[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$faHXj2FTyQsOztvmvZKixsXsgA9ZKHGoKHzirFxKDB-A":3},{"slug":4,"display_name":5,"profile_url":6,"plugin_count":7,"total_installs":8,"avg_security_score":9,"avg_patch_time_days":10,"trust_score":11,"computed_at":12,"plugins":13},"securelywp","SecurelyWP","https:\u002F\u002Fprofiles.wordpress.org\u002Fsecurelywp\u002F",1,20,100,30,94,"2026-05-19T20:58:07.459Z",[14],{"slug":4,"name":15,"version":16,"author":5,"author_profile":6,"description":17,"short_description":18,"active_installs":8,"downloaded":19,"rating":20,"num_ratings":20,"last_updated":21,"tested_up_to":22,"requires_at_least":23,"requires_php":24,"tags":25,"homepage":24,"download_link":30,"security_score":9,"vuln_count":20,"unpatched_count":20,"last_vuln_date":31,"fetched_at":32},"SecurelyWP – all-in-one security","1.0.10","\u003Cp>SecurelyWP is a hassle-free security plugin that makes your WordPress site safer the moment you activate it. Most features work out of the box, with optional CAPTCHA and two-factor authentication (2FA) configuration for enhanced protection. It includes strong security features, system details, security headers, CAPTCHA integration, and 2FA to keep your site secure and healthy.\u003C\u002Fp>\n\u003Cp>Why Choose SecurelyWP?\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Works Out of the Box: Most security features activate automatically upon installation.\u003C\u002Fli>\n\u003Cli>Comprehensive Protection: Guards against hacking, malicious files, form spam, and unauthorized access.\u003C\u002Fli>\n\u003Cli>Lightweight: Designed to run smoothly without affecting your site’s speed or performance.\u003C\u002Fli>\n\u003Cli>Free Features: Includes system details, security headers, CAPTCHA, and 2FA to monitor and protect your site.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>Hide WordPress Version\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Why: Stops hackers from targeting weaknesses in your WordPress version.  \u003C\u002Fli>\n\u003Cli>Impact: Good protection with no effect on your site’s appearance.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Disable PHP Execution in Uploads Folder\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Why: Prevents harmful scripts from running if someone uploads a malicious file.  \u003C\u002Fli>\n\u003Cli>Impact: Strong defense against file-based attacks.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Prevent User Enumeration\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Why: Blocks hackers from guessing usernames through sneaky methods.  \u003C\u002Fli>\n\u003Cli>Impact: Keeps your user list safe from prying eyes.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Detect & Warn About “admin” Username\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Why: Alerts you if your site uses the risky “admin” username.  \u003C\u002Fli>\n\u003Cli>Impact: Big security boost if you change the username.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Disable File Editing in Dashboard\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Why: Stops anyone from modifying your site’s code through the WordPress dashboard.  \u003C\u002Fli>\n\u003Cli>Impact: Major safeguard against unauthorized code changes.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Force HTTPS for Login & Admin\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Why: Ensures your login and admin pages use a secure connection.  \u003C\u002Fli>\n\u003Cli>Impact: Critical for keeping your credentials safe.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Basic Brute Force Protection (Lite)\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Why: Temporarily blocks repeated failed login attempts.  \u003C\u002Fli>\n\u003Cli>Impact: Strong protection against login attacks.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>System Details\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Why: Shows important info about your site to monitor its health.  \u003C\u002Fli>\n\u003Cli>Impact: Keeps you informed about your site’s status.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Security Headers\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Why: Adds HTTP headers to improve your site’s security.  \u003C\u002Fli>\n\u003Cli>Impact: Strengthens your site’s defense with minimal setup.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>CAPTCHA Protection (Cloudflare Turnstile)\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Why: Adds CAPTCHA to prevent spam and bot submissions.  \u003C\u002Fli>\n\u003Cli>Impact: Enhances form security with user-friendly CAPTCHA.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Two-Factor Authentication (2FA)\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Why: Adds an extra layer of security by requiring a second verification step during login.  \u003C\u002Fli>\n\u003Cli>Impact: Significantly reduces the risk of unauthorized access.  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>2FA Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Authenticator App (TOTP): Use apps like Google Authenticator or Authy for time-based codes.\u003Cbr \u002F>\n– Email 2FA: Receive codes via email for verification.\u003Cbr \u002F>\n– Recovery Codes: Generate emergency codes for access if other methods are unavailable.\u003Cbr \u002F>\n– Per-User Settings: Each user can configure their own 2FA preferences.\u003Cbr \u002F>\n– Multisite Support: Super admins can enforce 2FA network-wide.\u003Cbr \u002F>\n– Flexible Options: Choose primary 2FA method from TOTP, Email 2FA, or Recovery Codes.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Supported Forms, Plugins & Multisite for CAPTCHA:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Core WordPress: Login, Registration, Lost Password, Comment\u003Cbr \u002F>\n– E-commerce & Membership: WooCommerce Checkout, MemberPress, Ultimate Member, WP-Members\u003Cbr \u002F>\n– Form Plugins: WPForms, Gravity Forms, Contact Form 7 (CF7), Formidable Forms, Forminator, Elementor Pro, Easy Digital Downloads (EDD), Mailchimp for WordPress\u003Cbr \u002F>\n– Community \u002F Forums: BuddyPress, bbPress\u003Cbr \u002F>\n– Multisite: Multisite Signup Forms\u003C\u002Fp>\n\u003Ch3>How to Set Up CAPTCHA with Cloudflare Turnstile\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\u003Cstrong>Sign Up for Cloudflare:\u003C\u002Fstrong> Go to https:\u002F\u002Fwww.cloudflare.com\u002F and create a free account or log in.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Add Your Site:\u003C\u002Fstrong> Click “Add a Site” in the dashboard and enter your domain.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Access Turnstile:\u003C\u002Fstrong> Navigate to the “Turnstile” section in the Cloudflare dashboard.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Create a Turnstile Widget:\u003C\u002Fstrong>\n\u003Cul>\n\u003Cli>Click “Add Widget”  \u003C\u002Fli>\n\u003Cli>Provide a name (e.g., “SecurelyWP CAPTCHA”)  \u003C\u002Fli>\n\u003Cli>Add Hostnames (your domain, e.g., example.com) \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Click “Add”  \u003C\u002Fli>\n\u003Cli>Choose the widget type (“Managed”)  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Get Your Keys:\u003C\u002Fstrong> Copy the Site Key and Secret Key.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Add Keys to SecurelyWP:\u003C\u002Fstrong> Go to SecurelyWP > CAPTCHA Settings in WordPress \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> paste keys \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> enable CAPTCHA for desired forms.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Test Your CAPTCHA:\u003C\u002Fstrong> Visit a form to ensure the CAPTCHA widget appears and works correctly.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>How to Set Up Two-Factor Authentication\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\u003Cstrong>Access 2FA Settings:\u003C\u002Fstrong> Go to “Profile” > “Two-Factor Authentication” in your WordPress dashboard.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enable 2FA Methods:\u003C\u002Fstrong>\n\u003Cul>\n\u003Cli>Authenticator App: Scan the QR code or enter the secret into your app (Google Authenticator, Authy). Verify with a code.  \u003C\u002Fli>\n\u003Cli>Email 2FA: Enable to receive codes via email.  \u003C\u002Fli>\n\u003Cli>Recovery Codes: Generate emergency codes. Copy or download codes for safekeeping.  \u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Choose Primary Method:\u003C\u002Fstrong> Select your preferred 2FA method (Authenticator App, Email, or Recovery Codes).  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Test 2FA:\u003C\u002Fstrong> Log out and log in to verify the 2FA prompt appears below the login form.  \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multisite (Super Admins):\u003C\u002Fstrong> Enable network-wide 2FA enforcement for all users.\u003C\u002Fli>\n\u003C\u002Fol>\n","SecurelyWP is a simple security plugin that protects your WordPress site right after activation—no setup needed for most features.",934,0,"2025-11-22T01:28:00.000Z","6.8.5","5.0","",[26,27,28,29],"captcha","headers","security","two-factor-authentication-2fa","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsecurelywp.1.0.10.zip",null,"2026-04-16T10:56:18.058Z"]