Adds a secret URL key to access the login page and lets you disable XML-RPC, protecting against bruteforce attacks.
Prioritized issue groups from the latest Plugin Check scan
Security
25
2 issue groups
Maintainability
3
1 issue group
I18n
1
1 issue group
Repo Compliance
1
1 issue group
Sample message
All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '"<p>You can also see what prohibited users will see if they don't provide the key : <a target=\"_blank\" href=\"$badUrl\">$badUrl</a></p>"'.
Sample message
Processing form data without nonce verification.
Sample message
The plugin name includes a restricted term. Your chosen plugin name - "WP Login Door" - contains the restricted term "wp" which cannot be used at all in your plugin name.
Sample message
Missing $domain parameter in function call to __().
Sample message
Tested up to: 6.8 < 7.0. The "Tested up to" value in your plugin is not set to the current version of WordPress. This means your plugin will not show up in searches, as we require plugins to be compatible and documented as tested up to the most recent version of WordPress.
Potential connections found in static code analysis.
Outbound calls
3
External assets
0
Incoming endpoints
0
No external asset domains detected.
No public endpoints detected.
First score snapshot
v1.5
64
Latest
| Scan | Score | Findings | Errors | Warnings | Plugin | Check |
|---|---|---|---|---|---|---|
| Latest | 64 | 30 | 19 | 11 | v1.5 | 2.0.0 |
Author, categories, issues, domains, and nearby plugins.