140,{"file":169,"line":273,"context":221},{"file":169,"line":276,"context":221},{"file":169,"line":290,"context":221},178,{"file":169,"line":292,"context":221},181,{"file":169,"line":294,"context":221},186,{"file":169,"line":296,"context":221},190,[298],{"name":299,"version":36,"knownCves":300},"Select2",[],[302,320,330],{"entryPoint":303,"graph":304,"unsanitizedCount":13,"severity":319},"uiewp_import_users_callback (includes\\model.php:356)",{"nodes":305,"edges":317},[306,311],{"id":307,"type":308,"label":309,"file":164,"line":310},"n0","source","$_FILES",391,{"id":312,"type":313,"label":314,"file":164,"line":315,"wp_function":316},"n1","sink","fopen() [File Access]",395,"fopen",[318],{"from":307,"to":312,"sanitized":186},"low",{"entryPoint":321,"graph":322,"unsanitizedCount":13,"severity":319},"uiewp_import_roles_caps_callback (includes\\model.php:532)",{"nodes":323,"edges":328},[324,326],{"id":307,"type":308,"label":309,"file":164,"line":325},552,{"id":312,"type":313,"label":314,"file":164,"line":327,"wp_function":316},558,[329],{"from":307,"to":312,"sanitized":186},{"entryPoint":331,"graph":332,"unsanitizedCount":13,"severity":319},"\u003Cmodel> (includes\\model.php:0)",{"nodes":333,"edges":337},[334,336],{"id":307,"type":308,"label":335,"file":164,"line":310},"$_FILES (x2)",{"id":312,"type":313,"label":314,"file":164,"line":315,"wp_function":316},[338],{"from":307,"to":312,"sanitized":186},{"summary":340,"deductions":341},"The 'user-management' plugin v1.2 exhibits a mixed security posture. On the positive side, it demonstrates good practices by implementing nonce and capability checks on all its AJAX handlers, and all SQL queries utilize prepared statements. There are no identified critical or high severity taint flows, and no dangerous functions were detected. However, a significant concern is the plugin's vulnerability history, with two known High severity CVEs, one of which remains unpatched. This pattern suggests a history of critical security flaws, specifically related to Incorrect Privilege Assignment and Unrestricted Uploads, which are serious issues. Additionally, the static analysis reveals that less than half of the output operations are properly escaped, indicating a potential for Cross-Site Scripting (XSS) vulnerabilities. While the attack surface is protected by authentication checks, the unpatched vulnerabilities are a critical threat, overshadowing some of the otherwise decent security implementations.",[342,344,347],{"reason":343,"points":165},"Unpatched High severity CVE",{"reason":345,"points":346},"Known High severity CVEs (2)",15,{"reason":348,"points":349},"Low output escaping (49%)",7,"2026-03-16T21:42:10.432Z",{"wat":352,"direct":363},{"assetPaths":353,"generatorPatterns":358,"scriptPaths":359,"versionParams":362},[354,355,356,357],"\u002Fwp-content\u002Fplugins\u002Fuser-management\u002Fincludes\u002Fassets\u002Fcss\u002Fmain.css","\u002Fwp-content\u002Fplugins\u002Fuser-management\u002Fincludes\u002Fassets\u002Fcss\u002Fselect2.min.css","\u002Fwp-content\u002Fplugins\u002Fuser-management\u002Fincludes\u002Fassets\u002Fjs\u002Fscripts.js","\u002Fwp-content\u002Fplugins\u002Fuser-management\u002Fincludes\u002Fassets\u002Fjs\u002Fselect2.min.js",[],[360,361],"includes\u002Fassets\u002Fjs\u002Fselect2.min.js","includes\u002Fassets\u002Fjs\u002Fscripts.js",[],{"cssClasses":364,"htmlComments":370,"htmlAttributes":371,"restEndpoints":374,"jsGlobals":375,"shortcodeOutput":377},[365,366,367,368,369],"uiewp_export_field","uiewp_import_field","uiewp_import_users_roles","wp_export_users","wp_roles",[],[372,373],"data-target='#wp_export_users'","data-target='#wp_import_users_roles'",[],[376],"wc_uiewp_vars",[]]