[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fKsY50wxQ4ghF7nC6EZC6_66GFAmb3lDoxFrUfiQ5DdM":3,"$fS_xxDupCs_6HrDJvmHzk6r97sSRSwipuCMPjYQWoaXg":264,"$fMuBdo7wOCA8YzhrFiH7NO2EzD7gO5u7mcHL98nN-3ZA":269},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":30,"crawl_stats":26,"alternatives":37,"analysis":141,"fingerprints":247},"wptrigone-security","WPTrigone Security – Secure your website and store","1.0.0","Olivier \u002F WP Trigone","https:\u002F\u002Fprofiles.wordpress.org\u002Folivierwpt\u002F","\u003Cp>\u003Cstrong>WPTrigone Security\u003C\u002Fstrong> is a professional WordPress security plugin built for \u003Cstrong>business websites, corporate sites, and WooCommerce stores\u003C\u002Fstrong> that require a high level of protection without unnecessary complexity.\u003C\u002Fp>\n\u003Ch4>Key features\u003C\u002Fh4>\n\u003Cp>🛡️ Hide admin and login pages\u003Cbr \u002F>\n🛡️ Enable CAPTCHA on the login page\u003Cbr \u002F>\n🛡️ Disable PHP information disclosure\u003Cbr \u002F>\n🛡️ Hide PHP version\u003Cbr \u002F>\n🛡️ Disable XML-RPC\u003Cbr \u002F>\n🛡️ Hide WordPress version\u003Cbr \u002F>\n🛡️ Hide WooCommerce version\u003C\u002Fp>\n\u003Cp>⚡️ Protection against brute force attacks\u003Cbr \u002F>\n⚡️ WordPress login page hardening\u003Cbr \u002F>\n⚡️ Hardening of sensitive WordPress settings\u003Cbr \u002F>\n⚡️ Disabling unnecessary attack vectors\u003Cbr \u002F>\n⚡️ WordPress admin area protection\u003Cbr \u002F>\n⚡️ Security optimizations with no performance impact\u003Cbr \u002F>\n⚡️ WooCommerce compatible\u003Cbr \u002F>\n⚡️ No external services required\u003Cbr \u002F>\n⚡️ GDPR compliant (no data collection)\u003C\u002Fp>\n\u003Ch4>Built for professionals\u003C\u002Fh4>\n\u003Cp>WPTrigone Security is ideal for:\u003Cbr \u002F>\n✅ WordPress agencies\u003Cbr \u002F>\n✅ Freelancers\u003Cbr \u002F>\n✅ Managed WordPress hosting providers\u003Cbr \u002F>\n✅ High-value SEO or e-commerce websites\u003Cbr \u002F>\n✅ Clients looking for reliable and controlled security\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin integrates with Google reCAPTCHA to protect the login form against spam and automated abuse. Google reCAPTCHA is a security service provided by Google that helps distinguish between human users and automated bots. It is used to enhance login security.\u003C\u002Fp>\n\u003Cp>When the login form is displayed, the plugin loads the Google reCAPTCHA JavaScript. When a user submits the login form, the reCAPTCHA response token, the site’s secret key, and the user’s IP address are sent to Google’s reCAPTCHA service.\u003C\u002Fp>\n\u003Cp>This verification request is required to validate the reCAPTCHA challenge and determine whether the login attempt is legitimate.\u003C\u002Fp>\n\u003Cp>This service is provided by Google LLC:\u003Cbr \u002F>\nTerms of Service: https:\u002F\u002Fpolicies.google.com\u002Fterms Privacy Policy: https:\u002F\u002Fpolicies.google.com\u002Fprivacy\u003C\u002Fp>\n","Professional security plugin focused on hardening, and essential security best practices for business websites and WooCommerce stores.",0,53,"2026-04-01T15:39:00.000Z","6.9.4","6.0","7.4",[18,19,20,21,22],"captcha","login-security","secure","security","wordpress-security","https:\u002F\u002Fsecurity.wptrigone.fr\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwptrigone-security.1.0.0.zip",100,null,"2026-04-06T09:54:40.288Z","no_bundle",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"olivierwpt",2,96,30,91,"2026-05-20T09:28:50.535Z",[38,56,76,97,121],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":25,"downloaded":46,"rating":11,"num_ratings":11,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":53,"download_link":54,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":55},"virus-finder","Virus Finder","1.1.0","wphospital.hu","https:\u002F\u002Fprofiles.wordpress.org\u002Fwordpressvirusremoval\u002F","\u003Cp>Find viruses in your website with wphospital.hu. The plugin analyze all files, and shows the suspicious and virus files.\u003Cbr \u002F>\nAfter you can check it manually, and you can solve the problem!\u003C\u002Fp>\n","Find viruses in your WordPress easily. Virus scan, malware finder.",12440,"2026-03-30T11:19:00.000Z","7.0","2.8","",[19,20,21,52,22],"security-plugin","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Fvirus-finder\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fvirus-finder.1.1.0.zip","2026-04-16T10:56:18.058Z",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":64,"downloaded":65,"rating":66,"num_ratings":67,"last_updated":68,"tested_up_to":69,"requires_at_least":70,"requires_php":48,"tags":71,"homepage":50,"download_link":74,"security_score":75,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":55},"wordfence-login-security","Wordfence Login Security","1.1.15","wfryan","https:\u002F\u002Fprofiles.wordpress.org\u002Fwfryan\u002F","\u003Ch3>WORDFENCE LOGIN SECURITY\u003C\u002Fh3>\n\u003Cp>Wordfence Login Security contains a subset of the functionality found in the full Wordfence plugin: Two-factor Authentication, XML-RPC Protection and Login Page CAPTCHA.\u003C\u002Fp>\n\u003Cp>Are you looking for comprehensive WordPress Security? \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwordfence\u002F\" rel=\"ugc\">Check out the full Wordfence plugin\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>TWO-FACTOR AUTHENTICATION\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Two-factor authentication (2FA), one of the most secure forms of remote system authentication available.\u003C\u002Fli>\n\u003Cli>Use any TOTP-based authenticator app or service like Google Authenticator, Authy, 1Password or FreeOTP.\u003C\u002Fli>\n\u003Cli>Enable 2FA for any WordPress user role.\u003C\u002Fli>\n\u003Cli>Completely free to use, no limits or restrictions of any kind.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>LOGIN PAGE CAPTCHA\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easily enable Google ReCAPTCHA v3 on your login and registration pages.\u003C\u002Fli>\n\u003Cli>Stops bots from logging in without inconveniencing your site visitors.\u003C\u002Fli>\n\u003Cli>Robust protection against password guessing and credential stuffing attacks distributed across large IP pools\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>XML-RPC PROTECTION\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>XML-RPC is the biggest target for WordPress attacks, but is often overlooked.\u003C\u002Fli>\n\u003Cli>Protect XML-RPC with 2FA or disable it altogether if it’s not needed.\u003C\u002Fli>\n\u003C\u002Ful>\n","Secure your website with Wordfence Login Security, providing two-factor authentication, login and registration CAPTCHA, and XML-RPC protection.",70000,1246273,80,25,"2025-01-15T17:05:00.000Z","6.7.5","4.7",[72,18,19,21,73],"2fa","two-factor-authentication","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwordfence-login-security.1.1.15.zip",92,{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":33,"num_ratings":86,"last_updated":87,"tested_up_to":14,"requires_at_least":88,"requires_php":48,"tags":89,"homepage":92,"download_link":93,"security_score":94,"vuln_count":95,"unpatched_count":11,"last_vuln_date":96,"fetched_at":55},"bulletproof-security","BulletProof Security","7.1","AITpro","https:\u002F\u002Fprofiles.wordpress.org\u002Faitpro\u002F","\u003Cp>WordPress Security Protection: Malware scanner, Firewall, Login Security, DB Backup, Anti-Spam… View Security feature highlights below. View BulletProof Security feature details under the FAQ help section below. Effective, Reliable & Easy to use WordPress Security Plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>BulletProof Security is a proactive security plugin that automatically fixes 100+ known issues\u002Fconflicts with other plugins\u003C\u002Fstrong>.\u003Cbr \u002F>\n* \u003Ca href=\"https:\u002F\u002Fforum.ait-pro.com\u002Fforums\u002Ftopic\u002Fsetup-wizard-autofix\u002F\" title=\"BPS Setup Wizard AutoFix\" rel=\"nofollow ugc\">BPS Setup Wizard AutoFix\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>BulletProof Security Installation and Setup Video Tutorial\u003C\u002Fh4>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FRZ1ARaEE0_I?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>BulletProof Security Feature Highlights\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>One-Click Setup Wizard\u003C\u002Fli>\n\u003Cli>Setup Wizard AutoFix (AutoWhitelist|AutoSetup|AutoCleanup)\u003C\u002Fli>\n\u003Cli>MScan Malware Scanner\u003C\u002Fli>\n\u003Cli>.htaccess Website Security Protection (Firewalls)\u003C\u002Fli>\n\u003Cli>Hidden Plugin Folders|Files Cron (HPF)\u003C\u002Fli>\n\u003Cli>Login Security & Monitoring\u003C\u002Fli>\n\u003Cli>JTC-Lite (Limited version of BPS Pro JTC Anti-Spam|Anti-Hacker)\u003C\u002Fli>\n\u003Cli>Idle Session Logout (ISL)\u003C\u002Fli>\n\u003Cli>Auth Cookie Expiration (ACE)\u003C\u002Fli>\n\u003Cli>DB Backup: Full|Partial DB Backups | Manual|Scheduled DB Backups | Email Zip Backups | Cron Delete Old Backups\u003C\u002Fli>\n\u003Cli>DB Table Prefix Changer\u003C\u002Fli>\n\u003Cli>Security Logging\u003C\u002Fli>\n\u003Cli>HTTP Error Logging\u003C\u002Fli>\n\u003Cli>FrontEnd|BackEnd Maintenance Mode\u003C\u002Fli>\n\u003Cli>Extensive System Info (System Info page)\u003C\u002Fli>\n\u003Cli>WordPress Automatic Update Options\u003C\u002Fli>\n\u003Cli>Force Strong Passwords (FSP)\u003C\u002Fli>\n\u003Cli>Send email alerts when new Plugin & Theme updates are available\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>BulletProof Security Pro Feature Highlights\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>One-Click Setup Wizard\u003C\u002Fli>\n\u003Cli>Setup Wizard AutoFix (AutoWhitelist|AutoSetup|AutoCleanup)\u003C\u002Fli>\n\u003Cli>AutoRestore Intrusion Detection & Prevention System (ARQ IDPS)\u003C\u002Fli>\n\u003Cli>Quarantine Intrusion Detection & Prevention System (ARQ IDPS)\u003C\u002Fli>\n\u003Cli>Real-time File Monitor (IDPS)\u003C\u002Fli>\n\u003Cli>MScan Malware Scanner\u003C\u002Fli>\n\u003Cli>DB Monitor Intrusion Detection System (IDS)\u003C\u002Fli>\n\u003Cli>DB Diff Tool: data comparison tool\u003C\u002Fli>\n\u003Cli>DB Backup: Full|Partial DB Backups | Manual|Scheduled DB Backups | Email Zip Backups | Cron Delete Old Backups\u003C\u002Fli>\n\u003Cli>DB Status & Info: extensive database status & info\u003C\u002Fli>\n\u003Cli>Plugin Firewall (IP Firewall): Automated Whitelisting & IP Address Updated in Real-time\u003C\u002Fli>\n\u003Cli>JTC Anti-Spam|Anti-Hacker\u003C\u002Fli>\n\u003Cli>Uploads Folder Anti-Exploit Guard (UAEG)\u003C\u002Fli>\n\u003Cli>.htaccess Website Security Protection (Firewalls)\u003C\u002Fli>\n\u003Cli>Hidden Plugin Folders|Files Cron (HPF)\u003C\u002Fli>\n\u003Cli>Custom php.ini Website Security\u003C\u002Fli>\n\u003Cli>Login Security & Monitoring w\u002FDashboard Alerting|Status Display & additional options\u002Ffeatures\u003C\u002Fli>\n\u003Cli>Idle Session Logout (ISL)\u003C\u002Fli>\n\u003Cli>Auth Cookie Expiration (ACE)\u003C\u002Fli>\n\u003Cli>File|Folder Lock: File Locking | Detect & Lock Folders that were not created by you\u003C\u002Fli>\n\u003Cli>FrontEnd|BackEnd Maintenance Mode\u003C\u002Fli>\n\u003Cli>Security Logging\u003C\u002Fli>\n\u003Cli>HTTP Error Logging\u003C\u002Fli>\n\u003Cli>PHP Error Logging\u003C\u002Fli>\n\u003Cli>DB Table Prefix Changer\u003C\u002Fli>\n\u003Cli>Pro-Tools: 16 mini-plugins\u003C\u002Fli>\n\u003Cli>Heads Up Dashboard Status Display\u003C\u002Fli>\n\u003Cli>Extensive System Info (System Info page)\u003C\u002Fli>\n\u003Cli>WordPress Automatic Update Options\u003C\u002Fli>\n\u003Cli>Force Strong Passwords (FSP)\u003C\u002Fli>\n\u003Cli>Send email alerts when new Plugin & Theme updates are available\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.ait-pro.com\u002Fbps-features\u002F\" title=\"BulletProof Security Features\" rel=\"nofollow ugc\">View All BulletProof Security Pro Feature Details\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>BulletProof Security Recommended Video Tutorials\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fforum.ait-pro.com\u002Fvideo-tutorials\u002F#custom-code\" title=\"BulletProof Security Custom Code Video Tutorial\" rel=\"nofollow ugc\">BulletProof Security Custom Code Video Tutorial\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fforum.ait-pro.com\u002Fvideo-tutorials\u002F#security-log-firewall\" title=\"BulletProof Security Security Log Video Tutorial\" rel=\"nofollow ugc\">BulletProof Security Security Log Video Tutorial\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Help Info\u003C\u002Fh3>\n\u003Cp>For details about BulletProof Security plugin features and frequently asked questions see the \u003Ca href=\"https:\u002F\u002Fforum.ait-pro.com\u002Fforums\u002Ftopic\u002Fbulletproof-security-plugin-frequently-asked-questions\u002F\" title=\"AIT-pro.com Forum\" rel=\"nofollow ugc\">BulletProof Security Plugin Frequently Asked Questions\u003C\u002Fa> forum topic. Extensive Help Info can be found on the \u003Ca href=\"https:\u002F\u002Fforum.ait-pro.com\u002Fforums\u002Ftopic\u002Fread-me-first-free\u002F#bps-free-general-troubleshooting\" title=\"AIT-pro.com Forum\" rel=\"nofollow ugc\">AIT-pro.com Forum\u003C\u002Fa> website and by clicking the Question Mark Help buttons on BulletProof Security plugin pages.\u003C\u002Fp>\n","WordPress Security Protection: Malware scanner, Firewall, Login Security, DB Backup, Anti-Spam...",30000,4516831,674,"2025-12-08T15:11:00.000Z","5.0",[90,19,91,20,21],"firewall","malware-scanner","https:\u002F\u002Fforum.ait-pro.com\u002Fread-me-first\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbulletproof-security.7.1.zip",89,12,"2026-01-06 00:00:00",{"slug":98,"name":99,"version":100,"author":101,"author_profile":102,"description":103,"short_description":104,"active_installs":105,"downloaded":106,"rating":107,"num_ratings":108,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":50,"tags":112,"homepage":50,"download_link":117,"security_score":118,"vuln_count":119,"unpatched_count":11,"last_vuln_date":120,"fetched_at":55},"dologin","DoLogin Security","4.3","WPDO","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpdo5ea\u002F","\u003Cp>In one click, your WordPress login page will be pretected with the smart brute force attack protection! Any login attempts more than 6 in 10 minutes (default value) will be limited.\u003C\u002Fp>\n\u003Cp>Limit the number of login attempts through both the login and the auth cookies.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Two-factor Authentication login.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Text SMS message passcode for 2nd step verification support.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Cloudflare Turnstile (better than Google reCAPTCHA).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>GeoLocation (Continent\u002FCountry\u002FCity) or IP range to limit login attempts.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Passwordless login link.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Support Whitelist and Blacklist.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>GDPR compliant. With this feature turned on, all logged IPs get obfuscated (md5-hashed).\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>WooCommerce Login supported.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>XMLRPC gateway protection.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>API\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Call the function \u003Ccode>$link = function_exists( 'dologin_gen_link' ) ? dologin_gen_link( 'your plugin name or tag' ) : '';\u003C\u002Fcode> to generate one passwordless login link for the current user.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Call the function \u003Ccode>$link = function_exists( 'dologin_gen_link' ) ? dologin_gen_link( 'note\u002Ftip for this generation', $user_id ) : '';\u003C\u002Fcode> to generate a passwordless login link for the user which ID is \u003Ccode>$user_id\u003C\u002Fcode>.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The generated one-time used link will be expired after 7 days.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Define const \u003Ccode>SILENCE_INSTALL\u003C\u002Fcode> to avoid redirecting to setting page after installtion.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>CLI\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>List all passwordless links: \u003Ccode>wp dologin list\u003C\u002Fcode>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Generate a passwordless link for one username (for the login name \u003Ccode>root\u003C\u002Fcode>): \u003Ccode>wp dologin gen root\u003C\u002Fcode>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Delete a passwordless link w\u002F the ID in list (for the record w\u002F ID 5): \u003Ccode>wp dologin del 5\u003C\u002Fcode>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How GeoLocation works\u003C\u002Fh4>\n\u003Cp>When visitors hit the login page, this plugin will lookup the Geolocation info from API, compare the Geolocation setting (if has) with the whitelist\u002Fblacklist to decide if allow login attempts.\u003C\u002Fp>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>The online IP lookup service is provided by https:\u002F\u002Fwww.doapi.us. The provider’s privacy policy is https:\u002F\u002Fwww.doapi.us\u002Fprivacy.\u003C\u002Fp>\n\u003Cp>Based on the original code from Limit Login Attemps plugin and Limit Login Attemps Reloaded plugin.\u003C\u002Fp>\n","Easy Login. 2FA login. Passwordless login. Cloudflare Turnstile reCAPTCHA. GeoLocation (Continent\u002FCountry\u002FCity)\u002FIP range to limit login attempts.",7000,164314,90,13,"2025-06-11T14:21:00.000Z","6.8.5","4.0",[113,114,115,116,19],"2fa-login","cloudflare-turnstile-recaptcha","easy-login","geolocation-login-limit","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdologin.4.3.zip",98,4,"2023-10-24 00:00:00",{"slug":122,"name":123,"version":124,"author":125,"author_profile":126,"description":127,"short_description":128,"active_installs":129,"downloaded":130,"rating":131,"num_ratings":132,"last_updated":133,"tested_up_to":110,"requires_at_least":15,"requires_php":50,"tags":134,"homepage":50,"download_link":138,"security_score":25,"vuln_count":139,"unpatched_count":11,"last_vuln_date":140,"fetched_at":27},"cartpauj-register-captcha","Cartpauj Register Captcha","2.0.1","cartpauj","https:\u002F\u002Fprofiles.wordpress.org\u002Fcartpauj\u002F","\u003Cp>Cartpauj Register Captcha does one simple task. It prevents SPAM signups through WordPress’s default registration form. There are no settings to configure. Just activate and watch those SPAM sign-ups fade away! Requires openssl PHP library.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Adds CAPTCHA to the WordPress register sign-up form.\u003C\u002Fli>\n\u003Cli>NO settings or configurations to deal with.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Note\u003C\u002Fh3>\n\u003Cp>Built with a modified version of Phoca Captcha PHP library\u003Cbr \u002F>\nIcon by \u003Ca href=\"http:\u002F\u002Fwww.flaticon.com\u002Fauthors\u002Ffreepik\" rel=\"nofollow ugc\">Freepik\u003C\u002Fa>\u003C\u002Fp>\n","Cartpauj Register Captcha does one simple task. It prevents SPAM signups through WordPress' default registration form.",1000,38973,84,24,"2025-05-20T23:09:00.000Z",[18,19,135,136,137],"protection","recaptcha","turnstile","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcartpauj-register-captcha.2.0.1.zip",1,"2023-08-21 00:00:00",{"attackSurface":142,"codeSignals":233,"taintFlows":242,"riskAssessment":243,"analyzedAt":246},{"hooks":143,"ajaxHandlers":229,"restRoutes":230,"shortcodes":231,"cronEvents":232,"entryPointCount":11,"unprotectedCount":11},[144,150,154,158,161,165,170,173,176,181,185,190,195,199,203,207,209,213,216,220,223,226],{"type":145,"name":146,"callback":147,"file":148,"line":149},"action","admin_menu","add_menu_page","includes\u002Fclass-settings.php",14,{"type":145,"name":151,"callback":152,"file":148,"line":153},"admin_init","register_settings",15,{"type":145,"name":155,"callback":156,"file":148,"line":157},"admin_enqueue_scripts","enqueue_admin_scripts",16,{"type":145,"name":155,"callback":159,"file":148,"line":160},"enqueue_admin_style",17,{"type":145,"name":162,"callback":163,"file":164,"line":149},"init","remove_php_headers","includes\u002Ffeatures\u002Fclass-disable-php-disclosure.php",{"type":166,"name":167,"callback":168,"file":169,"line":149},"filter","xmlrpc_enabled","__return_false","includes\u002Ffeatures\u002Fclass-disable-xmlrpc.php",{"type":166,"name":171,"callback":172,"file":169,"line":160},"xmlrpc_methods","remove_methods",{"type":145,"name":162,"callback":174,"file":169,"line":175},"block_direct_access",20,{"type":145,"name":177,"callback":178,"priority":139,"file":179,"line":180},"wp_loaded","prevent_wp_admin_access","includes\u002Ffeatures\u002Fclass-hide-admin-pages.php",40,{"type":145,"name":182,"callback":183,"priority":139,"file":179,"line":184},"login_init","handle_login_process",41,{"type":166,"name":186,"callback":187,"priority":188,"file":179,"line":189},"site_url","rewrite_wp_login_url",10,43,{"type":166,"name":191,"callback":192,"priority":193,"file":179,"line":194},"lostpassword_url","lostpassword_url_add_custom_login_page",99,44,{"type":166,"name":196,"callback":197,"priority":193,"file":179,"line":198},"lostpassword_redirect","lostpassword_redirect_add_custom_login_page",45,{"type":145,"name":200,"callback":201,"file":179,"line":202},"login_form","login_form_add_nonce",47,{"type":145,"name":204,"callback":205,"file":206,"line":157},"admin_notices","maybe_show_notice","includes\u002Ffeatures\u002Fclass-hide-php-version.php",{"type":145,"name":162,"callback":208,"file":206,"line":160},"boot",{"type":166,"name":210,"callback":211,"file":212,"line":160},"the_generator","__return_empty_string","includes\u002Ffeatures\u002Fclass-hide-wp-version.php",{"type":145,"name":200,"callback":214,"file":215,"line":67},"render_recaptcha","includes\u002Ffeatures\u002Fclass-login-captcha.php",{"type":166,"name":217,"callback":218,"priority":34,"file":215,"line":219},"authenticate","verify_recaptcha",28,{"type":145,"name":204,"callback":221,"file":222,"line":67},"closure","wptrigone-security.php",{"type":145,"name":224,"callback":221,"file":222,"line":225},"plugins_loaded",66,{"type":145,"name":227,"callback":221,"file":222,"line":228},"before_woocommerce_init",75,[],[],[],[],{"dangerousFunctions":234,"sqlUsage":235,"outputEscaping":237,"fileOperations":11,"externalRequests":139,"nonceChecks":240,"capabilityChecks":11,"bundledLibraries":241},[],{"prepared":11,"raw":11,"locations":236},[],{"escaped":238,"rawEcho":11,"locations":239},38,[],3,[],[],{"summary":244,"deductions":245},"Based on the static analysis, \"wptrigone-security\" v1.0.3 exhibits a very strong security posture. The plugin demonstrates excellent adherence to WordPress security best practices by having zero unprotected entry points across AJAX handlers, REST API routes, shortcodes, and cron events. Furthermore, all SQL queries are properly prepared, and all output is correctly escaped, significantly mitigating common vulnerabilities like SQL injection and cross-site scripting. The absence of file operations and external HTTP requests also reduces the potential attack surface. The presence of three nonce checks, while not universal, is a positive sign of security awareness in its codebase. Taint analysis revealing no unsanitized paths further reinforces its robustness.\n\nThe vulnerability history for this plugin is exceptionally clean, with zero recorded CVEs. This suggests a history of secure development and prompt patching of any potential issues. The lack of any recorded vulnerabilities, regardless of severity, is a significant positive indicator. The plugin's developers appear to have a strong understanding of secure coding principles.  \n\nIn conclusion, \"wptrigone-security\" v1.0.3 presents a very low-risk profile. Its strengths lie in its minimal attack surface, excellent input validation and output sanitization, and a clean vulnerability history. The only minor observation is the lack of capability checks and the limited number of nonce checks, which could be areas for future enhancement, but do not represent a significant immediate risk given the other security measures in place. This plugin appears to be developed with security as a priority.",[],"2026-04-16T13:18:02.560Z",{"wat":248,"direct":257},{"assetPaths":249,"generatorPatterns":252,"scriptPaths":253,"versionParams":254},[250,251],"\u002Fwp-content\u002Fplugins\u002Fwptrigone-security\u002Fassets\u002Fcss\u002Fadmin-style.css","\u002Fwp-content\u002Fplugins\u002Fwptrigone-security\u002Fassets\u002Fjs\u002Fadmin-script.js",[],[251],[255,256],"wptrigone-security\u002Fassets\u002Fcss\u002Fadmin-style.css?ver=","wptrigone-security\u002Fassets\u002Fjs\u002Fadmin-script.js?ver=",{"cssClasses":258,"htmlComments":259,"htmlAttributes":260,"restEndpoints":261,"jsGlobals":262,"shortcodeOutput":263},[],[],[],[],[],[],{"error":265,"url":266,"statusCode":267,"statusMessage":268,"message":268},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fwptrigone-security\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":139,"versions":270},[271],{"version":6,"download_url":24,"svn_tag_url":272,"released_at":26,"has_diff":273,"diff_files_changed":274,"diff_lines":26,"trac_diff_url":26,"vulnerabilities":275,"is_current":265},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fwptrigone-security\u002Ftags\u002F1.0.0\u002F",false,[],[]]