[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fV2ZO6W9woZ-l9SxITRGNMBpnPXfSJ4bYsAoU_0-3QSY":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":23,"download_link":24,"security_score":13,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":36,"analysis":137,"fingerprints":227},"comment-validation-computy","comment validation","1.6.9","calliko","https:\u002F\u002Fprofiles.wordpress.org\u002Fcalliko\u002F","\u003Cp>Validation Plugin comments. The plugin is based on js-script jquery.validate.\u003Cbr \u002F>\nThe plugin does not require any settings and works automatically for standard WordPress comments, of course, if you have a standard theme.\u003C\u002Fp>\n","Validation Plugin comments. The plugin is based on js-script jquery.validate.",80,4524,100,1,"2026-01-02T02:59:00.000Z","6.9.4","4.9","7.4",[20,21,22],"comments","form","validation","https:\u002F\u002Fcomputy.ru\u002Fblog\u002Fplagin-validacii-formy-kommentariev-v-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcomment-validation-computy.1.6.9.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},6,330,99,51,87,"2026-04-05T08:47:52.521Z",[37,57,76,94,115],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":13,"num_ratings":14,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":50,"tags":51,"homepage":54,"download_link":55,"security_score":56,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"advanced-comment-validation","Advanced Comment Validation","2.2","Abhishek.shukla","https:\u002F\u002Fprofiles.wordpress.org\u002Fabhi-ime\u002F","\u003Cp>This plugin is the most powerfull plugin which easily put the validation on your wordpress comment form.\u003C\u002Fp>\n\u003Cp>This plugin is compatibile with other plugin.\u003C\u002Fp>\n\u003Cp>In this plugin need to only activate the plugin.\u003C\u002Fp>\n\u003Cp>For more plugins, themes and WordPress support , Please visit http:\u002F\u002Fwww.interactiveitsolutions.com\u002F\u003C\u002Fp>\n","This plugin adds wordpress comments validation to the Wordpress comment form. only need to activate the plugin than validation is working.",60,4050,"2016-11-28T07:21:00.000Z","4.6.30","1.3.0","",[38,52,20,53],"comment-form","comments-form-validation","http:\u002F\u002Fwww.interactiveitsolutions.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-comment-validation.zip",85,{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":25,"num_ratings":25,"last_updated":67,"tested_up_to":68,"requires_at_least":69,"requires_php":70,"tags":71,"homepage":73,"download_link":74,"security_score":75,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"comment-form-validation-and-customization","Comment form validation and Customization","1.0.1","Chetan Vaghela","https:\u002F\u002Fprofiles.wordpress.org\u002Fthechetanvaghela\u002F","\u003Cp>The plugin provides a funcationality to add validation on WordPress default comment form using Javascript and prevents it from dying when an error occurs and user can prevent to die on duplicate comment message.\u003C\u002Fp>\n\u003Ch3>Features And Options:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Validation on required fields using javascript.\u003C\u002Fli>\n\u003Cli>prevent to die on comment form error message.\u003C\u002Fli>\n\u003Cli>On duplicate comment display message below comment form instead die.\u003C\u002Fli>\n\u003Cli>Change Comment form submit button text\u003C\u002Fli>\n\u003C\u002Ful>\n","Wordpress default comment form validation using javascript and customization.",40,1319,"2024-08-29T16:13:00.000Z","6.6.5","3.0.1","7.0",[52,20,72,22],"customization","https:\u002F\u002Fgithub.com\u002Fthechetanvaghela","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcomment-form-validation-and-customization.zip",92,{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":25,"downloaded":84,"rating":25,"num_ratings":25,"last_updated":85,"tested_up_to":86,"requires_at_least":69,"requires_php":87,"tags":88,"homepage":92,"download_link":93,"security_score":56,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27},"javascript-disposable-email-blocker","Javascript Disposable Email Blocker","1.0.0","Tomba Email Finder","https:\u002F\u002Fprofiles.wordpress.org\u002Ftombaio\u002F","\u003Cp>Elevate the security and reliability of your online forms with this indispensable, fully customizable plugin. It plays a pivotal role in minimizing spam, improving user interactions, and safeguarding your website’s data integrity.\u003C\u002Fp>\n\u003Cp>The plugin is also fully customizable.\u003Cbr \u002F>\nThe plugin serves as a critical tool in reducing spam, improving user experience, and maintaining the integrity of your website’s data.\u003C\u002Fp>\n\u003Ch4>Supported Plugins\u003C\u002Fh4>\n\u003Cp>The \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftomba-io\u002Fdisposable-email-blocker\" rel=\"nofollow ugc\">Javascript Disposable Email Blocker\u003C\u002Fa> by tomba.io plugin supports a rich set of popular form-based plugins.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Elementor Form\u003C\u002Fli>\n\u003Cli>WooCommerce\u003C\u002Fli>\n\u003Cli>Fluent Form\u003C\u002Fli>\n\u003Cli>Gravity Forms\u003C\u002Fli>\n\u003Cli>MailChimp\u003C\u002Fli>\n\u003Cli>Ninja Forms\u003C\u002Fli>\n\u003Cli>Profile Builder\u003C\u002Fli>\n\u003Cli>Formidable forms\u003C\u002Fli>\n\u003Cli>Ultimate Member registration form\u003C\u002Fli>\n\u003Cli>Mailster Form\u003C\u002Fli>\n\u003Cli>Users Ultra registration form\u003C\u002Fli>\n\u003Cli>JetPack comments and a contact form\u003C\u002Fli>\n\u003Cli>Theme My Login\u003C\u002Fli>\n\u003Cli>Contact Form\u003C\u002Fli>\n\u003Cli>WP-Members\u003C\u002Fli>\n\u003Cli>Paid Memberships Pro\u003C\u002Fli>\n\u003Cli>MailPoet\u003C\u002Fli>\n\u003Cli>WP Forms\u003C\u002Fli>\n\u003Cli>Visual Form Builder\u003C\u002Fli>\n\u003Cli>Any WordPress registrations & contact forms   \u003C\u002Fli>\n\u003Cli>WS Form \u003C\u002Fli>\n\u003Cli>Form Maker by 10Web\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Protect all HTML Forms.\u003C\u002Fli>\n\u003Cli>Detect invalid emails.\u003C\u002Fli>\n\u003Cli>Detect invalid Domains.\u003C\u002Fli>\n\u003Cli>Detect and Block disposable emails.\u003C\u002Fli>\n\u003Cli>We crawl the disposable email domains daily to keep safe from fake uses.\u003C\u002Fli>\n\u003Cli>Detect and Block webmail emails.\u003C\u002Fli>\n\u003Cli>Custom Error Message\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>How to use\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>First install the Javascript Disposable Email Blocker plugin\u003C\u002Fli>\n\u003Cli>Enjoy!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>FURTHER READING\u003C\u002Fh4>\n\u003Cp>Read more about Tomba Email Finder\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftomba.io\u002Fdomain-search\" rel=\"nofollow ugc\">Domain Search\u003C\u002Fa> (Search emails are based on the website You give one domain name and it returns all the email addresses found on the internet.)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftomba.io\u002Femail-finder\" rel=\"nofollow ugc\">Email Finder\u003C\u002Fa> (This API endpoint generates or retrieves the most likely email address from a domain name, a first name and a last name..)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftomba.io\u002Fauthor-finder\" rel=\"nofollow ugc\">Author Finder\u003C\u002Fa> (Instantly discover the email addresses of article authors.)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftomba.io\u002Fauthor-finder\" rel=\"nofollow ugc\">Enrichment\u003C\u002Fa> (The Enrichment lets you find the current job title, company, location and social profiles of the person behind the email.)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftomba.io\u002Fauthor-finder\" rel=\"nofollow ugc\">Linkedin Finder\u003C\u002Fa> (The Linkedin lets you find the current job title, company, location and social profiles of the person behind the linkedin URL.)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftomba.io\u002Femail-verifier\" rel=\"nofollow ugc\">Email Verifier\u003C\u002Fa> (checks the deliverability of a given email address, verifies if it has been found in our database, and returns their sources.)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Feedback\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Liked that plugin? Hate it? Want a new feature? \u003Ca href=\"mailto:support@tomba.io\" title=\"Send feedback\" rel=\"nofollow ugc\">Send me some feedback\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>For installation help click on Installation Tab\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","This plugin ensures your forms accept only legitimate email addresses using JavaScript, enhancing your site's security and user experience.",1644,"2024-03-22T19:32:00.000Z","6.4.8","7.1",[20,89,21,90,91],"email-form-validation","javascript","spam","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fjavascript-disposable-email-blocker","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjavascript-disposable-email-blocker.1.0.0.zip",{"slug":95,"name":96,"version":97,"author":98,"author_profile":99,"description":100,"short_description":101,"active_installs":102,"downloaded":103,"rating":11,"num_ratings":104,"last_updated":105,"tested_up_to":16,"requires_at_least":106,"requires_php":18,"tags":107,"homepage":110,"download_link":111,"security_score":112,"vuln_count":113,"unpatched_count":25,"last_vuln_date":114,"fetched_at":27},"contact-form-7","Contact Form 7","6.1.5","Rock Lobster Inc.","https:\u002F\u002Fprofiles.wordpress.org\u002Frocklobsterinc\u002F","\u003Cp>Contact Form 7 is a plugin designed to be a practical tool for all WordPress users who embrace the philosophy of free and open source software. It employs sophisticatedly modularized architecture and its original \u003Ca href=\"https:\u002F\u002Fcontactform7.com\u002Fschema-woven-validation\u002F\" rel=\"nofollow ugc\">Schema-Woven Validation\u003C\u002Fa> technology.\u003C\u002Fp>\n\u003Ch4>Docs and support\u003C\u002Fh4>\n\u003Cp>You can find \u003Ca href=\"https:\u002F\u002Fcontactform7.com\u002Fdocs\u002F\" rel=\"nofollow ugc\">docs\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fcontactform7.com\u002Ffaq\u002F\" rel=\"nofollow ugc\">FAQ\u003C\u002Fa> and more detailed information about Contact Form 7 on \u003Ca href=\"https:\u002F\u002Fcontactform7.com\u002F\" rel=\"nofollow ugc\">contactform7.com\u003C\u002Fa>. When you cannot find the answer to your question on the FAQ or in any of the documentation, check the \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fcontact-form-7\u002F\" rel=\"ugc\">support forum\u003C\u002Fa> on WordPress.org. If you cannot locate any topics that pertain to your particular issue, post a new topic for it.\u003C\u002Fp>\n\u003Ch4>Contact Form 7 needs your support\u003C\u002Fh4>\n\u003Cp>It is hard to continue to maintain this plugin without support from users like you. There are several ways for you to \u003Ca href=\"https:\u002F\u002Fcontactform7.com\u002Fcontributing\u002F\" rel=\"nofollow ugc\">contribute to the project\u003C\u002Fa>: testing, coding, translating it into your local languages, helping other users, financial donations, etc, etc. We equally welcome you regardless of the way you contribute.\u003C\u002Fp>\n\u003Ch4>Privacy notices\u003C\u002Fh4>\n\u003Cp>With the default configuration, this plugin, in itself, does not:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>track users by stealth;\u003C\u002Fli>\n\u003Cli>write any user personal data to the database;\u003C\u002Fli>\n\u003Cli>send any data to external servers;\u003C\u002Fli>\n\u003Cli>use cookies.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>If you activate certain features in this plugin, the contact form submitter’s personal data, including their IP address, may be sent to the service provider. Thus, confirming the provider’s privacy policy is recommended. These features include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>reCAPTCHA (\u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002F?hl=en\" rel=\"nofollow ugc\">Google\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Akismet (\u003Ca href=\"https:\u002F\u002Fautomattic.com\u002Fprivacy\u002F\" rel=\"nofollow ugc\">Automattic\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.constantcontact.com\u002Flegal\u002Fprivacy-center\" rel=\"nofollow ugc\">Constant Contact\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.brevo.com\u002Flegal\u002Fprivacypolicy\u002F\" rel=\"nofollow ugc\">Brevo\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fstripe.com\u002Fprivacy\" rel=\"nofollow ugc\">Stripe\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Turnstile (\u003Ca href=\"https:\u002F\u002Fwww.cloudflare.com\u002Fturnstile-privacy-policy\u002F\" rel=\"nofollow ugc\">Cloudflare\u003C\u002Fa>)\u003C\u002Fli>\n\u003C\u002Ful>\n","Just another contact form plugin. Simple but flexible.",10000000,410401871,2155,"2026-02-08T09:32:00.000Z","6.7",[108,109],"contact-form","schema-woven-validation","https:\u002F\u002Fcontactform7.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcontact-form-7.6.1.5.zip",89,8,"2025-04-15 16:56:22",{"slug":116,"name":117,"version":118,"author":119,"author_profile":120,"description":121,"short_description":122,"active_installs":123,"downloaded":124,"rating":125,"num_ratings":126,"last_updated":127,"tested_up_to":16,"requires_at_least":128,"requires_php":129,"tags":130,"homepage":133,"download_link":134,"security_score":32,"vuln_count":135,"unpatched_count":25,"last_vuln_date":136,"fetched_at":27},"akismet","Akismet Anti-spam: Spam Protection","5.6","Automattic","https:\u002F\u002Fprofiles.wordpress.org\u002Fautomattic\u002F","\u003Cp>The best anti-spam protection to block spam comments and spam in a contact form. The most trusted antispam solution for WordPress and WooCommerce.\u003C\u002Fp>\n\u003Cp>Akismet checks your comments and contact form submissions against our global database of spam to prevent your site from publishing malicious content. You can review the comment spam it catches on your blog’s “Comments” admin screen.\u003C\u002Fp>\n\u003Cp>Major features in Akismet include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Automatically checks all comments and filters out the ones that look like spam.\u003C\u002Fli>\n\u003Cli>Each comment has a status history, so you can easily see which comments were caught or cleared by Akismet and which were spammed or unspammed by a moderator.\u003C\u002Fli>\n\u003Cli>URLs are shown in the comment body to reveal hidden or misleading links.\u003C\u002Fli>\n\u003Cli>Moderators can see the number of approved comments for each user.\u003C\u002Fli>\n\u003Cli>A discard feature that outright blocks the worst spam, saving you disk space and speeding up your site.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>PS: You’ll be prompted to get an Akismet.com API key to use it, once activated. Keys are free for personal blogs; paid subscriptions are available for businesses and commercial sites.\u003C\u002Fp>\n","The best anti-spam protection to block spam comments and spam in a contact form. The most trusted antispam solution for WordPress and WooCommerce.",6000000,386405930,94,1173,"2025-11-12T16:31:00.000Z","5.8","7.2",[131,132,20,108,91],"anti-spam","antispam","https:\u002F\u002Fakismet.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fakismet.5.6.zip",2,"2015-10-13 00:00:00",{"attackSurface":138,"codeSignals":170,"taintFlows":215,"riskAssessment":216,"analyzedAt":226},{"hooks":139,"ajaxHandlers":166,"restRoutes":167,"shortcodes":168,"cronEvents":169,"entryPointCount":25,"unprotectedCount":25},[140,146,149,153,157,162],{"type":141,"name":142,"callback":143,"file":144,"line":145},"action","admin_menu","add_admin_menu","class.cv-computy-admin.php",7,{"type":141,"name":147,"callback":148,"file":144,"line":113},"admin_enqueue_scripts","load_scripts",{"type":141,"name":150,"callback":150,"file":151,"line":152},"init","comment-validation.php",19,{"type":141,"name":154,"callback":155,"file":151,"line":156},"template_redirect","cvcScripts",34,{"type":158,"name":159,"callback":160,"file":151,"line":161},"filter","preprocess_comment","href_in_comment",37,{"type":141,"name":163,"callback":164,"file":151,"line":165},"wp_footer","computy_script",79,[],[],[],[],{"dangerousFunctions":171,"sqlUsage":172,"outputEscaping":174,"fileOperations":25,"externalRequests":25,"nonceChecks":25,"capabilityChecks":25,"bundledLibraries":214},[],{"prepared":25,"raw":25,"locations":173},[],{"escaped":14,"rawEcho":152,"locations":175},[176,179,181,182,184,186,188,190,192,194,196,198,200,202,204,206,208,210,212],{"file":144,"line":177,"context":178},31,"raw output",{"file":144,"line":180,"context":178},32,{"file":144,"line":156,"context":178},{"file":144,"line":183,"context":178},35,{"file":144,"line":185,"context":178},36,{"file":144,"line":187,"context":178},38,{"file":144,"line":189,"context":178},42,{"file":144,"line":191,"context":178},43,{"file":144,"line":193,"context":178},44,{"file":144,"line":195,"context":178},45,{"file":144,"line":197,"context":178},46,{"file":144,"line":199,"context":178},47,{"file":151,"line":201,"context":178},65,{"file":151,"line":203,"context":178},66,{"file":151,"line":205,"context":178},67,{"file":151,"line":207,"context":178},68,{"file":151,"line":209,"context":178},69,{"file":151,"line":211,"context":178},70,{"file":151,"line":213,"context":178},71,[],[],{"summary":217,"deductions":218},"The \"comment-validation-computy\" plugin, version 1.6.9, exhibits a generally strong security posture based on the provided static analysis. The absence of identified AJAX handlers, REST API routes, shortcodes, or cron events significantly limits its attack surface. Furthermore, the plugin demonstrates good development practices by utilizing prepared statements for all SQL queries and avoiding file operations and external HTTP requests.  The lack of identified critical or high-severity taint flows also suggests a reduced risk of common injection vulnerabilities.\n\nHowever, a significant concern arises from the low percentage of properly escaped output. With 20 total outputs and only 5% properly escaped, there is a substantial risk of Cross-Site Scripting (XSS) vulnerabilities. Any user-supplied data that is not properly escaped before being displayed to other users or administrators could be exploited. The complete absence of nonce checks and capability checks, while not directly indicative of a vulnerability in this specific analysis (given the limited attack surface), represents a missed opportunity for robust security and could become a risk if new entry points are introduced in future versions or if the plugin interacts with other components that rely on these checks.\n\nThe plugin's vulnerability history is clean, with no recorded CVEs. This, combined with the positive findings in the static analysis (no dangerous functions, no raw SQL), indicates a potentially well-maintained and secure plugin. However, the output escaping issue is a concrete weakness that needs attention. In conclusion, while the plugin benefits from a small attack surface and good SQL practices, the significant unescaped output presents a clear and present danger that overshadows these strengths.",[219,221,224],{"reason":220,"points":113},"Low percentage of properly escaped output",{"reason":222,"points":223},"No nonce checks",5,{"reason":225,"points":223},"No capability checks","2026-03-16T21:27:44.004Z",{"wat":228,"direct":239},{"assetPaths":229,"generatorPatterns":233,"scriptPaths":234,"versionParams":235},[230,231,232],"\u002Fwp-content\u002Fplugins\u002Fcomment-validation-computy\u002Fcss\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fcomment-validation-computy\u002Fjs\u002Fjquery.validate.min.js","\u002Fwp-content\u002Fplugins\u002Fcomment-validation-computy\u002Fcss\u002Fcv-computy-style-admin.css",[],[231],[236,237,238],"comment-validation-computy\u002Fcss\u002Fstyle.css?ver=","comment-validation-computy\u002Fjs\u002Fjquery.validate.min.js?ver=","comment-validation-computy\u002Fcss\u002Fcv-computy-style-admin.css?ver=",{"cssClasses":240,"htmlComments":242,"htmlAttributes":248,"restEndpoints":249,"jsGlobals":250,"shortcodeOutput":252},[241],"cv-computy-admin",[243,244,245,246,247,247],"\u002F*class admin page*\u002F","\u002F* инициализируем меню в админке*\u002F","\u002F*Загружаем скрипты и стили*\u002F","\u002F*добавляем ссылку на настройки на странице плагинов *\u002F","\u002F*запрет активных ссылок в комментариях*\u002F",[],[],[251],"jQuery",[]]