WP-Safety

Block Temporary Email Security & Risk Analysis

wordpress.org/plugins/block-temporary-email

This plugin stops users from giving you disposable or fake email addresses when signing up. This helps reduce spam and fraud.

500 active installs v1.7.5 PHP + WP 2.9+ Updated Aug 12, 2025
check-emaildisposable-emailfake-emailtemporary-emailvalidate-email
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Block Temporary Email Safe to Use in 2026?

Generally Safe

Score 100/100

Block Temporary Email has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7mo ago
Risk Assessment

The 'block-temporary-email' v1.7.5 plugin exhibits a mixed security posture. On the positive side, the plugin demonstrates good practices regarding database interactions, utilizing prepared statements for all SQL queries and showing no critical or high-severity taint analysis findings. The absence of known vulnerabilities (CVEs) and a history of no recorded vulnerabilities also suggests a generally well-maintained codebase. However, significant security concerns arise from the attack surface analysis. The plugin exposes four AJAX handlers, all of which lack authentication checks. This creates a substantial entry point for potential attackers to interact with the plugin's functionality without proper authorization. Furthermore, the plugin lacks nonce checks for its AJAX actions, which is a critical oversight that can lead to Cross-Site Request Forgery (CSRF) vulnerabilities. While direct output escaping is not a major issue with 73% being properly escaped, the overall lack of authorization and nonce verification on its AJAX endpoints poses a considerable risk.

Key Concerns

  • 4 AJAX handlers without auth checks
  • 0 Nonce checks on AJAX handlers
Vulnerabilities
None known

Block Temporary Email Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Block Temporary Email Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
4
11 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
2
Bundled Libraries
0

Output Escaping

73% escaped15 total outputs
Attack Surface
4 unprotected

Block Temporary Email Attack Surface

Entry Points4
Unprotected4

AJAX Handlers 4

authwp_ajax_kb_process_ajax_submitistempmail.php:67
noprivwp_ajax_kb_process_ajax_submitistempmail.php:68
authwp_ajax_kb_process_advanced_form_submitistempmail.php:72
noprivwp_ajax_kb_process_advanced_form_submitistempmail.php:73
WordPress Hooks 14
actionplugins_loadedistempmail.php:29
actionadmin_menuistempmail.php:34
actionadmin_initistempmail.php:35
filterplugin_action_linksistempmail.php:37
filteris_emailistempmail.php:39
filterregistration_errorsistempmail.php:41
filteruser_profile_update_errorsistempmail.php:42
filterlogin_errorsistempmail.php:43
filterkadence_blocks_form_submission_successistempmail.php:69
filterkadence_blocks_form_submission_messagesistempmail.php:70
filterkadence_blocks_advanced_form_submission_successistempmail.php:74
filterkadence_blocks_advanced_form_submission_messagesistempmail.php:75
filtersanitize_emailistempmail.php:82
filterkadence_blocks_advanced_form_processed_fieldsistempmail.php:99
Maintenance & Trust

Block Temporary Email Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedAug 12, 2025
PHP min version
Downloads8K

Community Trust

Rating90/100
Number of ratings8
Active installs500
Alternatives

Block Temporary Email Alternatives

Ultimate Email Validator – Validate and Stop Fake, Temporary and Disposable Emails

Ultimate Email Validator – Validate and Stop Fake, Temporary and Disposable Emails

ultimate-email-validator

A
100

Enhance Website Security: Stop Fake, Temporary, and Disposable Emails Across Registration, Contact Form 7, Mailchimp, Woocommerce, and More!

10 No CVEs
Temp Mail Detector – Block Temporary Emails

Temp Mail Detector – Block Temporary Emails

temp-mail-detector-block-temporary-emails

A
100

Detect and block temporary emails from registering on your website using the Temp Mail Detector plugin.

0 No CVEs
Email Blocklist

Email Blocklist

email-blocklist

A
100

Keep your WordPress site clean by blocking signups and comments from temporary or disposable email domains. 100% free, no paid APIs.

10 No CVEs
Block Disposable Email

Block Disposable Email

block-disposable-email-addresses

A
85

This plugin detects one-time email addresses (disposable email, trashmail, mailinator, 10minutemail) and helps to keep your userbase and comments clea …

10 No CVEs
Disposable Email Blocker – Contact Form 7

Disposable Email Blocker – Contact Form 7

disposable-email-blocker-contact-form-7

A
100

Now You Can Easily Block/Prevent Disposable/Temporary Spam Emails From Submitting on CF7 Form.

10 No CVEs
Developer Profile

Block Temporary Email Developer Profile

IsTempMail

1 plugin · 500 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Block Temporary Email

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

FAQ

Frequently Asked Questions about Block Temporary Email