[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fKJ8pPC5PtsKswp3siXLCn77XCyRSk-cShkGzItR3Bnw":3,"$fGJn-2TaseW2pqzkqSYg8dF442-MHVFIf73QaIqoLUg8":373,"$fdPo9Kibgvj3fuyqsMralJsK50qRDRQKaBbtxPlM2nz8":378},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":37,"analysis":142,"fingerprints":348},"jkm-checkout-captcha-for-woo","Checkout Captcha for WooCommerce","1.0.1","Mohammed Jamsheed KM","https:\u002F\u002Fprofiles.wordpress.org\u002Fjamsheedkm\u002F","\u003Cp>\u003Cstrong>Checkout Captcha for WooCommerce\u003C\u002Fstrong> enhances your WooCommerce checkout, WordPress login, registration, and password reset forms by integrating reCAPTCHA verification, helping to prevent spam and bot transactions.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Multi-Form Support:\u003C\u002Fstrong> Seamlessly integrates reCAPTCHA in WooCommerce checkout, as well as WordPress login, registration, and password reset forms.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Guest Checkout Compatibility:\u003C\u002Fstrong> Offers the option to enable or disable reCAPTCHA for guest checkouts, enhancing user experience while maintaining security.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Payment Method Flexibility:\u003C\u002Fstrong> Skip reCAPTCHA verification for specific payment methods, enhancing the checkout experience and improving conversion rates (ideal for compatibility with \u003Ccode>Express Checkout\u003C\u002Fcode> plugin).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Positioning:\u003C\u002Fstrong> Users can select different positions for displaying the reCAPTCHA on the checkout page, offering flexibility to suit various store layouts.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Additional Filters for Customization:\u003C\u002Fstrong> Provides hooks and filters to allow users to customize the positioning and functionality of the reCAPTCHA in their checkout process.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Google reCAPTCHA Configuration:\u003C\u002Fstrong> Easily configure reCAPTCHA using Google’s v2 by providing both the site key and secret key.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Test Functionality:\u003C\u002Fstrong> Test the reCAPTCHA setup directly from the admin panel after entering your API keys, ensuring everything works correctly before going live.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>1. Multi-Form Integration:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Add reCAPTCHA to WooCommerce checkout, WordPress login, registration, and password reset forms to enhance security.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>2. Guest Checkout Option:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Configure reCAPTCHA to be optional for guest checkouts, balancing security and convenience.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>3. Payment Method Customization:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Skip reCAPTCHA for selected payment methods, streamlining the checkout process for quicker transactions.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>4. Flexible Positioning:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Choose the display position of reCAPTCHA on the checkout page, ensuring it fits seamlessly into your store’s layout.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>5. Advanced Filters and Hooks:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Utilize additional hooks and filters for advanced customization, allowing developers to extend functionality easily.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>6. Google reCAPTCHA Setup:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Configure reCAPTCHA using Google’s API by entering the site key and secret key, and validate the setup from the admin dashboard.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>7. Admin Testing Feature:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Test reCAPTCHA functionality in the admin area to confirm proper integration before your customers encounter it.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>8. Dynamic Theme Compatibility:\u003C\u002Fstrong>\u003Cbr \u002F>\n– reCAPTCHA will be displayed in both light and dark themes as users select, providing an adaptive visual experience.\u003Cbr \u002F>\n– Users can choose the captcha theme (dark or light) to match their preferences.\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Google reCAPTCHA\u003C\u002Fstrong>\u003Cbr \u002F>\nThis plugin integrates with Google reCAPTCHA to provide CAPTCHA verification during the checkout process, enhancing security and reducing spam.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>What the service is used for:\u003C\u002Fstrong>\u003Cbr \u002F>\nGoogle reCAPTCHA is used to verify human users and prevent automated bots from completing the checkout process.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>What data is sent and when:\u003C\u002Fstrong>\u003Cbr \u002F>\nWhen the CAPTCHA verification is triggered (e.g., during form submission or checkout), the plugin sends the following data to Google reCAPTCHA’s servers:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The CAPTCHA response token generated by the user’s interaction with the CAPTCHA widget (\u003Ccode>response\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>The secret key associated with your Google reCAPTCHA account (\u003Ccode>secret\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>Additional details such as locale settings may be included in the API call for displaying the CAPTCHA in the user’s preferred language.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Service Provider Details:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Google reCAPTCHA API: \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fterms\" rel=\"nofollow ugc\">Terms of Service\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fprivacy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Domains involved:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002Fapi\u002Fsiteverify\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002Fapi.js\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>By using this plugin, you agree to the terms and policies outlined by Google reCAPTCHA.\u003C\u002Fp>\n","Adds reCAPTCHA verification to WooCommerce checkout, login, registration, and password reset forms to prevent spam and bot transactions.",50,1127,0,"2025-01-25T17:44:00.000Z","6.7.5","5.0","5.6",[19,20,21,22,23],"captcha","checkout-captcha","checkout-security","google-recaptcha","login-recaptcha","https:\u002F\u002Fgithub.com\u002Fkmjamsheed0\u002Fjkm-checkout-captcha-for-woo","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjkm-checkout-captcha-for-woo.1.0.1.zip",92,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"jamsheedkm",2,30,88,"2026-05-19T20:16:22.356Z",[38,62,82,100,123],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":57,"download_link":58,"security_score":59,"vuln_count":60,"unpatched_count":13,"last_vuln_date":61,"fetched_at":28},"advanced-google-recaptcha","Advanced Google reCAPTCHA","1.34","WebFactory","https:\u002F\u002Fprofiles.wordpress.org\u002Fwebfactory\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fgetwpcaptcha.com\u002F\" rel=\"nofollow ugc\">Advanced Google reCAPTCHA\u003C\u002Fa> protects your WordPress site from spam comments & brute force login attacks using captcha. This captcha plugin, quickly adds Google reCAPTCHA and other captcha tests to WordPress comment form, login form, and other forms.\u003C\u002Fp>\n\u003Cp>Using Advanced Google reCAPTCHA (most popular captcha on the market), you’ll be safe from spam comments and protect user accounts, WooCommerce, Easy Digital Downloads, BuddyPress and other forms from brute-force login attacks.\u003C\u002Fp>\n\u003Cp>reCaptcha works for:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Login Form\u003C\u002Fli>\n\u003Cli>Registration Form\u003C\u002Fli>\n\u003Cli>Reset Password Form\u003C\u002Fli>\n\u003Cli>Comment Form\u003C\u002Fli>\n\u003Cli>BuddyPress Form\u003C\u002Fli>\n\u003Cli>WooCommerce Form\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads (EDD) Login Form\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads (EDD) Registration Form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Captcha uses these 3rd party libs:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Chart.js, 2017 Nick Downie, MIT\u003C\u002Fli>\n\u003Cli>DataTables, 2008-2017 SpryMedia Ltd, MIT\u003C\u002Fli>\n\u003Cli>moment.js, Tim Wood, Iskren Chernev, MIT\u003C\u002Fli>\n\u003Cli>SweetAlert 2, github.com\u002FSweetalert2\u002FSweetalert2, MIT\u003C\u002Fli>\n\u003Cli>tooltipster, www.heteroclito.fr\u002Fmodules\u002Ftooltipster\u002F, MIT\u003C\u002Fli>\n\u003C\u002Ful>\n","Captcha protection against spam comments & brute force login attacks using Google reCAPTCHA.",200000,2777323,96,428,"2026-04-09T19:09:00.000Z","7.0","4.9","5.2",[19,55,22,23,56],"comment-recaptcha","recaptcha","https:\u002F\u002Fgetwpcaptcha.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-google-recaptcha.1.34.zip",98,3,"2025-03-27 19:32:14",{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":72,"num_ratings":60,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":76,"tags":77,"homepage":80,"download_link":81,"security_score":72,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"advanced-google-recaptcha-for-woocommerce","reCaptcha for WooCommerce","1.0.7","Tanvirul Haque","https:\u002F\u002Fprofiles.wordpress.org\u002Ftanvirul\u002F","\u003Cp>Enable Google reCaptcha for WooCommerce Checkout, Login, Registration, and Reset Password Forms to protect your store against spam.\u003C\u002Fp>\n","Enable Google reCaptcha for WooCommerce Checkout, Login, Registration, and Reset Password Forms to protect your store against spam.",400,4502,100,"2025-09-13T05:24:00.000Z","6.8.5","4.8","7.4",[22,23,56,78,79],"recaptcha-checkout","woocommerce-recaptcha","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fadvanced-google-recaptcha-for-woocommerce\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-google-recaptcha-for-woocommerce.1.0.7.zip",{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":13,"num_ratings":13,"last_updated":92,"tested_up_to":74,"requires_at_least":16,"requires_php":93,"tags":94,"homepage":97,"download_link":98,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":99},"addonify-recaptcha-for-edd","Addonify – reCaptcha For EDD","1.0.14","Addonify","https:\u002F\u002Fprofiles.wordpress.org\u002Faddonify\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Faddonify.com\u002F\" rel=\"nofollow ugc\">Addonify reCAPTCHA For EDD\u003C\u002Fa> is a simple plugin that adds Google reCaptcha in Easy Digital Downloads login and registration forms. Enable reCaptcha from Dashboard > EDD Setting > reCaptcha.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>FEATURES:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>✅ Add Google reCaptcha v2 in EDD login forms.\u003Cbr \u002F>\n✅ Add Google reCaptcha v2 in EDD register forms.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>KNOWN LIMITATIONS:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>❌ We have not tested this plugin in WP Multisite.\u003Cbr \u002F>\n❌ EDD login submit button is clickable even without passing reCaptcha validation.\u003Cbr \u002F>\n❌ EDD registration submit button is clickable even without passing reCaptcha validation.\u003Cbr \u002F>\n❌ Only supports Google reCaptcha v2 no-robot checkbox.\u003C\u002Fp>\n","Addonify reCAPTCHA for EDD is a simple plugin that adds Google reCaptcha in Easy Digital Downloads login and registration forms.",60,4523,"2025-03-25T05:31:00.000Z","7.4.0",[95,22,23,56,96],"edd-recaptcha","register-recaptcha","https:\u002F\u002Faddonify.com\u002Fdownloads\u002Frecaptcha-for-edd","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Faddonify-recaptcha-for-edd.1.0.14.zip","2026-04-06T09:54:40.288Z",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":110,"num_ratings":111,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":115,"tags":116,"homepage":115,"download_link":121,"security_score":122,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"cf7-google-captcha-load-after-page","CF7 Google Captcha Load After Page","3.0.1","Amit bhalani","https:\u002F\u002Fprofiles.wordpress.org\u002Famit648\u002F","\u003Cp>This plugins use for your website speed improvement and decrease your page request. When you have used contact form 7 and insert you Google Captcha( v3 ) after this plugin active. When a user scrolls the page, then loading google captcha code.\u003C\u002Fp>\n\u003Cp>How to use this plugin?\u003C\u002Fp>\n\u003Col>\n\u003Cli>Download this Free CF7 Google Captcha Load After Page WordPress Plugin from above link.\u003C\u002Fli>\n\u003Cli>Connect to your WordPress dashboard (wp-admin) and navigate to Plugins >> Add New Plugin >> Upload Plugin >> Now upload the downloaded (CF7 Google Captcha Load After Page.zip) file >> Click on  Install Now.\u003C\u002Fli>\n\u003Cli>Once you install this plugin successfully, click on  Activate Plugin .\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Now you visit your site and scroll your site.\u003C\u002Fp>\n","This plugins use for your website speed improvement and decrease your page request. When you have used contact form 7 and insert you Google Captcha( v &hellip;",2000,21346,86,6,"2021-08-09T06:01:00.000Z","5.8.13","3.5","",[117,118,119,22,120],"cf7","cf7-google-captcha","google-captcha","google-recaptcha-v3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-google-captcha-load-after-page.zip",85,{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":131,"downloaded":132,"rating":72,"num_ratings":60,"last_updated":133,"tested_up_to":134,"requires_at_least":16,"requires_php":135,"tags":136,"homepage":140,"download_link":141,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"power-captcha-recaptcha","Power Captcha reCAPTCHA","1.1.0","Denis Alemán","https:\u002F\u002Fprofiles.wordpress.org\u002Fdenisaleman\u002F","\u003Cp>Protect your WordPress, WooCommerce, and Contact Form 7 forms from spam, brute-force attacks, and fake accounts using Google reCAPTCHA.\u003C\u002Fp>\n\u003Cp>Power Captcha reCAPTCHA supports 3 Google reCAPTCHA types integrated into 6 common WordPress forms, including login and comment forms, 7 WooCommerce forms, and Contact Form 7.\u003C\u002Fp>\n\u003Ch3>3 CAPTCHA Types\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Score-based (v3) CAPTCHA.\u003C\u002Fstrong> Seamless detection.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>“I’m not a robot” CAPTCHA checkbox.\u003C\u002Fstrong> Verification requests with a challenge.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Invisible reCAPTCHA.\u003C\u002Fstrong> Improved, challenge-based CAPTCHA without a checkbox.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>6 WordPress Forms\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Login form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Register form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comment form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lost password form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reset password form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Register form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>7 WooCommerce Forms\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Login form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Register form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Checkout form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Review form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reset password form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lost password form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contact Form 7\u003C\u002Fh3>\n\u003Cp>As of version 1.0.7, Power Captcha reCAPTCHA integrates with Contact Form 7. You can easily add the Power Captcha reCAPTCHA field to your Contact Form 7 forms.\u003C\u002Fp>\n\u003Ch3>Activity Report\u003C\u002Fh3>\n\u003Cp>The Activity Report feature for the plugin provides users with a detailed overview of captcha interactions. It tracks and displays the number of solved, failed, and empty captchas, offering a daily breakdown to monitor performance trends. Stay informed with clear insights into your captcha performance.\u003C\u002Fp>\n","Protect WordPress\u002FWooCommerce\u002FContact Form 7 forms from spam, brute-force attacks, fake comments, accounts, or registrations with Google reCAPTCHA.",1000,6309,"2025-03-09T01:27:00.000Z","6.8.0","5.5",[137,19,138,22,139],"anti-spam-security","comment-form","login-security","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpower-captcha-recaptcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpower-captcha-recaptcha.1.1.0.zip",{"attackSurface":143,"codeSignals":283,"taintFlows":310,"riskAssessment":338,"analyzedAt":347},{"hooks":144,"ajaxHandlers":279,"restRoutes":280,"shortcodes":281,"cronEvents":282,"entryPointCount":13,"unprotectedCount":13},[145,151,156,159,163,167,171,175,179,184,189,192,197,201,205,208,212,215,219,223,227,230,233,237,240,243,247,250,253,256,259,262,265,268,271,274,277],{"type":146,"name":147,"callback":148,"file":149,"line":150},"action","admin_init","register_jkmccfw_settings","admin\\class-jkmccfw-admin.php",23,{"type":146,"name":152,"callback":153,"priority":154,"file":149,"line":155},"update_option_jkmccfw_key","jkmccfw_keys_updated",10,24,{"type":146,"name":157,"callback":153,"priority":154,"file":149,"line":158},"update_option_jkmccfw_secret",25,{"type":146,"name":147,"callback":160,"file":161,"line":162},"jkmccfw_activation_redirect","includes\\class-jkmccfw.php",44,{"type":146,"name":164,"callback":165,"file":161,"line":166},"admin_menu","jkmccfw_admin_menu",45,{"type":146,"name":168,"callback":169,"file":161,"line":170},"admin_enqueue_scripts","jkmccfw_admin_script_enqueue",47,{"type":146,"name":172,"callback":173,"file":161,"line":174},"wp_enqueue_scripts","enqueue_checkout_public_styles_and_scripts",52,{"type":146,"name":176,"callback":177,"file":161,"line":178},"login_enqueue_scripts","enqueue_login_script",53,{"type":180,"name":181,"callback":182,"priority":154,"file":161,"line":183},"filter","script_loader_tag","add_defer_attribute",54,{"type":146,"name":185,"callback":186,"file":187,"line":188},"before_woocommerce_init","closure","jkm-checkout-captcha-for-woo.php",21,{"type":146,"name":190,"callback":190,"file":187,"line":191},"init",64,{"type":146,"name":193,"callback":194,"file":195,"line":196},"login_form","jkmccfw_field_admin","public\\class-jkmccfw-public.php",73,{"type":146,"name":198,"callback":199,"priority":188,"file":195,"line":200},"authenticate","check_login_recaptcha",74,{"type":146,"name":202,"callback":203,"priority":154,"file":195,"line":204},"wp_login","clear_login_session",77,{"type":146,"name":206,"callback":194,"file":195,"line":207},"register_form",111,{"type":146,"name":209,"callback":210,"priority":154,"file":195,"line":211},"registration_errors","check_register_recaptcha",112,{"type":146,"name":213,"callback":194,"file":195,"line":214},"lostpassword_form",129,{"type":146,"name":216,"callback":217,"priority":154,"file":195,"line":218},"lostpassword_post","check_reset_recaptcha",130,{"type":146,"name":220,"callback":221,"file":195,"line":222},"woocommerce_checkout_process","check_checkout_recaptcha",148,{"type":146,"name":224,"callback":225,"file":195,"line":226},"woocommerce_login_form","jkmccfw_field",152,{"type":146,"name":198,"callback":228,"priority":188,"file":195,"line":229},"check_woocommerce_login_recaptcha",153,{"type":146,"name":231,"callback":225,"file":195,"line":232},"woocommerce_register_form",157,{"type":146,"name":234,"callback":235,"priority":154,"file":195,"line":236},"woocommerce_register_post","check_woocommerce_register_recaptcha",158,{"type":146,"name":238,"callback":225,"file":195,"line":239},"woocommerce_lostpassword_form",162,{"type":146,"name":216,"callback":241,"priority":154,"file":195,"line":242},"check_woocommerce_reset_recaptcha",163,{"type":146,"name":244,"callback":245,"file":195,"line":246},"woocommerce_review_order_before_submit","jkmccfw_field_checkout",260,{"type":146,"name":248,"callback":245,"file":195,"line":249},"woocommerce_review_order_after_submit",262,{"type":146,"name":251,"callback":245,"file":195,"line":252},"woocommerce_checkout_before_terms_and_conditions",264,{"type":146,"name":254,"callback":245,"file":195,"line":255},"woocommerce_checkout_terms_and_conditions",266,{"type":146,"name":257,"callback":245,"file":195,"line":258},"woocommerce_checkout_after_terms_and_conditions",268,{"type":146,"name":260,"callback":245,"file":195,"line":261},"woocommerce_review_order_before_payment",270,{"type":146,"name":263,"callback":245,"file":195,"line":264},"woocommerce_review_order_after_payment",272,{"type":146,"name":266,"callback":245,"file":195,"line":267},"woocommerce_before_checkout_billing_form",274,{"type":146,"name":269,"callback":245,"file":195,"line":270},"woocommerce_after_checkout_billing_form",276,{"type":146,"name":272,"callback":245,"file":195,"line":273},"woocommerce_before_checkout_form",278,{"type":146,"name":275,"callback":245,"file":195,"line":276},"woocommerce_after_checkout_form",280,{"type":146,"name":244,"callback":245,"file":195,"line":278},286,[],[],[],[],{"dangerousFunctions":284,"sqlUsage":285,"outputEscaping":287,"fileOperations":13,"externalRequests":308,"nonceChecks":111,"capabilityChecks":308,"bundledLibraries":309},[],{"prepared":13,"raw":13,"locations":286},[],{"escaped":288,"rawEcho":289,"locations":290},48,9,[291,295,296,299,301,302,303,305,306],{"file":292,"line":293,"context":294},"admin\\class-jkmccfw-admin-settings.php",63,"raw output",{"file":149,"line":35,"context":294},{"file":297,"line":298,"context":294},"includes\\utils\\class-jkmccfw-utils.php",78,{"file":297,"line":300,"context":294},81,{"file":297,"line":35,"context":294},{"file":297,"line":26,"context":294},{"file":297,"line":304,"context":294},94,{"file":297,"line":59,"context":294},{"file":297,"line":307,"context":294},105,1,[],[311,330],{"entryPoint":312,"graph":313,"unsanitizedCount":308,"severity":329},"jkmccfw_recaptcha_check (includes\\utils\\class-jkmccfw-utils.php:29)",{"nodes":314,"edges":326},[315,320],{"id":316,"type":317,"label":318,"file":297,"line":319},"n0","source","$_POST",32,{"id":321,"type":322,"label":323,"file":297,"line":324,"wp_function":325},"n1","sink","wp_remote_get() [SSRF]",41,"wp_remote_get",[327],{"from":316,"to":321,"sanitized":328},false,"medium",{"entryPoint":331,"graph":332,"unsanitizedCount":308,"severity":329},"\u003Cclass-jkmccfw-utils> (includes\\utils\\class-jkmccfw-utils.php:0)",{"nodes":333,"edges":336},[334,335],{"id":316,"type":317,"label":318,"file":297,"line":319},{"id":321,"type":322,"label":323,"file":297,"line":324,"wp_function":325},[337],{"from":316,"to":321,"sanitized":328},{"summary":339,"deductions":340},"The plugin \"jkm-checkout-captcha-for-woo\" v1.0.1 exhibits a generally strong security posture based on the provided static analysis. The absence of an attack surface with entry points like AJAX handlers, REST API routes, or shortcodes significantly reduces the immediate threat landscape. The code also demonstrates good practices by using prepared statements for all SQL queries and a high percentage of properly escaped output.  The presence of nonce and capability checks further bolsters its security.\n\nHowever, two identified taint flows with unsanitized paths, despite being flagged as not critical or high severity, warrant attention. While the static analysis did not find vulnerabilities, these flows indicate potential avenues for attackers to inject malicious data if the input is not sufficiently validated and sanitized before use. The single external HTTP request is also a point to monitor, as it could be a vector for the plugin to interact with external services in an insecure manner, although no specific risks are detailed.\n\nThe plugin's clean vulnerability history with zero recorded CVEs is a very positive indicator, suggesting a consistent track record of secure development. This, combined with the absence of dangerous functions and file operations, paints a picture of a well-maintained and secure plugin. The strengths lie in its minimal attack surface and robust data handling practices, while the primary weakness lies in the two identified unsanitized taint flows that require further investigation.",[341,344,345],{"reason":342,"points":343},"Taint flow with unsanitized path",8,{"reason":342,"points":343},{"reason":346,"points":60},"External HTTP request without specified security","2026-03-16T22:06:16.373Z",{"wat":349,"direct":359},{"assetPaths":350,"generatorPatterns":353,"scriptPaths":354,"versionParams":356},[351,352],"\u002Fwp-content\u002Fplugins\u002Fjkm-checkout-captcha-for-woo\u002Fadmin\u002Fassets\u002Fcss\u002Fjkmccfw-admin.css","\u002Fwp-content\u002Fplugins\u002Fjkm-checkout-captcha-for-woo\u002Fadmin\u002Fassets\u002Fjs\u002Fjkmccfw-admin.js",[],[355],"https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002Fapi.js?explicit&hl=",[357,358],"jkm-checkout-captcha-for-woo\u002Fadmin\u002Fassets\u002Fcss\u002Fjkmccfw-admin.css?ver=","jkm-checkout-captcha-for-woo\u002Fadmin\u002Fassets\u002Fjs\u002Fjkmccfw-admin.js?ver=",{"cssClasses":360,"htmlComments":363,"htmlAttributes":364,"restEndpoints":368,"jsGlobals":369,"shortcodeOutput":372},[361,362],"jkmccfw-admin-style","dashicons-yes-alt",[],[365,366,367],"id=\"jkmccfw_settings\"","class=\"wrap\"","class=\"woocommerce\"",[],[370,371],"JKMCCFW_VERSION","JKMCCFW_ADMIN_ASSETS_URL",[],{"error":374,"url":375,"statusCode":376,"statusMessage":377,"message":377},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fjkm-checkout-captcha-for-woo\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":33,"versions":379},[380,385],{"version":6,"download_url":25,"svn_tag_url":381,"released_at":27,"has_diff":328,"diff_files_changed":382,"diff_lines":27,"trac_diff_url":383,"vulnerabilities":384,"is_current":374},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fjkm-checkout-captcha-for-woo\u002Ftags\u002F1.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fjkm-checkout-captcha-for-woo%2Ftags%2F1.0.0&new_path=%2Fjkm-checkout-captcha-for-woo%2Ftags%2F1.0.1",[],{"version":386,"download_url":387,"svn_tag_url":388,"released_at":27,"has_diff":328,"diff_files_changed":389,"diff_lines":27,"trac_diff_url":27,"vulnerabilities":390,"is_current":328},"1.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjkm-checkout-captcha-for-woo.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fjkm-checkout-captcha-for-woo\u002Ftags\u002F1.0.0\u002F",[],[]]