Does Power Captcha reCAPTCHA have any unpatched vulnerabilities?

No. All known vulnerabilities in Power Captcha reCAPTCHA have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Power Captcha reCAPTCHA compatible with WordPress 6.8.0?

According to WordPress.org data, Power Captcha reCAPTCHA 1.1.0 has been tested up to WordPress 6.8.0. Check the plugin's changelog for the latest compatibility information.

Is Power Captcha reCAPTCHA compatible with PHP 5.5+?

Power Captcha reCAPTCHA requires PHP 5.5 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Power Captcha reCAPTCHA updated?

Power Captcha reCAPTCHA was last updated on Mar 9, 2025. Frequent updates are generally a positive security signal.

What is Power Captcha reCAPTCHA's security score?

Power Captcha reCAPTCHA has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Power Captcha reCAPTCHA Security & Risk Analysis

wordpress.org/plugins/power-captcha-recaptcha

Protect WordPress/WooCommerce/Contact Form 7 forms from spam, brute-force attacks, fake comments, accounts, or registrations with Google reCAPTCHA.

1K active installs v1.1.0 PHP 5.5+ WP 5.0+ Updated Mar 9, 2025

anti-spam-securitycaptchacomment-formgoogle-recaptchalogin-security

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Power Captcha reCAPTCHA Safe to Use in 2026?

Generally Safe

Score 92/100

Power Captcha reCAPTCHA has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The 'power-captcha-recaptcha' plugin v1.1.0 exhibits a strong security posture based on the provided static analysis. All identified entry points (AJAX handlers, cron events) appear to be protected by either nonce or capability checks, and there are no identified REST API routes or shortcodes that could expand the attack surface without proper authorization. The code also demonstrates excellent practices regarding output escaping, with 100% of outputs being properly handled, and the absence of dangerous functions, file operations, and external HTTP requests is a significant positive. Furthermore, the plugin has no recorded vulnerability history, indicating a consistent track record of security.

However, a minor area for concern lies in the handling of SQL queries. While a majority use prepared statements, 40% do not. This leaves a potential opening for SQL injection vulnerabilities, especially if the unsanitized queries handle user-supplied data. The lack of taint analysis results also makes it impossible to confirm that no unsanitized user input can reach sensitive functions, although the absence of critical or high severity flows is reassuring. The presence of capability checks is absent on any entry points, which is an oversight that could be exploited.

Key Concerns

40% of SQL queries not using prepared statements
No capability checks on entry points

Vulnerabilities

None known

Power Captcha reCAPTCHA Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Power Captcha reCAPTCHA Code Analysis

Dangerous Functions

Raw SQL Queries

2 prepared

Unescaped Output

83 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

40% prepared5 total queries

Output Escaping

100% escaped83 total outputs

Attack Surface

Power Captcha reCAPTCHA Attack Surface

Entry Points1

Unprotected0

AJAX Handlers 1

authwp_ajax_pwrcap_dismiss_notice_not_configuredinc\admin.php:606

WordPress Hooks 130

filterpwrcap_verification_responseinc\activity\activity.php:74

actionpwrcap_no_captcha_code_sentinc\activity\activity.php:98

actionpwrcap_admin_do_tab_navigationinc\activity\admin.php:27

actionpwrcap_admin_do_tab_stageinc\activity\admin.php:52

actionadmin_enqueue_scriptsinc\activity\admin.php:94

actionadmin_enqueue_scriptsinc\activity\admin.php:120

actionpwrcap_do_activity_sectioninc\activity\admin.php:122

actioninitinc\activity\update.php:39

actionpwrcap_initinc\activity\update.php:57

actionpwrcap_admin_do_tab_navigationinc\admin.php:77

actionpwrcap_admin_do_tab_stageinc\admin.php:108

actionpwrcap_admin_do_tab_navigationinc\admin.php:122

actionpwrcap_admin_do_tab_stageinc\admin.php:153

actionpwrcap_admin_do_tab_navigationinc\admin.php:167

actionpwrcap_admin_do_tab_stageinc\admin.php:198

actionadmin_menuinc\admin.php:210

actionadmin_initinc\admin.php:329

actionadmin_noticesinc\admin.php:419

actionadmin_enqueue_scriptsinc\admin.php:438

filterpwrcap_get_state_options_defaultsinc\admin.php:479

filterpwrcap_get_state_options_defaultsinc\admin.php:493

actionpwrcap_do_admin_noticesinc\admin.php:533

actionpwrcap_do_admin_noticesinc\admin.php:540

actionpwrcap_do_admin_noticesinc\admin.php:578

actionpwrcap_daily_eventinc\admin.php:588

actionadmin_enqueue_scriptsinc\admin.php:620

actionpwrcap_do_key_sectioninc\admin.php:647

actionpwrcap_do_misc_sectioninc\admin.php:648

actionpwrcap_do_woo_captchas_sectioninc\admin.php:649

actionpwrcap_do_wp_captchas_sectioninc\admin.php:650

filterpwrcap_woo_checkout_form_enable_field_classinc\admin.php:666

filterpwrcap_woo_login_form_enable_field_classinc\admin.php:667

filterpwrcap_woo_lostpassword_form_enable_field_classinc\admin.php:668

filterpwrcap_woo_register_form_enable_field_classinc\admin.php:669

filterpwrcap_woo_resetpassword_form_enable_field_classinc\admin.php:670

filterpwrcap_woo_review_form_enable_field_classinc\admin.php:671

filterpwrcap_comment_form_enable_field_classinc\admin.php:672

filterpwrcap_login_form_enable_field_classinc\admin.php:673

filterpwrcap_lostpassword_form_enable_field_classinc\admin.php:674

filterpwrcap_register_form_enable_field_classinc\admin.php:675

filterpwrcap_resetpassword_form_enable_field_classinc\admin.php:676

filterpwrcap_debug_mode_enable_field_classinc\admin.php:677

actionwpcf7_initinc\cf7\cf7.php:26

actionwpcf7_admin_initinc\cf7\cf7.php:46

actioninitinc\cf7\cf7.php:106

filterwpcf7_validate_power_captcha_recaptchainc\cf7\cf7.php:201

filterwpcf7_validate_power_captcha_recaptcha*inc\cf7\cf7.php:202

actionpwrcap_admin_initinc\cf7\common.php:35

actionpwrcap_do_cf7_captchas_sectioninc\cf7\common.php:72

actionlogin_enqueue_scriptsinc\core.php:69

actionwp_enqueue_scriptsinc\core.php:70

filterpwrcap_localized_datainc\core.php:119

filterpwrcap_verification_responseinc\core.php:163

actionplugins_loadedinc\core.php:168

actioninitinc\core.php:193

actionpwrcap_initinc\update.php:29

filterwoocommerce_checkout_processinc\woo\checkout.php:48

actionpwrcap_add_captcha_handlerinc\woo\checkout.php:50

actioninitinc\woo\checkout.php:81

actionpwrcap_admin_initinc\woo\checkout.php:103

filterpwrcap_get_captchas_options_defaultsinc\woo\checkout.php:117

filterpwrcap_sanitize_captchas_optionsinc\woo\checkout.php:131

actionpwrcap_admin_initinc\woo\common.php:39

filterpwrcap_prevent_handle_login_forminc\woo\login.php:63

filterwp_authenticate_userinc\woo\login.php:78

actionpwrcap_add_captcha_handlerinc\woo\login.php:80

actioninitinc\woo\login.php:111

actionadmin_initinc\woo\login.php:131

filterpwrcap_get_captchas_options_defaultsinc\woo\login.php:145

filterpwrcap_sanitize_captchas_optionsinc\woo\login.php:159

filterpwrcap_prevent_handle_lostpassword_forminc\woo\lostpassword.php:55

filterlostpassword_postinc\woo\lostpassword.php:70

actionpwrcap_add_captcha_handlerinc\woo\lostpassword.php:72

actioninitinc\woo\lostpassword.php:103

actionadmin_initinc\woo\lostpassword.php:124

filterpwrcap_get_captchas_options_defaultsinc\woo\lostpassword.php:138

filterpwrcap_sanitize_captchas_optionsinc\woo\lostpassword.php:152

filterwoocommerce_register_postinc\woo\register.php:50

actioninitinc\woo\register.php:51

actionpwrcap_add_captcha_handlerinc\woo\register.php:60

actioninitinc\woo\register.php:91

actionadmin_initinc\woo\register.php:112

filterpwrcap_get_captchas_options_defaultsinc\woo\register.php:126

filterpwrcap_sanitize_captchas_optionsinc\woo\register.php:140

filterpwrcap_prevent_handle_resetpassword_forminc\woo\resetpassword.php:60

actionvalidate_password_resetinc\woo\resetpassword.php:75

actionpwrcap_add_captcha_handlerinc\woo\resetpassword.php:77

actioninitinc\woo\resetpassword.php:108

actionadmin_initinc\woo\resetpassword.php:129

filterpwrcap_get_captchas_options_defaultsinc\woo\resetpassword.php:143

filterpwrcap_sanitize_captchas_optionsinc\woo\resetpassword.php:157

filterpreprocess_commentinc\woo\review.php:73

actionpwrcap_add_captcha_handlerinc\woo\review.php:75

actioninitinc\woo\review.php:106

filterpwrcap_prevent_render_captchainc\woo\review.php:129

actionpwrcap_admin_initinc\woo\review.php:150

filterpwrcap_get_captchas_options_defaultsinc\woo\review.php:164

filterpwrcap_sanitize_captchas_optionsinc\woo\review.php:178

filterpreprocess_commentinc\wp\comment.php:72

actionpwrcap_add_captcha_handlerinc\wp\comment.php:74

actioninitinc\wp\comment.php:105

actionpwrcap_admin_initinc\wp\comment.php:126

filterpwrcap_get_captchas_options_defaultsinc\wp\comment.php:140

filterpwrcap_sanitize_captchas_optionsinc\wp\comment.php:154

actionpwrcap_admin_initinc\wp\common.php:37

filterauthenticateinc\wp\login.php:51

actionpwrcap_add_captcha_handlerinc\wp\login.php:53

actioninitinc\wp\login.php:85

actionpwrcap_admin_initinc\wp\login.php:104

filterpwrcap_get_captchas_options_defaultsinc\wp\login.php:118

filterpwrcap_sanitize_captchas_optionsinc\wp\login.php:132

actionlostpassword_postinc\wp\lostpassword.php:48

actionpwrcap_add_captcha_handlerinc\wp\lostpassword.php:50

actioninitinc\wp\lostpassword.php:81

actionpwrcap_admin_initinc\wp\lostpassword.php:100

filterpwrcap_get_captchas_options_defaultsinc\wp\lostpassword.php:114

filterpwrcap_sanitize_captchas_optionsinc\wp\lostpassword.php:128

actionlogin_form_registerinc\wp\register.php:51

filterregistration_errorsinc\wp\register.php:54

actionpwrcap_add_captcha_handlerinc\wp\register.php:58

actioninitinc\wp\register.php:89

actionpwrcap_admin_initinc\wp\register.php:108

filterpwrcap_get_captchas_options_defaultsinc\wp\register.php:122

filterpwrcap_sanitize_captchas_optionsinc\wp\register.php:136

actionvalidate_password_resetinc\wp\resetpassword.php:53

actionpwrcap_add_captcha_handlerinc\wp\resetpassword.php:55

actioninitinc\wp\resetpassword.php:86

actionpwrcap_admin_initinc\wp\resetpassword.php:105

filterpwrcap_get_captchas_options_defaultsinc\wp\resetpassword.php:119

filterpwrcap_sanitize_captchas_optionsinc\wp\resetpassword.php:133

Scheduled Events 1

pwrcap_daily_event

Maintenance & Trust

Power Captcha reCAPTCHA Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.0

Last updatedMar 9, 2025

PHP min version5.5

Downloads6K

Community Trust

Rating100/100

Number of ratings3

Active installs1K

Alternatives

Power Captcha reCAPTCHA Alternatives

WP reCaptcha

wprecaptcha

Add Google reCaptcha to WordPress forms. Easy to add, advanced security for your forms.

100 No CVEs

Advanced Google reCAPTCHA

advanced-google-recaptcha

Captcha protection against spam comments & brute force login attacks using Google reCAPTCHA.

200K 3 CVEs

reCaptcha by BestWebSoft

google-captcha

Protect WordPress website forms from spam entries with Google reCAPTCHA.

100K 3 CVEs

Wordfence Login Security

wordfence-login-security

Secure your website with Wordfence Login Security, providing two-factor authentication, login and registration CAPTCHA, and XML-RPC protection.

70K No CVEs

DoLogin Security

dologin

Easy Login. 2FA login. Passwordless login. Cloudflare Turnstile reCAPTCHA. GeoLocation (Continent/Country/City)/IP range to limit login attempts.

7K 4 CVEs

Developer Profile

Power Captcha reCAPTCHA Developer Profile

Denis Alemán

2 plugins · 1K total installs

trust score

Avg Security Score

96/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Power Captcha reCAPTCHA

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/power-captcha-recaptcha/inc/activity/assets/css/activity.css/wp-content/plugins/power-captcha-recaptcha/inc/activity/assets/js/chart.js/wp-content/plugins/power-captcha-recaptcha/inc/activity/assets/js/init.js

Script Paths

/wp-content/plugins/power-captcha-recaptcha/inc/activity/assets/js/chart.js/wp-content/plugins/power-captcha-recaptcha/inc/activity/assets/js/init.js

Version Parameters

/wp-content/plugins/power-captcha-recaptcha/inc/activity/assets/css/activity.css?ver=/wp-content/plugins/power-captcha-recaptcha/inc/activity/assets/js/chart.js?ver=/wp-content/plugins/power-captcha-recaptcha/inc/activity/assets/js/init.js?ver=

HTML / DOM Fingerprints

CSS Classes

pwrcap-tab-contentpwrcap-nav-tab-wrapperpwrcap-postbox-containerpwrcap_settings_formpwrcap-sumbit-button

Data Attributes

data-tab-content

JS Globals

pwrcapActivityData

FAQ