Does Kaya Login Captcha have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Kaya Login Captcha compatible with WordPress 6.9.4?

According to WordPress.org data, Kaya Login Captcha 1.0.2 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Kaya Login Captcha compatible with PHP 5.3+?

Kaya Login Captcha requires PHP 5.3 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Kaya Login Captcha updated?

Kaya Login Captcha was last updated on Dec 3, 2025. Frequent updates are generally a positive security signal.

What is Kaya Login Captcha's security score?

Kaya Login Captcha has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Kaya Login Captcha Security & Risk Analysis

wordpress.org/plugins/kaya-login-captcha

Adds a simple captcha on login form, register form and lost-password form.

200 active installs v1.0.2 PHP 5.3+ WP 4.6.0+ Updated Dec 3, 2025

brute-force-protectioncaptchaloginlogin-securityspam

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Kaya Login Captcha Safe to Use in 2026?

Generally Safe

Score 100/100

Kaya Login Captcha has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 5mo ago

Risk Assessment

The plugin 'kaya-login-captcha' v1.0.2 exhibits a generally strong security posture based on the provided static analysis. The absence of identified dangerous functions, external HTTP requests, and file operations is positive. The consistent use of prepared statements for all SQL queries and the high percentage of properly escaped output significantly reduce the risk of common injection and cross-site scripting vulnerabilities. Furthermore, the plugin has no recorded vulnerabilities (CVEs) and no history of past issues, suggesting a commitment to secure development practices. The presence of capability checks also indicates an awareness of WordPress's user role management for access control.

Key Concerns

Lack of Nonce Checks on Entry Points
Limited Attack Surface Visibility

Vulnerabilities

None known

Kaya Login Captcha Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Kaya Login Captcha Release Timeline

v1.0.2Current

v1.0.1

v1.0.0

Code Analysis

Analyzed Mar 16, 2026

Kaya Login Captcha Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

64 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

96% escaped67 total outputs

Attack Surface

Kaya Login Captcha Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 4

actionplugins_loadedkaya-login-captcha.php:68

actionwp_initialize_sitekaya-login-captcha.php:96

filterplugin_action_linkskaya-login-captcha.php:123

filterplugin_row_metakaya-login-captcha.php:150

Maintenance & Trust

Kaya Login Captcha Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 3, 2025

PHP min version5.3

Downloads3K

Community Trust

Rating100/100

Number of ratings1

Active installs200

Alternatives

Kaya Login Captcha Alternatives

Power Captcha reCAPTCHA

power-captcha-recaptcha

Protect WordPress/WooCommerce/Contact Form 7 forms from spam, brute-force attacks, fake comments, accounts, or registrations with Google reCAPTCHA.

1K No CVEs

Captcha Code

captcha-code-authentication

GDPR compatible captcha anti-spam protection for login form, comments form, registration form & lost password form. Eliminate spam with captcha.

100K 2 CVEs

Wordfence Login Security

wordfence-login-security

Secure your website with Wordfence Login Security, providing two-factor authentication, login and registration CAPTCHA, and XML-RPC protection.

70K No CVEs

Titan Anti-spam & Security

anti-spam

Block spam comments, defend against login attempts, and strengthen site security with anti-spam, brute-force protection, and two-factor authentication …

60K 3 CVEs

Simple Login Captcha

simple-login-captcha

100

Adds a simple 3-digit number captcha on the login form.

10K No CVEs

Developer Profile

Kaya Login Captcha Developer Profile

Kaya Studio

3 plugins · 20K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

283 days

View full developer profile

Detection Fingerprints

How We Detect Kaya Login Captcha

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/kaya-login-captcha/assets/css/wpklc-styles.css/wp-content/plugins/kaya-login-captcha/assets/js/wpklc-scripts.js

Script Paths

/wp-content/plugins/kaya-login-captcha/assets/js/wpklc-scripts.js

Version Parameters

kaya-login-captcha/assets/css/wpklc-styles.css?ver=kaya-login-captcha/assets/js/wpklc-scripts.js?ver=

HTML / DOM Fingerprints

CSS Classes

wpklc-login-form-captcha

Data Attributes

data-wpklc-text

JS Globals

wpklc_ajax_object

FAQ