Does Inverted Checkbox Antispam have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Inverted Checkbox Antispam compatible with WordPress 6.8.5?

According to WordPress.org data, Inverted Checkbox Antispam 1.0 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Inverted Checkbox Antispam compatible with PHP 7.2+?

Inverted Checkbox Antispam requires PHP 7.2 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Inverted Checkbox Antispam updated?

Inverted Checkbox Antispam was last updated on May 14, 2025. Frequent updates are generally a positive security signal.

What is Inverted Checkbox Antispam's security score?

Inverted Checkbox Antispam has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Inverted Checkbox Antispam Security & Risk Analysis

wordpress.org/plugins/inverted-checkbox-antispam

Simple spam protection using an inverted checkbox. Compatible with Contact Form 7 and custom HTML forms.

0 active installs v1.0 PHP 7.2+ WP 5.0+ Updated May 14, 2025

antispamcheckboxcontact-form-7spam-protection

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Inverted Checkbox Antispam Safe to Use in 2026?

Generally Safe

Score 92/100

Inverted Checkbox Antispam has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The "inverted-checkbox-antispam" plugin v1.0 exhibits a strong security posture based on the provided static analysis. The absence of any detected AJAX handlers, REST API routes, shortcodes, or cron events significantly limits the plugin's attack surface. Furthermore, the code shows good practices such as 100% usage of prepared statements for SQL queries, presence of a nonce check, and no file operations or external HTTP requests, all of which are positive indicators of secure development.

Despite these strengths, there is a notable weakness in output escaping, with 60% of detected outputs being improperly escaped. While the static analysis did not reveal any critical or high-severity taint flows, and the plugin has no known vulnerability history, the unescaped output represents a potential vector for cross-site scripting (XSS) vulnerabilities. This could allow an attacker to inject malicious scripts into the website's output if user-supplied data is not properly sanitized before being displayed.

In conclusion, the plugin is generally well-developed from a security perspective, particularly in its handling of data input and database interactions. However, the lack of comprehensive output escaping is a critical area that needs immediate attention to prevent potential XSS attacks. Addressing this single weakness would significantly improve the plugin's overall security.

Key Concerns

Improper output escaping (40% of outputs)

Vulnerabilities

None known

Inverted Checkbox Antispam Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Inverted Checkbox Antispam Release Timeline

v1.0.0

Code Analysis

Analyzed Apr 16, 2026

Inverted Checkbox Antispam Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

3 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

60% escaped5 total outputs

Attack Surface

Inverted Checkbox Antispam Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 7

actionwpcf7_initcheckbox.php:6

filterwpcf7_validatecheckbox.php:21

actionwp_footercheckbox.php:36

actionadmin_noticescheckbox.php:51

actionadmin_menuinverted-checkbox-antispam.php:19

actionadmin_initinverted-checkbox-antispam.php:30

actionwpinverted-checkbox-antispam.php:85

Maintenance & Trust

Inverted Checkbox Antispam Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedMay 14, 2025

PHP min version7.2

Downloads918

Community Trust

Rating0/100

Number of ratings0

Active installs0

Alternatives

Inverted Checkbox Antispam Alternatives

Honeypot Guard – Silent Anti-Spam

honeypot-guard-silent-anti-spam

100

Anti-spam protection for forms, signups, and comments using advanced honeypot techniques. No CAPTCHAs, no user friction.

100 No CVEs

Antispam Bee

antispam-bee

100

Sophisticated antispam plugin for effective daily comment and trackback spam-fighting. Built with data protection and privacy in mind.

700K 1 CVE

CAPTCHA 4WP – Antispam CAPTCHA solution for WordPress

advanced-nocaptcha-recaptcha

Use CAPTCHA to stop spam and allow customers & users to interact with your website easily. Block fake accounts and orders. Avoid false positives.

100K 1 CVE

Contact Form 7 Captcha

contact-form-7-simple-recaptcha

Protect your Contact Form 7 forms with Google reCAPTCHA V2, Google reCAPTCHA V3, hCAPTCHA, or Cloudflare Turnstile.

100K 2 CVEs

Captcha by BestWebSoft – Advanced Spam Protection, Math & OCR-Friendly Captcha for Site Forms

captcha-bws

1 The Ultimate Spam Protection Plugin Using Captcha for WordPress Forms.

10K 2 CVEs

Developer Profile

Inverted Checkbox Antispam Developer Profile

Yevhen Horbyshyn

2 plugins · 0 total installs

trust score

Avg Security Score

96/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Inverted Checkbox Antispam

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/inverted-checkbox-antispam/js/custom-script.js

Script Paths