[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fQLBeclG8DhSkL2PBR20Vppcw-xdtB5s24qjdMlD70Ts":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":38,"analysis":147,"fingerprints":266},"crowd-control","Crowd Control by Postmatic – Comment moderation decentralized","1.1","Postmatic","https:\u002F\u002Fprofiles.wordpress.org\u002Fvernal\u002F","\u003Cp>Crowd Control gives your users the ability to report comments as inappropriate with a single click. If a comment gets flagged multiple times it’ll be removed from the post and marked as pending moderation. We’ll even send you an email to let you know. Now you can still go away on vacation and rest assured the trolls won’t overrun your site.\u003C\u002Fp>\n","Comment moderation is a drag. Have your users lend a hand by flagging offensive comments and scrubbing your site clean.",20,7788,100,2,"2019-05-17T21:23:00.000Z","5.2.24","4.0","",[20,21,22,23,24],"comment-moderation","flagging","inappropriate","moderation","reporting","http:\u002F\u002Fwordpress.org\u002Fextend\u002Fplugins\u002Fcrowd-control\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcrowd-control.1.1.1.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":33,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":34,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"vernal",70,30,84,"2026-04-03T19:58:14.367Z",[39,66,88,107,127],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":60,"download_link":61,"security_score":62,"vuln_count":63,"unpatched_count":64,"last_vuln_date":65,"fetched_at":30},"anycomment","AnyComment","0.3.6","Alexander","https:\u002F\u002Fprofiles.wordpress.org\u002Fateshabaev\u002F","\u003Cp>AnyComment is blazing-fast commenting plugin base on React for WordPress.\u003C\u002Fp>\n\u003Cp>It stands for simplicity & speed. We value feedback, so if you have any failures or suggestions – please let us know in \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fanycomment\" rel=\"ugc\">support forum\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbologer\u002Fanycomment.io\u002Fissues\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>!\u003C\u002Fp>\n\u003Cp>You can simply switch without any migrations from the following plugins:\u003Cbr \u002F>\n– Jetpack\u003Cbr \u002F>\n– wpDiscuz\u003Cbr \u002F>\n– Disqus\u003Cbr \u002F>\n– Cackle\u003Cbr \u002F>\n– Hypercomments\u003Cbr \u002F>\n– Vuukle\u003C\u002Fp>\n\u003Ch4>Resources\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin.anycomment.io\u002Fen\u002F\" rel=\"nofollow ugc\">Official website\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin.anycomment.io\u002Fen\u002Fcategory\u002Ftutorials\u002F\" rel=\"nofollow ugc\">All guides\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugin.anycomment.io\u002Fen\u002Fcategory\u002Ftutorials\u002Fsocials\u002F\" rel=\"nofollow ugc\">Configure socials\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbologer\u002Fanycomment.io\" rel=\"nofollow ugc\">GitHub repository\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fvk.com\u002Fanycomment\" rel=\"nofollow ugc\">VK.com group\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ft.me\u002Fjoinchat\u002FBEUJEQ9aMmQsFX65MNRCDg\" rel=\"nofollow ugc\">Telegram group\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Demo\u003C\u002Fh4>\n\u003Cp>Feel free to use \u003Ca href=\"https:\u002F\u002Fplugin.anycomment.io\u002Fdemo\u002F\" rel=\"nofollow ugc\">this demo page\u003C\u002Fa>. Every time new version is released, demo plugin will be updated as well, so you always see the latest version.\u003C\u002Fp>\n\u003Ch4>Get Started\u003C\u002Fh4>\n\u003Cp>In order to start, you need:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Install plugin\u003C\u002Fli>\n\u003Cli>Choose social networks you prefer\u003C\u002Fli>\n\u003Cli>Configure social networks you need (we have guides English & Russian to help you with this)\u003C\u002Fli>\n\u003Cli>You are good to go!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>And good new is AnyComment is free & no dependency on third party services, all comments stored in your database.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>All comments stored in your own database. We reuse native comment’s table, so all of the default WordPress functionality comes out of the box.\u003C\u002Fli>\n\u003Cli>Social network authorization via Facebook, VK, Twitter, Google, Odnoklassniki, GitHub, Twitch or Dribbble\u003C\u002Fli>\n\u003Cli>SEO Indexing\u003C\u002Fli>\n\u003Cli>Ability to switch to cloud version\u003C\u002Fli>\n\u003Cli>Ability to define who can leave comment: guests only, with social authorization or both\u003C\u002Fli>\n\u003Cli>Ability to upload files (define allowed extensions, limit, who can upload, etc)\u003C\u002Fli>\n\u003Cli>When user leaves a tweet link in the comment, plugin can embed it as external Twitter widget (can be disabled)\u003C\u002Fli>\n\u003Cli>Ability to customize  design\u003C\u002Fli>\n\u003Cli>Blazing-fast comments based on React & WordPress REST API\u003C\u002Fli>\n\u003Cli>Alert notification in comment area when new comment was added\u003C\u002Fli>\n\u003Cli>Notifications about new comment reply\u003C\u002Fli>\n\u003Cli>Notifications about new comment to administrator\u003C\u002Fli>\n\u003Cli>Ability to specify comma-separated list of words to be used to hold comments for moderators\u003C\u002Fli>\n\u003Cli>Ability to have bold, italics, underline, quotes, links or clear formatting. Each type can be disabled separately or the whole toolbar together\u003C\u002Fli>\n\u003Cli>Image and video URLs as attachment (control via admin)\u003C\u002Fli>\n\u003Cli>GDRP compliant, ability to provide \u003Ccode>Privacy Policy\u003C\u002Fcode> link, so users know how their data processed and used (when not provided, no checkbox will be shown to users)\u003C\u002Fli>\n\u003Cli>Social avatars shown globally\u003C\u002Fli>\n\u003Cli>Likes (see likes count per comment\u002Fuser in admin)\u003C\u002Fli>\n\u003Cli>Ability to rate (1-5 stars) page in comments (1-5 stars)\u003C\u002Fli>\n\u003Cli>Edit\u002Fdelete comments when you are the owner or have moderate permission(s) directly in client area\u003C\u002Fli>\n\u003Cli>Assign default group for users who authorize via social network\u003C\u002Fli>\n\u003Cli>See user’s social profile URL in admin\u003C\u002Fli>\n\u003Cli>Simple & informative dashboard with graphs to display number of comments over number of users who were engaged in the conversation per certain period & most active users\u003C\u002Fli>\n\u003Cli>Get latest plugin update news directly in the dashboard, don’t miss a thing\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Integrations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fakismet\u002F\" rel=\"ugc\">Akismet\u003C\u002Fa> to fight spam messages\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-mail-smtp\u002F\" rel=\"ugc\">WP Mail SMTP\u003C\u002Fa> to set-up SMTP server\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-user-avatar\u002F\" rel=\"ugc\">WP User Avatar\u003C\u002Fa> to upload global or personal avatar\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.google.com\u002Frecaptcha\" rel=\"nofollow ugc\">reCAPTCHA\u003C\u002Fa> to fight spam messages\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fbuddypress\u002F\" rel=\"ugc\">BuddyPress\u003C\u002Fa> when somebody sends comment with “@” sign + username.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>TODO features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Option: ability to specify thanks message and\u002For page when user left his first comment, #88\u003C\u002Fli>\n\u003Cli>Option: when user does not have email after registration via social, ask for it somewhere in the comments again\u003C\u002Fli>\n\u003Cli>Option: notify moderators about new comments, #77\u003C\u002Fli>\n\u003Cli>Option: embed Instagram photos, #115\u003C\u002Fli>\n\u003Cli>Option: embed Instafeed, #116\u003C\u002Fli>\n\u003Cli>Ability to choose comment to make it sticky at the very top of all comments, #76\u003C\u002Fli>\n\u003Cli>Add checkbox to subscribe to new replies, #73 (now it is mandatory)\u003C\u002Fli>\n\u003Cli>Option: Ability to ban user or by IP address, #70\u003C\u002Fli>\n\u003Cli>Support more languages\u003C\u002Fli>\n\u003Cli>Code highlighting\u003C\u002Fli>\n\u003Cli>Markdown support\u003C\u002Fli>\n\u003Cli>Add more guides on how to set-up certain services, Google SMTP, Amazon SES, etc\u003C\u002Fli>\n\u003Cli>Cross sharing of comments, when user posts a comment, duplicate it on their wall\u003C\u002Fli>\n\u003Cli>Add Yahoo as authorization option\u003C\u002Fli>\n\u003Cli>More widgets to be added on the page (sidebar, custom pages, etc)\u003C\u002Fli>\n\u003Cli>Special moderator panel integrated into custom AnyComment pages (for easy comment moderation)\u003C\u002Fli>\n\u003Cli>More statistics and analytics…\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fbologer\u002Fanycomment.io\u002Fissues\" rel=\"nofollow ugc\">And a lot more…\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","AnyComment is blazing-fast commenting plugin based on React for WordPress.",3000,96874,96,156,"2022-05-14T20:15:00.000Z","5.9.13","4.7","5.4",[56,57,20,58,59],"ajax-comments","comment","comments","comments-seo","https:\u002F\u002Fanycomment.io","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fanycomment.0.3.6.zip",17,7,3,"2025-12-31 00:00:00",{"slug":67,"name":68,"version":69,"author":70,"author_profile":71,"description":72,"short_description":73,"active_installs":74,"downloaded":75,"rating":49,"num_ratings":76,"last_updated":77,"tested_up_to":78,"requires_at_least":79,"requires_php":80,"tags":81,"homepage":84,"download_link":85,"security_score":86,"vuln_count":14,"unpatched_count":28,"last_vuln_date":87,"fetched_at":30},"simple-comment-editing","Comment Edit Core – Simple Comment Editing","3.3.0","Ronald Huereca","https:\u002F\u002Fprofiles.wordpress.org\u002Fronalfy\u002F","\u003Cp>Allow your users to edit their comments and WooCommerce reviews for a period of time.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FbNCDdQbwA-s?version=3&rel=0&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Cp>Go Pro for a lot more control over the comment editing experience, including front-end moderation capabilities, and unlimited logged-in editing. \u003Ca href=\"https:\u002F\u002Fdlxplugins.com\u002Fplugins\u002Fcomment-edit-pro\u002F\" rel=\"nofollow ugc\">Find out more…\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdocs.dlxplugins.com\u002Fv\u002Fcomment-edit-lite\u002F\" rel=\"nofollow ugc\">Getting Started\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsponsors\u002FDLXPlugins\" rel=\"nofollow ugc\">Sponsor Us\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fdlxplugins.com\u002Fplugins\u002Fcomment-edit-lite\u002F\" rel=\"nofollow ugc\">Comment Edit Core Home\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Comment Edit Core features\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Install the plugin. That’s it. It just works.\n\u003C\u002Fli>\n\u003Cli>Anonymous users can edit comments for 5 minutes.\u003C\u002Fli>\n\u003Cli>No styling is necessary. For advanced customization, see the “Other Notes” section.\u003C\u002Fli>\n\u003Cli>Advanced customization can be achieved using filters.\u003C\u002Fli>\n\u003Cli>Add Mailchimp to your comment form and get email subscribers through comments.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Get more with Comment Edit Pro\u003C\u002Fh3>\n\u003Cp>For additional features in addition to comment editing, please check out \u003Ca href=\"https:\u002F\u002Fdlxplugins.com\u002Fplugins\u002Fcomment-edit-pro\u002F\" rel=\"nofollow ugc\">Comment Edit Pro\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Features Include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Newsletter integration with Mailchimp, ConvertKit, Flodesk, and MailerLite\u003C\u002Fli>\n\u003Cli>Community features including @ Mentions, Comment Avatars, and Comment Character Control\u003C\u002Fli>\n\u003Cli>Automations with Webhooks to connect to services like Zapier and other automation tools\u003C\u002Fli>\n\u003Cli>Spam\u002Fbot protection add-ons with reCAPTCHA Enterprise or Cloudflare Turnstile support\u003C\u002Fli>\n\u003Cli>Comment shortcuts and front-end moderation tools\u003C\u002Fli>\n\u003Cli>Set comment rules per post type\u003C\u002Fli>\n\u003Cli>Set comments to expire based on activity\u003C\u002Fli>\n\u003Cli>Get notified of new and edited comments with the Slack integration\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdlxplugins.com\u002Fplugins\u002Fcomment-edit-pro\u002F\" rel=\"nofollow ugc\">Find out more…\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fapp.instawp.io\u002Flaunch?t=comment-edit-pro&d=v2\" rel=\"nofollow ugc\">Launch a Live Demo of Comment Edit Pro on InstaWP\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","Allow your users to edit their comments for a period of time. Adjust the comment timer and save some admin headaches.",2000,148497,55,"2026-03-08T06:12:00.000Z","7.0","5.0","7.2",[56,20,58,82,83],"edit-comment","edit-comments","https:\u002F\u002Fdlxplugins.com\u002Fplugins\u002Fcomment-edit-lite\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-comment-editing.3.3.0.zip",98,"2025-11-12 00:00:00",{"slug":89,"name":90,"version":91,"author":92,"author_profile":93,"description":94,"short_description":95,"active_installs":96,"downloaded":97,"rating":13,"num_ratings":98,"last_updated":99,"tested_up_to":100,"requires_at_least":101,"requires_php":18,"tags":102,"homepage":105,"download_link":106,"security_score":13,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"comment-moderation-e-mail-to-post-author","Comment Moderation\u002FNotification Recipients","0.7","Rolf Allard van Hagen","https:\u002F\u002Fprofiles.wordpress.org\u002Fravanh\u002F","\u003Cp>Normally, when a comment gets submitted to a particular post, the author of that post gets a notification about it. And when a comment is held for moderation (which depends on your sites comment settings) then the moderation notification is sent to \u003Cem>both\u003C\u002Fem> the post \u003Cstrong>Author\u003C\u002Fstrong> (if he\u002Fshe has moderation rights) \u003Cem>and\u003C\u002Fem> the site’s \u003Cstrong>Administration E-mail Address\u003C\u002Fstrong> as configured under \u003Cstrong>Settings > General\u003C\u002Fstrong> at the same time.\u003C\u002Fp>\n\u003Cp>On \u003Cstrong>colaboration sites\u003C\u002Fstrong> or sites managed by a webmaster or designer where the client is the post author, the site admin, with enough on his\u002Fher mind already, is bothered with each and every new comment in the moderation queue.\u003C\u002Fp>\n\u003Cp>This plugin can change that.\u003C\u002Fp>\n\u003Cp>Just install and activate it: All post comment moderation notifications will be sent \u003Cstrong>only\u003C\u002Fstrong> to each respective \u003Cstrong>Post Author\u003C\u002Fstrong>. If, by any chance, the post author has no moderation rights (Contributor level) \u003Cem>or\u003C\u002Fem> there is no valid author e-mail set then the default site e-mail address will still get the notification.\u003C\u002Fp>\n\u003Cp>WordPress Multisite compatible, per-site or network activated or as a must-use plugin.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Plugin Settings\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Options will be added in the future but for now, you can only change the plugin behavior via constants in your wp-config.php file.\u003C\u002Fp>\n\u003Cp>Add them on a new line in your wp-config.php file, just above the line that sais: \u003Ccode>\u002F* That's all, stop editing! Happy publishing. *\u002F\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>These constants are currently available:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>COMMENT_NOTIFICATION_RECIPIENTS\u003C\u002Fstrong> – Controls the New Comment recipients. Default: “wp_default” corresponds with “post_author_only” WordPress default.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>COMMENT_MODERATION_RECIPIENTS\u003C\u002Fstrong> – Controls the Comment is waiting for Moderation message recipients. Default: “post_author_only”.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>These options are currently available:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\u003Cstrong>wp_default\u003C\u002Fstrong> – The WordPress default behavior. Plugin does nothing.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>post_author_only\u003C\u002Fstrong> – Send notifications only to the Post Author e-mail address.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>site_admin_only\u003C\u002Fstrong> – Send notifications only to the Administration Email Address as configured on Settings > General.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Examples:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Use \u003Ccode>define( 'COMMENT_NOTIFICATION_RECIPIENTS', 'site_admin_only' );\u003C\u002Fcode> to make new comment notifications go to the site admin e-mail address, and no longer the post author.\u003C\u002Fp>\n\u003Cp>Use \u003Ccode>define( 'COMMENT_MODERATION_RECIPIENTS', 'post_author_only' );\u003C\u002Fcode> to make comment moderation notifications only go to the authors e-mail address, and no longer the site administrator address (unless the post author does not have moderation rights).\u003C\u002Fp>\n","Control who will receive new comment and moderation notifications. Light weight, simple, safe and effective.",1000,24266,4,"2026-02-19T16:40:00.000Z","6.9.4","3.7",[103,104,58],"comment-moderation-recipients","comment-notification","http:\u002F\u002Fstatus301.net\u002Fwordpress-plugins\u002Fcomment-moderation-e-mail-to-post-author\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcomment-moderation-e-mail-to-post-author.0.7.zip",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":115,"downloaded":116,"rating":117,"num_ratings":64,"last_updated":118,"tested_up_to":119,"requires_at_least":17,"requires_php":18,"tags":120,"homepage":125,"download_link":126,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wp-referrer-spam-blacklist","WP referrer spam blacklist (fight 2040+ Referrer Spammers in (Google\u002FMatomo) Analytics)","1.3.0","Umbrovskis.com","https:\u002F\u002Fprofiles.wordpress.org\u002Frolandinsh\u002F","\u003Cp>List of spammers in \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-referrer-spam-blacklist\u002Ffaq\u002F\" rel=\"ugc\">FAQ\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>No need for configuration! Plugin in background redirects referral spammer to blank page ( about:blank ). Redirect link can be altered via filter \u003Ccode>wp_referralblock_redirect_uri\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>NO auto update, as we see that as possible as security hole. We do not wan’t Your site to get hacked.\u003C\u002Fp>\n\u003Cp>Plugin is for sites that can’t edit their \u003Ccode>.htaccess\u003C\u002Fcode> or configure NGINX or Apache servers.\u003C\u002Fp>\n\u003Cp>Via \u003Ca href=\"http:\u002F\u002Fgo.mediabox.lv\u002F1LbSuKq\" rel=\"nofollow ugc\">my LinkedIN post\u003C\u002Fa>: Few months ago I started to collect referral spam pages in private file un bitbucket.org. Problem was that I did not know all spammers. Then, few weeks ago, I found that Matomo (Open source analytics) started their own “project”, and they did the same thing I did – collected referral spam sites to block them from Your website.\u003C\u002Fp>\n\u003Cp>On my own server I do that at server level, but some of my clients have hosting, where You can not edit server settings. This week I came up with another solution – WordPress plugin “WP referrer spam blacklist”. I will update list every week from \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmatomo-org\u002Freferrer-spam-blacklist\" rel=\"nofollow ugc\">Matomo’s community-contributed list of spammers\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>If You have WordPress site and no knowledge about or access to server settings, I made that for You!\u003C\u002Fp>\n\u003Cp>From \u003Ca href=\"https:\u002F\u002Fen.wikipedia.org\u002Fwiki\u002FReferer_spam\" rel=\"nofollow ugc\">Wikipedia\u003C\u002Fa>:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>Referrer spam (also known as log spam or referrer \nbombing) is a kind of spamdexing (spamming aimed \nat search engines). The technique involves making \nrepeated web site requests using a fake referer URL \nto the site the spammer wishes to advertise. Sites that \npublish their access logs, including referer statistics, \nwill then inadvertently link back to the spammer's site. \nThese links will be indexed by search engines \nas they crawl the access logs. \n\nThis benefits the spammer because the free link improves \nthe spammer site's search engine ranking owing \nto link-counting algorithms that search engines use.\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Other plugins by author: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fitempropwp\u002F\" rel=\"ugc\">itemprop WP for SERP\u002FSEO Rich snippets\u003C\u002Fa> – Add schema.org itemprop code to the (custom) post content for search engines and bots for better SERP results\u003C\u002Fp>\n","WordPress plugin to fight with 2040+ referrer spammers (like semalt, buttons-for-website and many more).",700,19667,86,"2020-12-27T20:57:00.000Z","5.6.17",[121,122,20,123,124],"anti-spam","antispam","comment-spam","referral-spam","https:\u002F\u002Fsimplemediacode.com\u002F?utm_source=WPplugin%3Awp-referrer-spam-blacklist&utm_medium=wordpressplugin&utm_campaign=FreeWordPressPlugins&utm_content=v-1.2.201801281","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-referrer-spam-blacklist.1.3.0.zip",{"slug":128,"name":129,"version":130,"author":131,"author_profile":132,"description":133,"short_description":134,"active_installs":135,"downloaded":136,"rating":137,"num_ratings":64,"last_updated":138,"tested_up_to":139,"requires_at_least":140,"requires_php":141,"tags":142,"homepage":145,"download_link":146,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"comment-moderation-role","Comment Moderation Role by WPBeginner","1.1.1","WPBeginner","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpbeginner\u002F","\u003Ch3>Comment Moderation Role by WPBeginner\u003C\u002Fh3>\n\u003Cp>This comment moderation plugin improves the comment moderation permissions on your WordPress site.\u003C\u002Fp>\n\u003Cp>The new role “WPB Comment Moderator” is created on your site to allow you to give users access only to the comment moderation screen. Unlike the WordPress default settings, a comment moderator is not required to be able to author posts, so you can keep your content secure.\u003C\u002Fp>\n\u003Cp>The Comment Moderator can approve, decline, or edit any comments on any post.\u003C\u002Fp>\n\u003Cp>This plugin also allows your Authors and Contributors to moderate comments on the posts they wrote. That means your guest authors can continue interacting with their readers, without getting access to other articles or comments.\u003C\u002Fp>\n\u003Ch3>How Do I Create a Comment Moderator User?\u003C\u002Fh3>\n\u003Cp>Once this plugin is activated, simply edit a user’s profile and change their role to WPB Comment Moderator. This will grant them access only to the comment moderation screens within WordPress, keeping the rest of your site secure.\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Comment Moderation Role is created by the \u003Ca href=\"https:\u002F\u002Fwww.wpbeginner.com\u002F\" rel=\"friend nofollow ugc\">WPBeginner\u003C\u002Fa> team.\u003C\u002Fp>\n\u003Ch3>What’s Next?\u003C\u002Fh3>\n\u003Cp>To learn more about WordPress, you can visit \u003Ca href=\"https:\u002F\u002Fwww.wpbeginner.com\u002F\" rel=\"friend nofollow ugc\">WPBeginner\u003C\u002Fa> for tutorials on topics like:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002Fwordpress-performance-speed\u002F\" title=\"Ultimate Guide to WordPress Speed and Performance\" rel=\"friend nofollow ugc\">WordPress Speed and Performance\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002Fwordpress-security\u002F\" title=\"Ultimate WordPress Security Guide\" rel=\"friend nofollow ugc\">WordPress Security\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002Fwordpress-seo\u002F\" title=\"Ultimate WordPress SEO Guide for Beginners\" rel=\"friend nofollow ugc\">WordPress SEO\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>…and many more \u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002Fcategory\u002Fwp-tutorials\u002F\" title=\"WordPress Tutorials\" rel=\"friend nofollow ugc\">WordPress tutorials\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>If you like our Comment Moderator Role plugin, then consider checking out our other projects:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Foptinmonster.com\u002F\" rel=\"friend nofollow ugc\">OptinMonster\u003C\u002Fa> – Get More Email Subscribers with the most popular conversion optimization plugin for WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpforms.com\u002F\" rel=\"friend nofollow ugc\">WPForms\u003C\u002Fa> – #1 drag & drop online form builder for WordPress (trusted by 4 million sites).\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.monsterinsights.com\u002F\" rel=\"friend nofollow ugc\">MonsterInsights\u003C\u002Fa> – See the Stats that Matter and Grow Your Business with Confidence. Best Google Analytics Plugin for WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.seedprod.com\u002F\" rel=\"friend nofollow ugc\">SeedProd\u003C\u002Fa> – Create beautiful landing pages with our powerful drag & drop landing page builder.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwpmailsmtp.com\u002F\" rel=\"friend nofollow ugc\">WP Mail SMTP\u003C\u002Fa> – Improve email deliverability for your contact form with the most popular SMTP plugin for WordPress.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Frafflepress.com\u002F\" rel=\"friend nofollow ugc\">RafflePress\u003C\u002Fa> – Best WordPress giveaway and contest plugin to grow traffic and social followers.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.smashballoon.com\u002F\" rel=\"friend nofollow ugc\">Smash Balloon\u003C\u002Fa> – #1 social feeds plugin for WordPress – display social media content in WordPress without code.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Faioseo.com\u002F\" rel=\"friend nofollow ugc\">AIOSEO\u003C\u002Fa> – the original WordPress SEO plugin to help you rank higher in search results (trusted by over 2 million sites).\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.pushengage.com\u002F\" rel=\"friend nofollow ugc\">PushEngage\u003C\u002Fa> – Connect with visitors after they leave your website with the leading web push notification plugin.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftrustpulse.com\u002F\" rel=\"friend nofollow ugc\">TrustPulse\u003C\u002Fa> – Add real-time social proof notifications to boost your store conversions by up to 15%.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Visit \u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002F\" rel=\"friend nofollow ugc\">WPBeginner\u003C\u002Fa> to learn from our \u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002Fcategory\u002Fwp-tutorials\u002F\" rel=\"friend nofollow ugc\">WordPress Tutorials\u003C\u002Fa> and find out about other \u003Ca href=\"http:\u002F\u002Fwww.wpbeginner.com\u002Fcategory\u002Fplugins\u002F\" rel=\"friend nofollow ugc\">best WordPress plugins\u003C\u002Fa>.\u003C\u002Fp>\n","Add a new comment moderator user role to your site.",200,4937,74,"2022-08-02T13:30:00.000Z","6.0.11","5.1","5.6",[143,20,58,144],"capabilities","roles","https:\u002F\u002Fwpbeginner.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcomment-moderation-role.1.1.1.zip",{"attackSurface":148,"codeSignals":222,"taintFlows":258,"riskAssessment":259,"analyzedAt":265},{"hooks":149,"ajaxHandlers":210,"restRoutes":219,"shortcodes":220,"cronEvents":221,"entryPointCount":14,"unprotectedCount":28},[150,156,159,164,168,173,177,181,185,189,193,197,202,206],{"type":151,"name":152,"callback":153,"file":154,"line":155},"action","init","frontend_init","crowd-control.php",72,{"type":151,"name":157,"callback":158,"file":154,"line":137},"admin_init","backend_init",{"type":151,"name":160,"callback":161,"priority":162,"file":154,"line":163},"comment_unapproved_to_approved","mark_comment_moderated",10,76,{"type":151,"name":165,"callback":166,"file":154,"line":167},"admin_notices","print_admin_notice",153,{"type":169,"name":170,"callback":171,"file":154,"line":172},"filter","manage_edit-comments_columns","add_comment_reported_column",322,{"type":151,"name":174,"callback":175,"priority":162,"file":154,"line":176},"manage_comments_custom_column","manage_comment_reported_column",323,{"type":151,"name":178,"callback":179,"file":154,"line":180},"admin_menu","register_admin_panel",325,{"type":151,"name":182,"callback":183,"file":154,"line":184},"admin_head","admin_header",326,{"type":151,"name":186,"callback":187,"file":154,"line":188},"wp_head","wp_header",520,{"type":151,"name":190,"callback":191,"file":154,"line":192},"pmcc_report_comments_mark_flagged","admin_notification",522,{"type":151,"name":194,"callback":195,"file":154,"line":196},"wp_enqueue_scripts","action_enqueue_scripts",524,{"type":169,"name":198,"callback":199,"priority":200,"file":154,"line":201},"comment_text","add_flagging_link_comment",15,540,{"type":151,"name":203,"callback":204,"file":154,"line":205},"comment_report_abuse_link","print_flagging_link",543,{"type":151,"name":207,"callback":208,"file":154,"line":209},"plugins_loaded","pmcc_activate",900,[211,217],{"action":212,"nopriv":213,"callback":214,"hasNonce":215,"hasCapCheck":213,"file":154,"line":216},"pmcc_report_comments_flag_comment",false,"flag_comment",true,517,{"action":212,"nopriv":215,"callback":214,"hasNonce":215,"hasCapCheck":213,"file":154,"line":218},518,[],[],[],{"dangerousFunctions":223,"sqlUsage":224,"outputEscaping":226,"fileOperations":28,"externalRequests":28,"nonceChecks":256,"capabilityChecks":64,"bundledLibraries":257},[],{"prepared":28,"raw":28,"locations":225},[],{"escaped":63,"rawEcho":227,"locations":228},13,[229,232,234,236,238,240,242,244,246,248,250,252,254],{"file":154,"line":230,"context":231},393,"raw output",{"file":154,"line":233,"context":231},394,{"file":154,"line":235,"context":231},395,{"file":154,"line":237,"context":231},415,{"file":154,"line":239,"context":231},416,{"file":154,"line":241,"context":231},417,{"file":154,"line":243,"context":231},437,{"file":154,"line":245,"context":231},438,{"file":154,"line":247,"context":231},439,{"file":154,"line":249,"context":231},440,{"file":154,"line":251,"context":231},747,{"file":154,"line":253,"context":231},873,{"file":154,"line":255,"context":231},895,1,[],[],{"summary":260,"deductions":261},"The crowd-control plugin version 1.1 demonstrates a generally strong security posture based on the provided static analysis and vulnerability history. It exhibits good practices by implementing nonce checks and capability checks on its entry points, which are AJAX handlers in this case. The absence of dangerous functions, raw SQL queries, file operations, and external HTTP requests further contributes to its secure design. Furthermore, the plugin has no recorded vulnerabilities, including CVEs, suggesting a history of security diligence from its developers.\n\nHowever, a notable concern arises from the output escaping. With 20 total outputs and only 35% properly escaped, there's a significant risk of cross-site scripting (XSS) vulnerabilities. Any user-supplied data that is outputted without adequate sanitization could be exploited by attackers. While the current analysis shows no taint flows, this weakness in output escaping presents a potential avenue for exploitation if an attacker can introduce malicious scripts through other means. The limited attack surface of two AJAX handlers, both with checks, is a positive, but the unescaped output is a critical area that needs immediate attention.\n\nIn conclusion, crowd-control v1.1 is commendable for its proactive security measures like nonce and capability checks, and its clean history of zero vulnerabilities. Its development appears to follow secure coding principles in many areas. The primary weakness, however, lies in the insufficient output escaping, which significantly increases the risk of XSS attacks. Addressing this oversight is crucial for maintaining its otherwise strong security profile.",[262],{"reason":263,"points":264},"Insufficient output escaping",8,"2026-03-16T23:00:56.957Z",{"wat":267,"direct":274},{"assetPaths":268,"generatorPatterns":270,"scriptPaths":271,"versionParams":272},[269],"\u002Fwp-content\u002Fplugins\u002Fcrowd-control\u002Fjs\u002Fajax.js",[],[269],[273],"crowd-control\u002Fjs\u002Fajax.js?ver=",{"cssClasses":275,"htmlComments":278,"htmlAttributes":279,"restEndpoints":281,"jsGlobals":282,"shortcodeOutput":284},[276,277],"pmcc-comments-report-link","column-comment_reported",[],[280],"data-comment-id",[],[283],"pmcc_ajax",[]]