[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fJQ7gda0xDzwCAhke1B1G1d6TdzUGNW71b2Yd5N6V9X8":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":14,"tags":17,"homepage":21,"download_link":22,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":25,"vulnerabilities":26,"developer":27,"crawl_stats":24,"alternatives":35,"analysis":96,"fingerprints":253},"username-editor","Username Editor","1.2","WebsiteGuider","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebsiteguiderteam1618\u002F","\u003Cp>Username Editor is a simple plugin which lets you easily change WordPress usernames which by default is prohibited.\u003C\u002Fp>\n\u003Cp>Also, this plugin offers lot more features like ability to let few roles edit their usernames. Also, we have email feature. If set to on. when the user changes his\u002Fher username, email will be sent to both the administrator of the site and the user.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Simple username change.\u003C\u002Fli>\n\u003Cli>Change username using AJAX.\u003C\u002Fli>\n\u003Cli>Password Check : Force users to enter their password before changing username.\u003C\u002Fli>\n\u003Cli>Secure and no-bloat code.\u003C\u002Fli>\n\u003Cli>Made by developers for developers.\u003C\u002Fli>\n\u003Cli>Documentation link can be found here \u003Ca href=\"https:\u002F\u002Fwebsiteguider.com\" rel=\"nofollow ugc\">WebsiteGuider\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>1.2\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>A new menu page.\u003C\u002Fli>\n\u003Cli>Fixed the allowed roles issue.\u003C\u002Fli>\n\u003Cli>Added user list for administrator so they can change any users username\u003C\u002Fli>\n\u003Cli>Improved code\u003C\u002Fli>\n\u003Cli>Implemented better sanitization and validation.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>1.1\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Added Ajax functionality\u003C\u002Fli>\n\u003Cli>Added Password check\u003C\u002Fli>\n\u003Cli>Added username minimum length field\u003C\u002Fli>\n\u003Cli>Added new functions\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>1.0\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Initial Release\u003C\u002Fli>\n\u003C\u002Ful>\n","Username Editor is a simple plugin which lets you easily change WordPress usernames which by default is prohibited.",10,1080,0,"","5.5.18","5.0",[18,19,4,20],"username-change","username-edit","username-manager","https:\u002F\u002Fwebsiteguider.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fusername-editor.1.2.zip",100,null,"2026-03-15T10:48:56.248Z",[],{"slug":28,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":31,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},"websiteguiderteam1618",4,110,89,30,86,"2026-04-04T18:34:20.897Z",[36,57,77],{"slug":37,"name":38,"version":39,"author":40,"author_profile":41,"description":42,"short_description":43,"active_installs":11,"downloaded":44,"rating":23,"num_ratings":45,"last_updated":46,"tested_up_to":47,"requires_at_least":16,"requires_php":48,"tags":49,"homepage":54,"download_link":55,"security_score":23,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":56},"admin-credentials-editor","Admin Credentials Editor","1.0.0","Luqman Safay","https:\u002F\u002Fprofiles.wordpress.org\u002Fluqmansafay\u002F","\u003Cp>The Admin Credentials Editor plugin allows site administrators to quickly update their login details without touching the database.\u003Cbr \u002F>\nYou can change the username, email address, or password of your admin account (individually or together) directly from the dashboard.\u003C\u002Fp>\n","Easily change your admin credentials (username, email, password) from the dashboard.",695,1,"2025-09-12T09:59:00.000Z","6.8.5","7.0",[50,51,52,53,4],"admin-username","change-username","email-change","profile-edit","https:\u002F\u002Fpoetrypashto.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-credentials-editor.1.0.3.zip","2026-03-15T15:16:48.613Z",{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":33,"num_ratings":67,"last_updated":68,"tested_up_to":47,"requires_at_least":69,"requires_php":14,"tags":70,"homepage":14,"download_link":74,"security_score":75,"vuln_count":45,"unpatched_count":13,"last_vuln_date":76,"fetched_at":56},"username-updater","Easy Username Updater","1.0.6","Yogesh Pant","https:\u002F\u002Fprofiles.wordpress.org\u002Fyogeshpant\u002F","\u003Cp>Easy Username updater is a plugin which allows administrators to change usernames on their site. It provide list of users with their email address,username and role. It changes display name as well.\u003C\u002Fp>\n\u003Cp>This plugin also do following:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Search the user by username, email address, or role.\u003C\u002Fli>\n\u003Cli>Send the updated username to user by email.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>How to install?\u003C\u002Fp>\n\u003Col>\n\u003Cli>Unzip the downloaded ‘username-updater.zip’ file\u003C\u002Fli>\n\u003Cli>Upload the ‘username-updater’ folder to ‘\u002Fwp-content\u002Fplugins’ directory of your WordPress installation\u003C\u002Fli>\n\u003Cli>Activate the plugin via the WordPress Plugins page\u003C\u002Fli>\n\u003Cli>A new submenu will automatically create on users menu\u003C\u002Fli>\n\u003C\u002Fol>\n","A plugin to change registered username and display name.",10000,125946,39,"2025-07-03T12:54:00.000Z","4.0",[51,71,58,72,73],"easy-username-updater","wordpress-username-changer","wordpress-username-updater","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fusername-updater.zip",99,"2022-07-12 00:00:00",{"slug":78,"name":79,"version":80,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":87,"num_ratings":29,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":14,"tags":91,"homepage":82,"download_link":94,"security_score":95,"vuln_count":13,"unpatched_count":13,"last_vuln_date":24,"fetched_at":56},"username","Username","1.3","Pranav Pathak","https:\u002F\u002Fprofiles.wordpress.org\u002Fpranavpathakjaora\u002F","\u003Cp>The Username plugin helps to change username of admin, without effecting other user’s username. First it will check if same username is exist or not. if same username is not exist, then only it will update existing user’s username. Every administrator can change only his\u002Fher username from admin panel.\u003C\u002Fp>\n\u003Cp>After activation there is a sub menu in Settings called Username. Click on this and there is an option to change Username. Insert your new username and then in settings there is an option \u003Cstrong>Click to check username is exist or not\u003C\u002Fstrong> Click and check user is exist or not. If username already exist then it will alert you as \u003Cstrong>Username In Use!\u003C\u002Fstrong> in red color, else it will alert you \u003Cstrong>Username Not In Use!\u003C\u002Fstrong> in green color. If username is not exist and user click on submit then it will update username and it will redirect to login page. Now login with new username.\u003C\u002Fp>\n\u003Cp>Note Password remains same. It is completely safe.\u003Cbr \u002F>\nIf you are not redirect to login page that means Username is not changed.\u003C\u002Fp>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WordPress 3.5.1 or greater\u003C\u002Fli>\n\u003Cli>PHP 5.2.6 or greater (5.3 recommended)\u003C\u002Fli>\n\u003Cli>MySQL 4.1.2 or greater (5.x recommended)\u003C\u002Fli>\n\u003C\u002Ful>\n","The Username plugin helps to change username, only if username is not exist and without effecting others user's username.",900,15145,80,"2024-12-10T03:26:00.000Z","6.7.5","3.5.2",[92,51,93],"admin","username-changer","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fusername.1.3.zip",92,{"attackSurface":97,"codeSignals":159,"taintFlows":216,"riskAssessment":242,"analyzedAt":252},{"hooks":98,"ajaxHandlers":146,"restRoutes":155,"shortcodes":156,"cronEvents":157,"entryPointCount":158,"unprotectedCount":13},[99,105,110,113,117,120,124,129,132,136,140,143],{"type":100,"name":101,"callback":102,"file":103,"line":104},"action","admin_init","wg_ue_username_has_changed_handler","inc\\admin-settings.php",72,{"type":100,"name":106,"callback":107,"file":108,"line":109},"show_user_profile","wg_ue_add_new_username_field","inc\\username-editor.php",12,{"type":100,"name":111,"callback":107,"file":108,"line":112},"edit_user_profile",13,{"type":100,"name":114,"callback":115,"file":108,"line":116},"personal_options_update","wg_ue_update_username_fields",14,{"type":100,"name":118,"callback":115,"file":108,"line":119},"edit_user_profile_update",15,{"type":100,"name":121,"callback":122,"file":108,"line":123},"admin_notices","edd_sample_admin_notices",16,{"type":100,"name":125,"callback":126,"file":127,"line":128},"admin_menu","wg_ue_register_menu_pages","username-editor.php",48,{"type":100,"name":101,"callback":130,"file":127,"line":131},"wg_ue_settings_field_register",49,{"type":100,"name":133,"callback":134,"file":127,"line":135},"admin_enqueue_scripts","wg_ue_enqueue_scripts",56,{"type":100,"name":137,"callback":138,"file":127,"line":139},"plugins_loaded","wg_ue_initialize_fields",57,{"type":100,"name":121,"callback":141,"file":127,"line":142},"wg_ue_plugin_activation_notice",59,{"type":100,"name":121,"callback":144,"file":127,"line":145},"wg_ue_plugin_deactivation_notice",60,[147,153],{"action":148,"nopriv":149,"callback":148,"hasNonce":150,"hasCapCheck":149,"file":151,"line":152},"wg_ue_ajax_enabled",false,true,"inc\\ajax-handler.php",3,{"action":154,"nopriv":149,"callback":154,"hasNonce":150,"hasCapCheck":149,"file":151,"line":29},"wg_ue_ajax_enabled_password_check",[],[],[],2,{"dangerousFunctions":160,"sqlUsage":161,"outputEscaping":163,"fileOperations":13,"externalRequests":13,"nonceChecks":214,"capabilityChecks":13,"bundledLibraries":215},[],{"prepared":13,"raw":13,"locations":162},[],{"escaped":164,"rawEcho":165,"locations":166},7,25,[167,170,173,174,176,178,180,182,184,186,188,190,192,194,195,197,199,201,202,204,206,208,210,211,213],{"file":103,"line":168,"context":169},85,"raw output",{"file":171,"line":172,"context":169},"inc\\callback-functions.php",70,{"file":171,"line":33,"context":169},{"file":171,"line":175,"context":169},96,{"file":171,"line":177,"context":169},105,{"file":171,"line":179,"context":169},106,{"file":171,"line":181,"context":169},107,{"file":171,"line":183,"context":169},118,{"file":171,"line":185,"context":169},137,{"file":171,"line":187,"context":169},138,{"file":171,"line":189,"context":169},139,{"file":171,"line":191,"context":169},140,{"file":108,"line":193,"context":169},28,{"file":108,"line":135,"context":169},{"file":108,"line":196,"context":169},58,{"file":108,"line":198,"context":169},67,{"file":108,"line":200,"context":169},69,{"file":108,"line":104,"context":169},{"file":108,"line":203,"context":169},73,{"file":108,"line":205,"context":169},82,{"file":108,"line":207,"context":169},83,{"file":108,"line":209,"context":169},90,{"file":108,"line":175,"context":169},{"file":127,"line":212,"context":169},91,{"file":127,"line":177,"context":169},5,[],[217,233],{"entryPoint":218,"graph":219,"unsanitizedCount":45,"severity":232},"edd_sample_admin_notices (inc\\username-editor.php:21)",{"nodes":220,"edges":230},[221,225],{"id":222,"type":223,"label":224,"file":108,"line":165},"n0","source","$_GET",{"id":226,"type":227,"label":228,"file":108,"line":193,"wp_function":229},"n1","sink","echo() [XSS]","echo",[231],{"from":222,"to":226,"sanitized":149},"medium",{"entryPoint":234,"graph":235,"unsanitizedCount":13,"severity":241},"\u003Cusername-editor> (inc\\username-editor.php:0)",{"nodes":236,"edges":239},[237,238],{"id":222,"type":223,"label":224,"file":108,"line":165},{"id":226,"type":227,"label":228,"file":108,"line":193,"wp_function":229},[240],{"from":222,"to":226,"sanitized":150},"low",{"summary":243,"deductions":244},"The \"username-editor\" plugin version 1.2 exhibits a generally good security posture with no known historical vulnerabilities and a well-defined attack surface. The plugin correctly utilizes prepared statements for all SQL queries and includes a reasonable number of nonce checks. However, the static analysis reveals a significant concern regarding output escaping, with only 22% of outputs being properly escaped. This indicates a potential for Cross-Site Scripting (XSS) vulnerabilities, as unsanitized data displayed to users could be manipulated to execute malicious scripts.  Furthermore, one unsanitized taint flow was identified, which, while not flagged as critical or high severity, still represents a potential security weakness that warrants investigation. The absence of capability checks on entry points is also a concern, meaning that any user, regardless of their role, could potentially interact with the AJAX handlers. While the plugin has a clean vulnerability history, the identified code signals and taint analysis suggest that further scrutiny is needed to address the XSS risk and the unsanitized flow.",[245,248,250],{"reason":246,"points":247},"Low output escaping rate",8,{"reason":249,"points":214},"Unsanitized taint flow detected",{"reason":251,"points":214},"No capability checks on AJAX handlers","2026-03-16T23:26:37.287Z",{"wat":254,"direct":264},{"assetPaths":255,"generatorPatterns":258,"scriptPaths":259,"versionParams":261},[256,257],"\u002Fwp-content\u002Fplugins\u002Fusername-editor\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fusername-editor\u002Fjs\u002Fusername-editor.js",[],[260],"js\u002Fusername-editor.js",[262,263],"username-editor\u002Fcss\u002Fstyle.css?ver=","username-editor\u002Fjs\u002Fusername-editor.js?ver=",{"cssClasses":265,"htmlComments":266,"htmlAttributes":267,"restEndpoints":268,"jsGlobals":269,"shortcodeOutput":271},[],[],[],[],[270],"ue_ajax",[]]