[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fwtQuDmmPicJeONotwQiVGSCN6IWAzRZ0KJBYht2Q0Sw":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":17,"tags":18,"homepage":17,"download_link":21,"security_score":22,"vuln_count":23,"unpatched_count":24,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":53,"crawl_stats":33,"alternatives":59,"analysis":162,"fingerprints":217},"wp-delete-user-accounts","WP Delete User Accounts","1.2.4","Ren Ventura","https:\u002F\u002Fprofiles.wordpress.org\u002Frenventura\u002F","\u003Cp>Allow your users (except for administrators) to manually delete their own accounts. It uses the \u003Ca href=\"http:\u002F\u002Ft4t5.github.io\u002Fsweetalert\u002F\" rel=\"nofollow ugc\">Sweet Alert\u003C\u002Fa> jQuery plugin for slick-looking alerts and prompts.\u003C\u002Fp>\n\u003Cp>By default, this plugin adds a button to a user’s profile page in the wp-admin. You can also add a delete button to any page or post using the \u003Ccode>[wp_delete_user_accounts]\u003C\u002Fcode> shortcode.\u003C\u002Fp>\n\u003Cp>NOTE: Delete buttons are not displayed when logged in as an administrator. This is done to protect against locking yourself out of your site. To see the delete button, you’ll need to log in with an account that does not have the administrator role.\u003C\u002Fp>\n\u003Cp>For more technical info, including available hooks (actions and filters), please see the plugin’s \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Frenventura\u002Fwp-delete-user-accounts\" rel=\"nofollow ugc\">readme file on Github\u003C\u002Fa>.\u003C\u002Fp>\n","Allow your users (except for administrators) to manually delete their own accounts.",900,19222,98,7,"2025-03-29T02:44:00.000Z","6.7.5","",[19,20],"accounts","profiles","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-delete-user-accounts.1.2.4.zip",69,2,1,"2025-09-22 00:00:00","2026-03-15T15:16:48.613Z",[28,42],{"id":29,"url_slug":30,"title":31,"description":32,"plugin_slug":4,"theme_slug":33,"affected_versions":34,"patched_in_version":33,"severity":35,"cvss_score":36,"cvss_vector":37,"vuln_type":38,"published_date":25,"updated_date":39,"references":40,"days_to_patch":33},"CVE-2025-58704","wp-delete-user-accounts-authenticated-contributor-stored-cross-site-scripting","WP Delete User Accounts \u003C= 1.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting","The WP Delete User Accounts plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.2.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=1.2.4","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-09-26 17:54:42",[41],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fafc22a4f-7fb8-428a-974d-e80065a36254?source=api-prod",{"id":43,"url_slug":44,"title":45,"description":46,"plugin_slug":4,"theme_slug":33,"affected_versions":47,"patched_in_version":6,"severity":35,"cvss_score":36,"cvss_vector":37,"vuln_type":38,"published_date":48,"updated_date":49,"references":50,"days_to_patch":52},"CVE-2025-26906","wp-delete-user-accounts-authenticated-contributor-stored-cross-site-scripting-2","WP Delete User Accounts \u003C= 1.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting","The WP Delete User Accounts plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.2.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.","\u003C=1.2.3","2025-04-11 00:00:00","2025-04-16 20:06:48",[51],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fe6201ab2-f29b-4790-a1a6-4789b108f546?source=api-prod",6,{"slug":54,"display_name":7,"profile_url":8,"plugin_count":52,"total_installs":55,"avg_security_score":56,"avg_patch_time_days":52,"trust_score":57,"computed_at":58},"renventura",1630,82,87,"2026-04-04T14:18:11.147Z",[60,81,100,120,140],{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":68,"downloaded":69,"rating":70,"num_ratings":70,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":17,"tags":74,"homepage":78,"download_link":79,"security_score":80,"vuln_count":70,"unpatched_count":70,"last_vuln_date":33,"fetched_at":26},"user-social-profiles","User Social Profiles","0.1.5","Patryk Kachel","https:\u002F\u002Fprofiles.wordpress.org\u002Flimestreet\u002F","\u003Cp>To use this plugin – your theme (or child theme) must support it.\u003Cbr \u002F>\nTo display additional profiles for user you just need to use native WordPress function \u003Ccode>the_author_meta( 'profile-name' )\u003C\u002Fcode> where ‘profile name’ can be ‘twitter’, ‘facebook’, ‘googleplus’, ‘instagram’, ‘pinterest’.\u003C\u002Fp>\n\u003Cp>Code example (with Font Awesome Icons):\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php\n    $prefix_twitter_url = get_the_author_meta( 'twitter' );\n    $prefix_facebook_url = get_the_author_meta( 'facebook' );\n    $prefix_googleplus_url = get_the_author_meta( 'googleplus' );\n    $prefix_instagram_url = get_the_author_meta( 'instagram' );\n    $prefix_pinterest_url = get_the_author_meta( 'pinterest' );\n?>\n\u003C?php if ( ! empty( $prefix_twitter_url ) ) : ?>\u003Ca href=\"\u003C?php the_author_meta( 'twitter' ) ?>\">\u003Cspan class=\"fa fa-twitter\">\u003C\u002Fspan>\u003C\u002Fa>\u003C?php endif; ?>\n\u003C?php if ( ! empty( $prefix_facebook_url ) ) : ?>\u003Ca href=\"\u003C?php the_author_meta( 'facebook' ) ?>\">\u003Cspan class=\"fa fa-facebook\">\u003C\u002Fspan>\u003C\u002Fa>\u003C?php endif; ?>\n\u003C?php if ( ! empty( $prefix_googleplus_url ) ) : ?>\u003Ca href=\"\u003C?php the_author_meta( 'googleplus' ) ?>\">\u003Cspan class=\"fa fa-google-plus\">\u003C\u002Fspan>\u003C\u002Fa>\u003C?php endif; ?>\n\u003C?php if ( ! empty( $prefix_instagram_url ) ) : ?>\u003Ca href=\"\u003C?php the_author_meta( 'instagram' ) ?>\">\u003Cspan class=\"fa fa-instagram\">\u003C\u002Fspan>\u003C\u002Fa>\u003C?php endif; ?>\n\u003C?php if ( ! empty( $prefix_pinterest_url ) ) : ?>\u003Ca href=\"\u003C?php the_author_meta( 'pinterest' ) ?>\">\u003Cspan class=\"fa fa-pinterest\">\u003C\u002Fspan>\u003C\u002Fa>\u003C?php endif; ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>You can see it in action here: https:\u002F\u002Fpencil1.blogonyourown.com\u002Fauthor\u002Frobertsummer\u002F\u003C\u002Fp>\n","Plugin adds social fields to user profile in admin panel (Dashboard > Users).",200,10979,0,"2018-12-11T10:20:00.000Z","5.0.25","4.0",[75,76,77,61],"social-accounts","social-profiles","social-user-fields","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fuser-social-profiles","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-social-profiles.0.1.5.zip",85,{"slug":75,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":88,"downloaded":89,"rating":90,"num_ratings":24,"last_updated":91,"tested_up_to":92,"requires_at_least":93,"requires_php":17,"tags":94,"homepage":98,"download_link":99,"security_score":80,"vuln_count":70,"unpatched_count":70,"last_vuln_date":33,"fetched_at":26},"Social Accounts","1.1.2","ffto","https:\u002F\u002Fprofiles.wordpress.org\u002Fffto\u002F","\u003Cp>\u003Cem>Social Accounts\u003C\u002Fem> lets you set and show your Social accounts easily.\u003C\u002Fp>\n\u003Cp>With this plugin you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Use one of the 2 pre-loaded set of icons (16px and 32px)\u003C\u002Fli>\n\u003Cli>Update account icons by using the WordPress media manager by clicking on the icon itself.\u003C\u002Fli>\n\u003Cli>Re-order the list of accounts with a simple drag-drop functionality.\u003C\u002Fli>\n\u003Cli>Add custom accounts (with custom image).\u003C\u002Fli>\n\u003Cli>Show the account listing as a widget\u003C\u002Fli>\n\u003Cli>Add the accounts with the shortcode \u003Ccode>[social_accounts]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Updatable account names\u003C\u002Fli>\n\u003Cli>Support WPML\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>A little bit more than 25 default accounts are there:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Behance\u003C\u002Fli>\n\u003Cli>Blogger\u003C\u002Fli>\n\u003Cli>Codepen\u003C\u002Fli>\n\u003Cli>Delicious\u003C\u002Fli>\n\u003Cli>DeviantART\u003C\u002Fli>\n\u003Cli>Dribbble\u003C\u002Fli>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Flickr\u003C\u002Fli>\n\u003Cli>Forrst\u003C\u002Fli>\n\u003Cli>Foursquare\u003C\u002Fli>\n\u003Cli>Github\u003C\u002Fli>\n\u003Cli>Google+\u003C\u002Fli>\n\u003Cli>Instagram\u003C\u002Fli>\n\u003Cli>Last.fm\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>MySpace\u003C\u002Fli>\n\u003Cli>Orkut\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>Plurk\u003C\u002Fli>\n\u003Cli>Slideshare\u003C\u002Fli>\n\u003Cli>Tumblr\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>Vimeo\u003C\u002Fli>\n\u003Cli>WordPress\u003C\u002Fli>\n\u003Cli>Yelp\u003C\u002Fli>\n\u003Cli>Youtube\u003C\u002Fli>\n\u003Cli>Email\u003C\u002Fli>\n\u003Cli>Gmail\u003C\u002Fli>\n\u003Cli>Blog RSS feed\u003C\u002Fli>\n\u003C\u002Ful>\n","Add a new section under Settings for your social accounts. The order and the images can be customized with ease.",10,3475,100,"2013-02-05T02:37:00.000Z","3.5.2","3.4",[19,20,95,96,97],"shortcode","social","widget","http:\u002F\u002Fimfreshfromtheoven.com\u002Fplugins\u002Fsocial-accounts","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-accounts.1.1.2.zip",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":110,"num_ratings":111,"last_updated":112,"tested_up_to":113,"requires_at_least":73,"requires_php":114,"tags":115,"homepage":118,"download_link":119,"security_score":90,"vuln_count":70,"unpatched_count":70,"last_vuln_date":33,"fetched_at":26},"simple-social-icons","Simple Social Icons","4.0.0","OsomPress","https:\u002F\u002Fprofiles.wordpress.org\u002Fosompress\u002F","\u003Cp>Simple Social Icons is an easy to use, customizable way to display icons that link visitors to your various social profiles. You can choose which profiles to link to, customize the color and size of your icons, and align them to the left, center, or right.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Two Ways to Use Social Icons:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>Widget (WordPress 4.0+):\u003C\u002Fstrong> The traditional widget works on all supported WordPress versions. Simply drag the “Simple Social Icons” widget into any widget area and configure it from the widget form. All available icons are accessible through the widget.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Block Variations (WordPress 6.9+):\u003C\u002Fstrong> On WordPress 6.9+, this plugin extends the core Social Icons block with additional icon variations. These icons automatically appear when adding a Social Icons block in the block editor. Block variations only add icons that are not already available in WordPress core, so you get the best of both worlds: core icons plus these additional options.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Important:\u003C\u002Fstrong> If you’re currently using the widget, nothing changes for you. The widget continues to work exactly as before on all WordPress versions. Block variations are an additional feature that only activates on WordPress 6.9+ and doesn’t affect existing widget functionality.\u003C\u002Fp>\n\u003Cp>*Note: The simple_social_default_glyphs filter has been deprecated from this plugin.\u003C\u002Fp>\n","This plugin provides two ways to display social icons: a traditional widget (available on all WordPress versions) and block variations for the core So &hellip;",100000,3241683,86,91,"2025-12-16T12:19:00.000Z","6.9.4","7.4",[116,117,76],"social-media","social-networking","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsimple-social-icons\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-social-icons.4.0.0.zip",{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":130,"num_ratings":131,"last_updated":132,"tested_up_to":133,"requires_at_least":134,"requires_php":17,"tags":135,"homepage":138,"download_link":139,"security_score":80,"vuln_count":70,"unpatched_count":70,"last_vuln_date":33,"fetched_at":26},"lightweight-social-icons","Lightweight Social Icons","1.1","Tom","https:\u002F\u002Fprofiles.wordpress.org\u002Fedge22\u002F","\u003Cp>Lightweight Social Icons is an easy to use, lightweight social icon widget which lets you display your favorite social profile icons.\u003C\u002Fp>\n\u003Cp>The icons use an icon font, meaning you can choose the size, border radius (roundess), color and hover color of your icons!\u003C\u002Fp>\n\u003Cp>Check out GeneratePress, our awesome WordPress theme! (https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fgeneratepress)\u003C\u002Fp>\n\u003Ch4>Features include:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Choose your own order\u003C\u002Fli>\n\u003Cli>Icon size\u003C\u002Fli>\n\u003Cli>Border radius\u003C\u002Fli>\n\u003Cli>Background color\u003C\u002Fli>\n\u003Cli>Text\u002Ficon color\u003C\u002Fli>\n\u003Cli>Background color on hover\u003C\u002Fli>\n\u003Cli>Text\u002Ficon color on hover\u003C\u002Fli>\n\u003Cli>Open links in new window\u003C\u002Fli>\n\u003Cli>Enable\u002Fdisable tooltips\u003C\u002Fli>\n\u003Cli>Alignment of icons\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Included icons:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>Google+\u003C\u002Fli>\n\u003Cli>Instagram\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>Flickr\u003C\u002Fli>\n\u003Cli>Email\u003C\u002Fli>\n\u003Cli>RSS\u003C\u002Fli>\n\u003Cli>Stumbleupon\u003C\u002Fli>\n\u003Cli>Tumblr\u003C\u002Fli>\n\u003Cli>Vimeo\u003C\u002Fli>\n\u003Cli>YouTube\u003C\u002Fli>\n\u003Cli>Github\u003C\u002Fli>\n\u003Cli>Soundcloud\u003C\u002Fli>\n\u003Cli>DeviantArt\u003C\u002Fli>\n\u003Cli>Phone\u003C\u002Fli>\n\u003Cli>Skype\u003C\u002Fli>\n\u003Cli>Dribbble\u003C\u002Fli>\n\u003Cli>Foursquare\u003C\u002Fli>\n\u003Cli>Reddit\u003C\u002Fli>\n\u003Cli>Spotify\u003C\u002Fli>\n\u003Cli>Digg\u003C\u002Fli>\n\u003Cli>Vine\u003C\u002Fli>\n\u003Cli>Codepen\u003C\u002Fli>\n\u003Cli>Delicious\u003C\u002Fli>\n\u003Cli>JSFiddle\u003C\u002Fli>\n\u003Cli>Stack Overflow\u003C\u002Fli>\n\u003Cli>WordPress\u003C\u002Fli>\n\u003Cli>Dropbox\u003C\u002Fli>\n\u003Cli>Steam\u003C\u002Fli>\n\u003Cli>Behance\u003C\u002Fli>\n\u003Cli>iTunes\u003C\u002Fli>\n\u003Cli>Yelp\u003C\u002Fli>\n\u003Cli>500px\u003C\u002Fli>\n\u003Cli>AngelList\u003C\u002Fli>\n\u003Cli>Blog Lovin’\u003C\u002Fli>\n\u003Cli>Paper Plane (Newsletter)\u003C\u002Fli>\n\u003Cli>VK\u003C\u002Fli>\n\u003Cli>Xing\u003C\u002Fli>\n\u003Cli>Bandcamp\u003C\u002Fli>\n\u003Cli>BitBucket\u003C\u002Fli>\n\u003Cli>Snapchat\u003C\u002Fli>\n\u003Cli>Trip Advisor\u003C\u002Fli>\n\u003Cli>Houzz\u003C\u002Fli>\n\u003Cli>Mixcloud\u003C\u002Fli>\n\u003Cli>Last.fm\u003C\u002Fli>\n\u003C\u002Ful>\n","Looking to add simple social icons to your widget areas? Choose the size and color of your icons, and then choose from 47 different social profiles.",30000,464772,94,63,"2020-03-18T17:14:00.000Z","5.4.19","4.5",[136,137,116,117,76],"social-icon-widget","social-icons","http:\u002F\u002Fgeneratepress.com\u002Flightweight-social-icons","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flightweight-social-icons.1.1.zip",{"slug":141,"name":142,"version":143,"author":144,"author_profile":145,"description":146,"short_description":147,"active_installs":148,"downloaded":149,"rating":90,"num_ratings":150,"last_updated":151,"tested_up_to":152,"requires_at_least":153,"requires_php":17,"tags":154,"homepage":160,"download_link":161,"security_score":80,"vuln_count":70,"unpatched_count":70,"last_vuln_date":33,"fetched_at":26},"allow-multiple-accounts","Allow Multiple Accounts","3.0.4","Scott Reilly","https:\u002F\u002Fprofiles.wordpress.org\u002Fcoffee2code\u002F","\u003Cp>Allow multiple user accounts to be created, registered, and updated having the same email address.\u003C\u002Fp>\n\u003Cp>By default, WordPress only allows a specific email address to be used for a single user account. This plugin removes that restriction.\u003C\u002Fp>\n\u003Cp>The plugin’s settings page (accessed via Users -> Multiple Accounts or via the Settings link next to the plugin on the Manage Plugins page) provides the ability to allow only certain email addresses the ability to have multiple accounts (such as if you only want admins to have that ability; by default all email addresses can be used more than once). You may also specify a limit to the number of accounts an email address can have (by default there is no limit).\u003C\u002Fp>\n\u003Cp>The settings page also provides a table listing all user accounts that share email addresses (see screenshot).\u003C\u002Fp>\n\u003Cp>Compatible with Multisite and BuddyPress as well.\u003C\u002Fp>\n\u003Cp>Links: \u003Ca href=\"http:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fallow-multiple-accounts\u002F\" rel=\"nofollow ugc\">Plugin Homepage\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fallow-multiple-accounts\u002F\" rel=\"ugc\">Plugin Directory Page\u003C\u002Fa> | \u003Ca href=\"http:\u002F\u002Fcoffee2code.com\" rel=\"nofollow ugc\">Author Homepage\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Template Tags\u003C\u002Fh3>\n\u003Cp>The plugin provides three optional template tags for use in your theme templates.\u003C\u002Fp>\n\u003Ch4>Functions\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ccode>\u003C?php c2c_count_multiple_accounts( $email ); ?>\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Returns a count of the number of users associated with the given email.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>\u003C?php c2c_get_users_by_email( $email ); ?>\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Returns the users associated with the given email.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>\u003C?php c2c_has_multiple_accounts( $email ); ?>\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Returns a boolean indicating if the given email is associated with more than one user account.\u003C\u002Fp>\n\u003Ch4>Arguments\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ccode>$email\u003C\u002Fcode> (string)\u003Cbr \u002F>\nAn email address.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Filters\u003C\u002Fh3>\n\u003Cp>The plugin exposes three filters for hooking. Typically, customizations utilizing these hooks would be put into your active theme’s functions.php file, or used by another plugin.\u003C\u002Fp>\n\u003Ch4>c2c_count_multiple_accounts (filter)\u003C\u002Fh4>\n\u003Cp>The ‘c2c_count_multiple_accounts’ hook allows you to use an alternative approach to safely invoke \u003Ccode>c2c_count_multiple_accounts()\u003C\u002Fcode> in such a way that if the plugin were deactivated or deleted, then your calls to the function won’t cause errors in your site.\u003C\u002Fp>\n\u003Cp>Arguments:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>same as for \u003Ccode>c2c_count_multiple_accounts()\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Example:\u003C\u002Fp>\n\u003Cp>Instead of:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php echo c2c_count_multiple_accounts( $email ); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Do:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php echo apply_filters( 'c2c_count_multiple_accounts', $email ); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>c2c_get_users_by_email (filter)\u003C\u002Fh4>\n\u003Cp>The ‘c2c_get_users_by_email’ hook allows you to use an alternative approach to safely invoke \u003Ccode>c2c_get_users_by_email()\u003C\u002Fcode> in such a way that if the plugin were deactivated or deleted, then your calls to the function won’t cause errors in your site.\u003C\u002Fp>\n\u003Cp>Arguments:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>same as for \u003Ccode>c2c_get_users_by_email()\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Example:\u003C\u002Fp>\n\u003Cp>Instead of:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php echo c2c_get_users_by_email( $email ); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Do:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php echo apply_filters( 'c2c_get_users_by_email', $email ); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>c2c_has_multiple_accounts (filter)\u003C\u002Fh4>\n\u003Cp>The ‘c2c_has_multiple_accounts’ hook allows you to use an alternative approach to safely invoke \u003Ccode>c2c_has_multiple_accounts()\u003C\u002Fcode> in such a way that if the plugin were deactivated or deleted, then your calls to the function won’t cause errors in your site.\u003C\u002Fp>\n\u003Cp>Arguments:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>same as for \u003Ccode>c2c_has_multiple_accounts()\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Example:\u003C\u002Fp>\n\u003Cp>Instead of:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php echo c2c_has_multiple_accounts( $email ); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Do:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>\u003C?php echo apply_filters( 'c2c_has_multiple_accounts', $email ); ?>\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Allow multiple user accounts to be created, registered, and updated having the same email address.",10000,79839,22,"2017-11-28T17:31:00.000Z","4.2.39","3.6",[155,156,157,158,159],"account","email","multiple-accounts","registration","signup","http:\u002F\u002Fcoffee2code.com\u002Fwp-plugins\u002Fallow-multiple-accounts\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fallow-multiple-accounts.3.0.4.zip",{"attackSurface":163,"codeSignals":198,"taintFlows":206,"riskAssessment":207,"analyzedAt":216},{"hooks":164,"ajaxHandlers":184,"restRoutes":192,"shortcodes":193,"cronEvents":197,"entryPointCount":23,"unprotectedCount":70},[165,172,177,181],{"type":166,"name":167,"callback":168,"priority":169,"file":170,"line":171},"action","show_user_profile","delete_account_button_admin",99,"includes\\admin-profile.php",20,{"type":166,"name":173,"callback":174,"file":175,"line":176},"plugins_loaded","loaded","wp-delete-user-accounts.php",104,{"type":166,"name":178,"callback":179,"file":175,"line":180},"wp_enqueue_scripts","enqueues",105,{"type":166,"name":182,"callback":179,"file":175,"line":183},"admin_enqueue_scripts",106,[185],{"action":186,"nopriv":187,"callback":188,"hasNonce":189,"hasCapCheck":189,"file":190,"line":191},"wp_delete_user_account",false,"process",true,"includes\\process-ajax.php",23,[],[194],{"tag":195,"callback":195,"file":196,"line":191},"wp_delete_user_accounts","includes\\frontend.php",[],{"dangerousFunctions":199,"sqlUsage":200,"outputEscaping":202,"fileOperations":70,"externalRequests":70,"nonceChecks":24,"capabilityChecks":204,"bundledLibraries":205},[],{"prepared":70,"raw":70,"locations":201},[],{"escaped":23,"rawEcho":70,"locations":203},[],5,[],[],{"summary":208,"deductions":209},"The \"wp-delete-user-accounts\" plugin version 1.2.4 exhibits a mixed security posture. On the positive side, static analysis indicates good development practices with all SQL queries using prepared statements, all output being properly escaped, and the presence of nonce and capability checks on its entry points. There are no detected dangerous functions, file operations, or external HTTP requests, and the attack surface through AJAX and shortcodes appears to be protected by authentication checks.\n\nHowever, the plugin's vulnerability history is a significant concern. With a total of two known CVEs, one of which remains unpatched, and both being of medium severity related to Cross-Site Scripting (XSS), this indicates a recurring pattern of input sanitization or output escaping issues. The fact that a vulnerability was recently discovered (2025-09-22) and is still unpatched suggests a potential for exploitation.\n\nIn conclusion, while the current code analysis reveals a solid adherence to secure coding principles for the analyzed version, the historical context of unpatched vulnerabilities, particularly XSS, poses a considerable risk. Users of this plugin should be aware of the past security incidents and the implications of an unpatched vulnerability, even if the immediate code analysis appears clean.",[210,213],{"reason":211,"points":212},"Unpatched CVE exists",18,{"reason":214,"points":215},"History of medium severity XSS vulnerabilities",15,"2026-03-16T19:14:30.336Z",{"wat":218,"direct":229},{"assetPaths":219,"generatorPatterns":223,"scriptPaths":224,"versionParams":225},[220,221,222],"\u002Fwp-content\u002Fplugins\u002Fwp-delete-user-accounts\u002Fassets\u002Fcss\u002Fwp-delete-user-accounts.css","\u002Fwp-content\u002Fplugins\u002Fwp-delete-user-accounts\u002Fassets\u002Fjs\u002Fsweetalert.min.js","\u002Fwp-content\u002Fplugins\u002Fwp-delete-user-accounts\u002Fassets\u002Fjs\u002Fwp-delete-user-accounts.js",[],[221,222],[226,227,228],"wp-delete-user-accounts\u002Fassets\u002Fcss\u002Fwp-delete-user-accounts.css?ver=","wp-delete-user-accounts\u002Fassets\u002Fjs\u002Fsweetalert.min.js?ver=","wp-delete-user-accounts\u002Fassets\u002Fjs\u002Fwp-delete-user-accounts.js?ver=",{"cssClasses":230,"htmlComments":231,"htmlAttributes":232,"restEndpoints":233,"jsGlobals":234,"shortcodeOutput":236},[],[],[],[],[235],"wp_delete_user_accounts_js",[237],"[wp_delete_user_accounts]"]