[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fg-b-Q49IIxr4ZqonDGKCC8qQYcYe_LpyHpL5EmWqGwI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":103,"crawl_stats":38,"alternatives":108,"analysis":221,"fingerprints":772},"wp-front-end-profile","WP Frontend Profile","1.3.9","Glowlogix","https:\u002F\u002Fprofiles.wordpress.org\u002Fglowlogix\u002F","\u003Cp>WP Frontend Profile gives you the ability to add a extensible user profile section to the frontend of your WordPress website. By default the plugin adds two tabs to the frontend profile. One of these tabs, titled profile, allows a user to edit their user data including email, first and last names, URL and bio (description). The password tab allows a user to change their password for the site.\u003C\u002Fp>\n\u003Ch4>Plugin Extensibility\u003C\u002Fh4>\n\u003Cp>As the frontend profile is rendered with tabs you can easily add your own tabs with your own fields to store user meta data. Tabs and fields are added through filters and all the saving of the data is taken care of for you.\u003C\u002Fp>\n\u003Cp>You can add the following field types:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WYSIWYG\u003C\u002Fli>\n\u003Cli>Select\u003C\u002Fli>\n\u003Cli>Multi Select\u003C\u002Fli>\n\u003Cli>Radio\u003C\u002Fli>\n\u003Cli>Text Area\u003C\u002Fli>\n\u003Cli>Checkbox\u003C\u002Fli>\n\u003Cli>Password\u003C\u002Fli>\n\u003Cli>Email\u003C\u002Fli>\n\u003Cli>Text\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>See FAQs for how to add our own fields and tabs.\u003C\u002Fp>\n\u003Ch4>Profile Output\u003C\u002Fh4>\n\u003Cp>To output the frontend profile feature you can use the following shortcodes in editor:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Profile page \u003Ccode>[wpfep-profile]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Edit profile \u003Ccode>[wpfep]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Register page \u003Ccode>[wpfep-register]\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>Login page \u003Ccode>[wpfep-login]\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Added Login Widget\u003C\u002Fli>\n\u003Cli>Addon for Mailchimp\u003C\u002Fli>\n\u003Cli>Added Content Restriction feature for paid members.\u003C\u002Fli>\n\u003C\u002Ful>\n","WP Frontend Profile allows users to edit\u002Fview their profile and register\u002Flogin without going into the dashboard to do so.",100,22187,86,8,"2026-02-21T21:44:00.000Z","6.8.5","4.0.1","5.2.17",[20,21,22,23,24],"login","profile","register","user-meta","users","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-front-end-profile\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-front-end-profile.1.3.9.zip",83,5,0,"2026-03-06 11:21:23","2026-03-15T15:16:48.613Z",[33,48,64,79,94],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":6,"severity":40,"cvss_score":41,"cvss_vector":42,"vuln_type":43,"published_date":30,"updated_date":44,"references":45,"days_to_patch":47},"CVE-2026-1644","wp-frontend-profile-cross-site-request-forgery-to-unauthorized-user-account-approval-or-rejection","WP Frontend Profile \u003C= 1.3.8 - Cross-Site Request Forgery to Unauthorized User Account Approval or Rejection","The WP Frontend Profile plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.8. This is due to missing nonce validation on the 'update_action' function. This makes it possible for unauthenticated attackers to approve or reject user account registrations via a forged request granted they can trick an administrator into performing an action such as clicking on a link.",null,"\u003C=1.3.8","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Cross-Site Request Forgery (CSRF)","2026-03-06 23:22:59",[46],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F74b186fd-5825-4a20-829b-6b8a5ddbe853?source=api-prod",1,{"id":49,"url_slug":50,"title":51,"description":52,"plugin_slug":4,"theme_slug":38,"affected_versions":53,"patched_in_version":54,"severity":55,"cvss_score":56,"cvss_vector":57,"vuln_type":58,"published_date":59,"updated_date":60,"references":61,"days_to_patch":63},"CVE-2023-51483","wp-frontend-profile-unauthenticated-privilege-escalation","WP Frontend Profile \u003C= 1.3.1 - Unauthenticated Privilege Escalation","The WP Frontend Profile plugin for WordPress is vulnerable to privilege in all versions up to, and including, 1.3.1. This makes it possible for unauthenticated attackers to take over arbitrary accounts on the site.","\u003C=1.3.1","1.3.2","critical",9.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Missing Authorization","2023-12-27 00:00:00","2024-05-21 13:03:20",[62],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F91de6cf4-e5df-4130-bb96-92b89717a678?source=api-prod",147,{"id":65,"url_slug":66,"title":67,"description":68,"plugin_slug":4,"theme_slug":38,"affected_versions":69,"patched_in_version":70,"severity":71,"cvss_score":72,"cvss_vector":73,"vuln_type":43,"published_date":74,"updated_date":75,"references":76,"days_to_patch":78},"WF-ab520bcb-5739-4b99-ad93-73416ab39084-wp-front-end-profile","wp-frontend-profile-cross-site-request-forgery","WP Frontend Profile \u003C= 1.2.1 - Cross-Site Request Forgery","The WP Frontend Profile plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.1. This is due to missing or incorrect nonce validation in the wpfep_save_password() function found in the 'wp-frontend-profile\u002Ffunctions\u002Fsave-fields.php' file. This makes it possible for unauthenticated attackers to change the passwords of other users via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.","\u003C=1.2.1","1.2.2","high",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:U\u002FC:H\u002FI:H\u002FA:H","2020-05-19 00:00:00","2024-01-22 19:56:02",[77],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fab520bcb-5739-4b99-ad93-73416ab39084?source=api-prod",1344,{"id":80,"url_slug":81,"title":82,"description":83,"plugin_slug":4,"theme_slug":38,"affected_versions":84,"patched_in_version":85,"severity":40,"cvss_score":86,"cvss_vector":87,"vuln_type":88,"published_date":89,"updated_date":90,"references":91,"days_to_patch":93},"CVE-2019-15110","wp-front-end-profile-stored-cross-site-scripting","WP Front End Profile \u003C= 0.2.1 - Stored Cross-Site Scripting","The WP Front End Profile plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘save-fields.php’ file in versions up to, and including, 0.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.","\u003C=0.2.1","0.2.2",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2016-09-14 00:00:00","2025-06-10 13:05:07",[92],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F46825646-f611-4e9d-bee8-36656a1d54ff?source=api-prod",3192,{"id":95,"url_slug":96,"title":97,"description":98,"plugin_slug":4,"theme_slug":38,"affected_versions":84,"patched_in_version":85,"severity":55,"cvss_score":56,"cvss_vector":57,"vuln_type":99,"published_date":89,"updated_date":100,"references":101,"days_to_patch":93},"CVE-2019-15111","wp-front-end-profile-privilege-escalation","WP Front End Profile \u003C= 0.2.1 - Privilege Escalation","The WP Front End Profile plugin for WordPress is vulnerable to Privilege Escalation in versions up to, and including, 0.2.1. This is due to the registration form not properly validating the user meta that is supplied allowing attackers to set the wp_capabilities user meta. This makes it possible for unauthenticated attackers to gain access to an account with full administrative privileges.","Improper Privilege Management","2025-06-10 13:04:52",[102],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Ff8aefc77-b5fb-45b0-b3ba-67d850c72e77?source=api-prod",{"slug":104,"display_name":7,"profile_url":8,"plugin_count":47,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":105,"trust_score":106,"computed_at":107},"glowlogix",1575,67,"2026-04-04T07:05:44.484Z",[109,133,158,181,203],{"slug":110,"name":111,"version":112,"author":113,"author_profile":114,"description":115,"short_description":116,"active_installs":117,"downloaded":118,"rating":11,"num_ratings":119,"last_updated":120,"tested_up_to":121,"requires_at_least":122,"requires_php":123,"tags":124,"homepage":130,"download_link":131,"security_score":11,"vuln_count":47,"unpatched_count":29,"last_vuln_date":132,"fetched_at":31},"login-logout-menu","Login Logout Menu","1.5.2","Adnan","https:\u002F\u002Fprofiles.wordpress.org\u002Fhiddenpearls\u002F","\u003Cp>Login Logout Menu plugin will help you to add the dynamic login and logout menu to any menu of your WordPress website. You can also set the Login Page url, Login redirect url, and logout redirect url. The menu item will change based on the current user status (Login or Logout).\u003C\u002Fp>\n\u003Cp>You can use the following plugin shortcodes to display the \u003Cstrong>Login, Logout, Register, Password reset, Username and Profile links\u003C\u002Fstrong> on your website pages.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>login_logout_menu__login_link\u003C\u002Fli>\n\u003Cli>login_logout_menu__logout_link\u003C\u002Fli>\n\u003Cli>login_logout_menu__profile_link\u003C\u002Fli>\n\u003Cli>login_logout_menu__register_link\u003C\u002Fli>\n\u003Cli>login_logout_menu__username_link\u003C\u002Fli>\n\u003Cli>login_logout_menu__reset_pass_link\u003C\u002Fli>\n\u003Cli>login_logout_menu__login_logout_link\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Check out our documentation to implement the \u003Ca href=\"https:\u002F\u002Floginpress.pro\u002Fdoc\u002Flogin-logout-menu-shortcodes\u002F\" rel=\"nofollow ugc\">shortcodes\u003C\u002Fa>  and \u003Ca href=\"https:\u002F\u002Floginpress.pro\u002Fdoc\u002Flogin-logout-filters\u002F\" rel=\"nofollow ugc\">filters\u003C\u002Fa>  of Login Logout Menu Plugin.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>If you find our plugin useful, please leave a good rating\u002Freview and check out our other plugins below.\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fanalytify.io\u002Fref\u002F73\u002F?utm_source=login-logout-menu&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Analytify – Google Analytics Plugin\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Floginpress.pro\u002F?utm_source=login-logout-menu\" rel=\"nofollow ugc\">LoginPress\u003C\u002Fa> – For Custom login page and login page security\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsimplesocialbuttons.com?utm_source=login-logout-menu&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Simple Social Buttons\u003C\u002Fa> – Plugin for Social share buttons and social icons\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frelated-posts-thumbnails\u002F\" rel=\"ugc\">Related Posts Thumbnails Plugin\u003C\u002Fa> – For related posts\u002Fproducts\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpbrigade.com\u002Frecommend\u002Fmaintenance-mode?utm_source=login-logout-menu&utm_medium=readme&utm_campaign=pro-upgrade\" rel=\"nofollow ugc\">Under Construction, Coming Soon & Maintenance Mode\u003C\u002Fa> – Plugin for Under construction & Coming soon page\u003C\u002Fli>\n\u003C\u002Ful>\n","Login Logout Menu is a handy plugin which allows you to add login, logout, register and profile menu items in your selected menu.",20000,324545,14,"2026-01-05T14:50:00.000Z","6.9.4","4.0","",[125,126,127,128,129],"login-menu","logout-menu","menu","profile-menu","register-menu","https:\u002F\u002Floginpress.pro\u002F?utm_source=login-logout-menu&utm_medium=plugin-inside&utm_campaign=pro-upgrade&utm_content=plugin_uri","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flogin-logout-menu.1.5.2.zip","2022-12-27 00:00:00",{"slug":134,"name":135,"version":136,"author":137,"author_profile":138,"description":139,"short_description":140,"active_installs":141,"downloaded":142,"rating":143,"num_ratings":144,"last_updated":145,"tested_up_to":16,"requires_at_least":146,"requires_php":147,"tags":148,"homepage":154,"download_link":155,"security_score":156,"vuln_count":47,"unpatched_count":29,"last_vuln_date":157,"fetched_at":31},"json-api-user","JSON API User","4.1.0","Ali Qureshi","https:\u002F\u002Fprofiles.wordpress.org\u002Fparorrey\u002F","\u003Cp>JSON API User extends the JSON API Plugin with a new Controller to allow RESTful user registration, authentication, password reset, RESTful Facebook Login, RESTful User Meta and BuddyPress xProfile get and update methods. This plugin is for WordPress\u002FMobile app developers who want to use WordPress as mobile app data backend.\u003C\u002Fp>\n\u003Cp>JSON API Plugin, that is required, was closed on August 7, 2019 from WordPress repository. You can download \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FPI-Media\u002Fjson-api\" rel=\"nofollow ugc\">JSON API Plugin\u003C\u002Fa> from https:\u002F\u002Fgithub.com\u002FPI-Media\u002Fjson-api until it is republished and available on WordPress.\u003C\u002Fp>\n\u003Cp>Features include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Generate Auth Cookie for user authentication\u003C\u002Fli>\n\u003Cli>Validate Auth Cookie\u003C\u002Fli>\n\u003Cli>RESTful User Registration\u003C\u002Fli>\n\u003Cli>RESTful Facebook Login\u002FRegistration with valid access_token\u003C\u002Fli>\n\u003Cli>RESTful BuddyPress xProfile fields update\u003C\u002Fli>\n\u003Cli>Get User Meta and xProfile fields\u003C\u002Fli>\n\u003Cli>Update User Meta and xProfile fields\u003C\u002Fli>\n\u003Cli>Delete User Meta\u003C\u002Fli>\n\u003Cli>Password Reset\u003C\u002Fli>\n\u003Cli>Get Avatar\u003C\u002Fli>\n\u003Cli>Get User Info\u003C\u002Fli>\n\u003Cli>Post Comment\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The plugin was created for mobile apps integration with the web app using WordPress as backend for all the data. WordPress helped in putting together the web app quickly and then Mobile iOS and Android apps were integrated via this plugin. There were some app specific customized methods which are not included but rest have been made generic for community usage.\u003C\u002Fp>\n\u003Cp>My other JSON API Auth plugin has also been integrated with this plugin from version 1.1 because most endpoints required user authentication via cookie for data update.\u003C\u002Fp>\n\u003Cp>Pro Version – JSON API User Plus\u003C\u002Fp>\n\u003Cp>A pro version of this plugin, \u003Ca href=\"http:\u002F\u002Fwww.parorrey.com\u002Fsolutions\u002Fjson-api-user-plus\u002F\" rel=\"nofollow ugc\">JSON API User Plus\u003C\u002Fa>, is available here http:\u002F\u002Fwww.parorrey.com\u002Fsolutions\u002Fjson-api-user-plus\u002F that supports BuddyPress Messages component, BuddyPress avatar upload, BuddyPress Extended Profile, BuddyPress Groups, BuddyPress Friends, BuddyPress Activity, BuddyPress Notifications, BuddyPres Settings and other BuddyPress related functions to integrate BuddyPress features in your mobile app via REST api.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.parorrey.com\u002Fsolutions\u002Fjson-api-user-plus\u002F\" rel=\"nofollow ugc\">JSON API User Plus\u003C\u002Fa> includes API key which protects and restricts the endpoint calls. This key can be updated from Settings > User Plus options page. Your app must include this key with every call to get the data from REST API. Please see documentation for calling endpoints examples for ‘JSON API User Plus’.\u003C\u002Fp>\n\u003Cp>JSON API User Plus features include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Generate Auth Cookie for user authentication\u003C\u002Fli>\n\u003Cli>Validate Auth Cookie\u003C\u002Fli>\n\u003Cli>RESTful User Registration\u003C\u002Fli>\n\u003Cli>RESTful Facebook Login\u002FRegistration with valid access_token\u003C\u002Fli>\n\u003Cli>RESTful BuddyPress xProfile fields update\u003C\u002Fli>\n\u003Cli>Get User Meta and xProfile fields\u003C\u002Fli>\n\u003Cli>Update User Meta and xProfile fields\u003C\u002Fli>\n\u003Cli>Delete User Meta\u003C\u002Fli>\n\u003Cli>Password Reset\u003C\u002Fli>\n\u003Cli>Get\u002FUpload Avatar\u003C\u002Fli>\n\u003Cli>Get User Info\u003C\u002Fli>\n\u003Cli>Post Comment\u003C\u002Fli>\n\u003Cli>Add Post, Update Post, Delete Post\u003C\u002Fli>\n\u003Cli>Add\u002FEdit\u002FDelete Custom Post Type, Custom Fields\u003C\u002Fli>\n\u003Cli>Search User\u003C\u002Fli>\n\u003Cli>BuddyPress Activities\u003C\u002Fli>\n\u003Cli>BuddyPress Members\u003C\u002Fli>\n\u003Cli>BuddyPress Friends\u003C\u002Fli>\n\u003Cli>BuddyPress Notifications\u003C\u002Fli>\n\u003Cli>BuddyPress Settings\u003C\u002Fli>\n\u003Cli>& many more\u003C\u002Fli>\n\u003C\u002Ful>\n","Extends the JSON API Plugin to allow RESTful user registration, authentication & many other User Meta, BP functions. A Pro version is also available.",1000,120913,78,21,"2025-07-29T11:54:00.000Z","3.0.1","5.3",[149,150,151,152,153],"authentication","json-api","restful-facebook-login","restful-user-meta-and-buddypress-xprofile","restful-user-registration","http:\u002F\u002Fwww.parorrey.com\u002Fsolutions\u002Fjson-api-user\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjson-api-user.4.1.0.zip",97,"2024-07-10 00:00:00",{"slug":159,"name":160,"version":161,"author":162,"author_profile":163,"description":164,"short_description":165,"active_installs":166,"downloaded":167,"rating":168,"num_ratings":169,"last_updated":170,"tested_up_to":16,"requires_at_least":171,"requires_php":123,"tags":172,"homepage":177,"download_link":178,"security_score":179,"vuln_count":14,"unpatched_count":29,"last_vuln_date":180,"fetched_at":31},"frontend-dashboard","Frontend Dashboard","2.2.10","M A Vinoth Kumar","https:\u002F\u002Fprofiles.wordpress.org\u002Fvinoth06\u002F","\u003Ch4>Frontend Dashboard Designed and Developed with WordPress Coding Standards\u003C\u002Fh4>\n\u003Cp>Frontend Dashboard is bundled with the huge list of custom features which can easily customise the User profile, Posts, Login, Register, Custom roles on the custom front page.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Custom Login Page.\u003C\u002Fli>\n\u003Cli>Custom Register Page.\u003C\u002Fli>\n\u003Cli>Custom Forgot Password.\u003C\u002Fli>\n\u003Cli>Custom Redirect URL for before and after Login, Register, Logout.\u003C\u002Fli>\n\u003Cli>Restrict WP Admin area for role based users.\u003C\u002Fli>\n\u003Cli>Add\u002FDelete custom User Roles.\u003C\u002Fli>\n\u003Cli>Customise the Frontend Dashboard with your theme matching colors.\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable the Frontend Dashboard scripts and styles on both frontend and admin.\u003C\u002Fli>\n\u003Cli>Add Frontend Dashboard menus for User based roles.\u003C\u002Fli>\n\u003Cli>Add any number of custom user field.\u003C\u002Fli>\n\u003Cli>Add any number of post\u002Fcustom post field.\u003C\u002Fli>\n\u003Cli>Each custom fields can be configured based on user roles.\u003C\u002Fli>\n\u003Cli>Allow\u002FDisallow to upload files in Frontend Dashboard based on User Role.\u003C\u002Fli>\n\u003Cli>Show custom user fields on Register page.\u003C\u002Fli>\n\u003Cli>Add\u002FEdit\u002FDelete Post\u002FCustom post in Frontend Dashboard based on User Role.\u003C\u002Fli>\n\u003Cli>Show user role based custom profile page.\u003C\u002Fli>\n\u003Cli>Manage custom Post type and Taxonomies.\u003C\u002Fli>\n\u003Cli>Customize templates.\u003C\u002Fli>\n\u003Cli>Restrict illegal username on Registration.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Frontend Dashboard Plugins List\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fplugin\u002Ffrontend-dashboard-user-management\" rel=\"nofollow ugc\">Frontend Dashboard User Management (Pro) \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fplugin\u002Ffrontend-dashboard-social-connect\" rel=\"nofollow ugc\">Frontend Dashboard Social Connect (Pro) \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fplugin\u002Ffrontend-dashboard-pages\" rel=\"nofollow ugc\">Frontend Dashboard Pages\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fplugin\u002Ffrontend-dashboard-extra\" rel=\"nofollow ugc\">Frontend Dashboard Extra\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fplugin\u002Ffrontend-dashboard-captcha\" rel=\"nofollow ugc\">Frontend Dashboard Captcha\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fplugin\u002Ffrontend-dashboard-templates\" rel=\"nofollow ugc\">Frontend Dashboard Templates\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fplugin\u002Ffrontend-dashboard-social-chat\" rel=\"nofollow ugc\">Frontend Dashboard Social Chat\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fplugin\u002Ffrontend-dashboard-notification\" rel=\"nofollow ugc\">Frontend Dashboard Notification\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fplugin\u002Ffrontend-dashboard-custom-post-and-taxonomies\" rel=\"nofollow ugc\">Frontend Dashboard Custom Post and Taxonomies\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Videos\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>How to Setup Frontend Dashboard and its Add-on\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FlyoUkwndoRA?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>For more video : \u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fcategory\u002Fname\u002Ffrontend-dashboard\" rel=\"nofollow ugc\">Frontend Dashboard\u003C\u002Fa>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fpost\u002Fhow-to-setup-payment-and-membership-pro\" rel=\"nofollow ugc\">How to setup Membership and Payment (PRO)\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fpost\u002Fhow-to-show-custom-post-field-in-frontend-post\" rel=\"nofollow ugc\">How to show custom post field in Frontend Post\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fpost\u002Fhow-to-translate-frontend-dashboard\" rel=\"nofollow ugc\">How to Translate Frontend Dashboard\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fpost\u002Fhow-to-create-custom-login-for-frontend-dashboard-wordpress-plugin\" rel=\"nofollow ugc\">How to create custom login for Frontend Dashboard\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fpost\u002Fhow-to-create-dashboard-for-frontend-dashboard-wordpress-plugin\" rel=\"nofollow ugc\">How to create Dashboard for Frontend Dashboard\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fpost\u002Fhow-to-set-redirect-on-login-for-frontend-dashboard-wordpress-plugin\" rel=\"nofollow ugc\">How to set Redirect on Login for Frontend Dashboard\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fpost\u002Fhow-to-set-widget-for-frontend-dashboard-wordpress-plugin\" rel=\"nofollow ugc\">How to set Widget for Frontend Dashboard\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fpost\u002Fhow-to-create-custom-user-role-in-frontend-dashboard-wordpress-plugin\" rel=\"nofollow ugc\">How to Create Custom User Role in Frontend Dashboard\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fpost\u002Fhow-to-create-a-page-for-users-based-on-their-user-role\" rel=\"nofollow ugc\">How to create a page for Users, based on their User Role\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fpost\u002Fhow-new-user-can-select-user-role-on-registration\" rel=\"nofollow ugc\">How new user can select user role on registration\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fpost\u002Fhow-to-customise-the-layout-colours-in-frontend-dashboard\" rel=\"nofollow ugc\">How to customise the layout colours in Frontend Dashboard\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fpost\u002Fhow-to-manage-post-options-in-frontend-dashboard\" rel=\"nofollow ugc\">How to manage post options in Frontend Dashboard\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fpost\u002Fhow-to-create-custom-menu-in-frontend-dashboard\" rel=\"nofollow ugc\">How to create custom menu in Frontend Dashboard\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For more video : \u003Ca href=\"https:\u002F\u002Fbuffercode.com\u002Fcategory\u002Fname\u002Ffrontend-dashboard\" rel=\"nofollow ugc\">Frontend Dashboard\u003C\u002Fa>\u003C\u002Fp>\n","Frontend Dashboard is bundled with huge list of custom features which can easily customise the User profile, Posts, Login, Register, Custom roles.",600,144719,98,134,"2025-07-07T15:58:00.000Z","5.8.3",[173,174,175,176,159],"custom-login","custom-profile","custom-register","dashboard","https:\u002F\u002Fbuffercode.com\u002Fplugin\u002Ffrontend-dashboard","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffrontend-dashboard.2.2.10.zip",87,"2025-06-05 00:00:00",{"slug":182,"name":183,"version":184,"author":185,"author_profile":186,"description":187,"short_description":188,"active_installs":189,"downloaded":190,"rating":191,"num_ratings":192,"last_updated":193,"tested_up_to":194,"requires_at_least":195,"requires_php":123,"tags":196,"homepage":200,"download_link":201,"security_score":202,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"bp-xprofile-shortcode","BP XProfile Shortcode","1.0.1","TylerDigital","https:\u002F\u002Fprofiles.wordpress.org\u002Ftylerdigital\u002F","\u003Cp>Adds Shortcode for BuddyPress XProfile data\u003C\u002Fp>\n\u003Cp>For quick reference, here is a list of example shortcodes:\u003C\u002Fp>\n\u003Cp>Reference field by ID in case name changes:\u003Cbr \u002F>\n\u003Cstrong>[xprofile field=12]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Output city using default user detection (currently displayed BP profile, fallback to author of current page\u002Fpost, fallback to currently logged in user):\u003Cbr \u002F>\n\u003Cstrong>[xprofile field=”City”]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Output city for a specific user by ID or username:\u003Cbr \u002F>\n\u003Cstrong>[xprofile field=”City” user=20]\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cstrong>[xprofile field=”City” user=”someusername”]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Override the default user detection by specifying method:\u003Cbr \u002F>\nOutput city for the currently logged in user (blank if no user is logged in):\u003Cbr \u002F>\n\u003Cstrong>[xprofile field=”City” user=current]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Output city for the author of the current page\u002Fpost being viewed:\u003Cbr \u002F>\n\u003Cstrong>[xprofile field=”City” user=author]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Output city for the currently displayed BuddyPress profile:\u003Cbr \u002F>\n\u003Cstrong>[xprofile field=”City” user=displayed]\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Ftylerdigital.com\u002Fproducts\u002Fbp-xprofile-shortcode-plugin\u002F\" rel=\"nofollow ugc\">Learn more about BP XProfile Shortcode\u003C\u002Fa>\u003C\u002Fp>\n","Adds Shortcode for BuddyPress XProfile data",50,9039,60,4,"2015-04-25T00:24:00.000Z","3.9.40","3.5",[197,198,23,24,199],"buddypress","shortcode","xprofile","http:\u002F\u002Ftylerdigital.com\u002Flabs\u002Fbp-xprofile-shortcode","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbp-xprofile-shortcode.1.0.1.zip",85,{"slug":204,"name":205,"version":206,"author":207,"author_profile":208,"description":209,"short_description":210,"active_installs":211,"downloaded":212,"rating":29,"num_ratings":29,"last_updated":213,"tested_up_to":121,"requires_at_least":214,"requires_php":215,"tags":216,"homepage":219,"download_link":220,"security_score":11,"vuln_count":29,"unpatched_count":29,"last_vuln_date":38,"fetched_at":31},"user-mail-only-register","Multibyte CAPTCHA login and Mail only register","4.03","Katsushi Kawamori","https:\u002F\u002Fprofiles.wordpress.org\u002Fkatsushi-kawamori\u002F","\u003Ch4>Login form with Multibyte CAPTCHA\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Anti-Bot measures with original CAPTCHA.\u003C\u002Fli>\n\u003Cli>WordPress : \u003Ccode>wp-login.php\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>WordPress : \u003Ccode>wp-login.php?action=register\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>WordPress : \u003Ccode>wp-login.php?action=lostpassword\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Register\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Register only email address.\u003C\u002Fli>\n\u003Cli>Can check the terms of use agreement for user register.\u003C\u002Fli>\n\u003Cli>Anti-Bot measures with original CAPTCHA.\u003C\u002Fli>\n\u003Cli>WordPress : \u003Ccode>wp-login.php?action=register\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>shortcode : \u003Ccode>[umorregister]\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Filter for shortcode form\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>\u002F** ==================================================\n * Filter for message.\n *\n *\u002F\nadd_filter( 'umor_register_success_msg', function(){ return 'Message for register success.'; }, 10, 1 );\nadd_filter( 'umor_login_success_login_msg', function(){ return 'Message for login success.'; }, 10, 1 );\nadd_filter( 'umor_register_error', function(){ return 'Message for register error.'; }, 10, 1 );\nadd_filter( 'umor_register_nomail', function(){ return 'Message for unentered mail.'; }, 10, 1 );\nadd_filter( 'umor_register_noterm', function(){ return 'Message for unentered term of use.'; }, 10, 1 );\nadd_filter( 'umor_register_form_label', function(){ return 'Message for form label.'; }, 10, 1 );\nadd_filter( 'umor_register_term_of_use', function(){ return 'Message for term of use.'; }, 10, 1 );\nadd_filter( 'umor_not_register_message', function(){ return 'Message for not register.'; }, 10, 1 );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cpre>\u003Ccode>\u002F** ==================================================\n * Filter for login form message.\n *\n *\u002F\nadd_filter(\n    'umor_login_message',\n    function( $message, $text ) {\n        $message = '\u003Cp class=\"myclass\">';\n        $message .= $text;\n        $message .= '\u003C\u002Fp>';\n        return $message;\n    },\n    10,\n    2\n);\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cpre>\u003Ccode>\u002F** ==================================================\n * Filter for Term of use URL.\n *\n *\u002F\nadd_filter(\n    'umor_register_term_of_use_url',\n    function( $term_of_use_url ) {\n        if ( 'ja' === get_locale() ) {\n            $term_of_use_url = 'https:\u002F\u002Ftest.com\u002Fja\u002F';\n        }\n        return $term_of_use_url;\n    },\n    10,\n    1\n);\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cpre>\u003Ccode>\u002F** ==================================================\n * Filter for input text size.\n *\n *\u002F\nadd_filter( 'umor_register_input_size', function(){ return 17; }, 10, 1 );\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cpre>\u003Ccode>\u002F** ==================================================\n * Filter for class name.\n *\n *\u002F\nadd_filter( 'umor_register_notice_class_name', function(){ return 'mynotice'; }, 10, 1 );\nadd_filter( 'umor_register_form_class_name', function(){ return 'myform'; }, 10, 1 );\nadd_filter( 'umor_register_label_class_name', function(){ return 'mylabel'; }, 10, 1 );\nadd_filter( 'umor_register_input_class_name', function(){ return 'myinput'; }, 10, 1 );\nadd_filter( 'umor_register_check_form_class_name', function(){ return 'mycheckform'; }, 10, 1 );\nadd_filter( 'umor_register_check_class_name', function(){ return 'mycheck'; }, 10, 1 );\nadd_filter( 'umor_register_captcha_input_class_name', function(){ return 'mycaptcha_input'; }, 10, 1 );\nadd_filter( 'umor_register_submit_class_name', function(){ return 'mysubmit'; }, 10, 1 );\n\u003C\u002Fcode>\u003C\u002Fpre>\n","Multibyte CAPTCHA login form and register users with mail only.",30,5650,"2025-12-02T23:22:00.000Z","4.7","8.0",[217,218,20,22,24],"captcha","email","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fuser-mail-only-register\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-mail-only-register.4.03.zip",{"attackSurface":222,"codeSignals":544,"taintFlows":624,"riskAssessment":760,"analyzedAt":771},{"hooks":223,"ajaxHandlers":512,"restRoutes":528,"shortcodes":529,"cronEvents":542,"entryPointCount":543,"unprotectedCount":29},[224,230,235,239,245,249,251,254,258,263,267,269,271,276,279,283,288,291,296,301,303,308,312,316,320,324,327,332,337,340,342,344,347,350,353,355,360,364,367,370,372,374,377,381,385,389,393,397,401,405,410,413,417,420,424,428,431,434,437,441,445,449,453,457,461,465,468,471,474,477,481,485,489,493,496,500,504,507],{"type":225,"name":226,"callback":227,"priority":189,"file":228,"line":229},"action","current_screen","add_tabs","admin\\class-wpfep-admin-help.php",20,{"type":225,"name":231,"callback":232,"file":233,"line":234},"admin_notices","admin_notice","admin\\class-wpfep-admin-installer.php",25,{"type":225,"name":236,"callback":237,"file":233,"line":238},"admin_init","handle_request",26,{"type":240,"name":241,"callback":242,"priority":243,"file":233,"line":244},"filter","display_post_states","add_post_states",10,27,{"type":225,"name":246,"callback":246,"file":247,"line":248},"admin_menu","admin\\class-wpfep-admin-settings.php",51,{"type":225,"name":236,"callback":236,"file":247,"line":250},52,{"type":225,"name":236,"callback":252,"file":247,"line":253},"clear_settings",53,{"type":225,"name":255,"callback":255,"file":256,"line":257},"admin_enqueue_scripts","admin\\class-wpfep-settings-api.php",35,{"type":240,"name":259,"callback":260,"file":261,"line":262},"mce_external_plugins","enqueue_plugin_scripts","admin\\class-wpfep-shortcodes-button.php",22,{"type":240,"name":264,"callback":265,"file":261,"line":266},"mce_buttons","register_buttons_editor",23,{"type":225,"name":255,"callback":268,"file":261,"line":234},"enqueue_scripts",{"type":225,"name":255,"callback":270,"file":261,"line":238},"localize_shortcodes_script",{"type":240,"name":272,"callback":273,"priority":243,"file":274,"line":275},"wpfep_fields_profile","wpfep_add_profile_tab_meta_fields","functions\\default-fields.php",66,{"type":240,"name":272,"callback":277,"priority":229,"file":274,"line":278},"wpfep_disable_email_for_admins",89,{"type":240,"name":280,"callback":281,"priority":243,"file":274,"line":282},"wpfep_fields_password","wpfep_add_password_tab_fields",112,{"type":225,"name":284,"callback":285,"priority":28,"file":286,"line":287},"wpfep_before_tabs","wpfep_save_fields","functions\\save-fields.php",234,{"type":225,"name":284,"callback":289,"priority":243,"file":286,"line":290},"wpfep_save_password",373,{"type":225,"name":292,"callback":293,"file":294,"line":295},"wp_enqueue_scripts","wpfep_register_scripts","functions\\scripts.php",34,{"type":240,"name":297,"callback":298,"priority":243,"file":299,"line":300},"wpfep_tabs","wpfep_add_profile_tab","functions\\tabs.php",36,{"type":240,"name":297,"callback":302,"priority":229,"file":299,"line":191},"wpfep_add_password_tab",{"type":225,"name":304,"callback":305,"priority":243,"file":306,"line":307},"wpfep_after_tab_fields","wpfep_tab_content_save","functions\\wpfep-functions.php",403,{"type":240,"name":309,"callback":310,"priority":243,"file":306,"line":311},"user_row_actions","user_table_actions",926,{"type":240,"name":313,"callback":314,"file":306,"line":315},"manage_users_columns","add_column",945,{"type":240,"name":317,"callback":318,"priority":243,"file":306,"line":319},"manage_users_custom_column","status_column",979,{"type":225,"name":321,"callback":322,"file":306,"line":323},"load-users.php","update_action",1033,{"type":225,"name":255,"callback":325,"file":306,"line":326},"wpfep_enqueue_custom_scripts",1044,{"type":225,"name":328,"callback":329,"file":330,"line":331},"enqueue_block_editor_assets","wpfep_gutenberg_block","functions\\wpfep-gutenberg-block.php",17,{"type":225,"name":333,"callback":334,"file":335,"line":336},"plugins_loaded","instantiate","inc\\class-wp-frontend-profile.php",49,{"type":225,"name":338,"callback":339,"file":335,"line":189},"init","load_textdomain",{"type":240,"name":341,"callback":341,"file":335,"line":248},"show_admin_bar",{"type":225,"name":231,"callback":343,"file":335,"line":253},"wpfep_error_notices",{"type":225,"name":333,"callback":345,"file":346,"line":248},"load_plugin_textdomain","inc\\class-wpfep-captcha-hcaptcha.php",{"type":225,"name":292,"callback":348,"file":346,"line":349},"enqueue_header_script",54,{"type":225,"name":333,"callback":345,"file":351,"line":352},"inc\\class-wpfep-captcha-recaptcha.php",59,{"type":225,"name":292,"callback":348,"file":351,"line":354},63,{"type":225,"name":356,"callback":357,"file":358,"line":359},"widgets_init","wpfep_login_Widget","inc\\class-wpfep-login-widget.php",91,{"type":225,"name":338,"callback":361,"file":362,"line":363},"process_login","inc\\class-wpfep-login.php",46,{"type":225,"name":338,"callback":365,"file":362,"line":366},"process_logout",47,{"type":225,"name":338,"callback":368,"file":362,"line":369},"process_reset_password",48,{"type":225,"name":338,"callback":371,"file":362,"line":189},"wp_login_page_redirect",{"type":225,"name":338,"callback":373,"file":362,"line":248},"activation_user_registration",{"type":225,"name":375,"callback":376,"file":362,"line":250},"login_form","add_custom_fields",{"type":240,"name":378,"callback":379,"priority":243,"file":362,"line":380},"login_url","filter_login_url",55,{"type":240,"name":382,"callback":383,"priority":243,"file":362,"line":384},"logout_url","filter_logout_url",56,{"type":240,"name":386,"callback":387,"priority":243,"file":362,"line":388},"lostpassword_url","filter_lostpassword_url",57,{"type":240,"name":390,"callback":391,"priority":211,"file":362,"line":392},"authenticate","successfully_authenticate",58,{"type":240,"name":394,"callback":395,"file":362,"line":396},"wp_login_errors","user_activation_message",744,{"type":225,"name":398,"callback":399,"file":362,"line":400},"retrieve_password_key","anonymous",758,{"type":240,"name":402,"callback":403,"file":362,"line":404},"redirect_canonical","__return_false",795,{"type":225,"name":406,"callback":407,"file":408,"line":409},"wpfep_profile_pagination","get_profile_pagination","inc\\class-wpfep-profile.php",44,{"type":225,"name":338,"callback":411,"file":412,"line":253},"process_registration","inc\\class-wpfep-registration.php",{"type":225,"name":338,"callback":414,"file":415,"line":416},"create_roles_editor_cpt","inc\\class-wpfep-roles-editor.php",12,{"type":225,"name":226,"callback":418,"file":415,"line":419},"create_post_for_role",15,{"type":240,"name":421,"callback":422,"file":415,"line":423},"manage_wpfep-roles-editor_posts_columns","add_extra_column_for_roles_editor_cpt",18,{"type":225,"name":425,"callback":426,"priority":243,"file":415,"line":427},"manage_wpfep-roles-editor_posts_custom_column","custom_column_content_for_roles_editor_cpt",19,{"type":225,"name":429,"callback":430,"priority":47,"file":415,"line":262},"add_meta_boxes","register_meta_boxes",{"type":225,"name":432,"callback":433,"file":415,"line":234},"post_submitbox_misc_actions","edit_publish_meta_box",{"type":225,"name":255,"callback":435,"file":415,"line":436},"scripts_admin",28,{"type":225,"name":438,"callback":439,"priority":243,"file":415,"line":440},"save_post","add_post_meta",31,{"type":240,"name":442,"callback":443,"file":415,"line":444},"wp_insert_post_data","modify_post_title",33,{"type":240,"name":446,"callback":447,"priority":243,"file":415,"line":448},"months_dropdown_results","remove_filter_by_month_dropdown",39,{"type":240,"name":450,"callback":451,"priority":243,"file":415,"line":452},"post_row_actions","modify_list_row_actions",40,{"type":240,"name":454,"callback":455,"file":415,"line":456},"bulk_actions-edit-wpfep-roles-editor","__return_empty_array",42,{"type":240,"name":458,"callback":459,"file":415,"line":460},"views_edit-wpfep-roles-editor","edit_cpt_quick_links",43,{"type":240,"name":462,"callback":463,"file":415,"line":464},"enter_title_here","change_title_text",45,{"type":240,"name":466,"callback":467,"file":415,"line":363},"post_updated_messages","change_post_updated_messages",{"type":225,"name":469,"callback":470,"priority":243,"file":415,"line":366},"before_delete_post","delete_role_permanently",{"type":225,"name":472,"callback":473,"file":415,"line":189},"load-user-new.php","actions_on_user_new",{"type":225,"name":475,"callback":476,"file":415,"line":248},"load-user-edit.php","actions_on_user_edit",{"type":225,"name":478,"callback":479,"file":415,"line":480},"user_new_form","roles_field_user_new",1228,{"type":225,"name":482,"callback":483,"file":415,"line":484},"user_register","roles_update_user_new",1230,{"type":225,"name":486,"callback":487,"file":415,"line":488},"personal_options","roles_field_user_edit",1237,{"type":225,"name":490,"callback":491,"priority":243,"file":415,"line":492},"profile_update","roles_update_user_edit",1239,{"type":225,"name":255,"callback":494,"file":415,"line":495},"enqueue_jquery",1356,{"type":225,"name":497,"callback":498,"priority":234,"file":415,"line":499},"admin_footer","print_scripts_user_new",1360,{"type":225,"name":501,"callback":502,"file":415,"line":503},"admin_head","print_styles_user_edit",1365,{"type":225,"name":497,"callback":505,"priority":234,"file":415,"line":506},"print_scripts_user_edit",1366,{"type":240,"name":508,"callback":509,"priority":243,"file":510,"line":511},"plugin_row_meta","plugin_meta_links","wp-frontend-profile.php",96,[513,518,521,523,525],{"action":514,"nopriv":515,"callback":514,"hasNonce":516,"hasCapCheck":515,"file":306,"line":517},"wpfep_hide_review_ask",false,true,585,{"action":519,"nopriv":515,"callback":519,"hasNonce":516,"hasCapCheck":515,"file":306,"line":520},"wpfep_send_feedback",608,{"action":522,"nopriv":515,"callback":522,"hasNonce":516,"hasCapCheck":516,"file":415,"line":257},"delete_capability_permanently",{"action":524,"nopriv":515,"callback":524,"hasNonce":516,"hasCapCheck":516,"file":415,"line":300},"update_role_capabilities",{"action":526,"nopriv":515,"callback":526,"hasNonce":516,"hasCapCheck":516,"file":415,"line":527},"get_role_capabilities",37,[],[530,534,536,539],{"tag":531,"callback":532,"file":533,"line":427},"wpfep","wpfep_register_shortcode","functions\\shortcode.php",{"tag":535,"callback":375,"file":362,"line":409},"wpfep-login",{"tag":537,"callback":538,"file":408,"line":460},"wpfep-profile","user_profile",{"tag":540,"callback":541,"file":412,"line":250},"wpfep-register","registration_form",[],9,{"dangerousFunctions":545,"sqlUsage":546,"outputEscaping":548,"fileOperations":615,"externalRequests":192,"nonceChecks":262,"capabilityChecks":427,"bundledLibraries":616},[],{"prepared":14,"raw":29,"locations":547},[],{"escaped":549,"rawEcho":444,"locations":550},501,[551,555,557,559,561,563,564,566,568,570,572,574,576,578,580,582,583,585,587,589,591,593,595,597,599,600,602,604,606,608,609,611,613],{"file":552,"line":553,"context":554},"admin\\class-wpfep-system-status.php",99,"raw output",{"file":552,"line":556,"context":554},149,{"file":552,"line":558,"context":554},191,{"file":552,"line":560,"context":554},209,{"file":552,"line":562,"context":554},222,{"file":552,"line":287,"context":554},{"file":552,"line":565,"context":554},246,{"file":552,"line":567,"context":554},258,{"file":552,"line":569,"context":554},270,{"file":552,"line":571,"context":554},282,{"file":552,"line":573,"context":554},294,{"file":552,"line":575,"context":554},306,{"file":552,"line":577,"context":554},388,{"file":552,"line":579,"context":554},432,{"file":552,"line":581,"context":554},451,{"file":552,"line":581,"context":554},{"file":552,"line":584,"context":554},537,{"file":552,"line":586,"context":554},580,{"file":306,"line":588,"context":554},319,{"file":306,"line":590,"context":554},321,{"file":306,"line":592,"context":554},356,{"file":306,"line":594,"context":554},358,{"file":306,"line":596,"context":554},396,{"file":306,"line":598,"context":554},397,{"file":306,"line":598,"context":554},{"file":306,"line":601,"context":554},398,{"file":358,"line":603,"context":554},77,{"file":358,"line":605,"context":554},79,{"file":358,"line":607,"context":554},81,{"file":358,"line":27,"context":554},{"file":415,"line":610,"context":554},497,{"file":612,"line":278,"context":554},"views\\profile.php",{"file":612,"line":614,"context":554},105,2,[617,620],{"name":618,"version":38,"knownCves":619},"Select2",[],{"name":621,"version":622,"knownCves":623},"Freemius","1.0",[],[625,643,651,662,670,682,694,707,717,735],{"entryPoint":626,"graph":627,"unsanitizedCount":29,"severity":642},"wpfep_hide_review_ask (functions\\wpfep-functions.php:568)",{"nodes":628,"edges":640},[629,634],{"id":630,"type":631,"label":632,"file":306,"line":633},"n0","source","$_POST",572,{"id":635,"type":636,"label":637,"file":306,"line":638,"wp_function":639},"n1","sink","update_option() [Settings Manipulation]",575,"update_option",[641],{"from":630,"to":635,"sanitized":516},"low",{"entryPoint":644,"graph":645,"unsanitizedCount":29,"severity":642},"\u003Cwpfep-functions> (functions\\wpfep-functions.php:0)",{"nodes":646,"edges":649},[647,648],{"id":630,"type":631,"label":632,"file":306,"line":633},{"id":635,"type":636,"label":637,"file":306,"line":638,"wp_function":639},[650],{"from":630,"to":635,"sanitized":516},{"entryPoint":652,"graph":653,"unsanitizedCount":29,"severity":642},"captcha_verification (inc\\class-wpfep-captcha-recaptcha.php:95)",{"nodes":654,"edges":660},[655,656],{"id":630,"type":631,"label":632,"file":351,"line":156},{"id":635,"type":636,"label":657,"file":351,"line":658,"wp_function":659},"wp_remote_get() [SSRF]",107,"wp_remote_get",[661],{"from":630,"to":635,"sanitized":516},{"entryPoint":663,"graph":664,"unsanitizedCount":29,"severity":642},"\u003Cclass-wpfep-captcha-recaptcha> (inc\\class-wpfep-captcha-recaptcha.php:0)",{"nodes":665,"edges":668},[666,667],{"id":630,"type":631,"label":632,"file":351,"line":156},{"id":635,"type":636,"label":657,"file":351,"line":658,"wp_function":659},[669],{"from":630,"to":635,"sanitized":516},{"entryPoint":671,"graph":672,"unsanitizedCount":29,"severity":642},"process_login (inc\\class-wpfep-login.php:259)",{"nodes":673,"edges":680},[674,676],{"id":630,"type":631,"label":632,"file":362,"line":675},330,{"id":635,"type":636,"label":677,"file":362,"line":678,"wp_function":679},"wp_redirect() [Open Redirect]",380,"wp_redirect",[681],{"from":630,"to":635,"sanitized":516},{"entryPoint":683,"graph":684,"unsanitizedCount":29,"severity":642},"retrieve_password (inc\\class-wpfep-login.php:536)",{"nodes":685,"edges":692},[686,688],{"id":630,"type":631,"label":632,"file":362,"line":687},553,{"id":635,"type":636,"label":689,"file":362,"line":690,"wp_function":691},"get_var() [SQLi]",590,"get_var",[693],{"from":630,"to":635,"sanitized":516},{"entryPoint":695,"graph":696,"unsanitizedCount":29,"severity":642},"\u003Cclass-wpfep-roles-editor> (inc\\class-wpfep-roles-editor.php:0)",{"nodes":697,"edges":705},[698,701],{"id":630,"type":631,"label":699,"file":415,"line":700},"$_POST (x3)",214,{"id":635,"type":636,"label":702,"file":415,"line":703,"wp_function":704},"echo() [XSS]",392,"echo",[706],{"from":630,"to":635,"sanitized":516},{"entryPoint":708,"graph":709,"unsanitizedCount":29,"severity":642},"\u003Creset-pass> (views\\reset-pass.php:0)",{"nodes":710,"edges":715},[711,714],{"id":630,"type":631,"label":712,"file":713,"line":444},"$_REQUEST['key']","views\\reset-pass.php",{"id":635,"type":636,"label":702,"file":713,"line":444,"wp_function":704},[716],{"from":630,"to":635,"sanitized":516},{"entryPoint":718,"graph":719,"unsanitizedCount":47,"severity":71},"process_reset_password (inc\\class-wpfep-login.php:435)",{"nodes":720,"edges":732},[721,724,727],{"id":630,"type":631,"label":722,"file":362,"line":723},"$_POST['key']",457,{"id":635,"type":725,"label":726,"file":362,"line":723},"transform","→ check_password_reset_key()",{"id":728,"type":636,"label":729,"file":362,"line":730,"wp_function":731},"n2","get_row() [SQLi]",651,"get_row",[733,734],{"from":630,"to":635,"sanitized":515},{"from":635,"to":728,"sanitized":515},{"entryPoint":736,"graph":737,"unsanitizedCount":47,"severity":71},"\u003Cclass-wpfep-login> (inc\\class-wpfep-login.php:0)",{"nodes":738,"edges":754},[739,740,741,742,744,746,748,750,752],{"id":630,"type":631,"label":632,"file":362,"line":675},{"id":635,"type":636,"label":677,"file":362,"line":678,"wp_function":679},{"id":728,"type":631,"label":632,"file":362,"line":687},{"id":743,"type":636,"label":689,"file":362,"line":690,"wp_function":691},"n3",{"id":745,"type":631,"label":632,"file":362,"line":687},"n4",{"id":747,"type":636,"label":729,"file":362,"line":730,"wp_function":731},"n5",{"id":749,"type":631,"label":722,"file":362,"line":723},"n6",{"id":751,"type":725,"label":726,"file":362,"line":723},"n7",{"id":753,"type":636,"label":729,"file":362,"line":730,"wp_function":731},"n8",[755,756,757,758,759],{"from":630,"to":635,"sanitized":516},{"from":728,"to":743,"sanitized":516},{"from":745,"to":747,"sanitized":516},{"from":749,"to":751,"sanitized":515},{"from":751,"to":753,"sanitized":515},{"summary":761,"deductions":762},"The wp-front-end-profile plugin exhibits a mixed security posture.  While it demonstrates strong adherence to secure coding practices with 100% of SQL queries using prepared statements and a high percentage of output being properly escaped, there are significant areas of concern.  The taint analysis reveals two high-severity flows with unsanitized paths, indicating potential vulnerabilities where user-supplied data could be manipulated to execute unintended actions or access sensitive information.  Furthermore, the plugin's history of 5 known CVEs, including 2 critical and 1 high severity, spanning various common vulnerability types like CSRF, missing authorization, XSS, and privilege management, suggests a recurring pattern of security weaknesses.  Although no currently unpatched vulnerabilities are listed and recent security measures like nonce and capability checks are present, the historical trend and high-severity taint flows warrant caution.  The plugin's strengths lie in its robust handling of SQL and output escaping, but the presence of unsanitized paths and a history of critical vulnerabilities present a notable risk.",[763,765,767,769],{"reason":764,"points":419},"High severity unsanitized taint flows",{"reason":766,"points":229},"History of 2 critical CVEs",{"reason":768,"points":243},"History of 1 high CVE",{"reason":770,"points":192},"Bundled outdated Freemius v1.0","2026-03-16T20:36:08.796Z",{"wat":773,"direct":785},{"assetPaths":774,"generatorPatterns":778,"scriptPaths":779,"versionParams":781},[775,776,777],"\u002Fwp-content\u002Fplugins\u002Fwp-front-end-profile\u002Fassets\u002Fcss\u002Fwpfep-admin-style.css","\u002Fwp-content\u002Fplugins\u002Fwp-front-end-profile\u002Fassets\u002Fjs\u002Fadmin.js","\u002Fwp-content\u002Fplugins\u002Fwp-front-end-profile\u002Fassets\u002Fjs\u002Fsettings.js",[],[780],"\u002Fwp-content\u002Fplugins\u002Fwp-front-end-profile\u002Ffreemius\u002Fstart.php",[782,783,784],"wp-front-end-profile\u002Fassets\u002Fcss\u002Fwpfep-admin-style.css?ver=","wp-front-end-profile\u002Fassets\u002Fjs\u002Fadmin.js?ver=","wp-front-end-profile\u002Fassets\u002Fjs\u002Fsettings.js?ver=",{"cssClasses":786,"htmlComments":788,"htmlAttributes":789,"restEndpoints":791,"jsGlobals":792,"shortcodeOutput":795},[787],"wpfep-admin-style",[],[790],"data-wpfep-id",[],[793,794],"wfep_fs","wpfep_admin_params",[]]