Iterating users while user iteration is suppressed

You can use the REST API to list users:

/wp-json/wp/v2/users

Add that to the end of your website URL.

Plugins such as Wordfence can prevent anonymous users from accessing this.

You can also disable the REST API if you do not use it.

Related Posts:

  1. Basic auth WordPress REST API dilemma
  2. security+best practices: root or www-data on a wordpress content folder?
  3. Any reason to be concerned by a wave of “zombie” blog signups?
  4. How to change WordPress user ID?
  5. Setting WP Admin passwords to expire
  6. What do spammers gain by signing up as a user?
  7. How can I secure a WordPress blog using OpenID from a single provider?
  8. Rule to redirect non logged in User to Custom Registration/login Page in .htaccess file
  9. Restrict access of admin uploads to certain logged-in users?
  10. Force user to change their password on the frontend at the first login and password policy
  11. Should I encrypt the response that triggers an Ajax action? Is nonce sufficient?
  12. Are there mutiple ways to get usernames (as a hacker)
  13. Reset Password policy
  14. How do I protect user_activation_key?
  15. Failed login attempts
  16. Separate Out Real Users
  17. WordPress Password security related questions
  18. Preventing user enumeration: which logic is better?
  19. Force users to use password with specifications
  20. throttle/limit a logged in user’s http requests to specific page on a per day basis
  21. Require confirmation of current user’s email before updating database and before send_email_change_email
  22. Securely log in a user without a password using a link?
  23. What techniques can a user employ to achieve a password rated “strong” in the WordPress password checker
  24. WordPress – Security Question at Login from User’s Meta Data
  25. How to Merge Two Authors Into One?
  26. Whats the best way to share user data across multiple WordPress websites?
  27. User-edit role setting distinct from wp_capabilities? [closed]
  28. Delete all subscribers from wp_users and wp_usermeta a few thousand at a time
  29. Hide Admin Menu for Specific User ID who has administrator Role
  30. Problem with Hebrew characters in username
  31. Allowing an email as the username?
  32. Get the name of user who updated post
  33. Display edit link if post author is current user
  34. What does a security risk in a plugin look like?
  35. Do not allow users to create new posts and pages
  36. Send activation email to user after signup [duplicate]
  37. wp_update_user() does not update user_data
  38. How to add follow functionality to multi-author wordpress site?
  39. Search multiple meta keys at once
  40. Get user input from a form
  41. Redirecting user after updating profile?
  42. ACF Upload Image in front-end with custom form
  43. User fields that can be edited by administrator?
  44. Admins can’t edit each other’s posts
  45. Update user_login to change username
  46. Attach to wp-login.php and xmlrpc.php
  47. Multiple authors with different “author roles”
  48. Exclude subscriber users from user list
  49. How can I check if a user’s email exists in the database
  50. XMLRPC filtering through htaccess not working
  51. Getting users by specific capability, not role
  52. Creating user in Firebase after WordPress user registration
  53. Exclude admin from user list
  54. Headers Content-Security-Policy CSP Major Issue
  55. How to display total number of post done by user, it should display at authors page wordpress [duplicate]
  56. Can i add password field into my wp registration form?
  57. User capability for editing their own comments
  58. Delete User via Frontend
  59. Allow Contributors to Upload Files
  60. Limit a number of users returned from sorting users by latest posts function
  61. Will wordpress tools import do everything I need to copy one site to another
  62. OAuth 2 and saving the authenticated user
  63. How to notify specific users when i’m posting/modifying a new post
  64. Disable directory browsing of uploads folder
  65. User description only displayed for logged user
  66. Allow users to create post without logging in?
  67. How to get the count
  68. Assign random (and unique) user meta upon registration
  69. What is correct way to change user’s email?
  70. Display the line breaks in user bio without using html
  71. wp_dropdown_users() to include null value
  72. Adding more fields to the add user page on dashboard
  73. Selectively Disabling PHP via .htaccess in Root Directory
  74. Change User Role based on Point System Issue
  75. Remove users access to dashboard
  76. Allow users to upload flash videos?
  77. Need to use WordPress page as authentication for different service
  78. How can I clone a suscriber profile in wordpress
  79. Reading additional fields in PMPro
  80. How to put the ‘assign to new user’ select when you delete a user that has custom post type posts, but no normal posts
  81. How can I show a button in WordPress but make it unclickable unless logged in?
  82. How to display extra fields for user
  83. How to make WordPress ‘editor’ role to list/view/add/edit users only with the role ‘author’?
  84. get_users – Sort by a different meta_value than search criteria
  85. How to prevent deleteting specific user?
  86. How to get the username for a custom link
  87. To save user info on the same page by form submiting
  88. Groups roles & capabilities
  89. Button for users to upgrade their user role + Button to show current user role!
  90. Restrict Access to the User Profile
  91. Hash user emails in database?
  92. How do I Limit the number of pages a non-subscriber can see?
  93. How to get only 1 role from user
  94. Retrieve New user’s ID
  95. Restrict access to certain dashboard pages based on user id
  96. how to show logged in members username in wordpress content
  97. User agent stylesheet distorting site [closed]
  98. MySQL query to list users who never signed in
  99. Send email to user if their role is changed to Author
  100. Can’t retrieve user email address with REST API