[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$focMEsaw0PnnEE-eSAfV-XsyLu9ahoswOv2QsNcGgEtA":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":141,"fingerprints":336},"raptcha","Raptcha","1.4.1","LaughterOnWater","https:\u002F\u002Fprofiles.wordpress.org\u002Flaughteronwater\u002F","\u003Cp>Raptcha is an innovative CAPTCHA alternative that challenges users to count animals in a dynamic image, promoting accessibility and user engagement. Unlike text-based CAPTCHAs, it uses engaging visuals (cats, dogs, birds) with randomized placements and scales for enhanced security.\u003C\u002Fp>\n\u003Cp>Key features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Animal Counting Challenges\u003C\u002Fstrong>: Randomized images with 1-10 animals, ensuring varied difficulty.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Bot Detection Heuristics\u003C\u002Fstrong>: Advanced checks (drag time, mouse distance, focus duration) to prevent automated submissions.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Form Integrations\u003C\u002Fstrong>: Native support for WordPress comments, login forms, and popular plugins (Contact Form 7, Kadence Forms, Ninja Forms).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Shortcode Integration\u003C\u002Fstrong>: Easily embed with \u003Ccode>[raptcha]\u003C\u002Fcode> for custom forms.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Fully Secured\u003C\u002Fstrong>: Nonce verification, transients for challenge storage, and sanitization throughout.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This plugin prioritizes privacy, security and usability, making it a in-house, private, modern alternative to traditional CAPTCHAs.\u003C\u002Fp>\n","A secure, animal-based CAPTCHA for WordPress forms featuring intelligent bot detection and multi-form integrations.",0,220,100,1,"2026-01-23T21:54:00.000Z","6.9.4","5.0","7.4",[20,21,22,23,24],"bot-detection","captcha","form","privacy","security","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fraptcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fraptcha.1.4.1.zip",null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":13,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"laughteronwater",7,70,30,94,"2026-04-04T02:40:54.704Z",[38,59,82,101,121],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":53,"download_link":58,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"wp-advanced-math-captcha","WP Advanced Math Captcha","2.1.9","CaptchaMaster","https:\u002F\u002Fprofiles.wordpress.org\u002Flulub5592\u002F","\u003Cp>\u003Cstrong>WP Advanced Math Captcha\u003C\u002Fstrong> is a robust, 100% effective, and easy-to-use CAPTCHA solution designed to safeguard your WordPress site from spam and bots. With its new integrations for \u003Cstrong>WooCommerce\u003C\u002Fstrong>, \u003Cstrong>WPForms\u003C\u002Fstrong>, and \u003Cstrong>Formidable Forms\u003C\u002Fstrong>, it now protects login, registration, password reset, comments, Contact Form 7, bbPress, WooCommerce account forms, WPForms, and Formidable Forms — all in one lightweight plugin!\u003C\u002Fp>\n\u003Cp>Say goodbye to annoying spam and hello to a secure, user-friendly experience. Whether you’re running an e-commerce store, a blog, a forum, or a custom form-powered site, this plugin offers customizable math-based challenges that are simple for humans but tough for bots.\u003C\u002Fp>\n\u003Ch3>Key Features:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>New! WooCommerce Integration\u003C\u002Fstrong>: Secure checkout, login, registration, and password reset forms (tested on works well on WooCommerce ver.9.8.5)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>New! WPForms Integration\u003C\u002Fstrong>: Protect WPForms with math-based CAPTCHA.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>New! Formidable Forms Integration\u003C\u002Fstrong>: Secure Formidable Forms (Lite and Pro) with customizable CAPTCHA.\u003C\u002Fli>\n\u003Cli>Protect multiple areas: WordPress login, registration, lost password, comments, Contact Form 7, bbPress, WPForms, and Formidable Forms\u003C\u002Fli>\n\u003Cli>Hide CAPTCHA for logged-in users.\u003C\u002Fli>\n\u003Cli>Choose mathematical operations (addition, subtraction, multiplication).\u003C\u002Fli>\n\u003Cli>Display CAPTCHA as numbers, words, or both.\u003C\u002Fli>\n\u003Cli>Support for multiple CAPTCHAs on a single page.\u003C\u002Fli>\n\u003Cli>Block direct spambot access to \u003Ccode>wp-comments-post.php\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>Customizable CAPTCHA field title and input time.\u003C\u002Fli>\n\u003Cli>IP and GEO filtering: Hide CAPTCHA for trusted IPs or countries.\u003C\u002Fli>\n\u003Cli>Auto IP blocking to stop repeated bot attempts.\u003C\u002Fli>\n\u003Cli>Detailed statistics and logs (daily, weekly, monthly, yearly).\u003C\u002Fli>\n\u003Cli>Translation-ready with included \u003Ccode>.pot\u003C\u002Fcode> file.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This plugin is licensed under the MIT License. See the full license text in the plugin files for more details.\u003C\u002Fp>\n","Protect your WordPress site with a powerful and user-friendly Math Captcha. Now with seamless WooCommerce, WPForms, and Formidable Forms integration!",7000,66009,92,17,"2025-11-16T21:21:00.000Z","6.8.5","4.0","",[55,21,56,24,57],"antispam","contact-form-7","woocommerce","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-advanced-math-captcha.2.1.9.zip",{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":67,"downloaded":68,"rating":69,"num_ratings":70,"last_updated":71,"tested_up_to":72,"requires_at_least":52,"requires_php":73,"tags":74,"homepage":79,"download_link":80,"security_score":81,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"no-captcha-recaptcha","No CAPTCHA reCAPTCHA","1.3.4","Collins Agbonghama","https:\u002F\u002Fprofiles.wordpress.org\u002Fcollizo4sky\u002F","\u003Cp>A simple plugin for adding the new No CAPTCHA reCAPTCHA by Google to WordPress login, registration and comment system as well as BuddyPress registration form to protect against spam.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Option to activate CAPTCHA in login, registration, comment and BuddyPress registration forms.\u003C\u002Fli>\n\u003Cli>Choose a theme for the CAPTCHA.\u003C\u002Fli>\n\u003Cli>Auto-detects the user’s language.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Plugins you will like\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fno-captcha-recaptcha-for-woocommerce\u002F\" rel=\"ugc\">No CAPTCHA reCAPTCHA for WooCommerce\u003C\u002Fa>\u003C\u002Fstrong>: Protect WooCommerce login, registration and password reset form against spam using Google’s No CAPTCHA reCAPTCHA.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fppress\u002F\" rel=\"ugc\">ProfilePress\u003C\u002Fa>\u003C\u002Fstrong>: A shortcode based WordPress form builder that makes building custom login, registration and password reset forms stupidly simple. \u003Ca href=\"http:\u002F\u002Fprofilepress.net\" rel=\"nofollow ugc\">More info here\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmailoptin\u002F\" rel=\"ugc\">MailOptin\u003C\u002Fa>\u003C\u002Fstrong> – The best WordPress email optin forms, email automation & newsletters plugin in the market.\u003C\u002Fli>\n\u003C\u002Ful>\n","Protect WordPress login, registration, comment and BuddyPress registration forms with Google's No CAPTCHA reCAPTCHA.",5000,151171,86,69,"2020-04-15T16:05:00.000Z","5.4.19","5.4",[75,76,77,78,24],"comment-form","login","recaptcha","registration-form","http:\u002F\u002Fw3guy.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fno-captcha-recaptcha.1.3.4.zip",85,{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":13,"num_ratings":92,"last_updated":93,"tested_up_to":51,"requires_at_least":94,"requires_php":53,"tags":95,"homepage":53,"download_link":100,"security_score":13,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"cf7-advance-security","Contact Form 7 Spam Killer","1.8","WP-EXPERTS.IN","https:\u002F\u002Fprofiles.wordpress.org\u002Findia-web-developer\u002F","\u003Cp>“Contact Form 7 Spam Killer” is a advance spam blocker that will help to prevent unwanted spam for your Contact Form 7 plugin.\u003C\u002Fp>\n\u003Ch3>Form Spam Killer – A permanent solution to stop spam emails from your wordpress website\u003C\u002Fh3>\n\u003Cp>“Contact Form 7 Spam Killer” plugin gives double layer security to your contact form 7. This plugin is very effective to stop machine and human spam for Contact Form 7 plugin. This plugin helps you to prevent unwanted spam from all forms of the website that has been created by Contact Form 7 plugin. As Form 7 is most popular contact form plugin and many users faced the spam issue with this form so we have created this plugin to give a permanent solution from spam emails issue.\u003C\u002Fp>\n\u003Ch4>Plugin tested with latest version 6.1 of Form 7\u003C\u002Fh4>\n\u003Cp>Do You Have Any Query? \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.wp-experts.in\u002Fcontact-us\u002F?utm_source=wordpress.org&utm_medium=free-plugin&utm_campaign=form7spam-killer\" rel=\"nofollow ugc\">Submit here\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Math Captcha\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Hidden Captcha (Honeypot)\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FPwnoLegw0sM?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","\"Contact Form 7 Spam Killer\" is a advance spam blocker that will help to prevent unwanted spam for your Contact Form 7 plugin.",4000,29565,4,"2025-07-09T12:41:00.000Z","5.6",[96,56,97,98,99],"cf7-math-captcha","contact-form-7-captcha","form-7-spam-stoper","form-security","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcf7-advance-security.1.8.zip",{"slug":102,"name":103,"version":104,"author":105,"author_profile":106,"description":107,"short_description":108,"active_installs":109,"downloaded":110,"rating":13,"num_ratings":111,"last_updated":112,"tested_up_to":113,"requires_at_least":17,"requires_php":114,"tags":115,"homepage":119,"download_link":120,"security_score":48,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"power-captcha-recaptcha","Power Captcha reCAPTCHA","1.1.0","Denis Alemán","https:\u002F\u002Fprofiles.wordpress.org\u002Fdenisaleman\u002F","\u003Cp>Protect your WordPress, WooCommerce, and Contact Form 7 forms from spam, brute-force attacks, and fake accounts using Google reCAPTCHA.\u003C\u002Fp>\n\u003Cp>Power Captcha reCAPTCHA supports 3 Google reCAPTCHA types integrated into 6 common WordPress forms, including login and comment forms, 7 WooCommerce forms, and Contact Form 7.\u003C\u002Fp>\n\u003Ch3>3 CAPTCHA Types\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Score-based (v3) CAPTCHA.\u003C\u002Fstrong> Seamless detection.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>“I’m not a robot” CAPTCHA checkbox.\u003C\u002Fstrong> Verification requests with a challenge.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Invisible reCAPTCHA.\u003C\u002Fstrong> Improved, challenge-based CAPTCHA without a checkbox.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>6 WordPress Forms\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Login form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Register form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comment form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lost password form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reset password form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Register form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>7 WooCommerce Forms\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Login form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Register form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Checkout form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Review form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reset password form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lost password form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contact Form 7\u003C\u002Fh3>\n\u003Cp>As of version 1.0.7, Power Captcha reCAPTCHA integrates with Contact Form 7. You can easily add the Power Captcha reCAPTCHA field to your Contact Form 7 forms.\u003C\u002Fp>\n\u003Ch3>Activity Report\u003C\u002Fh3>\n\u003Cp>The Activity Report feature for the plugin provides users with a detailed overview of captcha interactions. It tracks and displays the number of solved, failed, and empty captchas, offering a daily breakdown to monitor performance trends. Stay informed with clear insights into your captcha performance.\u003C\u002Fp>\n","Protect WordPress\u002FWooCommerce\u002FContact Form 7 forms from spam, brute-force attacks, fake comments, accounts, or registrations with Google reCAPTCHA.",1000,6098,3,"2025-03-09T01:27:00.000Z","6.8.0","5.5",[116,21,75,117,118],"anti-spam-security","google-recaptcha","login-security","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpower-captcha-recaptcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpower-captcha-recaptcha.1.1.0.zip",{"slug":122,"name":123,"version":124,"author":125,"author_profile":126,"description":127,"short_description":128,"active_installs":129,"downloaded":130,"rating":13,"num_ratings":131,"last_updated":132,"tested_up_to":133,"requires_at_least":134,"requires_php":94,"tags":135,"homepage":139,"download_link":140,"security_score":81,"vuln_count":11,"unpatched_count":11,"last_vuln_date":27,"fetched_at":28},"gdpr-for-gravity-forms","Gravity Forms: GDPR Framework Add-On","2.0.0","Data443 Risk Mitigation, Inc.","https:\u002F\u002Fprofiles.wordpress.org\u002Fdata443\u002F","\u003Cp>The easiest way to make your Gravity Forms GDPR compliant!\u003C\u002Fp>\n\u003Cp>This plugin is a service of \u003Ca href=\"https:\u002F\u002Fdata443.com\" rel=\"nofollow ugc\">Data443\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Data443 is a Data Security and Compliance company traded on the OTCMarkets as \u003Ca href=\"https:\u002F\u002Fwww.otcmarkets.com\u002Fstock\u002FATDS\u002Foverview\" rel=\"nofollow ugc\">ATDS\u003C\u002Fa>. We have been providing leading GDPR compliance products such as Global Privacy Manager (\u003Ca href=\"https:\u002F\u002Fwww.data443.com\u002Fglobal-privacy-manager\u002F\" rel=\"nofollow ugc\">Data443™ Global Privacy Manager\u003C\u002Fa>), Blockchain privacy, and enterprise cloud eDiscovery tools.\u003C\u002Fp>\n\u003Cp>This plugin adds new privacy features to Gravity Forms. Your visitors can download or delete their form submissions automatically or submit a request for the site admin to do so.\u003C\u002Fp>\n\u003Cp>Until WordPress releases their own GDPR compliance update, this plugin requires \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgdpr-framework\u002F\" rel=\"ugc\">The GDPR Framework\u003C\u002Fa> to function (it’s free!)\u003C\u002Fp>\n\u003Cp>Make sure to also read the guide! You don’t need to drown your customers in pointless acceptance checkboxes if you know what you’re doing!\u003C\u002Fp>\n\u003Ch3>Disclaimer\u003C\u002Fh3>\n\u003Cp>Using Gravity Forms: GDPR Add-On does NOT guarantee compliance to GDPR. This plugin gives you general information and tools, but is NOT meant to serve as complete compliance package. Compliance to GDPR is risk-based ongoing process that involves your whole business. Data443 is not eligible for any claim or action based on any information or functionality provided by this plugin.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>How to use this plugin (practical guide): \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F28246137\" rel=\"nofollow ugc\">Making your Gravity Forms GDPR-compliant\u003C\u002Fa>\u003Cbr \u002F>\nHow to use this plugin (the legal stuff explained): \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F2079293576\" rel=\"nofollow ugc\">Legal grounds for processing data\u003C\u002Fa>\u003Cbr \u002F>\nFull documentation: \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F2078998660\" rel=\"nofollow ugc\">The WordPress Site Owner’s Guide to GDPR\u003C\u002Fa>\u003Cbr \u002F>\nFor developers: \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F2082439194\" rel=\"nofollow ugc\">Developer Docs\u003C\u002Fa>\u003Cbr \u002F>\nKnowledge Base: \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F192708653\" rel=\"nofollow ugc\">Knowledge Base\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cp>☑ Allow both users and visitors without an account to view, export and delete their form submissions or request the site admin to do so;\u003Cbr \u002F>\n☑ Configure forms to be excluded from viewing, exporting or deleting.\u003Cbr \u002F>\n☑ Support for anonymization: allow admin to select which fields must be anonymized;\u003Cbr \u002F>\n☑ Track, manage and withdraw consent.\u003C\u002Fp>\n","The easiest way to make your Gravity Forms GDPR-compliant. Fully documented, extendable and developer-friendly.",400,18304,2,"2022-07-28T14:55:00.000Z","6.0.11","4.7",[136,137,138,23,24],"compliance","gdpr","gravity-forms","https:\u002F\u002Fwww.data443.com\u002Fgdpr-framework-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgdpr-for-gravity-forms.zip",{"attackSurface":142,"codeSignals":292,"taintFlows":329,"riskAssessment":330,"analyzedAt":335},{"hooks":143,"ajaxHandlers":265,"restRoutes":284,"shortcodes":285,"cronEvents":289,"entryPointCount":32,"unprotectedCount":131},[144,150,154,157,161,166,171,176,181,185,188,192,196,200,204,208,213,217,222,226,230,234,237,241,245,249,254,257,261],{"type":145,"name":146,"callback":147,"file":148,"line":149},"action","admin_menu","add_admin_menu","includes\\class-raptcha-admin-settings.php",44,{"type":145,"name":151,"callback":152,"file":148,"line":153},"admin_enqueue_scripts","enqueue_notification_assets",45,{"type":145,"name":151,"callback":155,"file":148,"line":156},"enqueue_admin_assets",46,{"type":145,"name":158,"callback":159,"file":148,"line":160},"admin_init","register_settings",47,{"type":145,"name":162,"callback":163,"file":164,"line":165},"login_enqueue_scripts","enqueue_login_assets","includes\\class-raptcha-core.php",114,{"type":145,"name":167,"callback":168,"file":169,"line":170},"login_form","add_login_captcha","includes\\class-raptcha-form-integrations.php",109,{"type":172,"name":173,"callback":174,"priority":34,"file":169,"line":175},"filter","authenticate","validate_login_captcha",110,{"type":172,"name":177,"callback":178,"priority":179,"file":169,"line":180},"render_block","inject_captcha_in_login_block",10,112,{"type":145,"name":182,"callback":183,"file":169,"line":184},"comment_form_after_fields","add_comment_captcha",117,{"type":145,"name":186,"callback":183,"file":169,"line":187},"comment_form_logged_in_after",118,{"type":172,"name":189,"callback":190,"file":169,"line":191},"preprocess_comment","validate_comment_captcha",119,{"type":172,"name":193,"callback":194,"priority":179,"file":169,"line":195},"wpcf7_spam","cf7_validate_captcha",186,{"type":172,"name":197,"callback":198,"priority":179,"file":169,"line":199},"wpcf7_display_message","cf7_customize_spam_message",189,{"type":145,"name":201,"callback":202,"priority":179,"file":169,"line":203},"wpforms_display_submit_before","wpforms_display_captcha",503,{"type":145,"name":205,"callback":206,"priority":179,"file":169,"line":207},"wpforms_process","wpforms_validate_captcha",506,{"type":172,"name":209,"callback":210,"priority":211,"file":169,"line":212},"the_content","fluentforms_process_nested_shortcodes",20,612,{"type":145,"name":214,"callback":215,"priority":179,"file":169,"line":216},"fluentform\u002Fbefore_insert_submission","fluentforms_validate_captcha",615,{"type":145,"name":218,"callback":219,"priority":220,"file":169,"line":221},"ninja_forms_display_after_fields","ninja_display_captcha_action",9999,777,{"type":172,"name":223,"callback":224,"priority":179,"file":169,"line":225},"ninja_forms_submit_data","ninja_validate_captcha",780,{"type":172,"name":227,"callback":228,"priority":179,"file":169,"line":229},"forminator_render_button_markup","forminator_inject_captcha",872,{"type":145,"name":231,"callback":232,"priority":179,"file":169,"line":233},"forminator_custom_form_submit_before_set_fields","forminator_validate_captcha",875,{"type":172,"name":209,"callback":235,"priority":211,"file":169,"line":236},"formidable_process_nested_shortcodes",972,{"type":172,"name":238,"callback":239,"priority":179,"file":169,"line":240},"frm_validate_entry","formidable_validate_captcha",975,{"type":145,"name":242,"callback":243,"priority":179,"file":169,"line":244},"af\u002Fform\u002Fafter_fields","af_display_captcha",1059,{"type":145,"name":246,"callback":247,"priority":179,"file":169,"line":248},"af\u002Fform\u002Fvalidate","af_validate_captcha",1062,{"type":145,"name":250,"callback":251,"file":252,"line":253},"plugins_loaded","raptcha_init","raptcha.php",59,{"type":145,"name":255,"callback":255,"file":252,"line":256},"raptcha_cleanup_challenges",143,{"type":172,"name":258,"callback":259,"priority":179,"file":252,"line":260},"plugin_action_links","raptcha_plugin_action_links",162,{"type":145,"name":262,"callback":263,"file":252,"line":264},"wp_enqueue_scripts","raptcha_enqueue_scripts",253,[266,271,273,276,278,282],{"action":267,"nopriv":268,"callback":269,"hasNonce":270,"hasCapCheck":268,"file":164,"line":175},"raptcha_generate_challenge",false,"ajax_generate_challenge",true,{"action":267,"nopriv":270,"callback":269,"hasNonce":270,"hasCapCheck":268,"file":164,"line":272},111,{"action":274,"nopriv":268,"callback":275,"hasNonce":270,"hasCapCheck":268,"file":164,"line":180},"raptcha_validate_challenge","ajax_validate_challenge",{"action":274,"nopriv":270,"callback":275,"hasNonce":270,"hasCapCheck":268,"file":164,"line":277},113,{"action":279,"nopriv":268,"callback":280,"hasNonce":268,"hasCapCheck":268,"file":169,"line":281},"kb_process_advanced_form_submit","kadence_validate_captcha",719,{"action":279,"nopriv":270,"callback":280,"hasNonce":268,"hasCapCheck":268,"file":169,"line":283},720,[],[286],{"tag":4,"callback":287,"file":288,"line":160},"render_shortcode","includes\\class-raptcha-shortcode.php",[290],{"hook":255,"callback":255,"file":252,"line":291},89,{"dangerousFunctions":293,"sqlUsage":294,"outputEscaping":297,"fileOperations":14,"externalRequests":11,"nonceChecks":92,"capabilityChecks":14,"bundledLibraries":328},[],{"prepared":295,"raw":11,"locations":296},6,[],{"escaped":298,"rawEcho":299,"locations":300},75,13,[301,304,306,308,310,312,314,316,318,320,322,324,326],{"file":148,"line":302,"context":303},261,"raw output",{"file":148,"line":305,"context":303},268,{"file":148,"line":307,"context":303},275,{"file":148,"line":309,"context":303},282,{"file":148,"line":311,"context":303},289,{"file":148,"line":313,"context":303},296,{"file":148,"line":315,"context":303},303,{"file":148,"line":317,"context":303},310,{"file":148,"line":319,"context":303},317,{"file":148,"line":321,"context":303},324,{"file":148,"line":323,"context":303},331,{"file":148,"line":325,"context":303},338,{"file":169,"line":327,"context":303},808,[],[],{"summary":331,"deductions":332},"The raptcha plugin v1.4.1 exhibits a generally positive security posture, with strong adherence to secure coding practices in several key areas. The absence of known CVEs and a clean vulnerability history are significant strengths. Notably, all SQL queries utilize prepared statements, and a high percentage of output is properly escaped, mitigating common risks like SQL injection and Cross-Site Scripting (XSS).\n\nHowever, the plugin presents some areas of concern. The static analysis reveals a moderate attack surface with 7 total entry points, of which 2 AJAX handlers lack authentication checks. This is the primary security risk identified, as it could allow unauthenticated users to trigger potentially harmful actions. While taint analysis shows no critical or high-severity flows, the presence of unprotected AJAX handlers still warrants caution. The plugin also includes file operations and a single cron event, which, while not inherently insecure, add to the overall attack surface and require careful review in conjunction with the identified unprotected entry points.\n\nIn conclusion, raptcha v1.4.1 is on solid ground due to its secure handling of database queries and output escaping, as well as its clean vulnerability history. The most significant weakness lies in the unprotected AJAX endpoints. Addressing these specific entry points should be the priority to further strengthen the plugin's security.",[333],{"reason":334,"points":179},"Unprotected AJAX handlers","2026-03-17T07:26:19.791Z",{"wat":337,"direct":346},{"assetPaths":338,"generatorPatterns":341,"scriptPaths":342,"versionParams":343},[339,340],"\u002Fwp-content\u002Fplugins\u002Fraptcha\u002Fassets\u002Fcss\u002Fraptcha-frontend.css","\u002Fwp-content\u002Fplugins\u002Fraptcha\u002Fassets\u002Fjs\u002Fraptcha-frontend.js",[],[340],[344,345],"raptcha\u002Fassets\u002Fcss\u002Fraptcha-frontend.css?ver=","raptcha\u002Fassets\u002Fjs\u002Fraptcha-frontend.js?ver=",{"cssClasses":347,"htmlComments":355,"htmlAttributes":358,"restEndpoints":361,"jsGlobals":362,"shortcodeOutput":365},[348,349,350,351,352,353,354],"raptcha-puzzle-container","raptcha-drag-drop","raptcha-image-piece","raptcha-slider","raptcha-slider-track","raptcha-slider-thumb","raptcha-message",[356,357],"\u003C!-- Raptcha Captcha Start -->","\u003C!-- Raptcha Captcha End -->",[359,360],"data-raptcha-puzzle-id","data-raptcha-settings",[],[363,364],"raptchaFrontend","raptcha_frontend_params",[366],"[raptcha_captcha]"]