Does Hostbox Google reCAPTCHA have any unpatched vulnerabilities?

No. All known vulnerabilities in Hostbox Google reCAPTCHA have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Hostbox Google reCAPTCHA compatible with WordPress 6.8.5?

According to WordPress.org data, Hostbox Google reCAPTCHA 0.0.10 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Hostbox Google reCAPTCHA compatible with PHP 7.0+?

Hostbox Google reCAPTCHA requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Hostbox Google reCAPTCHA updated?

Hostbox Google reCAPTCHA was last updated on Jun 6, 2025. Frequent updates are generally a positive security signal.

What is Hostbox Google reCAPTCHA's security score?

Hostbox Google reCAPTCHA has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Hostbox Google reCAPTCHA Security & Risk Analysis

wordpress.org/plugins/hostbox-google-recaptcha

Simple Google reCAPTCHA (v2 and v3) for WordPress, 100% free, no hidden premium, no catches. Supports WooCommerce and Contact Form 7.

600 active installs v0.0.10 PHP 7.0+ WP 5.0+ Updated Jun 6, 2025

google-recaptchahostboxrecaptchaspam-preventionspam-protection

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Hostbox Google reCAPTCHA Safe to Use in 2026?

Generally Safe

Score 100/100

Hostbox Google reCAPTCHA has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10mo ago

Risk Assessment

The plugin 'hostbox-google-recaptcha' v0.0.10 exhibits a strong security posture based on the provided static analysis. The absence of any identified CVEs and the plugin's consistent history of no recorded vulnerabilities are positive indicators. The code analysis reveals good practices such as the exclusive use of prepared statements for SQL queries and a high percentage of properly escaped output. Furthermore, the presence of nonce and capability checks, along with no identified dangerous functions or file operations, suggests a well-written codebase that prioritizes secure development.

Despite the overall positive assessment, there are a few areas that warrant attention. The plugin makes two external HTTP requests, which, while not inherently a vulnerability, represent potential attack vectors if not handled securely. The lack of any taint analysis results is unusual and could indicate that the analysis tool was not configured to perform this type of deep inspection, or that the plugin's code structure inherently avoids complex data flows. Given the plugin's simplicity and focus on reCAPTCHA integration, a lack of critical taint flows is plausible but not definitively proven without further analysis.

In conclusion, 'hostbox-google-recaptcha' v0.0.10 appears to be a secure plugin with good development practices. Its history of zero vulnerabilities and robust code signals are commendable. The primary areas for consideration are the external HTTP requests and the potential limitations of the taint analysis. However, based on the provided data, the overall risk is assessed as low.

Key Concerns

External HTTP requests present potential attack vectors

Vulnerabilities

None known

Hostbox Google reCAPTCHA Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Hostbox Google reCAPTCHA Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

15 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

94% escaped16 total outputs

Attack Surface

Hostbox Google reCAPTCHA Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 27

actioninithostbox-recaptcha.php:39

actionadmin_menuhostbox-recaptcha.php:40

actionadmin_inithostbox-recaptcha.php:41

actionadmin_enqueue_scriptshostbox-recaptcha.php:42

actionwp_enqueue_scriptshostbox-recaptcha.php:43

actionlogin_enqueue_scriptshostbox-recaptcha.php:44

actionwoocommerce_login_formhostbox-recaptcha.php:47

actionwoocommerce_register_formhostbox-recaptcha.php:48

actionwoocommerce_lostpassword_formhostbox-recaptcha.php:49

actionwoocommerce_after_checkout_billing_formhostbox-recaptcha.php:50

actioncomment_formhostbox-recaptcha.php:52

actionlogin_formhostbox-recaptcha.php:53

actionregister_formhostbox-recaptcha.php:54

actionlostpassword_formhostbox-recaptcha.php:55

filterwoocommerce_process_login_errorshostbox-recaptcha.php:57

filterwoocommerce_process_registration_errorshostbox-recaptcha.php:58

actionwoocommerce_lost_password_validationhostbox-recaptcha.php:59

actionwoocommerce_checkout_processhostbox-recaptcha.php:60

filterpreprocess_commenthostbox-recaptcha.php:62

filterauthenticatehostbox-recaptcha.php:63

filterregistration_errorshostbox-recaptcha.php:64

filterlostpassword_posthostbox-recaptcha.php:65

filterwpcf7_form_elementshostbox-recaptcha.php:67

filterwpcf7_validatehostbox-recaptcha.php:68

actionadmin_enqueue_scriptsinc\classes\class-modal.php:27

actionin_admin_footerinc\classes\class-modal.php:28

actionadmin_initinc\classes\class-modal.php:29

Maintenance & Trust

Hostbox Google reCAPTCHA Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedJun 6, 2025

PHP min version7.0

Downloads3K

Community Trust

Rating100/100

Number of ratings4

Active installs600

Alternatives

Hostbox Google reCAPTCHA Alternatives

Advanced Google reCAPTCHA

advanced-google-recaptcha

Captcha protection against spam comments & brute force login attacks using Google reCAPTCHA.

200K 3 CVEs

CAPTCHA 4WP – Antispam CAPTCHA solution for WordPress

advanced-nocaptcha-recaptcha

Use CAPTCHA to stop spam and allow customers & users to interact with your website easily. Block fake accounts and orders. Avoid false positives.

100K 1 CVE

Contact Form 7 Captcha

contact-form-7-simple-recaptcha

Protect your Contact Form 7 forms with Google reCAPTCHA V2, Google reCAPTCHA V3, hCAPTCHA, or Cloudflare Turnstile.

100K 2 CVEs

reCAPTCHA in WP comments form

recaptcha-in-wp-comments-form

reCAPTCHA in WP comments form is an ANTISPAM tool that adds a Google reCAPTCHA to the comments form and protects your site from the spam robots threat …

9K No CVEs

Anti-spam, Spam protection, ReCaptcha for all forms and GDPR-compliant

gdpr-compliant-recaptcha-for-all-forms

Anti-spam - CAPTCHA that protects all forms against spam and brute-force. Invisible and GDPR-compliant.

4K 1 CVE

Developer Profile

Hostbox Google reCAPTCHA Developer Profile

Hostbox

1 plugin · 600 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Hostbox Google reCAPTCHA

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/hostbox-google-recaptcha/css/recaptcha.css/wp-content/plugins/hostbox-google-recaptcha/js/recaptcha.js/wp-content/plugins/hostbox-google-recaptcha/js/admin.js

Script Paths

https://www.google.com/recaptcha/api.js?render=https://www.google.com/recaptcha/api.js

Version Parameters

hostbox-google-recaptcha/css/recaptcha.css?ver=hostbox-google-recaptcha/js/recaptcha.js?ver=hostbox-google-recaptcha/js/admin.js?ver=

HTML / DOM Fingerprints

CSS Classes

g-recaptcharecaptcha-v3-response

Data Attributes

data-sitekeyrecaptcha_responserecaptcha_nonce

JS Globals

recaptchaVars

FAQ