WordPress Users ID Show

Guide & FAQ

How to use

1. Enter site URL
Input your WordPress homepage (with or without protocol).

2. Fetch
The tool queries /wp-json/wp/v2/users and the legacy /?author= endpoint to reveal any exposed usernames.

3. Inspect
Copy individual usernames or open the full JSON in a new tab for deeper analysis.

FAQ

Why check author leaks?
Public author slugs let attackers brute-force your WP admin login, wasting server resources — especially common with automated attacks from abroad.

How to protect?
Disable wp-json user endpoints, block /?author= rewrites, use a custom login URL and strong passwords.

Data privacy
All fetched data stays in your browser; nothing is saved server-side.

Need help?
Visit our Support Center for assistance or suggestions.