[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fJyP9S5uJOerGc6epShsemfbQtWSnhHRYUe5KiKKB4a8":3,"$fFKb177sNlHIlONV7sAW4QZpTsf_ZubV09WZvqyWjkhM":265,"$f20kC9YJRIX0mPYFSbdZaDTCOW-P_5NXqmDNxIimeNy8":270},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"discovery_status":31,"vulnerabilities":32,"developer":33,"crawl_stats":29,"alternatives":38,"analysis":150,"fingerprints":244},"jc-recaptcha","JC Recaptcha","1.4","llavillaccama","https:\u002F\u002Fprofiles.wordpress.org\u002Fllavillaccama\u002F","\u003Cp>The Add new recaptcha google plugin allows you to implement a super security REcaptcha form into web forms. It protects your website from spam by means of math logic, easily understood by human beings.\u003Cbr \u002F>\nThis captcha can be used for login, registration, comments forms.\u003C\u002Fp>\n\u003Cp>This plugin is based on the recapcha of google, for receive more information can visit the website: https:\u002F\u002Fwww.google.com\u002Frecaptcha\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwebdesignjc.com\u002Frecaptchawp\u002Findex.html\" rel=\"nofollow ugc\">Support\u003C\u002Fa>\u003C\u002Fp>\n","The Add new recaptcha google plugin allows you to implement a super security REcaptcha form into web forms.",100,7614,74,3,"2015-03-13T16:19:00.000Z","4.0.38","3.3","",[20,21,22,23,24],"add","no-captcha","nocaptcha","re-captcha","recaptcha","http:\u002F\u002Fwebdesignjc.com\u002Frecaptchawp\u002Findex.html","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjc-recaptcha.zip",85,0,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":34,"avg_security_score":27,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},140,30,84,"2026-05-20T00:34:21.584Z",[39,69,90,108,129],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":28,"num_ratings":28,"last_updated":49,"tested_up_to":18,"requires_at_least":50,"requires_php":18,"tags":51,"homepage":66,"download_link":67,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":68},"protect-ai-login","Protect Ai Login","1.0.0","anouny","https:\u002F\u002Fprofiles.wordpress.org\u002Fanouny\u002F","\u003Cp>Protect Ai Login changes default WordPress login URL to the url you define, denied brute force attacks, spam logins, and bot or automatic register. The plugin blocks access to default login url, generates a custom branded login panel, without creating a custom page on your website.\u003C\u002Fp>\n\u003Cp>The plugin offers protection with Google reCAPTCHA v2.\u003C\u002Fp>\n\u003Ch3>Plugin Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Define new login url easily from settings page.\u003C\u002Fli>\n\u003Cli>Protect against spam login, bot registration or signup, with the integration of Google reCaptcha.\u003C\u002Fli>\n\u003Cli>Secure AXS is compatible with any permalink setup including the default.\u003C\u002Fli>\n\u003Cli>Choose to allow users with the role “Editor” to access plugin settings.\u003C\u002Fli>\n\u003Cli>Fully branded login page with colors and login logo of your choice.\u003C\u002Fli>\n\u003Cli>Plugin doesn’t create new pages on your website for displaying the new login panel.\u003C\u002Fli>\n\u003Cli>Plugin is compatible with other major security & cache plugins.\u003C\u002Fli>\n\u003Cli>Test with wordpress 4.4.2\u003C\u002Fli>\n\u003C\u002Ful>\n","Change default login site to a custom URL, block spam, bot registration, and brute-force using Google reCAPTCHA.",10,1416,"2016-04-14T06:46:00.000Z","4.0",[52,53,54,55,56,57,58,59,60,21,22,24,61,62,63,64,65],"access","attack","axs","block","brute","brute-force-attack","captcha","force","login","register","secure","security","sign","spam","https:\u002F\u002Fwordpress.org\u002Fplugins\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprotect-ai-login.zip","2026-04-06T09:54:40.288Z",{"slug":70,"name":71,"version":72,"author":73,"author_profile":74,"description":75,"short_description":76,"active_installs":77,"downloaded":78,"rating":79,"num_ratings":80,"last_updated":81,"tested_up_to":82,"requires_at_least":83,"requires_php":18,"tags":84,"homepage":86,"download_link":87,"security_score":27,"vuln_count":88,"unpatched_count":28,"last_vuln_date":89,"fetched_at":30},"login-recaptcha","Login No Captcha reCAPTCHA","1.7.3","Robert Peake","https:\u002F\u002Fprofiles.wordpress.org\u002Frobertpeake\u002F","\u003Cp>Adds a Google No Captcha ReCaptcha checkbox to your WordPress and Woocommerce login, forgot password, and user registration pages. Denies access to automated scripts while making it easy on humans to log in by checking a box. As Google says, it is “Tough on bots, easy on humans.”\u003C\u002Fp>\n","Adds a Google No Captcha ReCaptcha checkbox to your Wordpress and Woocommerce login, forgot password, and user registration pages.",60000,1371626,90,63,"2024-02-27T10:43:00.000Z","6.4.8","4.6",[85,60,22,24,63],"google","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Flogin-recaptcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flogin-recaptcha.1.7.3.zip",1,"2022-08-16 00:00:00",{"slug":91,"name":92,"version":93,"author":94,"author_profile":95,"description":96,"short_description":97,"active_installs":98,"downloaded":99,"rating":100,"num_ratings":101,"last_updated":102,"tested_up_to":103,"requires_at_least":103,"requires_php":18,"tags":104,"homepage":106,"download_link":107,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"gravity-forms-no-captcha-recaptcha","Gravity Forms No CAPTCHA reCAPTCHA","1.0.7","folkhack","https:\u002F\u002Fprofiles.wordpress.org\u002Ffolkhack\u002F","\u003Cp>Adds a “No CAPTCHA reCAPTCHA” field type to Gravity Forms form builder with light\u002Fdark theme options. Forms with a “No CAPTCHA reCAPTCHA” will validate the field before successful submission.\u003C\u002Fp>\n\u003Ch4>Further Reading\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ffolkhack\u002FGravity-Forms-No-CAPTCHA-reCAPTCHA\" rel=\"nofollow ugc\">Official GitHub Repository\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Ffolkhack.com\" rel=\"nofollow ugc\">Folkhack Studios\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","Adds \"No CAPTCHA reCAPTCHA\" field to Gravity Forms as an alternative CAPTCHA option",10000,52999,96,26,"2017-11-28T11:22:00.000Z","4.0.0",[58,105,21,24],"gravity-forms","https:\u002F\u002Fgithub.com\u002Ffolkhack\u002FGravity-Forms-No-CAPTCHA-reCAPTCHA","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgravity-forms-no-captcha-recaptcha.zip",{"slug":109,"name":110,"version":111,"author":112,"author_profile":113,"description":114,"short_description":115,"active_installs":98,"downloaded":116,"rating":117,"num_ratings":118,"last_updated":119,"tested_up_to":120,"requires_at_least":121,"requires_php":122,"tags":123,"homepage":124,"download_link":125,"security_score":126,"vuln_count":127,"unpatched_count":28,"last_vuln_date":128,"fetched_at":30},"wp-recaptcha-integration","ReCaptcha Integration for WordPress","1.2.8","weDevs","https:\u002F\u002Fprofiles.wordpress.org\u002Fwedevs\u002F","\u003Cp>Integrate reCaptcha in your blog. Supports no Captcha as well as old style recaptcha.\u003Cbr \u002F>\nProvides of the box integration for signup, login, comment formsand Ninja Forms as well\u003Cbr \u002F>\nas a plugin API for your own integrations.\u003C\u002Fp>\n\u003Ch4>Features:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Secures login, signup und comments with a recaptcha.\u003C\u002Fli>\n\u003Cli>Supports old as well as new reCaptcha.\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Works together with\u003C\u002Fp>\n\u003Cul>\n\u003Cli>WP Multisite\u003C\u002Fli>\n\u003Cli>bbPress\u003C\u002Fli>\n\u003Cli>BuddyPress\u003C\u002Fli>\n\u003Cli>AwesomeSupport (thanks to \u003Ca href=\"http:\u002F\u002Fjulienliabeuf.com\u002F\" rel=\"nofollow ugc\">Julien Liabeuf\u003C\u002Fa> )\u003C\u002Fli>\n\u003Cli>WooCommerce (Only checkout, registration and login form. Not password reset)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fninjaforms.com\u002F\" rel=\"nofollow ugc\">Ninja Forms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>cformsII\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>For integration in your self-coded forms see this \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftareq1988\u002Fwp-recaptcha-integration\u002Fwiki\u002FCustom-Themes-and-Forms\" rel=\"nofollow ugc\">wiki article\u003C\u002Fa> for details.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Localizations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Brazilian Portuguese (thanks to \u003Ca href=\"http:\u002F\u002Fwww.viniciusferraz.com\" rel=\"nofollow ugc\">Vinícius Ferraz\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Spanish (thanks to \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fyivi\" rel=\"nofollow ugc\">Ivan Yivoff\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>Italian (thanks to \u003Ca href=\"http:\u002F\u002Fblog.salaros.com\u002F\" rel=\"nofollow ugc\">Salaros\u003C\u002Fa>)\u003C\u002Fli>\n\u003Cli>German\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Latest Files on GitHub: \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftareq1988\u002Fwp-recaptcha-integration\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Ftareq1988\u002Fwp-recaptcha-integration\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Compatibility\u003C\u002Fh4>\n\u003Cp>On a \u003Cstrong>WP Multisite\u003C\u002Fstrong> you can either activate the plugin network wide or on a single site.\u003C\u002Fp>\n\u003Cp>Activated on a single site everything works as usual.\u003C\u002Fp>\n\u003Cp>With network activation entering the API key and setting up where a captcha is required\u003Cbr \u002F>\nis up to the network admin. A blog admin can override the API key e.g. when his blog is\u003Cbr \u002F>\nrunning under his\u002Fher own domain name.\u003C\u002Fp>\n\u003Ch4>Known Limitations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>You can’t have more than one old style reCaptcha on a page. This is a limitiation of\u003Cbr \u002F>\nreCaptcha itself. If that’s an issue for you, you should use the no Captcha Form.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>A No Captcha definitely requires client side JavaScript enabled. That’s how it does its\u003Cbr \u002F>\nsophisticated bot detection magic. There is no fallback. If your visitor does not have\u003Cbr \u002F>\nJS enabled the captcha test will not let him through.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>On a \u003Cstrong>Contact Form 7\u003C\u002Fstrong> when the reCaptcha is disabled (e.g. for logged in users) the field\u003Cbr \u002F>\nlabel will be still visible. This is due to CF7 Shortcode architecture, and can’t be fixed.\u003C\u002Fp>\n\u003Cp>To handle this there is a filter \u003Ccode>recaptcha_disabled_html\u003C\u002Fcode>. You can return a message for your logged-in\u003Cbr \u002F>\nusers here. Check out the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftareq1988\u002Fwp-recaptcha-integration\" rel=\"nofollow ugc\">GitHub Repo\u003C\u002Fa> for details.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>As of version 4.3 CF7 comes with its own recaptcha. Both are supposed to work together.\u003Cbr \u002F>\nI you want to keep the WP ReCaptcha functionality, e.g. if you want to hide the captcha\u003Cbr \u002F>\nfrom known users, leave the integration in the CF7 settings unconfigured.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Old style reCaptcha does not work together with \u003Cstrong>WooCommerce\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>In \u003Cstrong>WooCommerce\u003C\u002Fstrong> the reset password form can not be protected by a captcha. Woocommerce does\u003Cbr \u002F>\nnot fire any action in the lost password form, so there is no way for the plugin to hook in.\u003Cbr \u002F>\nTake a look at \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Ftopic\u002Fcaptcha-not-showing-on-lost-password-page?replies=7\" rel=\"ugc\">this thread\u003C\u002Fa> for a workaround.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Due to a lack of filters there is no (and as far as one can see, there will never be)\u003Cbr \u002F>\nsupport for the \u003Cstrong>MailPoet\u003C\u002Fstrong> subscription form.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Plugin API\u003C\u002Fh3>\n\u003Cp>The plugin offers some filters to allow themes and other plugins to hook in.\u003C\u002Fp>\n\u003Cp>See \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftareq1988\u002Fwp-recaptcha-integration\" rel=\"nofollow ugc\">GitHub-Repo\u003C\u002Fa> for details.\u003C\u002Fp>\n","reCaptcha for login, signup, comment forms, Ninja Forms and woocommerce.",295671,88,94,"2025-10-29T05:41:00.000Z","6.8.5","3.8","5.4",[58,60,21,24,63],"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-recaptcha-integration\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-recaptcha-integration.1.2.8.zip",99,2,"2024-11-01 00:00:00",{"slug":130,"name":131,"version":132,"author":133,"author_profile":134,"description":135,"short_description":136,"active_installs":137,"downloaded":138,"rating":11,"num_ratings":14,"last_updated":139,"tested_up_to":140,"requires_at_least":141,"requires_php":18,"tags":142,"homepage":147,"download_link":148,"security_score":149,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"recaptcha-for-asgaros-forum","reCAPTCHA (v2 & v3) for Asgaros Forum","1.0.8","Hitesh Chandwani","https:\u002F\u002Fprofiles.wordpress.org\u002Fhiteshchandwani\u002F","\u003Cp>\u003Cstrong>reCAPTCHA (v2 & v3) for Asgaros Forum\u003C\u002Fstrong> is a free plugin\u002Fadd-on for Asgaros Forum, that allow you to easily add \u003Cstrong>Google reCAPTCHA v2\u003C\u002Fstrong> or \u003Cstrong>Google reCAPTCHA v3\u003C\u002Fstrong> on your Asgaros Forum.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>reCAPTCHA (v2 & v3) for Asgaros Forum\u003C\u002Fstrong> prevent spam from creating new topics or replies. This plugin is built to integrate seamlessly with your Asgaros Forum enabled WordPress website.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>reCAPTCHA (v2 & v3) for Asgaros Forum\u003C\u002Fstrong> is very easy to use and work for \u003Cstrong>guest users\u003C\u002Fstrong> as well as \u003Cstrong>Logged-in users\u003C\u002Fstrong>.\u003C\u002Fp>\n","A free plugin (add-on) for Asgaros Forum that allow you to easily add Google reCAPTCHA v2 or Google reCAPTCHA v3 on your Asgaros Forum.",5000,64632,"2024-12-06T23:19:00.000Z","6.7.5","4.7",[143,144,145,146,130],"asgaros-forum","asgaros-forum-captcha-add-on","asgaros-forum-recaptcha","asgaros-forum-recaptcha-v2","http:\u002F\u002Fwordpress.org\u002Fplugins\u002Frecaptcha-for-asgaros-forum\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frecaptcha-for-asgaros-forum.1.0.4.zip",92,{"attackSurface":151,"codeSignals":202,"taintFlows":236,"riskAssessment":237,"analyzedAt":243},{"hooks":152,"ajaxHandlers":198,"restRoutes":199,"shortcodes":200,"cronEvents":201,"entryPointCount":28,"unprotectedCount":28},[153,159,164,168,173,175,178,181,185,188,191,194],{"type":154,"name":155,"callback":156,"file":157,"line":158},"action","init","jc_ninja_form_fields","inc\\recaptcha-ninja-cf7.php",38,{"type":154,"name":160,"callback":161,"file":162,"line":163},"loop_start","jc_login_status","jc_recaptcha.php",12,{"type":154,"name":165,"callback":166,"file":162,"line":167},"comment_form","reCAPTCHA_add",17,{"type":169,"name":170,"callback":171,"file":162,"line":172},"filter","wpcf7_form_elements","mifuncion_wpcf7_form_elements",18,{"type":154,"name":155,"callback":156,"file":162,"line":174},21,{"type":154,"name":176,"callback":166,"file":162,"line":177},"login_form",22,{"type":154,"name":179,"callback":166,"file":162,"line":180},"register_form",23,{"type":154,"name":182,"callback":183,"file":162,"line":184},"admin_menu","jc_baw_create_menu",25,{"type":154,"name":186,"callback":187,"file":162,"line":101},"login_enqueue_scripts","jc_scripts_method",{"type":154,"name":189,"callback":187,"file":162,"line":190},"wp_enqueue_scripts",27,{"type":154,"name":192,"callback":187,"file":162,"line":193},"admin_enqueue_scripts",28,{"type":154,"name":195,"callback":196,"file":162,"line":197},"admin_init","jc_register_mysettings_re",41,[],[],[],[],{"dangerousFunctions":203,"sqlUsage":204,"outputEscaping":206,"fileOperations":28,"externalRequests":28,"nonceChecks":28,"capabilityChecks":28,"bundledLibraries":235},[],{"prepared":28,"raw":28,"locations":205},[],{"escaped":207,"rawEcho":208,"locations":209},7,15,[210,214,215,217,218,220,221,223,224,226,227,229,230,231,233],{"file":211,"line":212,"context":213},"inc\\options.php",42,"raw output",{"file":211,"line":212,"context":213},{"file":211,"line":216,"context":213},43,{"file":211,"line":216,"context":213},{"file":211,"line":219,"context":213},44,{"file":211,"line":219,"context":213},{"file":211,"line":222,"context":213},46,{"file":211,"line":222,"context":213},{"file":211,"line":225,"context":213},47,{"file":211,"line":225,"context":213},{"file":211,"line":228,"context":213},49,{"file":211,"line":228,"context":213},{"file":157,"line":216,"context":213},{"file":157,"line":232,"context":213},48,{"file":162,"line":234,"context":213},58,[],[],{"summary":238,"deductions":239},"The jc-recaptcha plugin v1.4 exhibits a strong security posture based on the provided static analysis. The absence of any identified attack surface entry points like AJAX handlers, REST API routes, or shortcodes significantly limits the plugin's exposure to direct attacks. Furthermore, the code signals indicate good practices such as the absence of dangerous functions and the exclusive use of prepared statements for SQL queries. The lack of any historical vulnerabilities or recorded CVEs further suggests a well-maintained and secure plugin.\n\nHowever, a notable concern arises from the output escaping, where only 32% of outputs are properly escaped. This could potentially lead to cross-site scripting (XSS) vulnerabilities if user-supplied data is not adequately sanitized before being displayed. The absence of nonce checks and capability checks, while seemingly less critical given the lack of an attack surface, could become a weakness if new entry points were introduced in future updates without proper security considerations.\n\nIn conclusion, jc-recaptcha v1.4 demonstrates a secure foundation with a minimal attack surface and good data handling for database operations. The primary weakness lies in insufficient output escaping, which warrants attention. The plugin's clean vulnerability history is a positive indicator, but the identified output escaping issue represents the most significant risk from this analysis.",[240],{"reason":241,"points":242},"Insufficient output escaping",6,"2026-03-16T21:00:48.514Z",{"wat":245,"direct":253},{"assetPaths":246,"generatorPatterns":249,"scriptPaths":250,"versionParams":252},[247,248],"\u002Fwp-content\u002Fplugins\u002Fjc-recaptcha\u002Fimages\u002Ficon.png","\u002Fwp-content\u002Fplugins\u002Fjc-recaptcha\u002Fjs\u002Fjcscript.js",[],[251],"https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002Fapi.js",[],{"cssClasses":254,"htmlComments":257,"htmlAttributes":258,"restEndpoints":260,"jsGlobals":261,"shortcodeOutput":262},[255,256],"jc","jc wp7",[],[259],"data-sitekey",[],[],[263,264],"\u003Cdiv class=\"g-recaptcha jc\" data-sitekey=\"","\u003Cdiv class=\"g-recaptcha jc wp7\" data-sitekey=\"",{"error":266,"url":267,"statusCode":268,"statusMessage":269,"message":269},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fjc-recaptcha\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":28,"versions":271},[]]