[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fxhuC8TZvvIwlOvwu2ZC7u1rx8kU_TY6V6vanT5Ob7Hk":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":130,"fingerprints":688},"wporlogin","WPOrLogin – Custom Login, Social Login, Limit Attempts, Hide Login & reCAPTCHA","3.0.2","Nivardo Ch","https:\u002F\u002Fprofiles.wordpress.org\u002Foregoom\u002F","\u003Cp>Is your WordPress login page secure? Does it look professional? Do users hate remembering passwords?\u003C\u002Fp>\n\u003Cp>The default \u003Ccode>wp-login.php\u003C\u002Fcode> page is the #1 target for hackers, looks unbranded, and causes friction for users.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WPOrLogin\u003C\u002Fstrong> is not just a customizer; it is a \u003Cstrong>complete 7-Module Suite\u003C\u002Fstrong> designed to secure, brand, and optimize the access point of your website. We combine forensic-grade security with pixel-perfect design and the new \u003Cstrong>Google Social Login\u003C\u002Fstrong> to boost conversions.\u003C\u002Fp>\n\u003Cp>Stop installing 7 different plugins.\u003Cbr \u002F>\nWPOrLogin does it all:\u003C\u002Fp>\n\u003Ch3>1. SOCIAL LOGIN MODULE (NEW!)\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Why do you need it?\u003C\u002Fstrong>\u003Cbr \u002F>\nPasswords are the biggest friction point on the web. Over 30% of users abandon registration forms because they don’t want to create yet another account.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What it does:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Google Integration:\u003C\u002Fstrong> Enable “One-Click Login” and Registration using Google Accounts. This drastically increases conversion rates for membership sites and shops.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Smart Avatar Sync (The “Wow” Factor):\u003C\u002Fstrong> Unlike basic plugins, WPOrLogin automatically fetches the user’s high-quality Google profile picture and replaces the generic “Mystery Man” Gravatar. This provides an instant, personalized welcome experience across your entire site (comments, toolbar, author bio).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Intelligent Account Linking:\u003C\u002Fstrong> If a user attempts to log in with Google but already has an account with the same email, the system securely links them, preventing duplicate accounts.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Force Social Registration (Anti-Spam Strategy):\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Option to \u003Cstrong>hide the standard registration form\u003C\u002Fstrong> completely.\u003C\u002Fli>\n\u003Cli>This forces users to sign up via Google, virtually eliminating bot registrations without needing captchas.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Full Identity Sync:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>We don’t just sync the email. WPOrLogin now imports the \u003Cstrong>First Name\u003C\u002Fstrong> and \u003Cstrong>Last Name\u003C\u002Fstrong> from Google.\u003C\u002Fli>\n\u003Cli>Say “Hello, John!” instead of “Hello, john123” in your emails and dashboard.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>See how Social Login works:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>2. HIDE LOGIN MODULE\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Why do you need it?\u003C\u002Fstrong>\u003Cbr \u002F>\nBots and scripts target \u003Ccode>wp-login.php\u003C\u002Fcode> thousands of times a day, slowing down your server and increasing vulnerability.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What it does:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Rename URL:\u003C\u002Fstrong> Change your login address to a secret slug like \u003Ccode>\u002Faccess\u003C\u002Fcode>, \u003Ccode>\u002Fmy-portal\u003C\u002Fcode>, or \u003Ccode>\u002Fprivate\u003C\u002Fcode>.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Stop Attacks:\u003C\u002Fstrong> Anyone visiting the old URL gets a “404 Not Found” error, rendering brute-force scripts useless.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Hybrid Email Strategy:\u003C\u002Fstrong> Our unique technology ensures password reset emails \u003Cstrong>never break\u003C\u002Fstrong>, keeping your site functional even when the URL is hidden.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Tutorial: How to hide your login safely:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F7zKFE5EjEfE?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch3>3. LIMIT LOGIN ATTEMPTS MODULE\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Why do you need it?\u003C\u002Fstrong>\u003Cbr \u002F>\nHackers use “Brute Force” to guess your password by trying millions of combinations.\u003Cbr \u002F>\n\u003Cstrong>What it does:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Block Intruders:\u003C\u002Fstrong> Automatically locks out IPs after too many failed attempts (e.g., 3 failures = 20-minute ban).\u003Cbr \u002F>\n* \u003Cstrong>High Performance Architecture:\u003C\u002Fstrong> Now uses a custom database table to handle high-traffic attacks without slowing down your site.\u003Cbr \u002F>\n* \u003Cstrong>Forensic Report:\u003C\u002Fstrong> Provides a live report of blocked IPs, attack times, and geolocation.\u003Cbr \u002F>\n* \u003Cstrong>Smart Warning:\u003C\u002Fstrong> Warns real users before they get locked out to prevent frustration.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Watch how to block hackers instantly:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FuTtG9zSAXa0?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch3>4. VISUAL DESIGNER & BRANDING MODULE (MAJOR UPGRADE)\u003C\u002Fh3>\n\u003Cp>Your login page is not just a formality; it is the digital front door to your business.\u003Cbr \u002F>\nWith WPOrLogin, we have democratized high-end design. You no longer need to hire a developer to achieve that “five-star reception” look.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Why do you need it?\u003C\u002Fstrong>\u003Cbr \u002F>\nA generic WordPress login confuses users and hurts your brand authority. You need a login page that looks like \u003Cem>your\u003C\u002Fem> business.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What it does:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>Native Live Customizer:\u003C\u002Fstrong> Forget about guessing CSS code. Design your login page using the native WordPress Customizer. What you see is exactly what you get.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Cinematic Video Backgrounds:\u003C\u002Fstrong> Bring your login page to life with motion.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Universal Support:\u003C\u002Fstrong> Easily embed videos from \u003Cstrong>YouTube\u003C\u002Fstrong>, \u003Cstrong>Vimeo\u003C\u002Fstrong>, or upload your own \u003Cstrong>MP4\u003C\u002Fstrong> directly to your Media Library.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Engine:\u003C\u002Fstrong> Videos play automatically in a loop without sound (mute), creating an elegant, distraction-free atmosphere.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mobile Fallback:\u003C\u002Fstrong> We automatically serve a lightweight image on mobile devices to ensure lightning-fast loading speeds.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Dynamic Slideshows:\u003C\u002Fstrong> Can’t decide on a single photo?\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Select multiple images to create a beautiful, rotating background slideshow.\u003C\u002Fli>\n\u003Cli>Control the speed (duration) of the transitions to match your brand’s pace.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Smart Overlay & Readability:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Ensure your logo and form are always readable, no matter how busy your background is.\u003C\u002Fli>\n\u003Cli>Apply a \u003Cstrong>Color Overlay\u003C\u002Fstrong> (tint) with adjustable \u003Cstrong>Opacity\u003C\u002Fstrong> over your videos or images. This creates that professional “dimmed” look found on top-tier apps.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Professional Gallery:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Don’t have images? Use our built-in gallery of professional textures and landscapes with one click.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Conflict-Free Mode:\u003C\u002Fstrong> Our “Smart Asset Cleaner” ensures that your theme’s styles don’t break your login design while you are editing.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Design your login page in minutes:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>5. GOOGLE reCAPTCHA MODULE\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Why do you need it?\u003C\u002Fstrong>\u003Cbr \u002F>\nTo distinguish between a human user and an automated script instantly, preventing spam registrations.\u003Cbr \u002F>\n\u003Cstrong>What it does:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Dual Support:\u003C\u002Fstrong> Compatible with \u003Cstrong>v2 (Checkbox)\u003C\u002Fstrong> and \u003Cstrong>v3 (Invisible)\u003C\u002Fstrong>.\u003Cbr \u002F>\n* \u003Cstrong>Full Coverage:\u003C\u002Fstrong> Protects Login, Registration, and “Lost Password” forms.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>How to configure reCAPTCHA keys:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>6. REDIRECT MODULE\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Why do you need it?\u003C\u002Fstrong>\u003Cbr \u002F>\nSending a customer to the erratic “Dashboard” after login is bad User Experience (UX).\u003Cbr \u002F>\n\u003Cstrong>What it does:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Login Flow:\u003C\u002Fstrong> Send users directly to a Welcome Page, Shop, or Member Area upon login.\u003Cbr \u002F>\n* \u003Cstrong>Logout Flow:\u003C\u002Fstrong> Redirect users to your Home Page or a special “Goodbye” offer page after logging out.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Setup custom redirects easily:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FAkT8zoTF-jA?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch3>7. REMOVE LANGUAGE MODULE\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Why do you need it?\u003C\u002Fstrong>\u003Cbr \u002F>\nThe language dropdown added by WordPress can be distracting and break your custom design.\u003Cbr \u002F>\n\u003Cstrong>What it does:\u003C\u002Fstrong>\u003Cbr \u002F>\n* \u003Cstrong>Clean Interface:\u003C\u002Fstrong> Completely removes the language selector from the login screen with one click, keeping your design minimalist and focused.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Quick look: Clean up your interface:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FWeDN4tx2_8k?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n","Stop installing 7 plugins! WPOrLogin is the All-in-One Suite: Custom Login Design, Social Login (Google), Hide Login URL, Limit Attempts & reCAPTCHA.",2000,49860,96,31,"2026-01-21T01:29:00.000Z","6.9.4","6.0","7.4",[20,21,22,23,24],"custom-login","hide-login","limit-login","recaptcha","security","https:\u002F\u002Foregoom.com\u002Fwporlogin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwporlogin.3.0.2.zip",100,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"oregoom",1,30,94,"2026-04-05T09:24:33.468Z",[39,60,78,91,114],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":27,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":58,"download_link":59,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"admin-login-hide-pti","Admin Login Hide – PTI","1.0.3","PTI WebTech","https:\u002F\u002Fprofiles.wordpress.org\u002Fptiwebtech2025\u002F","\u003Cp>\u003Cstrong>Admin Login Hide – PTI\u003C\u002Fstrong> helps protect your WordPress site by hiding or customizing the default login URLs (\u003Ccode>wp-login.php\u003C\u002Fcode> and \u003Ccode>wp-admin\u003C\u002Fcode>). This helps reduce automated bot attacks, brute-force attempts, and unauthorized login access.\u003C\u002Fp>\n\u003Cp>With just a few clicks, you can:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Change the default login URL to a custom path\u003C\u002Fli>\n\u003Cli>Prevent access to the default \u003Ccode>wp-login.php\u003C\u002Fcode> and \u003Ccode>wp-admin\u003C\u002Fcode> paths\u003C\u002Fli>\n\u003Cli>Improve your site’s overall login security\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Perfect for WordPress users who want a lightweight, easy-to-use security enhancement without needing complex settings or heavy plugins.\u003C\u002Fp>\n","Easily hide or customize your WordPress login URL to enhance security and prevent unauthorized access.",10,347,3,"2025-07-01T05:30:00.000Z","6.8.5","5.0","7.2",[55,21,24,56,57],"custom-login-url","wp-admin","wp-login-php","https:\u002F\u002Fgithub.com\u002Fptiwebtech\u002Fadmin-login-hide-pti","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadmin-login-hide-pti.1.0.3.zip",{"slug":61,"name":62,"version":63,"author":64,"author_profile":65,"description":66,"short_description":67,"active_installs":28,"downloaded":68,"rating":28,"num_ratings":28,"last_updated":69,"tested_up_to":16,"requires_at_least":70,"requires_php":71,"tags":72,"homepage":71,"download_link":77,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"cubemage-login-guard","CubeMage Login Guard","1.0.0","CubeMage","https:\u002F\u002Fprofiles.wordpress.org\u002Fcubemage\u002F","\u003Cp>\u003Cstrong>Login Guard by CubeMage\u003C\u002Fstrong> provides a security solution to protect your WordPress login, registration, and comment forms against spam and brute-force attacks.\u003C\u002Fp>\n\u003Cp>Instead of relying solely on password verification, this plugin integrates Cloudflare Turnstile to validate visitors before WordPress processes the authentication request. This approach helps reduce server load caused by automated bot attempts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Cloudflare Turnstile Integration:\u003C\u002Fstrong> Uses a privacy-focused, GDPR-compliant alternative to CAPTCHA for bot verification.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Pre-Authentication Check:\u003C\u002Fstrong> Validates the Turnstile token before the database query occurs, saving server resources.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Limit Login Attempts:\u003C\u002Fstrong> Automatically blocks IP addresses after 5 consecutive failed login attempts within 15 minutes to prevent brute-force attacks.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>XML-RPC Protection:\u003C\u002Fstrong> Disables XML-RPC functionality to close a common attack vector often used for DDoS attacks.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Form Support:\u003C\u002Fstrong> Adds protection to the Login form, Registration form, Lost Password form, and Comment section.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Performance:\u003C\u002Fstrong> Uses native WordPress Transients for tracking failed attempts, avoiding the creation of heavy custom database tables.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Configuration:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The plugin includes a setup interface to easily input your Cloudflare Site Key and Secret Key.\u003C\u002Fp>\n","Integrates Cloudflare Turnstile, Limits Login Attempts, and Disables XML-RPC to protect WordPress forms.",123,"2025-12-13T14:03:00.000Z","5.8","",[73,74,75,76,24],"anti-spam","cloudflare-turnstile","limit-login-attempts","recaptcha-alternative","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcubemage-login-guard.1.0.0.zip",{"slug":79,"name":80,"version":42,"author":81,"author_profile":82,"description":83,"short_description":84,"active_installs":28,"downloaded":85,"rating":28,"num_ratings":28,"last_updated":86,"tested_up_to":16,"requires_at_least":52,"requires_php":71,"tags":87,"homepage":71,"download_link":90,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"shieldgate","ShieldGate","damcen123","https:\u002F\u002Fprofiles.wordpress.org\u002Fdamcen123\u002F","\u003Cp>ShieldGate is a lightweight security utility designed to protect your login page while keeping configuration simple.\u003C\u002Fp>\n\u003Cp>Built with an OOP architecture, it offers essential layers of protection:\u003Cbr \u002F>\n* \u003Cstrong>Login Hardening:\u003C\u002Fstrong> Automatically blocks IP addresses after too many failed attempts.\u003Cbr \u002F>\n* \u003Cstrong>Login Hiding:\u003C\u002Fstrong> Hide your wp-login.php behind a secret slug.\u003Cbr \u002F>\n* \u003Cstrong>Developer Friendly:\u003C\u002Fstrong> Zero bloat, object-oriented code.\u003C\u002Fp>\n\u003Ch4>Premium Features\u003C\u002Fh4>\n\u003Cp>Upgrade to ShieldGate Pro to unlock additional security tools:\u003Cbr \u002F>\n* \u003Cstrong>IP Whitelisting:\u003C\u002Fstrong> Prevent accidental lockouts by trusted IPs.\u003Cbr \u002F>\n* \u003Cstrong>Email Alerts:\u003C\u002Fstrong> Receive notifications when attacks are blocked.\u003Cbr \u002F>\n* \u003Cstrong>Priority Support:\u003C\u002Fstrong> Direct assistance from the developer.\u003C\u002Fp>\n","Protect your site by hiding the login page with a secret slug and limiting failed login attempts.",138,"2026-02-13T11:38:00.000Z",[21,22,88,89,24],"login","protect","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshieldgate.1.0.3.zip",{"slug":92,"name":93,"version":94,"author":95,"author_profile":96,"description":97,"short_description":98,"active_installs":99,"downloaded":100,"rating":101,"num_ratings":102,"last_updated":103,"tested_up_to":16,"requires_at_least":104,"requires_php":71,"tags":105,"homepage":110,"download_link":111,"security_score":112,"vuln_count":49,"unpatched_count":28,"last_vuln_date":113,"fetched_at":30},"google-captcha","reCaptcha by BestWebSoft","1.86","bestwebsoft","https:\u002F\u002Fprofiles.wordpress.org\u002Fbestwebsoft\u002F","\u003Cp>reCaptcha plugin is an effective security solution that protects your WordPress website forms from spam entries while letting real people pass through with ease.  It can be used for login, registration, password recovery, comments, popular contact forms, and other. reCAPTCHA Version 3, Version 2, Invisible are included.\u003C\u002Fp>\n\u003Cp>Users are required to confirm that they are not a robot before the form can be submitted. It’s easy for people and hard for bots.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdemo-for-google-captcha\u002F?ref=readme\" rel=\"nofollow ugc\">View Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FL2BziEOL3Fg?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>Free Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Add reCaptcha to:\n\u003Cul>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Reset password form\u003C\u002Fli>\n\u003Cli>Protected post password form\u003C\u002Fli>\n\u003Cli>Comments form\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fcontact-form\u002F?k=56575444122cff9ab3ee3e640efb001a\" rel=\"nofollow ugc\">Contact Form\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Ftestimonials\u002F\" rel=\"nofollow ugc\">Testimonials\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbws-login-register\" rel=\"ugc\">Login & Register Form\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Custom form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Hide reCaptcha for the allowlisted IP addresses\u003C\u002Fli>\n\u003Cli>Disable the submit button\u003C\u002Fli>\n\u003Cli>Validity check of keys in admin panel\u003C\u002Fli>\n\u003Cli>Available reCaptcha themes for Version 2:\n\u003Cul>\n\u003Cli>Light (default)\u003C\u002Fli>\n\u003Cli>Dark\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Flimit-attempts\u002F?k=1b1865c556920231995b35c3ed889415\" rel=\"nofollow ugc\">Limit Attempts\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Hide reCaptcha in your forms for certain user roles\u003C\u002Fli>\n\u003Cli>Hide reCaptcha Badge (Invisible and V3)\u003C\u002Fli>\n\u003Cli>Supports reCaptcha:\n\u003Cul>\n\u003Cli>Version 2\u003C\u002Fli>\n\u003Cli>Version 3\u003C\u002Fli>\n\u003Cli>Invisible reCAPTCHA\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Add custom code via plugin settings page\u003C\u002Fli>\n\u003Cli>Compatible with latest WordPress version\u003C\u002Fli>\n\u003Cli>Incredibly simple settings for fast setup without modifying code\u003C\u002Fli>\n\u003Cli>Detailed step-by-step documentation and videos\u003C\u002Fli>\n\u003Cli>Multilingual and RTL ready\u003C\u002Fli>\n\u003Cli>Edit error message\u003C\u002Fli>\n\u003Cli>Hide Login page\u003C\u002Fli>\n\u003Cli>Force Strong Passwords\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Pro Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>All features from Free version included plus:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Compatible with:\n\u003Cul>\n\u003Cli>Contact Form 7 (since v 3.4)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fsubscriber\u002F?k=e6d1742fcf1806a39afac207f7920cf3\" rel=\"nofollow ugc\">Subscriber\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fmultilanguage\u002F?k=e48e145002e4b2472e568a81d171b888\" rel=\"nofollow ugc\">Multilanguage\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Jetpack contact form\u003C\u002Fli>\n\u003Cli>Fast Secure Contact Form\u003C\u002Fli>\n\u003Cli>MailChimp for WordPress\u003C\u002Fli>\n\u003Cli>Ninja Forms\u003C\u002Fli>\n\u003Cli>Gravity Forms\u003C\u002Fli>\n\u003Cli>WPForms\u003C\u002Fli>\n\u003Cli>Caldera Forms\u003C\u002Fli>\n\u003Cli>Elementor Pro Contact Forms\u003C\u002Fli>\n\u003Cli>LearnDash Registration Page\u003C\u002Fli>\n\u003Cli>BuddyBoss\u003C\u002Fli>\n\u003Cli>Formidable Forms\u003C\u002Fli>\n\u003Cli>Forminator Forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with WooCommerce:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Register form\u003C\u002Fli>\n\u003Cli>Lost password form\u003C\u002Fli>\n\u003Cli>Checkout billing form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with Divi:\n\u003Cul>\n\u003Cli>Divi Builder Contact form\u003C\u002Fli>\n\u003Cli>Divi Builder Login form\u003C\u002Fli>\n\u003Cli>Divi Theme Contact form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with bbPress:\n\u003Cul>\n\u003Cli>New Topic form\u003C\u002Fli>\n\u003Cli>Reply form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with BuddyPress:\n\u003Cul>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Comments form\u003C\u002Fli>\n\u003Cli>Create a Group form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with Forums – wpForo:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>New Topic form\u003C\u002Fli>\n\u003Cli>Reply form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with Ultimate Member:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Profile form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with BWS Login Register Form:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Forgot Password form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with Easy Digital Downloads Form:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Forgot Password form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Select reCaptcha language manually\u003C\u002Fli>\n\u003Cli>Activate reCaptcha on certain Weekdays and Hours\u003C\u002Fli>\n\u003Cli>Change size: normal or compact (for version 2)\u003C\u002Fli>\n\u003Cli>Configure all subsites on the network\u003C\u002Fli>\n\u003Cli>Block disposable emails\u003C\u002Fli>\n\u003Cli>Administrator Login notification\u003C\u002Fli>\n\u003Cli>Get answer to your support question within one business day (\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fsupport-policy\u002F\" rel=\"nofollow ugc\">Support Policy\u003C\u002Fa>)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fgoogle-captcha\u002F?k=c4f2e3054fdbaca8a2b61554cbb9638c\" rel=\"nofollow ugc\">Upgrade to Pro Now\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>If you have a feature suggestion or idea you’d like to see in the plugin, we’d love to hear about it! \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002Fhc\u002Fen-us\u002Frequests\u002Fnew\" rel=\"nofollow ugc\">Suggest a Feature\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Documentation & Videos\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdocumentation\u002Frecaptcha\u002Frecaptcha-user-guide\u002F\" rel=\"nofollow ugc\">[Doc] User Guide\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdocumentation\u002Fhow-to-install-a-wordpress-product\u002Fhow-to-install-a-wordpress-plugin\u002F\" rel=\"nofollow ugc\">[Doc] Installation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdocumentation\u002Fhow-to-purchase-a-wordpress-plugin\u002Fhow-to-purchase-wordpress-plugin-from-bestwebsoft\u002F\" rel=\"nofollow ugc\">[Doc] Purchase\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.youtube.com\u002Fwatch?v=RUJ9VwZLFSY\" rel=\"nofollow ugc\">[Video] Installation Instruction\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=X-ccRdEFcM0\" rel=\"nofollow ugc\">[Video] Purchase, Installation & Configuration\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=ZFv6txtic0Y\" rel=\"nofollow ugc\">[Video] User Guide\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Help & Support\u003C\u002Fh4>\n\u003Cp>Visit our Help Center if you have any questions, our friendly Support Team is happy to help – \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fsupport.bestwebsoft.com\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Affiliate Program\u003C\u002Fh4>\n\u003Cp>Earn 20% commission by selling the premium WordPress plugins and themes by BestWebSoft – \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Faffiliate\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fbestwebsoft.com\u002Faffiliate\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Translation\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Czech (cs_CZ) (thanks to \u003Ca href=\"mailto:kucerami@gmail.com\" rel=\"nofollow ugc\">Michal Kučera\u003C\u002Fa>, www.n0lim.it, \u003Ca href=\"mailto:info@pamadessoft.cz\" rel=\"nofollow ugc\">PaMaDeSSoft\u003C\u002Fa>, www.pamadessoft.cz)\u003C\u002Fli>\n\u003Cli>French (fr_FR)\u003C\u002Fli>\n\u003Cli>German (de_DE)\u003C\u002Fli>\n\u003Cli>Japanese (ja)\u003C\u002Fli>\n\u003Cli>Italian (it_IT)\u003C\u002Fli>\n\u003Cli>Portuguese (pt_BR)\u003C\u002Fli>\n\u003Cli>Romanian (ro_RO)\u003C\u002Fli>\n\u003Cli>Russian (ru_RU)\u003C\u002Fli>\n\u003Cli>Spanish (es_ES)\u003C\u002Fli>\n\u003Cli>Turkish (tr_TR) (thanks to \u003Ca href=\"mailto:admin@lordiz.com\" rel=\"nofollow ugc\">Lordiz\u003C\u002Fa>, www.lordiz.com)\u003C\u002Fli>\n\u003Cli>Ukrainian (uk)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Some of these translations are not complete. We are constantly adding new features which should be translated. If you would like to create your own language pack or update the existing one, you can send \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FTranslating_WordPress\" rel=\"nofollow ugc\">the text of PO and MO files\u003C\u002Fa> to \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002Fhc\u002Fen-us\u002Frequests\u002Fnew\" rel=\"nofollow ugc\">BestWebSoft\u003C\u002Fa> and we’ll add it to the plugin. You can download the latest version of the program for work with PO and MO \u003Ca href=\"http:\u002F\u002Fwww.poedit.net\u002Fdownload.php\" rel=\"nofollow ugc\">files Poedit\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Recommended Plugins\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fupdater\u002F?k=f47f3eb3d739725d592249dbd129f7ff\" rel=\"nofollow ugc\">Updater\u003C\u002Fa> – Automatically check and update WordPress website core with all installed plugins and themes to the latest versions.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fcontact-form\u002F?k=56575444122cff9ab3ee3e640efb001a\" rel=\"nofollow ugc\">Contact Form\u003C\u002Fa> – Simple contact form plugin any WordPress website must have.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fsubscriber\u002F?k=e6d1742fcf1806a39afac207f7920cf3\" rel=\"nofollow ugc\">Subscriber\u003C\u002Fa> – Add email newsletter sign up form to WordPress posts, pages and widgets. Collect data and subscribe your users.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fmultilanguage\u002F?k=e48e145002e4b2472e568a81d171b888\" rel=\"nofollow ugc\">Multilanguage\u003C\u002Fa> – Translate WordPress website content to other languages manually. Create multilingual pages, posts, widgets, menus, etc.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>lib\u002Frecaptchalib.php – Copyright © 2007. Mike Crawford, Ben Maurer (reCAPTCHA – \u003Ca href=\"http:\u002F\u002Frecaptcha.net\" rel=\"nofollow ugc\">http:\u002F\u002Frecaptcha.net\u003C\u002Fa>). All Rights Reserved.\u003C\u002Fli>\n\u003Cli>The plugin uses Google Recaptcha (Google LLC) services to process data and protect against spam. \u003Ca href=\"https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002F\u003C\u002Fa> Terms of service \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fterms\" rel=\"nofollow ugc\">https:\u002F\u002Fpolicies.google.com\u002Fterms\u003C\u002Fa>. Privacy Policy \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fprivacy\" rel=\"nofollow ugc\">https:\u002F\u002Fpolicies.google.com\u002Fprivacy\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>This plugin incorporates a license verification mechanism to ensure the authenticity of your license key and provide access to premium features and updates. The verification process involves connecting securely to our external service hosted at BestWebSoft website \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\" rel=\"nofollow ugc\">https:\u002F\u002Fbestwebsoft.com\u003C\u002Fa>. Privacy Policy \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fbestwebsoft.com\u002Fprivacy-policy\u002F\u003C\u002Fa>. End user license agreement \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fend-user-license-agreement\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fbestwebsoft.com\u002Fend-user-license-agreement\u002F\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","Protect WordPress website forms from spam entries with Google reCAPTCHA.",100000,6607298,78,390,"2026-02-25T08:45:00.000Z","6.5",[106,107,108,109,23],"anti-spam-security","antispam","captcha","captha","https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fgoogle-captcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-captcha.1.86.zip",98,"2025-01-03 00:00:00",{"slug":115,"name":116,"version":117,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":99,"downloaded":122,"rating":112,"num_ratings":123,"last_updated":124,"tested_up_to":51,"requires_at_least":125,"requires_php":71,"tags":126,"homepage":71,"download_link":128,"security_score":13,"vuln_count":49,"unpatched_count":28,"last_vuln_date":129,"fetched_at":30},"wps-limit-login","WPS Limit Login","1.5.9.2","NicolasKulka","https:\u002F\u002Fprofiles.wordpress.org\u002Fnicolaskulka\u002F","\u003Ch4>Français\u003C\u002Fh4>\n\u003Cp>Limitez le nombre de tentatives de connexion possibles via la page de connexion et en utilisant les cookies auth.\u003Cbr \u002F>\nWordPress par défaut permet des tentatives de connexion illimitées soit via la page de connexion ou en envoyant des cookies spéciaux. Cela permet aux mots de passe (ou hashs) d’être craqués via la force brute relativement facilement.\u003Cbr \u002F>\nWPS Limit login limite les tentatives de connexion et bloque l’envoi d’autres tentatives à une adresse Internet après l’atteinte d’une limite spécifiée, ce qui rend une attaque par force brute difficile, voire impossible.\u003C\u002Fp>\n\u003Cp>Caractéristiques:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Limiter le nombre de nouvelles tentatives lors de la connexion (pour chaque IP). Ceci est entièrement personnalisable.\u003C\u002Fli>\n\u003Cli>Limitez le nombre de tentatives de connexion en utilisant des cookies d’autorisation de la même manière.\u003C\u002Fli>\n\u003Cli>Informe l’utilisateur sur les tentatives restantes ou le temps de verrouillage sur la page de connexion.\u003C\u002Fli>\n\u003Cli>Journalisation et notification par courriel facultative.\u003C\u002Fli>\n\u003Cli>Gère le serveur derrière le proxy inverse (reverse proxy).\u003C\u002Fli>\n\u003Cli>Il est possible de mettre en liste blanche \u002F liste noire les adresses IP.\u003C\u002Fli>\n\u003Cli>Compatibilité avec le pare-feu du site Web Sucuri.\u003C\u002Fli>\n\u003Cli>Protection de passerelle \u003Cstrong>XMLRPC\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Woocommerce\u003C\u002Fstrong> protection de la page de connexion.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Compatibilité multi-sites\u003C\u002Fstrong> avec des paramètres MU supplémentaires.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Pour en savoir plus lisez l’article suivant : \u003Ca href=\"https:\u002F\u002Fwpformation.com\u002Fwps-limit-login\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwpformation.com\u002Fwps-limit-login\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Ce plugin vous est gentiment proposé par \u003Ca href=\"https:\u002F\u002Fwww.wpserveur.net\u002F?refwps=14&campaign=wpslimitlogin\" rel=\"nofollow ugc\">WPServeur\u003C\u002Fa> l’hébergeur spécialisé WordPress.\u003C\u002Fp>\n\u003Cp>Découvrez également nos autres extensions gratuites :\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fwps-hide-login\u002F\" rel=\"nofollow ugc\">WPS Hide Login\u003C\u002Fa> pour changer votre URL de connexion en ce que vous voulez.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fwps-bidouille\u002F\" rel=\"nofollow ugc\">WPS Bidouille\u003C\u002Fa> pour optimiser votre WordPress et faire le plein d’infos.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Ffr.wordpress.org\u002Fplugins\u002Fwps-cleaner\u002F\" rel=\"nofollow ugc\">WPS Cleaner\u003C\u002Fa> pour nettoyer votre site WordPress.\u003C\u002Fp>\n\u003Cp>Ce plugin est seulement maintenu, ce qui signifie que nous ne garantissons pas un support gratuit. Envisagez de signaler un problème et soyez patient.\u003C\u002Fp>\n\u003Ch4>English\u003C\u002Fh4>\n\u003Cp>Limit the number of login attempts that possible both through the normal login as well as using the auth cookies.\u003Cbr \u002F>\nWordPress by default allows unlimited login attempts either through the login page or by sending special cookies. This allows passwords (or hashes) to be cracked via brute-force relatively easily.\u003Cbr \u002F>\nWPS Limit login blocks an Internet address from making further attempts after a specified limit on retries has been reached, making a brute-force attack difficult or impossible.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Limit the number of retry attempts when logging in (per each IP). This is fully customizable.\u003C\u002Fli>\n\u003Cli>Limit the number of attempts to log in using authorization cookies in the same way.\u003C\u002Fli>\n\u003Cli>Informs the user about the remaining retries or lockout time on the login page.\u003C\u002Fli>\n\u003Cli>Optional logging and optional email notification.\u003C\u002Fli>\n\u003Cli>Handles server behind the reverse proxy.\u003C\u002Fli>\n\u003Cli>It is possible to whitelist\u002Fblacklist IPs.\u003C\u002Fli>\n\u003Cli>Sucuri Website Firewall compatibility.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>XMLRPC\u003C\u002Fstrong> gateway protection.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Woocommerce\u003C\u002Fstrong> login page protection.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi-site\u003C\u002Fstrong> compatibility with extra MU settings.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>To learn more read the following article: \u003Ca href=\"https:\u002F\u002Fwpformation.com\u002Fwps-limit-login\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwpformation.com\u002Fwps-limit-login\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>This plugin is kindly proposed by \u003Ca href=\"https:\u002F\u002Fwww.wpserveur.net\u002F?refwps=14&campaign=wpslimitlogin\" rel=\"nofollow ugc\">WPServeur\u003C\u002Fa> the specialized WordPress web host.\u003C\u002Fp>\n\u003Cp>Découvrez également nos autres extensions gratuites :\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwps-hide-login\u002F\" rel=\"ugc\">WPS Hide Login\u003C\u002Fa> to change your login URL to whatever you want.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwps-bidouille\u002F\" rel=\"ugc\">WPS Bidouille\u003C\u002Fa> to optimize your WordPress and get more info.\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwps-cleaner\u002F\" rel=\"ugc\">WPS Cleaner\u003C\u002Fa> to clean your WordPress site.\u003C\u002Fp>\n\u003Cp>This plugin is only maintained, which means we do not guarantee free support. Consider reporting a problem and be patient.\u003C\u002Fp>\n","WPS Limit login limit connection attempts by IP address",931525,83,"2025-06-24T07:45:00.000Z","4.2",[127,22,88,24,115],"authentication","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwps-limit-login.1.5.9.2.zip","2019-07-23 00:00:00",{"attackSurface":131,"codeSignals":397,"taintFlows":583,"riskAssessment":677,"analyzedAt":687},{"hooks":132,"ajaxHandlers":382,"restRoutes":390,"shortcodes":391,"cronEvents":392,"entryPointCount":396,"unprotectedCount":396},[133,139,143,145,148,151,154,158,161,164,167,169,172,175,177,179,181,183,186,188,191,194,197,200,202,205,208,211,214,217,220,223,225,227,230,233,236,238,241,244,247,250,253,256,258,261,264,267,270,272,274,276,279,281,284,287,290,295,300,303,309,313,317,321,324,328,331,334,338,340,343,345,347,352,357,361,363,367,371,374,377,380],{"type":134,"name":135,"callback":136,"file":137,"line":138},"action","plugins_loaded","anonymous","includes\\class-wporlogin.php",69,{"type":134,"name":140,"callback":141,"file":137,"line":142},"init","run_updater_logic",191,{"type":134,"name":135,"callback":136,"file":137,"line":144},219,{"type":134,"name":146,"callback":136,"file":137,"line":147},"wp_trash_post",294,{"type":134,"name":149,"callback":136,"file":137,"line":150},"before_delete_post",295,{"type":134,"name":152,"callback":136,"file":137,"line":153},"admin_notices",296,{"type":155,"name":156,"callback":136,"file":137,"line":157},"filter","page_row_actions",297,{"type":134,"name":159,"callback":136,"file":137,"line":160},"load-post.php",302,{"type":134,"name":162,"callback":136,"file":137,"line":163},"admin_menu",312,{"type":134,"name":165,"callback":136,"file":137,"line":166},"admin_init",313,{"type":134,"name":165,"callback":136,"file":137,"line":168},314,{"type":134,"name":170,"callback":136,"file":137,"line":171},"admin_enqueue_scripts",315,{"type":134,"name":173,"callback":136,"file":137,"line":174},"update_option_wporlogin_limit_whitelist",316,{"type":134,"name":152,"callback":136,"file":137,"line":176},319,{"type":134,"name":152,"callback":136,"file":137,"line":178},320,{"type":134,"name":152,"callback":136,"file":137,"line":180},321,{"type":134,"name":152,"callback":136,"file":137,"line":182},323,{"type":134,"name":184,"callback":136,"file":137,"line":185},"wp_dashboard_setup",328,{"type":134,"name":165,"callback":136,"file":137,"line":187},332,{"type":134,"name":189,"callback":136,"file":137,"line":190},"pre_get_posts",469,{"type":155,"name":192,"callback":136,"file":137,"line":193},"wp_nav_menu_objects",472,{"type":155,"name":195,"callback":136,"file":137,"line":196},"wp_page_menu_args",473,{"type":155,"name":198,"callback":136,"file":137,"line":199},"wp_list_pages_excludes",474,{"type":134,"name":189,"callback":136,"file":137,"line":201},477,{"type":155,"name":203,"callback":136,"file":137,"line":204},"get_pages",480,{"type":155,"name":206,"callback":136,"file":137,"line":207},"rest_page_query",481,{"type":134,"name":209,"callback":136,"file":137,"line":210},"template_redirect",486,{"type":155,"name":212,"callback":136,"file":137,"line":213},"login_redirect",504,{"type":134,"name":215,"callback":136,"file":137,"line":216},"wp_logout",505,{"type":134,"name":218,"callback":136,"file":137,"line":219},"login_init",508,{"type":134,"name":221,"callback":136,"file":137,"line":222},"login_head",509,{"type":134,"name":221,"callback":136,"file":137,"line":224},510,{"type":134,"name":221,"callback":136,"file":137,"line":226},511,{"type":134,"name":228,"callback":136,"file":137,"line":229},"login_enqueue_scripts",512,{"type":155,"name":231,"callback":136,"file":137,"line":232},"login_headertext",513,{"type":155,"name":234,"callback":136,"file":137,"line":235},"login_headerurl",514,{"type":134,"name":228,"callback":136,"file":137,"line":237},517,{"type":134,"name":239,"callback":136,"file":137,"line":240},"login_form",518,{"type":155,"name":242,"callback":136,"file":137,"line":243},"wp_authenticate_user",519,{"type":134,"name":245,"callback":136,"file":137,"line":246},"register_form",520,{"type":155,"name":248,"callback":136,"file":137,"line":249},"registration_errors",521,{"type":134,"name":251,"callback":136,"file":137,"line":252},"lostpassword_form",522,{"type":155,"name":254,"callback":136,"file":137,"line":255},"lostpassword_errors",523,{"type":155,"name":242,"callback":136,"file":137,"line":257},526,{"type":134,"name":259,"callback":136,"file":137,"line":260},"wp_login_failed",527,{"type":134,"name":262,"callback":136,"file":137,"line":263},"wp_login",528,{"type":155,"name":265,"callback":136,"file":137,"line":266},"login_errors",529,{"type":134,"name":268,"callback":136,"file":137,"line":269},"wporlogin_daily_maintenance_hook",530,{"type":134,"name":239,"callback":136,"file":137,"line":271},538,{"type":134,"name":245,"callback":136,"file":137,"line":273},539,{"type":134,"name":228,"callback":136,"file":137,"line":275},540,{"type":134,"name":277,"callback":136,"file":137,"line":278},"login_footer",541,{"type":134,"name":140,"callback":136,"file":137,"line":280},542,{"type":155,"name":282,"callback":136,"file":137,"line":283},"wp_login_errors",543,{"type":155,"name":285,"callback":136,"file":137,"line":286},"get_avatar",544,{"type":155,"name":288,"callback":136,"file":137,"line":289},"template_include",552,{"type":134,"name":291,"callback":292,"file":293,"line":294},"customize_controls_enqueue_scripts","enqueue_controls_script","includes\\customizer\\class-customizer-assets.php",23,{"type":134,"name":296,"callback":297,"file":298,"line":299},"customize_preview_init","enqueue_preview_script","includes\\customizer\\class-customizer-preview.php",17,{"type":134,"name":291,"callback":301,"file":298,"line":302},"enqueue_preview_script_controls",18,{"type":134,"name":304,"callback":305,"priority":306,"file":307,"line":308},"wp_enqueue_scripts","enqueue_custom_login_css",20,"includes\\customizer\\class-wporlogin-custom-css-loader.php",22,{"type":134,"name":304,"callback":310,"priority":311,"file":307,"line":312},"clean_foreign_assets",9999,26,{"type":134,"name":314,"callback":315,"file":316,"line":312},"customize_register","register_customizer","includes\\customizer\\class-wporlogin-customizer.php",{"type":134,"name":318,"callback":319,"file":320,"line":302},"customize_save_after","generate_dynamic_login_css","includes\\customizer\\class-wporlogin-dynamic-css-generator.php",{"type":134,"name":322,"callback":319,"file":320,"line":323},"update_option_remove_language_wporlogin",19,{"type":134,"name":325,"callback":326,"file":327,"line":294},"customize_controls_print_styles","print_custom_styles","includes\\customizer\\sections\\class-background.php",{"type":134,"name":325,"callback":329,"file":327,"line":330},"print_styles",184,{"type":134,"name":314,"callback":332,"file":327,"line":333},"register",228,{"type":134,"name":335,"callback":336,"file":327,"line":337},"customize_controls_print_footer_scripts","print_control_logic_scripts",230,{"type":134,"name":325,"callback":329,"file":327,"line":339},600,{"type":134,"name":228,"callback":136,"file":341,"line":342},"public\\class-wporlogin-public-assets.php",33,{"type":134,"name":304,"callback":136,"file":341,"line":344},35,{"type":134,"name":304,"callback":136,"file":341,"line":346},39,{"type":155,"name":348,"callback":349,"file":350,"line":351},"login_display_language_dropdown","__return_false","public\\class-wporlogin-public-design.php",59,{"type":134,"name":353,"callback":354,"file":355,"line":356},"wp_loaded","intercept_login_page","public\\class-wporlogin-public-hide-login.php",29,{"type":155,"name":358,"callback":359,"priority":47,"file":355,"line":360},"site_url","filter_site_url",32,{"type":155,"name":362,"callback":359,"priority":47,"file":355,"line":342},"network_site_url",{"type":155,"name":364,"callback":365,"priority":47,"file":355,"line":366},"wp_redirect","filter_wp_redirect",34,{"type":155,"name":368,"callback":369,"priority":47,"file":355,"line":370},"lostpassword_url","filter_lostpassword_url",37,{"type":134,"name":140,"callback":372,"file":355,"line":373},"block_wp_login",40,{"type":134,"name":140,"callback":375,"file":355,"line":376},"block_dashboard_access",44,{"type":134,"name":228,"callback":378,"file":379,"line":323},"hide_native_form_css","public\\social\\class-wporlogin-social-only-register.php",{"type":155,"name":248,"callback":381,"priority":47,"file":379,"line":308},"block_native_registration_attempts",[383,387],{"action":384,"nopriv":385,"callback":136,"hasNonce":385,"hasCapCheck":385,"file":137,"line":386},"wporlogin_dismiss_notice_generic",false,322,{"action":388,"nopriv":385,"callback":136,"hasNonce":385,"hasCapCheck":385,"file":137,"line":389},"delete-notice-wp",324,[],[],[393],{"hook":268,"callback":268,"file":394,"line":395},"includes\\class-wporlogin-activator.php",140,2,{"dangerousFunctions":398,"sqlUsage":399,"outputEscaping":414,"fileOperations":34,"externalRequests":49,"nonceChecks":49,"capabilityChecks":581,"bundledLibraries":582},[],{"prepared":47,"raw":400,"locations":401},4,[402,406,408,411],{"file":403,"line":404,"context":405},"admin\\class-wporlogin-admin-dashboard.php",56,"$wpdb->get_var() with variable interpolation",{"file":403,"line":407,"context":405},60,{"file":409,"line":410,"context":405},"admin\\class-wporlogin-admin.php",524,{"file":409,"line":412,"context":413},532,"$wpdb->get_results() with variable interpolation",{"escaped":415,"rawEcho":416,"locations":417},244,85,[418,422,424,426,428,430,433,435,437,439,441,443,445,447,449,451,453,454,456,458,460,461,462,464,466,468,470,472,475,476,478,480,481,483,485,488,490,492,494,497,499,501,503,505,506,508,511,513,516,518,519,520,522,524,526,528,530,532,535,536,537,538,540,542,544,546,548,551,553,556,557,559,561,563,564,566,568,570,572,573,574,576,578,579,580],{"file":419,"line":420,"context":421},"admin\\class-wporlogin-admin-notices.php",141,"raw output",{"file":419,"line":423,"context":421},242,{"file":419,"line":425,"context":421},348,{"file":419,"line":427,"context":421},364,{"file":419,"line":429,"context":421},369,{"file":431,"line":432,"context":421},"admin\\partials\\wporlogin-admin-automation.php",170,{"file":434,"line":356,"context":421},"admin\\partials\\wporlogin-admin-dashboard-widget.php",{"file":434,"line":436,"context":421},47,{"file":434,"line":438,"context":421},52,{"file":434,"line":440,"context":421},88,{"file":434,"line":442,"context":421},105,{"file":434,"line":444,"context":421},106,{"file":434,"line":446,"context":421},130,{"file":434,"line":448,"context":421},131,{"file":434,"line":450,"context":421},132,{"file":434,"line":452,"context":421},133,{"file":434,"line":85,"context":421},{"file":434,"line":455,"context":421},151,{"file":434,"line":457,"context":421},152,{"file":434,"line":459,"context":421},153,{"file":434,"line":432,"context":421},{"file":434,"line":330,"context":421},{"file":434,"line":463,"context":421},198,{"file":434,"line":465,"context":421},212,{"file":434,"line":467,"context":421},226,{"file":434,"line":469,"context":421},240,{"file":434,"line":471,"context":421},256,{"file":473,"line":474,"context":421},"admin\\partials\\wporlogin-admin-display.php",368,{"file":473,"line":102,"context":421},{"file":473,"line":477,"context":421},448,{"file":473,"line":479,"context":421},449,{"file":473,"line":479,"context":421},{"file":473,"line":482,"context":421},451,{"file":473,"line":484,"context":421},484,{"file":486,"line":487,"context":421},"admin\\partials\\wporlogin-admin-hide-login.php",45,{"file":486,"line":489,"context":421},54,{"file":486,"line":491,"context":421},63,{"file":486,"line":493,"context":421},91,{"file":495,"line":496,"context":421},"admin\\partials\\wporlogin-admin-limit-login.php",90,{"file":495,"line":498,"context":421},190,{"file":495,"line":500,"context":421},195,{"file":495,"line":502,"context":421},197,{"file":495,"line":504,"context":421},199,{"file":495,"line":465,"context":421},{"file":495,"line":507,"context":421},223,{"file":509,"line":510,"context":421},"admin\\partials\\wporlogin-admin-redirects.php",67,{"file":509,"line":512,"context":421},135,{"file":514,"line":515,"context":421},"admin\\partials\\wporlogin-admin-review-notice.php",12,{"file":514,"line":517,"context":421},14,{"file":514,"line":302,"context":421},{"file":514,"line":294,"context":421},{"file":514,"line":521,"context":421},28,{"file":523,"line":13,"context":421},"admin\\partials\\wporlogin-admin-social.php",{"file":327,"line":525,"context":421},158,{"file":350,"line":527,"context":421},178,{"file":350,"line":529,"context":421},179,{"file":350,"line":531,"context":421},180,{"file":533,"line":534,"context":421},"public\\class-wporlogin-public-security.php",129,{"file":533,"line":448,"context":421},{"file":533,"line":452,"context":421},{"file":533,"line":452,"context":421},{"file":533,"line":539,"context":421},137,{"file":533,"line":541,"context":421},143,{"file":533,"line":543,"context":421},144,{"file":533,"line":545,"context":421},147,{"file":533,"line":547,"context":421},148,{"file":549,"line":550,"context":421},"public\\class-wporlogin-public-social.php",154,{"file":549,"line":552,"context":421},155,{"file":554,"line":555,"context":421},"templates\\template-wporlogin-emailconfirm.php",13,{"file":554,"line":521,"context":421},{"file":554,"line":558,"context":421},81,{"file":554,"line":560,"context":421},114,{"file":562,"line":515,"context":421},"templates\\template-wporlogin-login.php",{"file":562,"line":312,"context":421},{"file":562,"line":565,"context":421},68,{"file":562,"line":567,"context":421},80,{"file":562,"line":569,"context":421},118,{"file":571,"line":515,"context":421},"templates\\template-wporlogin-recovery.php",{"file":571,"line":312,"context":421},{"file":571,"line":407,"context":421},{"file":571,"line":575,"context":421},95,{"file":577,"line":515,"context":421},"templates\\template-wporlogin-register.php",{"file":577,"line":312,"context":421},{"file":577,"line":510,"context":421},{"file":577,"line":27,"context":421},6,[],[584,603,611,635,649,662],{"entryPoint":585,"graph":586,"unsanitizedCount":28,"severity":602},"ajax_dismiss_notice (admin\\class-wporlogin-admin-notices.php:418)",{"nodes":587,"edges":599},[588,593],{"id":589,"type":590,"label":591,"file":419,"line":592},"n0","source","$_POST",422,{"id":594,"type":595,"label":596,"file":419,"line":597,"wp_function":598},"n1","sink","update_option() [Settings Manipulation]",426,"update_option",[600],{"from":589,"to":594,"sanitized":601},true,"low",{"entryPoint":604,"graph":605,"unsanitizedCount":28,"severity":602},"\u003Cclass-wporlogin-admin-notices> (admin\\class-wporlogin-admin-notices.php:0)",{"nodes":606,"edges":609},[607,608],{"id":589,"type":590,"label":591,"file":419,"line":592},{"id":594,"type":595,"label":596,"file":419,"line":597,"wp_function":598},[610],{"from":589,"to":594,"sanitized":601},{"entryPoint":612,"graph":613,"unsanitizedCount":49,"severity":602},"register_settings (admin\\class-wporlogin-admin.php:173)",{"nodes":614,"edges":631},[615,618,619,623,625,629],{"id":589,"type":590,"label":616,"file":409,"line":617},"$_POST['wporlogin_hide_login_slug']",309,{"id":594,"type":595,"label":596,"file":409,"line":617,"wp_function":598},{"id":620,"type":590,"label":621,"file":409,"line":622},"n2","$_POST['wporlogin_hide_register_slug']",310,{"id":624,"type":595,"label":596,"file":409,"line":622,"wp_function":598},"n3",{"id":626,"type":590,"label":627,"file":409,"line":628},"n4","$_POST['wporlogin_hide_recovery_slug']",311,{"id":630,"type":595,"label":596,"file":409,"line":628,"wp_function":598},"n5",[632,633,634],{"from":589,"to":594,"sanitized":385},{"from":620,"to":624,"sanitized":385},{"from":626,"to":630,"sanitized":385},{"entryPoint":636,"graph":637,"unsanitizedCount":28,"severity":602},"\u003Cclass-wporlogin-admin> (admin\\class-wporlogin-admin.php:0)",{"nodes":638,"edges":645},[639,640,641,642,643,644],{"id":589,"type":590,"label":616,"file":409,"line":617},{"id":594,"type":595,"label":596,"file":409,"line":617,"wp_function":598},{"id":620,"type":590,"label":621,"file":409,"line":622},{"id":624,"type":595,"label":596,"file":409,"line":622,"wp_function":598},{"id":626,"type":590,"label":627,"file":409,"line":628},{"id":630,"type":595,"label":596,"file":409,"line":628,"wp_function":598},[646,647,648],{"from":589,"to":594,"sanitized":601},{"from":620,"to":624,"sanitized":601},{"from":626,"to":630,"sanitized":601},{"entryPoint":650,"graph":651,"unsanitizedCount":28,"severity":602},"\u003Cwporlogin-admin-limit-login> (admin\\partials\\wporlogin-admin-limit-login.php:0)",{"nodes":652,"edges":660},[653,656],{"id":589,"type":590,"label":654,"file":495,"line":655},"$_SERVER",8,{"id":594,"type":595,"label":657,"file":495,"line":658,"wp_function":659},"echo() [XSS]",93,"echo",[661],{"from":589,"to":594,"sanitized":601},{"entryPoint":663,"graph":664,"unsanitizedCount":49,"severity":676},"\u003Cclass-wporlogin-public-limit-login> (public\\class-wporlogin-public-limit-login.php:0)",{"nodes":665,"edges":674},[666,670],{"id":589,"type":590,"label":667,"file":668,"line":669},"$_SERVER (x3)","public\\class-wporlogin-public-limit-login.php",48,{"id":594,"type":595,"label":671,"file":668,"line":672,"wp_function":673},"get_row() [SQLi]",108,"get_row",[675],{"from":589,"to":594,"sanitized":385},"high",{"summary":678,"deductions":679},"The \"wporlogin\" v3.0.2 plugin presents a mixed security posture. While it demonstrates some good practices like a high percentage of prepared SQL statements and proper output escaping, it also has significant security concerns. The plugin exposes two AJAX handlers without authentication checks, creating a considerable attack surface for unauthorized actions. Furthermore, taint analysis revealed flows with unsanitized paths, including one of high severity, indicating potential for injection vulnerabilities that could be exploited if data is not properly validated.\n\nThe plugin's vulnerability history is clean, with no recorded CVEs. This suggests that in the past, it has not been a target or has been developed with a high level of security awareness. However, the current static analysis findings, particularly the unprotected AJAX endpoints and the high-severity taint flow, indicate that the current version has introduced new risks. The absence of past vulnerabilities should not lead to complacency, as the present code analysis highlights areas needing immediate attention.\n\nIn conclusion, \"wporlogin\" v3.0.2 has a concerning number of unprotected entry points and a high-severity taint flow, outweighing its strengths in SQL prepared statements and output escaping. The clean vulnerability history is a positive sign but does not mitigate the immediate risks identified in the code. It is recommended that the unprotected AJAX handlers be secured with appropriate authentication and capability checks, and the identified unsanitized path flow be thoroughly investigated and remediated.",[680,682,684],{"reason":681,"points":47},"AJAX handlers without auth checks",{"reason":683,"points":515},"High severity unsanitized path taint flow",{"reason":685,"points":686},"Unprotected entry points: 2",5,"2026-03-16T18:29:23.488Z",{"wat":689,"direct":698},{"assetPaths":690,"generatorPatterns":693,"scriptPaths":694,"versionParams":695},[691,692],"\u002Fwp-content\u002Fplugins\u002Fwporlogin\u002Fassets\u002Fcss\u002Fwporlogin-admin.css","\u002Fwp-content\u002Fplugins\u002Fwporlogin\u002Fassets\u002Fjs\u002Fwporlogin-admin.js",[],[692],[696,697],"wporlogin-admin.css?ver=","wporlogin-admin.js?ver=",{"cssClasses":699,"htmlComments":702,"htmlAttributes":706,"restEndpoints":709,"jsGlobals":710,"shortcodeOutput":712},[700,701],"wporlogin-admin-wrap","wporlogin-page-settings",[703,704,705],"\u003C!-- NEW -->","\u003C!-- AGREGAMOS EL \"NEW\" ROJO AL SUBMENÚ \"SOCIAL LOGIN\" -->","\u003C!-- Creamos el HTML para la etiqueta roja -->",[707,708],"data-plugin-name=\"Wporlogin\"","data-plugin-version=\"3.0.2\"",[],[711],"wporlogin_admin_params",[]]