[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fYeNFJEtVP1DsBO6zJprYNZc-fO06bPveDnVtX9pM7yo":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":128,"fingerprints":223},"thinkcaptcha","ThinkCaptcha – Login Captcha, Register Captcha & Checkout reCAPTCHA","1.1.6","ThinkPlugin","https:\u002F\u002Fprofiles.wordpress.org\u002Fthinkplugin\u002F","\u003Cp>\u003Cstrong>Enhance Your Website’s Login Security with the Power of Google reCAPTCHA\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Are you tired of spam registrations, brute-force login attacks, and junk form submissions?\u003Cbr \u002F>\nThinkCaptcha is the definitive \u003Cstrong>Google reCAPTCHA\u003C\u002Fstrong> plugin for WordPress, designed to provide maximum \u003Cstrong>login security\u003C\u002Fstrong> with a simple and modern interface.\u003Cbr \u002F>\nThinkCaptcha allows you to easily add a \u003Cstrong>login captcha\u003C\u002Fstrong>, \u003Cstrong>register captcha\u003C\u002Fstrong>, and password reset captcha to your most vulnerable forms using Google’s user-friendly “I’m not a robot” checkbox (reCAPTCHA v2).\u003Cbr \u002F>\nThis is the ultimate \u003Cstrong>spam protection\u003C\u002Fstrong> and \u003Cstrong>bot protection\u003C\u002Fstrong> your site needs.\u003Cbr \u002F>\n\u003Cstrong>Free Features for Essential Security:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>WordPress Login Captcha\u003C\u002Fstrong>: Implement a secure \u003Cstrong>login captcha\u003C\u002Fstrong> on your \u003Ccode>\u002Fwp-login.php\u003C\u002Fcode> page to stop brute-force attacks and enhance \u003Cstrong>login security\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce Login Captcha\u003C\u002Fstrong>: Protect your customer accounts by adding a \u003Cstrong>WooCommerce captcha\u003C\u002Fstrong> to the login form.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce Register Captcha\u003C\u002Fstrong>: Stop fake user sign-ups with a robust \u003Cstrong>register captcha\u003C\u002Fstrong> on your WooCommerce registration form.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Password Reset Captcha\u003C\u002Fstrong>: Secure both WordPress and WooCommerce password reset forms from bot abuse.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Optimized for Performance\u003C\u002Fstrong>: The Google reCAPTCHA script loads asynchronously and only on pages where it is needed.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>🚀 Upgrade to ThinkCaptcha Pro for Ultimate Form Security!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Spammers target every form on your site.\u003Cbr \u002F>\nThinkCaptcha Pro extends this powerful \u003Cstrong>reCAPTCHA\u003C\u002Fstrong> protection to create a comprehensive security shield.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>WooCommerce Checkout Captcha\u003C\u002Fstrong>: The best way to prevent fraudulent orders and spam.\u003Cbr \u002F>\nAdd a \u003Cstrong>checkout captcha\u003C\u002Fstrong> to your WooCommerce checkout page.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Contact Form 7 reCAPTCHA\u003C\u002Fstrong>: Our most requested feature!\u003Cbr \u002F>\nAdd a \u003Cstrong>Contact Form 7 reCAPTCHA\u003C\u002Fstrong> to every contact form and eliminate junk mail forever.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WPForms Captcha\u003C\u002Fstrong>: Secure all forms created with WPForms with a powerful \u003Cstrong>WPForms captcha\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Register Captcha\u003C\u002Fstrong>: Block spambots from creating user accounts on your main WordPress registration form with a secure \u003Cstrong>register captcha\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fthinkplugin.com\u002Fthinkcaptcha-pro\u002F\" rel=\"nofollow ugc\">Secure your entire website today. Get ThinkCaptcha Pro Now!\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Third-Party Service Disclosure\u003C\u002Fh3>\n\u003Cp>This plugin connects to the Google reCAPTCHA service to protect forms from bots and spam.\u003Cbr \u002F>\n* \u003Cstrong>Service Used:\u003C\u002Fstrong> Google reCAPTCHA (a service provided by Google LLC).\u003Cbr \u002F>\n* \u003Cstrong>What Data is Sent:\u003C\u002Fstrong> To verify if a user is human, this service collects and sends hardware and software information, such as device and application data, to Google.\u003Cbr \u002F>\nThe user’s IP address is also collected.\u003Cbr \u002F>\n* \u003Cstrong>When Data is Sent:\u003C\u002Fstrong> This data is sent whenever a form protected by this plugin is displayed and submitted.\u003Cbr \u002F>\n* \u003Cstrong>Links to Policies:\u003C\u002Fstrong> The use of the Google reCAPTCHA service is subject to Google’s \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fprivacy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fterms\" rel=\"nofollow ugc\">Terms of Service\u003C\u002Fa>.\u003C\u002Fp>\n","Secure WordPress & WooCommerce forms with Google reCAPTCHA. Stop spam, bots, and brute-force attacks effectively.",40,333,0,"2025-11-30T10:34:00.000Z","6.9.4","5.5","",[19,20,21,22,23],"google-recaptcha","login-captcha","register-captcha","security","woocommerce-captcha","https:\u002F\u002Fthinkplugin.com\u002Fthinkcaptcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fthinkcaptcha.1.1.6.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"thinkplugin",2,30,94,"2026-04-04T03:35:24.230Z",[37,59,77,93,110],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":26,"num_ratings":47,"last_updated":48,"tested_up_to":49,"requires_at_least":50,"requires_php":16,"tags":51,"homepage":56,"download_link":57,"security_score":58,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"power-captcha-recaptcha","Power Captcha reCAPTCHA","1.1.0","Denis Alemán","https:\u002F\u002Fprofiles.wordpress.org\u002Fdenisaleman\u002F","\u003Cp>Protect your WordPress, WooCommerce, and Contact Form 7 forms from spam, brute-force attacks, and fake accounts using Google reCAPTCHA.\u003C\u002Fp>\n\u003Cp>Power Captcha reCAPTCHA supports 3 Google reCAPTCHA types integrated into 6 common WordPress forms, including login and comment forms, 7 WooCommerce forms, and Contact Form 7.\u003C\u002Fp>\n\u003Ch3>3 CAPTCHA Types\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Score-based (v3) CAPTCHA.\u003C\u002Fstrong> Seamless detection.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>“I’m not a robot” CAPTCHA checkbox.\u003C\u002Fstrong> Verification requests with a challenge.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Invisible reCAPTCHA.\u003C\u002Fstrong> Improved, challenge-based CAPTCHA without a checkbox.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>6 WordPress Forms\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Login form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Register form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comment form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lost password form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reset password form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Register form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>7 WooCommerce Forms\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Login form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Register form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Checkout form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Review form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Reset password form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Lost password form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contact Form 7\u003C\u002Fh3>\n\u003Cp>As of version 1.0.7, Power Captcha reCAPTCHA integrates with Contact Form 7. You can easily add the Power Captcha reCAPTCHA field to your Contact Form 7 forms.\u003C\u002Fp>\n\u003Ch3>Activity Report\u003C\u002Fh3>\n\u003Cp>The Activity Report feature for the plugin provides users with a detailed overview of captcha interactions. It tracks and displays the number of solved, failed, and empty captchas, offering a daily breakdown to monitor performance trends. Stay informed with clear insights into your captcha performance.\u003C\u002Fp>\n","Protect WordPress\u002FWooCommerce\u002FContact Form 7 forms from spam, brute-force attacks, fake comments, accounts, or registrations with Google reCAPTCHA.",1000,6098,3,"2025-03-09T01:27:00.000Z","6.8.0","5.0",[52,53,54,19,55],"anti-spam-security","captcha","comment-form","login-security","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fpower-captcha-recaptcha\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fpower-captcha-recaptcha.1.1.0.zip",92,{"slug":60,"name":61,"version":62,"author":63,"author_profile":64,"description":65,"short_description":66,"active_installs":26,"downloaded":67,"rating":26,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":17,"tags":72,"homepage":74,"download_link":75,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"lana-security","Lana Security","1.1.8","Lana Codes","https:\u002F\u002Fprofiles.wordpress.org\u002Flanacodes\u002F","\u003Cp>Security plugin to protect website.\u003C\u002Fp>\n\u003Ch4>Video\u003C\u002Fh4>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FGAZxD6iMg5o?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch4>Encrypt Version\u003C\u002Fh4>\n\u003Cp>Encrypt WordPress version in frontend scripts and styles, and remove generator\u003C\u002Fp>\n\u003Ch4>Insecure Files\u003C\u002Fh4>\n\u003Cp>Block insecure files (readme.html, license.txt) with htaccess\u003C\u002Fp>\n\u003Ch4>Login Captcha\u003C\u002Fh4>\n\u003Cp>Add simple number captcha in WordPress login form\u003C\u002Fp>\n\u003Ch4>Registration Captcha\u003C\u002Fh4>\n\u003Cp>Add simple number captcha in WordPress registration form\u003C\u002Fp>\n\u003Ch4>Lost Password Captcha\u003C\u002Fh4>\n\u003Cp>Add simple number captcha in WordPress lost password form\u003C\u002Fp>\n\u003Ch4>Security Logs\u003C\u002Fh4>\n\u003Cp>Monitors: activate and deactivate Lana Security plugin, password change (roles: only administrator), delete user (roles: all)\u003C\u002Fp>\n\u003Ch4>Login Logs\u003C\u002Fh4>\n\u003Cp>Monitors: success and failed login with comment\u003C\u002Fp>\n\u003Ch4>Lana Codes\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Flana.codes\u002Flana-product\u002Flana-security\u002F\" rel=\"nofollow ugc\">Lana Security\u003C\u002Fa>\u003C\u002Fp>\n","Security plugin to protect website with login captcha, hide version number and security monitor",4198,1,"2022-05-28T19:12:00.000Z","5.9.13","4.0",[53,20,73,55,22],"login-log","http:\u002F\u002Flana.codes\u002Flana-product\u002Flana-security\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flana-security.1.1.8.zip",85,{"slug":78,"name":79,"version":80,"author":78,"author_profile":81,"description":82,"short_description":83,"active_installs":26,"downloaded":84,"rating":85,"num_ratings":32,"last_updated":86,"tested_up_to":87,"requires_at_least":71,"requires_php":88,"tags":89,"homepage":17,"download_link":92,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wprecaptcha","WP reCaptcha","1.0","https:\u002F\u002Fprofiles.wordpress.org\u002Fwprecaptcha\u002F","\u003Cp>WP reCAPTCHA protects your site from spam and abuse. It uses advanced risk analysis techniques to tell humans and bots apart.\u003C\u002Fp>\n\u003Cp>WP recaptcha is the only WP Plugin curretly offering reCAPTCHA v3 for Gravity Forms.\u003C\u002Fp>\n\u003Cp>WP recaptcha Supports all Google reCAPTCHA versions:\u003Cbr \u002F>\n* Version 3\u003Cbr \u002F>\n* Version 2 – checkbox\u003Cbr \u002F>\n* Version 2 – invisible\u003C\u002Fp>\n\u003Cp>WP recaptcha is very simple to use! just select the page that contains the form – WP recaptcha will automatically generate the required recaptcha code.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fdemo.wprecaptcha.com\u002F\" rel=\"nofollow ugc\">View Demo\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Free Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Add Google reCAPTCHA to:\n\u003Cul>\n\u003Cli>Login Form\u003C\u002Fli>\n\u003Cli>Register Form\u003C\u002Fli>\n\u003Cli>Lost Password Form\u003C\u002Fli>\n\u003Cli>Reset Password Form\u003C\u002Fli>\n\u003Cli>Comments Form\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Disable Google reCAPTCHA for registered users\u003C\u002Fli>\n\u003Cli>Select Google reCAPTCHA language manually or Switch Languages Automatically.\u003C\u002Fli>\n\u003Cli>Supports Google reCAPTCHA:\n\u003Cul>\n\u003Cli>Version 3\u003C\u002Fli>\n\u003Cli>Version 2 – checkbox\u003C\u002Fli>\n\u003Cli>Version 2 – invisible\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Available Google reCAPTCHA extended settings for:\n\u003Cul>\n\u003Cli>Version 3\n\u003Cul>\n\u003Cli>Hide badge for Desktop devices\u003C\u002Fli>\n\u003Cli>Hide badge for Mobile devices\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Version 2 – checkbox\n\u003Cul>\n\u003Cli>Select theme\n\u003Cul>\n\u003Cli>Light\u003C\u002Fli>\n\u003Cli>Dark\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Select Size\n\u003Cul>\n\u003Cli>Normal\u003C\u002Fli>\n\u003Cli>Compact\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Version 2 – invisible\n\u003Cul>\n\u003Cli>Select Google badge position:\n\u003Cul>\n\u003Cli>Bottom Right\u003C\u002Fli>\n\u003Cli>Bottom Left\u003C\u002Fli>\n\u003Cli>Inline\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Hide badge for Desktop devices\u003C\u002Fli>\n\u003Cli>Hide badge for Mobile devices\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>Compatible with latest WordPress version\u003C\u002Fli>\n\u003Cli>Configure all subsites on the network\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Pro Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>All features from Free version included plus:\u003Cbr \u002F>\n  * Compatible with:\u003Cbr \u002F>\n      * Gravity Forms\u003Cbr \u002F>\n      * Contact Form 7\u003Cbr \u002F>\n      * Jetpack Contact Form\u003Cbr \u002F>\n      * Contact Form by WPForms\u003Cbr \u002F>\n      * MailChimp for WordPress\u003Cbr \u002F>\n  * Compatible with Woocommerce:\u003Cbr \u002F>\n      * Login Form\u003Cbr \u002F>\n      * Register Form\u003Cbr \u002F>\n      * Lost Password Form\u003Cbr \u002F>\n      * Order Form\u003Cbr \u002F>\n  * IndividualSettings for each form use Shortcode Generator\u003Cbr \u002F>\n  * 24x7x365 support\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.wprecaptcha.com\u002F\" rel=\"nofollow ugc\">Upgrade to Pro\u003C\u002Fa>\u003C\u002Fp>\n","Add Google reCaptcha to WordPress forms. Easy to add, advanced security for your forms.",3808,60,"2021-07-12T20:46:00.000Z","5.8.13","5.2.4",[52,53,90,19,91],"google-captcha","recaptcha","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwprecaptcha.zip",{"slug":94,"name":95,"version":96,"author":97,"author_profile":98,"description":99,"short_description":100,"active_installs":101,"downloaded":102,"rating":26,"num_ratings":68,"last_updated":103,"tested_up_to":104,"requires_at_least":105,"requires_php":17,"tags":106,"homepage":108,"download_link":109,"security_score":76,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"frontend-dashboard-captcha","Frontend Dashboard Captcha","1.4","M A Vinoth Kumar","https:\u002F\u002Fprofiles.wordpress.org\u002Fvinoth06\u002F","\u003Cp>Frontend Dashboard Captcha WordPress plugin is a supportive plugin for Frontend Dashboard to protect against spam in Login and Register form.\u003C\u002Fp>\n\u003Cp>=Login=\u003C\u002Fp>\n\u003Cp>Stop Brute force attack on login page using the Captcha\u003C\u002Fp>\n\u003Cp>=Register=\u003C\u002Fp>\n\u003Cp>Stop botnet registration on register page using the Captcha\u003C\u002Fp>\n\u003Cp>=Google Captcha=\u003C\u002Fp>\n\u003Cp>Uses Google captcha through their API service.\u003C\u002Fp>\n","Frontend Dashboard Captcha WordPress plugin is a supportive plugin for Frontend Dashboard to protect against spam in Login and Register form.",90,78659,"2020-05-18T16:53:00.000Z","5.4.19","4.6",[107,94,20,21],"dashboard","https:\u002F\u002Fbuffercode.com\u002Fplugin\u002Ffrontend-dashboard-captcha","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ffrontend-dashboard-captcha.1.4.1.zip",{"slug":111,"name":112,"version":113,"author":114,"author_profile":115,"description":116,"short_description":117,"active_installs":11,"downloaded":118,"rating":13,"num_ratings":13,"last_updated":119,"tested_up_to":120,"requires_at_least":50,"requires_php":121,"tags":122,"homepage":126,"download_link":127,"security_score":58,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"jkm-checkout-captcha-for-woo","Checkout Captcha for WooCommerce","1.0.1","Mohammed Jamsheed KM","https:\u002F\u002Fprofiles.wordpress.org\u002Fjamsheedkm\u002F","\u003Cp>\u003Cstrong>Checkout Captcha for WooCommerce\u003C\u002Fstrong> enhances your WooCommerce checkout, WordPress login, registration, and password reset forms by integrating reCAPTCHA verification, helping to prevent spam and bot transactions.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Multi-Form Support:\u003C\u002Fstrong> Seamlessly integrates reCAPTCHA in WooCommerce checkout, as well as WordPress login, registration, and password reset forms.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Guest Checkout Compatibility:\u003C\u002Fstrong> Offers the option to enable or disable reCAPTCHA for guest checkouts, enhancing user experience while maintaining security.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Payment Method Flexibility:\u003C\u002Fstrong> Skip reCAPTCHA verification for specific payment methods, enhancing the checkout experience and improving conversion rates (ideal for compatibility with \u003Ccode>Express Checkout\u003C\u002Fcode> plugin).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizable Positioning:\u003C\u002Fstrong> Users can select different positions for displaying the reCAPTCHA on the checkout page, offering flexibility to suit various store layouts.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Additional Filters for Customization:\u003C\u002Fstrong> Provides hooks and filters to allow users to customize the positioning and functionality of the reCAPTCHA in their checkout process.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Google reCAPTCHA Configuration:\u003C\u002Fstrong> Easily configure reCAPTCHA using Google’s v2 by providing both the site key and secret key.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Test Functionality:\u003C\u002Fstrong> Test the reCAPTCHA setup directly from the admin panel after entering your API keys, ensuring everything works correctly before going live.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>1. Multi-Form Integration:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Add reCAPTCHA to WooCommerce checkout, WordPress login, registration, and password reset forms to enhance security.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>2. Guest Checkout Option:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Configure reCAPTCHA to be optional for guest checkouts, balancing security and convenience.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>3. Payment Method Customization:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Skip reCAPTCHA for selected payment methods, streamlining the checkout process for quicker transactions.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>4. Flexible Positioning:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Choose the display position of reCAPTCHA on the checkout page, ensuring it fits seamlessly into your store’s layout.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>5. Advanced Filters and Hooks:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Utilize additional hooks and filters for advanced customization, allowing developers to extend functionality easily.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>6. Google reCAPTCHA Setup:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Configure reCAPTCHA using Google’s API by entering the site key and secret key, and validate the setup from the admin dashboard.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>7. Admin Testing Feature:\u003C\u002Fstrong>\u003Cbr \u002F>\n– Test reCAPTCHA functionality in the admin area to confirm proper integration before your customers encounter it.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>8. Dynamic Theme Compatibility:\u003C\u002Fstrong>\u003Cbr \u002F>\n– reCAPTCHA will be displayed in both light and dark themes as users select, providing an adaptive visual experience.\u003Cbr \u002F>\n– Users can choose the captcha theme (dark or light) to match their preferences.\u003C\u002Fp>\n\u003Ch3>External services\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Google reCAPTCHA\u003C\u002Fstrong>\u003Cbr \u002F>\nThis plugin integrates with Google reCAPTCHA to provide CAPTCHA verification during the checkout process, enhancing security and reducing spam.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>\u003Cstrong>What the service is used for:\u003C\u002Fstrong>\u003Cbr \u002F>\nGoogle reCAPTCHA is used to verify human users and prevent automated bots from completing the checkout process.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>What data is sent and when:\u003C\u002Fstrong>\u003Cbr \u002F>\nWhen the CAPTCHA verification is triggered (e.g., during form submission or checkout), the plugin sends the following data to Google reCAPTCHA’s servers:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>The CAPTCHA response token generated by the user’s interaction with the CAPTCHA widget (\u003Ccode>response\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>The secret key associated with your Google reCAPTCHA account (\u003Ccode>secret\u003C\u002Fcode>).\u003C\u002Fli>\n\u003Cli>Additional details such as locale settings may be included in the API call for displaying the CAPTCHA in the user’s preferred language.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Service Provider Details:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Google reCAPTCHA API: \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fterms\" rel=\"nofollow ugc\">Terms of Service\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fpolicies.google.com\u002Fprivacy\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>\u003Cstrong>Domains involved:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002Fapi\u002Fsiteverify\u003C\u002Fcode>\u003C\u002Fli>\n\u003Cli>\u003Ccode>https:\u002F\u002Fwww.google.com\u002Frecaptcha\u002Fapi.js\u003C\u002Fcode>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>By using this plugin, you agree to the terms and policies outlined by Google reCAPTCHA.\u003C\u002Fp>\n","Adds reCAPTCHA verification to WooCommerce checkout, login, registration, and password reset forms to prevent spam and bot transactions.",1050,"2025-01-25T17:44:00.000Z","6.7.5","5.6",[53,123,124,19,125],"checkout-captcha","checkout-security","login-recaptcha","https:\u002F\u002Fgithub.com\u002Fkmjamsheed0\u002Fjkm-checkout-captcha-for-woo","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fjkm-checkout-captcha-for-woo.1.0.1.zip",{"attackSurface":129,"codeSignals":205,"taintFlows":213,"riskAssessment":214,"analyzedAt":222},{"hooks":130,"ajaxHandlers":201,"restRoutes":202,"shortcodes":203,"cronEvents":204,"entryPointCount":13,"unprotectedCount":13},[131,137,141,145,150,153,156,160,166,169,173,177,181,184,188,191,195,197],{"type":132,"name":133,"callback":134,"file":135,"line":136},"action","admin_menu","add_plugin_page","core\\class-thinkcaptcha-settings.php",9,{"type":132,"name":138,"callback":139,"file":135,"line":140},"admin_init","page_init",10,{"type":132,"name":142,"callback":143,"file":135,"line":144},"admin_enqueue_scripts","enqueue_styles",11,{"type":132,"name":146,"callback":147,"file":148,"line":149},"woocommerce_login_form","display_captcha","integrations\\woocommerce\\class-thinkcaptcha-wc.php",41,{"type":132,"name":151,"callback":147,"file":148,"line":152},"woocommerce_register_form",44,{"type":132,"name":154,"callback":147,"file":148,"line":155},"woocommerce_lostpassword_form",47,{"type":132,"name":157,"callback":158,"file":148,"line":159},"wp_loaded","process_login_verification",52,{"type":161,"name":162,"callback":163,"priority":164,"file":148,"line":165},"filter","woocommerce_process_registration_errors","validate_via_filter",20,55,{"type":161,"name":167,"callback":163,"priority":164,"file":148,"line":168},"woocommerce_lostpassword_errors",58,{"type":132,"name":170,"callback":171,"file":148,"line":172},"wp_enqueue_scripts","enqueue_script",63,{"type":132,"name":174,"callback":147,"file":175,"line":176},"login_form","integrations\\wordpress-core\\class-thinkcaptcha-wp-core.php",28,{"type":161,"name":178,"callback":179,"priority":164,"file":175,"line":180},"wp_authenticate_user","verify_login",29,{"type":132,"name":182,"callback":147,"file":175,"line":183},"register_form",32,{"type":161,"name":185,"callback":186,"priority":164,"file":175,"line":187},"registration_errors","verify_registration",33,{"type":132,"name":189,"callback":147,"file":175,"line":190},"lostpassword_form",36,{"type":132,"name":192,"callback":193,"priority":164,"file":175,"line":194},"lostpassword_post","verify_reset_password",37,{"type":132,"name":196,"callback":171,"file":175,"line":149},"login_enqueue_scripts",{"type":132,"name":198,"callback":199,"file":200,"line":180},"plugins_loaded","thinkcaptcha_run","thinkcaptcha.php",[],[],[],[],{"dangerousFunctions":206,"sqlUsage":207,"outputEscaping":209,"fileOperations":13,"externalRequests":68,"nonceChecks":47,"capabilityChecks":13,"bundledLibraries":212},[],{"prepared":13,"raw":13,"locations":208},[],{"escaped":210,"rawEcho":13,"locations":211},18,[],[],[],{"summary":215,"deductions":216},"The thinkcaptcha plugin v1.1.6 exhibits a strong security posture based on the provided static analysis. The plugin has a remarkably small attack surface, with no exposed AJAX handlers, REST API routes, shortcodes, or cron events, indicating careful design to limit entry points.  Furthermore, the code demonstrates good security practices, with 100% of SQL queries using prepared statements and all outputs being properly escaped, mitigating common vulnerabilities like SQL injection and cross-site scripting (XSS). The absence of file operations and the use of nonces further bolster its defenses. The plugin also has no recorded vulnerability history, suggesting a history of secure development and maintenance.\n\nDespite the overall positive assessment, there is a single external HTTP request that, while not inherently a vulnerability, represents a potential point of failure or a vector for supply chain attacks if the external service is compromised or unreliable. The complete lack of capability checks is a concern; while the attack surface is zero, this means that if any entry points were to be introduced in the future without proper authentication and authorization, they would be unprotected.  The absence of any taint flows analyzed is also noteworthy, potentially indicating either a very small codebase or a limitation in the taint analysis tool's ability to find relevant flows.  In conclusion, the plugin is highly secure with excellent development practices, but the external HTTP request and the complete absence of capability checks are minor areas that could be strengthened for even greater resilience.",[217,219],{"reason":218,"points":32},"External HTTP request",{"reason":220,"points":221},"No capability checks",5,"2026-03-16T22:18:33.188Z",{"wat":224,"direct":232},{"assetPaths":225,"generatorPatterns":228,"scriptPaths":229,"versionParams":230},[226,227],"\u002Fwp-content\u002Fplugins\u002Fthinkcaptcha\u002Fassets\u002Fvendor\u002Ffont-awesome\u002Fcss\u002Fall.min.css","\u002Fwp-content\u002Fplugins\u002Fthinkcaptcha\u002Fassets\u002Fcss\u002Fadmin-style.css",[],[],[231],"thinkcaptcha-admin-style",{"cssClasses":233,"htmlComments":247,"htmlAttributes":248,"restEndpoints":251,"jsGlobals":252,"shortcodeOutput":253},[234,235,236,237,238,239,240,241,242,243,244,245,246],"thinkcaptcha-wrap","thinkcaptcha-promo-hero","promo-icon","fas","fa-rocket","promo-content","promo-pricing","price-main","monthly-price","promo-button","thinkcaptcha-content","thinkcaptcha-sidebar","thinkcaptcha-box",[],[249,250],"name=\"thinkcaptcha_settings[site_key]\"","name=\"thinkcaptcha_settings[secret_key]\"",[],[],[]]