[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fh2IVkEFbFEY_PfumlL2sU80rJ8W0DdCp4DKujNQFjw4":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":30,"fetched_at":31,"vulnerabilities":32,"developer":49,"crawl_stats":38,"alternatives":52,"analysis":160,"fingerprints":472},"blue-captcha","Blue Captcha","2.0.1","jotis","https:\u002F\u002Fprofiles.wordpress.org\u002Fjotis\u002F","\u003Cp>Blue Captcha is a powerful and highly customized WordPress plugin that effectively protects your WP blogs from spammers and unwanted persons. It is easily installed and provides high protection against spammers, bots or unwanted persons.\u003C\u002Fp>\n\u003Ch4>Do you like Blue Captcha? Then Support it!\u003C\u002Fh4>\n\u003Cp>If you like Blue Captcha, then you can help it grow by \u003Ca href=\"http:\u002F\u002Fmybluestuff.blogspot.gr\u002Fp\u002Fdonate_21.html\" rel=\"nofollow ugc\">\u003Cstrong>donating one dollar\u003C\u002Fstrong>\u003C\u002Fa>. Any donation will be highly appreciated and will help in further development of this plugin.\u003C\u002Fp>\n\u003Cp>Features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>It can be applied to any of the following : login form, registration form, commentary form or password recovery form\u003C\u002Fli>\n\u003Cli>It’s highly customized\u003C\u002Fli>\n\u003Cli>It has 7 predefined CAPTCHA difficulty levels to choose from – of course, you can adjust your CAPTCHA settings and create a custom level\u003C\u002Fli>\n\u003Cli>The possible CAPTCHA customizations are more than enough\u003C\u002Fli>\n\u003Cli>It can apply the same or totally different CAPTCHA settings on login form, registration form, commentary form and password recovery form\u003C\u002Fli>\n\u003Cli>It can display CAPTCHA to only non-registered users or registered users\u003C\u002Fli>\n\u003Cli>It can preview CAPTCHA image before applying it\u003C\u002Fli>\n\u003Cli>It supports 5 different fonts and 30 different background images\u003C\u002Fli>\n\u003Cli>It supports single or double CAPTCHA layer\u003C\u002Fli>\n\u003Cli>It can display up to 20(!) characters on Captcha Images\u003C\u002Fli>\n\u003Cli>It is capable of adding extra drawing (lines, circles, grid, transparent lines) on CAPTCHA image\u003C\u002Fli>\n\u003Cli>It is capable of keeping log file which registers all activities concerning user logins, user registrations, user comments and password recovery\u003C\u002Fli>\n\u003Cli>It has “Hall of Shame” (HoS)\u003C\u002Fli>\n\u003Cli>It provides blocking options as well\u003C\u002Fli>\n\u003Cli>It can export the entire log file or HoS into CSV file (Excel)\u003C\u002Fli>\n\u003Cli>With the help of log file and HoS, it’s easy to track down the IP address of spammers or unwanted persons and ban them for ever\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can visit \u003Ca href=\"http:\u002F\u002Fmybluestuff.blogspot.com\u002Fp\u002Fblue-captcha.html\" rel=\"nofollow ugc\">Blue Captcha Page\u003C\u002Fa> for more information.\u003C\u002Fp>\n\u003Ch4>Blue Captcha Translation\u003C\u002Fh4>\n\u003Cp>Blue Captcha is now available in Greek, Spanish, Russian, Italian, Brazilian-Portuguese, Serbo-Croatian & Slovenian.\u003C\u002Fp>\n\u003Cp>I would be very grateful if someone is willing to translate Blue Captcha to another language.\u003Cbr \u002F>\nFor those interested, the template translation file (“blue-captcha.pot”) is located on “languages” folder of blue-captcha plugin.\u003C\u002Fp>\n\u003Ch3>Contribution\u003C\u002Fh3>\n\u003Cp>Special Thanks To The Following Contributors:\u003C\u002Fp>\n\u003Cp>Leon Roskar (http:\u002F\u002Fwww.qb.si) => Slovenian Translation\u003Cbr \u002F>\nBorisa Djuraskovic (http:\u002F\u002Fwww.webhostinghub.com) => Serbo-Croatian Translation\u003Cbr \u002F>\nJoão Victor T. Magalhães => Brazilian Portuguese Translation\u003Cbr \u002F>\nEricka Morales Hernández (http:\u002F\u002Ftodoriesgo.net) => Italian Translation\u003Cbr \u002F>\nAlex Balashov => Russian Translation\u003Cbr \u002F>\nAndrew Kurtis (http:\u002F\u002Fwww.webhostinghub.com) => Spanish Translation\u003Cbr \u002F>\nChristos Bakopoulos => Arabic Translation\u003C\u002Fp>\n","Blue Captcha is a powerful and highly customized WordPress plugin that effectively protects your WP blogs from spammers and unwanted persons.",500,37193,94,15,"2026-02-08T17:30:00.000Z","6.9.4","4.9","7.0",[20,21,22,23,24],"captcha","protection","recaptcha","safety","security","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fblue-captcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblue-captcha.2.0.1.zip",99,1,0,"2025-03-24 00:00:00","2026-03-15T15:16:48.613Z",[33],{"id":34,"url_slug":35,"title":36,"description":37,"plugin_slug":4,"theme_slug":38,"affected_versions":39,"patched_in_version":40,"severity":41,"cvss_score":42,"cvss_vector":43,"vuln_type":44,"published_date":30,"updated_date":45,"references":46,"days_to_patch":48},"CVE-2025-28880","blue-captcha-reflected-cross-site-scripting","Blue Captcha \u003C= 1.7.4 - Reflected Cross-Site Scripting","The Blue Captcha plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.7.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C=1.7.4","2.0.0","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-05-07 13:58:39",[47],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F7c9820d1-e9f6-4875-842f-9d6565273515?source=api-prod",45,{"slug":7,"display_name":7,"profile_url":8,"plugin_count":28,"total_installs":11,"avg_security_score":27,"avg_patch_time_days":48,"trust_score":50,"computed_at":51},87,"2026-04-04T14:38:52.878Z",[53,74,96,115,137],{"slug":54,"name":55,"version":6,"author":56,"author_profile":57,"description":58,"short_description":59,"active_installs":60,"downloaded":61,"rating":62,"num_ratings":63,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":67,"tags":68,"homepage":67,"download_link":71,"security_score":72,"vuln_count":28,"unpatched_count":29,"last_vuln_date":73,"fetched_at":31},"cartpauj-register-captcha","Cartpauj Register Captcha","cartpauj","https:\u002F\u002Fprofiles.wordpress.org\u002Fcartpauj\u002F","\u003Cp>Cartpauj Register Captcha does one simple task. It prevents SPAM signups through WordPress’s default registration form. There are no settings to configure. Just activate and watch those SPAM sign-ups fade away! Requires openssl PHP library.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Adds CAPTCHA to the WordPress register sign-up form.\u003C\u002Fli>\n\u003Cli>NO settings or configurations to deal with.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Note\u003C\u002Fh3>\n\u003Cp>Built with a modified version of Phoca Captcha PHP library\u003Cbr \u002F>\nIcon by \u003Ca href=\"http:\u002F\u002Fwww.flaticon.com\u002Fauthors\u002Ffreepik\" rel=\"nofollow ugc\">Freepik\u003C\u002Fa>\u003C\u002Fp>\n","Cartpauj Register Captcha does one simple task. It prevents SPAM signups through WordPress' default registration form.",1000,38872,84,24,"2025-05-20T23:09:00.000Z","6.8.5","6.0","",[20,69,21,22,70],"login-security","turnstile","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcartpauj-register-captcha.2.0.1.zip",100,"2023-08-21 00:00:00",{"slug":75,"name":76,"version":77,"author":78,"author_profile":79,"description":80,"short_description":81,"active_installs":82,"downloaded":83,"rating":84,"num_ratings":85,"last_updated":86,"tested_up_to":65,"requires_at_least":87,"requires_php":88,"tags":89,"homepage":93,"download_link":94,"security_score":27,"vuln_count":28,"unpatched_count":29,"last_vuln_date":95,"fetched_at":31},"advanced-nocaptcha-recaptcha","CAPTCHA 4WP – Antispam CAPTCHA solution for WordPress","7.6.0","WPKube","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpkube\u002F","\u003Ch4>IMPORTANT NOTICE\u003C\u002Fh4>\n\u003Cp>CAPTCHA 4WP has been acquired by WPKube. \u003Ca href=\"https:\u002F\u002Fmelapress.com\u002Fcaptcha-4-wp-plugin-acquired-by-wpkube\u002F\" rel=\"nofollow ugc\">Read the announcement\u003C\u002Fa> for more information.\u003Cbr \u002F>\nWe, at Melapress, would like to take this opportunity to thank everyone who has used and supported CAPTCHA 4WP.\u003C\u002Fp>\n\u003Ch3>A free and easy-to-use CAPTCHA plugin for WordPress\u003C\u002Fh3>\n\u003Cp>Protect your WordPress forms and login pages from spam and automated attacks with \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002F\" rel=\"nofollow ugc\">CAPTCHA 4WP\u003C\u002Fa>. Choose from multiple ReCAPTCHA versions and strike the right balance between security and user experience.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Ffeatures\u002F\" rel=\"nofollow ugc\">Features\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fpricing\u002F\" rel=\"nofollow ugc\">Get the Premium!\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fgetting-started-with-captcha-4wp\u002F\" rel=\"nofollow ugc\">Getting Started\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Use the CAPTCHA 4WP plugin to add CAPTCHA checks to WordPress forms and logins. Choose from V2 (I’m not a robot), V2 Invisible, and V3 noCAPTCHA to ensure the best user experience at all times without compromosing security. Avoid false positives falling through the crack with V3 failover to ensure humans can still pass the test even if the result comes back below the passmark.\u003C\u002Fp>\n\u003Ch3>CAPTCHA 4WP key plugin features and capabilities\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Add CAPTCHA to WordPress native forms such as login pages, user registration and comments forms etc\u003C\u002Fli>\n\u003Cli>Supports multiple ReCAPTCHA versions\u003C\u002Fli>\n\u003Cli>User-friendly wizards for easy, hassle-free setup\u003C\u002Fli>\n\u003Cli>Set ReCAPTCHA V3 passmark score \u003C\u002Fli>\n\u003Cli>ReCAPTCHA failover configuration (ensure no prospect is incorrectly marked as spam)\u003C\u002Fli>\n\u003Cli>Plugin automatically detects visitors’ language and shows CAPTCHA in that language\u003C\u002Fli>\n\u003Cli>Much more\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Upgrade to CAPTCHA 4WP Premium and get even more\u003C\u002Fh3>\n\u003Cp>With the premium edition of CAPTCHA 4WP, you can choose from a wider range of CAPTCHA service providers, 1-click WooCommerce and other 3rd party plugin support, whitelisting, and much more.\u003C\u002Fp>\n\u003Ch3>Premium features list\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Everything in the free version\u003C\u002Fli>\n\u003Cli>Add CAPTCHA from hCaptcha and Cloudflare Turnstile on your websites, both free and GDPR compliant\u003C\u002Fli>\n\u003Cli>Add Geoblocking on forms and WordPress comments form (block \u002F limit form submissions or comment posting by country)\u003C\u002Fli>\n\u003Cli>Customization options for the CAPTCHA checks text, visual and position on the forms\u003C\u002Fli>\n\u003Cli>One-click integration with WooCommerce\u003C\u002Fli>\n\u003Cli>One-click integration with Contact Form 7, Gravity Forms, WPForms, BuddyPress & other plugins\u003C\u002Fli>\n\u003Cli>Much more\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Refer to the \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Ffeatures\u002F\" rel=\"nofollow ugc\">CAPTCHA 4WP plugin features and benefits page\u003C\u002Fa> to learn more about the benefits of upgrading to the Premium version of CAPTCHA 4WP.\u003C\u002Fp>\n\u003Ch3>Free and premium support\u003C\u002Fh3>\n\u003Cp>Support for CAPTCHA 4WP is free through the WordPress support forums.\u003C\u002Fp>\n\u003Cp>Premium support for paid customer support is provided via one-to-one email. Upgrade to Premium to benefit from premium support.\u003C\u002Fp>\n\u003Cp>For any other queries, feedback, or if you simply want to get in touch with us, please use our \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fsubmit-ticket\u002F\" rel=\"nofollow ugc\">contact form\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>As featured on:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.wpbeginner.com\u002Fplugins\u002Fhow-to-add-captcha-in-wordpress-login-and-registration-form\u002F\" rel=\"nofollow ugc\">WP Beginner\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.elegantthemes.com\u002Fblog\u002Fwordpress\u002Fwordpress-captcha\" rel=\"nofollow ugc\">Elegant Themes\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.isitwp.com\u002Fbest-wordpress-captcha-plugins\u002F\" rel=\"nofollow ugc\">IsItWP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwplift.com\u002Fbest-wordpress-captcha-plugins\" rel=\"nofollow ugc\">WPLift\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftesterwp.com\u002Fbest-free-captcha-wordpress-plugins\u002F\" rel=\"nofollow ugc\">TesterWP\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Related links and documentation:\u003C\u002Fh3>\n\u003Cp>You can find more detailed information about CAPTCHA tests and the benefits you can take advantage of, and the plugin in the links below:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fwhy-need-captcha-wordpress-website\u002F\" rel=\"nofollow ugc\">Why you need CAPTCHA on your WordPress website\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdifferent-types-captcha-checks-wordpress\u002F\" rel=\"nofollow ugc\">The different types of CAPTCHA for websites\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fcaptcha-recaptcha-nocaptcha-differences\u002F\" rel=\"nofollow ugc\">What is the difference between CAPTCHA, ReCAPTCHA, and NoCAPTCHA?\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fgetting-started-with-captcha-4wp\u002F\" rel=\"nofollow ugc\">Getting started with CAPTCHA 4WP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fhow-to-add-captcha-to-woocommerce-forms\u002F\" rel=\"nofollow ugc\">How to add CAPTCHA on WooCommerce forms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fhow-to-add-captcha-on-wpforms-forms\u002F\" rel=\"nofollow ugc\">How to add CAPTCHA on WPForms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fhow-to-add-captcha-on-gravity-forms-forms\u002F\" rel=\"nofollow ugc\">How to add CAPTCHA on Gravity Forms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fhow-to-show-captcha-on-failed-logins\u002F\" rel=\"nofollow ugc\">How to show CAPTCHA on failed logins\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002F\" rel=\"nofollow ugc\">Official Melapress website\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Installing CAPTCHA 4WP\u003C\u002Fh3>\n\u003Ch3>From within WordPress\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Navigate to “Plugins”page and click the “Add New” button\u003C\u002Fli>\n\u003Cli>Search for “CAPTCHA 4WP”\u003C\u002Fli>\n\u003Cli>Cick install and after that activate the plugin\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Manually\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Download the plugin from the WordPress plugins repository\u003C\u002Fli>\n\u003Cli>Unzip the zip file and upload the folder to the \u002Fwp-content\u002Fplugins\u002F directory\u003C\u002Fli>\n\u003Cli>Activate CAPTCHA 4WP through the “Plugins” menu in WordPress\u003C\u002Fli>\n\u003C\u002Fol>\n","Use CAPTCHA to stop spam and allow customers & users to interact with your website easily. Block fake accounts and orders. Avoid false positives.",100000,3577096,64,268,"2025-06-11T07:53:00.000Z","5.5","7.4",[90,20,91,92,22],"antispam-protection","cloudflare-turnstile","hcaptcha","https:\u002F\u002Fcaptcha4wp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-nocaptcha-recaptcha.7.6.0.zip","2022-06-29 00:00:00",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":82,"downloaded":104,"rating":105,"num_ratings":106,"last_updated":107,"tested_up_to":16,"requires_at_least":108,"requires_php":67,"tags":109,"homepage":67,"download_link":112,"security_score":27,"vuln_count":113,"unpatched_count":29,"last_vuln_date":114,"fetched_at":31},"contact-form-7-simple-recaptcha","Contact Form 7 Captcha","0.1.7","LukasApps","https:\u002F\u002Fprofiles.wordpress.org\u002F247wd\u002F","\u003Cp>Protect your Contact Form 7 forms with \u003Cstrong>Google reCAPTCHA V2\u003C\u002Fstrong>, \u003Cstrong>Google reCAPTCHA V3\u003C\u002Fstrong>, \u003Cstrong>hCAPTCHA\u003C\u002Fstrong>, or \u003Cstrong>Cloudflare Turnstile\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>Easy integration and supports multiple forms on a single page.\u003C\u002Fp>\n\u003Ch3>Four CAPTCHA Options\u003C\u002Fh3>\n\u003Cp>Choose the CAPTCHA provider that works best for you:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Google reCAPTCHA V2\u003C\u002Fstrong> — The industry-standard “I’m not a robot” checkbox, trusted by millions of sites.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Google reCAPTCHA V3\u003C\u002Fstrong> — The industry-standard invisible score-based verification, trusted by millions of sites.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>hCAPTCHA\u003C\u002Fstrong> — A privacy-first alternative that offers robust bot protection while keeping user data secure.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cloudflare Turnstile\u003C\u002Fstrong> — A modern CAPTCHA that verifies users in the background, only requiring a simple click if the visitor appears suspicious.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Simple Setup\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Sign up with your chosen CAPTCHA provider and grab your Site Key and Secret Key.\u003C\u002Fli>\n\u003Cli>Paste them into \u003Cstrong>CF7 Captcha\u003C\u002Fstrong> in your WordPress admin.\u003C\u002Fli>\n\u003Cli>Add protection to any CF7 form in seconds using the shortcode provided in the same settings page.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Customizable Appearance\u003C\u002Fh3>\n\u003Cp>Each CAPTCHA widget supports customization options directly from the shortcode:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Size\u003C\u002Fstrong> — Choose between normal and compact to fit your form layout.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Theme\u003C\u002Fstrong> — Switch between light and dark themes (or auto for Turnstile) to match your site’s design.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Language\u003C\u002Fstrong> — Force any CAPTCHA to render in a specific language for your audience.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>All options are combinable, so you can mix and match to get the exact look you need.\u003C\u002Fp>\n\u003Ch3>Submission Insights (NEW in v0.1.7)\u003C\u002Fh3>\n\u003Cp>Go beyond just blocking spam. Submission Insights gives you full visibility into every form submission:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Sender IP\u003C\u002Fstrong> — See the IP address of the person who contacted you.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Source Page\u003C\u002Fstrong> — Know exactly which page on your site the form was filled out on.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Device & Browser\u003C\u002Fstrong> — Get technical details about the sender’s setup.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>🚀 Want More? Upgrade to CF7 Captcha Pro\u003C\u002Fh3>\n\u003Cp>This free version gives you solid CAPTCHA protection. But the smartest bots are already solving CAPTCHAs.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>CF7 Captcha Pro\u003C\u002Fstrong> adds six extra layers of invisible spam defense on top of what you already have here, plus a full set of tools to capture and act on every lead your forms collect.\u003C\u002Fp>\n\u003Ch3>What you get with Pro\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>6-Layer Spam Defense\u003C\u002Fstrong> — stops 99.9% of spam without ever bothering your visitors:\u003Cbr \u002F>\n– \u003Cstrong>Advanced Honeypot\u003C\u002Fstrong> — invisible trap fields with names that regenerate every 24 hours.\u003Cbr \u002F>\n– \u003Cstrong>Time Limit Validation\u003C\u002Fstrong> — bots submit in 0.2 seconds. Humans take 15–30. This blocks anything that moves too fast (or stays too long).\u003Cbr \u002F>\n– \u003Cstrong>Rate Limiting\u003C\u002Fstrong> — caps submissions per IP so bot networks can’t flood your inbox or burn through your email quota.\u003Cbr \u002F>\n– \u003Cstrong>Geographic Blocking\u003C\u002Fstrong> — whitelist only the countries you serve, or blacklist known spam regions.\u003Cbr \u002F>\n– \u003Cstrong>IP Pattern Blocking\u003C\u002Fstrong> — block single IPs, wildcards, CIDR ranges, or entire subnets when you know exactly where an attack is coming from.\u003Cbr \u002F>\n– \u003Cstrong>Word Filter\u003C\u002Fstrong> — scans every submission for spam keywords, phishing URLs, and known scam phrases before it reaches you.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Lead Recovery\u003C\u002Fstrong> — 70% of people who start filling out a form never submit it. Pro captures their data in real-time as they type, so you can follow up on leads that would otherwise vanish.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Database Storage & Export\u003C\u002Fstrong> — every submission is saved with full metadata (IP, browser, referrer, timestamp). Export to CSV, Excel, JSON, or PDF whenever you need it. No more lost leads if your email fails.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Webhooks\u003C\u002Fstrong> — send form data instantly to any URL. Connect to Zapier, Salesforce, Slack, Google Sheets, or any custom API. Multiple webhooks per form, with retry logic built in.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Mailchimp Integration\u003C\u002Fstrong> — submissions automatically added to your Mailchimp lists. Field mapping, tags, opt-in handling.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Twilio SMS\u003C\u002Fstrong> — receive instant alerts for every submission or send automated SMS replies to your clients.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Comprehensive Logging\u003C\u002Fstrong> — every spam block, webhook call, and integration event is logged. Debug any issue in minutes instead of hours.\u003C\u002Fp>\n\u003Cp>👉 \u003Cstrong>\u003Ca href=\"https:\u002F\u002Flukasapps.de\u002Fwordpress\u002Fplugins\u002Fcf7-captcha-pro\u002F\" rel=\"nofollow ugc\">Get CF7 Captcha Pro\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n","Protect your Contact Form 7 forms with Google reCAPTCHA V2, Google reCAPTCHA V3, hCAPTCHA, or Cloudflare Turnstile.",1042756,82,48,"2026-02-01T21:19:00.000Z","4.1.2",[20,110,92,22,111],"contact-form-7","spam-protection","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontact-form-7-simple-recaptcha.zip",2,"2022-06-27 00:00:00",{"slug":116,"name":117,"version":118,"author":119,"author_profile":120,"description":121,"short_description":122,"active_installs":82,"downloaded":123,"rating":124,"num_ratings":125,"last_updated":126,"tested_up_to":16,"requires_at_least":127,"requires_php":67,"tags":128,"homepage":132,"download_link":133,"security_score":134,"vuln_count":135,"unpatched_count":29,"last_vuln_date":136,"fetched_at":31},"google-captcha","reCaptcha by BestWebSoft","1.86","bestwebsoft","https:\u002F\u002Fprofiles.wordpress.org\u002Fbestwebsoft\u002F","\u003Cp>reCaptcha plugin is an effective security solution that protects your WordPress website forms from spam entries while letting real people pass through with ease.  It can be used for login, registration, password recovery, comments, popular contact forms, and other. reCAPTCHA Version 3, Version 2, Invisible are included.\u003C\u002Fp>\n\u003Cp>Users are required to confirm that they are not a robot before the form can be submitted. It’s easy for people and hard for bots.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdemo-for-google-captcha\u002F?ref=readme\" rel=\"nofollow ugc\">View Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FL2BziEOL3Fg?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>Free Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Add reCaptcha to:\n\u003Cul>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Reset password form\u003C\u002Fli>\n\u003Cli>Protected post password form\u003C\u002Fli>\n\u003Cli>Comments form\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fcontact-form\u002F?k=56575444122cff9ab3ee3e640efb001a\" rel=\"nofollow ugc\">Contact Form\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Ftestimonials\u002F\" rel=\"nofollow ugc\">Testimonials\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbws-login-register\" rel=\"ugc\">Login & Register Form\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Custom form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Hide reCaptcha for the allowlisted IP addresses\u003C\u002Fli>\n\u003Cli>Disable the submit button\u003C\u002Fli>\n\u003Cli>Validity check of keys in admin panel\u003C\u002Fli>\n\u003Cli>Available reCaptcha themes for Version 2:\n\u003Cul>\n\u003Cli>Light (default)\u003C\u002Fli>\n\u003Cli>Dark\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Flimit-attempts\u002F?k=1b1865c556920231995b35c3ed889415\" rel=\"nofollow ugc\">Limit Attempts\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Hide reCaptcha in your forms for certain user roles\u003C\u002Fli>\n\u003Cli>Hide reCaptcha Badge (Invisible and V3)\u003C\u002Fli>\n\u003Cli>Supports reCaptcha:\n\u003Cul>\n\u003Cli>Version 2\u003C\u002Fli>\n\u003Cli>Version 3\u003C\u002Fli>\n\u003Cli>Invisible reCAPTCHA\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Add custom code via plugin settings page\u003C\u002Fli>\n\u003Cli>Compatible with latest WordPress version\u003C\u002Fli>\n\u003Cli>Incredibly simple settings for fast setup without modifying code\u003C\u002Fli>\n\u003Cli>Detailed step-by-step documentation and videos\u003C\u002Fli>\n\u003Cli>Multilingual and RTL ready\u003C\u002Fli>\n\u003Cli>Edit error message\u003C\u002Fli>\n\u003Cli>Hide Login page\u003C\u002Fli>\n\u003Cli>Force Strong Passwords\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Pro Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>All features from Free version included plus:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Compatible with:\n\u003Cul>\n\u003Cli>Contact Form 7 (since v 3.4)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fsubscriber\u002F?k=e6d1742fcf1806a39afac207f7920cf3\" rel=\"nofollow ugc\">Subscriber\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fmultilanguage\u002F?k=e48e145002e4b2472e568a81d171b888\" rel=\"nofollow ugc\">Multilanguage\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Jetpack contact form\u003C\u002Fli>\n\u003Cli>Fast Secure Contact Form\u003C\u002Fli>\n\u003Cli>MailChimp for WordPress\u003C\u002Fli>\n\u003Cli>Ninja Forms\u003C\u002Fli>\n\u003Cli>Gravity Forms\u003C\u002Fli>\n\u003Cli>WPForms\u003C\u002Fli>\n\u003Cli>Caldera Forms\u003C\u002Fli>\n\u003Cli>Elementor Pro Contact Forms\u003C\u002Fli>\n\u003Cli>LearnDash Registration Page\u003C\u002Fli>\n\u003Cli>BuddyBoss\u003C\u002Fli>\n\u003Cli>Formidable Forms\u003C\u002Fli>\n\u003Cli>Forminator Forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with WooCommerce:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Register form\u003C\u002Fli>\n\u003Cli>Lost password form\u003C\u002Fli>\n\u003Cli>Checkout billing form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with Divi:\n\u003Cul>\n\u003Cli>Divi Builder Contact form\u003C\u002Fli>\n\u003Cli>Divi Builder Login form\u003C\u002Fli>\n\u003Cli>Divi Theme Contact form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with bbPress:\n\u003Cul>\n\u003Cli>New Topic form\u003C\u002Fli>\n\u003Cli>Reply form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with BuddyPress:\n\u003Cul>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Comments form\u003C\u002Fli>\n\u003Cli>Create a Group form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with Forums – wpForo:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>New Topic form\u003C\u002Fli>\n\u003Cli>Reply form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with Ultimate Member:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Profile form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with BWS Login Register Form:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Forgot Password form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with Easy Digital Downloads Form:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Forgot Password form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Select reCaptcha language manually\u003C\u002Fli>\n\u003Cli>Activate reCaptcha on certain Weekdays and Hours\u003C\u002Fli>\n\u003Cli>Change size: normal or compact (for version 2)\u003C\u002Fli>\n\u003Cli>Configure all subsites on the network\u003C\u002Fli>\n\u003Cli>Block disposable emails\u003C\u002Fli>\n\u003Cli>Administrator Login notification\u003C\u002Fli>\n\u003Cli>Get answer to your support question within one business day (\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fsupport-policy\u002F\" rel=\"nofollow ugc\">Support Policy\u003C\u002Fa>)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fgoogle-captcha\u002F?k=c4f2e3054fdbaca8a2b61554cbb9638c\" rel=\"nofollow ugc\">Upgrade to Pro Now\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>If you have a feature suggestion or idea you’d like to see in the plugin, we’d love to hear about it! \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002Fhc\u002Fen-us\u002Frequests\u002Fnew\" rel=\"nofollow ugc\">Suggest a Feature\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Documentation & Videos\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdocumentation\u002Frecaptcha\u002Frecaptcha-user-guide\u002F\" rel=\"nofollow ugc\">[Doc] User Guide\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdocumentation\u002Fhow-to-install-a-wordpress-product\u002Fhow-to-install-a-wordpress-plugin\u002F\" rel=\"nofollow ugc\">[Doc] Installation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdocumentation\u002Fhow-to-purchase-a-wordpress-plugin\u002Fhow-to-purchase-wordpress-plugin-from-bestwebsoft\u002F\" rel=\"nofollow ugc\">[Doc] Purchase\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.youtube.com\u002Fwatch?v=RUJ9VwZLFSY\" rel=\"nofollow ugc\">[Video] Installation Instruction\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=X-ccRdEFcM0\" rel=\"nofollow ugc\">[Video] Purchase, Installation & Configuration\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=ZFv6txtic0Y\" rel=\"nofollow ugc\">[Video] User Guide\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Help & Support\u003C\u002Fh4>\n\u003Cp>Visit our Help Center if you have any questions, our friendly Support Team is happy to help – \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fsupport.bestwebsoft.com\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Affiliate Program\u003C\u002Fh4>\n\u003Cp>Earn 20% commission by selling the premium WordPress plugins and themes by BestWebSoft – \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Faffiliate\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fbestwebsoft.com\u002Faffiliate\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Translation\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Czech (cs_CZ) (thanks to \u003Ca href=\"mailto:kucerami@gmail.com\" rel=\"nofollow ugc\">Michal Kučera\u003C\u002Fa>, www.n0lim.it, \u003Ca href=\"mailto:info@pamadessoft.cz\" rel=\"nofollow ugc\">PaMaDeSSoft\u003C\u002Fa>, www.pamadessoft.cz)\u003C\u002Fli>\n\u003Cli>French (fr_FR)\u003C\u002Fli>\n\u003Cli>German (de_DE)\u003C\u002Fli>\n\u003Cli>Japanese (ja)\u003C\u002Fli>\n\u003Cli>Italian (it_IT)\u003C\u002Fli>\n\u003Cli>Portuguese (pt_BR)\u003C\u002Fli>\n\u003Cli>Romanian (ro_RO)\u003C\u002Fli>\n\u003Cli>Russian (ru_RU)\u003C\u002Fli>\n\u003Cli>Spanish (es_ES)\u003C\u002Fli>\n\u003Cli>Turkish (tr_TR) (thanks to \u003Ca href=\"mailto:admin@lordiz.com\" rel=\"nofollow ugc\">Lordiz\u003C\u002Fa>, www.lordiz.com)\u003C\u002Fli>\n\u003Cli>Ukrainian (uk)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Some of these translations are not complete. We are constantly adding new features which should be translated. If you would like to create your own language pack or update the existing one, you can send \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FTranslating_WordPress\" rel=\"nofollow ugc\">the text of PO and MO files\u003C\u002Fa> to \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002Fhc\u002Fen-us\u002Frequests\u002Fnew\" rel=\"nofollow ugc\">BestWebSoft\u003C\u002Fa> and we’ll add it to the plugin. You can download the latest version of the program for work with PO and MO \u003Ca href=\"http:\u002F\u002Fwww.poedit.net\u002Fdownload.php\" rel=\"nofollow ugc\">files Poedit\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Recommended Plugins\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fupdater\u002F?k=f47f3eb3d739725d592249dbd129f7ff\" rel=\"nofollow ugc\">Updater\u003C\u002Fa> – Automatically check and update WordPress website core with all installed plugins and themes to the latest versions.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fcontact-form\u002F?k=56575444122cff9ab3ee3e640efb001a\" rel=\"nofollow ugc\">Contact Form\u003C\u002Fa> – Simple contact form plugin any WordPress website must have.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fsubscriber\u002F?k=e6d1742fcf1806a39afac207f7920cf3\" rel=\"nofollow ugc\">Subscriber\u003C\u002Fa> – Add email newsletter sign up form to WordPress posts, pages and widgets. Collect data and subscribe your users.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fmultilanguage\u002F?k=e48e145002e4b2472e568a81d171b888\" rel=\"nofollow ugc\">Multilanguage\u003C\u002Fa> – Translate WordPress website content to other languages manually. Create multilingual pages, posts, widgets, menus, etc.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>lib\u002Frecaptchalib.php – Copyright © 2007. Mike Crawford, Ben Maurer (reCAPTCHA – \u003Ca href=\"http:\u002F\u002Frecaptcha.net\" rel=\"nofollow ugc\">http:\u002F\u002Frecaptcha.net\u003C\u002Fa>). All Rights Reserved.\u003C\u002Fli>\n\u003Cli>The plugin uses Google Recaptcha (Google LLC) services to process data and protect against spam. \u003Ca href=\"https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002F\u003C\u002Fa> Terms of service \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fterms\" rel=\"nofollow ugc\">https:\u002F\u002Fpolicies.google.com\u002Fterms\u003C\u002Fa>. Privacy Policy \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fprivacy\" rel=\"nofollow ugc\">https:\u002F\u002Fpolicies.google.com\u002Fprivacy\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>This plugin incorporates a license verification mechanism to ensure the authenticity of your license key and provide access to premium features and updates. The verification process involves connecting securely to our external service hosted at BestWebSoft website \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\" rel=\"nofollow ugc\">https:\u002F\u002Fbestwebsoft.com\u003C\u002Fa>. Privacy Policy \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fbestwebsoft.com\u002Fprivacy-policy\u002F\u003C\u002Fa>. End user license agreement \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fend-user-license-agreement\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fbestwebsoft.com\u002Fend-user-license-agreement\u002F\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","Protect WordPress website forms from spam entries with Google reCAPTCHA.",6607298,78,390,"2026-02-25T08:45:00.000Z","6.5",[129,130,20,131,22],"anti-spam-security","antispam","captha","https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fgoogle-captcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-captcha.1.86.zip",98,3,"2025-01-03 00:00:00",{"slug":138,"name":139,"version":140,"author":141,"author_profile":142,"description":143,"short_description":144,"active_installs":145,"downloaded":146,"rating":147,"num_ratings":148,"last_updated":149,"tested_up_to":150,"requires_at_least":151,"requires_php":67,"tags":152,"homepage":156,"download_link":157,"security_score":158,"vuln_count":28,"unpatched_count":29,"last_vuln_date":159,"fetched_at":31},"login-recaptcha","Login No Captcha reCAPTCHA","1.7.3","Robert Peake","https:\u002F\u002Fprofiles.wordpress.org\u002Frobertpeake\u002F","\u003Cp>Adds a Google No Captcha ReCaptcha checkbox to your WordPress and Woocommerce login, forgot password, and user registration pages. Denies access to automated scripts while making it easy on humans to log in by checking a box. As Google says, it is “Tough on bots, easy on humans.”\u003C\u002Fp>\n","Adds a Google No Captcha ReCaptcha checkbox to your Wordpress and Woocommerce login, forgot password, and user registration pages.",60000,1369961,90,63,"2024-02-27T10:43:00.000Z","6.4.8","4.6",[153,154,155,22,24],"google","login","nocaptcha","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flogin-recaptcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flogin-recaptcha.1.7.3.zip",85,"2022-08-16 00:00:00",{"attackSurface":161,"codeSignals":222,"taintFlows":296,"riskAssessment":457,"analyzedAt":471},{"hooks":162,"ajaxHandlers":218,"restRoutes":219,"shortcodes":220,"cronEvents":221,"entryPointCount":29,"unprotectedCount":29},[163,169,173,177,181,186,190,195,199,203,207,210,214],{"type":164,"name":165,"callback":166,"file":167,"line":168},"action","admin_menu","blcap_add_menus","bluecaptcha.php",2375,{"type":164,"name":170,"callback":171,"file":167,"line":172},"init","blcap_init",2377,{"type":164,"name":174,"callback":175,"file":167,"line":176},"plugins_loaded","blcap_check_for_update",2378,{"type":164,"name":178,"callback":179,"file":167,"line":180},"login_form","blcap_loginform",2380,{"type":164,"name":182,"callback":183,"priority":184,"file":167,"line":185},"wp_authenticate","blcap_loginact",10,2381,{"type":164,"name":187,"callback":188,"priority":184,"file":167,"line":189},"register_form","blcap_registerform",2383,{"type":191,"name":192,"callback":193,"file":167,"line":194},"filter","registration_errors","blcap_registerflt",2384,{"type":164,"name":196,"callback":197,"priority":184,"file":167,"line":198},"lostpassword_form","blcap_lostpasswordform",2386,{"type":164,"name":200,"callback":201,"priority":184,"file":167,"line":202},"lostpassword_post","blcap_lostpasswordact",2387,{"type":164,"name":204,"callback":205,"priority":28,"file":167,"line":206},"comment_form_after_fields","blcap_commentform",2391,{"type":164,"name":208,"callback":205,"priority":28,"file":167,"line":209},"comment_form_logged_in_after",2392,{"type":164,"name":211,"callback":212,"priority":28,"file":167,"line":213},"comment_form","blcap_commentform_2",2394,{"type":191,"name":215,"callback":216,"priority":28,"file":167,"line":217},"preprocess_comment","blcap_commentflt",2396,[],[],[],[],{"dangerousFunctions":223,"sqlUsage":253,"outputEscaping":256,"fileOperations":29,"externalRequests":29,"nonceChecks":29,"capabilityChecks":29,"bundledLibraries":295},[224,228,231,233,235,237,239,241,243,245,247,249],{"fn":225,"file":226,"line":124,"context":227},"unserialize","blimage.php","$sss = @unserialize ($blcap_setser);",{"fn":225,"file":167,"line":229,"context":230},89,"$settings_arr = @unserialize ($settings);",{"fn":225,"file":167,"line":232,"context":227},535,{"fn":225,"file":167,"line":234,"context":227},686,{"fn":225,"file":167,"line":236,"context":227},920,{"fn":225,"file":167,"line":238,"context":227},1069,{"fn":225,"file":167,"line":240,"context":227},1294,{"fn":225,"file":167,"line":242,"context":227},1443,{"fn":225,"file":167,"line":244,"context":227},1666,{"fn":225,"file":167,"line":246,"context":227},1957,{"fn":225,"file":167,"line":248,"context":227},2005,{"fn":225,"file":250,"line":251,"context":252},"blueoptions.php",656,"$blcap_set = @unserialize ($blcap_setser);",{"prepared":254,"raw":29,"locations":255},54,[],{"escaped":257,"rawEcho":258,"locations":259},1207,16,[260,263,265,267,269,271,273,275,277,279,281,284,287,289,291,293],{"file":167,"line":261,"context":262},629,"raw output",{"file":167,"line":264,"context":262},647,{"file":167,"line":266,"context":262},1013,{"file":167,"line":268,"context":262},1031,{"file":167,"line":270,"context":262},1387,{"file":167,"line":272,"context":262},1405,{"file":167,"line":274,"context":262},1769,{"file":167,"line":276,"context":262},1789,{"file":167,"line":278,"context":262},1846,{"file":167,"line":280,"context":262},1868,{"file":282,"line":283,"context":262},"bluehos.php",407,{"file":285,"line":286,"context":262},"bluelog.php",346,{"file":285,"line":288,"context":262},349,{"file":285,"line":290,"context":262},529,{"file":285,"line":292,"context":262},534,{"file":250,"line":294,"context":262},559,[],[297,317,344,364,390,407,424,441],{"entryPoint":298,"graph":299,"unsanitizedCount":315,"severity":316},"\u003Cbluehos> (bluehos.php:0)",{"nodes":300,"edges":312},[301,306],{"id":302,"type":303,"label":304,"file":282,"line":305},"n0","source","$_POST (x8)",42,{"id":307,"type":308,"label":309,"file":282,"line":310,"wp_function":311},"n1","sink","echo() [XSS]",189,"echo",[313],{"from":302,"to":307,"sanitized":314},false,8,"low",{"entryPoint":318,"graph":319,"unsanitizedCount":184,"severity":316},"\u003Cbluelog> (bluelog.php:0)",{"nodes":320,"edges":339},[321,324,326,329,332,336],{"id":302,"type":303,"label":322,"file":285,"line":323},"$_POST (x9)",51,{"id":307,"type":308,"label":309,"file":285,"line":325,"wp_function":311},212,{"id":327,"type":303,"label":328,"file":285,"line":323},"n2","$_POST",{"id":330,"type":308,"label":309,"file":285,"line":331,"wp_function":311},"n3",216,{"id":333,"type":303,"label":334,"file":285,"line":335},"n4","$_REQUEST",33,{"id":337,"type":308,"label":309,"file":285,"line":338,"wp_function":311},"n5",335,[340,341,343],{"from":302,"to":307,"sanitized":314},{"from":327,"to":330,"sanitized":342},true,{"from":333,"to":337,"sanitized":314},{"entryPoint":345,"graph":346,"unsanitizedCount":363,"severity":316},"\u003Cblueoptions> (blueoptions.php:0)",{"nodes":347,"edges":360},[348,351,355,358],{"id":302,"type":303,"label":349,"file":250,"line":350},"$_REQUEST (x2)",630,{"id":307,"type":308,"label":352,"file":250,"line":353,"wp_function":354},"update_option() [Settings Manipulation]",634,"update_option",{"id":327,"type":303,"label":356,"file":250,"line":357},"$_REQUEST (x3)",636,{"id":330,"type":308,"label":309,"file":250,"line":359,"wp_function":311},763,[361,362],{"from":302,"to":307,"sanitized":314},{"from":327,"to":330,"sanitized":314},5,{"entryPoint":365,"graph":366,"unsanitizedCount":113,"severity":389},"blcap_loginact (bluecaptcha.php:678)",{"nodes":367,"edges":384},[368,370,373,378,380,382],{"id":302,"type":303,"label":334,"file":167,"line":369},724,{"id":307,"type":371,"label":372,"file":167,"line":369},"transform","→ blcap_get_captcha_session()",{"id":327,"type":308,"label":374,"file":375,"line":376,"wp_function":377},"get_results() [SQLi]","blfuncs.php",252,"get_results",{"id":330,"type":303,"label":334,"file":167,"line":379},907,{"id":333,"type":371,"label":381,"file":167,"line":379},"→ blcap_delete_captcha_session()",{"id":337,"type":308,"label":374,"file":375,"line":383,"wp_function":377},318,[385,386,387,388],{"from":302,"to":307,"sanitized":314},{"from":307,"to":327,"sanitized":314},{"from":330,"to":333,"sanitized":314},{"from":333,"to":337,"sanitized":314},"high",{"entryPoint":391,"graph":392,"unsanitizedCount":113,"severity":389},"blcap_registerflt (bluecaptcha.php:1061)",{"nodes":393,"edges":402},[394,396,397,398,400,401],{"id":302,"type":303,"label":334,"file":167,"line":395},1107,{"id":307,"type":371,"label":372,"file":167,"line":395},{"id":327,"type":308,"label":374,"file":375,"line":376,"wp_function":377},{"id":330,"type":303,"label":334,"file":167,"line":399},1279,{"id":333,"type":371,"label":381,"file":167,"line":399},{"id":337,"type":308,"label":374,"file":375,"line":383,"wp_function":377},[403,404,405,406],{"from":302,"to":307,"sanitized":314},{"from":307,"to":327,"sanitized":314},{"from":330,"to":333,"sanitized":314},{"from":333,"to":337,"sanitized":314},{"entryPoint":408,"graph":409,"unsanitizedCount":113,"severity":389},"blcap_lostpasswordact (bluecaptcha.php:1435)",{"nodes":410,"edges":419},[411,413,414,415,417,418],{"id":302,"type":303,"label":334,"file":167,"line":412},1481,{"id":307,"type":371,"label":372,"file":167,"line":412},{"id":327,"type":308,"label":374,"file":375,"line":376,"wp_function":377},{"id":330,"type":303,"label":334,"file":167,"line":416},1648,{"id":333,"type":371,"label":381,"file":167,"line":416},{"id":337,"type":308,"label":374,"file":375,"line":383,"wp_function":377},[420,421,422,423],{"from":302,"to":307,"sanitized":314},{"from":307,"to":327,"sanitized":314},{"from":330,"to":333,"sanitized":314},{"from":333,"to":337,"sanitized":314},{"entryPoint":425,"graph":426,"unsanitizedCount":113,"severity":389},"blcap_commentflt (bluecaptcha.php:1997)",{"nodes":427,"edges":436},[428,430,431,432,434,435],{"id":302,"type":303,"label":334,"file":167,"line":429},2054,{"id":307,"type":371,"label":372,"file":167,"line":429},{"id":327,"type":308,"label":374,"file":375,"line":376,"wp_function":377},{"id":330,"type":303,"label":334,"file":167,"line":433},2277,{"id":333,"type":371,"label":381,"file":167,"line":433},{"id":337,"type":308,"label":374,"file":375,"line":383,"wp_function":377},[437,438,439,440],{"from":302,"to":307,"sanitized":314},{"from":307,"to":327,"sanitized":314},{"from":330,"to":333,"sanitized":314},{"from":333,"to":337,"sanitized":314},{"entryPoint":442,"graph":443,"unsanitizedCount":315,"severity":389},"\u003Cbluecaptcha> (bluecaptcha.php:0)",{"nodes":444,"edges":452},[445,447,448,449,450,451],{"id":302,"type":303,"label":446,"file":167,"line":369},"$_REQUEST (x4)",{"id":307,"type":371,"label":372,"file":167,"line":369},{"id":327,"type":308,"label":374,"file":375,"line":376,"wp_function":377},{"id":330,"type":303,"label":446,"file":167,"line":379},{"id":333,"type":371,"label":381,"file":167,"line":379},{"id":337,"type":308,"label":374,"file":375,"line":383,"wp_function":377},[453,454,455,456],{"from":302,"to":307,"sanitized":314},{"from":307,"to":327,"sanitized":314},{"from":330,"to":333,"sanitized":314},{"from":333,"to":337,"sanitized":314},{"summary":458,"deductions":459},"The \"blue-captcha\" v2.0.1 plugin exhibits a mixed security posture. On the positive side, it demonstrates strong adherence to secure coding practices by utilizing prepared statements for all SQL queries and properly escaping nearly all output. The absence of file operations and external HTTP requests also reduces its attack surface. Furthermore, there are no reported unpatched vulnerabilities at this time, and the plugin does not appear to bundle external libraries, which can often become outdated and introduce vulnerabilities.\n\nHowever, several critical concerns are highlighted by the static analysis. The presence of 12 instances of the `unserialize` function is a significant risk, as unserializing untrusted data can lead to Remote Code Execution vulnerabilities. The taint analysis revealing 8 flows with unsanitized paths, including 5 of high severity, further amplifies this concern, suggesting potential injection vulnerabilities that could be exploited if data is not properly validated and escaped before being processed by these dangerous functions. The complete lack of nonce checks and capability checks on any identified entry points (though none were found) is a potential weakness that could be exploited if new entry points are introduced or if the plugin's intended functionality requires such checks. The vulnerability history, while showing no currently unpatched issues, indicates a past medium-severity vulnerability, specifically Cross-site Scripting, suggesting that the plugin has had exploitable flaws in the past.\n\nIn conclusion, while \"blue-captcha\" v2.0.1 shows promise with its database and output handling, the extensive use of `unserialize` and high-severity unsanitized taint flows represent a substantial security risk. The absence of authentication checks on its limited attack surface is also a point of concern. Addressing the risks associated with `unserialize` and ensuring all data flows are properly sanitized and validated is paramount for improving the plugin's security. Developers should also consider implementing nonce and capability checks as a defensive measure, even with a seemingly limited attack surface.",[460,462,465,467,469],{"reason":461,"points":14},"Use of unserialize function",{"reason":463,"points":464},"High severity unsanitized taint flows",12,{"reason":466,"points":363},"Missing nonce checks",{"reason":468,"points":363},"Missing capability checks",{"reason":470,"points":315},"Past medium vulnerability (XSS)","2026-03-16T19:40:35.888Z",{"wat":473,"direct":486},{"assetPaths":474,"generatorPatterns":479,"scriptPaths":480,"versionParams":481},[475,476,477,478],"\u002Fwp-content\u002Fplugins\u002Fblue-captcha\u002Fcss\u002Fblcap_admin.css","\u002Fwp-content\u002Fplugins\u002Fblue-captcha\u002Fcss\u002Fblcap_public.css","\u002Fwp-content\u002Fplugins\u002Fblue-captcha\u002Fjs\u002Fblcap_admin.js","\u002Fwp-content\u002Fplugins\u002Fblue-captcha\u002Fjs\u002Fblcap_public.js",[],[477,478],[482,483,484,485],"blue-captcha\u002Fcss\u002Fblcap_admin.css?ver=","blue-captcha\u002Fcss\u002Fblcap_public.css?ver=","blue-captcha\u002Fjs\u002Fblcap_admin.js?ver=","blue-captcha\u002Fjs\u002Fblcap_public.js?ver=",{"cssClasses":487,"htmlComments":490,"htmlAttributes":491,"restEndpoints":492,"jsGlobals":493,"shortcodeOutput":496},[488,489],"blcap_admin","blcap_public",[],[],[],[494,495],"blcap_admin_options","blcap_public_options",[]]