[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$ffWdNBzH5ngynnQcHPyjxFbOT2rAofcpn_KrjXR85VOY":3,"$fTzyIh87Ag3X38qZrR5M9kMAnSBCrwjaCmXRPQrRi3Gw":503,"$fFI9iCx8Bc997spTNfanrQ1AfgEahcmhpRLYpWIJcjZ8":508},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"discovery_status":30,"vulnerabilities":31,"developer":32,"crawl_stats":28,"alternatives":38,"analysis":145,"fingerprints":476},"wp-login-flow","WP Login Flow","3.1.1","tripflex","https:\u002F\u002Fprofiles.wordpress.org\u002Ftripflex\u002F","\u003Cp>WP Login Flow is a complete solution to make \u003Ccode>wp-login.php\u003C\u002Fcode> not suck!  Below are all the features organized by what they relate to.  This plugin is completely open source, and has \u003Cstrong>NO ADS OR UPSELLS\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Registration\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Enhances Registration flow and wording for “Activation” (more below)\u003C\u002Fli>\n\u003Cli>Custom notices and wording to match “Activation” instead of “Reset Password”\u003C\u002Fli>\n\u003Cli>Allow users to register and set a password (includes password strength)\u003C\u002Fli>\n\u003Cli>Auto Login users after registration\u003C\u002Fli>\n\u003Cli>Hide Username field and use Email as Username\u003C\u002Fli>\n\u003Cli>Loading spinner after clicking Register\u003C\u002Fli>\n\u003Cli>Add unlimited custom text fields to Register form (saved to user meta)\u003C\u002Fli>\n\u003Cli>Notice shown to user when attempt to login with unactivated account\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Permalinks\u002FURLs\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Customize Login, Register, Activation, Lost Password, Reset Password, and Logged Out URLs\u003C\u002Fli>\n\u003Cli>Custom “Activation” URL permalink for Registration (instead of default Reset Password)\u003C\u002Fli>\n\u003Cli>Setting to auto disable using custom URLs if \u003Ccode>.htaccess\u003C\u002Fcode> or \u003Ccode>web.config\u003C\u002Fcode> does not exist\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Redirects\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Custom Login\u002FLogout default login redirect URL\u003C\u002Fli>\n\u003Cli>Custom Login\u002FLogout redirects based on User Role\u003C\u002Fli>\n\u003Cli>Custom Login\u002FLogout redirects based on specific User\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Page Customizations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Background, Font, Link, and Link Hover Colors (with Color Picker)\u003C\u002Fli>\n\u003Cli>Custom CSS with Code Editor\u003C\u002Fli>\n\u003Cli>Customize Logo URL, and Title\u003C\u002Fli>\n\u003Cli>Upload custom Logo\u003C\u002Fli>\n\u003Cli>Customize Login Box Font and Background Colors\u003C\u002Fli>\n\u003Cli>Custom Border Radius for Login Box\u003C\u002Fli>\n\u003Cli>Enable Responsive Width for Login Box\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Email\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Customize Outgoing WordPress From Name and Email\u003C\u002Fli>\n\u003Cli>Customize New Account Activation Required Email (WYSIWYG Editor)\u003C\u002Fli>\n\u003Cli>Customize New Account Email (WYSIWYG Editor – when user sets own password)\u003C\u002Fli>\n\u003Cli>Customize Lost Password Email Template (WYSIWYG Editor)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Notices\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Customize Account Requires Activation Notice\u003C\u002Fli>\n\u003Cli>Customize Pending Activation Notice\u003C\u002Fli>\n\u003Cli>Customize Successful Activation Notice\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Other Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Color scheme matches WordPress admin area color scheme\u003C\u002Fli>\n\u003Cli>Fully documented and clean code base\u003C\u002Fli>\n\u003Cli>Login Page Spinning Loader\u003C\u002Fli>\n\u003Cli>Hide frontend Admin Bar from non-admin Users\u003C\u002Fli>\n\u003Cli>Activation status icons on user list table\u003C\u002Fli>\n\u003Cli>Works with any plugins\u002Fthemes that use native WP user registration\u002Flogin\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Default Registration Enhancements\u003C\u002Fh4>\n\u003Cp>By default, when a user registers on a WordPress site, they are sent a password reset email which is used for account “activation”, but that also sends the user a URL that is for resetting a password, and even shows “Reset Password” on the page.  This plugin fixes these problems by allow you to customize the activation email sent, adding custom permalink for activations, updating wording to match “activation” instead of reset password, and more … all for a better UX (User Experience).  See screenshots or video for examples of this.\u003C\u002Fp>\n\u003Cp>WP Login Flow was intended to be completely bloat free, and integrate with the core of WordPress as much as possible.  Any themes, plugins, or other code that uses the native WordPress functions and hooks for registration, lost password, etc, should be supported.\u003C\u002Fp>\n\u003Ch4>Features Coming Soon\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Login Limiter based on Limit Login Attempts\u003C\u002Fli>\n\u003Cli>Bulk remove unactivated accounts\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftripflex\u002Fwp-login-flow\u002Fissues\u002Fnew\" rel=\"nofollow ugc\">Your IDEA!\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WP Login Flow History\u003C\u002Fh4>\n\u003Cp>I originally created WP Login Flow back in 2014 to solve what I considered to be a huge issue .. and that was passwords being emailed to users on registration (email is never secure!).  My original implementation of this plugin added the exact feature that is now default in WordPress, by using the Reset Password handling to add “Activation” for new user registration.  After this was added to core I no longer had a need for this plugin, but in 2019 I decided to take the time to fully revamp the plugin, integrate with the latest versions of WordPress, and add additional features.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftripflex\u002Fwp-login-flow\" rel=\"nofollow ugc\">Read more about WP Login Flow\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Documentation\u003C\u002Fh4>\n\u003Cp>Documentation will be maintained on the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftripflex\u002Fwp-login-flow\u002Fwiki\" rel=\"nofollow ugc\">GitHub Wiki here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Contributing and reporting bugs\u003C\u002Fh4>\n\u003Cp>You can contribute code and localizations to this plugin via GitHub: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftripflex\u002Fwp-login-flow\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Ftripflex\u002Fwp-login-flow\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Support\u003C\u002Fh4>\n\u003Cp>If you spot a bug, you can of course log it on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftripflex\u002Fwp-login-flow\" rel=\"nofollow ugc\">Github\u003C\u002Fa>\u003C\u002Fp>\n","wp-login permalinks, auto login, register w\u002F pass, login\u002Flogout redirects, email as username, bg\u002Flogo\u002Fcolor customizations, hide admin bar, and more!",70,4769,88,7,"2020-10-07T17:23:00.000Z","5.5.18","4.4.0","",[20,21,22,4,23],"activation","login-flow","wp-login","wp-login-php","http:\u002F\u002Fplugins.smyl.es","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-login-flow.3.1.1.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":26,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},9,890,30,84,"2026-05-20T06:55:28.776Z",[39,63,83,105,124],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":18,"download_link":59,"security_score":60,"vuln_count":61,"unpatched_count":27,"last_vuln_date":62,"fetched_at":29},"wps-hide-login","WPS Hide Login","1.9.18","Remy Perona","https:\u002F\u002Fprofiles.wordpress.org\u002Ftabrisrp\u002F","\u003Ch4>English\u003C\u002Fh4>\n\u003Cp>\u003Cem>WPS Hide Login\u003C\u002Fem> is a very light plugin that lets you easily and safely change the url of the login form page to anything you want. It doesn’t literally rename or change files in core, nor does it add rewrite rules. It simply intercepts page requests and works on any WordPress website. The wp-admin directory and wp-login.php page become inaccessible, so you should bookmark or remember the url. Deactivating this plugin brings your site back exactly to the state it was before.\u003C\u002Fp>\n\u003Cp>This plugin is kindly proposed by \u003Ca href=\"https:\u002F\u002Fwww.wpserveur.net\u002F?refwps=14&campaign=wpshidelogin\" rel=\"nofollow ugc\">WPServeur\u003C\u002Fa> the specialized WordPress web host.\u003C\u002Fp>\n\u003Cp>Discover also our other free extensions:\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwps-limit-login\u002F\" rel=\"ugc\">WPS Limit Login\u003C\u002Fa> to block brute force attacks.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwps-bidouille\u002F\" rel=\"ugc\">WPS Bidouille\u003C\u002Fa> to optimize your WordPress and get more info.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwps-cleaner\u002F\" rel=\"ugc\">WPS Cleaner\u003C\u002Fa> to clean your WordPress site.\u003C\u002Fp>\n\u003Cp>This plugin is only maintained, which means we do not guarantee free support. Consider reporting a problem and be patient.\u003C\u002Fp>\n\u003Ch4>Français\u003C\u002Fh4>\n\u003Cp>\u003Cem>WPS Hide Login\u003C\u002Fem> est un plugin très léger qui vous permet de changer facilement et en toute sécurité l’url de la page de formulaire de connexion. Il ne renomme pas littéralement ou ne modifie pas les fichiers dans le noyau, ni n’ajoute des règles de réécriture. Il intercepte simplement les demandes de pages et fonctionne sur n’importe quel site WordPress. Le répertoire wp-admin et la page wp-login.php deviennent inaccessibles, vous devez donc ajouter un signet ou vous souvenir de l’URL. Désactiver ce plugin ramène votre site exactement à l’état dans lequel il était auparavant.\u003C\u002Fp>\n\u003Cp>Ce plugin vous est gentiment proposé par \u003Ca href=\"https:\u002F\u002Fwww.wpserveur.net\u002F?refwps=14&campaign=wpshidelogin\" rel=\"nofollow ugc\">WPServeur\u003C\u002Fa> l’hébergeur spécialisé WordPress.\u003C\u002Fp>\n\u003Cp>Plus d’infos sur son utilisation : \u003Ca href=\"https:\u002F\u002Fwpformation.com\u002Fwps-hide-login-url-connexion-wordpress\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwpformation.com\u002Fwps-hide-login-url-connexion-wordpress\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Découvrez également nos autres extensions gratuites :\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fwps-limit-login\u002F\" rel=\"nofollow ugc\">WPS Limit Login\u003C\u002Fa> pour bloquer les attaques par force brute.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fwps-bidouille\u002F\" rel=\"nofollow ugc\">WPS Bidouille\u003C\u002Fa> pour optimiser votre WordPress et faire le plein d’infos.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fwps-cleaner\u002F\" rel=\"nofollow ugc\">WPS Cleaner\u003C\u002Fa> pour nettoyer votre site WordPress.\u003C\u002Fp>\n\u003Cp>Ce plugin est seulement maintenu, ce qui signifie que nous ne garantissons pas un support gratuit. Envisagez de signaler un problème et soyez patient.\u003C\u002Fp>\n\u003Ch4>Compatibility\u003C\u002Fh4>\n\u003Ch4>English\u003C\u002Fh4>\n\u003Cp>Requires WordPress 4.1 or higher. All login related things such as the registration form, lost password form, login widget and expired sessions just keep working.\u003C\u002Fp>\n\u003Cp>It’s also compatible with any plugin that hooks in the login form, including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>BuddyPress,\u003C\u002Fli>\n\u003Cli>bbPress,\u003C\u002Fli>\n\u003Cli>Jetpack,\u003C\u002Fli>\n\u003Cli>WPS Limit Login,\u003C\u002Fli>\n\u003Cli>and User Switching.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Obviously it doesn’t work with plugins or themes that \u003Cem>hardcoded\u003C\u002Fem> wp-login.php.\u003C\u002Fp>\n\u003Cp>Works with multisite, with subdomains and subfolders. Activating it for a network allows you to set a networkwide default. Individual sites can still rename their login page to something else.\u003C\u002Fp>\n\u003Cp>If you’re using a \u003Cstrong>page caching plugin\u003C\u002Fstrong> other than WP Rocket, you should add the slug of the new login url to the list of pages not to cache. WP Rocket is already fully compatible with the plugin.\u003C\u002Fp>\n\u003Ch4>Français\u003C\u002Fh4>\n\u003Cp>Nécessite WordPress 4.1 ou supérieur. Toutes les choses liées à la connexion telles que le formulaire d’inscription, le formulaire de mot de passe perdu, le widget de connexion et les sessions expirées continuent de fonctionner.\u003C\u002Fp>\n\u003Cp>Il est également compatible avec tout plugin qui se connecte au formulaire de connexion, notamment:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>BuddyPress,\u003C\u002Fli>\n\u003Cli>bbPress,\u003C\u002Fli>\n\u003Cli>Jetpack,\u003C\u002Fli>\n\u003Cli>WPS Limit Login,\u003C\u002Fli>\n\u003Cli>and User Switching.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Évidemment, cela ne fonctionne pas avec les plugins ou les thèmes \u003Cem>hardcoded\u003C\u002Fem> wp-login.php.\u003C\u002Fp>\n\u003Cp>Fonctionne en multisite, avec sous-domaines ou sous dossiers. L’activer pour un réseau vous permet de définir une valeur par défaut pour l’ensemble du réseau. Les sites individuels peuvent toujours renommer leur page de connexion pour autre chose.\u003C\u002Fp>\n\u003Cp>Si vous utilisez un \u003Cstrong>plugin de mise en cache de pages\u003C\u002Fstrong> autre que WP Rocket, vous devez ajouter le slug de la nouvelle URL de connexion à la liste des pages à ne pas mettre en cache. WP Rocket est déjà entièrement compatible avec le plugin.\u003C\u002Fp>\n","Change wp-login.php to anything you want.",2000000,30698944,96,2103,"2026-01-12T08:47:00.000Z","6.9.4","4.1","7.0",[56,57,58,22,23],"custom-login-url","login","rename","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwps-hide-login.1.9.18.zip",95,10,"2024-06-24 00:00:00",{"slug":64,"name":65,"version":66,"author":67,"author_profile":68,"description":69,"short_description":70,"active_installs":71,"downloaded":72,"rating":73,"num_ratings":74,"last_updated":75,"tested_up_to":76,"requires_at_least":77,"requires_php":18,"tags":78,"homepage":81,"download_link":82,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"rename-wp-loginphp-to-anything-you-want","Rename wp-login.php to anything you want","2.0.1","travispluse","https:\u002F\u002Fprofiles.wordpress.org\u002Ftravispluse\u002F","\u003Cp>This plugin changes the way you login into your website.\u003C\u002Fp>\n\u003Cp>–loginsecurity includes–\u003Cbr \u002F>\n\u003Cbr \u002F>\n* Blocks IP after maximum retries allowed\u003Cbr \u002F>\n\u003Cbr \u002F>\n* Extended Lockout after maximum lockouts allowed\u003Cbr \u002F>\n\u003Cbr \u002F>\n* Email notification to admin after max lockouts\u003Cbr \u002F>\n\u003Cbr \u002F>\n* Blacklist IP\u002FIP range\u003Cbr \u002F>\n\u003Cbr \u002F>\n* Whitelist IP\u002FIP range\u003Cbr \u002F>\n\u003Cbr \u002F>\n* Check logs of failed attempts\u003Cbr \u002F>\n\u003Cbr \u002F>\n* Create IP ranges\u003Cbr \u002F>\n\u003Cbr \u002F>\n* Delete IP ranges\u003Cbr \u002F>\n\u003Cbr \u002F>\n* Licensed under GNU GPL version 3\u003Cbr \u002F>\n\u003Cbr \u002F>\n* Safe & Secure\u003Cbr \u002F>\u003C\u002Fp>\n","This plugin changes the way you login into your website.",500,8939,100,5,"2016-08-13T06:36:00.000Z","4.5.33","3.0",[79,56,57,80,23],"custom","login-custom","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Frename-wp-loginphp-to-anything-you-want\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frename-wp-loginphp-to-anything-you-want.2.0.1.zip",{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":91,"downloaded":92,"rating":93,"num_ratings":94,"last_updated":95,"tested_up_to":96,"requires_at_least":97,"requires_php":18,"tags":98,"homepage":103,"download_link":104,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"blue-login-style","Blue Login Style","1.4.0","Alimir","https:\u002F\u002Fprofiles.wordpress.org\u002Falimir\u002F","\u003Cp>Blue Login Style is a tiny WordPress plugin that allows you to customize your login page with beautiful themes. Its features: ability to add message, change the login logo, ability to set login, logout and register redirect links and many more…\u003Cbr \u002F>\nScreenshots are available in \u003Ca href=\"http:\u002F\u002Fpreview.alimir.ir\u002Fwordpress-blue-login-style\u002F\" rel=\"nofollow ugc\">Here\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Ability to choose nice themes with great options.\u003C\u002Fli>\n\u003Cli>Ability to add message in your login page.\u003C\u002Fli>\n\u003Cli>Add a custom logo of your wordPress blog as piece of cake.\u003C\u002Fli>\n\u003Cli>Add custom background image.\u003C\u002Fli>\n\u003Cli>Ability to set \u003Ccode>login\u003C\u002Fcode>, \u003Ccode>logout\u003C\u002Fcode> and \u003Ccode>register\u003C\u002Fcode> redirect links.\u003C\u002Fli>\n\u003Cli>Simple configuration panel.\u003C\u002Fli>\n\u003Cli>And so on…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Plugin Author\u003C\u002Fh4>\n\u003Cp>Website: \u003Ca href=\"http:\u002F\u002Fabout.alimir.ir\" rel=\"nofollow ugc\">Ali Mirzaei\u003C\u002Fa>\u003Cbr \u002F>\nFollow on \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Falimir.ir\" rel=\"nofollow ugc\">Facebook\u003C\u002Fa>\u003Cbr \u002F>\nYou can catch catch me on twitter as @alimirir\u003C\u002Fp>\n","Blue Login Style is a tiny plugin which allows to customize your wp-login theme easily with a click.",300,29155,98,17,"2014-12-26T19:38:00.000Z","4.1.42","3.5",[99,100,101,102,22],"admin","customize-wp-login-php-plugin","front-end-login","login-form","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fblue-login-style\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblue-login-style.1.4.0.zip",{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":113,"downloaded":114,"rating":27,"num_ratings":27,"last_updated":115,"tested_up_to":116,"requires_at_least":117,"requires_php":18,"tags":118,"homepage":122,"download_link":123,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"fc-login-customizer","FC Login Customizer","1.1.0","Francesco Campus","https:\u002F\u002Fprofiles.wordpress.org\u002Fcampusfra\u002F","\u003Cp>Tired of manually customizing every wp-login.php page on every website?\u003C\u002Fp>\n\u003Cp>Say no more.\u003C\u002Fp>\n\u003Cp>Just install and activate FC Login Customizer and let the plugin automagically handle some nice customizations for you!\u003C\u002Fp>\n\u003Cp>Core features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatically display your brand logo on the website’s login page\u003C\u002Fli>\n\u003Cli>Automatically link the logo to the website’s homepage\u003C\u002Fli>\n\u003Cli>Automatically change the hidden H1 title to the website’s name\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Most people do not like that the login screen (wp-login.php) contains the WordPress logo and a direct link to wordpress.org.\u003Cbr \u002F>\nClients keep asking to change the logo, SEOs keep asking to change the hidden H1 title, UX Designers keep asking to change the link that wraps the login logo…\u003Cbr \u002F>\nWith this plugin, you can do all this stuff at once by just installing it!\u003C\u002Fp>\n\u003Ch3>What’s next\u003C\u002Fh3>\n\u003Cp>Next update may include the additional features listed below:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Official support for .svg logos\u003C\u002Fli>\n\u003Cli>HTML markup preview before settings save\u003C\u002Fli>\n\u003Cli>Fine tuning on logo width\u002Fheight\u003C\u002Fli>\n\u003Cli>Other features based on community requests\u003C\u002Fli>\n\u003C\u002Ful>\n","Automatically customize the login screen with your brand logo, the associated link when clicked and the hidden H1 title inside the page.",50,2342,"2023-12-29T20:07:00.000Z","6.4.8","4.9",[119,120,57,121,23],"branding","customize","login-screen","https:\u002F\u002Fcampusfrancesco.dev","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffc-login-customizer.1.1.1.zip",{"slug":125,"name":126,"version":127,"author":128,"author_profile":129,"description":130,"short_description":131,"active_installs":61,"downloaded":132,"rating":73,"num_ratings":133,"last_updated":134,"tested_up_to":135,"requires_at_least":136,"requires_php":18,"tags":137,"homepage":142,"download_link":143,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":144},"4nton-extensions","Anton Extensions","1.2.2","Anthony Carbon","https:\u002F\u002Fprofiles.wordpress.org\u002Fmaster-buldog\u002F","\u003Cp>Anton Extensions has PHP coding SOP fuction that prevent errors, list of addons that may suitable for your site requirements, and many more free features that you might love. This plugin is can integrate with Gravity Forms, Override WordPress default emails, login landing page, and more.\u003C\u002Fp>\n\u003Ch4>FREE Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Manage wp-login.php login landing page. Override the default WordPress layout, logo and permalink. \u003Ca href=\"https:\u002F\u002Fdemo.anthonycarbon.com\u002Fwp-login.php\" rel=\"nofollow ugc\">DEMO\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Override the WordPress email subject name and email using general settings name and email address.\u003C\u002Fli>\n\u003Cli>Turn your Gravity Form activation page into popup layout with admin settings.\u003C\u002Fli>\n\u003Cli>Override the WordPress new user registration subject name ([%s] New User Registration).\u003C\u002Fli>\n\u003Cli>Disable\u002FEnable input auto fill or autocomplete.\u003C\u002Fli>\n\u003Cli>Fix Gravity Forms Uncaught TypeError: grecaptcha.render\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Addons\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.anthonycarbon.com\u002Fproduct\u002Fgravity-forms-media-upload-field\u002F\" rel=\"nofollow ugc\">Gravity Forms Media Upload Field\u003C\u002Fa> – add custom field that can upload image with prefered dimension, save to media dashboard.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.anthonycarbon.com\u002Fproduct\u002Fwp-print\u002F\" rel=\"nofollow ugc\">WP Print\u003C\u002Fa> – Customized your post, page, or custom post-type print layout without doing any back-end coding.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Related plugins\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.anthonycarbon.com\u002Fproduct-category\u002Fwordpress-plugins\u002F\" rel=\"nofollow ugc\">Anthony Carbon Plugins\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Develop by\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.anthonycarbon.com\u002F\" rel=\"nofollow ugc\">anthonycarbon.com – WordPress Developer \u002F Programmer\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Happy coding everyone :D.\u003C\u002Fp>\n","Developer and Programmer tools and tasks helper. Helpful SOP features.",2162,1,"2019-06-01T02:30:00.000Z","5.0.25","4.4",[138,139,140,141,23],"ajax","field","gravityform","media-upload","https:\u002F\u002Fwww.anthonycarbon.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002F4nton-extensions.zip","2026-04-06T09:54:40.288Z",{"attackSurface":146,"codeSignals":322,"taintFlows":439,"riskAssessment":465,"analyzedAt":475},{"hooks":147,"ajaxHandlers":314,"restRoutes":319,"shortcodes":320,"cronEvents":321,"entryPointCount":133,"unprotectedCount":133},[148,154,157,160,163,167,172,178,182,186,189,192,195,199,202,205,208,211,216,219,224,228,231,235,237,241,244,246,247,249,252,257,260,263,266,269,272,276,280,284,287,291,295,298,302,307,310],{"type":149,"name":150,"callback":151,"priority":61,"file":152,"line":153},"action","admin_enqueue_scripts","register_assets","classes\\assets.php",20,{"type":149,"name":150,"callback":155,"priority":153,"file":152,"line":156},"enqueue_assets",21,{"type":149,"name":150,"callback":158,"priority":133,"file":152,"line":159},"death_to_heartbeat",22,{"type":149,"name":150,"callback":161,"priority":113,"file":152,"line":162},"pointer",23,{"type":149,"name":164,"callback":165,"file":152,"line":166},"wp_enqueue_scripts","frontend",24,{"type":168,"name":169,"callback":170,"file":171,"line":166},"filter","show_admin_bar","maybe_hide_admin_bar","classes\\core.php",{"type":168,"name":173,"callback":174,"priority":175,"file":176,"line":177},"retrieve_password_title","title",9999,"classes\\emails\\resetpw.php",18,{"type":168,"name":179,"callback":180,"priority":175,"file":176,"line":181},"retrieve_password_message","message",19,{"type":149,"name":183,"callback":184,"file":185,"line":181},"login_enqueue_scripts","login_css","classes\\login\\styles.php",{"type":149,"name":187,"callback":188,"file":185,"line":153},"login_headerurl","logo_url",{"type":168,"name":190,"callback":191,"file":185,"line":162},"login_headertext","logo_title",{"type":168,"name":193,"callback":191,"file":185,"line":194},"login_headertitle",25,{"type":149,"name":196,"callback":196,"file":197,"line":198},"login_init","classes\\login.php",28,{"type":168,"name":200,"callback":200,"priority":61,"file":197,"line":201},"wp_login_errors",29,{"type":168,"name":203,"callback":204,"priority":133,"file":197,"line":35},"gettext","check_for_string_changes",{"type":168,"name":183,"callback":206,"file":197,"line":207},"login_assets",36,{"type":149,"name":209,"callback":209,"file":197,"line":210},"login_header",37,{"type":168,"name":212,"callback":213,"file":214,"line":215},"wp_mail_from","email","classes\\mail.php",27,{"type":168,"name":217,"callback":218,"file":214,"line":198},"wp_mail_from_name","name",{"type":168,"name":220,"callback":221,"priority":222,"file":223,"line":181},"login_redirect","get_user_login_redirect",999999,"classes\\redirects.php",{"type":168,"name":225,"callback":226,"priority":227,"file":223,"line":153},"logout_redirect","get_user_logout_redirect",11,{"type":168,"name":229,"callback":230,"priority":222,"file":223,"line":159},"registration_redirect","register_redirect",{"type":149,"name":232,"callback":233,"file":234,"line":94},"user_register","user_registered","classes\\register.php",{"type":149,"name":236,"callback":236,"file":234,"line":177},"register_new_user",{"type":168,"name":238,"callback":239,"priority":240,"file":234,"line":181},"wp_pre_insert_user_data","maybe_set_password",99999,{"type":149,"name":242,"callback":243,"file":234,"line":153},"register_form","register_fields",{"type":168,"name":245,"callback":245,"priority":61,"file":234,"line":156},"registration_errors",{"type":168,"name":203,"callback":204,"priority":133,"file":234,"line":159},{"type":168,"name":248,"callback":248,"file":234,"line":162},"login_form_register",{"type":168,"name":200,"callback":250,"priority":251,"file":234,"line":166},"registration_complete",15,{"type":149,"name":253,"callback":254,"file":255,"line":256},"shutdown","check_for_updates","classes\\rewrite.php",39,{"type":168,"name":258,"callback":258,"priority":175,"file":255,"line":259},"lostpassword_url",40,{"type":168,"name":261,"callback":261,"priority":175,"file":255,"line":262},"login_url",41,{"type":168,"name":264,"callback":264,"priority":175,"file":255,"line":265},"register_url",42,{"type":168,"name":267,"callback":267,"priority":175,"file":255,"line":268},"site_url",43,{"type":168,"name":270,"callback":270,"priority":175,"file":255,"line":271},"network_site_url",44,{"type":168,"name":273,"callback":274,"priority":175,"file":255,"line":275},"wp_redirect","site_url_redirect",45,{"type":149,"name":277,"callback":278,"file":255,"line":279},"wp_loaded","set_rewrite_rules",46,{"type":149,"name":281,"callback":282,"file":283,"line":262},"admin_init","register_settings","classes\\settings.php",{"type":149,"name":285,"callback":286,"file":283,"line":265},"admin_menu","submenu",{"type":149,"name":288,"callback":289,"priority":35,"file":290,"line":153},"authenticate","check","classes\\user\\auth.php",{"type":168,"name":292,"callback":293,"file":294,"line":181},"manage_users_columns","add_column","classes\\user\\list\\table.php",{"type":149,"name":296,"callback":297,"priority":61,"file":294,"line":153},"manage_users_custom_column","column_output",{"type":168,"name":203,"callback":299,"priority":133,"file":300,"line":301},"change_user_strings","classes\\user.php",34,{"type":149,"name":303,"callback":304,"file":305,"line":306},"init","load_translations","wp-login-flow.php",66,{"type":149,"name":308,"callback":308,"file":305,"line":309},"admin_notices",67,{"type":168,"name":311,"callback":312,"priority":61,"file":305,"line":313},"plugin_row_meta","add_plugin_row_meta",68,[315],{"action":316,"nopriv":317,"callback":318,"hasNonce":317,"hasCapCheck":317,"file":283,"line":268},"wp_login_flow_dl_backup",false,"download_backup",[],[],[],{"dangerousFunctions":323,"sqlUsage":324,"outputEscaping":326,"fileOperations":27,"externalRequests":27,"nonceChecks":133,"capabilityChecks":437,"bundledLibraries":438},[],{"prepared":27,"raw":27,"locations":325},[],{"escaped":327,"rawEcho":328,"locations":329},33,56,[330,333,335,337,339,341,343,345,347,349,351,353,355,357,358,360,362,364,366,368,370,372,374,376,378,380,381,382,384,385,387,389,391,393,395,397,399,401,403,405,407,409,411,413,414,416,418,420,422,424,426,428,430,432,433,435],{"file":185,"line":331,"context":332},99,"raw output",{"file":185,"line":334,"context":332},102,{"file":185,"line":336,"context":332},105,{"file":185,"line":338,"context":332},108,{"file":185,"line":340,"context":332},140,{"file":234,"line":342,"context":332},165,{"file":234,"line":344,"context":332},197,{"file":234,"line":346,"context":332},198,{"file":234,"line":348,"context":332},199,{"file":350,"line":215,"context":332},"classes\\settings\\fields.php",{"file":350,"line":352,"context":332},62,{"file":350,"line":354,"context":332},80,{"file":350,"line":356,"context":332},83,{"file":350,"line":334,"context":332},{"file":350,"line":359,"context":332},120,{"file":350,"line":361,"context":332},127,{"file":350,"line":363,"context":332},152,{"file":350,"line":365,"context":332},160,{"file":350,"line":367,"context":332},181,{"file":350,"line":369,"context":332},226,{"file":350,"line":371,"context":332},252,{"file":350,"line":373,"context":332},271,{"file":350,"line":375,"context":332},289,{"file":350,"line":377,"context":332},341,{"file":350,"line":379,"context":332},346,{"file":350,"line":379,"context":332},{"file":350,"line":379,"context":332},{"file":350,"line":383,"context":332},347,{"file":350,"line":383,"context":332},{"file":350,"line":386,"context":332},351,{"file":350,"line":388,"context":332},358,{"file":350,"line":390,"context":332},359,{"file":350,"line":392,"context":332},376,{"file":350,"line":394,"context":332},383,{"file":350,"line":396,"context":332},407,{"file":350,"line":398,"context":332},442,{"file":350,"line":400,"context":332},443,{"file":350,"line":402,"context":332},446,{"file":350,"line":404,"context":332},474,{"file":350,"line":406,"context":332},476,{"file":350,"line":408,"context":332},478,{"file":350,"line":410,"context":332},494,{"file":350,"line":412,"context":332},499,{"file":350,"line":71,"context":332},{"file":350,"line":415,"context":332},501,{"file":350,"line":417,"context":332},532,{"file":350,"line":419,"context":332},534,{"file":421,"line":313,"context":332},"classes\\settings\\handlers.php",{"file":283,"line":423,"context":332},93,{"file":283,"line":425,"context":332},101,{"file":283,"line":427,"context":332},110,{"file":283,"line":429,"context":332},112,{"file":283,"line":431,"context":332},115,{"file":305,"line":365,"context":332},{"file":305,"line":434,"context":332},172,{"file":305,"line":436,"context":332},186,2,[],[440,457],{"entryPoint":441,"graph":442,"unsanitizedCount":133,"severity":456},"user_registered (classes\\register.php:302)",{"nodes":443,"edges":454},[444,449],{"id":445,"type":446,"label":447,"file":234,"line":448},"n0","source","$_POST",333,{"id":450,"type":451,"label":452,"file":234,"line":453,"wp_function":273},"n1","sink","wp_redirect() [Open Redirect]",337,[455],{"from":445,"to":450,"sanitized":317},"medium",{"entryPoint":458,"graph":459,"unsanitizedCount":133,"severity":456},"\u003Cregister> (classes\\register.php:0)",{"nodes":460,"edges":463},[461,462],{"id":445,"type":446,"label":447,"file":234,"line":448},{"id":450,"type":451,"label":452,"file":234,"line":453,"wp_function":273},[464],{"from":445,"to":450,"sanitized":317},{"summary":466,"deductions":467},"The 'wp-login-flow' v3.1.1 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by not using dangerous functions, executing all SQL queries with prepared statements, and avoiding file operations and external HTTP requests.  It also includes nonce and capability checks, which are crucial for WordPress security.  However, a significant concern arises from the presence of an unprotected AJAX handler, which represents a direct entry point into the plugin's functionality without any authentication or authorization checks.  While there is no recorded vulnerability history, suggesting a generally stable past, this single unprotected entry point, coupled with a notable percentage of improperly escaped output, presents a tangible risk. The taint analysis revealing unsanitized paths, although not reaching critical or high severity, further emphasizes the need for careful input handling. The plugin's strengths lie in its backend data handling, but its frontend interaction points require immediate attention.",[468,470,472],{"reason":469,"points":61},"Unprotected AJAX handler",{"reason":471,"points":74},"Insufficient output escaping",{"reason":473,"points":474},"Taint flow with unsanitized path",3,"2026-03-16T21:36:42.351Z",{"wat":477,"direct":488},{"assetPaths":478,"generatorPatterns":482,"scriptPaths":483,"versionParams":484},[479,480,481],"\u002Fwp-content\u002Fplugins\u002Fwp-login-flow\u002Fassets\u002Fcss\u002Flogin-page.css","\u002Fwp-content\u002Fplugins\u002Fwp-login-flow\u002Fassets\u002Fcss\u002Flogin-form.css","\u002Fwp-content\u002Fplugins\u002Fwp-login-flow\u002Fassets\u002Fjs\u002Flogin-form.js",[],[481],[485,486,487],"wp-login-flow\u002Fassets\u002Fcss\u002Flogin-page.css?ver=","wp-login-flow\u002Fassets\u002Fcss\u002Flogin-form.css?ver=","wp-login-flow\u002Fassets\u002Fjs\u002Flogin-form.js?ver=",{"cssClasses":489,"htmlComments":492,"htmlAttributes":497,"restEndpoints":499,"jsGlobals":500,"shortcodeOutput":502},[490,491],"wplf-login","wp-login-flow-container",[493,494,495,496],"\u003C!-- WP Login Flow : Begin ---","\u003C!-- WP Login Flow : End --->","\u003C!-- WP Login Flow : Plugin Row Meta ---","\u003C!-- WP Login Flow : Settings Link ---",[498],"data-plugin-slug=\"wp-login-flow\"",[],[501],"window.wpLoginFlowSettings",[],{"error":504,"url":505,"statusCode":506,"statusMessage":507,"message":507},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fwp-login-flow\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":509,"versions":510},8,[511,516,523,530,537,544,551,558],{"version":6,"download_url":25,"svn_tag_url":512,"released_at":28,"has_diff":317,"diff_files_changed":513,"diff_lines":28,"trac_diff_url":514,"vulnerabilities":515,"is_current":504},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-login-flow\u002Ftags\u002F3.1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-login-flow%2Ftags%2F3.1.0&new_path=%2Fwp-login-flow%2Ftags%2F3.1.1",[],{"version":517,"download_url":518,"svn_tag_url":519,"released_at":28,"has_diff":317,"diff_files_changed":520,"diff_lines":28,"trac_diff_url":521,"vulnerabilities":522,"is_current":317},"3.1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-login-flow.3.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-login-flow\u002Ftags\u002F3.1.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-login-flow%2Ftags%2F3.0.3&new_path=%2Fwp-login-flow%2Ftags%2F3.1.0",[],{"version":524,"download_url":525,"svn_tag_url":526,"released_at":28,"has_diff":317,"diff_files_changed":527,"diff_lines":28,"trac_diff_url":528,"vulnerabilities":529,"is_current":317},"3.0.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-login-flow.3.0.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-login-flow\u002Ftags\u002F3.0.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-login-flow%2Ftags%2F3.0.2&new_path=%2Fwp-login-flow%2Ftags%2F3.0.3",[],{"version":531,"download_url":532,"svn_tag_url":533,"released_at":28,"has_diff":317,"diff_files_changed":534,"diff_lines":28,"trac_diff_url":535,"vulnerabilities":536,"is_current":317},"3.0.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-login-flow.3.0.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-login-flow\u002Ftags\u002F3.0.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-login-flow%2Ftags%2F3.0.1&new_path=%2Fwp-login-flow%2Ftags%2F3.0.2",[],{"version":538,"download_url":539,"svn_tag_url":540,"released_at":28,"has_diff":317,"diff_files_changed":541,"diff_lines":28,"trac_diff_url":542,"vulnerabilities":543,"is_current":317},"3.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-login-flow.3.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-login-flow\u002Ftags\u002F3.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-login-flow%2Ftags%2F3.0.0&new_path=%2Fwp-login-flow%2Ftags%2F3.0.1",[],{"version":545,"download_url":546,"svn_tag_url":547,"released_at":28,"has_diff":317,"diff_files_changed":548,"diff_lines":28,"trac_diff_url":549,"vulnerabilities":550,"is_current":317},"3.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-login-flow.3.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-login-flow\u002Ftags\u002F3.0.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-login-flow%2Ftags%2F2.0.0&new_path=%2Fwp-login-flow%2Ftags%2F3.0.0",[],{"version":552,"download_url":553,"svn_tag_url":554,"released_at":28,"has_diff":317,"diff_files_changed":555,"diff_lines":28,"trac_diff_url":556,"vulnerabilities":557,"is_current":317},"2.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-login-flow.2.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-login-flow\u002Ftags\u002F2.0.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fwp-login-flow%2Ftags%2F1.0.0&new_path=%2Fwp-login-flow%2Ftags%2F2.0.0",[],{"version":559,"download_url":560,"svn_tag_url":561,"released_at":28,"has_diff":317,"diff_files_changed":562,"diff_lines":28,"trac_diff_url":28,"vulnerabilities":563,"is_current":317},"1.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-login-flow.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwp-login-flow\u002Ftags\u002F1.0.0\u002F",[],[]]