[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fmfld0cTAqMk2KNThX4az6KXtkHGiYVg2ETYksCIOI-A":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":64,"crawl_stats":38,"alternatives":72,"analysis":179,"fingerprints":691},"wp-edit-password-protected","Wp Edit Password Protected – Create Password Protect Pages & Design Password Protected Form","1.3.7","Noor Alam","https:\u002F\u002Fprofiles.wordpress.org\u002Fnalam-1\u002F","\u003Ch3>Create Password Protect with custom login form or change\u002Fedit Password Protected form easily by this plugin.\u003C\u002Fh3>\n\u003Cp>Do you have a WordPress site that you want to password protect any page or post? WP Edit Password Protected is a WordPress plugin that makes it easy to password protect any page or post with login form and add extra text & awesome design in password protect form. You can create member\u002Fuser only pages and posts, change the message displayed on the password form and add social media icons with live editing options and design.\u003C\u002Fp>\n\u003Ch4>NEW: Conditional Display Feature\u003C\u002Fh4>\n\u003Cp>Now you can control when your protected content is shown or hidden based on various conditions:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Show\u002Fhide content for logout user\u003C\u002Fli>\n\u003Cli>Show\u002Fhide content for login user\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>A wordpress plugin for simple way to create admin or member only page by member only page template and change the message displayed, add social icons and change password form on Password Protected posts\u002Fpages.\u003C\u002Fp>\n\u003Cp>Most of the people want to create member only page and want to change the message displayed on Password Protected posts\u002Fpages but they don’t get any option. Now you can create member only page or change Password Protected posts\u002Fpages message by this plugin. The plugin very easy to use and has lots of options.\u003C\u002Fp>\n\u003Ch4>How to create member\u002Fuser only page with login form\u003C\u002Fh4>\n\u003Cp>See short video For member or user only page\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FyD6gVNa8vpc?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>How to use Wp Edit Password Protected\u003C\u002Fh4>\n\u003Cp>See short video For edit password protected form\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F1OSEhxFVjUM?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>Awesome Plugin’s Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>NEW: Conditional Content Display\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Create unlimited member only page \u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Create unlimited user only page \u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Create custom login page \u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customize login form \u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Live customize options for login form \u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Extend Password Protected feature \u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Live customize options for Password Protected form \u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>New style & desgin for Password Protected form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Change text position top or bottom of the form.\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Support top social site.\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Change social icon style.\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Set social icons three different position\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Four password form style. \u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Attention: You may check this author Free and premium theme \u003Ca href=\"https:\u002F\u002Fwpthemespace.com\u002Fthemes\u002F\" rel=\"nofollow ugc\">wpthemespace.com\u003C\u002Fa>\u003C\u002Fh4>\n\u003Ch4>WordPress Password Protected live demo here: demo password is 123\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwpthemespace.com\u002Fwp-edit-password-protected\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Password Protected Live demo\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Member only page live demo here:\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwpthemespace.com\u002Fmember-only-page-2\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Member only page Live demo\u003C\u002Fstrong>\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwpcolors.net\u002Fmy-account\u002F\" rel=\"nofollow ugc\">\u003Cstrong>Member only page with login form demo\u003C\u002Fstrong>\u003C\u002Fa>(Shortcode used for login form)\u003C\u002Fp>\n\u003Ch4>Translations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>English\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>Wp Edit Password Protected uses \u003Ca href=\"https:\u002F\u002Fappsero.com\" rel=\"nofollow ugc\">Appsero\u003C\u002Fa> SDK to collect some telemetry data upon user’s confirmation. This helps us to troubleshoot problems faster & make product improvements.\u003C\u002Fp>\n\u003Cp>Appsero SDK \u003Cstrong>does not gather any data by default.\u003C\u002Fstrong> The SDK only starts gathering basic telemetry data \u003Cstrong>when a user allows it via the admin notice\u003C\u002Fstrong>. We collect the data to ensure a great user experience for all our users.\u003C\u002Fp>\n\u003Cp>Integrating Appsero SDK \u003Cstrong>DOES NOT IMMEDIATELY\u003C\u002Fstrong> start gathering data, \u003Cstrong>without confirmation from users in any case.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Learn more about how \u003Ca href=\"https:\u002F\u002Fappsero.com\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">Appsero collects and uses this data\u003C\u002Fa>.\u003C\u002Fp>\n","Create easily Password protected page or posts in your WordPress website with conditional display options.",3000,74801,90,17,"2025-12-03T05:17:00.000Z","6.9.4","6.0","7.4",[20,21,22,23,24],"login-form","member-only-page","password","protected-page","user-only-page","http:\u002F\u002Fwpthemespace.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-edit-password-protected.zip",98,2,0,"2025-08-21 00:00:00","2026-03-15T15:16:48.613Z",[33,49],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2025-9034","wp-edit-password-protected-open-redirect","Wp Edit Password Protected \u003C= 1.3.4 - Open Redirect","The Wp Edit Password Protected – Create Password Protect Pages & Design Password Protected Form plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 1.3.4. This is due to insufficient validation on the redirect url supplied via the 'redirect_to parameter. This makes it possible for unauthenticated attackers to redirect users to potentially malicious sites if they can successfully trick them into performing an action.",null,"\u003C=1.3.4","1.3.5","medium",4.7,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:N\u002FI:L\u002FA:N","URL Redirection to Untrusted Site ('Open Redirect')","2025-09-25 19:38:04",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fb15b08e1-0aa7-49a3-9a08-bbc48f13260c?source=api-prod",36,{"id":50,"url_slug":51,"title":52,"description":53,"plugin_slug":4,"theme_slug":38,"affected_versions":54,"patched_in_version":55,"severity":41,"cvss_score":56,"cvss_vector":57,"vuln_type":58,"published_date":59,"updated_date":60,"references":61,"days_to_patch":63},"WF-84003388-c47c-41db-8d2d-4643aa375a89-wp-edit-password-protected","appsero-missing-authorization-9","Appsero \u003C= 1.2.1 - Missing Authorization","The Appsero analytics tool used in several plugins is vulnerable to authorization bypass due to a missing capability check on the uninstall_reason_submission function used for feedback submission in versions up to, and including, 1.2.1. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to invoke this function intended for administrator use.","\u003C=1.2.3","1.2.4",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Missing Authorization","2022-12-16 00:00:00","2024-11-13 15:47:37",[62],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F84003388-c47c-41db-8d2d-4643aa375a89?source=api-prod",699,{"slug":65,"display_name":7,"profile_url":8,"plugin_count":66,"total_installs":67,"avg_security_score":68,"avg_patch_time_days":69,"trust_score":70,"computed_at":71},"nalam-1",102,29190,99,233,78,"2026-04-04T07:30:35.166Z",[73,97,117,138,158],{"slug":74,"name":75,"version":76,"author":77,"author_profile":78,"description":79,"short_description":80,"active_installs":81,"downloaded":82,"rating":83,"num_ratings":84,"last_updated":85,"tested_up_to":16,"requires_at_least":86,"requires_php":87,"tags":88,"homepage":93,"download_link":94,"security_score":83,"vuln_count":95,"unpatched_count":29,"last_vuln_date":96,"fetched_at":31},"passwordless-login","Passwordless Login","1.1.4","madalin.ungureanu","https:\u002F\u002Fprofiles.wordpress.org\u002Fmadalinungureanu\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.cozmoslabs.com\u002Fadd-ons\u002Fpasswordless-login\u002F\" rel=\"nofollow ugc\">Passwordless Login\u003C\u002Fa> is a modern way of loggin into your WordPress site without the use of a password.\u003C\u002Fp>\n\u003Cp>Join the discussion here: \u003Ca href=\"https:\u002F\u002Fwww.cozmoslabs.com\u002F31550-wordpress-passwordless-login\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.cozmoslabs.com\u002F31550-wordpress-passwordless-login\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>This is how it works:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Instead of asking users for a password when they try to log in to your website, we simply ask them for their username or email\u003C\u002Fli>\n\u003Cli>The plugin creates a temporary authorization token and saves it in a WordPress transient that expires after 10 minutes\u003C\u002Fli>\n\u003Cli>Then we send the user an email with a link and the token\u003C\u002Fli>\n\u003Cli>The user clicks the link and sends the authorization code to your server\u003C\u002Fli>\n\u003Cli>The plugin then checks if the code is valid and creates the log in WordPress cookie, successfully authenticating the user.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can use the shortcode [passwordless-login] in a page or widget.\u003C\u002Fp>\n\u003Cp>If you’re looking to create front-end user registration and profile forms we recommend \u003Ca href=\"https:\u002F\u002Fwww.cozmoslabs.com\u002Fwordpress-profile-builder\u002F\" rel=\"nofollow ugc\">Profile Builder\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>NOTE:\u003C\u002Fp>\n\u003Cp>Passwordless Authentication dose not replace the default login functionality in WordPress.\u003C\u002Fp>\n","Passwordless login form via a simple to use shortcode: [passwordless-login]",1000,30685,100,10,"2026-02-02T08:30:00.000Z","3.9","",[89,90,91,92,74],"custom-login-form","front-end-login","login-shortcode","passwordless","https:\u002F\u002Fwww.cozmoslabs.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpasswordless-login.1.1.4.zip",1,"2024-03-18 00:00:00",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":105,"downloaded":106,"rating":83,"num_ratings":107,"last_updated":108,"tested_up_to":109,"requires_at_least":110,"requires_php":87,"tags":111,"homepage":114,"download_link":115,"security_score":116,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"expire-password-protected-pages","Expire Password Protected Pages","0.1.0","TG","https:\u002F\u002Fprofiles.wordpress.org\u002Ftroyglancy\u002F","\u003Cp>Description: This plugin will require visitors to type in the password each time they are visiting a password protected page. This also will prevent the page from being accessible if someone types in the password on a public computer. By default WordPress password protected pages sessions will last 10 days. Originally came up with this idea when a client did not want a password protected pages accessible after the browser was closed. While you could add the code to your function.php within your theme I did not want the code to get overwritten when doing a theme update. Using this plugin avoids the need for updating the function.php file.\u003C\u002Fp>\n\u003Cp>Once you have it uploaded to your WordPress install. Simply login to your WordPress backend and activate the plugin. After it’s activated you no longer need to do anything. You can test the page by refreshing the page after typing the password or closing your browser. Once you visit the page again it will force you to type in the password.\u003C\u002Fp>\n\u003Cp>Please note: If you use a cache plugin it may cause the plugin to not work correctly. Please whitelist the page you’re password protecting within your cache plugin.\u003C\u002Fp>\n\u003Cp>You can use this plugin by downloading and unzippping it to the \u002Fplugin directory. Once you have it uploaded to your web host login to your WordPress backend and activate the plugin. After it’s activated you no longer need to do anything.\u003C\u002Fp>\n","Description: This plugin will require visitors to type in the password each time they are visiting a password protected page.",200,3295,3,"2018-05-22T03:44:00.000Z","4.9.29","3.7",[112,113],"password-protected-pages","security","https:\u002F\u002Fgithub.com\u002Ftroyglancy\u002FExpire-Password-Protected-Pages","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fexpire-password-protected-pages.zip",85,{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":125,"downloaded":126,"rating":13,"num_ratings":127,"last_updated":128,"tested_up_to":129,"requires_at_least":130,"requires_php":87,"tags":131,"homepage":136,"download_link":137,"security_score":83,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"nomorepass-forget-your-passwords","NoMorePass Login","1.10.3","yoprogramo","https:\u002F\u002Fprofiles.wordpress.org\u002Fyoprogramo\u002F","\u003Cp>\u003Cstrong>NoMorePass\u003C\u002Fstrong> is a secure and easy to use technology to provide you two factor autentication on every situation. This plugin allows you to login to wordpress using just your mobile phone, with no other requirement. No registering, no API keys, install, activate and that’s all.\u003Cbr \u002F>\nYour passwords will be \u003Cstrong>only on your mobile phone\u003C\u002Fstrong>, no copies over your computers, not even on nomorepass servers, fully anonymous. Login just scanning a one-time qr-code.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Safe\u003C\u002Fstrong> Your passwords are encrypted all the time, all transfers are on https and the credentials are encrypted with single-use keys.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Personal\u003C\u002Fstrong> Your passwords always go with you. No servers, no insecure transfers, no browser dependencies. Fully anonymous.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy\u003C\u002Fstrong> Magic! You can send passwords to your favorite websites without any effort. Just scan a qr-code with the app.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>IMPORTANT\u003C\u002Fstrong>: Install the app in your phone:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplay.google.com\u002Fstore\u002Fapps\u002Fdetails?id=com.biblioeteca.apps.NoMorePass\" rel=\"nofollow ugc\">Google Play\u003C\u002Fa> Android.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fitunes.apple.com\u002Fus\u002Fapp\u002Fno-more-pass\u002Fid1199780162\" rel=\"nofollow ugc\">Apple Appstore\u003C\u002Fa> iOS \u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Instant user registration\u003C\u002Fstrong>\u003Cbr \u002F>\nYou have a new configuration option named “Auto-login after registration” that allows your users scan the provided qr-code only providing username and email, then the password is sent to the mobile phone and the user is registered immediately.\u003Cbr \u002F>\nRegister your users in just one step, safely.\u003C\u002Fp>\n\u003Cp>Avoid force brute attacks\u003Cbr \u002F>\nYou can force users to use NoMorePass app to login to your site, making impossible force-brute attacs. Even if the attackers guess the correct user an password they will be unable to enter if not using the mobile app.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Allow access from every page\u002Fpost\u002Fwidget\u003C\u002Fstrong>\u003Cbr \u002F>\nYou can use a shortcode to include a login form in any page or post or include in your sidebar.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>NoMorePass support\u003C\u002Fstrong>,\u003Cbr \u002F>\nif you find a bug please open a ticket in the support request or go to \u003Ca href=\"https:\u002F\u002Fwww.nomorepass.com\" rel=\"nofollow ugc\">NoMorePass.com\u003C\u002Fa>.\u003Cbr \u002F>\nEvery issue will be fixed asap!\u003C\u002Fp>\n\u003Cp>\u003Cstrong> NoMorePass\u003C\u002Fstrong> plugin is also compatible with any plugin that hooks in the login form, including\u003C\u002Fp>\n\u003Col>\n\u003Cli>BuddyPress,\u003C\u002Fli>\n\u003Cli>bbPress,\u003C\u002Fli>\n\u003Cli>Limit Login Attempts,\u003C\u002Fli>\n\u003Cli>Captcha plugins.\u003C\u002Fli>\n\u003Cli>etc.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>How to create a custom login page with nomorepass\u003C\u002Fh3>\n\u003Cp>In order to create a login form or custom login page for WordPress with the default options, all you need to do is use this shortcode:\u003C\u002Fp>\n\u003Cp>[nmp_login_form]\u003C\u002Fp>\n\u003Cp>You can use parameters in the shortcode:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>redirect\u003C\u002Fstrong> An absolute URL to which the user will be redirected after a successful login\u003C\u002Fli>\n\u003Cli>\u003Cstrong>form_id\u003C\u002Fstrong> Custom ID for the login form\u003C\u002Fli>\n\u003Cli>\u003Cstrong>label_xxx\u003C\u002Fstrong> (xxx can be username, password, remember, log_in) Text to use as label in your form for the indicated field\u003C\u002Fli>\n\u003Cli>\u003Cstrong>remember\u003C\u002Fstrong> Specify if the “Remember Me” checkbox should be shown\u003C\u002Fli>\n\u003Cli>\u003Cstrong>value_xxx\u003C\u002Fstrong> (xxx can be username, password, remember) placeholder for text field or (0|1) for remember.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>lost_password\u003C\u002Fstrong> Specify if the “Lost password” link should be shown\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Configuration\u003C\u002Fh3>\n\u003Cp>In the admin page you have 5 different options:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Show login form : shows or hide the user and password fields. If hidden only using QR is possible login.\u003C\u002Fli>\n\u003Cli>Show password reset : shows or hide the password field when resetting password. If hidden the password is sent to the mobile phone using QR directly.\u003C\u002Fli>\n\u003Cli>Auto-launch QR : makes the NoMorePass QR be launched when login page loads.\u003C\u002Fli>\n\u003Cli>Auto-login : if you select this option the user will login directly after the registration without email verification. Use with caution, this option will reduce the registration dramatically (just 1 step) but the emails are not verified (but you know people registered have used nomorepass, so they are humans).\u003C\u002Fli>\n\u003Cli>Only Nomorepass : allows logins only using nomorepass app\u003C\u002Fli>\n\u003Cli>Custom Logo: allows to upload a new icon for login\u003C\u002Fli>\n\u003Cli>Custom Message: allows to change the login message\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>How it works\u003C\u002Fh3>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FOVL7cuiS77g?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n","Use your mobile phone to login into wordpress. Allow users instant registration. Fully protection against force brute attacks",70,5164,8,"2025-04-19T19:40:00.000Z","6.8.5","3.5",[132,133,22,134,135],"login","nomorepass","wordpress-login","wp-login-form","https:\u002F\u002Fwww.nomorepass.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fnomorepass-forget-your-passwords.zip",{"slug":139,"name":140,"version":141,"author":142,"author_profile":143,"description":144,"short_description":145,"active_installs":146,"downloaded":147,"rating":148,"num_ratings":149,"last_updated":150,"tested_up_to":129,"requires_at_least":151,"requires_php":152,"tags":153,"homepage":87,"download_link":157,"security_score":83,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"login-links","Login Links – Passwordless Login, Temporary Access Links & Custom Login Form","2.1.0","Denis Alemán","https:\u002F\u002Fprofiles.wordpress.org\u002Fdenisaleman\u002F","\u003Cp>Login Links allows you to create temporary, password-less access links for existing users or guest accounts. The links can be configured to expire either after a certain period of time or after a set number of successful logins.\u003C\u002Fp>\n\u003Ch3>How Login Link Works\u003C\u002Fh3>\n\u003Cp>A login link is a special link that, when clicked, automatically logs the user in. They don’t need an account. The login occurs either under an existing account or under a temporary account created specifically for this link. The link has an expiration date, after which it is automatically deleted.\u003C\u002Fp>\n\u003Ch3>Provide Temporary Access\u003C\u002Fh3>\n\u003Cp>Create a login link with a specific role for support teams, clients, developers, or guest users who need temporary access to the site, and email it directly to them. They don’t need to create an account or come up with a password, and you won’t have to worry about deleting their account later.\u003C\u002Fp>\n\u003Ch3>Passwordless Access for Users\u003C\u002Fh3>\n\u003Cp>Allow already registered users to log in without a password. Users request a one-time login link by entering the email they used during registration, and the link is sent to that email.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Ch3>Temporary Login Links\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Create an unlimited number of temporary login links.\u003C\u002Fli>\n\u003Cli>Choose to log in as an existing user or as a temporary user, which will automatically create a temporary account attached to the link.\u003C\u002Fli>\n\u003Cli>Delete and manage created links through a table interface, allowing you to view and remove links as needed.\u003C\u002Fli>\n\u003Cli>Set expiration limits for each login link based on time or number of logins.\u003C\u002Fli>\n\u003Cli>Expiration can be based on the number of logins, time, or a combination of both, whichever occurs first.\u003C\u002Fli>\n\u003Cli>Send an email invitation with a login link.\u003C\u002Fli>\n\u003Cli>Customize the email’s body and subject text.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Password-less Access\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Allow password-less access for your users.\u003C\u002Fli>\n\u003Cli>Custom login form via shortcode for password-less access.\u003C\u002Fli>\n\u003Cli>Automatic deletion of expired links.\u003C\u002Fli>\n\u003Cli>Automatic generation of a temporary account with a designated role upon link creation.\u003C\u002Fli>\n\u003Cli>Optional password-less access through the standard WordPress login form.\u003C\u002Fli>\n\u003Cli>Ability to disallow password-based access.\u003C\u002Fli>\n\u003C\u002Ful>\n","Create secure self-expiring login links for temporary access and guest users, and enable passwordless login for registered ones.",40,977,80,4,"2025-07-02T22:56:00.000Z","5.5","7.0",[89,154,74,155,156],"login-without-password","secure-login","temporary-access","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flogin-links.2.1.0.zip",{"slug":159,"name":160,"version":161,"author":162,"author_profile":163,"description":164,"short_description":165,"active_installs":166,"downloaded":167,"rating":148,"num_ratings":107,"last_updated":168,"tested_up_to":16,"requires_at_least":169,"requires_php":18,"tags":170,"homepage":175,"download_link":176,"security_score":177,"vuln_count":28,"unpatched_count":29,"last_vuln_date":178,"fetched_at":31},"frontend-login-and-registration-blocks","Login, Registration and Lost Password Blocks","1.2.1","Kadim Gültekin","https:\u002F\u002Fprofiles.wordpress.org\u002Farkenon\u002F","\u003Cp>Login, Registration and Lost Password Blocks plugin provides blocks helps you to add login, register, lost password forms from front end.\u003C\u002Fp>\n\u003Cp>Additionally, you can create user settings page, add limit login attempts and user activation functionality and more to your website…\u003C\u002Fp>\n\u003Ch3>Why Choose Frontend Login and Registration Forms\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>1. Easy to Use\u003C\u002Fstrong>\u003Cbr \u002F>\nYou can add login, register, lost password or user settings with just a one click. They are all blocks!\u003C\u002Fp>\n\u003Cp>\u003Cstrong>2. Customization\u003C\u002Fstrong>\u003Cbr \u002F>\nEach block has color, font and size option in the right sidebar of block editor. You can easily customize your forms.\u003C\u002Fp>\n\u003Cp>☑ Login Form Block\u003Cbr \u002F>\n☑ Register Form Block\u003Cbr \u002F>\n☑ Lost Password Form Block\u003Cbr \u002F>\n☑ User Settings Form Block\u003Cbr \u002F>\n☑ User Activation Form Block\u003Cbr \u002F>\n☑ Welcome Card Block\u003Cbr \u002F>\n☑ Menu Item Block (Login\u002FLogout)\u003Cbr \u002F>\n☑ Limit Login Attempts\u003Cbr \u002F>\n☑ Limit Reset Request Attempts\u003Cbr \u002F>\n☑ E-Mail Settings\u003Cbr \u002F>\n☑ Strength Password\u003Cbr \u002F>\n☑ Username Validation\u003Cbr \u002F>\n☑ Customizable Form Fields\u003Cbr \u002F>\n☑ Customizable Colors\u003C\u002Fp>\n\u003Ch3>Note: Please read the guide before using the plugin.\u003C\u002Fh3>\n\u003Cp>☑ \u003Ca href=\"https:\u002F\u002Fguide-frontendlogin.iyziweb.site\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003Cbr \u002F>\n☑ \u003Ca href=\"https:\u002F\u002Ffrontendlogin.iyziweb.site\u002F\" rel=\"nofollow ugc\">Official Web Site\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Compatibility\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Block Editor\u003C\u002Fli>\n\u003Cli>Site Editor\u003C\u002Fli>\n\u003C\u002Ful>\n","Login, Registration and Lost Password Blocks plugin provides blocks helps you to add login, register, lost password forms from front end.",30,3772,"2026-01-07T12:54:00.000Z","6.1",[171,172,20,173,174],"custom-login","login-block","lost-password-block","wp-login","https:\u002F\u002Ffrontendlogin.iyziweb.site\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffrontend-login-and-registration-blocks.1.2.2.zip",93,"2025-05-08 00:00:00",{"attackSurface":180,"codeSignals":607,"taintFlows":678,"riskAssessment":679,"analyzedAt":690},{"hooks":181,"ajaxHandlers":586,"restRoutes":604,"shortcodes":605,"cronEvents":606,"entryPointCount":365,"unprotectedCount":149},[182,188,193,198,200,203,206,209,212,215,218,220,222,225,228,230,233,236,238,241,243,245,248,251,256,258,262,264,268,270,273,277,279,284,287,289,294,298,303,305,310,313,316,318,321,324,326,329,332,335,339,341,343,344,346,349,353,356,358,363,367,371,373,376,378,383,385,387,389,392,394,398,401,405,409,411,414,415,417,420,424,427,430,431,434,437,440,442,444,447,449,451,453,457,460,463,465,469,471,475,479,482,485,488,491,495,498,501,504,507,510,512,517,518,521,524,527,529,532,536,539,542,546,549,553,555,560,562,564,566,569,572,576,579,582,584],{"type":183,"name":184,"callback":185,"file":186,"line":187},"action","init","wpepp_init_kirki_admin_setup","admin\\kirki\\admin-page-setup.php",597,{"type":183,"name":189,"callback":190,"file":191,"line":192},"customize_register","add_customizer_aliases","admin\\kirki\\packages\\kirki-framework\\compatibility\\src\\Aliases.php",152,{"type":194,"name":195,"callback":196,"priority":68,"file":197,"line":149},"filter","kirki_config","closure","admin\\kirki\\packages\\kirki-framework\\compatibility\\src\\deprecated\\filters.php",{"type":194,"name":199,"callback":196,"priority":68,"file":197,"line":127},"kirki_control_types",{"type":194,"name":201,"callback":196,"priority":68,"file":197,"line":202},"kirki_section_types",12,{"type":194,"name":204,"callback":196,"priority":68,"file":197,"line":205},"kirki_section_types_exclude",16,{"type":194,"name":207,"callback":196,"priority":68,"file":197,"line":208},"kirki_control_types_exclude",20,{"type":194,"name":210,"callback":196,"priority":68,"file":197,"line":211},"kirki_controls",24,{"type":194,"name":213,"callback":196,"priority":68,"file":197,"line":214},"kirki_fields",28,{"type":194,"name":216,"callback":196,"priority":68,"file":197,"line":217},"kirki_modules",32,{"type":194,"name":219,"callback":196,"priority":68,"file":197,"line":48},"kirki_panel_types",{"type":194,"name":221,"callback":196,"priority":68,"file":197,"line":146},"kirki_setting_types",{"type":194,"name":223,"callback":196,"priority":68,"file":197,"line":224},"kirki_variable",44,{"type":194,"name":226,"callback":196,"priority":68,"file":197,"line":227},"kirki_values_get_value",48,{"type":183,"name":184,"callback":196,"priority":68,"file":197,"line":229},52,{"type":194,"name":231,"callback":196,"priority":68,"file":197,"line":232},"kirki_enqueue_google_fonts",82,{"type":194,"name":234,"callback":196,"priority":68,"file":197,"line":235},"kirki_styles_array",86,{"type":194,"name":237,"callback":196,"priority":68,"file":197,"line":13},"kirki_dynamic_css_method",{"type":194,"name":239,"callback":196,"priority":68,"file":197,"line":240},"kirki_postmessage_script",94,{"type":194,"name":242,"callback":196,"priority":68,"file":197,"line":27},"kirki_fonts_all",{"type":194,"name":244,"callback":196,"priority":68,"file":197,"line":66},"kirki_fonts_standard_fonts",{"type":194,"name":246,"callback":196,"priority":68,"file":197,"line":247},"kirki_fonts_google_fonts",106,{"type":194,"name":249,"callback":196,"priority":68,"file":197,"line":250},"kirki_googlefonts_load_method",110,{"type":183,"name":252,"callback":253,"priority":95,"file":254,"line":255},"wp_loaded","add_to_customizer","admin\\kirki\\packages\\kirki-framework\\compatibility\\src\\Init.php",43,{"type":194,"name":199,"callback":257,"file":254,"line":224},"default_control_types",{"type":183,"name":189,"callback":259,"priority":260,"file":254,"line":261},"remove_controls",99999,46,{"type":183,"name":263,"callback":263,"file":254,"line":227},"admin_notices",{"type":183,"name":265,"callback":266,"file":254,"line":267},"admin_init","dismiss_nag",49,{"type":183,"name":189,"callback":269,"file":254,"line":66},"register_control_types",{"type":183,"name":189,"callback":271,"priority":68,"file":254,"line":272},"add_fields",103,{"type":183,"name":274,"callback":275,"priority":84,"file":276,"line":227},"after_setup_theme","setup_default_modules","admin\\kirki\\packages\\kirki-framework\\compatibility\\src\\Modules.php",{"type":183,"name":274,"callback":184,"priority":278,"file":276,"line":267},11,{"type":183,"name":280,"callback":281,"file":282,"line":283},"wp_enqueue_scripts","register_scripts","admin\\kirki\\packages\\kirki-framework\\compatibility\\src\\Scripts.php",38,{"type":183,"name":285,"callback":281,"file":282,"line":286},"admin_register_scripts",39,{"type":183,"name":288,"callback":281,"file":282,"line":146},"customize_controls_enqueue_scripts",{"type":194,"name":290,"callback":291,"priority":84,"file":292,"line":293},"kirki_output_item_args","output_item_args","admin\\kirki\\packages\\kirki-framework\\control-image\\src\\Field\\Image.php",56,{"type":194,"name":295,"callback":296,"file":292,"line":297},"kirki_output_control_classnames","output_control_classnames",57,{"type":183,"name":299,"callback":300,"file":301,"line":302},"customize_preview_init","enqueue_customize_preview_scripts","admin\\kirki\\packages\\kirki-framework\\control-react-colorful\\src\\Field\\ReactColorful.php",60,{"type":194,"name":295,"callback":296,"file":301,"line":304},61,{"type":194,"name":306,"callback":307,"priority":208,"file":308,"line":309},"kirki_field_add_setting_args","add_setting_args","admin\\kirki\\packages\\kirki-framework\\data-option\\src\\Option.php",27,{"type":194,"name":311,"callback":312,"priority":208,"file":308,"line":214},"kirki_field_add_control_args","add_control_args",{"type":194,"name":314,"callback":314,"priority":84,"file":308,"line":315},"kirki_get_value",29,{"type":183,"name":252,"callback":196,"file":317,"line":13},"admin\\kirki\\packages\\kirki-framework\\field\\src\\Field.php",{"type":183,"name":319,"callback":196,"file":317,"line":320},"wp",97,{"type":183,"name":189,"callback":322,"file":317,"line":323},"register_control_type",107,{"type":183,"name":189,"callback":325,"file":317,"line":250},"add_setting",{"type":183,"name":189,"callback":327,"file":317,"line":328},"add_control",113,{"type":194,"name":306,"callback":330,"priority":84,"file":317,"line":331},"filter_setting_args",116,{"type":194,"name":311,"callback":333,"priority":84,"file":317,"line":334},"filter_control_args",117,{"type":183,"name":299,"callback":336,"file":337,"line":338},"enqueue_scripts","admin\\kirki\\packages\\kirki-framework\\field-background\\src\\Background.php",246,{"type":194,"name":295,"callback":296,"file":337,"line":340},247,{"type":183,"name":288,"callback":336,"file":342,"line":255},"admin\\kirki\\packages\\kirki-framework\\field-dimensions\\src\\Dimensions.php",{"type":183,"name":299,"callback":300,"file":342,"line":224},{"type":194,"name":295,"callback":296,"file":342,"line":345},45,{"type":194,"name":295,"callback":296,"file":347,"line":348},"admin\\kirki\\packages\\kirki-framework\\field-multicolor\\src\\Field\\Multicolor.php",41,{"type":183,"name":288,"callback":350,"file":351,"line":352},"enqueue_control_scripts","admin\\kirki\\packages\\kirki-framework\\field-typography\\src\\Field\\Typography.php",209,{"type":183,"name":299,"callback":354,"file":351,"line":355},"enqueue_preview_scripts",210,{"type":194,"name":295,"callback":296,"file":351,"line":357},211,{"type":183,"name":359,"callback":360,"file":361,"line":362},"plugins_loaded","load_textdomain","admin\\kirki\\packages\\kirki-framework\\l10n\\src\\L10n.php",62,{"type":194,"name":364,"callback":364,"priority":365,"file":361,"line":366},"override_load_textdomain",5,66,{"type":183,"name":368,"callback":369,"priority":84,"file":370,"line":232},"kirki_field_init","field_init","admin\\kirki\\packages\\kirki-framework\\module-css\\src\\CSS.php",{"type":183,"name":184,"callback":184,"file":370,"line":372},83,{"type":183,"name":319,"callback":374,"file":370,"line":375},"print_styles_action",96,{"type":183,"name":280,"callback":377,"file":370,"line":247},"enqueue_styles",{"type":183,"name":379,"callback":380,"priority":381,"file":370,"line":382},"wp_head","print_styles_inline",999,108,{"type":183,"name":265,"callback":184,"file":384,"line":148},"admin\\kirki\\packages\\kirki-framework\\module-editor-styles\\src\\Editor_Styles.php",{"type":183,"name":386,"callback":377,"priority":381,"file":384,"line":323},"enqueue_block_editor_assets",{"type":183,"name":274,"callback":388,"priority":381,"file":384,"line":382},"add_theme_support",{"type":183,"name":288,"callback":390,"file":391,"line":283},"field_dependencies","admin\\kirki\\packages\\kirki-framework\\module-field-dependencies\\src\\Field_Dependencies.php",{"type":194,"name":311,"callback":393,"file":391,"line":286},"field_add_control_args",{"type":183,"name":189,"callback":395,"file":396,"line":397},"add_panel","admin\\kirki\\packages\\kirki-framework\\module-panels\\src\\Panel.php",63,{"type":183,"name":288,"callback":399,"file":396,"line":400},"enqueue_scrips",65,{"type":183,"name":189,"callback":402,"priority":403,"file":396,"line":404},"remove_panel",9999,112,{"type":183,"name":299,"callback":406,"file":407,"line":408},"postmessage","admin\\kirki\\packages\\kirki-framework\\module-postmessage\\src\\Postmessage.php",37,{"type":183,"name":306,"callback":410,"file":407,"line":283},"field_add_setting_args",{"type":183,"name":412,"callback":412,"file":413,"line":283},"customize_controls_print_footer_scripts","admin\\kirki\\packages\\kirki-framework\\module-preset\\src\\Preset.php",{"type":194,"name":311,"callback":393,"file":413,"line":286},{"type":183,"name":288,"callback":288,"priority":68,"file":416,"line":293},"admin\\kirki\\packages\\kirki-framework\\module-section-icons\\src\\Section_Icons.php",{"type":183,"name":418,"callback":419,"priority":84,"file":416,"line":297},"kirki_panel_added","panel_added",{"type":183,"name":421,"callback":422,"priority":84,"file":416,"line":423},"kirki_section_added","section_added",58,{"type":183,"name":189,"callback":425,"file":426,"line":400},"register_section_types","admin\\kirki\\packages\\kirki-framework\\module-sections\\src\\Section.php",{"type":183,"name":189,"callback":428,"file":426,"line":429},"add_section",68,{"type":183,"name":288,"callback":399,"file":426,"line":125},{"type":183,"name":412,"callback":432,"file":426,"line":433},"outer_sections_css",71,{"type":183,"name":189,"callback":435,"priority":403,"file":426,"line":436},"remove_section",142,{"type":194,"name":306,"callback":330,"priority":84,"file":438,"line":439},"admin\\kirki\\packages\\kirki-framework\\module-selective-refresh\\src\\Selective_Refresh.php",35,{"type":183,"name":412,"callback":412,"file":441,"line":348},"admin\\kirki\\packages\\kirki-framework\\module-tooltips\\src\\Tooltips.php",{"type":194,"name":311,"callback":333,"priority":84,"file":441,"line":443},42,{"type":183,"name":379,"callback":445,"file":446,"line":232},"webfont_loader","admin\\kirki\\packages\\kirki-framework\\module-webfonts\\src\\Webfonts\\Async.php",{"type":183,"name":379,"callback":448,"priority":166,"file":446,"line":372},"webfont_loader_script",{"type":183,"name":450,"callback":445,"file":446,"line":235},"admin_enqueue_scripts",{"type":183,"name":450,"callback":448,"priority":166,"file":446,"line":452},87,{"type":183,"name":319,"callback":184,"priority":454,"file":455,"line":456},9,"admin\\kirki\\packages\\kirki-framework\\module-webfonts\\src\\Webfonts\\Embed.php",72,{"type":183,"name":458,"callback":459,"file":455,"line":116},"kirki_dynamic_css","the_css",{"type":183,"name":368,"callback":369,"priority":84,"file":461,"line":462},"admin\\kirki\\packages\\kirki-framework\\module-webfonts\\src\\Webfonts.php",51,{"type":183,"name":252,"callback":464,"file":461,"line":229},"run",{"type":194,"name":466,"callback":467,"priority":84,"file":468,"line":408},"http_request_args","http_request","admin\\kirki\\packages\\kirki-framework\\util\\src\\Util.php",{"type":183,"name":368,"callback":470,"priority":84,"file":468,"line":283},"field_init_variables",{"type":183,"name":184,"callback":472,"file":473,"line":474},"wpepp_init_kirki_settings","admin\\kirki\\password-protect-settings.php",447,{"type":183,"name":263,"callback":476,"file":477,"line":478},"spacehide_go_me","admin\\nt-class.php",176,{"type":183,"name":263,"callback":480,"file":477,"line":481},"wpepop_admin_notice",253,{"type":183,"name":263,"callback":483,"file":477,"line":484},"wp_edit_pass_new_optins_texts",270,{"type":183,"name":184,"callback":486,"file":477,"line":487},"wp_edit_pass_new_optins_texts_init",284,{"type":183,"name":263,"callback":489,"file":477,"line":490},"wpepp_update_notice",316,{"type":183,"name":184,"callback":492,"file":493,"line":494},"setup_templates","admin\\pagetemplater.php",47,{"type":194,"name":496,"callback":497,"file":493,"line":304},"page_attributes_dropdown_pages_args","register_project_templates",{"type":194,"name":499,"callback":500,"file":493,"line":429},"theme_page_templates","add_new_template",{"type":194,"name":502,"callback":497,"file":493,"line":503},"wp_insert_post_data",75,{"type":194,"name":505,"callback":506,"file":493,"line":372},"template_include","view_project_template",{"type":183,"name":359,"callback":508,"file":493,"line":509},"get_instance",181,{"type":183,"name":450,"callback":450,"file":511,"line":166},"admin\\src\\class.settings-api.php",{"type":183,"name":513,"callback":514,"file":515,"line":516},"wsa_form_top_pp_new_basic_settings","password_propage","admin\\wp_edit_pass_options.php",19,{"type":183,"name":265,"callback":265,"file":515,"line":208},{"type":183,"name":519,"callback":519,"file":515,"line":520},"admin_menu",21,{"type":183,"name":522,"callback":522,"file":523,"line":297},"add_meta_boxes","includes\\conditional-meta\\class-conditional-meta.php",{"type":183,"name":525,"callback":526,"file":523,"line":302},"save_post","save_meta_data",{"type":183,"name":450,"callback":528,"file":523,"line":397},"enqueue_admin_scripts",{"type":183,"name":280,"callback":530,"file":523,"line":531},"enqueue_frontend_scripts",64,{"type":194,"name":533,"callback":534,"file":523,"line":535},"the_content","apply_conditional_display",67,{"type":194,"name":537,"callback":538,"priority":84,"file":523,"line":125},"the_title","apply_conditional_title",{"type":194,"name":540,"callback":541,"priority":84,"file":523,"line":433},"post_thumbnail_html","apply_conditional_thumbnail",{"type":194,"name":543,"callback":544,"priority":202,"file":523,"line":545},"rest_prepare_post","rest_api_conditional_content",73,{"type":194,"name":547,"callback":544,"priority":202,"file":523,"line":548},"rest_prepare_page",74,{"type":194,"name":543,"callback":550,"priority":551,"file":523,"line":552},"rest_api_conditional_title_and_thumbnail",13,76,{"type":194,"name":547,"callback":550,"priority":551,"file":523,"line":554},77,{"type":194,"name":556,"callback":557,"priority":381,"file":558,"line":559},"the_password_form","output_pass_form","includes\\wp_edit_pass_customize.php",15,{"type":183,"name":252,"callback":561,"file":558,"line":205},"cookie_set",{"type":183,"name":359,"callback":184,"file":563,"line":320},"wp-edit-password-protected.php",{"type":183,"name":184,"callback":565,"file":563,"line":68},"i18n",{"type":183,"name":184,"callback":567,"file":563,"line":568},"save_install_date",101,{"type":183,"name":450,"callback":570,"file":563,"line":571},"wp_edit_pass_admin_scripts",183,{"type":183,"name":573,"callback":574,"file":563,"line":575},"wp_login_failed","my_front_end_login_fail",184,{"type":183,"name":280,"callback":577,"file":563,"line":578},"wp_edit_pass_script",185,{"type":183,"name":288,"callback":580,"file":563,"line":581},"customize_preview_assets",186,{"type":194,"name":547,"callback":583,"priority":84,"file":563,"line":487},"anonymous",{"type":194,"name":543,"callback":583,"priority":84,"file":563,"line":585},285,[587,592,594,599,601],{"action":588,"nopriv":589,"callback":590,"hasNonce":589,"hasCapCheck":589,"file":591,"line":494},"kirki_fonts_google_all_get",false,"print_googlefonts_json","admin\\kirki\\packages\\kirki-framework\\googlefonts\\src\\GoogleFonts.php",{"action":588,"nopriv":593,"callback":590,"hasNonce":589,"hasCapCheck":589,"file":591,"line":227},true,{"action":595,"nopriv":589,"callback":596,"hasNonce":589,"hasCapCheck":589,"file":597,"line":598},"kirki_fonts_standard_all_get","get_standardfonts_json","admin\\kirki\\packages\\kirki-framework\\module-webfonts\\src\\Webfonts\\Google.php",88,{"action":595,"nopriv":593,"callback":596,"hasNonce":589,"hasCapCheck":589,"file":597,"line":600},89,{"action":602,"nopriv":589,"callback":602,"hasNonce":593,"hasCapCheck":593,"file":563,"line":603},"wpepp_dismiss_update_notice",262,[],[],[],{"dangerousFunctions":608,"sqlUsage":612,"outputEscaping":614,"fileOperations":107,"externalRequests":95,"nonceChecks":107,"capabilityChecks":673,"bundledLibraries":674},[609],{"fn":610,"file":511,"line":382,"context":611},"create_function","$callback = create_function('', 'echo \"' . str_replace( '\"', '\\\"', $section['desc'] ) . '\";');",{"prepared":28,"raw":29,"locations":613},[],{"escaped":615,"rawEcho":214,"locations":616},226,[617,621,623,625,628,630,632,634,636,638,639,641,642,644,646,648,649,651,653,655,657,659,661,663,665,667,668,671],{"file":618,"line":619,"context":620},"admin\\admin-only-template.php",131,"raw output",{"file":618,"line":622,"context":620},151,{"file":624,"line":516,"context":620},"admin\\kirki\\packages\\composer\\platform_check.php",{"file":626,"line":627,"context":620},"admin\\kirki\\packages\\kirki-framework\\control-repeater\\src\\Control\\Repeater.php",454,{"file":370,"line":629,"context":620},220,{"file":370,"line":631,"context":620},333,{"file":455,"line":633,"context":620},166,{"file":597,"line":635,"context":620},240,{"file":493,"line":637,"context":620},174,{"file":511,"line":578,"context":620},{"file":511,"line":640,"context":620},214,{"file":511,"line":69,"context":620},{"file":511,"line":643,"context":620},256,{"file":511,"line":645,"context":620},278,{"file":511,"line":647,"context":620},299,{"file":511,"line":490,"context":620},{"file":511,"line":650,"context":620},326,{"file":511,"line":652,"context":620},339,{"file":511,"line":654,"context":620},355,{"file":511,"line":656,"context":620},374,{"file":511,"line":658,"context":620},390,{"file":511,"line":660,"context":620},406,{"file":511,"line":662,"context":620},424,{"file":511,"line":664,"context":620},518,{"file":511,"line":666,"context":620},530,{"file":515,"line":429,"context":620},{"file":669,"line":670,"context":620},"includes\\conditional-meta\\views\\meta-box.php",143,{"file":669,"line":672,"context":620},289,6,[675],{"name":676,"version":38,"knownCves":677},"Select2",[],[],{"summary":680,"deductions":681},"The \"wp-edit-password-protected\" plugin version 1.3.7 exhibits a mixed security posture. While it demonstrates good practices such as using prepared statements for all SQL queries and a high percentage of properly escaped output, significant concerns arise from its attack surface and vulnerability history. The plugin exposes 5 AJAX handlers, with a concerning 4 of them lacking proper authentication checks. This creates a substantial entry point for potential attacks that could be leveraged by authenticated users, or if further vulnerabilities exist to gain initial access. The presence of a `create_function` call, though only one instance, is a notable code smell that can lead to security issues if not handled with extreme care.  Furthermore, the plugin has a history of 2 medium severity CVEs, specifically related to 'Open Redirect' and 'Missing Authorization'. While currently unpatched, this history suggests a recurring pattern of vulnerabilities in authorization logic, which aligns with the static analysis findings of unprotected AJAX handlers. The last vulnerability being in 2025 indicates a recent history of security flaws. In conclusion, while the plugin has some solid security implementations, the significant number of unprotected AJAX endpoints and its past vulnerability record, particularly concerning authorization, present tangible risks that require attention.",[682,684,686,688],{"reason":683,"points":84},"4 unprotected AJAX handlers",{"reason":685,"points":365},"Dangerous function used (create_function)",{"reason":687,"points":559},"2 medium severity CVEs in history",{"reason":689,"points":84},"History of Missing Authorization vulnerabilities","2026-03-16T18:18:49.354Z",{"wat":692,"direct":707},{"assetPaths":693,"generatorPatterns":699,"scriptPaths":700,"versionParams":701},[694,695,696,697,698],"\u002Fwp-content\u002Fplugins\u002Fwp-edit-password-protected\u002Fassets\u002Fcss\u002Fwpps-fonts.css","\u002Fwp-content\u002Fplugins\u002Fwp-edit-password-protected\u002Fassets\u002Fcss\u002Fwppps-style.css","\u002Fwp-content\u002Fplugins\u002Fwp-edit-password-protected\u002Fassets\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fwp-edit-password-protected\u002Fassets\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Fwp-edit-password-protected\u002Fassets\u002Fcss\u002Fwpepp-customizer.css",[],[697],[702,703,704,705,706],"wp-edit-password-protected\u002Fassets\u002Fcss\u002Fwpps-fonts.css?ver=","wp-edit-password-protected\u002Fassets\u002Fcss\u002Fwppps-style.css?ver=","wp-edit-password-protected\u002Fassets\u002Fcss\u002Fadmin.css?ver=","wp-edit-password-protected\u002Fassets\u002Fjs\u002Fadmin.js?ver=","wp-edit-password-protected\u002Fassets\u002Fcss\u002Fwpepp-customizer.css?ver=",{"cssClasses":708,"htmlComments":710,"htmlAttributes":711,"restEndpoints":712,"jsGlobals":713,"shortcodeOutput":715},[709],"wpepp_dismiss_notice",[],[],[],[714],"wpeppAdmin",[]]