[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fafecnjgHTMGFdRhpC__n7nMHY27az2Ou3ndGw1C0eY0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":37,"analysis":129,"fingerprints":989},"kitgenix-captcha-for-cloudflare-turnstile","Kitgenix CAPTCHA for Cloudflare Turnstile","1.0.17","Kitgenix","https:\u002F\u002Fprofiles.wordpress.org\u002Fkitgenix\u002F","\u003Cp>Spam is expensive: it wastes time, clogs inboxes, creates fake accounts, and on stores it can lead to abandoned checkout noise and fraudulent activity. Traditional CAPTCHA solutions can also hurt conversions by adding friction.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cloudflare Turnstile\u003C\u002Fstrong> is a modern, privacy-first CAPTCHA alternative designed to reduce friction for real people while still blocking bots.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Kitgenix CAPTCHA for Cloudflare Turnstile\u003C\u002Fstrong> is a production-ready Turnstile integration for WordPress that focuses on reliability in real-world setups:\u003Cbr \u002F>\n– Server-side token verification (using Cloudflare’s official endpoint)\u003Cbr \u002F>\n– Fast, conditional loading (only where needed)\u003Cbr \u002F>\n– Support for dynamic\u002FAJAX forms and modern WooCommerce Blocks \u002F Store API checkout\u003Cbr \u002F>\n– Security features: replay protection, proxy-aware IP handling, whitelisting, and developer mode (warn-only)\u003C\u002Fp>\n\u003Cp>You can enable\u002Fdisable each integration (and many per-form toggles), choose auto-injection vs shortcode-only placement, customise display and messaging, and use built-in diagnostics and Site Health checks to troubleshoot.\u003C\u002Fp>\n\u003Ch4>Supported integrations (where Turnstile can be added)\u003C\u002Fh4>\n\u003Cp>All integrations are enable-able from settings. Many also support \u003Cstrong>Mode: Auto vs Shortcode\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WordPress Core\u003C\u002Fstrong>\u003Cbr \u002F>\n– Login\u003Cbr \u002F>\n– Registration\u003Cbr \u002F>\n– Lost password\u003Cbr \u002F>\n– Reset password\u003Cbr \u002F>\n– Comments (including safe handling for comment failures\u002Fredirects)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WooCommerce (Classic)\u003C\u002Fstrong>\u003Cbr \u002F>\n– Checkout\u003Cbr \u002F>\n– My Account login\u003Cbr \u002F>\n– My Account registration\u003Cbr \u002F>\n– Lost password\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WooCommerce Blocks (Store API \u002F Block Checkout)\u003C\u002Fstrong>\u003Cbr \u002F>\n– UI rendering inside block-based checkout\u003Cbr \u002F>\n– Adds token to Store API requests (header and\u002For extensions payload when available)\u003Cbr \u002F>\n– Server-side validation of Store API checkout requests\u003Cbr \u002F>\n– Supports “shortcode-only mode” behaviour so you can control placement\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Easy Digital Downloads (EDD)\u003C\u002Fstrong>\u003Cbr \u002F>\n– Checkout\u003Cbr \u002F>\n– Login\u003Cbr \u002F>\n– Register\u003Cbr \u002F>\n– Profile editor\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Form plugins\u003C\u002Fstrong>\u003Cbr \u002F>\n– Contact Form 7 (CF7)\u003Cbr \u002F>\n– WPForms\u003Cbr \u002F>\n– Fluent Forms\u003Cbr \u002F>\n– Formidable Forms\u003Cbr \u002F>\n– Forminator\u003Cbr \u002F>\n– Gravity Forms\u003Cbr \u002F>\n– JetFormBuilder\u003Cbr \u002F>\n– Jetpack Forms\u003Cbr \u002F>\n– Kadence Forms\u003Cbr \u002F>\n– Elementor Forms (including popups and AJAX submissions)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Community \u002F forums\u003C\u002Fstrong>\u003Cbr \u002F>\n– bbPress (topic\u002Freply flows where applicable)\u003Cbr \u002F>\n– BuddyPress (flows where applicable)\u003C\u002Fp>\n\u003Ch4>Core features (site-wide)\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Turnstile widget rendering\u003C\u002Fstrong>\u003Cbr \u002F>\n– Uses Cloudflare’s official Turnstile API script\u003Cbr \u002F>\n– Widget options:\u003Cbr \u002F>\n – Theme: auto \u002F light \u002F dark\u003Cbr \u002F>\n – Size: small \u002F medium \u002F large \u002F normal \u002F flexible\u003Cbr \u002F>\n – Appearance: stored as Turnstile “appearance” option (defaults to always)\u003Cbr \u002F>\n – Language: auto or explicit locale (passed via \u003Ccode>hl=...\u003C\u002Fcode>)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Settings & admin experience\u003C\u002Fstrong>\u003Cbr \u002F>\n– Settings page under the shared Kitgenix WP admin menu\u003Cbr \u002F>\n– Live “test widget” preview on the settings screen (renders when a Site Key is present)\u003Cbr \u002F>\n– Site Key + Secret Key storage (secret not printed in HTML by default)\u003Cbr \u002F>\n– “Reveal secret key” (admins only, nonce-protected AJAX action)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Messaging & UX\u003C\u002Fstrong>\u003Cbr \u002F>\n– Custom error message (admin-configurable, used across integrations)\u003Cbr \u002F>\n– Extra message text (optional text displayed alongside\u002Funder the widget)\u003Cbr \u002F>\n– “Disable submit until completed” option (frontend behaviour via plugin JS)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Replay protection (enabled by default)\u003C\u002Fstrong>\u003Cbr \u002F>\n– Detects re-used tokens (hash stored in transients) and blocks replays\u003Cbr \u002F>\n– TTL is filterable\u003Cbr \u002F>\n– Stores hashed token markers under the transient prefix \u003Ccode>kitgenix_captcha_for_cloudflare_turnstile_ts_\u003C\u002Fcode>\u003Cbr \u002F>\n– Sets a short-lived cookie (\u003Ccode>kitgenix_captcha_for_cloudflare_turnstile_ts_replay\u003C\u002Fcode>, ~120s) when replay is detected (for frontend behaviour\u002Fmessages)\u003Cbr \u002F>\n– Dedicated replay message (filterable)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Developer mode (warn-only)\u003C\u002Fstrong>\u003Cbr \u002F>\n– Verification failures do \u003Cstrong>not\u003C\u002Fstrong> block submissions\u003Cbr \u002F>\n– Failures are logged (and emitted via a developer log action)\u003Cbr \u002F>\n– Optional inline warning annotation for admins (frontend config)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Whitelisting (skip Turnstile + skip loading API script)\u003C\u002Fstrong>\u003Cbr \u002F>\n– Whitelist logged-in users\u003Cbr \u002F>\n– Whitelist by IP (exact, wildcards, CIDR — including IPv6)\u003Cbr \u002F>\n– Whitelist by User-Agent (substring or wildcard matching)\u003Cbr \u002F>\n– Filter hook to override whitelist decision\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Proxy \u002F real-IP handling\u003C\u002Fstrong>\u003Cbr \u002F>\n– Optional trust of proxy headers (Cloudflare \u002F X-Forwarded-For style)\u003Cbr \u002F>\n– Trusted proxy IP list \u002F trust controls\u003Cbr \u002F>\n– Forwarded headers are only honoured when the request originates from a trusted proxy\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Performance & resilience\u003C\u002Fstrong>\u003Cbr \u002F>\n– Conditional script loading only where needed\u003Cbr \u002F>\n– Async\u002Fstrategy-based script loading (depending on WP version)\u003Cbr \u002F>\n– Adds resource hints (preconnect \u002F dns-prefetch) for Turnstile domain\u003Cbr \u002F>\n– Detects duplicate Turnstile API loaders (if another plugin\u002Ftheme enqueues \u003Ccode>api.js\u003C\u002Fcode>):\u003Cbr \u002F>\n – Stores detection in the transient \u003Ccode>kitgenix_turnstile_duplicate_scripts\u003C\u002Fcode>\u003Cbr \u002F>\n – Shows admin notice on settings and Plugins screen\u003Cbr \u002F>\n – Includes dismiss link (nonce-protected, uses \u003Ccode>kitgenix_captcha_for_cloudflare_turnstile_ts_dismiss_dupe=1\u003C\u002Fcode>)\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Site Health + diagnostics\u003C\u002Fstrong>\u003Cbr \u002F>\n– Adds a Site Health test: “Cloudflare Turnstile readiness”\u003Cbr \u002F>\n– Checks:\u003Cbr \u002F>\n – Keys present\u003Cbr \u002F>\n – Duplicate API loader transient (\u003Ccode>kitgenix_turnstile_duplicate_scripts\u003C\u002Fcode>)\u003Cbr \u002F>\n – Last verification success\u002Ffailure snapshot\u003Cbr \u002F>\n – Heuristic warning if common optimisation\u002Fcaching plugins are active\u003Cbr \u002F>\n– Stores the last verify outcome (success, time, error codes) for Site Health display\u003Cbr \u002F>\n– Tracks privacy-safe counters in \u003Ccode>kitgenix_captcha_for_cloudflare_turnstile_metrics\u003C\u002Fcode> (checks total\u002Fpassed\u002Ffailed)\u003C\u002Fp>\n\u003Ch4>Manual placement (shortcode)\u003C\u002Fh4>\n\u003Cp>If you have a custom form or an unsupported plugin, you can manually render the widget:\u003C\u002Fp>\n\u003Cp>[kitgenix_turnstile]\u003C\u002Fp>\n\u003Cp>Shortcode output includes:\u003Cbr \u002F>\n– a nonce field\u003Cbr \u002F>\n– a hidden \u003Ccode>cf-turnstile-response\u003C\u002Fcode> input\u003Cbr \u002F>\n– the widget container (with \u003Ccode>data-sitekey\u003C\u002Fcode>)\u003Cbr \u002F>\n– support for passing arbitrary attributes via shortcode attributes\u003C\u002Fp>\n\u003Cp>Many supported integrations also offer \u003Cstrong>Shortcode-only\u003C\u002Fstrong> mode (you place the shortcode where you want; the plugin validates server-side without auto-injection).\u003C\u002Fp>\n\u003Ch4>Quick Start\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Install and activate the plugin.\u003C\u002Fli>\n\u003Cli>Open the Turnstile settings under the Kitgenix hub in wp-admin.\u003C\u002Fli>\n\u003Cli>Add your Cloudflare Turnstile Site Key and Secret Key.\u003C\u002Fli>\n\u003Cli>Configure widget options (theme\u002Fsize\u002Fappearance\u002Flanguage) and messaging if needed.\u003C\u002Fli>\n\u003Cli>Enable the integrations (and per-form toggles) you want.\u003C\u002Fli>\n\u003Cli>Save, then test the key user journeys: login, registration, checkout, and your main contact form.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Tip: Start with \u003Cstrong>Developer mode (warn-only)\u003C\u002Fstrong> on staging or during rollout. Once you’re satisfied, disable warn-only to enforce blocking.\u003C\u002Fp>\n\u003Ch4>Performance and caching notes (important for stores)\u003C\u002Fh4>\n\u003Cp>Turnstile is lightweight, but aggressive optimisation can break rendering or token freshness.\u003C\u002Fp>\n\u003Cp>If you use caching\u002Foptimisation plugins:\u003Cbr \u002F>\n– Allowlist https:\u002F\u002Fchallenges.cloudflare.com\u003Cbr \u002F>\n– Avoid full-page caching on login\u002Faccount\u002Fcheckout pages\u003Cbr \u002F>\n– Avoid combining\u002Finlining the Turnstile loader\u003Cbr \u002F>\n– Avoid heavily delaying Elementor\u002Fform plugin scripts\u003Cbr \u002F>\n– Ensure outbound HTTP requests to Cloudflare are not blocked (needed for server-side verification)\u003C\u002Fp>\n\u003Ch3>Settings Overview\u003C\u002Fh3>\n\u003Cp>Main settings:\u003Cbr \u002F>\n– Site Key\u003Cbr \u002F>\n– Secret Key (with “secret present” state, clear\u002Freveal)\u003Cbr \u002F>\n– Theme (auto\u002Flight\u002Fdark)\u003Cbr \u002F>\n– Size (small\u002Fmedium\u002Flarge\u002Fnormal\u002Fflexible)\u003Cbr \u002F>\n– Appearance (Turnstile appearance option)\u003Cbr \u002F>\n– Language (auto or specific locale)\u003Cbr \u002F>\n– Disable submit until completed\u003Cbr \u002F>\n– Custom error message\u003Cbr \u002F>\n– Extra message text\u003C\u002Fp>\n\u003Cp>Security & advanced:\u003Cbr \u002F>\n– Replay protection (on\u002Foff)\u003Cbr \u002F>\n– Developer mode (warn-only)\u003Cbr \u002F>\n– Whitelist logged-in users\u003Cbr \u002F>\n– Whitelist IPs (wildcards\u002FCIDR, including IPv6)\u003Cbr \u002F>\n– Whitelist user agents\u003Cbr \u002F>\n– Proxy trust (enable\u002Fdisable)\u003Cbr \u002F>\n– Trusted proxy IPs \u002F trust controls\u003C\u002Fp>\n\u003Cp>Integrations (enable + per-form toggles where available):\u003Cbr \u002F>\n– WordPress Core (login\u002Fregister\u002Flost password\u002Freset password\u002Fcomments)\u003Cbr \u002F>\n– WooCommerce (checkout\u002Flogin\u002Fregister\u002Flost password)\u003Cbr \u002F>\n– WooCommerce Blocks mode (auto vs shortcode-only)\u003Cbr \u002F>\n– Easy Digital Downloads (checkout\u002Flogin\u002Fregister\u002Fprofile)\u003Cbr \u002F>\n– Contact Form 7\u003Cbr \u002F>\n– WPForms\u003Cbr \u002F>\n– Fluent Forms\u003Cbr \u002F>\n– Formidable Forms\u003Cbr \u002F>\n– Forminator\u003Cbr \u002F>\n– Gravity Forms\u003Cbr \u002F>\n– Jetpack Forms\u003Cbr \u002F>\n– Kadence Forms\u003Cbr \u002F>\n– Elementor Forms\u003Cbr \u002F>\n– bbPress\u003Cbr \u002F>\n– BuddyPress\u003C\u002Fp>\n\u003Ch3>Developers\u003C\u002Fh3>\n\u003Cp>Shortcode:\u003Cbr \u002F>\n[kitgenix_turnstile]\u003C\u002Fp>\n\u003Cp>Server-side verification endpoint:\u003Cbr \u002F>\nhttps:\u002F\u002Fchallenges.cloudflare.com\u002Fturnstile\u002Fv0\u002Fsiteverify\u003C\u002Fp>\n\u003Cp>Filters (script\u002Floading):\u003Cbr \u002F>\n– kitgenix_captcha_for_cloudflare_turnstile_script_url( $url, $settings )\u003Cbr \u002F>\n– kitgenix_turnstile_freshness_ms\u003Cbr \u002F>\n– kitgenix_turnstile_inline_style\u003C\u002Fp>\n\u003Cp>Filters (verification \u002F request handling):\u003Cbr \u002F>\n– kitgenix_turnstile_siteverify_url\u003Cbr \u002F>\n– kitgenix_turnstile_siteverify_timeout\u003Cbr \u002F>\n– kitgenix_turnstile_siteverify_sslverify\u003Cbr \u002F>\n– kitgenix_turnstile_siteverify_http_args\u003Cbr \u002F>\n– kitgenix_turnstile_send_remoteip\u003Cbr \u002F>\n– kitgenix_turnstile_remote_ip\u003Cbr \u002F>\n– kitgenix_turnstile_token_from_request\u003Cbr \u002F>\n– kitgenix_turnstile_error_codes\u003Cbr \u002F>\n– kitgenix_turnstile_error_message\u003Cbr \u002F>\n– kitgenix_turnstile_replay_message\u003Cbr \u002F>\n– kitgenix_captcha_for_cloudflare_turnstile_{context}_turnstile_error_message\u003C\u002Fp>\n\u003Cp>Filters (replay protection):\u003Cbr \u002F>\n– kitgenix_turnstile_replay_ttl\u003C\u002Fp>\n\u003Cp>Filters (whitelist \u002F proxy trust):\u003Cbr \u002F>\n– kitgenix_turnstile_is_whitelisted( $is_whitelisted, $details )\u003Cbr \u002F>\n– kitgenix_turnstile_trust_headers\u003Cbr \u002F>\n– kitgenix_turnstile_trusted_proxies\u003C\u002Fp>\n\u003Cp>Internal identifiers (options \u002F transients \u002F cookies \u002F meta):\u003Cbr \u002F>\n– Option: kitgenix_captcha_for_cloudflare_turnstile_settings\u003Cbr \u002F>\n– Settings group (Settings API): kitgenix_captcha_for_cloudflare_turnstile_settings_group\u003Cbr \u002F>\n– Option: kitgenix_captcha_for_cloudflare_turnstile_metrics\u003Cbr \u002F>\n– Option: kitgenix_turnstile_last_verify\u003Cbr \u002F>\n– Transient: kitgenix_captcha_for_cloudflare_turnstile_do_activation_redirect\u003Cbr \u002F>\n– Transient: kitgenix_turnstile_duplicate_scripts\u003Cbr \u002F>\n– Transient prefix (replay protection): kitgenix_captcha_for_cloudflare_turnstile_ts_\u003Cbr \u002F>\n– Cookie (replay notice): kitgenix_captcha_for_cloudflare_turnstile_ts_replay\u003Cbr \u002F>\n– WooCommerce order meta (Blocks\u002FStore API verification): _kitgenix_turnstile_verified\u003C\u002Fp>\n\u003Cp>Internal nonces \u002F actions:\u003Cbr \u002F>\n– Shortcode\u002Fform nonce field name: kitgenix_captcha_for_cloudflare_turnstile_nonce\u003Cbr \u002F>\n– Shortcode\u002Fform nonce action: kitgenix_captcha_for_cloudflare_turnstile_action\u003Cbr \u002F>\n– Settings save nonce field name: kitgenix_captcha_for_cloudflare_turnstile_settings_nonce\u003Cbr \u002F>\n– Settings save nonce action: kitgenix_captcha_for_cloudflare_turnstile_settings_save\u003Cbr \u002F>\n– Admin AJAX action (reveal saved secret): kitgenix_turnstile_get_secret (WordPress hook: wp_ajax_kitgenix_turnstile_get_secret)\u003Cbr \u002F>\n– Admin AJAX nonce action (reveal saved secret): kitgenix_turnstile_reveal_secret\u003Cbr \u002F>\n– Duplicate-loader notice dismiss query arg: kitgenix_captcha_for_cloudflare_turnstile_ts_dismiss_dupe\u003Cbr \u002F>\n– Duplicate-loader notice dismiss nonce action: kitgenix_captcha_for_cloudflare_turnstile_ts_dismiss\u003C\u002Fp>\n\u003Cp>Actions (developer logging):\u003Cbr \u002F>\n– kitgenix_turnstile_dev_log\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin uses \u003Cstrong>Cloudflare Turnstile\u003C\u002Fstrong> to verify requests and prevent spam and abuse.\u003C\u002Fp>\n\u003Cp>The plugin may:\u003Cbr \u002F>\n– Load the Turnstile script:\u003Cbr \u002F>\n https:\u002F\u002Fchallenges.cloudflare.com\u002Fturnstile\u002Fv0\u002Fapi.js\u003Cbr \u002F>\n– Submit verification requests server-side to:\u003Cbr \u002F>\n https:\u002F\u002Fchallenges.cloudflare.com\u002Fturnstile\u002Fv0\u002Fsiteverify\u003C\u002Fp>\n\u003Cp>When verification is enabled, the plugin sends to Cloudflare:\u003Cbr \u002F>\n– Your Turnstile secret key\u003Cbr \u002F>\n– The Turnstile response token\u003Cbr \u002F>\n– The visitor IP address (as the optional \u003Ccode>remoteip\u003C\u002Fcode> parameter, when enabled)\u003C\u002Fp>\n\u003Cp>The plugin does not send the visitor’s browser user agent to Cloudflare as part of the verification payload (the HTTP request itself is made server-side by WordPress).\u003C\u002Fp>\n\u003Cp>If proxy trust is enabled, the plugin may read forwarding headers (e.g. \u003Ccode>CF-Connecting-IP\u003C\u002Fcode>, \u003Ccode>X-Forwarded-For\u003C\u002Fcode>) to determine the client IP, but only when requests originate from configured trusted proxies.\u003C\u002Fp>\n\u003Cp>The plugin does not add tracking cookies itself and does not sell or share personal data.\u003C\u002Fp>\n\u003Cp>Cloudflare Turnstile Terms: https:\u002F\u002Fdevelopers.cloudflare.com\u002Fturnstile\u002F\u003Cbr \u002F>\nCloudflare Privacy Policy: https:\u002F\u002Fwww.cloudflare.com\u002Fprivacypolicy\u002F\u003C\u002Fp>\n\u003Cp>This plugin also includes a shared “Kitgenix hub” component in wp-admin which may fetch publicly available plugin metadata from WordPress.org using the WordPress core \u003Ccode>plugins_api()\u003C\u002Fcode> function (WordPress.org Plugins API).\u003C\u002Fp>\n\u003Cul>\n\u003Cli>When it runs: only in wp-admin (Kitgenix plugin admin pages)\u003C\u002Fli>\n\u003Cli>Data sent: plugin slug(s) (no personal data)\u003C\u002Fli>\n\u003Cli>Data received: publicly available plugin information (e.g. active installs, ratings)\u003C\u002Fli>\n\u003Cli>Caching: responses are cached locally using transients for ~1 day:\n\u003Cul>\n\u003Cli>\u003Ccode>kitgenix_hub_wporg_active_installs_v1\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>kitgenix_hub_wporg_ratings_v1\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Trademark Notice\u003C\u002Fh3>\n\u003Cp>“Cloudflare” and the Cloudflare logo are trademarks of Cloudflare, Inc. This plugin is not affiliated with or endorsed by Cloudflare, Inc.\u003C\u002Fp>\n\u003Ch3>Support Development\u003C\u002Fh3>\n\u003Cp>If this plugin helps keep spam away without slowing your site down, you can support ongoing development here:\u003Cbr \u002F>\nhttps:\u002F\u002Fbuymeacoffee.com\u002Fkitgenix\u003C\u002Fp>\n\u003Ch3>Credits\u003C\u002Fh3>\n\u003Cp>Built with ❤︎ by @kitgenix – https:\u002F\u002Fkitgenix.com\u003C\u002Fp>\n","Add Cloudflare Turnstile to WordPress, WooCommerce, Elementor, and popular form plugins. Privacy-first spam protection with server-side verification.",300,2095,100,5,"2026-02-19T22:09:00.000Z","6.9.4","6.0","8.1",[20,21,22,23,24],"anti-spam","captcha","cloudflare","turnstile","woocommerce","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fkitgenix-captcha-for-cloudflare-turnstile\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fkitgenix-captcha-for-cloudflare-turnstile.1.0.17.zip",0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":33,"avg_security_score":13,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"kitgenix",310,30,94,"2026-04-04T06:53:45.288Z",[38,58,75,93,107],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":56,"download_link":57,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"wppool-turnstile-captcha-spam-filter","Easy Spam Filter – Privacy-Friendly CAPTCHA Alternative with Turnstile for Contact Form 7, WPForms, BuddyPress, Elementor","2.3.11","WPPOOL","https:\u002F\u002Fprofiles.wordpress.org\u002Fwppool\u002F","\u003Cp>Cloudflare Turnstile for WordPress, WooCommerce, Contact Form 7, BuddyPress, WPForms, and more. Secure your website with a privacy-friendly reCAPTCHA alternative.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>“Studies show that 15% of users will abandon a web-based service when they face a traditional CAPTCHA test.”\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>HOW TO ADD CLOUDFLARE TURNSTILE IN WORDPRESS\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002F2jU2LhkiQQU?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>PROTECTS AGAINST SPAM FOR:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>WordPress Login form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Signup form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Reset Password form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Comment form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce forms\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Contact Form 7 forms\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WPForms contact forms\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>BuddyPress forms\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Elementor forms\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Say to no user experience nightmare, known as CAPTCHA. It hinders your website experience significantly as it slows down user actions at every step of the website journey. Welcome to Turnstile, the latest alternative to invisible CAPTCHA and honeypot. This anti-spam plugin allows you to easily integrate Turnstile on your website within a few seconds without any coding.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwppool-turnstile-captcha-spam-filter\u002F\" rel=\"ugc\">👩🏼‍💻 Get support\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WHAT IS CLOUDFLARE TURNSTILE, AND HOW TO ACTIVATE IT ON YOUR WEBSITE?\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Turnstile is the latest privacy-focused invisible CAPTCHA technology developed by Cloudflare to create a modern CAPTCHA alternative and reCAPTCHA alternative.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Turnstile helps you identify real website visitors without needing additional actions.\u003C\u002Fstrong> Instead, Turnstile automatically runs a series of small non-interactive JavaScript challenges based on telemetry and client behavior displayed during a session. That means the possibility of your users facing CAPTCHA will reduce significantly. \u003Ca href=\"https:\u002F\u002Fwww.cloudflare.com\u002Fen-gb\u002Fproducts\u002Fturnstile\u002F\" rel=\"nofollow ugc\">Learn more about Turnstile\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Getting started with Turnstile on WordPress is super easy.\u003C\u002Fstrong> All you have to do is install and activate our plugin. Then, generate your site and secret keys from Cloudflare (a free and easy process) and input them through the provided field. That’s it. The plugin does everything else and ready to protect your forms from spam. You will no longer have to get frustrated with the poor efficacy of reCAPTCHA ever again!\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fwppool-turnstile-captcha-spam-filter\u002F\" rel=\"ugc\">👩🏼‍💻 Get support\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>EASY SPAM FILTER FEATURES\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\u003Cstrong>Automatic deployment:\u003C\u002Fstrong> Once you setup Easy Spam Filter with your site key and secret key, the plugin does the rest. It will automatically deploy the required HTML snippet in your website for you.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress spam protection:\u003C\u002Fstrong> Spam Filter with Turnstile safeguards your website against spam comments or brute force attacks. It has support for every kind of WordPress form, including\n\u003Cul>\n\u003Cli>Signup\u002Fregistration form spam protection\u003C\u002Fli>\n\u003Cli>Login form spam protection\u003C\u002Fli>\n\u003Cli>Reset password form spam protection\u003C\u002Fli>\n\u003Cli>Comment spam protection\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Disable\u002Fenable WordPress login spam protection:\u003C\u002Fstrong> You can disable Turnstile at any time from the WordPress login form from the plugin setting.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>SEO boost:\u003C\u002Fstrong> Spambots often include low-quality or malicious outbound links, risking your website’s ranking. Turnstile prevents these bots from spamming and ensures you continue receiving a good ranking.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mobile-friendly Anti Spam:\u003C\u002Fstrong> Our Turnstile integration is fully optimized for mobile devices and will not break under any circumstances.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce spam protection:\u003C\u002Fstrong> Protect your WooCommerce store against malicious spam attacks. This reCAPTCHA alternative for WooCommerce provides protection against every kind WooCommerce form.\n\u003Cul>\n\u003Cli>Signup\u002Fregistration form spam protection\u003C\u002Fli>\n\u003Cli>Login form – my account spam protection\u003C\u002Fli>\n\u003Cli>Lost\u002FReset password form spam protection\u003C\u002Fli>\n\u003Cli>Checkout billing form spam protection\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Contact Form 7 spam protection:\u003C\u002Fstrong> Experience flawless Turnstile integration for Contact Form 7 forms. Protect your CF7 forms from spam comments. After configuration, add Turnstile to any Contact Form 7 form.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>BuddyPress login spam protection:\u003C\u002Fstrong> Keep your BuddyPress groups safe with secured spam protection by Cloudflare Turnstile antispam filter.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WPForms spam protection:\u003C\u002Fstrong> Add Cloudflare Turnstile in Contact Form by WPForms and keep your everyday contact forms safe from spam submissions. Activate and enjoy\n\u003Cul>\n\u003Cli>Contact forms spam protection\u003C\u002Fli>\n\u003Cli>Payment forms spam protection\u003C\u002Fli>\n\u003Cli>Survey forms spam protection\u003C\u002Fli>\n\u003Cli>Newsletter forms spam protection\u003C\u002Fli>\n\u003Cli>Registration forms spam protection\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Elementor forms spam protection:\u003C\u002Fstrong> Add Turnstile to Elementor forms. If you are using Elementor Pro, you can now protect your\n\u003Cul>\n\u003Cli>Elementor contact us forms\u003C\u002Fli>\n\u003Cli>Elementor multi-step forms\u003C\u002Fli>\n\u003Cli>Elementor login form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Turnstile widget theme:\u003C\u002Fstrong> Change the outlook of the Turnstile widget according to your wish (Dark or Light).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Submit button restriction:\u003C\u002Fstrong> Control whether users need to pass the Cloudflare Turnstile security check to submit the button.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom message:\u003C\u002Fstrong> Customize the Turnstile widget message and replace the default one (“Please verify you are human”).\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Privacy Policy\u003C\u002Fh3>\n\u003Cp>Easy Spam Filter uses \u003Ca href=\"https:\u002F\u002Fappsero.com\" rel=\"nofollow ugc\">Appsero\u003C\u002Fa> SDK to collect some telemetry data upon user’s confirmation. This helps us to troubleshoot problems faster & make product improvements.\u003C\u002Fp>\n\u003Cp>Appsero SDK \u003Cstrong>does not gather any data by default.\u003C\u002Fstrong> The SDK only starts gathering basic telemetry data \u003Cstrong>when a user allows it via the admin notice\u003C\u002Fstrong>. We collect the data to ensure a great user experience for all our users.\u003C\u002Fp>\n\u003Cp>Integrating Appsero SDK \u003Cstrong>DOES NOT IMMEDIATELY\u003C\u002Fstrong> start gathering data, \u003Cstrong>without confirmation from users in any case.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Learn more about how \u003Ca href=\"https:\u002F\u002Fappsero.com\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">Appsero collects and uses this data\u003C\u002Fa>.\u003C\u002Fp>\n","Add Cloudflare Turnstile to WordPress, Contact Form 7, WooCommerce, WPForms, BuddyPress & Elementor. A CAPTCHA, reCAPTCHA alternative for WordPress.",1000,18164,80,7,"2025-09-23T06:51:00.000Z","6.8.5","5.4","5.6",[20,21,22,55,23],"recaptcha","https:\u002F\u002Fwppool.dev\u002Fspam-filter-with-turnstile-captcha","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwppool-turnstile-captcha-spam-filter.2.3.11.zip",{"slug":59,"name":60,"version":61,"author":62,"author_profile":63,"description":64,"short_description":65,"active_installs":66,"downloaded":67,"rating":27,"num_ratings":27,"last_updated":68,"tested_up_to":51,"requires_at_least":69,"requires_php":70,"tags":71,"homepage":73,"download_link":74,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"bwg-cf-turnstile","BWG CF Turnstile","1.0.1","timh","https:\u002F\u002Fprofiles.wordpress.org\u002Fbwgtim\u002F","\u003Cp>BWG CF Turnstile integrates Cloudflare’s Turnstile service with Gravity Forms to provide an effective and user-friendly way to block spam and bot submissions. Turnstile is Cloudflare’s privacy-focused alternative to CAPTCHA that offers better user experience while still providing strong protection.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Automatic Integration\u003C\u002Fstrong>: Adds Turnstile protection to all your Gravity Forms or just the ones you select\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Manual Mode\u003C\u002Fstrong>: For custom placement of the Turnstile widget within your forms\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Server-Side Validation\u003C\u002Fstrong>: Securely validates submissions with Cloudflare’s API\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Theme Compatibility\u003C\u002Fstrong>: Works with all Gravity Forms themes, including Orbital\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Easy Setup\u003C\u002Fstrong>: Simple configuration with minimal settings\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Requirements\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WordPress 5.0 or higher\u003C\u002Fli>\n\u003Cli>Gravity Forms 2.4 or higher\u003C\u002Fli>\n\u003Cli>A Cloudflare account to obtain Turnstile site and secret keys\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Privacy Considerations\u003C\u002Fh3>\n\u003Cp>Cloudflare Turnstile is designed with privacy in mind. Unlike traditional CAPTCHA services, Turnstile is designed to respect user privacy while still providing effective protection. For more information about Turnstile’s privacy practices, please refer to \u003Ca href=\"https:\u002F\u002Fdevelopers.cloudflare.com\u002Fturnstile\u002Fget-started\u002Fclient-side-rendering\u002F\" rel=\"nofollow ugc\">Cloudflare’s documentation\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin integrates with Cloudflare Turnstile, an external service provided by Cloudflare. The plugin communicates with Cloudflare’s services for form protection functionality.\u003C\u002Fp>\n\u003Ch3>What is Cloudflare Turnstile?\u003C\u002Fh3>\n\u003Cp>Cloudflare Turnstile is a privacy-preserving alternative to CAPTCHAs that helps protect forms from bots and automated attacks. It challenges visitors in a way that doesn’t disrupt the user experience.\u003C\u002Fp>\n\u003Ch3>When does this plugin connect to Cloudflare?\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>JavaScript Widget Loading\u003C\u002Fstrong>: When a page containing a protected Gravity Form is loaded, the plugin loads the Turnstile JavaScript widget from \u003Ccode>https:\u002F\u002Fchallenges.cloudflare.com\u002Fturnstile\u002Fv0\u002Fapi.js\u003C\u002Fcode>. This happens on every page load where a protected form is displayed.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Token Verification\u003C\u002Fstrong>: When a form is submitted, the plugin sends a verification request to \u003Ccode>https:\u002F\u002Fchallenges.cloudflare.com\u002Fturnstile\u002Fv0\u002Fsiteverify\u003C\u002Fcode> to validate the Turnstile token.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>What data is sent to Cloudflare?\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\n\u003Cp>\u003Cstrong>During Widget Loading\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Your site key (public identifier)\u003C\u002Fli>\n\u003Cli>Standard browser information (user agent, IP address)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>During Token Verification\u003C\u002Fstrong>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The Turnstile response token\u003C\u002Fli>\n\u003Cli>Your secret key (for authentication)\u003C\u002Fli>\n\u003Cli>The user’s IP address (optional, for additional validation)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Legal and Privacy Information\u003C\u002Fh3>\n\u003Cp>By using this plugin, you agree to Cloudflare’s terms and privacy policies:\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwww.cloudflare.com\u002Fterms\u002F\" rel=\"nofollow ugc\">Cloudflare Terms of Service\u003C\u002Fa>\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fwww.cloudflare.com\u002Fprivacypolicy\u002F\" rel=\"nofollow ugc\">Cloudflare Privacy Policy\u003C\u002Fa>\u003Cbr \u002F>\n– \u003Ca href=\"https:\u002F\u002Fdevelopers.cloudflare.com\u002Fturnstile\u002F\" rel=\"nofollow ugc\">Cloudflare Turnstile Documentation\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>It is your responsibility to ensure that your use of this plugin complies with all applicable laws and regulations, including data protection laws in your jurisdiction. We recommend reviewing Cloudflare’s privacy policy and terms of service, and updating your own privacy policy to inform users about the use of Cloudflare Turnstile on your website.\u003C\u002Fp>\n","Add Cloudflare Turnstile protection to your Gravity Forms to prevent spam and bot submissions.",20,279,"2025-08-03T01:37:00.000Z","5.0","7.0",[20,21,22,72,23],"form-security","https:\u002F\u002Fbostonwebgroup.com\u002Fbwg-cf-turnstile","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbwg-cf-turnstile.1.0.1.zip",{"slug":76,"name":77,"version":78,"author":79,"author_profile":80,"description":81,"short_description":82,"active_installs":27,"downloaded":83,"rating":27,"num_ratings":27,"last_updated":84,"tested_up_to":16,"requires_at_least":85,"requires_php":86,"tags":87,"homepage":86,"download_link":92,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"cubemage-login-guard","CubeMage Login Guard","1.0.0","CubeMage","https:\u002F\u002Fprofiles.wordpress.org\u002Fcubemage\u002F","\u003Cp>\u003Cstrong>Login Guard by CubeMage\u003C\u002Fstrong> provides a security solution to protect your WordPress login, registration, and comment forms against spam and brute-force attacks.\u003C\u002Fp>\n\u003Cp>Instead of relying solely on password verification, this plugin integrates Cloudflare Turnstile to validate visitors before WordPress processes the authentication request. This approach helps reduce server load caused by automated bot attempts.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Key Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Cloudflare Turnstile Integration:\u003C\u002Fstrong> Uses a privacy-focused, GDPR-compliant alternative to CAPTCHA for bot verification.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Pre-Authentication Check:\u003C\u002Fstrong> Validates the Turnstile token before the database query occurs, saving server resources.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Limit Login Attempts:\u003C\u002Fstrong> Automatically blocks IP addresses after 5 consecutive failed login attempts within 15 minutes to prevent brute-force attacks.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>XML-RPC Protection:\u003C\u002Fstrong> Disables XML-RPC functionality to close a common attack vector often used for DDoS attacks.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Form Support:\u003C\u002Fstrong> Adds protection to the Login form, Registration form, Lost Password form, and Comment section.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Performance:\u003C\u002Fstrong> Uses native WordPress Transients for tracking failed attempts, avoiding the creation of heavy custom database tables.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Configuration:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The plugin includes a setup interface to easily input your Cloudflare Site Key and Secret Key.\u003C\u002Fp>\n","Integrates Cloudflare Turnstile, Limits Login Attempts, and Disables XML-RPC to protect WordPress forms.",123,"2025-12-13T14:03:00.000Z","5.8","",[20,88,89,90,91],"cloudflare-turnstile","limit-login-attempts","recaptcha-alternative","security","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcubemage-login-guard.1.0.0.zip",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":27,"downloaded":101,"rating":27,"num_ratings":27,"last_updated":102,"tested_up_to":16,"requires_at_least":85,"requires_php":103,"tags":104,"homepage":105,"download_link":106,"security_score":13,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"smart-captcha-alternative-with-cloudflare-turnstile","Smart CAPTCHA Alternative with Cloudflare Turnstile","1.1.2","Mayank Majeji","https:\u002F\u002Fprofiles.wordpress.org\u002Fmayankmajeji\u002F","\u003Cp>\u003Cstrong>Smart CAPTCHA Alternative with Cloudflare Turnstile\u003C\u002Fstrong> helps you block spam and bots without hurting user experience.\u003C\u002Fp>\n\u003Cp>Instead of frustrating image puzzles or invasive tracking, this plugin integrates \u003Cstrong>Cloudflare Turnstile\u003C\u002Fstrong>, a modern CAPTCHA alternative that silently verifies real users while respecting privacy.\u003C\u002Fp>\n\u003Cp>The plugin is lightweight, loads only when required, and performs server-side verification against Cloudflare’s API.\u003C\u002Fp>\n\u003Ch3>Supported Forms\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>WordPress:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Login Form\u003Cbr \u002F>\n* Registration Form\u003Cbr \u002F>\n* Password Reset Form\u003Cbr \u002F>\n* Comments Form\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WooCommerce:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Checkout\u003Cbr \u002F>\n* Pay For Order\u003Cbr \u002F>\n* Login Form\u003Cbr \u002F>\n* Registration Form\u003Cbr \u002F>\n* Password Reset Form\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Form Plugins:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Contact Form 7\u003Cbr \u002F>\n* WPForms\u003Cbr \u002F>\n* Fluent Forms\u003Cbr \u002F>\n* Formidable Forms\u003Cbr \u002F>\n* Ninja Forms\u003Cbr \u002F>\n* Forminator Forms\u003Cbr \u002F>\n* Everest Forms\u003Cbr \u002F>\n* SureForms\u003Cbr \u002F>\n* Kadence Forms\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Other Integrations:\u003C\u002Fstrong>\u003Cbr \u002F>\n* MailPoet Forms\u003Cbr \u002F>\n* BuddyPress Registration Form\u003Cbr \u002F>\n* bbPress Create Topic & Reply Forms\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Why Choose This Plugin:\u003C\u002Fstrong>\u003Cbr \u002F>\n* Zero user friction — no puzzles or image challenges\u003Cbr \u002F>\n* Privacy-focused — respects user privacy while providing security\u003Cbr \u002F>\n* Performance optimized — scripts load only when forms are present\u003Cbr \u002F>\n* Currently free — no premium version, no hidden costs, no tracking\u003Cbr \u002F>\n* Server-side validation — secure verification through Cloudflare’s API\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cp>The plugin includes several features and options:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Easy Setup\u003C\u002Fstrong>: Simple key configuration (Site Key & Secret Key)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Per-Form Control\u003C\u002Fstrong>: Toggle Turnstile on\u002Foff for each integration individually\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce Options\u003C\u002Fstrong>: Configurable placement options for checkout forms\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customization\u003C\u002Fstrong>:\n\u003Cul>\n\u003Cli>Theme selection (Auto\u002FLight\u002FDark)\u003C\u002Fli>\n\u003Cli>Widget size controls (Normal\u002FCompact\u002FFlexible)\u003C\u002Fli>\n\u003Cli>Language settings\u003C\u002Fli>\n\u003Cli>Appearance mode (Always visible or interaction-only)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Performance\u003C\u002Fstrong>: Optional script defer for improved page load times\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Debugging\u003C\u002Fstrong>: Debug logging to help troubleshoot form submission issues\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Getting Started\u003C\u002Fh3>\n\u003Cp>Setting up Cloudflare Turnstile protection is straightforward:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Create your Turnstile keys in the Cloudflare dashboard (Site Key and Secret Key)\u003C\u002Fli>\n\u003Cli>Navigate to Dashboard \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan> Smart Cloudflare Turnstile in your WordPress admin\u003C\u002Fli>\n\u003Cli>Enter your keys and choose which forms to protect\u003C\u002Fli>\n\u003Cli>Save your settings — Turnstile will now appear on your selected forms\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>That’s it! Your forms are now protected from spam and bots.\u003C\u002Fp>\n\u003Cp>Need help? Check our documentation or visit the support forum for detailed guides.\u003C\u002Fp>\n\u003Ch3>Plugin Languages\u003C\u002Fh3>\n\u003Cp>The plugin is currently available in English. If you’d like to help translate the plugin into your language, please visit our \u003Ca href=\"https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Fsmart-captcha-alternative-with-cloudflare-turnstile\u002F\" rel=\"nofollow ugc\">translation page\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Other Information\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>For help & suggestions, please create a support topic in our \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fsmart-captcha-alternative-with-cloudflare-turnstile\u002F\" rel=\"ugc\">support forum\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Follow the developer \u003Ca href=\"https:\u002F\u002Fx.com\u002Fmayankmajeji\" rel=\"nofollow ugc\">@mayankmajeji\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fmayankmajeji\u002Fsmart-captcha-alternative-with-cloudflare-turnstile\" rel=\"nofollow ugc\">View on GitHub\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support The Plugin\u003C\u002Fh3>\n\u003Cp>Special thanks to all contributors who help support the continued development of this plugin.\u003C\u002Fp>\n\u003Cp>The plugin is currently free to use. If you find it useful and would like to support its continued development, maintenance, and support, you can make a donation. Your support is greatly appreciated and helps keep the plugin actively maintained.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fbuymeacoffee.com\u002Fmayankmajeji\" rel=\"nofollow ugc\">Make a donation\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Trademark Notice\u003C\u002Fh3>\n\u003Cp>Cloudflare, the Cloudflare logo, and Cloudflare Workers are trademarks and\u002For registered trademarks of Cloudflare, Inc. in the United States and other jurisdictions.\u003C\u002Fp>\n\u003Cp>This plugin is not affiliated with, endorsed by, or sponsored by Cloudflare, Inc. Cloudflare® and Turnstile® are trademarks of Cloudflare, Inc.\u003C\u002Fp>\n\u003Ch3>Third Party Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to Cloudflare Turnstile service to provide CAPTCHA verification.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>What data is transmitted:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Form submission tokens for verification\u003Cbr \u002F>\n– IP addresses for bot detection\u003Cbr \u002F>\n– Browser fingerprints for security analysis\u003C\u002Fp>\n\u003Cp>\u003Cstrong>When data is sent:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Only when users submit forms with Turnstile protection enabled\u003Cbr \u002F>\n– Data is sent securely via HTTPS to Cloudflare’s servers\u003C\u002Fp>\n\u003Cp>\u003Cstrong>External Services:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Cloudflare Turnstile API: https:\u002F\u002Fdevelopers.cloudflare.com\u002Fturnstile\u002F\u003Cbr \u002F>\n– Cloudflare Terms of Service: https:\u002F\u002Fwww.cloudflare.com\u002Fterms\u002F\u003Cbr \u002F>\n– Cloudflare Privacy Policy: https:\u002F\u002Fwww.cloudflare.com\u002Fprivacypolicy\u002F\u003C\u002Fp>\n","Protect WordPress forms from spam using Cloudflare Turnstile. A privacy-friendly CAPTCHA alternative.",206,"2026-01-29T08:07:00.000Z","7.4",[21,22,91,23,24],"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsmart-captcha-alternative-with-cloudflare-turnstile","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsmart-captcha-alternative-with-cloudflare-turnstile.1.1.2.zip",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":115,"downloaded":116,"rating":117,"num_ratings":118,"last_updated":119,"tested_up_to":51,"requires_at_least":120,"requires_php":103,"tags":121,"homepage":124,"download_link":125,"security_score":126,"vuln_count":127,"unpatched_count":27,"last_vuln_date":128,"fetched_at":29},"advanced-nocaptcha-recaptcha","CAPTCHA 4WP – Antispam CAPTCHA solution for WordPress","7.6.0","WPKube","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpkube\u002F","\u003Ch4>IMPORTANT NOTICE\u003C\u002Fh4>\n\u003Cp>CAPTCHA 4WP has been acquired by WPKube. \u003Ca href=\"https:\u002F\u002Fmelapress.com\u002Fcaptcha-4-wp-plugin-acquired-by-wpkube\u002F\" rel=\"nofollow ugc\">Read the announcement\u003C\u002Fa> for more information.\u003Cbr \u002F>\nWe, at Melapress, would like to take this opportunity to thank everyone who has used and supported CAPTCHA 4WP.\u003C\u002Fp>\n\u003Ch3>A free and easy-to-use CAPTCHA plugin for WordPress\u003C\u002Fh3>\n\u003Cp>Protect your WordPress forms and login pages from spam and automated attacks with \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002F\" rel=\"nofollow ugc\">CAPTCHA 4WP\u003C\u002Fa>. Choose from multiple ReCAPTCHA versions and strike the right balance between security and user experience.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Ffeatures\u002F\" rel=\"nofollow ugc\">Features\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fpricing\u002F\" rel=\"nofollow ugc\">Get the Premium!\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fgetting-started-with-captcha-4wp\u002F\" rel=\"nofollow ugc\">Getting Started\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Use the CAPTCHA 4WP plugin to add CAPTCHA checks to WordPress forms and logins. Choose from V2 (I’m not a robot), V2 Invisible, and V3 noCAPTCHA to ensure the best user experience at all times without compromosing security. Avoid false positives falling through the crack with V3 failover to ensure humans can still pass the test even if the result comes back below the passmark.\u003C\u002Fp>\n\u003Ch3>CAPTCHA 4WP key plugin features and capabilities\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Add CAPTCHA to WordPress native forms such as login pages, user registration and comments forms etc\u003C\u002Fli>\n\u003Cli>Supports multiple ReCAPTCHA versions\u003C\u002Fli>\n\u003Cli>User-friendly wizards for easy, hassle-free setup\u003C\u002Fli>\n\u003Cli>Set ReCAPTCHA V3 passmark score \u003C\u002Fli>\n\u003Cli>ReCAPTCHA failover configuration (ensure no prospect is incorrectly marked as spam)\u003C\u002Fli>\n\u003Cli>Plugin automatically detects visitors’ language and shows CAPTCHA in that language\u003C\u002Fli>\n\u003Cli>Much more\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Upgrade to CAPTCHA 4WP Premium and get even more\u003C\u002Fh3>\n\u003Cp>With the premium edition of CAPTCHA 4WP, you can choose from a wider range of CAPTCHA service providers, 1-click WooCommerce and other 3rd party plugin support, whitelisting, and much more.\u003C\u002Fp>\n\u003Ch3>Premium features list\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Everything in the free version\u003C\u002Fli>\n\u003Cli>Add CAPTCHA from hCaptcha and Cloudflare Turnstile on your websites, both free and GDPR compliant\u003C\u002Fli>\n\u003Cli>Add Geoblocking on forms and WordPress comments form (block \u002F limit form submissions or comment posting by country)\u003C\u002Fli>\n\u003Cli>Customization options for the CAPTCHA checks text, visual and position on the forms\u003C\u002Fli>\n\u003Cli>One-click integration with WooCommerce\u003C\u002Fli>\n\u003Cli>One-click integration with Contact Form 7, Gravity Forms, WPForms, BuddyPress & other plugins\u003C\u002Fli>\n\u003Cli>Much more\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Refer to the \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Ffeatures\u002F\" rel=\"nofollow ugc\">CAPTCHA 4WP plugin features and benefits page\u003C\u002Fa> to learn more about the benefits of upgrading to the Premium version of CAPTCHA 4WP.\u003C\u002Fp>\n\u003Ch3>Free and premium support\u003C\u002Fh3>\n\u003Cp>Support for CAPTCHA 4WP is free through the WordPress support forums.\u003C\u002Fp>\n\u003Cp>Premium support for paid customer support is provided via one-to-one email. Upgrade to Premium to benefit from premium support.\u003C\u002Fp>\n\u003Cp>For any other queries, feedback, or if you simply want to get in touch with us, please use our \u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fsubmit-ticket\u002F\" rel=\"nofollow ugc\">contact form\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>As featured on:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.wpbeginner.com\u002Fplugins\u002Fhow-to-add-captcha-in-wordpress-login-and-registration-form\u002F\" rel=\"nofollow ugc\">WP Beginner\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.elegantthemes.com\u002Fblog\u002Fwordpress\u002Fwordpress-captcha\" rel=\"nofollow ugc\">Elegant Themes\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.isitwp.com\u002Fbest-wordpress-captcha-plugins\u002F\" rel=\"nofollow ugc\">IsItWP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwplift.com\u002Fbest-wordpress-captcha-plugins\" rel=\"nofollow ugc\">WPLift\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ftesterwp.com\u002Fbest-free-captcha-wordpress-plugins\u002F\" rel=\"nofollow ugc\">TesterWP\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Related links and documentation:\u003C\u002Fh3>\n\u003Cp>You can find more detailed information about CAPTCHA tests and the benefits you can take advantage of, and the plugin in the links below:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fwhy-need-captcha-wordpress-website\u002F\" rel=\"nofollow ugc\">Why you need CAPTCHA on your WordPress website\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdifferent-types-captcha-checks-wordpress\u002F\" rel=\"nofollow ugc\">The different types of CAPTCHA for websites\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fcaptcha-recaptcha-nocaptcha-differences\u002F\" rel=\"nofollow ugc\">What is the difference between CAPTCHA, ReCAPTCHA, and NoCAPTCHA?\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fgetting-started-with-captcha-4wp\u002F\" rel=\"nofollow ugc\">Getting started with CAPTCHA 4WP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fhow-to-add-captcha-to-woocommerce-forms\u002F\" rel=\"nofollow ugc\">How to add CAPTCHA on WooCommerce forms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fhow-to-add-captcha-on-wpforms-forms\u002F\" rel=\"nofollow ugc\">How to add CAPTCHA on WPForms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fhow-to-add-captcha-on-gravity-forms-forms\u002F\" rel=\"nofollow ugc\">How to add CAPTCHA on Gravity Forms\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002Fdocs\u002Fhow-to-show-captcha-on-failed-logins\u002F\" rel=\"nofollow ugc\">How to show CAPTCHA on failed logins\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fcaptcha4wp.com\u002F\" rel=\"nofollow ugc\">Official Melapress website\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Installing CAPTCHA 4WP\u003C\u002Fh3>\n\u003Ch3>From within WordPress\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Navigate to “Plugins”page and click the “Add New” button\u003C\u002Fli>\n\u003Cli>Search for “CAPTCHA 4WP”\u003C\u002Fli>\n\u003Cli>Cick install and after that activate the plugin\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Manually\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Download the plugin from the WordPress plugins repository\u003C\u002Fli>\n\u003Cli>Unzip the zip file and upload the folder to the \u002Fwp-content\u002Fplugins\u002F directory\u003C\u002Fli>\n\u003Cli>Activate CAPTCHA 4WP through the “Plugins” menu in WordPress\u003C\u002Fli>\n\u003C\u002Fol>\n","Use CAPTCHA to stop spam and allow customers & users to interact with your website easily. Block fake accounts and orders. Avoid false positives.",100000,3577096,64,268,"2025-06-11T07:53:00.000Z","5.5",[122,21,88,123,55],"antispam-protection","hcaptcha","https:\u002F\u002Fcaptcha4wp.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fadvanced-nocaptcha-recaptcha.7.6.0.zip",99,1,"2022-06-29 00:00:00",{"attackSurface":130,"codeSignals":412,"taintFlows":960,"riskAssessment":981,"analyzedAt":988},{"hooks":131,"ajaxHandlers":400,"restRoutes":401,"shortcodes":402,"cronEvents":410,"entryPointCount":411,"unprotectedCount":27},[132,138,143,148,152,155,158,161,164,169,174,178,182,186,189,192,195,199,201,204,207,210,213,215,218,222,227,229,231,235,237,240,243,246,248,252,254,259,261,266,268,271,273,276,278,282,285,287,289,294,297,299,301,304,306,309,312,316,319,321,324,328,331,334,337,340,343,347,350,352,354,356,359,362,365,369,373,377,382,385,389,393,397],{"type":133,"name":134,"callback":135,"file":136,"line":137},"action","edd_purchase_form_before_submit","render_widget","includes\\integrations\\ecommerce\\class-easy-digital-downloads.php",33,{"type":133,"name":139,"callback":140,"priority":141,"file":136,"line":142},"edd_checkout_error_checks","validate_checkout",10,36,{"type":144,"name":145,"callback":146,"file":136,"line":147},"filter","edd_login_form","filter_login_form",42,{"type":133,"name":149,"callback":150,"file":136,"line":151},"edd_process_login_form","validate_generic",43,{"type":133,"name":153,"callback":135,"file":136,"line":154},"edd_register_fields_after",48,{"type":133,"name":156,"callback":150,"file":136,"line":157},"edd_process_register_form",49,{"type":133,"name":159,"callback":135,"file":136,"line":160},"edd_profile_editor_after_password_fields",57,{"type":133,"name":162,"callback":150,"file":136,"line":163},"edd_pre_update_user_profile",58,{"type":144,"name":165,"callback":166,"priority":141,"file":167,"line":168},"render_block_woocommerce\u002Fcheckout-actions-block","inject_turnstile","includes\\integrations\\ecommerce\\class-woocommerce-blocks.php",22,{"type":144,"name":170,"callback":171,"priority":172,"file":167,"line":173},"rest_authentication_errors","rest_protect_store_api",12,25,{"type":133,"name":175,"callback":176,"priority":141,"file":167,"line":177},"woocommerce_store_api_checkout_update_order_from_request","annotate_order",28,{"type":133,"name":179,"callback":135,"priority":180,"file":181,"line":137},"woocommerce_review_order_before_submit",9,"includes\\integrations\\ecommerce\\class-woocommerce.php",{"type":133,"name":183,"callback":184,"file":181,"line":185},"woocommerce_checkout_process","validate_turnstile",34,{"type":133,"name":187,"callback":184,"priority":141,"file":181,"line":188},"woocommerce_after_checkout_validation",35,{"type":133,"name":190,"callback":135,"file":181,"line":191},"woocommerce_login_form",40,{"type":144,"name":193,"callback":194,"priority":141,"file":181,"line":151},"woocommerce_process_login_errors","filter_login_errors",{"type":144,"name":196,"callback":197,"file":181,"line":198},"woocommerce_login_errors","filter_login_errors_legacy",44,{"type":133,"name":200,"callback":135,"file":181,"line":157},"woocommerce_register_form",{"type":133,"name":202,"callback":150,"priority":180,"file":181,"line":203},"woocommerce_register_post",50,{"type":133,"name":205,"callback":135,"file":181,"line":206},"woocommerce_lostpassword_form",56,{"type":133,"name":208,"callback":135,"file":181,"line":209},"woocommerce_resetpassword_form",60,{"type":133,"name":211,"callback":135,"file":181,"line":212},"woocommerce_reset_password_form",61,{"type":133,"name":214,"callback":150,"file":181,"line":117},"woocommerce_reset_password_validation",{"type":144,"name":165,"callback":216,"priority":141,"file":181,"line":217},"blocks_inject_before_submit",72,{"type":144,"name":219,"callback":220,"priority":141,"file":181,"line":221},"rest_request_before_callbacks","blocks_rest_validate",79,{"type":144,"name":223,"callback":224,"priority":180,"file":225,"line":226},"wpcf7_form_elements","process_shortcodes_in_form","includes\\integrations\\forms\\contact-form-7.php",32,{"type":144,"name":223,"callback":166,"priority":66,"file":225,"line":228},41,{"type":144,"name":230,"callback":184,"priority":141,"file":225,"line":198},"wpcf7_validate",{"type":144,"name":232,"callback":233,"priority":141,"file":234,"line":34},"fluentform_rendering_field_data","inject_turnstile_field","includes\\integrations\\forms\\fluent-forms.php",{"type":144,"name":232,"callback":236,"priority":180,"file":234,"line":142},"process_shortcodes_in_fluent_field",{"type":133,"name":238,"callback":239,"priority":14,"file":234,"line":191},"fluentform\u002Frender_item_submit_button","render_turnstile_above_submit",{"type":144,"name":241,"callback":242,"priority":141,"file":234,"line":151},"fluentform_submit_validation","validate_turnstile_filter",{"type":144,"name":244,"callback":166,"priority":141,"file":245,"line":34},"frm_submit_button_html","includes\\integrations\\forms\\formidable-forms.php",{"type":133,"name":247,"callback":184,"priority":141,"file":245,"line":137},"frm_validate_entry",{"type":144,"name":249,"callback":250,"priority":141,"file":251,"line":137},"forminator_render_form_submit_markup","inject_turnstile_markup","includes\\integrations\\forms\\forminator-forms.php",{"type":144,"name":253,"callback":184,"priority":141,"file":251,"line":142},"forminator_custom_form_submit_errors",{"type":144,"name":255,"callback":256,"priority":180,"file":257,"line":258},"gform_submit_button","inject_turnstile_before_submit","includes\\integrations\\forms\\gravity-forms.php",29,{"type":144,"name":260,"callback":184,"priority":141,"file":257,"line":226},"gform_validation",{"type":133,"name":262,"callback":263,"priority":141,"file":264,"line":265},"jet-form-builder\u002Fafter-start-form-row","maybe_render_widget_for_row","includes\\integrations\\forms\\jetformbuilder.php",39,{"type":133,"name":267,"callback":184,"priority":180,"file":264,"line":151},"jet-form-builder\u002Fform-handler\u002Fbefore-send",{"type":144,"name":269,"callback":250,"priority":141,"file":270,"line":258},"jetpack_contact_form_html","includes\\integrations\\forms\\jetpack-forms.php",{"type":144,"name":272,"callback":184,"priority":180,"file":270,"line":226},"jetpack_contact_form_is_spam",{"type":144,"name":274,"callback":166,"priority":141,"file":275,"line":34},"kadence_blocks_form_submit_button_html","includes\\integrations\\forms\\kadence-forms.php",{"type":144,"name":277,"callback":184,"priority":141,"file":275,"line":137},"kadence_blocks_form_pre_process",{"type":144,"name":279,"callback":280,"priority":180,"file":281,"line":137},"wpforms_display_fields","process_shortcodes_in_wpforms_fields","includes\\integrations\\forms\\wpforms.php",{"type":133,"name":283,"callback":135,"priority":141,"file":281,"line":284},"wpforms_display_after_fields",38,{"type":133,"name":286,"callback":135,"priority":141,"file":281,"line":265},"wpforms_display_submit_before",{"type":133,"name":288,"callback":184,"priority":180,"file":281,"line":147},"wpforms_process",{"type":133,"name":290,"callback":291,"priority":14,"file":292,"line":293},"bbp_theme_before_topic_form_submit_wrapper","render_topic_reply_widget","includes\\integrations\\forums\\bbpress.php",53,{"type":133,"name":295,"callback":291,"priority":14,"file":292,"line":296},"bbp_theme_before_reply_form_submit_wrapper",54,{"type":133,"name":298,"callback":291,"priority":14,"file":292,"line":206},"bbp_theme_before_topic_form_submit_button",{"type":133,"name":300,"callback":291,"priority":14,"file":292,"line":160},"bbp_theme_before_reply_form_submit_button",{"type":133,"name":302,"callback":291,"file":292,"line":303},"bbp_theme_after_topic_form",59,{"type":133,"name":305,"callback":291,"file":292,"line":209},"bbp_theme_after_reply_form",{"type":133,"name":307,"callback":308,"priority":14,"file":292,"line":117},"bbp_theme_before_forum_form_submit_wrapper","render_forum_widget",{"type":133,"name":310,"callback":308,"file":292,"line":311},"bbp_theme_after_forum_form",65,{"type":133,"name":313,"callback":314,"file":292,"line":315},"bbp_new_topic_pre_extras","validate_submission",68,{"type":133,"name":317,"callback":314,"file":292,"line":318},"bbp_new_reply_pre_extras",69,{"type":133,"name":320,"callback":314,"file":292,"line":217},"bbp_new_forum_pre_extras",{"type":133,"name":322,"callback":314,"file":292,"line":323},"bbp_new_forum_pre_insert",73,{"type":133,"name":325,"callback":135,"file":326,"line":327},"bp_before_registration_submit_buttons","includes\\integrations\\forums\\buddypress.php",26,{"type":133,"name":329,"callback":135,"file":326,"line":330},"bp_before_activity_post_form",31,{"type":133,"name":332,"callback":333,"priority":127,"file":326,"line":185},"bp_actions","maybe_validate_registration",{"type":133,"name":335,"callback":135,"priority":141,"file":336,"line":147},"elementor_pro\u002Fforms\u002Frender_form_after_fields","includes\\integrations\\page-builder\\class-elementor.php",{"type":133,"name":338,"callback":184,"priority":141,"file":336,"line":339},"elementor_pro\u002Fforms\u002Fvalidation",45,{"type":133,"name":341,"callback":342,"file":336,"line":154},"wp_enqueue_scripts","enqueue_scripts",{"type":133,"name":344,"callback":345,"priority":66,"file":336,"line":346},"wp_footer","fallback_inject_widget",51,{"type":133,"name":348,"callback":135,"file":349,"line":142},"login_form","includes\\integrations\\wordpress\\class-wp-core.php",{"type":133,"name":351,"callback":135,"file":349,"line":265},"register_form",{"type":133,"name":353,"callback":135,"file":349,"line":147},"lostpassword_form",{"type":133,"name":355,"callback":135,"file":349,"line":198},"resetpass_form",{"type":144,"name":357,"callback":358,"priority":141,"file":349,"line":346},"comment_form_submit_field","inject_widget_before_submit",{"type":144,"name":360,"callback":361,"priority":34,"file":349,"line":206},"authenticate","validate_login",{"type":144,"name":363,"callback":364,"priority":34,"file":349,"line":303},"registration_errors","validate_registration",{"type":133,"name":366,"callback":367,"priority":141,"file":349,"line":368},"lostpassword_post","validate_lostpassword",62,{"type":133,"name":370,"callback":371,"priority":141,"file":349,"line":372},"validate_password_reset","validate_reset",63,{"type":144,"name":374,"callback":375,"file":349,"line":376},"preprocess_comment","validate_comment",66,{"type":133,"name":378,"callback":379,"file":380,"line":381},"admin_head","kitgenix_admin_menu_icon_css","kitgenix-captcha-for-cloudflare-turnstile.php",75,{"type":133,"name":383,"callback":384,"priority":14,"file":380,"line":35},"admin_menu","kitgenix_ensure_admin_menu",{"type":133,"name":386,"callback":387,"file":380,"line":388},"admin_enqueue_scripts","kitgenix_turnstile_enqueue_hub_assets",465,{"type":133,"name":390,"callback":391,"file":380,"line":392},"plugins_loaded","kitgenix_captcha_for_cloudflare_turnstile_init_plugin",512,{"type":133,"name":394,"callback":395,"file":380,"line":396},"admin_notices","closure",521,{"type":133,"name":398,"callback":395,"file":380,"line":399},"admin_init",558,[],[],[403,406,407,409],{"tag":404,"callback":405,"file":225,"line":381},"kitgenix_turnstile","render_shortcode",{"tag":404,"callback":405,"file":251,"line":221},{"tag":404,"callback":405,"file":251,"line":408},152,{"tag":404,"callback":405,"file":270,"line":221},[],4,{"dangerousFunctions":413,"sqlUsage":414,"outputEscaping":417,"fileOperations":27,"externalRequests":127,"nonceChecks":957,"capabilityChecks":958,"bundledLibraries":959},[],{"prepared":415,"raw":27,"locations":416},2,[],{"escaped":418,"rawEcho":419,"locations":420},174,278,[421,425,427,429,430,432,433,435,436,438,439,441,442,444,445,447,449,451,453,455,457,459,461,463,464,466,468,470,471,473,474,476,477,479,481,483,485,487,489,491,493,495,497,499,501,503,505,507,509,511,513,515,517,519,521,522,524,526,528,530,532,534,536,538,540,542,544,546,548,550,552,554,556,558,560,562,564,566,568,570,572,574,576,578,580,582,584,586,588,590,592,594,596,598,600,602,604,606,608,610,612,614,616,618,620,622,624,626,628,630,632,634,636,638,640,642,644,646,648,650,652,654,656,658,660,662,664,666,668,670,672,674,676,678,680,682,684,686,688,690,692,694,696,698,700,702,704,706,708,710,712,714,716,718,720,722,724,726,728,730,732,734,736,738,740,742,744,746,748,750,752,754,756,758,760,762,763,765,767,769,771,773,775,777,779,781,783,785,787,789,791,793,795,797,799,801,803,805,807,809,811,813,815,817,819,821,823,825,827,829,831,833,835,837,839,841,843,845,847,849,851,853,855,857,859,861,863,865,867,869,871,873,875,877,879,881,883,885,887,889,891,893,895,897,899,900,902,903,905,906,908,910,912,914,916,918,920,922,923,925,926,928,930,933,935,937,939,941,942,944,945,947,949,950,951,953,954,956],{"file":422,"line":423,"context":424},"includes\\admin\\class-settings-ui.php",283,"raw output",{"file":422,"line":426,"context":424},289,{"file":422,"line":428,"context":424},297,{"file":422,"line":428,"context":424},{"file":422,"line":431,"context":424},299,{"file":422,"line":11,"context":424},{"file":422,"line":434,"context":424},303,{"file":422,"line":434,"context":424},{"file":422,"line":437,"context":424},304,{"file":422,"line":437,"context":424},{"file":422,"line":440,"context":424},305,{"file":422,"line":440,"context":424},{"file":422,"line":443,"context":424},306,{"file":422,"line":443,"context":424},{"file":422,"line":446,"context":424},314,{"file":422,"line":448,"context":424},315,{"file":422,"line":450,"context":424},316,{"file":422,"line":452,"context":424},317,{"file":422,"line":454,"context":424},318,{"file":422,"line":456,"context":424},319,{"file":422,"line":458,"context":424},320,{"file":422,"line":460,"context":424},392,{"file":422,"line":462,"context":424},398,{"file":422,"line":462,"context":424},{"file":422,"line":465,"context":424},399,{"file":422,"line":467,"context":424},400,{"file":422,"line":469,"context":424},401,{"file":422,"line":469,"context":424},{"file":422,"line":472,"context":424},402,{"file":422,"line":472,"context":424},{"file":422,"line":475,"context":424},403,{"file":422,"line":475,"context":424},{"file":422,"line":478,"context":424},414,{"file":422,"line":480,"context":424},417,{"file":422,"line":482,"context":424},418,{"file":422,"line":484,"context":424},423,{"file":422,"line":486,"context":424},424,{"file":422,"line":488,"context":424},427,{"file":422,"line":490,"context":424},435,{"file":422,"line":492,"context":424},441,{"file":422,"line":494,"context":424},442,{"file":422,"line":496,"context":424},443,{"file":422,"line":498,"context":424},444,{"file":422,"line":500,"context":424},446,{"file":422,"line":502,"context":424},447,{"file":422,"line":504,"context":424},452,{"file":422,"line":506,"context":424},456,{"file":422,"line":508,"context":424},464,{"file":422,"line":510,"context":424},466,{"file":422,"line":512,"context":424},467,{"file":422,"line":514,"context":424},469,{"file":422,"line":516,"context":424},497,{"file":422,"line":518,"context":424},501,{"file":422,"line":520,"context":424},504,{"file":422,"line":520,"context":424},{"file":422,"line":523,"context":424},505,{"file":422,"line":525,"context":424},515,{"file":422,"line":527,"context":424},519,{"file":422,"line":529,"context":424},522,{"file":422,"line":531,"context":424},523,{"file":422,"line":533,"context":424},524,{"file":422,"line":535,"context":424},526,{"file":422,"line":537,"context":424},530,{"file":422,"line":539,"context":424},533,{"file":422,"line":541,"context":424},534,{"file":422,"line":543,"context":424},535,{"file":422,"line":545,"context":424},536,{"file":422,"line":547,"context":424},537,{"file":422,"line":549,"context":424},539,{"file":422,"line":551,"context":424},543,{"file":422,"line":553,"context":424},546,{"file":422,"line":555,"context":424},547,{"file":422,"line":557,"context":424},549,{"file":422,"line":559,"context":424},553,{"file":422,"line":561,"context":424},555,{"file":422,"line":563,"context":424},556,{"file":422,"line":565,"context":424},560,{"file":422,"line":567,"context":424},564,{"file":422,"line":569,"context":424},569,{"file":422,"line":571,"context":424},571,{"file":422,"line":573,"context":424},572,{"file":422,"line":575,"context":424},576,{"file":422,"line":577,"context":424},578,{"file":422,"line":579,"context":424},579,{"file":422,"line":581,"context":424},588,{"file":422,"line":583,"context":424},592,{"file":422,"line":585,"context":424},596,{"file":422,"line":587,"context":424},599,{"file":422,"line":589,"context":424},609,{"file":422,"line":591,"context":424},613,{"file":422,"line":593,"context":424},619,{"file":422,"line":595,"context":424},630,{"file":422,"line":597,"context":424},634,{"file":422,"line":599,"context":424},638,{"file":422,"line":601,"context":424},643,{"file":422,"line":603,"context":424},645,{"file":422,"line":605,"context":424},646,{"file":422,"line":607,"context":424},650,{"file":422,"line":609,"context":424},652,{"file":422,"line":611,"context":424},653,{"file":422,"line":613,"context":424},662,{"file":422,"line":615,"context":424},666,{"file":422,"line":617,"context":424},671,{"file":422,"line":619,"context":424},677,{"file":422,"line":621,"context":424},679,{"file":422,"line":623,"context":424},681,{"file":422,"line":625,"context":424},691,{"file":422,"line":627,"context":424},693,{"file":422,"line":629,"context":424},694,{"file":422,"line":631,"context":424},698,{"file":422,"line":633,"context":424},702,{"file":422,"line":635,"context":424},709,{"file":422,"line":637,"context":424},711,{"file":422,"line":639,"context":424},712,{"file":422,"line":641,"context":424},714,{"file":422,"line":643,"context":424},719,{"file":422,"line":645,"context":424},720,{"file":422,"line":647,"context":424},723,{"file":422,"line":649,"context":424},724,{"file":422,"line":651,"context":424},727,{"file":422,"line":653,"context":424},728,{"file":422,"line":655,"context":424},731,{"file":422,"line":657,"context":424},732,{"file":422,"line":659,"context":424},744,{"file":422,"line":661,"context":424},746,{"file":422,"line":663,"context":424},749,{"file":422,"line":665,"context":424},767,{"file":422,"line":667,"context":424},769,{"file":422,"line":669,"context":424},772,{"file":422,"line":671,"context":424},786,{"file":422,"line":673,"context":424},789,{"file":422,"line":675,"context":424},793,{"file":422,"line":677,"context":424},798,{"file":422,"line":679,"context":424},799,{"file":422,"line":681,"context":424},802,{"file":422,"line":683,"context":424},805,{"file":422,"line":685,"context":424},809,{"file":422,"line":687,"context":424},810,{"file":422,"line":689,"context":424},813,{"file":422,"line":691,"context":424},814,{"file":422,"line":693,"context":424},817,{"file":422,"line":695,"context":424},818,{"file":422,"line":697,"context":424},823,{"file":422,"line":699,"context":424},825,{"file":422,"line":701,"context":424},826,{"file":422,"line":703,"context":424},828,{"file":422,"line":705,"context":424},840,{"file":422,"line":707,"context":424},843,{"file":422,"line":709,"context":424},847,{"file":422,"line":711,"context":424},852,{"file":422,"line":713,"context":424},853,{"file":422,"line":715,"context":424},856,{"file":422,"line":717,"context":424},860,{"file":422,"line":719,"context":424},862,{"file":422,"line":721,"context":424},867,{"file":422,"line":723,"context":424},868,{"file":422,"line":725,"context":424},871,{"file":422,"line":727,"context":424},872,{"file":422,"line":729,"context":424},875,{"file":422,"line":731,"context":424},876,{"file":422,"line":733,"context":424},881,{"file":422,"line":735,"context":424},883,{"file":422,"line":737,"context":424},884,{"file":422,"line":739,"context":424},887,{"file":422,"line":741,"context":424},888,{"file":422,"line":743,"context":424},890,{"file":422,"line":745,"context":424},892,{"file":422,"line":747,"context":424},893,{"file":422,"line":749,"context":424},895,{"file":422,"line":751,"context":424},904,{"file":422,"line":753,"context":424},906,{"file":422,"line":755,"context":424},909,{"file":422,"line":757,"context":424},915,{"file":422,"line":759,"context":424},916,{"file":422,"line":761,"context":424},918,{"file":422,"line":761,"context":424},{"file":422,"line":764,"context":424},927,{"file":422,"line":766,"context":424},929,{"file":422,"line":768,"context":424},932,{"file":422,"line":770,"context":424},937,{"file":422,"line":772,"context":424},938,{"file":422,"line":774,"context":424},940,{"file":422,"line":776,"context":424},941,{"file":422,"line":778,"context":424},950,{"file":422,"line":780,"context":424},952,{"file":422,"line":782,"context":424},955,{"file":422,"line":784,"context":424},960,{"file":422,"line":786,"context":424},961,{"file":422,"line":788,"context":424},963,{"file":422,"line":790,"context":424},964,{"file":422,"line":792,"context":424},973,{"file":422,"line":794,"context":424},975,{"file":422,"line":796,"context":424},978,{"file":422,"line":798,"context":424},983,{"file":422,"line":800,"context":424},984,{"file":422,"line":802,"context":424},986,{"file":422,"line":804,"context":424},987,{"file":422,"line":806,"context":424},996,{"file":422,"line":808,"context":424},998,{"file":422,"line":810,"context":424},1001,{"file":422,"line":812,"context":424},1006,{"file":422,"line":814,"context":424},1007,{"file":422,"line":816,"context":424},1009,{"file":422,"line":818,"context":424},1010,{"file":422,"line":820,"context":424},1019,{"file":422,"line":822,"context":424},1021,{"file":422,"line":824,"context":424},1024,{"file":422,"line":826,"context":424},1029,{"file":422,"line":828,"context":424},1030,{"file":422,"line":830,"context":424},1032,{"file":422,"line":832,"context":424},1033,{"file":422,"line":834,"context":424},1042,{"file":422,"line":836,"context":424},1044,{"file":422,"line":838,"context":424},1047,{"file":422,"line":840,"context":424},1052,{"file":422,"line":842,"context":424},1053,{"file":422,"line":844,"context":424},1055,{"file":422,"line":846,"context":424},1056,{"file":422,"line":848,"context":424},1065,{"file":422,"line":850,"context":424},1067,{"file":422,"line":852,"context":424},1070,{"file":422,"line":854,"context":424},1075,{"file":422,"line":856,"context":424},1076,{"file":422,"line":858,"context":424},1078,{"file":422,"line":860,"context":424},1079,{"file":422,"line":862,"context":424},1088,{"file":422,"line":864,"context":424},1090,{"file":422,"line":866,"context":424},1093,{"file":422,"line":868,"context":424},1098,{"file":422,"line":870,"context":424},1099,{"file":422,"line":872,"context":424},1101,{"file":422,"line":874,"context":424},1102,{"file":422,"line":876,"context":424},1111,{"file":422,"line":878,"context":424},1113,{"file":422,"line":880,"context":424},1114,{"file":422,"line":882,"context":424},1117,{"file":422,"line":884,"context":424},1122,{"file":422,"line":886,"context":424},1123,{"file":422,"line":888,"context":424},1125,{"file":422,"line":890,"context":424},1126,{"file":422,"line":892,"context":424},1134,{"file":422,"line":894,"context":424},1137,{"file":422,"line":896,"context":424},1147,{"file":422,"line":898,"context":424},1149,{"file":422,"line":898,"context":424},{"file":422,"line":901,"context":424},1150,{"file":422,"line":901,"context":424},{"file":422,"line":904,"context":424},1151,{"file":422,"line":904,"context":424},{"file":422,"line":907,"context":424},1155,{"file":422,"line":909,"context":424},1158,{"file":422,"line":911,"context":424},1160,{"file":422,"line":913,"context":424},1161,{"file":422,"line":915,"context":424},1162,{"file":422,"line":917,"context":424},1163,{"file":422,"line":919,"context":424},1167,{"file":422,"line":921,"context":424},1171,{"file":422,"line":921,"context":424},{"file":422,"line":924,"context":424},1172,{"file":422,"line":924,"context":424},{"file":422,"line":927,"context":424},1188,{"file":422,"line":929,"context":424},1189,{"file":931,"line":932,"context":424},"includes\\core\\class-script-handler.php",120,{"file":931,"line":934,"context":424},121,{"file":931,"line":936,"context":424},130,{"file":931,"line":938,"context":424},131,{"file":136,"line":940,"context":424},76,{"file":181,"line":126,"context":424},{"file":251,"line":943,"context":424},132,{"file":264,"line":368,"context":424},{"file":281,"line":946,"context":424},95,{"file":292,"line":948,"context":424},133,{"file":326,"line":228,"context":424},{"file":336,"line":318,"context":424},{"file":349,"line":952,"context":424},145,{"file":380,"line":209,"context":424},{"file":380,"line":955,"context":424},324,{"file":380,"line":529,"context":424},3,8,[],[961],{"entryPoint":962,"graph":963,"unsanitizedCount":27,"severity":980},"\u003Cclass-turnstile-validator> (includes\\core\\class-turnstile-validator.php:0)",{"nodes":964,"edges":977},[965,971],{"id":966,"type":967,"label":968,"file":969,"line":970},"n0","source","$_POST","includes\\core\\class-turnstile-validator.php",322,{"id":972,"type":973,"label":974,"file":969,"line":975,"wp_function":976},"n1","sink","wp_remote_post() [SSRF]",382,"wp_remote_post",[978],{"from":966,"to":972,"sanitized":979},true,"low",{"summary":982,"deductions":983},"The kitgenix-captcha-for-cloudflare-turnstile plugin v1.0.17 demonstrates a generally good security posture with no known CVEs and strong practices regarding SQL query sanitization and capability checks. The static analysis reveals no critical or high severity taint flows, and importantly, all identified entry points (shortcodes) lack direct authentication checks, which is a potential concern as these could be triggered by unauthenticated users. However, the absence of AJAX handlers and REST API routes without permission callbacks mitigates this risk to some extent. A significant area for improvement lies in output escaping, where only 38% of outputs are properly escaped, indicating a moderate risk of Cross-Site Scripting (XSS) vulnerabilities, particularly if user-supplied data is involved in rendering content within the shortcode outputs. The plugin's clean vulnerability history is a positive sign, suggesting a proactive approach to security by the developers, but the output escaping weakness needs attention.",[984,986],{"reason":985,"points":14},"Unescaped output detected",{"reason":987,"points":957},"Shortcodes lack explicit authentication checks","2026-03-16T20:01:41.014Z",{"wat":990,"direct":1001},{"assetPaths":991,"generatorPatterns":995,"scriptPaths":996,"versionParams":997},[992,993,994],"\u002Fwp-content\u002Fplugins\u002Fkitgenix-captcha-for-cloudflare-turnstile\u002Fassets\u002Fcss\u002Fkitgenix-captcha-admin.css","\u002Fwp-content\u002Fplugins\u002Fkitgenix-captcha-for-cloudflare-turnstile\u002Fassets\u002Fjs\u002Fkitgenix-captcha-admin.js","\u002Fwp-content\u002Fplugins\u002Fkitgenix-captcha-for-cloudflare-turnstile\u002Fassets\u002Fjs\u002Fkitgenix-captcha-frontend.js",[],[993,994],[998,999,1000],"kitgenix-captcha-for-cloudflare-turnstile\u002Fassets\u002Fcss\u002Fkitgenix-captcha-admin.css?ver=","kitgenix-captcha-for-cloudflare-turnstile\u002Fassets\u002Fjs\u002Fkitgenix-captcha-admin.js?ver=","kitgenix-captcha-for-cloudflare-turnstile\u002Fassets\u002Fjs\u002Fkitgenix-captcha-frontend.js?ver=",{"cssClasses":1002,"htmlComments":1012,"htmlAttributes":1017,"restEndpoints":1023,"jsGlobals":1026,"shortcodeOutput":1029},[1003,1004,1005,1006,1007,1008,1009,1010,1011],"kitgenix-captcha-settings-section","kitgenix-captcha-settings-field","kitgenix-captcha-field-label","kitgenix-captcha-field-input","kitgenix-captcha-field-description","kitgenix-captcha-field-wrapper","kitgenix-captcha-submit-button","kitgenix-captcha-status-message","kitgenix-captcha-admin-notice",[1013,1014,1015,1016],"\u003C!-- Kitgenix CAPTCHA Settings -->","\u003C!-- End Kitgenix CAPTCHA Settings -->","\u003C!-- Kitgenix Turnstile Widget Container -->","\u003C!-- End Kitgenix Turnstile Widget Container -->",[1018,1019,1020,1021,1022],"data-kitgenix-captcha-sitekey","data-kitgenix-captcha-theme","data-kitgenix-captcha-action","data-kitgenix-captcha-callback","data-kitgenix-captcha-expired-callback",[1024,1025],"\u002Fwp-json\u002Fkitgenix-captcha\u002Fv1\u002Fsettings","\u002Fwp-json\u002Fkitgenix-captcha\u002Fv1\u002Fverify",[1027,1028],"window.kitgenixCaptchaSettings","window.kitgenixCaptchaRender",[1030],"[kitgenix_captcha_turnstile]"]