[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f6xqKfSpBBVfWO47XjlKJnO8hu0qMYdpfx3hwiVxKjwA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":40,"analysis":140,"fingerprints":181},"cloudflare-flexible-ssl","Flexible SSL for CloudFlare","1.3.1","Paul","https:\u002F\u002Fprofiles.wordpress.org\u002Fpaultgoodchild\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Ficwp.io\u002F6z\" rel=\"nofollow ugc\">Click For Full Implementation Guide\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Using CloudFlare® Flexible SSL on WordPress isn’t as simple as just turning it on.\u003C\u002Fp>\n\u003Cp>This plugin forms an \u003Cstrong>integral part\u003C\u002Fstrong> to enabling Flexible SSL on WordPress and prevents infinite redirect loops when loading WordPress sites under Cloudflare’s Flexible SSL system.\u003C\u002Fp>\n\u003Cp>\u003Cem>Cloudflare is a registered trademark of Cloudflare, Inc.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>One Dollar Plugin is not affiliated in any way with Cloudflare, Inc. This plugin provided separately and completely independently.\u003C\u002Fp>\n\u003Cp>Remember: This plugin is just part of the installation process for Flexible SSL. \u003Ca href=\"https:\u002F\u002Ficwp.io\u002F6z\" rel=\"nofollow ugc\">Please follow the full guide\u003C\u002Fa>\u003C\u002Fp>\n","Fix For Redirect Loops on WordPress with CloudFlare's Flexible\u002FUniversal SSL.",100000,1174275,96,51,"2025-12-23T10:10:00.000Z","6.9.4","3.2.0","5.2",[20,21,22,23,24],"cloudflare","flexible-ssl","redirect-loop","ssl","universal-ssl","https:\u002F\u002Ficwp.io\u002Fcloudflaresslpluginauthor","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcloudflare-flexible-ssl.1.3.1.zip",100,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":34,"total_installs":35,"avg_security_score":36,"avg_patch_time_days":37,"trust_score":38,"computed_at":39},"paultgoodchild",5,141210,90,125,72,"2026-04-04T17:54:59.339Z",[41,61,84,102,117],{"slug":42,"name":43,"version":44,"author":45,"author_profile":46,"description":47,"short_description":48,"active_installs":49,"downloaded":50,"rating":27,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":55,"tags":56,"homepage":58,"download_link":59,"security_score":60,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"ctw-ssl-for-cloudflare","Cloudflare SSL by Weslink","1.0.9","Christofer Weßeling","https:\u002F\u002Fprofiles.wordpress.org\u002Fcetewe\u002F","\u003Cp>CloudFlare Flexible SSL needs some tiny Modification to get not into a redirect loop. This Plugins makes your WordPress Site ready to use Cloudflare SSL and prevents the common SSL infinite loop Problem.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fweslink.de\u002Fblog\u002F\" rel=\"nofollow ugc\">WordPress and SSL \u003C\u002Fa>.\u003C\u002Fp>\n","Plugin to enable CloudFlare Flexible SSL for Wordpress and to prevent the Redirect Loop",3000,48456,6,"2019-01-08T09:21:00.000Z","5.0.25","3.2.1","",[20,21,57,22,23],"https","https:\u002F\u002Fweslink.de","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fctw-ssl-for-cloudflare.1.0.9.zip",85,{"slug":20,"name":62,"version":63,"author":62,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":69,"num_ratings":70,"last_updated":71,"tested_up_to":72,"requires_at_least":73,"requires_php":74,"tags":75,"homepage":79,"download_link":80,"security_score":81,"vuln_count":82,"unpatched_count":28,"last_vuln_date":83,"fetched_at":30},"Cloudflare","4.14.2","https:\u002F\u002Fprofiles.wordpress.org\u002Fcloudflare\u002F","\u003Ch4>What this plugin can do for you\u003C\u002Fh4>\n\u003Cp>[https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=DWANhxoDxFI]\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Automatic Platform Optimization (APO)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Speed up your WordPress site by up to 300% with Cloudflare’s Automatic Platform Optimization (APO) plugin. APO allows Cloudflare to serve your entire WordPress site from our edge network of over 250+ data centers worldwide ensuring fast & reliable performance for your visitors no matter where they are.\u003C\u002Fp>\n\u003Cp>Optimizing your WordPress site with multiple plugins can be overwhelming. Take your WordPress site’s performance to the next level by switching to a single plugin for CDN, intelligent caching, and other key WordPress optimizations with Cloudflare (APO). Visit our \u003Ca href=\"https:\u002F\u002Fblog.cloudflare.com\u002Fautomatic-platform-optimizations-starting-with-wordpress\u002F\" rel=\"nofollow ugc\">announcement blog\u003C\u002Fa> to learn more about APO.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What makes APO different from other caching plugins?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The key differentiating factor between Cloudflare APO and other traditional page caching and CDN solutions is its ability to directly cache static HTML at Cloudflare’s edge. Every other plugin and CDN will cache your static assets (images, javascript, CSS), but none help you cache the actual content on your site (the HTML) using a massive edge network like Cloudflare’s.\u003C\u002Fp>\n\u003Cp>APO intelligently caches your HTML pages and will automatically purge content from the cache that you update, so users will always see the latest content without compromising the performance of pages that haven’t been recently updated\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What you get with Cloudflare APO\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>APO is a $5 add-on with Cloudflare’s free plan and comes with an unlimited amount of subdomains. With APO you also get to leverage many of the other benefits of Cloudflare such as \u003Cstrong>Free DNS, Free Automated SSL Certificates, Free DDoS Mitigation, and more.\u003C\u002Fstrong> APO is free for all paid plan users so if you have Cloudflare Pro or Business already you can just turn it on. You can compare all our plans \u003Ca href=\"https:\u002F\u002Fwww.cloudflare.com\u002Fplans\u002F?utm_source=promo&utm_medium=social&utm_term=&utm_content=&utm_campaign=g421o-pl-apo-wordpress-plans\" rel=\"nofollow ugc\">here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Protect your WordPress site with Cloudflare’s Web Application Firewall (WAF)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Cloudflare’s WAF is available on all our \u003Ca href=\"https:\u002F\u002Fwww.cloudflare.com\u002Fplans\u002F?utm_source=promo&utm_medium=social&utm_term=&utm_content=&utm_campaign=g421o-pl-apo-wordpress-plans\" rel=\"nofollow ugc\">paid plans\u003C\u002Fa> and comes with built-in rulesets, specifically tailored to mitigate WordPress threats and vulnerabilities. These security rules are regularly updated by our team of experts. At the flip of a switch, you’ll have your WAF up and running without any difficult adjustments to your site. With over 26 million internet properties under our protection, you can sleep easy knowing Cloudflare has your back.\u003C\u002Fp>\n\u003Ch4>Additional features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Header rewrite to prevent a redirect loop when Cloudflare’s Universal SSL is enabled\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Change Cloudflare settings from within the plugin itself without needing to navigate to the cloudflare.com dashboard. You can change settings for cache purge, security level, Always Online, and image optimization\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>View analytics such as total visitors, bandwidth saved, and threats blocked\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Support for \u003Ca href=\"https:\u002F\u002Fblog.cloudflare.com\u002Fannouncing-support-for-http-2-server-push-2\u002F\" rel=\"nofollow ugc\">HTTP2\u002FServer Push\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","All of Cloudflare’s performance and security benefits in a simple one-click install.",200000,9150323,70,179,"2025-12-22T16:44:00.000Z","6.9.0","5.0","7.4",[20,76,77,78,23],"ddos","seo","speed","https:\u002F\u002Fblog.cloudflare.com\u002Fnew-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcloudflare.4.14.2.zip",99,2,"2024-01-04 00:00:00",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":28,"num_ratings":28,"last_updated":94,"tested_up_to":95,"requires_at_least":73,"requires_php":96,"tags":97,"homepage":100,"download_link":101,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"flex-ssl","Flex SSL","1.0.8","Flex Plugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fflexfields\u002F","\u003Cp>Flex SSL is a lightweight WordPress plugin designed to secure your website by enforcing HTTPS across your entire site. Key features include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Force HTTPS:\u003C\u002Fstrong> Automatically redirect all HTTP requests to HTTPS.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto-Update URLs:\u003C\u002Fstrong> Change WordPress site and home URLs from HTTP to HTTPS.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Cloudflare\u002FProxy Support:\u003C\u002Fstrong> Detects HTTPS headers from Cloudflare or other reverse proxies to avoid redirect loops.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Security Headers:\u003C\u002Fstrong> Optionally add HSTS, X-Frame-Options, X-Content-Type-Options, Referrer-Policy. Force SSL Admin when HTTPS is in use.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mixed Content Fixer:\u003C\u002Fstrong> Corrects HTTP to HTTPS in content, excerpts, thumbnails, scripts, styles, content_url, and home_url.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>SSL Status:\u003C\u002Fstrong> View current SSL status and certificate expiry date.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Redirect Options:\u003C\u002Fstrong> Choose between 301 (permanent) and 302 (temporary) redirects.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Logs & Reports:\u003C\u002Fstrong> Monitor changes and events in a log system.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Let’s Encrypt Integration (Coming Soon):\u003C\u002Fstrong> Plan to automatically generate and renew SSL certificates.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>Flex SSL is free software: you can redistribute it and\u002For modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 2 of the License, or (at your option) any later version.\u003C\u002Fp>\n\u003Cp>For more details, see https:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-2.0.html.\u003C\u002Fp>\n","Enables SSL & forces HTTPS on WordPress, updating URLs & adding security headers. Supports reverse proxies & soon integrates Let's Encrypt.",20,560,"2026-03-08T20:59:00.000Z","6.8.5","7.0",[20,57,98,99,23],"mixed-content","security","https:\u002F\u002Fflex-fields.com\u002Fssl\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fflex-ssl.1.0.8.zip",{"slug":103,"name":104,"version":105,"author":106,"author_profile":107,"description":108,"short_description":109,"active_installs":28,"downloaded":110,"rating":28,"num_ratings":28,"last_updated":55,"tested_up_to":111,"requires_at_least":17,"requires_php":18,"tags":112,"homepage":55,"download_link":115,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":116},"polaris-flexible-ssl","Polaris Flexible SSL","1.0.1","trungking","https:\u002F\u002Fprofiles.wordpress.org\u002Ftrungking\u002F","\u003Cp>This plugin fix Polaris Flexible SSL Redirect Loop and mixed contents For WordPress.\u003C\u002Fp>\n","This plugin fix Polaris Flexible SSL Redirect Loop and mixed contents For WordPress.",829,"5.4.19",[21,113,114],"polaris","polaris-ssl","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpolaris-flexible-ssl.zip","2026-03-15T10:48:56.248Z",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":11,"downloaded":125,"rating":126,"num_ratings":127,"last_updated":128,"tested_up_to":95,"requires_at_least":129,"requires_php":74,"tags":130,"homepage":136,"download_link":137,"security_score":81,"vuln_count":138,"unpatched_count":28,"last_vuln_date":139,"fetched_at":30},"advanced-nocaptcha-recaptcha","CAPTCHA 4WP – Antispam CAPTCHA solution for WordPress","7.6.0","WPKube","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpkube\u002F","\u003Ch4>IMPORTANT NOTICE\u003C\u002Fh4>\n\u003Cp>CAPTCHA 4WP has been acquired by WPKube. \u003Ca href=\"https:\u002F\u002Fmelapress.com\u002Fcaptcha-4-wp-plugin-acquired-by-wpkube\u002F\" rel=\"nofollow ugc\">Read the announcement\u003C\u002Fa> for more information.\u003Cbr \u002F>\nWe, at Melapress, would like to take this opportunity to thank everyone who has used and supported CAPTCHA 4WP.\u003C\u002Fp>\n\u003Ch3>A free and easy-to-use CAPTCHA plugin for WordPress\u003C\u002Fh3>\n\u003Cp>Protect your WordPress forms and login pages from spam and automated attacks with \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002F\" rel=\"nofollow ugc\">CAPTCHA 4WP\u003C\u002Fa>. Choose from multiple ReCAPTCHA versions and strike the right balance between security and user experience.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Ffeatures\u002F\" rel=\"nofollow ugc\">Features\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fpricing\u002F\" rel=\"nofollow ugc\">Get the Premium!\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fgetting-started-with-captcha-4wp\u002F\" rel=\"nofollow ugc\">Getting Started\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Use the CAPTCHA 4WP plugin to add CAPTCHA checks to WordPress forms and logins. Choose from V2 (I’m not a robot), V2 Invisible, and V3 noCAPTCHA to ensure the best user experience at all times without compromosing security. Avoid false positives falling through the crack with V3 failover to ensure humans can still pass the test even if the result comes back below the passmark.\u003C\u002Fp>\n\u003Ch3>CAPTCHA 4WP key plugin features and capabilities\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Add CAPTCHA to WordPress native forms such as login pages, user registration and comments forms etc\u003C\u002Fli>\n\u003Cli>Supports multiple ReCAPTCHA versions\u003C\u002Fli>\n\u003Cli>User-friendly wizards for easy, hassle-free setup\u003C\u002Fli>\n\u003Cli>Set ReCAPTCHA V3 passmark score \u003C\u002Fli>\n\u003Cli>ReCAPTCHA failover configuration (ensure no prospect is incorrectly marked as spam)\u003C\u002Fli>\n\u003Cli>Plugin automatically detects visitors’ language and shows CAPTCHA in that language\u003C\u002Fli>\n\u003Cli>Much more\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Upgrade to CAPTCHA 4WP Premium and get even more\u003C\u002Fh3>\n\u003Cp>With the premium edition of CAPTCHA 4WP, you can choose from a wider range of CAPTCHA service providers, 1-click WooCommerce and other 3rd party plugin support, whitelisting, and much more.\u003C\u002Fp>\n\u003Ch3>Premium features list\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Everything in the free version\u003C\u002Fli>\n\u003Cli>Add CAPTCHA from hCaptcha and Cloudflare Turnstile on your websites, both free and GDPR compliant\u003C\u002Fli>\n\u003Cli>Add Geoblocking on forms and WordPress comments form (block \u002F limit form submissions or comment posting by country)\u003C\u002Fli>\n\u003Cli>Customization options for the CAPTCHA checks text, visual and position on the forms\u003C\u002Fli>\n\u003Cli>One-click integration with WooCommerce\u003C\u002Fli>\n\u003Cli>One-click integration with Contact Form 7, Gravity Forms, WPForms, BuddyPress & other plugins\u003C\u002Fli>\n\u003Cli>Much more\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Refer to the \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Ffeatures\u002F\" rel=\"nofollow ugc\">CAPTCHA 4WP plugin features and benefits page\u003C\u002Fa> to learn more about the benefits of upgrading to the Premium version of CAPTCHA 4WP.\u003C\u002Fp>\n\u003Ch3>Free and premium support\u003C\u002Fh3>\n\u003Cp>Support for CAPTCHA 4WP is free through the WordPress support forums.\u003C\u002Fp>\n\u003Cp>Premium support for paid customer support is provided via one-to-one email. Upgrade to Premium to benefit from premium support.\u003C\u002Fp>\n\u003Cp>For any other queries, feedback, or if you simply want to get in touch with us, please use our \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fsubmit-ticket\u002F\" rel=\"nofollow ugc\">contact form\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>As featured on:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.wpbeginner.com\u002Fplugins\u002Fhow-to-add-captcha-in-wordpress-login-and-registration-form\u002F\" rel=\"nofollow ugc\">WP Beginner\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.elegantthemes.com\u002Fblog\u002Fwordpress\u002Fwordpress-captcha\" rel=\"nofollow ugc\">Elegant Themes\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.isitwp.com\u002Fbest-wordpress-captcha-plugins\u002F\" rel=\"nofollow ugc\">IsItWP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwplift.com\u002Fbest-wordpress-captcha-plugins\" rel=\"nofollow ugc\">WPLift\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftesterwp.com\u002Fbest-free-captcha-wordpress-plugins\u002F\" rel=\"nofollow ugc\">TesterWP\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Related links and documentation:\u003C\u002Fh3>\n\u003Cp>You can find more detailed information about CAPTCHA tests and the benefits you can take advantage of, and the plugin in the links below:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fwhy-need-captcha-wordpress-website\u002F\" rel=\"nofollow ugc\">Why you need CAPTCHA on your WordPress website\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdifferent-types-captcha-checks-wordpress\u002F\" rel=\"nofollow ugc\">The different types of CAPTCHA for websites\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fcaptcha-recaptcha-nocaptcha-differences\u002F\" rel=\"nofollow ugc\">What is the difference between CAPTCHA, ReCAPTCHA, and NoCAPTCHA?\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fgetting-started-with-captcha-4wp\u002F\" rel=\"nofollow ugc\">Getting started with CAPTCHA 4WP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fhow-to-add-captcha-to-woocommerce-forms\u002F\" rel=\"nofollow ugc\">How to add CAPTCHA on WooCommerce forms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fhow-to-add-captcha-on-wpforms-forms\u002F\" rel=\"nofollow ugc\">How to add CAPTCHA on WPForms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fhow-to-add-captcha-on-gravity-forms-forms\u002F\" rel=\"nofollow ugc\">How to add CAPTCHA on Gravity Forms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fhow-to-show-captcha-on-failed-logins\u002F\" rel=\"nofollow ugc\">How to show CAPTCHA on failed logins\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002F\" rel=\"nofollow ugc\">Official Melapress website\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Installing CAPTCHA 4WP\u003C\u002Fh3>\n\u003Ch3>From within WordPress\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Navigate to “Plugins”page and click the “Add New” button\u003C\u002Fli>\n\u003Cli>Search for “CAPTCHA 4WP”\u003C\u002Fli>\n\u003Cli>Cick install and after that activate the plugin\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Manually\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Download the plugin from the WordPress plugins repository\u003C\u002Fli>\n\u003Cli>Unzip the zip file and upload the folder to the \u002Fwp-content\u002Fplugins\u002F directory\u003C\u002Fli>\n\u003Cli>Activate CAPTCHA 4WP through the “Plugins” menu in WordPress\u003C\u002Fli>\n\u003C\u002Fol>\n","Use CAPTCHA to stop spam and allow customers & users to interact with your website easily. Block fake accounts and orders. Avoid false positives.",3577096,64,268,"2025-06-11T07:53:00.000Z","5.5",[131,132,133,134,135],"antispam-protection","captcha","cloudflare-turnstile","hcaptcha","recaptcha","https:\u002F\u002Fcaptcha4wp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-nocaptcha-recaptcha.7.6.0.zip",1,"2022-06-29 00:00:00",{"attackSurface":141,"codeSignals":164,"taintFlows":174,"riskAssessment":175,"analyzedAt":180},{"hooks":142,"ajaxHandlers":160,"restRoutes":161,"shortcodes":162,"cronEvents":163,"entryPointCount":28,"unprotectedCount":28},[143,149,154,158],{"type":144,"name":145,"callback":146,"file":147,"line":148},"action","shutdown","maintainPluginLoadPosition","plugin.php",37,{"type":144,"name":150,"callback":151,"file":152,"line":153},"init","closure","shieldprom.php",3,{"type":144,"name":155,"callback":156,"file":152,"line":157},"admin_notices","odp_shield_promo_notice",19,{"type":144,"name":159,"callback":156,"file":152,"line":92},"network_admin_notices",[],[],[],[],{"dangerousFunctions":165,"sqlUsage":166,"outputEscaping":168,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":138,"bundledLibraries":173},[],{"prepared":28,"raw":28,"locations":167},[],{"escaped":28,"rawEcho":138,"locations":169},[170],{"file":152,"line":171,"context":172},33,"raw output",[],[],{"summary":176,"deductions":177},"The \"cloudflare-flexible-ssl\" plugin version 1.3.1 demonstrates a generally strong security posture based on the provided static analysis.  It reports zero AJAX handlers, REST API routes, shortcodes, or cron events, which significantly limits the potential attack surface.  Furthermore, the absence of dangerous functions and the exclusive use of prepared statements for its SQL queries are positive indicators. The plugin also shows no recorded vulnerabilities, including CVEs, which suggests a history of stable and secure operation.\n\nHowever, the analysis does highlight a significant concern regarding output escaping, with 100% of outputs not being properly escaped. This could lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is directly outputted to the browser without sanitization. While taint analysis shows no critical or high severity flows, and the attack surface is minimal, this unescaped output represents a concrete, albeit potentially low-impact depending on the data handled, risk that needs to be addressed.\n\nIn conclusion, the plugin's minimal attack surface and lack of historical vulnerabilities are strengths. The primary weakness identified is the lack of output escaping, which creates a potential XSS risk. Addressing this issue would further improve the plugin's security.",[178],{"reason":179,"points":51},"Unescaped output","2026-03-16T17:06:57.499Z",{"wat":182,"direct":187},{"assetPaths":183,"generatorPatterns":184,"scriptPaths":185,"versionParams":186},[],[],[],[],{"cssClasses":188,"htmlComments":190,"htmlAttributes":191,"restEndpoints":192,"jsGlobals":193,"shortcodeOutput":194},[189],"updated",[],[],[],[],[]]