[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fzi8rvx4EfleKVQ3_YskwBA_TmhKm0iHs5tT2sZf3cEQ":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":149,"fingerprints":324},"pryc-wp-antyspam","PRyC WP: AntiSPAM (without CAPTCHA)","1.5.2","Patryk","https:\u002F\u002Fprofiles.wordpress.org\u002Fprycpl\u002F","\u003Cp>Block SPAM without any type of CAPTCHA – plugin add “HoneyTrap” (and a few other tricks) for comment form to block SPAMbots.\u003C\u002Fp>\n\u003Cp>Plugin add “HoneyTrap” for comment form to block SPAMbots. Most od SPAM bot fills all comment fields (especially marked as required). plugin also use a few other tricks to eliminate SPAM from spambots.\u003C\u002Fp>\n\u003Cp>Work fine for all my and my client site 🙂\u003C\u002Fp>\n\u003Cp>Plug will not stop people writing comments – to block this type of spam additionally install eg. Akismet or Antispam Bee.\u003C\u002Fp>\n","Block SPAM without any type of CAPTCHA - plugin add \"HoneyTrap\" (and a few other tricks) for comment form to block SPAMbots.",100,3422,0,"2023-06-20T11:44:00.000Z","6.2.9","3.0.1","5.6",[19,20,21,22,23],"antyspam","spam","spambot","spambots","wordpress","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpryc-wp-antyspam.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"prycpl",18,4250,88,30,86,"2026-04-04T12:25:46.499Z",[39,66,89,110,129],{"slug":40,"name":41,"version":42,"author":43,"author_profile":44,"description":45,"short_description":46,"active_installs":47,"downloaded":48,"rating":49,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":61,"download_link":62,"security_score":63,"vuln_count":64,"unpatched_count":13,"last_vuln_date":65,"fetched_at":28},"wp-contact-form-7-spam-blocker","Spam Protect for Contact Form 7","1.2.10","NYSL","https:\u002F\u002Fprofiles.wordpress.org\u002Fnysl\u002F","\u003Cp>Spam Protect for Contact Form 7, the ultimate solution to shield your website from the nuisance of spam and intrusive bots. With this incredible, user-friendly WordPress plugin, bid farewell to the hassle of sifting through irrelevant and unsolicited form submissions.\u003C\u002Fp>\n\u003Cp>Gone are the days of wasting precious time on spammy data, advertisements, and unwanted contact details cluttering your inbox. Our plugin empowers you to take control effortlessly. Simply navigate to the Contact Form 7 edit screen and discover the all-new tab, exclusively designed to combat spam.\u003C\u002Fp>\n\u003Cp>Customize your defense strategy by effortlessly adding emails, domains, or specific words and phrases to the block settings. As spammers and bots often employ consistent email domains and commonly used words for their marketing endeavors, you can now proactively prevent their mischief. Watch as their attempts to submit forms are thwarted, replaced by a sleek, custom error message of your choosing.\u003C\u002Fp>\n\u003Cp>But worry not about blocking genuine visitors inadvertently! Our innovative log file system provides you with insightful monitoring, allowing you to identify and understand each blocked attempt. Stay confident that you’re preserving the engagement of your valued audience while keeping the disruptive elements at bay.\u003C\u002Fp>\n\u003Cp>Experience the unrivaled convenience and effectiveness of Spam Protect for Contact Form 7 today. Streamline your website’s communication, protect your time, and bid farewell to spam like never before.\u003C\u002Fp>\n\u003Ch3>A brief Markdown Example\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Manually email block.\u003C\u002Fli>\n\u003Cli>Email domain block.\u003C\u002Fli>\n\u003Cli>Words and phrases block.\u003C\u002Fli>\n\u003Cli>Top level domains block.\u003C\u002Fli>\n\u003Cli>Protect form from messages that contain shortlinks.\u003C\u002Fli>\n\u003Cli>Protect from blank text submitions.\u003C\u002Fli>\n\u003Cli>Log the failed messages.\u003C\u002Fli>\n\u003C\u002Fol>\n","Spam Protect for Contact-Form7 protects from spam and bots. Customize defense strategies and monitor blocked attempts. Protect your time effectively!",10000,130910,82,12,"2026-02-06T21:29:00.000Z","6.8.5","5.2","5.4",[56,57,58,59,60],"anti-spam-plugin","contact-form-7-security","form-spam-prevention","website-form-protection","wordpress-form-security","https:\u002F\u002Fnysoftwarelab.com\u002Fspam-protect-for-contact-form7\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-contact-form-7-spam-blocker.1.2.10.zip",99,1,"2026-03-20 00:00:00",{"slug":67,"name":68,"version":69,"author":70,"author_profile":71,"description":72,"short_description":73,"active_installs":74,"downloaded":75,"rating":76,"num_ratings":77,"last_updated":78,"tested_up_to":79,"requires_at_least":80,"requires_php":81,"tags":82,"homepage":24,"download_link":88,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"disable-wp-registration-page-spam","Disable WP Registration Page Spam","1.0.2","Subodh Ghulaxe","https:\u002F\u002Fprofiles.wordpress.org\u002Fsubodhghulaxe\u002F","\u003Cp>Easily disable default WordPress registration page, remove register link and stop all spam registrations, without disabling the actual registration functionality. You may still want to accept user registration using membership or registration plugin.\u003C\u002Fp>\n\u003Cp>This plugin works great with popular registration plugins, you can have the registration form on a separate page at the same time disable the default registration of WordPress and protect the spam account creation by bots.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Stop spam \u002F fake registrations in WordPress.\u003C\u002Fli>\n\u003Cli>Disable default WordPress registration page.\u003C\u002Fli>\n\u003Cli>Remove register link from login page.\u003C\u002Fli>\n\u003Cli>Remove register link from forgot password page.\u003C\u002Fli>\n\u003Cli>Disable registration page but allows user registration.\u003C\u002Fli>\n\u003C\u002Ful>\n","Disable default WordPress registration page, remove register link and stop registration spam, without disabling user registration.",1000,11398,92,5,"2024-06-23T11:50:00.000Z","6.5.8","3.1.0","5.2.4",[83,84,85,86,87],"anti-spam","disable-wordpress-registration-page","registration-page-spam","remove-register-link","security","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-wp-registration-page-spam.1.0.2.zip",{"slug":90,"name":91,"version":92,"author":93,"author_profile":94,"description":95,"short_description":96,"active_installs":74,"downloaded":97,"rating":98,"num_ratings":99,"last_updated":100,"tested_up_to":101,"requires_at_least":102,"requires_php":24,"tags":103,"homepage":24,"download_link":109,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"spam-comments-cleaner","Spam Comments Cleaner","1.3","Manish Kumar Agarwal","https:\u002F\u002Fprofiles.wordpress.org\u002Fmanishkrag\u002F","\u003Cp>Ger advance version \u003Ca href=\"http:\u002F\u002Fyoungtechleads.com\u002Fwordpress-database-cleaner\u002F\" rel=\"nofollow ugc\">WordPress Database Cleaner\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>If you are a WordPress site owner then you are definitely aware that everyday more than 20-30 SPAM comments are posting in your site’s different posts. And if you do not delete these spam comments then database size going heavy day after day. So to have database size lighter you have to remove unnecessary spam comments. To do so you have to go to comments listing and delete all the spam comments.\u003C\u002Fp>\n\u003Cp>But we are living in advance age and here every thing should be advance. We have created a plugin which will do the same job on behalf of you 🙂\u003C\u002Fp>\n\u003Ch4>What this plugin does?\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>This plugin basically delete all spam comments of your WordPress site in a regular time interval. All you need to do is:\n* Download and Install the Spam Comments Cleaner plugin.\n* Go to settings >> WordPress Spam Delete options page\n* Select your suitable time option to delete spam comments in a regular time interval.\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch4>Features of this plugin:\u003C\u002Fh4>\n\u003Cpre>\u003Ccode>All possible time interval available:\n* Delete Now\n* Delete after 1 minute\n* Delete in every hour.\n* Delete once in a day in a regular manner.\n* Delete twice in a day in a regular manner.\n* Delete once in a week in a regular manner.\n* Delete once in a month in a regular manner.\n* Delete twice in a month in a regular manner.\n* Delete every day at your custom set time.\n* Stop spam comments delete.\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Secure and Light weight, very simple and less coding effort.\u003Cbr \u002F>\nAll you need to do is click on suitable time interval button.\u003Cbr \u002F>\nTo delete spam comments at your suitable time text-box available to provide custom time in hr:mm format.\u003Cbr \u002F>\nFor debugging purpose provided button to delete spam in next one(1) minute.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Col>\n\u003Cli>No more need to go to the comments list and delete SPAM comments manually.\u003C\u002Fli>\n\u003Cli>Delete spam comment now.\u003C\u002Fli>\n\u003Cli>Delete spam comment cron job can be schedule to hourly.\u003C\u002Fli>\n\u003Cli>Delete spam comment cron job can be schedule to daily.\u003C\u002Fli>\n\u003Cli>Delete spam comment cron job can be schedule to twice in a day.\u003C\u002Fli>\n\u003Cli>Delete spam comment cron job can be schedule to weekly.\u003C\u002Fli>\n\u003Cli>Delete spam comment cron job can be schedule to monthly.\u003C\u002Fli>\n\u003Cli>Delete spam comment cron job can be schedule to twice in a month.\u003C\u002Fli>\n\u003Cli>Delete spam comment cron job can be schedule to user(admin) defined time.\u003C\u002Fli>\n\u003Cli>Secure and light weighted plugin.\u003C\u002Fli>\n\u003C\u002Fol>\n","Delete all the SPAM comments of your WordPress site in a regular time interval. To start the scheduled script this plugin using wp_cron hook.",46925,90,16,"2018-02-02T19:35:00.000Z","4.9.29","3.0",[104,105,106,107,108],"delete-comments","mindfire-solutions","spam-clean","spam-delete","wordpress-comments","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspam-comments-cleaner.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":118,"downloaded":119,"rating":13,"num_ratings":13,"last_updated":120,"tested_up_to":121,"requires_at_least":122,"requires_php":17,"tags":123,"homepage":24,"download_link":128,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wp-google-recaptcha","Add Google re captcha in WordPress Forms","1.4","Ravi Makwana","https:\u002F\u002Fprofiles.wordpress.org\u002Fravimakwana68\u002F","\u003Cp>Added Google re-CAPTCHA in WordPress in any form like comment form, login form, forgot password form, woocommerce form etc.\u003C\u002Fp>\n\u003Ch3>Copyright and licensing\u003C\u002Fh3>\n\u003Cp>This plugin is free software: you can redistribute it and\u002For modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 2 of the License or (at your option) any later version.\u003C\u002Fp>\n\u003Cp>This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.\u003C\u002Fp>\n\u003Cp>You should have received a copy of the GNU General Public License along with this program. If not, see http:\u002F\u002Fwww.gnu.org\u002Flicenses\u002F\u003C\u002Fp>\n\u003Cp>You can contact us at ravi.makwana68@gmail.com\u003C\u002Fp>\n","Added Google re-CAPTCHA in Wordpress in any form like comment form, login form, forgot password form, woocommerce form etc.",600,12168,"2025-01-06T06:26:00.000Z","6.0.11","4.8",[124,125,126,20,127],"comments","google","recptcha","wordpress-form","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-google-recaptcha.zip",{"slug":130,"name":131,"version":132,"author":133,"author_profile":134,"description":135,"short_description":136,"active_installs":137,"downloaded":138,"rating":11,"num_ratings":139,"last_updated":140,"tested_up_to":101,"requires_at_least":141,"requires_php":142,"tags":143,"homepage":147,"download_link":148,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"disable-registration-page","Disable Registration Page","1.1.0","Derick Payne","https:\u002F\u002Fprofiles.wordpress.org\u002Fpetrichorpost\u002F","\u003Cp>There are many situations where you would like to enable user registrations, but disable the default WordPress registration page. Particularly when using a membership or registration plugin that allows registration in the front end of your website.\u003C\u002Fp>\n\u003Cp>Unknown to many; the default WordPress registration stays active when installing these frontend registration plugins. This means that any anti-spam and security measures you implement on the frontend means nothing, because bots are still able to create spam accounts on your website using the backend or default WordPress registration page.\u003C\u002Fp>\n\u003Cp>The “\u003Ca href=\"https:\u002F\u002Fwww.rizonesoft.com\u002Fwordpress\u002Fdisable-wordpress-registration-page\u002F\" rel=\"nofollow ugc\">Disable Registration Page\u003C\u002Fa>” plugin closes this dangerous backdoor without disabling user registration on your website.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Stop bot and spam registrations.\u003C\u002Fli>\n\u003Cli>Disable the default registration page without disabling user registration.\u003C\u002Fli>\n\u003Cli>Extremely easy to use. Just activate!\u003C\u002Fli>\n\u003Cli>No complicated options.\u003C\u002Fli>\n\u003Cli>Plays well with all frontend registration plugins.\u003C\u002Fli>\n\u003C\u002Ful>\n","Disable the default WordPress registration page without disabling user registration.",400,3510,3,"2018-02-19T05:14:00.000Z","2.9.0","4.3",[144,84,145,87,146],"disable-default-registration-page","registration","stop-spam-registrations","https:\u002F\u002Fwww.rizonesoft.com\u002Fwordpress\u002Fdisable-wordpress-registration-page\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-registration-page.zip",{"attackSurface":150,"codeSignals":191,"taintFlows":282,"riskAssessment":312,"analyzedAt":323},{"hooks":151,"ajaxHandlers":187,"restRoutes":188,"shortcodes":189,"cronEvents":190,"entryPointCount":13,"unprotectedCount":13},[152,158,163,167,171,175,179,183],{"type":153,"name":154,"callback":155,"file":156,"line":157},"filter","xmlrpc_enabled","__return_false","pryc-wp-antyspam.php",25,{"type":159,"name":160,"callback":161,"file":156,"line":162},"action","init","pryc_wp_antyspam_disable_xmlrpc",29,{"type":153,"name":164,"callback":165,"file":156,"line":166},"comment_form_default_fields","pryc_wp_antyspam_add_honeypot_comment_field",95,{"type":153,"name":168,"callback":169,"file":156,"line":170},"preprocess_comment","pryc_wp_antyspam_verification_comment_meta_data",192,{"type":159,"name":172,"callback":173,"file":156,"line":174},"admin_menu","pryc_wp_antyspam_add_admin_menu",197,{"type":159,"name":176,"callback":177,"file":156,"line":178},"admin_init","pryc_wp_antyspam_settings_init",198,{"type":159,"name":180,"callback":181,"file":156,"line":182},"wp_footer","pryc_wp_antyspam_frontend",788,{"type":159,"name":184,"callback":185,"file":156,"line":186},"admin_head","pryc_wp_antyspam_css_backend",799,[],[],[],[],{"dangerousFunctions":192,"sqlUsage":193,"outputEscaping":195,"fileOperations":280,"externalRequests":13,"nonceChecks":64,"capabilityChecks":13,"bundledLibraries":281},[],{"prepared":13,"raw":13,"locations":194},[],{"escaped":64,"rawEcho":196,"locations":197},41,[198,201,203,205,206,208,210,212,214,216,218,220,222,224,226,228,230,232,234,236,238,240,242,244,246,248,250,252,254,256,258,260,262,264,266,268,270,272,274,276,278],{"file":156,"line":199,"context":200},430,"raw output",{"file":156,"line":202,"context":200},431,{"file":156,"line":204,"context":200},445,{"file":156,"line":204,"context":200},{"file":156,"line":207,"context":200},458,{"file":156,"line":209,"context":200},472,{"file":156,"line":211,"context":200},484,{"file":156,"line":213,"context":200},485,{"file":156,"line":215,"context":200},500,{"file":156,"line":217,"context":200},501,{"file":156,"line":219,"context":200},516,{"file":156,"line":221,"context":200},517,{"file":156,"line":223,"context":200},521,{"file":156,"line":225,"context":200},534,{"file":156,"line":227,"context":200},547,{"file":156,"line":229,"context":200},578,{"file":156,"line":231,"context":200},579,{"file":156,"line":233,"context":200},593,{"file":156,"line":235,"context":200},605,{"file":156,"line":237,"context":200},618,{"file":156,"line":239,"context":200},631,{"file":156,"line":241,"context":200},643,{"file":156,"line":243,"context":200},655,{"file":156,"line":245,"context":200},667,{"file":156,"line":247,"context":200},676,{"file":156,"line":249,"context":200},678,{"file":156,"line":251,"context":200},680,{"file":156,"line":253,"context":200},682,{"file":156,"line":255,"context":200},684,{"file":156,"line":257,"context":200},693,{"file":156,"line":259,"context":200},695,{"file":156,"line":261,"context":200},697,{"file":156,"line":263,"context":200},699,{"file":156,"line":265,"context":200},706,{"file":156,"line":267,"context":200},714,{"file":156,"line":269,"context":200},721,{"file":156,"line":271,"context":200},728,{"file":156,"line":273,"context":200},749,{"file":156,"line":275,"context":200},753,{"file":156,"line":277,"context":200},770,{"file":156,"line":279,"context":200},779,4,[],[283,302],{"entryPoint":284,"graph":285,"unsanitizedCount":64,"severity":301},"pryc_wp_antyspam_verification_comment_meta_data (pryc-wp-antyspam.php:102)",{"nodes":286,"edges":298},[287,292],{"id":288,"type":289,"label":290,"file":156,"line":291},"n0","source","$_POST",150,{"id":293,"type":294,"label":295,"file":156,"line":296,"wp_function":297},"n1","sink","file_put_contents() [File Write]",158,"file_put_contents",[299],{"from":288,"to":293,"sanitized":300},false,"medium",{"entryPoint":303,"graph":304,"unsanitizedCount":13,"severity":311},"\u003Cpryc-wp-antyspam> (pryc-wp-antyspam.php:0)",{"nodes":305,"edges":308},[306,307],{"id":288,"type":289,"label":290,"file":156,"line":291},{"id":293,"type":294,"label":295,"file":156,"line":296,"wp_function":297},[309],{"from":288,"to":293,"sanitized":310},true,"low",{"summary":313,"deductions":314},"The \"pryc-wp-antyspam\" plugin v1.5.2 exhibits a generally strong security posture due to the absence of known vulnerabilities and a limited attack surface.  The static analysis reveals no direct AJAX handlers, REST API routes, shortcodes, or cron events that could be easily exploited. Furthermore, the plugin demonstrates good practices with 100% of its SQL queries using prepared statements and a single nonce check, indicating an effort to prevent common web attacks. The lack of external HTTP requests also reduces its exposure to third-party vulnerabilities.\n\nHowever, a significant concern arises from the code analysis regarding output escaping. With 42 total outputs and only 2% properly escaped, there is a substantial risk of Cross-Site Scripting (XSS) vulnerabilities. Additionally, the taint analysis identified one flow with unsanitized paths, which, although not classified as critical or high severity in this instance, suggests a potential for path traversal or arbitrary file access if exploited in conjunction with other factors. The presence of file operations without explicit mention of sanitization further adds to this concern.\n\nThe plugin's vulnerability history is clean, with no recorded CVEs. This, combined with the absence of unpatched vulnerabilities, is a positive indicator of the developer's attention to security. However, the low rate of properly escaped output and the unsanitized path flow are weaknesses that require attention. In conclusion, while the plugin benefits from a limited attack surface and good SQL practices, the high percentage of unescaped output and the identified unsanitized path flow represent clear and present risks that should be addressed to improve its overall security.",[315,318,321],{"reason":316,"points":317},"Low percentage of properly escaped output",15,{"reason":319,"points":320},"Flows with unsanitized paths identified",10,{"reason":322,"points":77},"File operations present without clear sanitization checks","2026-03-16T21:08:04.729Z",{"wat":325,"direct":330},{"assetPaths":326,"generatorPatterns":327,"scriptPaths":328,"versionParams":329},[],[],[],[],{"cssClasses":331,"htmlComments":333,"htmlAttributes":334,"restEndpoints":335,"jsGlobals":336,"shortcodeOutput":337},[332],"pryc_wp_antyspam",[],[],[],[],[]]