[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fQS2doqT-fQ_DSS2TYTya8gSLhR1ZMk_29hY2LLLwIdg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":15,"tags":16,"homepage":22,"download_link":23,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26,"vulnerabilities":27,"developer":28,"crawl_stats":25,"alternatives":35,"analysis":143,"fingerprints":233},"bot-lockout","Bot Lockout","1.0.0","kognetiks","https:\u002F\u002Fprofiles.wordpress.org\u002Fkognetiks\u002F","\u003Cp>Bot Lockout is a security plugin that implements a lightweight cryptographic challenge system to distinguish between real browsers and automated bots. Unlike traditional CAPTCHA systems, it uses JavaScript-based cryptographic operations that are easy for humans but difficult for most bots to solve.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Lightweight Protection\u003C\u002Fstrong>: Uses minimal resources and doesn’t impact site performance\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cryptographic Challenges\u003C\u002Fstrong>: SHA-256 hashing with date and user agent binding\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Whitelisting\u003C\u002Fstrong>: Allow trusted bots (Google, Bing, etc.) and IP addresses\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Flexible Configuration\u003C\u002Fstrong>: Exclude specific pages and customize block messages\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comprehensive Logging\u003C\u002Fstrong>: Track blocked attempts for analysis\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Styling\u003C\u002Fstrong>: Add custom CSS to match your site’s design\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Daily Token Expiration\u003C\u002Fstrong>: Prevents long-term bypass attempts\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How It Works\u003C\u002Fh4>\n\u003Col>\n\u003Cli>\u003Cstrong>Initial Request\u003C\u002Fstrong>: When a visitor accesses your site, the plugin checks for a valid challenge token\u003C\u002Fli>\n\u003Cli>\u003Cstrong>JavaScript Challenge\u003C\u002Fstrong>: If no token exists, a cryptographic challenge is presented\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Token Generation\u003C\u002Fstrong>: The challenge combines the current date with the user agent string and creates a SHA-256 hash\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Secure Storage\u003C\u002Fstrong>: The hash is base64 encoded, truncated, and stored as a secure cookie\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Validation\u003C\u002Fstrong>: Subsequent requests are validated against the stored token\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch4>Security Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Cryptographically Secure\u003C\u002Fstrong>: Uses SHA-256 hashing algorithm\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Time-Bound\u003C\u002Fstrong>: Tokens expire daily to prevent long-term bypass\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Browser-Specific\u003C\u002Fstrong>: User agent binding prevents token sharing\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Secure Cookies\u003C\u002Fstrong>: Implements proper cookie security settings\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Whitelist Support\u003C\u002Fstrong>: Allow trusted services and IP addresses\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Multi-Site Support\u003C\u002Fh4>\n\u003Cp>Bot Lockout supports WordPress Multi-Site installations with both network-wide and site-specific configurations:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Network Activation\u003C\u002Fstrong>: Apply settings to all sites in the network\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Site-Specific Activation\u003C\u002Fstrong>: Independent settings for each site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mixed Configuration\u003C\u002Fstrong>: Network-wide defaults with site-specific overrides\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Security Advisory\u003C\u002Fh3>\n\u003Cp>Bot Lockout is one layer in a broader security strategy, not a silver bullet.\u003C\u002Fp>\n\u003Cp>While Bot Lockout is designed to deter automated bots and AI scrapers through cryptographic JavaScript challenges, no single solution can offer complete protection. Web scraping technologies continue to evolve, and determined actors may find ways to bypass front-end defenses.\u003C\u002Fp>\n\u003Cp>This plugin should be used as part of a multi-layered approach to website security. For best results, we recommend combining Bot Lockout with additional tools such as server-level firewalls, rate limiting, CAPTCHA systems, behavior-based threat detection, and CDN-level bot mitigation.\u003C\u002Fp>\n\u003Cp>Kognetiks makes no guarantee that this plugin will block all unwanted bot traffic. It is intended as a proactive, lightweight defense mechanism—not a comprehensive security system. Users are responsible for evaluating their own threat model and deploying appropriate complementary protections.\u003C\u002Fp>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cp>For support, please visit the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fbot-lockout\u002F\" rel=\"ugc\">WordPress.org support forums\u003C\u002Fa> or check the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbot-lockout\u002F\" rel=\"ugc\">plugin documentation\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Developer\u003C\u002Fstrong>: Kognetiks\u003C\u002Fp>\n\u003Cp>This plugin is licensed under the GPL v3 or later.\u003C\u002Fp>\n","A lightweight WordPress plugin that protects your site from AI scrapers and bad bots using cryptographic JavaScript challenges.",0,269,"2025-07-29T13:21:00.000Z","6.8.5","",[17,18,19,20,21],"anti-scraping","bot-protection","captcha","javascript-challenge","security","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbot-lockout\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbot-lockout.1.0.0.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":29,"total_installs":30,"avg_security_score":31,"avg_patch_time_days":32,"trust_score":33,"computed_at":34},3,910,94,2,96,"2026-04-04T21:23:18.345Z",[36,51,75,98,120],{"slug":37,"name":38,"version":6,"author":39,"author_profile":40,"description":41,"short_description":42,"active_installs":11,"downloaded":43,"rating":11,"num_ratings":11,"last_updated":44,"tested_up_to":14,"requires_at_least":45,"requires_php":46,"tags":47,"homepage":15,"download_link":50,"security_score":24,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"agent-ai-bot-protect","Agent AI Bot Protect","botshield","https:\u002F\u002Fprofiles.wordpress.org\u002Fbotshield\u002F","\u003Cp>Agent AI Bot Protect is a powerful WordPress security plugin designed to protect your valuable content from being scraped by AI bots and crawlers. As AI technologies advance, more bots are harvesting web content without permission to train large language models and other AI systems.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Real-time Monitoring\u003C\u002Fstrong> – Track and analyze bot activity with detailed logs and reports\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Low Performance Impact\u003C\u002Fstrong> – Optimized code ensures minimal impact on your site’s loading speed\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy Configuration\u003C\u002Fstrong> – Simple setup with no technical knowledge required\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Agent AI Bot Protect helps website owners maintain control over their intellectual property by preventing unauthorized data harvesting while ensuring legitimate users and search engines can still access your content normally.\u003C\u002Fp>\n\u003Ch3>Development\u003C\u002Fh3>\n\u003Cp>To contribute to this project please see the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FAgentMantis\u002Fagent-ai-bot-protect\" rel=\"nofollow ugc\">Github Repo\u003C\u002Fa>\u003C\u002Fp>\n","Agent AI Bot Protect protects your WordPress content from AI scraping bots, preventing unauthorized data harvesting for AI training.",290,"2025-06-02T04:35:00.000Z","5.0","7.4",[48,17,18,49,21],"ai-protection","content-protection","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fagent-ai-bot-protect.1.0.0.zip",{"slug":52,"name":53,"version":54,"author":55,"author_profile":56,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":61,"num_ratings":62,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":15,"tags":66,"homepage":70,"download_link":71,"security_score":72,"vuln_count":32,"unpatched_count":73,"last_vuln_date":74,"fetched_at":26},"siteguard","SiteGuard WP Plugin","1.7.9","jp-secure","https:\u002F\u002Fprofiles.wordpress.org\u002Fjp-secure\u002F","\u003Cp>You can find docs, FAQ and more detailed information on \u003Ca href=\"https:\u002F\u002Fwww.jp-secure.com\u002Fsiteguard_wp_plugin_en\u002F\" rel=\"nofollow ugc\">English Page\u003C\u002Fa> \u003Ca href=\"https:\u002F\u002Fwww.jp-secure.com\u002Fsiteguard_wp_plugin\u002F\" rel=\"nofollow ugc\">Japanese Page\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Simply install the SiteGuard WP Plugin, WordPress security is improved.\u003Cbr \u002F>\nThis plugin is a security plugin that specializes in the login attack of brute force, such as protection and management capabilities.\u003C\u002Fp>\n\u003Cp>Notes\u003C\u002Fp>\n\u003Cul>\n\u003Cli>It does not support the multisite function of WordPress.\u003C\u002Fli>\n\u003Cli>It only supports Apache 1.3, 2.x for Web servers.\u003C\u002Fli>\n\u003Cli>To use the CAPTCHA function, the expansion library “mbstring” and “gd” should be installed on php.\u003C\u002Fli>\n\u003Cli>To use the management page filter function and login page change function, “mod_rewrite” should be loaded on Apache.\u003C\u002Fli>\n\u003Cli>To use the WAF Tuning Support, WAF ( SiteGuard Server Edition ) should be installed on Apache.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>There are the following functions.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Admin Page IP Filter\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function for the protection against the attack to the management page (under wp-admin.)\u003Cbr \u002F>\nTo the access from the connection source IP address which does not login to the management page, 404 (Not Found) is returned.\u003Cbr \u002F>\nAt the login, the connection source IP address is recorded and the access to that page is allowed.\u003Cbr \u002F>\nThe connection source IP address which does not login for more than 24 hours is sequentially deleted.\u003Cbr \u002F>\nThe URL (under wp-admin) where this function is excluded can be specified.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Rename Login\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function to decrease the vulnerability against an illegal login attempt attack such as a brute force attack or a password list attack.\u003Cbr \u002F>\nThe login page name (wp-login.php) is changed. The initial value is “login_\u003C5 random digits>” but it can be changed to a favorite name.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>CAPTCHA\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function to decrease the vulnerability against an illegal login attempt attack such as a brute force attack or a password list attack,\u003Cbr \u002F>\nor to receive less comment spam. For the character of CAPTCHA, hiragana and alphanumeric characters can be selected.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Login Lock\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function to decrease the vulnerability against an illegal login attempt attack such as a brute force attack or a password list attack.\u003Cbr \u002F>\nEspecially, it is the function to prevent an automated attack. The connection source IP address the number of login failure of which reaches\u003Cbr \u002F>\nthe specified number within the specified period is blocked for the specified time.\u003Cbr \u002F>\nEach user account is not locked.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Login Alert\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function to make it easier to notice unauthorized login. E-mail will be sent to a login user when logged in.\u003Cbr \u002F>\nIf you receive an e-mail to there is no logged-in idea, please suspect unauthorized login.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Fail Once\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function to decrease the vulnerability against a password list attack. Even is the login input is correct, the first login must fail.\u003Cbr \u002F>\nAfter 5 seconds and later within 60 seconds, another correct login input make login succeed. At the first login failure, the following error message is displayed.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable Pingback\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The pingback function is disabled and its abuse is prevented.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Block Author Query\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Prevents leakage of user names due to “\u002F?author=” access.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Updates Notify\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Basic of security is that always you use the latest version. If WordPress core, plugins, and themes updates are needed , sends email to notify administrators.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WAF Tuning Support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It is the function to create the rule to avoid the false detection in WordPress (including 403 error occurrence with normal access,)\u003Cbr \u002F>\nif WAF ( SiteGuard Server Edition ) by EG Secure Solutions is installed on a Web server. WAF prevents the attack from the outside against the Web server,\u003Cbr \u002F>\nbut for some WordPress or plugin functions, WAF may detect the attack which is actually not attack and block the function.\u003Cbr \u002F>\nBy creating the WAF exclude rule, the WAF protection function can be activated while the false detection for the specified function is prevented.\u003C\u002Fp>\n\u003Ch4>Translate\u003C\u002Fh4>\n\u003Cp>If you have created your own language pack, or have an update of an existing one, you can send \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FTranslating_WordPress\" rel=\"nofollow ugc\">gettext PO and MO files\u003C\u002Fa> to sgdev@jp-secure.com so that We can bundle it into SiteGuard WP Plugin. You can download the latest \u003Ca href=\"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fsiteguard\u002Ftrunk\u002Flanguages\u002Fsiteguard.pot\" rel=\"nofollow ugc\">POT file\u003C\u002Fa>, and \u003Ca href=\"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fsiteguard\u002Fbranches\u002Flanguages\u002F\" rel=\"nofollow ugc\">PO files in each language\u003C\u002Fa>.\u003C\u002Fp>\n","SiteGurad WP Plugin is the plugin specialized for the protection against the attack to the management page and login.",600000,5177761,86,15,"2025-12-04T04:47:00.000Z","6.9.4","3.9",[19,67,68,69,21],"login-alert","login-lock","pingback","http:\u002F\u002Fwww.jp-secure.com\u002Fcont\u002Fproducts\u002Fsiteguard_wp_plugin\u002Findex_en.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsiteguard.1.7.9.zip",76,1,"2026-02-23 00:00:00",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":83,"downloaded":84,"rating":85,"num_ratings":86,"last_updated":87,"tested_up_to":64,"requires_at_least":88,"requires_php":15,"tags":89,"homepage":94,"download_link":95,"security_score":96,"vuln_count":29,"unpatched_count":11,"last_vuln_date":97,"fetched_at":26},"google-captcha","reCaptcha by BestWebSoft","1.86","bestwebsoft","https:\u002F\u002Fprofiles.wordpress.org\u002Fbestwebsoft\u002F","\u003Cp>reCaptcha plugin is an effective security solution that protects your WordPress website forms from spam entries while letting real people pass through with ease.  It can be used for login, registration, password recovery, comments, popular contact forms, and other. reCAPTCHA Version 3, Version 2, Invisible are included.\u003C\u002Fp>\n\u003Cp>Users are required to confirm that they are not a robot before the form can be submitted. It’s easy for people and hard for bots.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdemo-for-google-captcha\u002F?ref=readme\" rel=\"nofollow ugc\">View Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FL2BziEOL3Fg?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Ch4>Free Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Add reCaptcha to:\n\u003Cul>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Reset password form\u003C\u002Fli>\n\u003Cli>Protected post password form\u003C\u002Fli>\n\u003Cli>Comments form\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fcontact-form\u002F?k=56575444122cff9ab3ee3e640efb001a\" rel=\"nofollow ugc\">Contact Form\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Ftestimonials\u002F\" rel=\"nofollow ugc\">Testimonials\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbws-login-register\" rel=\"ugc\">Login & Register Form\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Custom form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Hide reCaptcha for the allowlisted IP addresses\u003C\u002Fli>\n\u003Cli>Disable the submit button\u003C\u002Fli>\n\u003Cli>Validity check of keys in admin panel\u003C\u002Fli>\n\u003Cli>Available reCaptcha themes for Version 2:\n\u003Cul>\n\u003Cli>Light (default)\u003C\u002Fli>\n\u003Cli>Dark\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Flimit-attempts\u002F?k=1b1865c556920231995b35c3ed889415\" rel=\"nofollow ugc\">Limit Attempts\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Hide reCaptcha in your forms for certain user roles\u003C\u002Fli>\n\u003Cli>Hide reCaptcha Badge (Invisible and V3)\u003C\u002Fli>\n\u003Cli>Supports reCaptcha:\n\u003Cul>\n\u003Cli>Version 2\u003C\u002Fli>\n\u003Cli>Version 3\u003C\u002Fli>\n\u003Cli>Invisible reCAPTCHA\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Add custom code via plugin settings page\u003C\u002Fli>\n\u003Cli>Compatible with latest WordPress version\u003C\u002Fli>\n\u003Cli>Incredibly simple settings for fast setup without modifying code\u003C\u002Fli>\n\u003Cli>Detailed step-by-step documentation and videos\u003C\u002Fli>\n\u003Cli>Multilingual and RTL ready\u003C\u002Fli>\n\u003Cli>Edit error message\u003C\u002Fli>\n\u003Cli>Hide Login page\u003C\u002Fli>\n\u003Cli>Force Strong Passwords\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Pro Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>All features from Free version included plus:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Compatible with:\n\u003Cul>\n\u003Cli>Contact Form 7 (since v 3.4)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fsubscriber\u002F?k=e6d1742fcf1806a39afac207f7920cf3\" rel=\"nofollow ugc\">Subscriber\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fmultilanguage\u002F?k=e48e145002e4b2472e568a81d171b888\" rel=\"nofollow ugc\">Multilanguage\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Jetpack contact form\u003C\u002Fli>\n\u003Cli>Fast Secure Contact Form\u003C\u002Fli>\n\u003Cli>MailChimp for WordPress\u003C\u002Fli>\n\u003Cli>Ninja Forms\u003C\u002Fli>\n\u003Cli>Gravity Forms\u003C\u002Fli>\n\u003Cli>WPForms\u003C\u002Fli>\n\u003Cli>Caldera Forms\u003C\u002Fli>\n\u003Cli>Elementor Pro Contact Forms\u003C\u002Fli>\n\u003Cli>LearnDash Registration Page\u003C\u002Fli>\n\u003Cli>BuddyBoss\u003C\u002Fli>\n\u003Cli>Formidable Forms\u003C\u002Fli>\n\u003Cli>Forminator Forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with WooCommerce:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Register form\u003C\u002Fli>\n\u003Cli>Lost password form\u003C\u002Fli>\n\u003Cli>Checkout billing form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with Divi:\n\u003Cul>\n\u003Cli>Divi Builder Contact form\u003C\u002Fli>\n\u003Cli>Divi Builder Login form\u003C\u002Fli>\n\u003Cli>Divi Theme Contact form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with bbPress:\n\u003Cul>\n\u003Cli>New Topic form\u003C\u002Fli>\n\u003Cli>Reply form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with BuddyPress:\n\u003Cul>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Comments form\u003C\u002Fli>\n\u003Cli>Create a Group form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with Forums – wpForo:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>New Topic form\u003C\u002Fli>\n\u003Cli>Reply form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with Ultimate Member:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Profile form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with BWS Login Register Form:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Forgot Password form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with Easy Digital Downloads Form:\n\u003Cul>\n\u003Cli>Login form\u003C\u002Fli>\n\u003Cli>Registration form\u003C\u002Fli>\n\u003Cli>Forgot Password form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Select reCaptcha language manually\u003C\u002Fli>\n\u003Cli>Activate reCaptcha on certain Weekdays and Hours\u003C\u002Fli>\n\u003Cli>Change size: normal or compact (for version 2)\u003C\u002Fli>\n\u003Cli>Configure all subsites on the network\u003C\u002Fli>\n\u003Cli>Block disposable emails\u003C\u002Fli>\n\u003Cli>Administrator Login notification\u003C\u002Fli>\n\u003Cli>Get answer to your support question within one business day (\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fsupport-policy\u002F\" rel=\"nofollow ugc\">Support Policy\u003C\u002Fa>)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fgoogle-captcha\u002F?k=c4f2e3054fdbaca8a2b61554cbb9638c\" rel=\"nofollow ugc\">Upgrade to Pro Now\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>If you have a feature suggestion or idea you’d like to see in the plugin, we’d love to hear about it! \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002Fhc\u002Fen-us\u002Frequests\u002Fnew\" rel=\"nofollow ugc\">Suggest a Feature\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Documentation & Videos\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdocumentation\u002Frecaptcha\u002Frecaptcha-user-guide\u002F\" rel=\"nofollow ugc\">[Doc] User Guide\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdocumentation\u002Fhow-to-install-a-wordpress-product\u002Fhow-to-install-a-wordpress-plugin\u002F\" rel=\"nofollow ugc\">[Doc] Installation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fdocumentation\u002Fhow-to-purchase-a-wordpress-plugin\u002Fhow-to-purchase-wordpress-plugin-from-bestwebsoft\u002F\" rel=\"nofollow ugc\">[Doc] Purchase\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.youtube.com\u002Fwatch?v=RUJ9VwZLFSY\" rel=\"nofollow ugc\">[Video] Installation Instruction\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=X-ccRdEFcM0\" rel=\"nofollow ugc\">[Video] Purchase, Installation & Configuration\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=ZFv6txtic0Y\" rel=\"nofollow ugc\">[Video] User Guide\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Help & Support\u003C\u002Fh4>\n\u003Cp>Visit our Help Center if you have any questions, our friendly Support Team is happy to help – \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fsupport.bestwebsoft.com\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Affiliate Program\u003C\u002Fh4>\n\u003Cp>Earn 20% commission by selling the premium WordPress plugins and themes by BestWebSoft – \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Faffiliate\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fbestwebsoft.com\u002Faffiliate\u002F\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Translation\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Czech (cs_CZ) (thanks to \u003Ca href=\"mailto:kucerami@gmail.com\" rel=\"nofollow ugc\">Michal Kučera\u003C\u002Fa>, www.n0lim.it, \u003Ca href=\"mailto:info@pamadessoft.cz\" rel=\"nofollow ugc\">PaMaDeSSoft\u003C\u002Fa>, www.pamadessoft.cz)\u003C\u002Fli>\n\u003Cli>French (fr_FR)\u003C\u002Fli>\n\u003Cli>German (de_DE)\u003C\u002Fli>\n\u003Cli>Japanese (ja)\u003C\u002Fli>\n\u003Cli>Italian (it_IT)\u003C\u002Fli>\n\u003Cli>Portuguese (pt_BR)\u003C\u002Fli>\n\u003Cli>Romanian (ro_RO)\u003C\u002Fli>\n\u003Cli>Russian (ru_RU)\u003C\u002Fli>\n\u003Cli>Spanish (es_ES)\u003C\u002Fli>\n\u003Cli>Turkish (tr_TR) (thanks to \u003Ca href=\"mailto:admin@lordiz.com\" rel=\"nofollow ugc\">Lordiz\u003C\u002Fa>, www.lordiz.com)\u003C\u002Fli>\n\u003Cli>Ukrainian (uk)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Some of these translations are not complete. We are constantly adding new features which should be translated. If you would like to create your own language pack or update the existing one, you can send \u003Ca href=\"https:\u002F\u002Fcodex.wordpress.org\u002FTranslating_WordPress\" rel=\"nofollow ugc\">the text of PO and MO files\u003C\u002Fa> to \u003Ca href=\"https:\u002F\u002Fsupport.bestwebsoft.com\u002Fhc\u002Fen-us\u002Frequests\u002Fnew\" rel=\"nofollow ugc\">BestWebSoft\u003C\u002Fa> and we’ll add it to the plugin. You can download the latest version of the program for work with PO and MO \u003Ca href=\"http:\u002F\u002Fwww.poedit.net\u002Fdownload.php\" rel=\"nofollow ugc\">files Poedit\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Recommended Plugins\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fupdater\u002F?k=f47f3eb3d739725d592249dbd129f7ff\" rel=\"nofollow ugc\">Updater\u003C\u002Fa> – Automatically check and update WordPress website core with all installed plugins and themes to the latest versions.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fcontact-form\u002F?k=56575444122cff9ab3ee3e640efb001a\" rel=\"nofollow ugc\">Contact Form\u003C\u002Fa> – Simple contact form plugin any WordPress website must have.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fsubscriber\u002F?k=e6d1742fcf1806a39afac207f7920cf3\" rel=\"nofollow ugc\">Subscriber\u003C\u002Fa> – Add email newsletter sign up form to WordPress posts, pages and widgets. Collect data and subscribe your users.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fmultilanguage\u002F?k=e48e145002e4b2472e568a81d171b888\" rel=\"nofollow ugc\">Multilanguage\u003C\u002Fa> – Translate WordPress website content to other languages manually. Create multilingual pages, posts, widgets, menus, etc.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>lib\u002Frecaptchalib.php – Copyright © 2007. Mike Crawford, Ben Maurer (reCAPTCHA – \u003Ca href=\"http:\u002F\u002Frecaptcha.net\" rel=\"nofollow ugc\">http:\u002F\u002Frecaptcha.net\u003C\u002Fa>). All Rights Reserved.\u003C\u002Fli>\n\u003Cli>The plugin uses Google Recaptcha (Google LLC) services to process data and protect against spam. \u003Ca href=\"https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002F\u003C\u002Fa> Terms of service \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fterms\" rel=\"nofollow ugc\">https:\u002F\u002Fpolicies.google.com\u002Fterms\u003C\u002Fa>. Privacy Policy \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fprivacy\" rel=\"nofollow ugc\">https:\u002F\u002Fpolicies.google.com\u002Fprivacy\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>This plugin incorporates a license verification mechanism to ensure the authenticity of your license key and provide access to premium features and updates. The verification process involves connecting securely to our external service hosted at BestWebSoft website \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\" rel=\"nofollow ugc\">https:\u002F\u002Fbestwebsoft.com\u003C\u002Fa>. Privacy Policy \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fbestwebsoft.com\u002Fprivacy-policy\u002F\u003C\u002Fa>. End user license agreement \u003Ca href=\"https:\u002F\u002Fbestwebsoft.com\u002Fend-user-license-agreement\u002F\" rel=\"nofollow ugc\">https:\u002F\u002Fbestwebsoft.com\u002Fend-user-license-agreement\u002F\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","Protect WordPress website forms from spam entries with Google reCAPTCHA.",100000,6607298,78,390,"2026-02-25T08:45:00.000Z","6.5",[90,91,19,92,93],"anti-spam-security","antispam","captha","recaptcha","https:\u002F\u002Fbestwebsoft.com\u002Fproducts\u002Fwordpress\u002Fplugins\u002Fgoogle-captcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgoogle-captcha.1.86.zip",98,"2025-01-03 00:00:00",{"slug":99,"name":100,"version":101,"author":102,"author_profile":103,"description":104,"short_description":105,"active_installs":106,"downloaded":107,"rating":108,"num_ratings":109,"last_updated":110,"tested_up_to":111,"requires_at_least":112,"requires_php":113,"tags":114,"homepage":15,"download_link":118,"security_score":119,"vuln_count":11,"unpatched_count":11,"last_vuln_date":25,"fetched_at":26},"wordfence-login-security","Wordfence Login Security","1.1.15","wfryan","https:\u002F\u002Fprofiles.wordpress.org\u002Fwfryan\u002F","\u003Ch3>WORDFENCE LOGIN SECURITY\u003C\u002Fh3>\n\u003Cp>Wordfence Login Security contains a subset of the functionality found in the full Wordfence plugin: Two-factor Authentication, XML-RPC Protection and Login Page CAPTCHA.\u003C\u002Fp>\n\u003Cp>Are you looking for comprehensive WordPress Security? \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwordfence\u002F\" rel=\"ugc\">Check out the full Wordfence plugin\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>TWO-FACTOR AUTHENTICATION\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Two-factor authentication (2FA), one of the most secure forms of remote system authentication available.\u003C\u002Fli>\n\u003Cli>Use any TOTP-based authenticator app or service like Google Authenticator, Authy, 1Password or FreeOTP.\u003C\u002Fli>\n\u003Cli>Enable 2FA for any WordPress user role.\u003C\u002Fli>\n\u003Cli>Completely free to use, no limits or restrictions of any kind.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>LOGIN PAGE CAPTCHA\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Easily enable Google ReCAPTCHA v3 on your login and registration pages.\u003C\u002Fli>\n\u003Cli>Stops bots from logging in without inconveniencing your site visitors.\u003C\u002Fli>\n\u003Cli>Robust protection against password guessing and credential stuffing attacks distributed across large IP pools\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>XML-RPC PROTECTION\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>XML-RPC is the biggest target for WordPress attacks, but is often overlooked.\u003C\u002Fli>\n\u003Cli>Protect XML-RPC with 2FA or disable it altogether if it’s not needed.\u003C\u002Fli>\n\u003C\u002Ful>\n","Secure your website with Wordfence Login Security, providing two-factor authentication, login and registration CAPTCHA, and XML-RPC protection.",70000,1239075,80,25,"2025-01-15T17:05:00.000Z","6.7.5","4.7","7.0",[115,19,116,21,117],"2fa","login-security","two-factor-authentication","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwordfence-login-security.1.1.15.zip",92,{"slug":121,"name":122,"version":123,"author":124,"author_profile":125,"description":126,"short_description":127,"active_installs":128,"downloaded":129,"rating":130,"num_ratings":131,"last_updated":132,"tested_up_to":133,"requires_at_least":134,"requires_php":15,"tags":135,"homepage":139,"download_link":140,"security_score":141,"vuln_count":73,"unpatched_count":11,"last_vuln_date":142,"fetched_at":26},"login-recaptcha","Login No Captcha reCAPTCHA","1.7.3","Robert Peake","https:\u002F\u002Fprofiles.wordpress.org\u002Frobertpeake\u002F","\u003Cp>Adds a Google No Captcha ReCaptcha checkbox to your WordPress and Woocommerce login, forgot password, and user registration pages. Denies access to automated scripts while making it easy on humans to log in by checking a box. As Google says, it is “Tough on bots, easy on humans.”\u003C\u002Fp>\n","Adds a Google No Captcha ReCaptcha checkbox to your Wordpress and Woocommerce login, forgot password, and user registration pages.",60000,1369961,90,63,"2024-02-27T10:43:00.000Z","6.4.8","4.6",[136,137,138,93,21],"google","login","nocaptcha","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flogin-recaptcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flogin-recaptcha.1.7.3.zip",85,"2022-08-16 00:00:00",{"attackSurface":144,"codeSignals":182,"taintFlows":202,"riskAssessment":229,"analyzedAt":232},{"hooks":145,"ajaxHandlers":169,"restRoutes":179,"shortcodes":180,"cronEvents":181,"entryPointCount":32,"unprotectedCount":11},[146,152,155,159,162,166],{"type":147,"name":148,"callback":149,"priority":150,"file":151,"line":141},"action","init","bot_lockout_load_settings",20,"bot-lockout.php",{"type":147,"name":153,"callback":154,"file":151,"line":119},"wp_enqueue_scripts","bot_lockout_enqueue_scripts",{"type":147,"name":156,"callback":157,"priority":73,"file":151,"line":158},"template_redirect","bot_lockout_validate_request",93,{"type":147,"name":160,"callback":161,"file":151,"line":31},"admin_menu","bot_lockout_admin_menu",{"type":147,"name":163,"callback":164,"file":151,"line":165},"admin_init","bot_lockout_admin_init",95,{"type":147,"name":167,"callback":168,"file":151,"line":96},"admin_enqueue_scripts","bot_lockout_admin_scripts",[170,175],{"action":171,"nopriv":172,"callback":173,"hasNonce":174,"hasCapCheck":174,"file":151,"line":33},"bot_lockout_save_settings",false,"bot_lockout_ajax_save_settings",true,{"action":176,"nopriv":172,"callback":177,"hasNonce":174,"hasCapCheck":174,"file":151,"line":178},"bot_lockout_test_challenge","bot_lockout_ajax_test_challenge",97,[],[],[],{"dangerousFunctions":183,"sqlUsage":184,"outputEscaping":187,"fileOperations":11,"externalRequests":11,"nonceChecks":29,"capabilityChecks":200,"bundledLibraries":201},[],{"prepared":185,"raw":11,"locations":186},12,[],{"escaped":188,"rawEcho":189,"locations":190},47,4,[191,194,196,198],{"file":151,"line":192,"context":193},363,"raw output",{"file":151,"line":195,"context":193},387,{"file":151,"line":197,"context":193},395,{"file":151,"line":199,"context":193},1004,6,[],[203,221],{"entryPoint":204,"graph":205,"unsanitizedCount":11,"severity":220},"bot_lockout_ajax_save_settings (bot-lockout.php:1013)",{"nodes":206,"edges":218},[207,212],{"id":208,"type":209,"label":210,"file":151,"line":211},"n0","source","$_POST",1030,{"id":213,"type":214,"label":215,"file":151,"line":216,"wp_function":217},"n1","sink","update_option() [Settings Manipulation]",1040,"update_option",[219],{"from":208,"to":213,"sanitized":174},"low",{"entryPoint":222,"graph":223,"unsanitizedCount":11,"severity":220},"\u003Cbot-lockout> (bot-lockout.php:0)",{"nodes":224,"edges":227},[225,226],{"id":208,"type":209,"label":210,"file":151,"line":211},{"id":213,"type":214,"label":215,"file":151,"line":216,"wp_function":217},[228],{"from":208,"to":213,"sanitized":174},{"summary":230,"deductions":231},"The 'bot-lockout' plugin v1.0.0 demonstrates a strong security posture with several positive indicators. Notably, all identified SQL queries utilize prepared statements, significantly mitigating SQL injection risks.  Furthermore, the plugin shows a commendable level of output escaping, with 92% of outputs being properly sanitized, which reduces the likelihood of cross-site scripting (XSS) vulnerabilities. The complete absence of dangerous functions, file operations, and external HTTP requests further contributes to its secure design.  The presence of nonce and capability checks on its entry points is also a good practice, securing its two identified AJAX handlers.",[],"2026-03-17T06:35:22.958Z",{"wat":234,"direct":245},{"assetPaths":235,"generatorPatterns":239,"scriptPaths":240,"versionParams":241},[236,237,238],"\u002Fwp-content\u002Fplugins\u002Fbot-lockout\u002Fcss\u002Fbot-lockout-admin.css","\u002Fwp-content\u002Fplugins\u002Fbot-lockout\u002Fjs\u002Fbot-lockout-admin.js","\u002Fwp-content\u002Fplugins\u002Fbot-lockout\u002Fjs\u002Fbot-lockout-challenge.js",[],[238],[242,243,244],"bot-lockout\u002Fjs\u002Fbot-lockout-challenge.js?ver=","bot-lockout\u002Fcss\u002Fbot-lockout-admin.css?ver=","bot-lockout\u002Fjs\u002Fbot-lockout-admin.js?ver=",{"cssClasses":246,"htmlComments":248,"htmlAttributes":249,"restEndpoints":254,"jsGlobals":256,"shortcodeOutput":258},[247],"bot_lockout_challenge_container",[],[250,251,252,253],"data-bot-lockout-ajax-url","data-bot-lockout-nonce","data-bot-lockout-timeout","data-bot-lockout-custom-css",[255],"\u002Fwp-json\u002Fbot-lockout\u002Fv1\u002Fchallenge",[257],"botLockoutVars",[]]