[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f12rrbQp8Os8FEqRckxS4JFVql7wGXd4nLDXzNMxG7R0":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":37,"analysis":148,"fingerprints":202},"rob-rat-out-blocker","ROB (rat out blocker)","1.1.1","stasionok","https:\u002F\u002Fprofiles.wordpress.org\u002Fstasionok\u002F","\u003Cp>With this simple plugin you can restrict extra external requests made with internal WordPress WP_Http class.\u003Cbr \u002F>\nJust put in the filter rules field what you wish to restrict. One url part or url regex per line.\u003Cbr \u002F>\nBy default, the plugin returns WP_Error answer for restricted requests. But you can put in response your custom response data.\u003C\u002Fp>\n","Restrict execution of certain external requests with partial url or even regex to prevent personal data leakage (as example)",10,2421,0,"2025-06-15T08:57:00.000Z","6.8.5","5.0","7.0",[19,20,21,22,23],"block","external-request","request","safety","security","https:\u002F\u002Fweb-marshal.ru\u002Frob-rat-out-blocker\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Frob-rat-out-blocker.1.1.1.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":31,"total_installs":32,"avg_security_score":33,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},4,5020,96,183,76,"2026-04-04T18:41:12.531Z",[38,57,83,107,127],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":11,"downloaded":46,"rating":13,"num_ratings":13,"last_updated":47,"tested_up_to":15,"requires_at_least":16,"requires_php":48,"tags":49,"homepage":55,"download_link":56,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"blackswan-block-external-request","BlackSwan | Block External Request","2.6.2","BlackSwanDev","https:\u002F\u002Fprofiles.wordpress.org\u002Fblackswanlab\u002F","\u003Cp>\u003Cstrong>BlackSwan Block External Request\u003C\u002Fstrong> gives you granular control over every outgoing connection your WordPress site makes — both server-side PHP requests and browser-loaded JS\u002FCSS resources.\u003C\u002Fp>\n\u003Cp>WordPress, plugins, and themes constantly send background HTTP requests: update checks, license pings, analytics, font downloads, CDN calls, and more. On slow servers or restricted hosting environments, these requests can add \u003Cstrong>seconds\u003C\u002Fstrong> to every admin page load.\u003C\u002Fp>\n\u003Cp>This plugin lets you \u003Cstrong>block what you don’t need\u003C\u002Fstrong> and \u003Cstrong>keep what you do\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Ch4>What it does\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Server-side HTTP Blocking (PHP)\u003C\u002Fstrong>\u003Cbr \u002F>\nIntercepts outgoing \u003Ccode>wp_remote_get\u003C\u002Fcode> \u002F \u003Ccode>wp_remote_post\u003C\u002Fcode> calls via the \u003Ccode>pre_http_request\u003C\u002Fcode> filter. Add domains to the blacklist and they’ll be blocked before the request is even made. Whitelist specific URL patterns to let essential requests through (e.g. plugin update API).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Browser-side Resource Blocking (JS\u002FCSS by Domain)\u003C\u002Fstrong>\u003Cbr \u002F>\nDeregisters enqueued JavaScript and CSS files loaded from blacklisted external domains. Toggle separately for admin panel and public frontend. Your own site’s assets are never touched.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Block Specific Resources (by URL)\u003C\u002Fstrong>\u003Cbr \u002F>\nBlock individual JS or CSS files by full URL, partial path, or even just a filename — works for both local and external resources. Per-item backend\u002Ffrontend toggle. Perfect for removing unwanted plugin assets without editing code.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Blacklist & whitelist with inline edit, delete, and delete-all\u003C\u002Fli>\n\u003Cli>Block external JS\u002FCSS by domain (backend, frontend, or both)\u003C\u002Fli>\n\u003Cli>Block specific resources by URL pattern (local or external)\u003C\u002Fli>\n\u003Cli>One-click pause\u002Fresume — instantly disable all blocking\u003C\u002Fli>\n\u003Cli>Safe mode via \u003Ccode>?bswan-safe=1\u003C\u002Fcode> — emergency bypass for any admin page\u003C\u002Fli>\n\u003Cli>Settings page auto-bypasses resource blocking so you never lock yourself out\u003C\u002Fli>\n\u003Cli>Export\u002Fimport all settings as a single JSON file\u003C\u002Fli>\n\u003Cli>AJAX-powered save — no page reloads\u003C\u002Fli>\n\u003Cli>Query Monitor integration — detect, activate, or install from settings\u003C\u002Fli>\n\u003Cli>All settings stored as a single JSON option with \u003Ccode>autoload=no\u003C\u002Fcode> for performance\u003C\u002Fli>\n\u003Cli>Fully standalone — zero external dependencies (inline Lucide SVG icons)\u003C\u002Fli>\n\u003Cli>Modern liquid glass UI with dot-grid background\u003C\u002Fli>\n\u003Cli>WordPress native postbox layout with collapsible sections\u003C\u002Fli>\n\u003Cli>Translation-ready with full text domain support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Who is this for?\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Sites on slow or restricted hosting where external calls cause timeouts\u003C\u002Fli>\n\u003Cli>Developers debugging performance issues\u003C\u002Fli>\n\u003Cli>Agencies managing client sites that don’t need update checks\u003C\u002Fli>\n\u003Cli>Anyone who wants a faster wp-admin experience\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Developer Hooks\u003C\u002Fh4>\n\u003Cp>Two filters are available for developers to customize blocking behavior programmatically. These run on every page load and merge with the values from the settings page.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>\u003Ccode>BlackSwan\\block_external_request\\block_url_list\u003C\u002Fcode>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Filter the array of blocked domain strings. Each entry is matched via \u003Ccode>strpos()\u003C\u002Fcode> against the full request URL.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter( 'BlackSwan\\block_external_request\\block_url_list', function( $domains ) {\n    $domains[] = 'analytics.example.com';\n    return $domains;\n});\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>\u003Ccode>BlackSwan\\block_external_request\\whitelist_urls\u003C\u002Fcode>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Filter the array of whitelisted URL patterns. If a blocked URL also matches a whitelist pattern (via \u003Ccode>strpos()\u003C\u002Fcode>), the request is allowed through.\u003C\u002Fp>\n\u003Cpre>\u003Ccode>add_filter( 'BlackSwan\\block_external_request\\whitelist_urls', function( $patterns ) {\n    $patterns[] = '\u002F\u002Fapi.example.com\u002Fv2\u002Flicense';\n    return $patterns;\n});\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>Whitelist patterns take priority over blacklist domains. Both filters accept and return a flat array of strings.\u003C\u002Fp>\n\u003Ch4>Links\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Famirhp.com\u002F\" rel=\"nofollow ugc\">Developer — AmirhpCom\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fblackswandev.com\u002F\" rel=\"nofollow ugc\">BlackSwan\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fblackswandevcom\u002Fblackswan-block-external-request\u002F\" rel=\"nofollow ugc\">Plugin GitHub Page\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fblackswan-block-external-request\u002Freviews\u002F#new-post\" rel=\"ugc\">Rate 5-Star\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fplugin\u002Fblackswan-block-external-request\u002F\" rel=\"ugc\">Support & Issues\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Copyright\u003C\u002Fh3>\n\u003Cp>BlackSwan Block External Request is free software distributed under the terms of the GNU General Public License v2 or later.\u003C\u002Fp>\n\u003Cp>Copyright (c) AmirhpCom — \u003Ca href=\"https:\u002F\u002Famirhp.com\u002F\" rel=\"nofollow ugc\">amirhp.com\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>This plugin is developed and maintained by \u003Ca href=\"https:\u002F\u002Fblackswandev.com\u002F\" rel=\"nofollow ugc\">BlackSwan Lab\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>You are free to use, modify, and distribute this plugin under the GPLv2 license. The developers are not responsible for any issues caused by misconfigured blocking rules. Always maintain proper backups before making changes to your site’s HTTP request behavior.\u003C\u002Fp>\n","Block unwanted external HTTP requests in WordPress. Blacklist\u002Fwhitelist management, resource blocking, and one-click pause.",1113,"2026-03-09T20:47:00.000Z","5.4",[50,51,52,53,54],"blacklist","block-http-requests","external-requests","performance","whitelist","https:\u002F\u002Fgithub.com\u002Fblackswandevcom\u002Fblackswan-block-external-request\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fblackswan-block-external-request.2.6.2.zip",{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":78,"download_link":79,"security_score":80,"vuln_count":81,"unpatched_count":13,"last_vuln_date":82,"fetched_at":28},"zero-spam","Zero Spam for WordPress","5.7.7","Ben Marshall","https:\u002F\u002Fprofiles.wordpress.org\u002Fbmarshall511\u002F","\u003Cp>Protect your WordPress website seamlessly with Zero Spam for WordPress! Eliminate spam and malicious attacks that can harm your online presence. Our plugin integrates effortlessly with \u003Ca href=\"https:\u002F\u002Fwww.zerospam.org\" rel=\"nofollow ugc\">Zero Spam\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwww.stopforumspam.com\u002F\" rel=\"nofollow ugc\">Stop Forum Spam\u003C\u002Fa>, and \u003Ca href=\"https:\u002F\u002Fwww.projecthoneypot.org\u002F\" rel=\"nofollow ugc\">Project Honeypot\u003C\u002Fa> to offer a strong defense system.\u003C\u002Fp>\n\u003Cp>Rest easy knowing that we utilize multiple detection methods to swiftly identify and halt potential threats. Whether it’s pesky spam, devious trolls, or cunning hackers, Zero Spam is here to protect your website.\u003C\u002Fp>\n\u003Ch4>Worry-free, Powerful Protection at Your Fingertips\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>No captchas or moderation queues — no longer a admin’s problem.\u003C\u002Fli>\n\u003Cli>Our system dynamically blocks threats, keeping your site safe.\u003C\u002Fli>\n\u003Cli>Integration with global IP reputation providers for enhanced security.\u003C\u002Fli>\n\u003Cli>Block IPs temporarily or permanently, keep unwanted visitors out.\u003C\u002Fli>\n\u003Cli>Geolocation tracks origins of threats, providing valuable insights.\u003C\u002Fli>\n\u003Cli>Ability to block countries, regions, zip\u002Fpostal codes & cities.\u003C\u002Fli>\n\u003Cli>REST API for programmatic settings management — perfect for CI\u002FCD, staging syncs, and automation.\u003C\u002Fli>\n\u003Cli>Utilize \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fsplorp\u002Fwordpress-comment-blacklist\" rel=\"nofollow ugc\">splorp’s Comment Blacklist\u003C\u002Fa> to strengthen your disallowed list.\u003C\u002Fli>\n\u003Cli>Block disposable & malicious email effortlessly with \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fdisposable\" rel=\"nofollow ugc\">disposable\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>Multiple techniques, including the renowned solution by \u003Ca href=\"https:\u002F\u002Fdavidwalsh.name\u002Fwordpress-comment-spam\" rel=\"nofollow ugc\">David Walsh\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Seamlessly integrates with popular plugins including:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce\u002F\" rel=\"ugc\">WooCommerce\u003C\u002Fa> — Secure customer registrations.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fgivewp.com\u002Fref\u002F1118\u002F\" rel=\"nofollow ugc\">GiveWP\u003C\u002Fa> — Prevents attempts to test stolen credit cards.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-user-avatar\u002F\" rel=\"ugc\">ProfilePress\u003C\u002Fa> — Keeps registrations safe & secure.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fmailchimp-for-wp\u002F\" rel=\"ugc\">Mailchimp for WordPress\u003C\u002Fa> — Protects sign-ups from abuse.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.gravityforms.com\u002F\" rel=\"nofollow ugc\">Gravity Forms\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcontact-form-7\u002F\" rel=\"ugc\">Contact Form 7\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpforms-lite\u002F\" rel=\"ugc\">WPForms\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fformidable\u002F\" rel=\"ugc\">Formidable Form Builder\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Ffluentform\u002F\" rel=\"ugc\">Fluent Forms\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwpdiscuz\u002F\" rel=\"ugc\">wpDiscuz\u003C\u002Fa> — Versatile form protection.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>With Zero Spam for WordPress, you not only get exceptional protection but also a reliable support that ensures your peace of mind.\u003C\u002Fp>\n\u003Ch4>Enhance Detection with Optional 3rd-Party Integrations\u003C\u002Fh4>\n\u003Cp>Zero Spam for WordPress can integrate optional services for enhanced spam detection. Before using these, we recommend reviewing their terms and privacy policies.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.zerospam.org\u002F\" rel=\"nofollow ugc\">Zero Spam\u003C\u002Fa>\u003C\u002Fstrong> – Utilize our real-time IP reputation analysis. Take a look at our \u003Ca href=\"https:\u002F\u002Fwww.zerospam.org\u002Fprivacy\u002F\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwww.zerospam.org\u002Fterms\u002F\" rel=\"nofollow ugc\">Terms of Use\u003C\u002Fa> for more details.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fipbase.com\u002F\" rel=\"nofollow ugc\">ipbase.com\u003C\u002Fa>\u003C\u002Fstrong> – Access detailed geolocation information of attackers. Familiarize yourself with their \u003Ca href=\"https:\u002F\u002Fipbase.com\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> & \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fterms-and-conditions\u002F41661719\" rel=\"nofollow ugc\">Terms of Use\u003C\u002Fa>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fipinfo.io\u002F\" rel=\"nofollow ugc\">ipinfo.io\u003C\u002Fa>\u003C\u002Fstrong> – Gather geolocation details of malicious users. Refer to their \u003Ca href=\"https:\u002F\u002Fipinfo.io\u002Fprivacy-policy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> & \u003Ca href=\"https:\u002F\u002Fipinfo.io\u002Fterms-of-service\" rel=\"nofollow ugc\">Terms of Use\u003C\u002Fa> for further information.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fipstack.com\u002F\" rel=\"nofollow ugc\">ipstack\u003C\u002Fa>\u003C\u002Fstrong> – Obtain extensive geolocation insights. Review their \u003Ca href=\"https:\u002F\u002Fwww.ideracorp.com\u002FLegal\u002FAPILayer\u002FPrivacyStatement\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> & \u003Ca href=\"https:\u002F\u002Fipstack.com\u002Fterms\" rel=\"nofollow ugc\">Terms of Use\u003C\u002Fa> to learn more.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.stopforumspam.com\u002F\" rel=\"nofollow ugc\">Stop Forum Spam\u003C\u002Fa>\u003C\u002Fstrong> – Verify if visitors’ IPs have been reported. Explore their \u003Ca href=\"https:\u002F\u002Fwww.stopforumspam.com\u002Fprivacy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwww.stopforumspam.com\u002Flegal\" rel=\"nofollow ugc\">Terms of Use\u003C\u002Fa> for additional details.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.projecthoneypot.org\u002F\" rel=\"nofollow ugc\">Project Honeypot\u003C\u002Fa>\u003C\u002Fstrong> – Check if visitors’ IPs have been flagged. Refer to their \u003Ca href=\"https:\u002F\u002Fwww.projecthoneypot.org\u002Fprivacy_policy.php\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fwww.projecthoneypot.org\u002Fterms_of_use.php\" rel=\"nofollow ugc\">Terms of Use\u003C\u002Fa> for more information.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdevelopers.google.com\u002Fmaps\" rel=\"nofollow ugc\">Google Maps\u003C\u002Fa>\u003C\u002Fstrong> – Plot attack locations on Google Maps. Please review their \u003Ca href=\"https:\u002F\u002Fwww.ideracorp.com\u002FLegal\u002FAPILayer\u002FPrivacyStatement\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> & \u003Ca href=\"https:\u002F\u002Fdevelopers.google.com\u002Fterms\u002Fsite-terms\" rel=\"nofollow ugc\">Terms of Use\u003C\u002Fa> for complete details.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Additionally, you have the option to contribute to Zero Spam’s improvement by enabling the sharing of detection information. For further information on the shared data, kindly refer to our \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FHighfivery\u002Fzero-spam-for-wordpress\u002Fwiki\u002FFAQ\" rel=\"nofollow ugc\">FAQ\u003C\u002Fa>.\u003C\u002Fp>\n","No spam, no scams, just seamless experiences with Zero Spam for WordPress - the shield your site deserves.",20000,1423449,82,142,"2026-03-12T13:51:00.000Z","6.9.4","6.9","8.2",[74,75,23,76,77],"firewall","protection","spam","spam-blocker","https:\u002F\u002Fwordpress.com\u002Fplugins\u002Fzero-spam\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fzero-spam.5.7.7.zip",92,5,"2024-04-15 00:00:00",{"slug":84,"name":85,"version":86,"author":87,"author_profile":88,"description":89,"short_description":90,"active_installs":91,"downloaded":92,"rating":93,"num_ratings":94,"last_updated":95,"tested_up_to":70,"requires_at_least":96,"requires_php":97,"tags":98,"homepage":102,"download_link":103,"security_score":104,"vuln_count":105,"unpatched_count":13,"last_vuln_date":106,"fetched_at":28},"booter-bots-crawlers-manager","Booter – Bots & Crawlers Manager","1.5.8","uPress","https:\u002F\u002Fprofiles.wordpress.org\u002Fupress\u002F","\u003Cp>Booter – Bots & Crawlers Manager is a preventative measure (treatment in advance) and treatment of damages caused by crawlers and bots.\u003Cbr \u002F>\nThe plugin uses a number of existing technologies which are known by crawlers and bots and takes them one step forward – smartly and almost completely automatically.\u003Cbr \u002F>\nTo allow the plugin to function correctly, you must follow the instructions and manually enter some data (which must be done by a human being to avoid errors).\u003C\u002Fp>\n\u003Ch4>At the prevention level\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Booter allows you to manage and create an advanced dynamic robots.txt file.\u003C\u002Fli>\n\u003Cli>View a 404 error log to see the most common bad links.\u003C\u002Fli>\n\u003Cli>Blocking bad bots that cause high server loads due to very frequent page crawls, or are used to search for security vulnerabilities.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>At the treatment level\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Booter allows you to limit the amount of requests from crawlers and bots, if or when they exceed the specified amount of requests per minute, it will be rejected for a specified period of time.\u003C\u002Fli>\n\u003Cli>Rejecting links that we do not want in the fastest way, not by just blocking but by sending the appropriate HTTP status code to make search engines forget them.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Instructions for use in case of damage treatment\u003C\u002Fh4>\n\u003Col>\n\u003Cli>Activate the plugin.\u003C\u002Fli>\n\u003Cli>Enable the 404 error log option.\u003C\u002Fli>\n\u003Cli>Set the access rate limit.\u003C\u002Fli>\n\u003Cli>Watch the 404 log, try to find common parts in the URLs that repeats most often.\u003C\u002Fli>\n\u003Cli>Enter the common parts to the “reject links” page, and ensure the rejection code is 410.\u003C\u002Fli>\n\u003Cli>Clear the 404 error log.\u003C\u002Fli>\n\u003Cli>Repeat the process once every few hours until the 404 error log remains blank.\u003C\u002Fli>\n\u003Cli>Check the status of your website’s index coverage every few days.\u003C\u002Fli>\n\u003C\u002Fol>\n","Booter - Bots & Crawlers Manager is a preventative measure (treatment in advance) and treatment of damages caused by crawlers and bots.",8000,69358,88,13,"2026-02-16T10:26:00.000Z","4.0","",[99,100,21,23,101],"hosting","rate-limit","upress","https:\u002F\u002Fbooter.app","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fbooter-bots-crawlers-manager.zip",99,1,"2026-01-25 00:00:00",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":115,"downloaded":116,"rating":117,"num_ratings":31,"last_updated":118,"tested_up_to":119,"requires_at_least":96,"requires_php":97,"tags":120,"homepage":125,"download_link":126,"security_score":80,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"manage-xml-rpc","Manage XML-RPC","1.0.2","brainvireinfo","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrainvireinfo\u002F","\u003Cp>You can now disable XML-RPC to avoid Brute force attack for given IPs or can even enable access for some IPs. XML-RPC on WordPress is actually an API that gives developers who build mobile apps, desktop apps and other services, the ability to talk to a WordPress site. The XML-RPC API that WordPress provides gives developers, a way to write applications (for you) that can do many of the things that you can do when logged into WordPress via the web interface.\u003C\u002Fp>\n\u003Ch4>Features\u003C\u002Fh4>\n\u003Cp>Block XML-RPC by following way.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Disable pingback.ping, pingback.extensions.getPingbacks and Unset X-Pingback from HTTP headers, that will block bots to access specified method.\u003C\u002Fli>\n\u003Cli>Disable\u002FBlock XML-RPC for all users.\u003C\u002Fli>\n\u003C\u002Ful>\n","Enable\u002FDisable XML-RPC for all or based on IP list, also you can control pingback and Unset X-Pingback from HTTP headers.",6000,64108,60,"2024-12-02T07:10:00.000Z","6.7.5",[121,122,23,123,124],"block-xml-rpc","brute-force-attacks","xml-rpc-pingback","xmlrpc-php-attack","http:\u002F\u002Fwww.brainvire.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmanage-xml-rpc.1.0.2.zip",{"slug":128,"name":129,"version":130,"author":131,"author_profile":132,"description":133,"short_description":134,"active_installs":115,"downloaded":135,"rating":136,"num_ratings":137,"last_updated":138,"tested_up_to":70,"requires_at_least":139,"requires_php":97,"tags":140,"homepage":144,"download_link":145,"security_score":146,"vuln_count":31,"unpatched_count":13,"last_vuln_date":147,"fetched_at":28},"oopspam-anti-spam","OOPSpam Anti-Spam: Spam Protection for WordPress Forms & Comments (No CAPTCHA)","1.2.64","OOPSpam Team","https:\u002F\u002Fprofiles.wordpress.org\u002Foopspam\u002F","\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.oopspam.com\u002F\" rel=\"nofollow ugc\">OOPSpam\u003C\u002Fa> is a modern anti-spam solution that uses advanced AI and machine learning to protect your WordPress forms and comments from spam. Our system has blocked over 1 billion spam attempts across 3.5M+ websites, maintaining 99.9% accuracy without compromising user privacy or accessibility.\u003C\u002Fp>\n\u003Cp>Unlike traditional CAPTCHA solutions that can hurt your conversion rates, OOPSpam works silently in the background, analyzing submissions against our extensive database of 500M+ malicious IPs and emails to catch both bot and human spammers.\u003C\u002Fp>\n\u003Ch3>Why Choose OOPSpam?\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>🚀 Zero Impact on User Experience\u003C\u002Fstrong>\u003Cbr \u002F>\n– No CAPTCHA puzzles or challenges that hurt conversions\u003Cbr \u002F>\n– Works silently in the background without JavaScript or tracking\u003Cbr \u002F>\n– Maintains fast website performance with server-side processing\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🛡️ Intelligent Spam Prevention\u003C\u002Fstrong>\u003Cbr \u002F>\n– Catch 99.9% of spam using advanced machine learning and contextual analysis\u003Cbr \u002F>\n– Protect against both automated bots and human spammers\u003Cbr \u002F>\n– Auto-detect spam patterns unique to your website’s context\u003Cbr \u002F>\n– Block spam from VPNs and known malicious sources\u003Cbr \u002F>\n– Prevent WooCommerce card testing attacks with advanced checkout protection\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🔒 Privacy-First Design\u003C\u002Fstrong>\u003Cbr \u002F>\n– GDPR-compliant with no data stored on our servers\u003Cbr \u002F>\n– Optional IP and email analysis for maximum privacy\u003Cbr \u002F>\n– All logs stored in your WordPress database\u003Cbr \u002F>\n– Remove sensitive information from messages automatically\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🌍 Smart Geographic Controls\u003C\u002Fstrong>\u003Cbr \u002F>\n– Target your relevant market by blocking specific countries\u003Cbr \u002F>\n– Filter submissions by language to focus on your audience\u003Cbr \u002F>\n– Prevent fraud and abuse from high-risk regions\u003C\u002Fp>\n\u003Cp>\u003Cstrong>⚙️ Powerful Management Tools\u003C\u002Fstrong>\u003Cbr \u002F>\n– View and manage spam entries with detailed detection reasons\u003Cbr \u002F>\n– Export data for analysis or reporting\u003Cbr \u002F>\n– Rate limiting to prevent abuse and click fraud\u003Cbr \u002F>\n– Manual override options for complete control\u003C\u002Fp>\n\u003Cp>\u003Cstrong>🏢 Perfect for Agencies\u003C\u002Fstrong>\u003Cbr \u002F>\n– Use one API key across unlimited websites\u003Cbr \u002F>\n– Centralized logging option in OOPSpam dashboard\u003Cbr \u002F>\n– Consistent protection across all your client sites\u003C\u002Fp>\n\u003Ch3>What Our Users Say\u003C\u002Fh3>\n\u003Cblockquote>\n\u003Cp>“It’s eliminated all spam, and even the need for CAPTCHA. Setup is quick and the interface is intuitive.” – @gotmick\u003C\u002Fp>\n\u003Cp>“Very responsive support and dev team. Customer support was amazing, response time was immediate and issues were solved instantly.” – @viv18germany\u003C\u002Fp>\n\u003Cp>“Pricing is perfect for agencies as they do tiers by actual # of API calls and no limit on the number of sites you can install this on.” – @squarecandy\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch3>By the Numbers\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>3.5M+\u003C\u002Fstrong> websites protected daily\u003C\u002Fli>\n\u003Cli>\u003Cstrong>1B+\u003C\u002Fstrong> spam attempts blocked\u003C\u002Fli>\n\u003Cli>\u003Cstrong>99.9%\u003C\u002Fstrong> detection accuracy\u003C\u002Fli>\n\u003Cli>\u003Cstrong>24\u002F7\u003C\u002Fstrong> customer support\u003C\u002Fli>\n\u003Cli>\u003Cstrong>500M+\u003C\u002Fstrong> malicious IPs and emails in our database\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Works With Everything\u003C\u002Fh3>\n\u003Cp>The plugin seamlessly protects your \u003Cstrong>comments\u003C\u002Fstrong>, \u003Cstrong>site search\u003C\u002Fstrong>, and \u003Cstrong>all major form plugins\u003C\u002Fstrong>. No extra configuration needed – it just works!\u003C\u002Fp>\n\u003Ch3>Supported form & comment solutions:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>WooCommerce Order & Registration\u003C\u002Fli>\n\u003Cli>BuddyPress\u003C\u002Fli>\n\u003Cli>Elementor Forms\u003C\u002Fli>\n\u003Cli>Ninja Forms\u003C\u002Fli>\n\u003Cli>Gravity Forms\u003C\u002Fli>\n\u003Cli>Kadence Form Block and Form (Adv) Block\u003C\u002Fli>\n\u003Cli>Fluent Forms\u003C\u002Fli>\n\u003Cli>Breakdance Forms\u003C\u002Fli>\n\u003Cli>WS Form\u003C\u002Fli>\n\u003Cli>WPDiscuz\u003C\u002Fli>\n\u003Cli>Forminator\u003C\u002Fli>\n\u003Cli>WPForms\u003C\u002Fli>\n\u003Cli>Formidable Forms\u003C\u002Fli>\n\u003Cli>Contact Form 7\u003C\u002Fli>\n\u003Cli>Bricks Forms\u003C\u002Fli>\n\u003Cli>Toolset Forms\u003C\u002Fli>\n\u003Cli>Piotnet Forms \u003C\u002Fli>\n\u003Cli>GiveWP Donation Forms\u003C\u002Fli>\n\u003Cli>MailPoet\u003C\u002Fli>\n\u003Cli>Beaver Builder Contact Form\u003C\u002Fli>\n\u003Cli>Ultimate Member\u003C\u002Fli>\n\u003Cli>MemberPress\u003C\u002Fli>\n\u003Cli>Paid Memberships Pro\u003C\u002Fli>\n\u003Cli>Jetpack Forms\u003C\u002Fli>\n\u003Cli>MC4WP: Mailchimp for WordPress\u003C\u002Fli>\n\u003Cli>SureForms\u003C\u002Fli>\n\u003Cli>SureCart\u003C\u002Fli>\n\u003Cli>QuForm\u003C\u002Fli>\n\u003Cli>HappyForms Pro\u003C\u002Fli>\n\u003Cli>Avada Forms\u003C\u002Fli>\n\u003Cli>MetForm\u003C\u002Fli>\n\u003Cli>ACF Frontend Forms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>OOPSpam Anti-Spam WordPress plugin requires minimal configuration. Check out our \u003Ca href=\"https:\u002F\u002Fhelp.oopspam.com\u002Fwordpress\u002F\" rel=\"nofollow ugc\">comprehensive WordPress guide\u003C\u002Fa> for detailed setup instructions. To get started quickly, \u003Ca href=\"https:\u002F\u002Fapp.oopspam.com\u002FIdentity\u002FAccount\u002FRegister\" rel=\"nofollow ugc\">get a key\u003C\u002Fa> and paste it into the appropriate setting field under \u003Cem>Settings=>OOPSpam Anti-Spam\u003C\u002Fem>. If you have a contact form plugin, make sure you enable spam protection on the settings page.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Please note\u003C\u002Fstrong>: This is a premium plugin. You need an \u003Ca href=\"https:\u002F\u002Fapp.oopspam.com\u002FIdentity\u002FAccount\u002FRegister\" rel=\"nofollow ugc\">OOPSpam Anti-Spam API key\u003C\u002Fa> to use the plugin. Each account comes with 40 free spam checks per month.\u003Cbr \u002F>\nIf you already use OOPSpam on other platforms, you can use the same API key for this plugin.\u003C\u002Fp>\n","Protect your forms from spam with 99.9% accuracy - no CAPTCHA, no JavaScript, no tracking. Trusted by 3.5M+ websites.",221611,98,45,"2026-03-13T15:10:00.000Z","3.6",[141,142,143,23,77],"anti-spam","contact-forms","form-protection","https:\u002F\u002Fwww.oopspam.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Foopspam-anti-spam.1.2.64.zip",93,"2026-03-23 00:00:00",{"attackSurface":149,"codeSignals":170,"taintFlows":190,"riskAssessment":191,"analyzedAt":201},{"hooks":150,"ajaxHandlers":166,"restRoutes":167,"shortcodes":168,"cronEvents":169,"entryPointCount":13,"unprotectedCount":13},[151,157,162],{"type":152,"name":153,"callback":154,"file":155,"line":156},"action","admin_notices","closure","bootstrap.php",69,{"type":152,"name":158,"callback":159,"file":160,"line":161},"admin_menu","register_settings_pages","controller\\class-rob-common.php",136,{"type":152,"name":163,"callback":163,"priority":164,"file":160,"line":165},"pre_http_request",999,150,[],[],[],[],{"dangerousFunctions":171,"sqlUsage":172,"outputEscaping":174,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":13,"bundledLibraries":189},[],{"prepared":13,"raw":13,"locations":173},[],{"escaped":175,"rawEcho":81,"locations":176},14,[177,180,183,185,187],{"file":160,"line":178,"context":179},204,"raw output",{"file":181,"line":182,"context":179},"views\\requirements-error.php",7,{"file":184,"line":175,"context":179},"views\\settings-page.php",{"file":184,"line":186,"context":179},15,{"file":184,"line":188,"context":179},37,[],[],{"summary":192,"deductions":193},"Based on the static analysis and vulnerability history, the 'rob-rat-out-blocker' plugin version 1.1.1 exhibits a strong security posture with no immediately apparent vulnerabilities. The absence of any detected entry points that lack authentication or permission checks, coupled with the complete avoidance of dangerous functions and raw SQL queries, indicates a well-implemented and secure codebase. The plugin also demonstrates good practices in output escaping, with a high percentage of outputs being properly sanitized. Furthermore, the clean vulnerability history, with zero known CVEs, reinforces the impression of a secure plugin. However, the absence of nonce checks and capability checks is a minor concern, as these are fundamental security mechanisms in WordPress that can prevent certain types of attacks, especially if the attack surface were to grow in future versions or if interacting with other plugins. Despite this, the current data suggests a low-risk plugin.",[194,196,198],{"reason":195,"points":81},"No nonce checks implemented",{"reason":197,"points":81},"No capability checks implemented",{"reason":199,"points":200},"Output escaping could be improved",3,"2026-03-17T00:51:51.796Z",{"wat":203,"direct":208},{"assetPaths":204,"generatorPatterns":205,"scriptPaths":206,"versionParams":207},[],[],[],[],{"cssClasses":209,"htmlComments":210,"htmlAttributes":211,"restEndpoints":212,"jsGlobals":213,"shortcodeOutput":214},[],[],[],[],[],[]]