[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fmEX12FguLus62ANVHOLyi66yQrVevitAT89kFqH_rdk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":135,"fingerprints":187},"wp-rslogin","WP RSlogin","1.1.0","ryscript","https:\u002F\u002Fprofiles.wordpress.org\u002Fryansutana\u002F","\u003Cp>An elegant jQuery Ajax WordPress plugin that helps your users login without touching in the admin panel.\u003C\u002Fp>\n\u003Cp>After login the plugin redirected to the page where you add the shortcode or template tag and display a list of options like visit to profile page, dashboard and a logout button.\u003C\u002Fp>\n\u003Ch4>Important links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>My portfolio: http:\u002F\u002Fwww.sutanaryan.com\u002Fportfolio\u002F\u003C\u002Fli>\n\u003Cli>My Blog: http:\u002F\u002Fwww.sutanaryan.com\u002F\u003C\u002Fli>\n\u003Cli>Twitter: @ryansutana\u003C\u002Fli>\n\u003Cli>Need a Web Developer [visit http:\u002F\u002Fwww.sutanryan.com\u002Fservices\u002F]\u003C\u002Fli>\n\u003C\u002Ful>\n","An elegant jQuery Ajax Wordpress plugin that helps your users login without touching in the admin panel.",10,3597,0,"2017-06-01T04:10:00.000Z","3.3.2","3.0.0","",[19,20,21,22,23],"ajax-login","jquery-login","log-in","login","reset-password","http:\u002F\u002Fwww.sutanaryan.com\u002Ffreebies\u002Fplugins\u002Fwp-rslogin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-rslogin.1.1.0.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"ryansutana",1,30,84,"2026-04-04T09:26:18.286Z",[37,57,75,94,114],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":50,"requires_at_least":51,"requires_php":17,"tags":52,"homepage":17,"download_link":55,"security_score":56,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"frontend-reset-password","Frontend Reset Password","1.3.3","Wp Enhanced","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpenhanced\u002F","\u003Cp>\u003Cstrong>Frontend Reset Password\u003C\u002Fstrong> lets your site users reset their lost or forgotten passwords in the frontend of your site. No more default WordPress reset form! Users fill in their username or email address and a reset password link is emailed to them. When they click this link they’ll be redirected to your site and asked for a new password. Everything is handled using default WordPress methods including security, so you don’t have to worry.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Frontend Reset Password\u003C\u002Fstrong> is perfect for sites that have disabled access to the WordPress dashboard, or if you want to include a lost\u002Freset password form on one of your custom site pages. It also works great with \u003Cstrong>Easy Digital Downloads\u003C\u002Fstrong>!\u003C\u002Fp>\n\u003Cp>Any error messages display right on the form, including whether the username or email address is invalid.\u003C\u002Fp>\n\u003Cp>The plugin works by hooking into the \u003Ccode>lostpassword_url\u003C\u002Fcode> WordPress filter, meaning compatibility with other plugins can be better maintained.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Frontend Reset Password\u003C\u002Fstrong> is also translation ready.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Modern settings framework for easy configuration & searching our documentation\u003Cbr \u002F>\n– Password requirements and eye icon toggle\u003Cbr \u002F>\n– Customizable reset link text and email templates\u003Cbr \u002F>\n– Full documentation at https:\u002F\u002Fdocs.wpenhanced.com\u002Ffrontend-reset-password\u002F\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>Full documentation and setup guide:\u003Cbr \u002F>\nhttps:\u002F\u002Fdocs.wpenhanced.com\u002Ffrontend-reset-password\u002F\u003C\u002Fp>\n\u003Cp>Find answers, usage examples, and troubleshooting tips on our official documentation site.\u003C\u002Fp>\n\u003Ch3>Setup Guide\u003C\u002Fh3>\n\u003Cp>Quick Start:\u003Cbr \u002F>\n1. Add the shortcode \u003Ccode>[reset_password]\u003C\u002Fcode> to any page.\u003Cbr \u002F>\n2. Visit \u003Cstrong>Settings > Frontend Reset Password\u003C\u002Fstrong> in your WordPress admin to select your reset page and configure options.\u003Cbr \u002F>\n3. (Optional) Customize form text, password requirements, and email templates.\u003C\u002Fp>\n\u003Cp>See the \u003Ca href=\"https:\u002F\u002Fdocs.wpenhanced.com\u002Ffrontend-reset-password\u002F\" rel=\"nofollow ugc\">online documentation\u003C\u002Fa> for screenshots and advanced usage.\u003C\u002Fp>\n\u003Ch3>Customisation\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Customisation Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Change all form text and labels\u003Cbr \u002F>\n– Set password requirements (length, character types)\u003Cbr \u002F>\n– Show\u002Fhide eye icon for password fields\u003Cbr \u002F>\n– Customize email subject, sender, and template\u003Cbr \u002F>\n– Display login link after password reset\u003C\u002Fp>\n\u003Cp>Very little CSS styling is used, so the forms should style with your website theme beautifully.\u003C\u002Fp>\n\u003Cp>If you use a frontend login page you can set that in the plugin also. Users are told they can login and are shown the url when they successfully change their password.\u003C\u002Fp>\n\u003Cp>You can also set the minimum number of characters required for a password. Default is 0.\u003C\u002Fp>\n\u003Ch3>Support & Resources\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdocs.wpenhanced.com\u002Ffrontend-reset-password\u002F\" rel=\"nofollow ugc\">Full Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Quick start guide in plugin settings\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Ffrontend-reset-password\u002F\" rel=\"ugc\">WordPress.org Support Forum\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Let your users reset their forgotten passwords from the frontend of your website.",10000,167187,88,38,"2026-01-30T10:23:00.000Z","6.9.4","4.4",[22,53,54,23],"lost-password","password","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffrontend-reset-password.zip",100,{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":13,"num_ratings":13,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":70,"tags":71,"homepage":17,"download_link":74,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"twst-login-block","TWST Login Block","1.0.1","twst","https:\u002F\u002Fprofiles.wordpress.org\u002Ftwst\u002F","\u003Cp>Insert a login form into your post or page!\u003C\u002Fp>\n\u003Cp>For support, reporting bugs, or to contribute please check out GitHub:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftwst-blocks\u002Flogin\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Ftwst-blocks\u002Flogin\u003C\u002Fa>\u003C\u002Fp>\n","Easily insert a log in block into your post.",1000,16869,"2020-08-25T06:13:00.000Z","5.5.18","5.5","5.6",[72,73,21,22],"block","form","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftwst-login-block.1.0.1.zip",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":56,"num_ratings":85,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":70,"tags":89,"homepage":17,"download_link":93,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"personalize-login","Personalize Login","1.1.6","Jose Lazo","https:\u002F\u002Fprofiles.wordpress.org\u002Fjose-lazo\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fplugintests.com\u002Fplugins\u002Fwporg\u002Fpersonalize-login\u002Flatest\" rel=\"nofollow ugc\">\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fplugintests.com\u002Fplugins\u002Fwporg\u002Fpersonalize-login\u002Flatest\" rel=\"nofollow ugc\">\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>You can customize your default login page, register page, reset password page and profile page\u003C\u002Fp>\n","The plugin create three new pages: Register, Login and Reset password",600,5235,2,"2023-12-02T11:35:00.000Z","6.4.8","4.2",[21,22,90,91,92],"register","sig-in","signin","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpersonalize-login.zip",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":56,"downloaded":102,"rating":103,"num_ratings":85,"last_updated":104,"tested_up_to":50,"requires_at_least":105,"requires_php":106,"tags":107,"homepage":112,"download_link":113,"security_score":56,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"password-reset-enforcement","Password Reset Enforcement","1.11.1","Teydea Studio","https:\u002F\u002Fprofiles.wordpress.org\u002Fteydeastudio\u002F","\u003Cp>\u003Cstrong>Enhance your WordPress website’s security by forcing users to reset their passwords.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Password Reset Enforcement is a simple yet powerful security plugin that allows site administrators to require users to update their passwords—ideal after a potential data breach, routine security checks, or during onboarding\u002Foffboarding processes.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Force password reset for all users\u003C\u002Fstrong>, specific user roles, or individual users.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Optional email notification\u003C\u002Fstrong> to users with a direct reset link.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Flexible login behavior\u003C\u002Fstrong>:\n\u003Cul>\n\u003Cli>\u003Cem>Allow login before resetting\u003C\u002Fem>: users log in with the old password, are immediately prompted to set a new one.\u003C\u002Fli>\n\u003Cli>\u003Cem>Block login until reset\u003C\u002Fem>: users must reset their password before accessing the dashboard.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Choose reset timing\u003C\u002Fstrong>:\n\u003Cul>\n\u003Cli>\u003Cem>Immediately\u003C\u002Fem>: forces logout and password reset on next login.\u003C\u002Fli>\n\u003Cli>\u003Cem>After session expiry\u003C\u002Fem>: users are asked to reset after their current session ends.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WP-CLI support\u003C\u002Fstrong> for command-line password management and automation.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multisite compatible\u003C\u002Fstrong> (network-wide reset only).\u003C\u002Fli>\n\u003Cli>Optimized for performance on large-scale and enterprise WordPress installations.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Use Cases\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Responding to a \u003Cstrong>security breach\u003C\u002Fstrong> or suspected compromise.\u003C\u002Fli>\n\u003Cli>Enforcing \u003Cstrong>routine password changes\u003C\u002Fstrong> in corporate environments.\u003C\u002Fli>\n\u003Cli>Applying \u003Cstrong>onboarding\u002Foffboarding security policies\u003C\u002Fstrong> for teams or membership sites.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Compatibility\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Works on both single-site and multisite (network) WordPress setups.\u003C\u002Fli>\n\u003Cli>Supports PHP 7.4+ and WordPress 6.6 through 6.8.\u003C\u002Fli>\n\u003Cli>Compatible with modern WordPress admin experience.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>WP-CLI Commands\u003C\u002Fh3>\n\u003Cp>This plugin provides WP-CLI commands for automated password reset management:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Force Password Reset\u003C\u002Fstrong>\u003Cbr \u002F>\n    wp password-reset-enforcement force [–to_all] [–to_roles=] [–to_users=] [–applicability=] [–with_email] [–with_current_password_allowed] [–limit=] [–paged=]\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Clear Password Reset Enforcement\u003C\u002Fstrong>\u003Cbr \u002F>\n    wp password-reset-enforcement clear [–to_all] [–to_roles=] [–to_users=] [–limit=] [–paged=]\u003C\u002Fp>\n\u003Cp>\u003Cstrong>List Users with Enforced Password Reset\u003C\u002Fstrong>\u003Cbr \u002F>\n    wp password-reset-enforcement list [–limit=] [–paged=]\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Check Password Reset Status\u003C\u002Fstrong>\u003Cbr \u002F>\n    wp password-reset-enforcement status [–to_all] [–to_roles=] [–to_users=] [–limit=] [–paged=]\u003C\u002Fp>\n\u003Ch4>Command Options\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ccode>--to_all\u003C\u002Fcode>: Target all users on the site\u003C\u002Fli>\n\u003Cli>\u003Ccode>--to_roles=\u003Croles>\u003C\u002Fcode>: Comma-separated list of user roles (e.g., editor,administrator)\u003C\u002Fli>\n\u003Cli>\u003Ccode>--to_users=\u003Cuser_ids>\u003C\u002Fcode>: Comma-separated list of specific user IDs (e.g., 1,5,10)\u003C\u002Fli>\n\u003Cli>\u003Ccode>--applicability=\u003Cwhen>\u003C\u002Fcode>: When reset takes effect (immediately, after_session_expiry)\u003C\u002Fli>\n\u003Cli>\u003Ccode>--with_email\u003C\u002Fcode>: Send email notifications to affected users (default: true)\u003C\u002Fli>\n\u003Cli>\u003Ccode>--with_current_password_allowed\u003C\u002Fcode>: Allow users to reuse current password (default: false)\u003C\u002Fli>\n\u003Cli>\u003Ccode>--limit=\u003Cnumber>\u003C\u002Fcode>: Maximum users to process in single operation\u003C\u002Fli>\n\u003Cli>\u003Ccode>--paged=\u003Cpage>\u003C\u002Fcode>: Page number for pagination\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Command Examples\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>wp password-reset-enforcement force --to_all\nwp password-reset-enforcement force --to_roles=editor,administrator --applicability=after_session_expiry\nwp password-reset-enforcement clear --to_users=1,5,10\nwp password-reset-enforcement list --limit=50 --paged=2\nwp password-reset-enforcement status --to_all --limit=50 --paged=2\u003Ch3>Related Plugins\u003C\u002Fh3>\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Want to go beyond forced password resets? Check our \u003Ca href=\"https:\u002F\u002Fwppasswordpolicy.com\u002F?utm_source=Password+Reset+Enforcement\" rel=\"nofollow ugc\">WP Password Policy\u003C\u002Fa> plugin to enforce strong password rules, block weak passwords, and set automatic expiry policies — so you’ll never need to force a password reset again. [https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpassword-requirements\u002F](Free version available on WordPress.org).\u003C\u002Fp>\n","Easily enforce password reset for WordPress users. Choose to force password changes site-wide, by user and\u002For by role, to boost your site's security.",3589,80,"2025-11-28T14:31:00.000Z","6.6","7.4",[108,109,23,110,111],"force-password-change","password-enforcement","secure-login","wordpress-security","https:\u002F\u002Fteydeastudio.com\u002F?utm_source=Password+Reset+Enforcement","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpassword-reset-enforcement.1.11.1.zip",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":56,"downloaded":122,"rating":123,"num_ratings":85,"last_updated":124,"tested_up_to":125,"requires_at_least":126,"requires_php":17,"tags":127,"homepage":131,"download_link":132,"security_score":133,"vuln_count":32,"unpatched_count":32,"last_vuln_date":134,"fetched_at":28},"ultimate-ajax-login","Ultimate AJAX Login","1.2.1","Samer Bechara","https:\u002F\u002Fprofiles.wordpress.org\u002Farbet01\u002F","\u003Cp>After testing all of the AJAX plugins in the WordPress repository, I got frustrated. They’re all great, but it seems that they’re like 90% complete. They still need polishing.  This is why I decided to create this plugin\u003C\u002Fp>\n\u003Cp>How is this plugin different:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Three different templates to choose from: Modal login form, Classic login form and popup login form (jQuery UI based)\u003C\u002Fli>\n\u003Cli>24 themes to choose from (jQuery UI based)  \u003C\u002Fli>\n\u003Cli>Fully customizable: Just copy the template you’re using from \u002Ftemplates\u002F directory in the plugin to the “ultimate_ajax_login” directory in your theme, and modify as you need to.\u003C\u002Fli>\n\u003Cli>After a user is logged in, nothing shows up. I found this pretty frustrating with other plugins, there was no way to hide things.\u003C\u002Fli>\n\u003Cli>If you need to show anything after a user logs in, just copy the template widget-logged-in.php to your ultimate_ajax_login folder and add whatever you need. You can call any WP function from there.\u003C\u002Fli>\n\u003Cli>Has three templates, one an AJAX-based classic login form, and the other is a jQuery UI dialog box (Tested and works on mobile), and the third one is a popmodal dialog box\u003C\u002Fli>\n\u003Cli>Blocks the login form whenever a user is being logged in.\u003C\u002Fli>\n\u003Cli>Allows you to specify a global login redirect URL in your settings page, which applies to all of your widgets.\u003C\u002Fli>\n\u003Cli>Login redirect URL can be overridden on a per-widget basis from the widget options page.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cem>Shortcode Usage\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Instead of using the widget, you can insert the shortcode inside any post. If you’re a theme developer, you can use it with the do_shortcode() function. Here are the varius option\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Using with classic template and no redirect url specified: \u003Cem>[ultimate_ajax_login]\u003C\u002Fem> \u003C\u002Fli>\n\u003Cli>Using the dialog box template: \u003Cem>[ultimate_ajax_login template=’dialog’]\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>Using the dialog box template and a jquery theme: \u003Cem>[ultimate_ajax_login template=’dialog’ theme=’cupertino’]\u003C\u002Fem>\u003C\u002Fli>\n\u003C\u002Ful>\n","Very flexible and easy to use AJAX Login plugin with redirects, customizable templates...",14301,90,"2015-01-15T09:48:00.000Z","4.1.42","3.1",[128,129,19,22,130],"admin","ajax","multi-site","http:\u002F\u002Fthoughtengineer.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fultimate-ajax-login.1.2.1.zip",63,"2025-09-05 00:00:00",{"attackSurface":136,"codeSignals":155,"taintFlows":179,"riskAssessment":180,"analyzedAt":186},{"hooks":137,"ajaxHandlers":148,"restRoutes":149,"shortcodes":150,"cronEvents":154,"entryPointCount":32,"unprotectedCount":13},[138,144],{"type":139,"name":140,"callback":141,"file":142,"line":143},"action","wp_print_scripts","rs_login_script","wp-rslogin.php",16,{"type":139,"name":145,"callback":146,"file":142,"line":147},"wp_print_styles","rs_login_style",23,[],[],[151],{"tag":152,"callback":152,"file":142,"line":153},"wp_rslogin",29,[],{"dangerousFunctions":156,"sqlUsage":157,"outputEscaping":159,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":178},[],{"prepared":13,"raw":13,"locations":158},[],{"escaped":13,"rawEcho":160,"locations":161},8,[162,165,167,169,171,173,175,176],{"file":142,"line":163,"context":164},43,"raw output",{"file":142,"line":166,"context":164},46,{"file":142,"line":168,"context":164},50,{"file":142,"line":170,"context":164},51,{"file":142,"line":172,"context":164},53,{"file":142,"line":174,"context":164},68,{"file":142,"line":34,"context":164},{"file":142,"line":177,"context":164},124,[],[],{"summary":181,"deductions":182},"The wp-rslogin v1.1.0 plugin exhibits a generally good security posture with no identified vulnerabilities in its history and a limited attack surface. The static analysis reveals no dangerous functions, raw SQL queries, file operations, external HTTP requests, or bundled libraries, all of which are positive indicators. Furthermore, the plugin does not appear to have any known CVEs, which is a significant strength.\n\nHowever, a critical concern arises from the output escaping. With 8 total outputs and 0% properly escaped, there's a high risk of cross-site scripting (XSS) vulnerabilities. Any data processed by the plugin and then displayed to users without proper sanitization could be exploited. While the absence of untrusted input flowing into dangerous functions or SQL queries is positive, the lack of output escaping creates a significant and readily exploitable attack vector.\n\nIn conclusion, the plugin is strong in preventing common server-side vulnerabilities like SQL injection and unauthorized access. Its clean vulnerability history is reassuring. Nevertheless, the complete lack of output escaping presents a severe risk of XSS, which needs immediate attention. This weakness significantly overshadows the otherwise positive aspects of the plugin's security.",[183],{"reason":184,"points":185},"0% output escaping",15,"2026-03-17T01:21:53.389Z",{"wat":188,"direct":196},{"assetPaths":189,"generatorPatterns":192,"scriptPaths":193,"versionParams":195},[190,191],"\u002Fwp-content\u002Fplugins\u002Fwp-rslogin\u002Fcss\u002Frslogin-style.css","\u002Fwp-content\u002Fplugins\u002Fwp-rslogin\u002Fjs\u002Fcustom.js",[],[194,191],"http:\u002F\u002Fajax.googleapis.com\u002Fajax\u002Flibs\u002Fjquery\u002F1.7.0\u002Fjquery.min.js",[],{"cssClasses":197,"htmlComments":213,"htmlAttributes":214,"restEndpoints":227,"jsGlobals":228,"shortcodeOutput":231},[198,199,200,201,202,203,204,205,206,207,208,209,210,211,212],"panel-cotainer","panel","user-login","loggedin","profile-pic","profile-info","userlogged","user-info-list","clear","login_error","h3","label","user-forgot","forgot_error","success",[],[215,216,217,218,219,220,221,222,223,224,225,220,226],"id=\"loginform\"","id=\"username\"","id=\"password\"","id=\"rememberme\"","id=\"login_btn\"","name=\"task\"","value=\"login\"","id=\"forgot_password\"","id=\"resetform\"","id=\"user_login\"","id=\"lp_button\"","value=\"lost-password\"",[],[229,230],"L","LP",[232,233,234,235,236,237,238,239,240,240,241,242,243],"\u003Cdiv class=\"panel-cotainer\">","\u003Cdiv class=\"panel\">","\u003Cdiv class=\"user-login\">","\u003Cdiv class=\"loggedin\">","\u003Cdiv class=\"profile-pic\">","\u003Cdiv class=\"profile-info\">","\u003Cp class=\"userlogged\">Hi, \u003Ca href","\u003Cul class=\"user-info-list\">","\u003Cli>\u003Ca href","\u003Cp>\u003Ca href","\u003Cdiv class=\"user-forgot\">","\u003Cform name=\"resetform\" id=\"resetform\" method=\"post\">"]